[ 590.883134][ T4119] dump_stack+0x11/0x1b [ 590.883157][ T4119] should_fail+0x23c/0x250 [ 590.891479][ T4135] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 590.893339][ T4119] ? getname_flags+0x84/0x3f0 [ 590.893365][ T4119] __should_failslab+0x81/0x90 [ 590.916384][ T4119] should_failslab+0x5/0x20 [ 590.920866][ T4119] kmem_cache_alloc+0x4f/0x300 [ 590.925646][ T4119] getname_flags+0x84/0x3f0 [ 590.930125][ T4119] ? switch_fpu_return+0xa/0x10 [ 590.934962][ T4119] __x64_sys_mkdir+0x31/0x50 [ 590.939572][ T4119] do_syscall_64+0x44/0xa0 [ 590.943967][ T4119] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 590.949903][ T4119] RIP: 0033:0x7f1dfce3f817 [ 590.954318][ T4119] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 590.975896][ T4119] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 590.984348][ T4119] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 590.992337][ T4119] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 591.000340][ T4119] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 591.008285][ T4119] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 591.016235][ T4119] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:18 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 45) 22:21:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x402, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 591.043119][ T4137] loop3: detected capacity change from 0 to 4 [ 591.052916][ T4137] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.076872][ T4135] loop4: detected capacity change from 0 to 4 [ 591.083468][ T4135] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.106920][ T4156] loop5: detected capacity change from 0 to 131456 [ 591.113594][ T4156] FAULT_INJECTION: forcing a failure. [ 591.113594][ T4156] name failslab, interval 1, probability 0, space 0, times 0 [ 591.126208][ T4156] CPU: 0 PID: 4156 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 591.134879][ T4156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.144907][ T4156] Call Trace: [ 591.148163][ T4156] dump_stack_lvl+0xd6/0x122 [ 591.152824][ T4156] dump_stack+0x11/0x1b [ 591.156980][ T4156] should_fail+0x23c/0x250 [ 591.161423][ T4156] ? __d_alloc+0x36/0x370 [ 591.165731][ T4156] __should_failslab+0x81/0x90 [ 591.170470][ T4156] should_failslab+0x5/0x20 [ 591.174951][ T4156] kmem_cache_alloc+0x4f/0x300 [ 591.179692][ T4156] __d_alloc+0x36/0x370 [ 591.183824][ T4156] d_alloc+0x2a/0x130 [ 591.187783][ T4156] __lookup_hash+0x8f/0x180 [ 591.192269][ T4156] filename_create+0xfc/0x270 [ 591.196926][ T4156] do_mkdirat+0x53/0x2c0 [ 591.201168][ T4156] __x64_sys_mkdir+0x40/0x50 [ 591.206271][ T4156] do_syscall_64+0x44/0xa0 [ 591.210751][ T4156] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 591.216737][ T4156] RIP: 0033:0x7f1dfce3f817 [ 591.221198][ T4156] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 591.240788][ T4156] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 591.249189][ T4156] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 22:21:18 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xa00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:18 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 591.257137][ T4156] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 591.265099][ T4156] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 591.273048][ T4156] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 591.281008][ T4156] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:18 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d6) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:18 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 46) [ 591.332538][ T4169] loop3: detected capacity change from 0 to 5 [ 591.336818][ T4171] loop4: detected capacity change from 0 to 4 [ 591.342103][ T4169] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.357219][ T4171] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.380973][ T4182] loop5: detected capacity change from 0 to 131456 [ 591.393389][ T4169] loop3: detected capacity change from 0 to 5 [ 591.399395][ T4182] FAULT_INJECTION: forcing a failure. [ 591.399395][ T4182] name failslab, interval 1, probability 0, space 0, times 0 [ 591.401423][ T4169] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.412042][ T4182] CPU: 1 PID: 4182 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 591.429943][ T4182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.438918][ T4193] loop1: detected capacity change from 0 to 131456 [ 591.439977][ T4182] Call Trace: [ 591.439985][ T4182] dump_stack_lvl+0xd6/0x122 [ 591.454341][ T4182] dump_stack+0x11/0x1b [ 591.458505][ T4182] should_fail+0x23c/0x250 [ 591.462903][ T4182] ? __d_alloc+0x36/0x370 [ 591.467216][ T4182] __should_failslab+0x81/0x90 [ 591.471980][ T4182] should_failslab+0x5/0x20 [ 591.476534][ T4182] kmem_cache_alloc+0x4f/0x300 [ 591.481303][ T4182] __d_alloc+0x36/0x370 [ 591.485531][ T4182] d_alloc+0x2a/0x130 [ 591.489521][ T4182] __lookup_hash+0x8f/0x180 [ 591.494025][ T4182] filename_create+0xfc/0x270 [ 591.498752][ T4182] do_mkdirat+0x53/0x2c0 [ 591.502997][ T4182] __x64_sys_mkdir+0x40/0x50 [ 591.507635][ T4182] do_syscall_64+0x44/0xa0 [ 591.512054][ T4182] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 591.518002][ T4182] RIP: 0033:0x7f1dfce3f817 [ 591.522431][ T4182] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 591.542054][ T4182] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 591.550499][ T4182] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 591.558519][ T4182] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 591.566465][ T4182] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 591.574451][ T4182] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 22:21:19 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:19 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 591.582483][ T4182] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 591.602627][ T4171] loop4: detected capacity change from 0 to 4 [ 591.609250][ T4171] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.650535][ T4212] loop3: detected capacity change from 0 to 5 [ 591.690724][ T4220] loop2: detected capacity change from 0 to 131456 22:21:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x406, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:19 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 47) [ 591.700018][ T4220] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 591.710110][ T4220] EXT4-fs (loop2): group descriptors corrupted! [ 591.717546][ T4212] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.745339][ T4224] loop4: detected capacity change from 0 to 4 [ 591.754126][ T4224] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 591.754641][ T4228] loop5: detected capacity change from 0 to 131456 [ 591.770238][ T4228] FAULT_INJECTION: forcing a failure. [ 591.770238][ T4228] name failslab, interval 1, probability 0, space 0, times 0 [ 591.782861][ T4228] CPU: 1 PID: 4228 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 591.791560][ T4228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.801592][ T4228] Call Trace: [ 591.804851][ T4228] dump_stack_lvl+0xd6/0x122 [ 591.809438][ T4228] dump_stack+0x11/0x1b [ 591.813571][ T4228] should_fail+0x23c/0x250 [ 591.817962][ T4228] ? security_inode_alloc+0x30/0x180 [ 591.823224][ T4228] __should_failslab+0x81/0x90 [ 591.827963][ T4228] should_failslab+0x5/0x20 [ 591.832504][ T4228] kmem_cache_alloc+0x4f/0x300 [ 591.837342][ T4228] security_inode_alloc+0x30/0x180 [ 591.842435][ T4228] inode_init_always+0x20b/0x430 [ 591.847357][ T4228] ? set_qf_name+0x230/0x230 [ 591.851998][ T4228] new_inode_pseudo+0x73/0x1c0 [ 591.856791][ T4228] new_inode+0x21/0x120 [ 591.860941][ T4228] __ext4_new_inode+0x13f/0x2fd0 [ 591.865921][ T4228] ? __dquot_initialize+0x13d/0x7f0 [ 591.871095][ T4228] ext4_mkdir+0x28a/0x760 [ 591.875511][ T4228] vfs_mkdir+0x2c3/0x3e0 [ 591.879732][ T4228] do_mkdirat+0x12e/0x2c0 [ 591.884084][ T4228] __x64_sys_mkdir+0x40/0x50 [ 591.888660][ T4228] do_syscall_64+0x44/0xa0 [ 591.893066][ T4228] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 591.898952][ T4228] RIP: 0033:0x7f1dfce3f817 [ 591.903344][ T4228] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 591.922967][ T4228] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 591.931366][ T4228] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 591.939358][ T4228] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 22:21:19 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 591.947325][ T4228] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 591.955285][ T4228] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 591.963231][ T4228] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x410, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:19 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d7) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 592.001529][ T4241] loop3: detected capacity change from 0 to 6 [ 592.009952][ T4241] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (3 blocks) [ 592.014935][ T4245] loop4: detected capacity change from 0 to 4 [ 592.040294][ T4241] loop3: detected capacity change from 0 to 6 22:21:19 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 48) [ 592.046461][ T4245] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 592.049139][ T4241] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (3 blocks) [ 592.065717][ T4256] loop5: detected capacity change from 0 to 131456 [ 592.072540][ T4256] FAULT_INJECTION: forcing a failure. [ 592.072540][ T4256] name failslab, interval 1, probability 0, space 0, times 0 [ 592.085152][ T4256] CPU: 1 PID: 4256 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 592.093895][ T4256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 592.103995][ T4256] Call Trace: [ 592.107256][ T4256] dump_stack_lvl+0xd6/0x122 [ 592.111831][ T4256] dump_stack+0x11/0x1b [ 592.116005][ T4256] should_fail+0x23c/0x250 [ 592.120401][ T4256] ? sidtab_sid2str_get+0x9c/0x130 [ 592.125489][ T4256] __should_failslab+0x81/0x90 [ 592.130260][ T4256] should_failslab+0x5/0x20 [ 592.134744][ T4256] __kmalloc_track_caller+0x6d/0x350 [ 592.140009][ T4256] kmemdup+0x21/0x50 [ 592.143965][ T4256] sidtab_sid2str_get+0x9c/0x130 [ 592.148944][ T4256] security_sid_to_context_core+0x1cb/0x2d0 [ 592.155029][ T4256] security_sid_to_context_force+0x2f/0x40 [ 592.160815][ T4256] selinux_inode_init_security+0x4e4/0x590 [ 592.166600][ T4256] security_inode_init_security+0xe4/0x260 [ 592.172448][ T4256] ? ext4_init_security+0x40/0x40 [ 592.177485][ T4256] ext4_init_security+0x30/0x40 [ 592.182314][ T4256] __ext4_new_inode+0x2a0a/0x2fd0 [ 592.187393][ T4256] ext4_mkdir+0x28a/0x760 [ 592.191704][ T4256] vfs_mkdir+0x2c3/0x3e0 [ 592.195967][ T4256] do_mkdirat+0x12e/0x2c0 [ 592.200293][ T4256] __x64_sys_mkdir+0x40/0x50 [ 592.204862][ T4256] do_syscall_64+0x44/0xa0 [ 592.209271][ T4256] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 592.215176][ T4256] RIP: 0033:0x7f1dfce3f817 [ 592.219565][ T4256] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.239163][ T4256] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 22:21:19 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 592.247591][ T4256] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 592.255559][ T4256] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 592.263508][ T4256] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 592.271466][ T4256] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 592.279477][ T4256] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:19 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 592.310005][ T4245] loop4: detected capacity change from 0 to 4 [ 592.327962][ T4245] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 592.344171][ T4275] loop3: detected capacity change from 0 to 6 22:21:19 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 49) 22:21:19 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 592.351692][ T4275] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (3 blocks) [ 592.369121][ T4270] loop1: detected capacity change from 0 to 131456 [ 592.398496][ T4284] loop5: detected capacity change from 0 to 131456 [ 592.406899][ T4284] FAULT_INJECTION: forcing a failure. [ 592.406899][ T4284] name failslab, interval 1, probability 0, space 0, times 0 [ 592.419609][ T4284] CPU: 0 PID: 4284 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 592.428281][ T4284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 592.438325][ T4284] Call Trace: [ 592.441595][ T4284] dump_stack_lvl+0xd6/0x122 [ 592.446187][ T4284] dump_stack+0x11/0x1b [ 592.450338][ T4284] should_fail+0x23c/0x250 [ 592.454745][ T4284] ? kcalloc+0x32/0x50 [ 592.458818][ T4284] __should_failslab+0x81/0x90 [ 592.463572][ T4284] should_failslab+0x5/0x20 [ 592.468152][ T4284] __kmalloc+0x6f/0x350 [ 592.472303][ T4284] ? __crc32c_le_base+0x250/0x350 [ 592.477325][ T4284] kcalloc+0x32/0x50 [ 592.481248][ T4284] ext4_find_extent+0x21c/0x7f0 [ 592.486226][ T4284] ext4_ext_map_blocks+0x115/0x1ff0 [ 592.491408][ T4284] ? ext4_inode_csum+0x410/0x490 [ 592.496335][ T4284] ? ext4_es_lookup_extent+0x206/0x490 [ 592.501781][ T4284] ext4_map_blocks+0x1cf/0xf00 [ 592.506534][ T4284] ext4_getblk+0xc6/0x3e0 [ 592.510883][ T4284] ext4_bread+0x28/0x100 [ 592.515111][ T4284] ext4_append+0xd1/0x1c0 [ 592.519423][ T4284] ext4_init_new_dir+0x177/0x500 [ 592.524413][ T4284] ext4_mkdir+0x329/0x760 [ 592.528725][ T4284] vfs_mkdir+0x2c3/0x3e0 [ 592.532957][ T4284] do_mkdirat+0x12e/0x2c0 [ 592.537275][ T4284] __x64_sys_mkdir+0x40/0x50 [ 592.541851][ T4284] do_syscall_64+0x44/0xa0 [ 592.546254][ T4284] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 592.552140][ T4284] RIP: 0033:0x7f1dfce3f817 [ 592.556534][ T4284] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.576168][ T4284] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 592.584564][ T4284] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 592.592519][ T4284] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 592.600469][ T4284] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff 22:21:20 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 592.608422][ T4284] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 592.616376][ T4284] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 592.644666][ T4284] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 592.651178][ T4284] EXT4-fs (loop5): mount failed 22:21:20 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x500, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 592.658869][ T4296] loop3: detected capacity change from 0 to 7 [ 592.667324][ T4296] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (3 blocks) [ 592.690393][ T4304] loop4: detected capacity change from 0 to 4 [ 592.697946][ T4304] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) 22:21:20 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 50) 22:21:20 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d8) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 592.710985][ T4296] loop3: detected capacity change from 0 to 7 [ 592.717588][ T4312] loop2: detected capacity change from 0 to 131456 [ 592.726726][ T4312] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 592.736866][ T4312] EXT4-fs (loop2): group descriptors corrupted! [ 592.740391][ T4270] loop1: detected capacity change from 0 to 131456 [ 592.767110][ T4304] loop4: detected capacity change from 0 to 4 [ 592.773317][ T4296] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (3 blocks) [ 592.774870][ T4304] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 592.794989][ T4328] loop5: detected capacity change from 0 to 131456 [ 592.802067][ T4328] FAULT_INJECTION: forcing a failure. [ 592.802067][ T4328] name failslab, interval 1, probability 0, space 0, times 0 [ 592.814729][ T4328] CPU: 0 PID: 4328 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 592.823419][ T4328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 592.833471][ T4328] Call Trace: [ 592.836742][ T4328] dump_stack_lvl+0xd6/0x122 [ 592.841330][ T4328] dump_stack+0x11/0x1b [ 592.845487][ T4328] should_fail+0x23c/0x250 [ 592.849904][ T4328] ? __es_insert_extent+0x51f/0xe70 [ 592.855097][ T4328] __should_failslab+0x81/0x90 [ 592.859851][ T4328] should_failslab+0x5/0x20 [ 592.864343][ T4328] kmem_cache_alloc+0x4f/0x300 [ 592.869083][ T4328] ? __getblk_gfp+0x3f/0x590 [ 592.873744][ T4328] __es_insert_extent+0x51f/0xe70 [ 592.878752][ T4328] ext4_es_insert_extent+0x1cb/0x1950 [ 592.884101][ T4328] ext4_ext_map_blocks+0x100a/0x1ff0 [ 592.889361][ T4328] ext4_map_blocks+0x1cf/0xf00 [ 592.894103][ T4328] ext4_getblk+0xc6/0x3e0 [ 592.898414][ T4328] ext4_bread+0x28/0x100 [ 592.902643][ T4328] ext4_append+0xd1/0x1c0 [ 592.906952][ T4328] ext4_init_new_dir+0x177/0x500 [ 592.911864][ T4328] ext4_mkdir+0x329/0x760 [ 592.916200][ T4328] vfs_mkdir+0x2c3/0x3e0 [ 592.920466][ T4328] do_mkdirat+0x12e/0x2c0 [ 592.924773][ T4328] __x64_sys_mkdir+0x40/0x50 [ 592.929341][ T4328] do_syscall_64+0x44/0xa0 [ 592.933773][ T4328] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 592.939659][ T4328] RIP: 0033:0x7f1dfce3f817 [ 592.944057][ T4328] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.963697][ T4328] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 592.972113][ T4328] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 592.980061][ T4328] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 592.988010][ T4328] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 592.996069][ T4328] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 593.004030][ T4328] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:20 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:20 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x600, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 593.027017][ T4328] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 593.045122][ T4328] EXT4-fs (loop5): mount failed [ 593.054234][ T4344] loop1: detected capacity change from 0 to 131456 22:21:20 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 51) [ 593.078206][ T4350] loop3: detected capacity change from 0 to 7 [ 593.115493][ T4350] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (3 blocks) [ 593.126193][ T4355] loop4: detected capacity change from 0 to 4 [ 593.136270][ T4355] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 593.137880][ T4361] loop5: detected capacity change from 0 to 131456 [ 593.155511][ T4361] FAULT_INJECTION: forcing a failure. [ 593.155511][ T4361] name failslab, interval 1, probability 0, space 0, times 0 [ 593.168131][ T4361] CPU: 0 PID: 4361 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 593.176800][ T4361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.186850][ T4361] Call Trace: [ 593.190138][ T4361] dump_stack_lvl+0xd6/0x122 [ 593.194725][ T4361] dump_stack+0x11/0x1b [ 593.198877][ T4361] should_fail+0x23c/0x250 [ 593.203283][ T4361] ? kcalloc+0x32/0x50 [ 593.207355][ T4361] __should_failslab+0x81/0x90 [ 593.212117][ T4361] should_failslab+0x5/0x20 [ 593.216699][ T4361] __kmalloc+0x6f/0x350 [ 593.220845][ T4361] kcalloc+0x32/0x50 [ 593.224740][ T4361] ext4_find_extent+0x21c/0x7f0 [ 593.229609][ T4361] ? kfree+0xf8/0x1d0 [ 593.233581][ T4361] ext4_ext_map_blocks+0x115/0x1ff0 [ 593.238782][ T4361] ext4_map_blocks+0x71e/0xf00 [ 593.243546][ T4361] ext4_getblk+0xc6/0x3e0 [ 593.247878][ T4361] ext4_bread+0x28/0x100 [ 593.252114][ T4361] ext4_append+0xd1/0x1c0 [ 593.256443][ T4361] ext4_init_new_dir+0x177/0x500 [ 593.261371][ T4361] ext4_mkdir+0x329/0x760 [ 593.265755][ T4361] vfs_mkdir+0x2c3/0x3e0 [ 593.269999][ T4361] do_mkdirat+0x12e/0x2c0 [ 593.274375][ T4361] __x64_sys_mkdir+0x40/0x50 [ 593.278971][ T4361] do_syscall_64+0x44/0xa0 [ 593.283491][ T4361] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 593.289389][ T4361] RIP: 0033:0x7f1dfce3f817 [ 593.293792][ T4361] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 593.313431][ T4361] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 22:21:20 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 593.321829][ T4361] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 593.324311][ T4350] loop3: detected capacity change from 0 to 7 [ 593.329823][ T4361] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 593.329837][ T4361] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 593.329849][ T4361] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 593.329861][ T4361] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:20 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x604, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 593.378610][ T4350] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (3 blocks) 22:21:20 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1004, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:20 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 52) [ 593.429186][ T4380] loop4: detected capacity change from 0 to 4 [ 593.439522][ T4383] loop3: detected capacity change from 0 to 8 [ 593.443939][ T4380] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 593.450980][ T4387] loop5: detected capacity change from 0 to 131456 [ 593.458652][ T4383] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 593.462997][ T4387] FAULT_INJECTION: forcing a failure. [ 593.462997][ T4387] name failslab, interval 1, probability 0, space 0, times 0 [ 593.483243][ T4387] CPU: 1 PID: 4387 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 593.491892][ T4387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.501926][ T4387] Call Trace: [ 593.505187][ T4387] dump_stack_lvl+0xd6/0x122 [ 593.509763][ T4387] dump_stack+0x11/0x1b [ 593.513919][ T4387] should_fail+0x23c/0x250 [ 593.518309][ T4387] ? ext4_mb_new_blocks+0x317/0x1fc0 [ 593.523567][ T4387] __should_failslab+0x81/0x90 [ 593.528306][ T4387] should_failslab+0x5/0x20 [ 593.532834][ T4387] kmem_cache_alloc+0x4f/0x300 [ 593.537572][ T4387] ext4_mb_new_blocks+0x317/0x1fc0 [ 593.542663][ T4387] ? ext4_find_extent+0x6cf/0x7f0 [ 593.547667][ T4387] ? ext4_ext_search_right+0x300/0x540 [ 593.553110][ T4387] ? ext4_inode_to_goal_block+0x1bd/0x1d0 [ 593.558812][ T4387] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 593.564079][ T4387] ? _raw_spin_lock_irqsave+0x38/0xa0 [ 593.569437][ T4387] ext4_map_blocks+0x71e/0xf00 [ 593.574184][ T4387] ext4_getblk+0xc6/0x3e0 [ 593.578551][ T4387] ext4_bread+0x28/0x100 [ 593.582793][ T4387] ext4_append+0xd1/0x1c0 [ 593.587171][ T4387] ext4_init_new_dir+0x177/0x500 [ 593.592087][ T4387] ext4_mkdir+0x329/0x760 [ 593.596395][ T4387] vfs_mkdir+0x2c3/0x3e0 [ 593.600670][ T4387] do_mkdirat+0x12e/0x2c0 [ 593.604997][ T4387] __x64_sys_mkdir+0x40/0x50 [ 593.609580][ T4387] do_syscall_64+0x44/0xa0 [ 593.613977][ T4387] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 593.619858][ T4387] RIP: 0033:0x7f1dfce3f817 [ 593.624252][ T4387] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 593.643962][ T4387] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 593.652360][ T4387] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 593.660315][ T4387] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 593.668267][ T4387] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff 22:21:21 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 593.676395][ T4387] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 593.684348][ T4387] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 593.715869][ T4380] loop4: detected capacity change from 0 to 4 [ 593.722302][ T4383] loop3: detected capacity change from 0 to 8 22:21:21 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d9) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:21 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 53) [ 593.729551][ T4380] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 593.741028][ T4383] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 593.759255][ T4410] loop5: detected capacity change from 0 to 131456 [ 593.766504][ T4410] FAULT_INJECTION: forcing a failure. [ 593.766504][ T4410] name failslab, interval 1, probability 0, space 0, times 0 [ 593.779189][ T4410] CPU: 0 PID: 4410 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 593.781905][ T4416] loop1: detected capacity change from 0 to 131456 [ 593.787881][ T4410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.787893][ T4410] Call Trace: [ 593.787900][ T4410] dump_stack_lvl+0xd6/0x122 [ 593.812256][ T4410] dump_stack+0x11/0x1b [ 593.816410][ T4410] should_fail+0x23c/0x250 [ 593.820808][ T4410] ? ext4_mb_new_blocks+0x73f/0x1fc0 [ 593.826085][ T4410] __should_failslab+0x81/0x90 [ 593.830843][ T4410] should_failslab+0x5/0x20 [ 593.835390][ T4410] kmem_cache_alloc+0x4f/0x300 [ 593.840145][ T4410] ext4_mb_new_blocks+0x73f/0x1fc0 [ 593.845273][ T4410] ? ext4_find_extent+0x6cf/0x7f0 [ 593.850298][ T4410] ? ext4_ext_search_right+0x300/0x540 [ 593.855738][ T4410] ? ext4_inode_to_goal_block+0x1bd/0x1d0 [ 593.861515][ T4410] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 593.866784][ T4410] ext4_map_blocks+0x71e/0xf00 [ 593.871539][ T4410] ext4_getblk+0xc6/0x3e0 [ 593.875912][ T4410] ext4_bread+0x28/0x100 [ 593.880136][ T4410] ext4_append+0xd1/0x1c0 [ 593.884509][ T4410] ext4_init_new_dir+0x177/0x500 [ 593.889424][ T4410] ext4_mkdir+0x329/0x760 [ 593.893736][ T4410] vfs_mkdir+0x2c3/0x3e0 [ 593.898003][ T4410] do_mkdirat+0x12e/0x2c0 [ 593.902329][ T4410] __x64_sys_mkdir+0x40/0x50 [ 593.906919][ T4410] do_syscall_64+0x44/0xa0 [ 593.911355][ T4410] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 593.917304][ T4410] RIP: 0033:0x7f1dfce3f817 [ 593.921782][ T4410] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 593.941445][ T4410] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 593.949895][ T4410] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 593.957852][ T4410] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 593.965798][ T4410] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 593.973743][ T4410] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 22:21:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x700, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:21 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1020, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 593.981705][ T4410] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 593.990492][ T4420] loop2: detected capacity change from 0 to 131456 [ 593.999031][ T4420] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 594.009149][ T4420] EXT4-fs (loop2): group descriptors corrupted! 22:21:21 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 54) [ 594.033703][ T4431] loop3: detected capacity change from 0 to 8 [ 594.035000][ T4433] loop4: detected capacity change from 0 to 4 [ 594.041231][ T4431] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 594.048713][ T4433] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 594.066054][ T4416] loop1: detected capacity change from 0 to 131456 22:21:21 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0da) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 594.093053][ T4448] loop5: detected capacity change from 0 to 131456 [ 594.101494][ T4448] FAULT_INJECTION: forcing a failure. [ 594.101494][ T4448] name failslab, interval 1, probability 0, space 0, times 0 [ 594.114130][ T4448] CPU: 0 PID: 4448 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 594.122902][ T4448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.133037][ T4448] Call Trace: [ 594.136306][ T4448] dump_stack_lvl+0xd6/0x122 [ 594.140943][ T4448] dump_stack+0x11/0x1b [ 594.145079][ T4448] should_fail+0x23c/0x250 [ 594.149475][ T4448] ? __es_insert_extent+0x51f/0xe70 [ 594.154669][ T4448] __should_failslab+0x81/0x90 [ 594.159429][ T4448] should_failslab+0x5/0x20 [ 594.163932][ T4448] kmem_cache_alloc+0x4f/0x300 [ 594.168673][ T4448] __es_insert_extent+0x51f/0xe70 [ 594.173677][ T4448] ext4_es_insert_extent+0x1cb/0x1950 [ 594.179031][ T4448] ext4_map_blocks+0xa5d/0xf00 [ 594.183775][ T4448] ext4_getblk+0xc6/0x3e0 [ 594.188084][ T4448] ext4_bread+0x28/0x100 [ 594.192368][ T4448] ext4_append+0xd1/0x1c0 [ 594.196768][ T4448] ext4_init_new_dir+0x177/0x500 [ 594.201682][ T4448] ext4_mkdir+0x329/0x760 [ 594.205993][ T4448] vfs_mkdir+0x2c3/0x3e0 [ 594.210284][ T4448] do_mkdirat+0x12e/0x2c0 [ 594.214593][ T4448] __x64_sys_mkdir+0x40/0x50 [ 594.219233][ T4448] do_syscall_64+0x44/0xa0 [ 594.223634][ T4448] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 594.229535][ T4448] RIP: 0033:0x7f1dfce3f817 [ 594.233932][ T4448] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 594.253518][ T4448] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 594.262090][ T4448] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 594.270160][ T4448] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 594.278175][ T4448] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff [ 594.286155][ T4448] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 22:21:21 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 594.294106][ T4448] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 594.307183][ T4448] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 594.325069][ T4431] loop3: detected capacity change from 0 to 8 [ 594.334456][ T4448] EXT4-fs (loop5): mount failed 22:21:21 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 55) 22:21:21 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1100, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x900, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 594.335013][ T4431] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 594.348700][ T4433] loop4: detected capacity change from 0 to 4 [ 594.356356][ T4433] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 594.366690][ T4469] loop1: detected capacity change from 0 to 131456 [ 594.420302][ T4484] loop5: detected capacity change from 0 to 131456 [ 594.427909][ T4484] FAULT_INJECTION: forcing a failure. [ 594.427909][ T4484] name failslab, interval 1, probability 0, space 0, times 0 [ 594.430857][ T4486] loop3: detected capacity change from 0 to 8 [ 594.440538][ T4484] CPU: 0 PID: 4484 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 594.455237][ T4484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.465392][ T4484] Call Trace: [ 594.468689][ T4484] dump_stack_lvl+0xd6/0x122 [ 594.473291][ T4484] dump_stack+0x11/0x1b [ 594.477451][ T4484] should_fail+0x23c/0x250 [ 594.481868][ T4484] ? __es_insert_extent+0x51f/0xe70 [ 594.487065][ T4484] __should_failslab+0x81/0x90 [ 594.491833][ T4484] should_failslab+0x5/0x20 [ 594.496339][ T4484] kmem_cache_alloc+0x4f/0x300 [ 594.501101][ T4484] __es_insert_extent+0x51f/0xe70 [ 594.506132][ T4484] ext4_es_insert_extent+0x1cb/0x1950 [ 594.511534][ T4484] ext4_map_blocks+0xa5d/0xf00 [ 594.516365][ T4484] ext4_getblk+0xc6/0x3e0 [ 594.520701][ T4484] ext4_bread+0x28/0x100 [ 594.524952][ T4484] ext4_append+0xd1/0x1c0 [ 594.529286][ T4484] ext4_init_new_dir+0x177/0x500 [ 594.534221][ T4484] ext4_mkdir+0x329/0x760 [ 594.538552][ T4484] vfs_mkdir+0x2c3/0x3e0 [ 594.542847][ T4484] do_mkdirat+0x12e/0x2c0 [ 594.547212][ T4484] __x64_sys_mkdir+0x40/0x50 [ 594.551900][ T4484] do_syscall_64+0x44/0xa0 [ 594.556325][ T4484] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 594.562224][ T4484] RIP: 0033:0x7f1dfce3f817 [ 594.566634][ T4484] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 594.586236][ T4484] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 594.594633][ T4484] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce3f817 [ 594.602591][ T4484] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 594.610611][ T4484] RBP: 00007f1dfabb8040 R08: 0000000000000000 R09: ffffffffffffffff 22:21:22 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 594.618563][ T4484] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 594.626521][ T4484] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 594.641792][ T4491] loop4: detected capacity change from 0 to 4 [ 594.651077][ T4491] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 594.674976][ T4486] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 594.690594][ T4484] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 594.699184][ T4491] loop4: detected capacity change from 0 to 4 [ 594.706075][ T4484] EXT4-fs (loop5): mount failed 22:21:22 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0db) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:22 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 56) [ 594.722028][ T4505] loop2: detected capacity change from 0 to 131456 [ 594.731717][ T4505] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 594.741803][ T4505] EXT4-fs (loop2): group descriptors corrupted! [ 594.754845][ T4486] loop3: detected capacity change from 0 to 8 [ 594.755681][ T4491] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 594.780068][ T4486] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 594.788231][ T4520] loop1: detected capacity change from 0 to 131456 [ 594.814075][ T4516] loop5: detected capacity change from 0 to 131456 [ 594.858375][ T4516] FAULT_INJECTION: forcing a failure. [ 594.858375][ T4516] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 594.871517][ T4516] CPU: 1 PID: 4516 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 594.880213][ T4516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.890325][ T4516] Call Trace: [ 594.893601][ T4516] dump_stack_lvl+0xd6/0x122 [ 594.898193][ T4516] dump_stack+0x11/0x1b [ 594.902420][ T4516] should_fail+0x23c/0x250 22:21:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xa00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:22 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1200, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 594.906832][ T4516] should_fail_usercopy+0x16/0x20 [ 594.911855][ T4516] _copy_from_user+0x1c/0xd0 [ 594.916448][ T4516] strndup_user+0xb0/0x120 [ 594.920935][ T4516] __se_sys_mount+0x4e/0x2f0 [ 594.925529][ T4516] __x64_sys_mount+0x63/0x70 [ 594.930156][ T4516] do_syscall_64+0x44/0xa0 [ 594.934600][ T4516] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 594.940599][ T4516] RIP: 0033:0x7f1dfce41c2a [ 594.945004][ T4516] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 594.964846][ T4516] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 594.973349][ T4516] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 594.981311][ T4516] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 594.989281][ T4516] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 594.997311][ T4516] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 595.005278][ T4516] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 595.018849][ T4533] loop3: detected capacity change from 0 to 9 [ 595.042377][ T4533] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 595.052138][ T4539] loop4: detected capacity change from 0 to 5 22:21:22 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 57) [ 595.060652][ T4539] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 595.084349][ T4533] loop3: detected capacity change from 0 to 9 [ 595.094821][ T4533] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (4 blocks) [ 595.103514][ T4551] loop5: detected capacity change from 0 to 131456 22:21:22 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1400, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:22 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0dc) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 595.114509][ T4551] FAULT_INJECTION: forcing a failure. [ 595.114509][ T4551] name failslab, interval 1, probability 0, space 0, times 0 [ 595.127150][ T4551] CPU: 0 PID: 4551 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 595.135820][ T4551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 595.145905][ T4551] Call Trace: [ 595.146403][ T4557] loop1: detected capacity change from 0 to 131456 [ 595.149199][ T4551] dump_stack_lvl+0xd6/0x122 [ 595.160262][ T4551] dump_stack+0x11/0x1b [ 595.164460][ T4551] should_fail+0x23c/0x250 [ 595.168860][ T4551] ? __se_sys_mount+0x91/0x2f0 [ 595.173635][ T4551] __should_failslab+0x81/0x90 [ 595.178388][ T4551] should_failslab+0x5/0x20 [ 595.182948][ T4551] __kmalloc_track_caller+0x6d/0x350 [ 595.188221][ T4551] ? strnlen_user+0x137/0x1c0 [ 595.192928][ T4551] strndup_user+0x73/0x120 [ 595.197333][ T4551] __se_sys_mount+0x91/0x2f0 [ 595.201914][ T4551] __x64_sys_mount+0x63/0x70 [ 595.206493][ T4551] do_syscall_64+0x44/0xa0 [ 595.210910][ T4551] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 595.216865][ T4551] RIP: 0033:0x7f1dfce41c2a [ 595.221267][ T4551] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 595.240873][ T4551] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 595.249270][ T4551] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 595.257269][ T4551] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 22:21:22 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 595.265222][ T4551] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 595.273175][ T4551] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 595.281144][ T4551] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 595.353754][ T4569] loop3: detected capacity change from 0 to 10 [ 595.361514][ T4569] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (5 blocks) [ 595.375154][ T4539] loop4: detected capacity change from 0 to 5 [ 595.381533][ T4539] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) 22:21:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:22 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 58) [ 595.398422][ T4569] loop3: detected capacity change from 0 to 10 [ 595.422174][ T4569] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (5 blocks) [ 595.441619][ T4560] loop1: detected capacity change from 0 to 131456 [ 595.447469][ T4592] loop5: detected capacity change from 0 to 131456 [ 595.456289][ T4592] FAULT_INJECTION: forcing a failure. [ 595.456289][ T4592] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 595.469384][ T4592] CPU: 1 PID: 4592 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 595.472803][ T4598] loop4: detected capacity change from 0 to 5 [ 595.478111][ T4592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 595.478123][ T4592] Call Trace: [ 595.478130][ T4592] dump_stack_lvl+0xd6/0x122 [ 595.486411][ T4598] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 595.494324][ T4592] dump_stack+0x11/0x1b [ 595.494350][ T4592] should_fail+0x23c/0x250 [ 595.494367][ T4592] should_fail_usercopy+0x16/0x20 [ 595.494389][ T4592] _copy_from_user+0x1c/0xd0 [ 595.494410][ T4592] strndup_user+0xb0/0x120 [ 595.534127][ T4592] __se_sys_mount+0x91/0x2f0 [ 595.538769][ T4592] __x64_sys_mount+0x63/0x70 [ 595.543338][ T4592] do_syscall_64+0x44/0xa0 [ 595.547742][ T4592] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 595.553643][ T4592] RIP: 0033:0x7f1dfce41c2a [ 595.558043][ T4592] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 595.577626][ T4592] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 595.586014][ T4592] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 595.593965][ T4592] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 22:21:23 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:23 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 595.601917][ T4592] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 595.609873][ T4592] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 595.617821][ T4592] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 595.641098][ T4598] loop4: detected capacity change from 0 to 5 22:21:23 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0dd) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:23 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 59) [ 595.676714][ T4598] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (2 blocks) [ 595.690271][ T4614] loop3: detected capacity change from 0 to 16 [ 595.698435][ T4614] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (8 blocks) 22:21:23 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 595.745664][ T4624] loop5: detected capacity change from 0 to 131456 [ 595.752755][ T4626] loop2: detected capacity change from 0 to 131456 [ 595.759772][ T4624] FAULT_INJECTION: forcing a failure. [ 595.759772][ T4624] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 595.762488][ T4626] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 595.772881][ T4624] CPU: 0 PID: 4624 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 595.782900][ T4626] EXT4-fs (loop2): group descriptors corrupted! [ 595.791532][ T4624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 595.791543][ T4624] Call Trace: [ 595.791550][ T4624] dump_stack_lvl+0xd6/0x122 [ 595.802572][ T4633] loop4: detected capacity change from 0 to 6 [ 595.807812][ T4624] dump_stack+0x11/0x1b [ 595.813203][ T4633] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 595.815689][ T4624] should_fail+0x23c/0x250 [ 595.815710][ T4624] should_fail_usercopy+0x16/0x20 [ 595.837686][ T4637] loop1: detected capacity change from 0 to 131456 [ 595.839524][ T4624] _copy_from_user+0x1c/0xd0 [ 595.839549][ T4624] strndup_user+0xb0/0x120 [ 595.859958][ T4624] __se_sys_mount+0x91/0x2f0 [ 595.864536][ T4624] __x64_sys_mount+0x63/0x70 [ 595.869151][ T4624] do_syscall_64+0x44/0xa0 [ 595.873561][ T4624] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 595.879451][ T4624] RIP: 0033:0x7f1dfce41c2a [ 595.883857][ T4624] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 595.903704][ T4624] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 595.912152][ T4624] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 595.920108][ T4624] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 595.928071][ T4624] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 595.936087][ T4624] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 22:21:23 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0de) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 595.944048][ T4624] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 595.961421][ T4633] loop4: detected capacity change from 0 to 6 22:21:23 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2010, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:23 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 60) [ 595.998895][ T4633] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 596.015731][ T4657] loop3: detected capacity change from 0 to 16 [ 596.024808][ T4657] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (8 blocks) 22:21:23 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2200, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 596.046329][ T4662] loop5: detected capacity change from 0 to 131456 [ 596.053863][ T4656] loop1: detected capacity change from 0 to 131456 [ 596.055062][ T4662] FAULT_INJECTION: forcing a failure. [ 596.055062][ T4662] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 596.073398][ T4662] CPU: 0 PID: 4662 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 596.082134][ T4662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.088331][ T4669] loop3: detected capacity change from 0 to 17 [ 596.092182][ T4662] Call Trace: [ 596.092236][ T4662] dump_stack_lvl+0xd6/0x122 [ 596.106185][ T4662] dump_stack+0x11/0x1b [ 596.110339][ T4662] should_fail+0x23c/0x250 [ 596.114742][ T4662] should_fail_usercopy+0x16/0x20 [ 596.119775][ T4662] _copy_from_user+0x1c/0xd0 [ 596.123939][ T4669] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (8 blocks) [ 596.124402][ T4662] __se_sys_mount+0x119/0x2f0 [ 596.124429][ T4662] __x64_sys_mount+0x63/0x70 [ 596.142911][ T4662] do_syscall_64+0x44/0xa0 [ 596.147389][ T4662] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 596.153325][ T4662] RIP: 0033:0x7f1dfce41c2a [ 596.157800][ T4662] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 596.177420][ T4662] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 596.185812][ T4662] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a 22:21:23 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:23 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 596.193768][ T4662] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 596.201741][ T4662] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 596.209691][ T4662] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 596.217662][ T4662] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 596.247989][ T4662] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 596.251380][ T4682] loop4: detected capacity change from 0 to 6 [ 596.254924][ T4662] EXT4-fs (loop5): mount failed [ 596.265568][ T4682] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 596.285254][ T4669] loop3: detected capacity change from 0 to 17 22:21:23 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0df) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:23 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2500, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 596.291874][ T4669] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (8 blocks) [ 596.314651][ T4656] loop1: detected capacity change from 0 to 131456 [ 596.347143][ T4682] loop4: detected capacity change from 0 to 6 [ 596.356990][ T4703] loop3: detected capacity change from 0 to 18 [ 596.365549][ T4682] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 596.379222][ T4703] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (9 blocks) [ 596.401763][ T4712] loop1: detected capacity change from 0 to 131456 [ 596.425013][ T4703] loop3: detected capacity change from 0 to 18 [ 596.448379][ T4703] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (9 blocks) 22:21:23 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 61) 22:21:23 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:23 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0e0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:23 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:23 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2e00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 596.548514][ T4733] loop1: detected capacity change from 0 to 131456 [ 596.559148][ T4739] loop3: detected capacity change from 0 to 23 [ 596.567759][ T4739] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (11 blocks) [ 596.572354][ T4744] loop5: detected capacity change from 0 to 131456 [ 596.581968][ T4745] loop4: detected capacity change from 0 to 7 [ 596.585213][ T4744] FAULT_INJECTION: forcing a failure. [ 596.585213][ T4744] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 596.596162][ T4745] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 596.602851][ T4744] CPU: 1 PID: 4744 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 596.620762][ T4744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.630862][ T4744] Call Trace: [ 596.634130][ T4744] dump_stack_lvl+0xd6/0x122 [ 596.638726][ T4744] dump_stack+0x11/0x1b [ 596.642986][ T4744] should_fail+0x23c/0x250 [ 596.647407][ T4744] should_fail_usercopy+0x16/0x20 [ 596.652437][ T4744] _copy_from_user+0x1c/0xd0 [ 596.657029][ T4744] __se_sys_mount+0x119/0x2f0 [ 596.661795][ T4744] __x64_sys_mount+0x63/0x70 [ 596.666392][ T4744] do_syscall_64+0x44/0xa0 [ 596.670889][ T4744] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 596.676790][ T4744] RIP: 0033:0x7f1dfce41c2a [ 596.681239][ T4744] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 596.700869][ T4744] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 596.709281][ T4744] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 596.717250][ T4744] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 596.725259][ T4744] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 596.733211][ T4744] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 596.741261][ T4744] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 596.749914][ T4752] loop2: detected capacity change from 0 to 131456 [ 596.760165][ T4752] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 596.770263][ T4752] EXT4-fs (loop2): group descriptors corrupted! [ 596.788172][ T4745] loop4: detected capacity change from 0 to 7 22:21:24 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:24 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 596.789233][ T4744] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 596.794799][ T4739] loop3: detected capacity change from 0 to 23 [ 596.801188][ T4744] EXT4-fs (loop5): mount failed [ 596.811841][ T4745] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 596.826419][ T4739] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (11 blocks) 22:21:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 62) [ 596.893468][ T4775] loop4: detected capacity change from 0 to 7 [ 596.894098][ T4780] loop5: detected capacity change from 0 to 131456 [ 596.900639][ T4777] loop3: detected capacity change from 0 to 31 [ 596.908136][ T4780] FAULT_INJECTION: forcing a failure. [ 596.908136][ T4780] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 596.915753][ T4775] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 596.925401][ T4780] CPU: 0 PID: 4780 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 596.937742][ T4777] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (15 blocks) [ 596.943334][ T4780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.943345][ T4780] Call Trace: [ 596.943353][ T4780] dump_stack_lvl+0xd6/0x122 [ 596.970593][ T4780] dump_stack+0x11/0x1b [ 596.974785][ T4780] should_fail+0x23c/0x250 [ 596.979177][ T4780] should_fail_usercopy+0x16/0x20 [ 596.984261][ T4780] strncpy_from_user+0x21/0x250 [ 596.989112][ T4780] getname_flags+0xb8/0x3f0 [ 596.993600][ T4780] ? should_fail+0xd6/0x250 [ 596.998088][ T4780] user_path_at_empty+0x28/0x110 [ 597.003086][ T4780] __se_sys_mount+0x217/0x2f0 [ 597.007791][ T4780] __x64_sys_mount+0x63/0x70 [ 597.012362][ T4780] do_syscall_64+0x44/0xa0 [ 597.016816][ T4780] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 597.022864][ T4780] RIP: 0033:0x7f1dfce41c2a [ 597.027436][ T4780] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 597.047023][ T4780] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 597.055411][ T4780] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 597.063417][ T4780] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 597.071397][ T4780] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 597.079408][ T4780] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 22:21:24 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 63) [ 597.087359][ T4780] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 597.140932][ T4793] loop5: detected capacity change from 0 to 131456 [ 597.149357][ T4793] FAULT_INJECTION: forcing a failure. [ 597.149357][ T4793] name failslab, interval 1, probability 0, space 0, times 0 [ 597.161976][ T4793] CPU: 0 PID: 4793 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 597.170642][ T4793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.180688][ T4793] Call Trace: [ 597.183961][ T4793] dump_stack_lvl+0xd6/0x122 [ 597.188556][ T4793] dump_stack+0x11/0x1b [ 597.192697][ T4793] should_fail+0x23c/0x250 [ 597.197181][ T4793] __should_failslab+0x81/0x90 [ 597.201939][ T4793] ? alloc_fs_context+0x46/0x500 [ 597.206957][ T4793] should_failslab+0x5/0x20 [ 597.211822][ T4793] kmem_cache_alloc_trace+0x52/0x320 [ 597.217105][ T4793] alloc_fs_context+0x46/0x500 [ 597.221862][ T4793] ? strncmp+0x34/0x70 [ 597.225929][ T4793] fs_context_for_mount+0x1d/0x20 [ 597.231031][ T4793] path_mount+0xe0d/0x1d20 [ 597.235440][ T4793] __se_sys_mount+0x24b/0x2f0 [ 597.240186][ T4793] __x64_sys_mount+0x63/0x70 [ 597.244811][ T4793] do_syscall_64+0x44/0xa0 [ 597.249240][ T4793] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 597.255132][ T4793] RIP: 0033:0x7f1dfce41c2a [ 597.259558][ T4793] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 597.279337][ T4793] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 597.287747][ T4793] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 597.295713][ T4793] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 597.303706][ T4793] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 597.311669][ T4793] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 597.319633][ T4793] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:24 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0xffffffffffffffff) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 64) 22:21:24 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 597.352699][ T4775] loop4: detected capacity change from 0 to 7 [ 597.353299][ T4777] loop3: detected capacity change from 0 to 31 [ 597.359322][ T4775] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (3 blocks) [ 597.366956][ T4777] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (15 blocks) 22:21:24 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1004, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 597.424129][ T4816] loop5: detected capacity change from 0 to 131456 [ 597.430753][ T4820] loop1: detected capacity change from 0 to 131456 [ 597.451545][ T4816] FAULT_INJECTION: forcing a failure. [ 597.451545][ T4816] name failslab, interval 1, probability 0, space 0, times 0 [ 597.454833][ T4830] loop4: detected capacity change from 0 to 8 [ 597.464200][ T4816] CPU: 1 PID: 4816 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 597.478899][ T4816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.489066][ T4816] Call Trace: [ 597.492343][ T4816] dump_stack_lvl+0xd6/0x122 [ 597.496998][ T4816] dump_stack+0x11/0x1b [ 597.501234][ T4816] should_fail+0x23c/0x250 [ 597.504418][ T4830] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) [ 597.505747][ T4816] __should_failslab+0x81/0x90 22:21:24 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f03, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 597.519759][ T4816] ? legacy_init_fs_context+0x2d/0x70 [ 597.525135][ T4816] should_failslab+0x5/0x20 [ 597.529638][ T4816] kmem_cache_alloc_trace+0x52/0x320 [ 597.534189][ T4835] loop3: detected capacity change from 0 to 31 [ 597.534915][ T4816] ? alloc_fs_context+0x46/0x500 [ 597.534941][ T4816] legacy_init_fs_context+0x2d/0x70 [ 597.545563][ T4821] loop2: detected capacity change from 0 to 131456 [ 597.545989][ T4816] alloc_fs_context+0x419/0x500 [ 597.554091][ T4835] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (15 blocks) [ 597.557638][ T4816] fs_context_for_mount+0x1d/0x20 [ 597.557663][ T4816] path_mount+0xe0d/0x1d20 [ 597.563126][ T4821] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 597.571836][ T4816] __se_sys_mount+0x24b/0x2f0 [ 597.576891][ T4821] EXT4-fs (loop2): group descriptors corrupted! [ 597.581263][ T4816] __x64_sys_mount+0x63/0x70 [ 597.581308][ T4816] do_syscall_64+0x44/0xa0 [ 597.611141][ T4816] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 597.617035][ T4816] RIP: 0033:0x7f1dfce41c2a [ 597.621428][ T4816] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 597.641094][ T4816] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 597.649503][ T4816] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 597.657508][ T4816] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 597.665457][ T4816] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 597.673430][ T4816] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 597.681381][ T4816] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 597.694702][ T4830] loop4: detected capacity change from 0 to 8 [ 597.701166][ T4830] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) 22:21:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 65) 22:21:25 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x0, 0x0, 0xe463, 0x9, 0x0, 0x3, 0x2, 0x7, 0x3f}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 597.721360][ T4835] loop3: detected capacity change from 0 to 31 [ 597.728862][ T4835] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (15 blocks) [ 597.758212][ T4858] loop5: detected capacity change from 0 to 131456 [ 597.765516][ T4858] FAULT_INJECTION: forcing a failure. 22:21:25 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1020, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 597.765516][ T4858] name failslab, interval 1, probability 0, space 0, times 0 [ 597.778131][ T4858] CPU: 1 PID: 4858 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 597.786845][ T4858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.796889][ T4858] Call Trace: [ 597.800160][ T4858] dump_stack_lvl+0xd6/0x122 [ 597.804756][ T4858] dump_stack+0x11/0x1b [ 597.808907][ T4858] should_fail+0x23c/0x250 [ 597.812045][ T4866] loop4: detected capacity change from 0 to 8 [ 597.813322][ T4858] __should_failslab+0x81/0x90 22:21:25 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 597.813344][ T4858] ? legacy_init_fs_context+0x2d/0x70 [ 597.813368][ T4858] should_failslab+0x5/0x20 [ 597.813426][ T4858] kmem_cache_alloc_trace+0x52/0x320 [ 597.820142][ T4866] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) [ 597.824218][ T4858] ? alloc_fs_context+0x46/0x500 [ 597.824244][ T4858] legacy_init_fs_context+0x2d/0x70 [ 597.858706][ T4858] alloc_fs_context+0x419/0x500 [ 597.863612][ T4858] fs_context_for_mount+0x1d/0x20 [ 597.868614][ T4858] path_mount+0xe0d/0x1d20 [ 597.873042][ T4858] __se_sys_mount+0x24b/0x2f0 [ 597.877705][ T4858] __x64_sys_mount+0x63/0x70 [ 597.882290][ T4858] do_syscall_64+0x44/0xa0 [ 597.886718][ T4858] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 597.892593][ T4858] RIP: 0033:0x7f1dfce41c2a [ 597.896991][ T4858] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 597.913718][ T4870] loop3: detected capacity change from 0 to 32 22:21:25 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 597.916574][ T4858] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 597.916595][ T4858] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 597.926525][ T4870] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (16 blocks) [ 597.931114][ T4858] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 597.931128][ T4858] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 597.964335][ T4858] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 597.972351][ T4858] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 597.992177][ T4870] loop3: detected capacity change from 0 to 32 [ 597.992794][ T4866] loop4: detected capacity change from 0 to 8 [ 597.998980][ T4870] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (16 blocks) 22:21:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 66) [ 598.098779][ T4896] loop1: detected capacity change from 0 to 131456 [ 598.112006][ T4866] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) [ 598.214438][ T4903] loop5: detected capacity change from 0 to 131456 [ 598.223249][ T4903] FAULT_INJECTION: forcing a failure. [ 598.223249][ T4903] name failslab, interval 1, probability 0, space 0, times 0 [ 598.235926][ T4903] CPU: 1 PID: 4903 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 598.244617][ T4903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.254654][ T4903] Call Trace: [ 598.257957][ T4903] dump_stack_lvl+0xd6/0x122 [ 598.262546][ T4903] dump_stack+0x11/0x1b [ 598.266691][ T4903] should_fail+0x23c/0x250 [ 598.271439][ T4903] ? ext4_mount+0x40/0x40 [ 598.275754][ T4903] ? getname_kernel+0x37/0x1d0 [ 598.280503][ T4903] __should_failslab+0x81/0x90 [ 598.285278][ T4903] should_failslab+0x5/0x20 [ 598.289769][ T4903] kmem_cache_alloc+0x4f/0x300 [ 598.294517][ T4903] ? avc_has_perm_noaudit+0x1c0/0x270 [ 598.299876][ T4903] ? ext4_mount+0x40/0x40 [ 598.304235][ T4903] getname_kernel+0x37/0x1d0 [ 598.308823][ T4903] ? ext4_mount+0x40/0x40 [ 598.313237][ T4903] kern_path+0x1d/0x100 [ 598.317396][ T4903] ? ext4_mount+0x40/0x40 [ 598.321709][ T4903] blkdev_get_by_path+0x63/0x1c0 [ 598.326670][ T4903] mount_bdev+0x47/0x290 [ 598.330894][ T4903] ? ext4_errno_to_code+0x110/0x110 [ 598.336211][ T4903] ext4_mount+0x2d/0x40 [ 598.340356][ T4903] legacy_get_tree+0x70/0xc0 [ 598.345022][ T4903] vfs_get_tree+0x4a/0x1a0 [ 598.349427][ T4903] path_mount+0x11ec/0x1d20 [ 598.353986][ T4903] __se_sys_mount+0x24b/0x2f0 [ 598.358649][ T4903] __x64_sys_mount+0x63/0x70 [ 598.363249][ T4903] do_syscall_64+0x44/0xa0 [ 598.367654][ T4903] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 598.373548][ T4903] RIP: 0033:0x7f1dfce41c2a [ 598.378059][ T4903] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 598.397648][ T4903] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 598.406159][ T4903] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a 22:21:25 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1100, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:25 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4003, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:25 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 598.414125][ T4903] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 598.422091][ T4903] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 598.430053][ T4903] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 598.438012][ T4903] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 598.504568][ T4909] loop3: detected capacity change from 0 to 32 [ 598.511868][ T4909] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (16 blocks) 22:21:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 67) [ 598.547238][ T4909] loop3: detected capacity change from 0 to 32 [ 598.554708][ T4909] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (16 blocks) [ 598.570817][ T4922] loop5: detected capacity change from 0 to 131456 [ 598.578525][ T4922] FAULT_INJECTION: forcing a failure. [ 598.578525][ T4922] name failslab, interval 1, probability 0, space 0, times 0 [ 598.591129][ T4922] CPU: 1 PID: 4922 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 598.599844][ T4922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.603382][ T4896] loop1: detected capacity change from 0 to 131456 [ 598.609888][ T4922] Call Trace: [ 598.609896][ T4922] dump_stack_lvl+0xd6/0x122 [ 598.609921][ T4922] dump_stack+0x11/0x1b [ 598.628384][ T4922] should_fail+0x23c/0x250 [ 598.632856][ T4922] __should_failslab+0x81/0x90 [ 598.637622][ T4922] ? alloc_super+0x3a/0x520 [ 598.642132][ T4922] should_failslab+0x5/0x20 [ 598.646724][ T4922] kmem_cache_alloc_trace+0x52/0x320 [ 598.652014][ T4922] ? disk_unblock_events+0x35/0x40 [ 598.657125][ T4922] ? mount_bdev+0x290/0x290 [ 598.658559][ T4926] loop4: detected capacity change from 0 to 8 [ 598.661637][ T4922] alloc_super+0x3a/0x520 [ 598.661665][ T4922] ? mount_bdev+0x290/0x290 [ 598.661679][ T4922] sget+0x1a5/0x400 [ 598.661697][ T4922] ? test_bdev_super+0x30/0x30 [ 598.661712][ T4922] mount_bdev+0xd3/0x290 [ 598.669856][ T4926] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) [ 598.672078][ T4922] ? ext4_mount+0x40/0x40 [ 598.672099][ T4922] ? ext4_errno_to_code+0x110/0x110 [ 598.672116][ T4922] ext4_mount+0x2d/0x40 [ 598.712290][ T4922] legacy_get_tree+0x70/0xc0 [ 598.716862][ T4922] vfs_get_tree+0x4a/0x1a0 [ 598.721309][ T4922] path_mount+0x11ec/0x1d20 [ 598.725792][ T4922] __se_sys_mount+0x24b/0x2f0 [ 598.730504][ T4922] __x64_sys_mount+0x63/0x70 [ 598.735118][ T4922] do_syscall_64+0x44/0xa0 [ 598.739529][ T4922] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 598.745487][ T4922] RIP: 0033:0x7f1dfce41c2a [ 598.749903][ T4922] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 598.769507][ T4922] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 598.777947][ T4922] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 598.785912][ T4922] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 22:21:26 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 598.793947][ T4922] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 598.801897][ T4922] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 598.809930][ T4922] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 598.823049][ T4911] loop2: detected capacity change from 0 to 131456 22:21:26 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4103, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:26 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000001c0)={0x0, 0x0}) sched_setattr(r0, &(0x7f00000002c0)={0x38, 0xb4debc7f3382f0c4, 0x0, 0x1000, 0x55, 0x6, 0x3, 0x4, 0x8, 0x80000001}, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:26 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 68) [ 598.841424][ T4911] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 598.851579][ T4911] EXT4-fs (loop2): group descriptors corrupted! [ 598.858947][ T4948] loop3: detected capacity change from 0 to 32 [ 598.866235][ T4926] loop4: detected capacity change from 0 to 8 [ 598.866911][ T4948] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (16 blocks) [ 598.872593][ T4926] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) [ 598.913484][ T4959] loop5: detected capacity change from 0 to 131456 [ 598.920703][ T4959] FAULT_INJECTION: forcing a failure. [ 598.920703][ T4959] name failslab, interval 1, probability 0, space 0, times 0 [ 598.933320][ T4959] CPU: 1 PID: 4959 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 598.942054][ T4959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.952098][ T4959] Call Trace: [ 598.955365][ T4959] dump_stack_lvl+0xd6/0x122 [ 598.959944][ T4959] dump_stack+0x11/0x1b [ 598.964097][ T4959] should_fail+0x23c/0x250 [ 598.968508][ T4959] ? kzalloc+0x1d/0x30 [ 598.972572][ T4959] __should_failslab+0x81/0x90 [ 598.977341][ T4959] should_failslab+0x5/0x20 [ 598.981912][ T4959] __kmalloc+0x6f/0x350 [ 598.986058][ T4959] kzalloc+0x1d/0x30 [ 598.989956][ T4959] security_sb_alloc+0x3c/0x180 [ 598.994803][ T4959] alloc_super+0x10b/0x520 [ 598.999298][ T4959] ? mount_bdev+0x290/0x290 [ 599.003890][ T4959] sget+0x1a5/0x400 [ 599.007755][ T4959] ? test_bdev_super+0x30/0x30 [ 599.012511][ T4959] mount_bdev+0xd3/0x290 [ 599.016750][ T4959] ? ext4_mount+0x40/0x40 [ 599.021198][ T4959] ? ext4_errno_to_code+0x110/0x110 [ 599.026390][ T4959] ext4_mount+0x2d/0x40 [ 599.030538][ T4959] legacy_get_tree+0x70/0xc0 [ 599.035120][ T4959] vfs_get_tree+0x4a/0x1a0 [ 599.039585][ T4959] path_mount+0x11ec/0x1d20 [ 599.044090][ T4959] __se_sys_mount+0x24b/0x2f0 [ 599.048767][ T4959] __x64_sys_mount+0x63/0x70 [ 599.053356][ T4959] do_syscall_64+0x44/0xa0 [ 599.057843][ T4959] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 599.063810][ T4959] RIP: 0033:0x7f1dfce41c2a [ 599.068216][ T4959] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.087819][ T4959] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 599.096229][ T4959] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 599.104275][ T4959] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 22:21:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1200, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 599.112250][ T4959] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 599.120272][ T4959] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 599.128253][ T4959] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 599.141843][ T4948] loop3: detected capacity change from 0 to 32 [ 599.152977][ T4948] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (16 blocks) [ 599.185610][ T4982] loop4: detected capacity change from 0 to 9 [ 599.194862][ T4982] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) [ 599.202829][ T4980] loop1: detected capacity change from 0 to 131456 22:21:26 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 69) 22:21:26 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4800, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 599.272407][ T4996] loop5: detected capacity change from 0 to 131456 [ 599.279407][ T4998] loop3: detected capacity change from 0 to 36 [ 599.287350][ T4996] FAULT_INJECTION: forcing a failure. [ 599.287350][ T4996] name failslab, interval 1, probability 0, space 0, times 0 [ 599.300020][ T4996] CPU: 1 PID: 4996 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 599.308706][ T4996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 599.318807][ T4996] Call Trace: [ 599.322084][ T4996] dump_stack_lvl+0xd6/0x122 [ 599.326742][ T4996] dump_stack+0x11/0x1b [ 599.331024][ T4996] should_fail+0x23c/0x250 [ 599.335470][ T4996] ? kzalloc+0x1d/0x30 [ 599.339525][ T4996] __should_failslab+0x81/0x90 [ 599.344357][ T4996] should_failslab+0x5/0x20 [ 599.348880][ T4996] __kmalloc+0x6f/0x350 [ 599.353017][ T4996] kzalloc+0x1d/0x30 [ 599.356895][ T4996] security_sb_alloc+0x3c/0x180 [ 599.361732][ T4996] alloc_super+0x10b/0x520 [ 599.366140][ T4996] ? mount_bdev+0x290/0x290 [ 599.370639][ T4996] sget+0x1a5/0x400 [ 599.374435][ T4996] ? test_bdev_super+0x30/0x30 [ 599.379190][ T4996] mount_bdev+0xd3/0x290 [ 599.383415][ T4996] ? ext4_mount+0x40/0x40 [ 599.387726][ T4996] ? ext4_errno_to_code+0x110/0x110 [ 599.392906][ T4996] ext4_mount+0x2d/0x40 [ 599.397117][ T4996] legacy_get_tree+0x70/0xc0 [ 599.401758][ T4996] vfs_get_tree+0x4a/0x1a0 [ 599.406169][ T4996] path_mount+0x11ec/0x1d20 [ 599.410675][ T4996] __se_sys_mount+0x24b/0x2f0 [ 599.415358][ T4996] __x64_sys_mount+0x63/0x70 [ 599.419999][ T4996] do_syscall_64+0x44/0xa0 [ 599.424399][ T4996] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 599.430329][ T4996] RIP: 0033:0x7f1dfce41c2a [ 599.434742][ T4996] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.454336][ T4996] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 599.462754][ T4996] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 599.470728][ T4996] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 599.478782][ T4996] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 599.486736][ T4996] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 599.494693][ T4996] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 599.504779][ T4998] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (18 blocks) 22:21:26 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:26 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 70) [ 599.520157][ T4982] loop4: detected capacity change from 0 to 9 [ 599.529748][ T4982] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (4 blocks) 22:21:27 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1400, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:27 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x202000, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 599.578902][ T4998] loop3: detected capacity change from 0 to 36 [ 599.612430][ T4998] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (18 blocks) [ 599.641753][ T5027] loop5: detected capacity change from 0 to 131456 [ 599.649203][ T5029] loop1: detected capacity change from 0 to 131456 [ 599.657416][ T5009] loop2: detected capacity change from 0 to 131456 [ 599.664129][ T5027] FAULT_INJECTION: forcing a failure. [ 599.664129][ T5027] name failslab, interval 1, probability 0, space 0, times 0 [ 599.676757][ T5027] CPU: 1 PID: 5027 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 599.678684][ T5028] loop4: detected capacity change from 0 to 10 [ 599.685491][ T5027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 599.685503][ T5027] Call Trace: [ 599.685510][ T5027] dump_stack_lvl+0xd6/0x122 [ 599.709525][ T5027] dump_stack+0x11/0x1b [ 599.713709][ T5027] should_fail+0x23c/0x250 [ 599.718108][ T5027] __should_failslab+0x81/0x90 [ 599.722859][ T5027] should_failslab+0x5/0x20 [ 599.727409][ T5027] kmem_cache_alloc_node_trace+0x61/0x2e0 [ 599.733115][ T5027] ? __kmalloc_node+0x30/0x40 [ 599.737775][ T5027] __kmalloc_node+0x30/0x40 [ 599.742261][ T5027] kvmalloc_node+0x81/0x110 [ 599.746752][ T5027] __list_lru_init+0x2d7/0x680 [ 599.751523][ T5027] alloc_super+0x490/0x520 [ 599.755930][ T5027] ? mount_bdev+0x290/0x290 [ 599.760417][ T5027] sget+0x1a5/0x400 [ 599.764351][ T5027] ? test_bdev_super+0x30/0x30 [ 599.769097][ T5027] mount_bdev+0xd3/0x290 [ 599.773323][ T5027] ? ext4_mount+0x40/0x40 [ 599.777640][ T5027] ? ext4_errno_to_code+0x110/0x110 [ 599.782824][ T5027] ext4_mount+0x2d/0x40 [ 599.786962][ T5027] legacy_get_tree+0x70/0xc0 [ 599.791548][ T5027] vfs_get_tree+0x4a/0x1a0 [ 599.795947][ T5027] path_mount+0x11ec/0x1d20 [ 599.800468][ T5027] __se_sys_mount+0x24b/0x2f0 [ 599.805132][ T5027] __x64_sys_mount+0x63/0x70 [ 599.809770][ T5027] do_syscall_64+0x44/0xa0 [ 599.814237][ T5027] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 599.820134][ T5027] RIP: 0033:0x7f1dfce41c2a [ 599.824530][ T5027] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.844121][ T5027] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 599.852522][ T5027] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 599.860527][ T5027] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 599.868478][ T5027] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 599.876431][ T5027] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 599.884385][ T5027] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:27 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4c00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 599.894165][ T5009] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 599.904287][ T5009] EXT4-fs (loop2): group descriptors corrupted! 22:21:27 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(0x0, 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:27 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 599.944239][ T5028] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (5 blocks) 22:21:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 71) [ 600.003684][ T5051] loop3: detected capacity change from 0 to 38 [ 600.010848][ T5052] loop4: detected capacity change from 0 to 16 [ 600.029325][ T5051] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (19 blocks) [ 600.069759][ T5063] loop5: detected capacity change from 0 to 131456 [ 600.076863][ T5052] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (8 blocks) [ 600.093659][ T5063] FAULT_INJECTION: forcing a failure. [ 600.093659][ T5063] name failslab, interval 1, probability 0, space 0, times 0 [ 600.106300][ T5063] CPU: 1 PID: 5063 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 600.114971][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 600.125016][ T5063] Call Trace: [ 600.128287][ T5063] dump_stack_lvl+0xd6/0x122 [ 600.132874][ T5063] dump_stack+0x11/0x1b [ 600.137023][ T5063] should_fail+0x23c/0x250 [ 600.141512][ T5063] ? __list_lru_init+0x70/0x680 [ 600.146364][ T5063] __should_failslab+0x81/0x90 [ 600.151199][ T5063] should_failslab+0x5/0x20 [ 600.155690][ T5063] __kmalloc+0x6f/0x350 [ 600.159907][ T5063] __list_lru_init+0x70/0x680 [ 600.164582][ T5063] alloc_super+0x4bf/0x520 [ 600.168994][ T5063] ? mount_bdev+0x290/0x290 [ 600.173490][ T5063] sget+0x1a5/0x400 [ 600.177324][ T5063] ? test_bdev_super+0x30/0x30 [ 600.182193][ T5063] mount_bdev+0xd3/0x290 [ 600.186504][ T5063] ? ext4_mount+0x40/0x40 [ 600.190827][ T5063] ? ext4_errno_to_code+0x110/0x110 [ 600.196015][ T5063] ext4_mount+0x2d/0x40 [ 600.200165][ T5063] legacy_get_tree+0x70/0xc0 [ 600.204811][ T5063] vfs_get_tree+0x4a/0x1a0 [ 600.209269][ T5063] path_mount+0x11ec/0x1d20 [ 600.213792][ T5063] __se_sys_mount+0x24b/0x2f0 [ 600.218445][ T5063] __x64_sys_mount+0x63/0x70 [ 600.223016][ T5063] do_syscall_64+0x44/0xa0 [ 600.227415][ T5063] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 600.233316][ T5063] RIP: 0033:0x7f1dfce41c2a [ 600.237751][ T5063] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 600.257446][ T5063] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 600.265836][ T5063] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 600.273784][ T5063] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 600.281732][ T5063] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 600.289679][ T5063] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 600.297651][ T5063] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 600.310232][ T5051] loop3: detected capacity change from 0 to 38 22:21:27 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 72) [ 600.321454][ T5051] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (19 blocks) [ 600.334822][ T5052] loop4: detected capacity change from 0 to 16 [ 600.342495][ T5052] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (8 blocks) [ 600.356769][ T5036] loop1: detected capacity change from 0 to 131456 22:21:27 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:27 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d5) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:27 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2010, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 600.388257][ T5090] loop3: detected capacity change from 0 to 48 [ 600.396628][ T5090] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (24 blocks) [ 600.420282][ T5094] loop5: detected capacity change from 0 to 131456 [ 600.428940][ T5094] FAULT_INJECTION: forcing a failure. [ 600.428940][ T5094] name failslab, interval 1, probability 0, space 0, times 0 [ 600.438518][ T5101] loop4: detected capacity change from 0 to 16 [ 600.441576][ T5094] CPU: 0 PID: 5094 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 600.456307][ T5094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 600.466419][ T5094] Call Trace: [ 600.469684][ T5094] dump_stack_lvl+0xd6/0x122 [ 600.474295][ T5094] dump_stack+0x11/0x1b [ 600.478432][ T5094] should_fail+0x23c/0x250 [ 600.482883][ T5094] __should_failslab+0x81/0x90 [ 600.487629][ T5094] should_failslab+0x5/0x20 [ 600.492156][ T5094] kmem_cache_alloc_node_trace+0x61/0x2e0 [ 600.497868][ T5094] ? __kmalloc_node+0x30/0x40 [ 600.502525][ T5094] __kmalloc_node+0x30/0x40 [ 600.507029][ T5094] kvmalloc_node+0x81/0x110 [ 600.511521][ T5094] __list_lru_init+0x2d7/0x680 [ 600.516272][ T5094] alloc_super+0x4bf/0x520 [ 600.520676][ T5094] ? mount_bdev+0x290/0x290 [ 600.525159][ T5094] sget+0x1a5/0x400 [ 600.528950][ T5094] ? test_bdev_super+0x30/0x30 [ 600.533699][ T5094] mount_bdev+0xd3/0x290 [ 600.537923][ T5094] ? ext4_mount+0x40/0x40 [ 600.542400][ T5094] ? ext4_errno_to_code+0x110/0x110 [ 600.547591][ T5094] ext4_mount+0x2d/0x40 [ 600.551730][ T5094] legacy_get_tree+0x70/0xc0 [ 600.556385][ T5094] vfs_get_tree+0x4a/0x1a0 [ 600.560782][ T5094] path_mount+0x11ec/0x1d20 [ 600.565342][ T5094] __se_sys_mount+0x24b/0x2f0 [ 600.570006][ T5094] __x64_sys_mount+0x63/0x70 [ 600.574582][ T5094] do_syscall_64+0x44/0xa0 [ 600.578989][ T5094] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 600.584868][ T5094] RIP: 0033:0x7f1dfce41c2a [ 600.589267][ T5094] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 600.608870][ T5094] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 600.617267][ T5094] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 600.625223][ T5094] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 600.633177][ T5094] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 600.641136][ T5094] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 600.649095][ T5094] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 600.707796][ T5106] loop2: detected capacity change from 0 to 131456 [ 600.717646][ T5106] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 600.727810][ T5106] EXT4-fs (loop2): group descriptors corrupted! 22:21:28 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(0x0, 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 600.880245][ T5090] loop3: detected capacity change from 0 to 48 [ 600.886624][ T5101] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (8 blocks) [ 600.909146][ T5090] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (24 blocks) [ 600.931864][ T5122] loop1: detected capacity change from 0 to 131456 22:21:28 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6800, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:28 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2200, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:28 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 73) [ 601.109170][ T5135] loop4: detected capacity change from 0 to 17 [ 601.124317][ T5135] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (8 blocks) [ 601.129245][ T5141] loop3: detected capacity change from 0 to 52 [ 601.142049][ T5141] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (26 blocks) [ 601.149479][ T5143] loop5: detected capacity change from 0 to 131456 22:21:28 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6c00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 601.161434][ T5143] FAULT_INJECTION: forcing a failure. [ 601.161434][ T5143] name failslab, interval 1, probability 0, space 0, times 0 [ 601.174073][ T5143] CPU: 1 PID: 5143 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 601.182740][ T5143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 601.192785][ T5143] Call Trace: [ 601.196042][ T5143] dump_stack_lvl+0xd6/0x122 [ 601.200610][ T5143] dump_stack+0x11/0x1b [ 601.204739][ T5143] should_fail+0x23c/0x250 [ 601.209139][ T5143] ? ext4_fill_super+0x3d/0x7840 [ 601.214055][ T5143] __should_failslab+0x81/0x90 [ 601.218800][ T5143] should_failslab+0x5/0x20 [ 601.223347][ T5143] __kmalloc_track_caller+0x6d/0x350 [ 601.228606][ T5143] ? bdev_name+0x1e1/0x240 [ 601.233143][ T5143] kstrdup+0x31/0x70 [ 601.237072][ T5143] ext4_fill_super+0x3d/0x7840 [ 601.241877][ T5143] ? vsnprintf+0xe8f/0xed0 [ 601.246269][ T5143] ? snprintf+0x83/0xb0 [ 601.250461][ T5143] ? set_blocksize+0x197/0x270 [ 601.255206][ T5143] mount_bdev+0x1e8/0x290 [ 601.259576][ T5143] ? ext4_mount+0x40/0x40 [ 601.263887][ T5143] ? ext4_errno_to_code+0x110/0x110 [ 601.269064][ T5143] ext4_mount+0x2d/0x40 [ 601.273196][ T5143] legacy_get_tree+0x70/0xc0 [ 601.277764][ T5143] vfs_get_tree+0x4a/0x1a0 [ 601.282205][ T5143] path_mount+0x11ec/0x1d20 [ 601.286801][ T5143] __se_sys_mount+0x24b/0x2f0 [ 601.291515][ T5143] __x64_sys_mount+0x63/0x70 [ 601.296084][ T5143] do_syscall_64+0x44/0xa0 [ 601.300489][ T5143] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 601.306365][ T5143] RIP: 0033:0x7f1dfce41c2a [ 601.310754][ T5143] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 601.330337][ T5143] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 601.338726][ T5143] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 601.346674][ T5143] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 601.354622][ T5143] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 601.362574][ T5143] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 601.370546][ T5143] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 601.386245][ T5135] loop4: detected capacity change from 0 to 17 [ 601.400021][ T5135] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (8 blocks) 22:21:28 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:28 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 74) [ 601.429991][ T5156] loop3: detected capacity change from 0 to 54 [ 601.438367][ T5156] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (27 blocks) 22:21:28 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2500, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 601.470874][ T5164] loop5: detected capacity change from 0 to 131456 [ 601.479731][ T5164] FAULT_INJECTION: forcing a failure. [ 601.479731][ T5164] name failslab, interval 1, probability 0, space 0, times 0 [ 601.480446][ T5156] loop3: detected capacity change from 0 to 54 [ 601.492383][ T5164] CPU: 0 PID: 5164 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 601.492403][ T5164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 601.516468][ T5173] loop4: detected capacity change from 0 to 18 [ 601.517215][ T5164] Call Trace: [ 601.517223][ T5164] dump_stack_lvl+0xd6/0x122 [ 601.524532][ T5156] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (27 blocks) [ 601.526718][ T5164] dump_stack+0x11/0x1b [ 601.526748][ T5164] should_fail+0x23c/0x250 [ 601.533669][ T5173] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (9 blocks) [ 601.540678][ T5164] __should_failslab+0x81/0x90 [ 601.540702][ T5164] ? ext4_fill_super+0x62/0x7840 [ 601.568101][ T5164] should_failslab+0x5/0x20 [ 601.572599][ T5164] kmem_cache_alloc_trace+0x52/0x320 [ 601.577860][ T5164] ext4_fill_super+0x62/0x7840 [ 601.582602][ T5164] ? vsnprintf+0xe8f/0xed0 [ 601.587041][ T5164] ? snprintf+0x83/0xb0 [ 601.591235][ T5164] ? set_blocksize+0x197/0x270 [ 601.595991][ T5164] mount_bdev+0x1e8/0x290 [ 601.600299][ T5164] ? ext4_mount+0x40/0x40 [ 601.604686][ T5164] ? ext4_errno_to_code+0x110/0x110 [ 601.609861][ T5164] ext4_mount+0x2d/0x40 [ 601.613990][ T5164] legacy_get_tree+0x70/0xc0 [ 601.618556][ T5164] vfs_get_tree+0x4a/0x1a0 [ 601.623002][ T5164] path_mount+0x11ec/0x1d20 [ 601.627523][ T5164] __se_sys_mount+0x24b/0x2f0 [ 601.632179][ T5164] __x64_sys_mount+0x63/0x70 [ 601.636752][ T5164] do_syscall_64+0x44/0xa0 [ 601.641190][ T5164] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 601.647239][ T5164] RIP: 0033:0x7f1dfce41c2a [ 601.651633][ T5164] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 22:21:29 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(0x0, 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 601.671297][ T5164] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 601.679746][ T5164] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 601.687707][ T5164] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 601.695692][ T5164] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 601.703639][ T5164] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 601.711588][ T5164] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 601.770809][ T5181] loop2: detected capacity change from 0 to 131456 [ 601.778319][ T5181] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 601.788427][ T5181] EXT4-fs (loop2): group descriptors corrupted! 22:21:29 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7400, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:29 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) removexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="6275025a0b044290"]) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:29 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 75) [ 601.974822][ T5191] loop3: detected capacity change from 0 to 58 [ 601.983707][ T5191] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (29 blocks) [ 602.002634][ T5173] loop4: detected capacity change from 0 to 18 [ 602.009813][ T5173] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (9 blocks) [ 602.031620][ T5205] loop5: detected capacity change from 0 to 131456 [ 602.038996][ T5191] loop3: detected capacity change from 0 to 58 [ 602.040482][ T5205] FAULT_INJECTION: forcing a failure. [ 602.040482][ T5205] name failslab, interval 1, probability 0, space 0, times 0 [ 602.057804][ T5205] CPU: 1 PID: 5205 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 602.059076][ T5191] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (29 blocks) [ 602.066472][ T5205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 602.066485][ T5205] Call Trace: [ 602.066492][ T5205] dump_stack_lvl+0xd6/0x122 [ 602.090288][ T5217] loop1: detected capacity change from 0 to 131456 [ 602.093892][ T5205] dump_stack+0x11/0x1b [ 602.093914][ T5205] should_fail+0x23c/0x250 [ 602.108948][ T5205] __should_failslab+0x81/0x90 [ 602.113705][ T5205] ? ext4_fill_super+0x1f0/0x7840 [ 602.118730][ T5205] should_failslab+0x5/0x20 [ 602.123231][ T5205] kmem_cache_alloc_trace+0x52/0x320 [ 602.128514][ T5205] ? ext4_fill_super+0x62/0x7840 [ 602.133463][ T5205] ext4_fill_super+0x1f0/0x7840 [ 602.138344][ T5205] ? vsnprintf+0xe8f/0xed0 [ 602.142782][ T5205] ? snprintf+0x83/0xb0 [ 602.146952][ T5205] ? set_blocksize+0x197/0x270 [ 602.151778][ T5205] mount_bdev+0x1e8/0x290 [ 602.156107][ T5205] ? ext4_mount+0x40/0x40 [ 602.160434][ T5205] ? ext4_errno_to_code+0x110/0x110 [ 602.165633][ T5205] ext4_mount+0x2d/0x40 [ 602.169784][ T5205] legacy_get_tree+0x70/0xc0 [ 602.174379][ T5205] vfs_get_tree+0x4a/0x1a0 [ 602.178795][ T5205] path_mount+0x11ec/0x1d20 [ 602.183342][ T5205] __se_sys_mount+0x24b/0x2f0 [ 602.188061][ T5205] __x64_sys_mount+0x63/0x70 [ 602.192679][ T5205] do_syscall_64+0x44/0xa0 [ 602.197102][ T5205] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 602.203050][ T5205] RIP: 0033:0x7f1dfce41c2a [ 602.207496][ T5205] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 22:21:29 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 602.227108][ T5205] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 602.235501][ T5205] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 602.243453][ T5205] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 602.251440][ T5205] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 602.259398][ T5205] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 602.267406][ T5205] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:29 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2e00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:29 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7a00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:29 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 76) [ 602.350581][ T5236] loop4: detected capacity change from 0 to 23 [ 602.356773][ T5240] loop5: detected capacity change from 0 to 131456 [ 602.358717][ T5240] FAULT_INJECTION: forcing a failure. [ 602.358717][ T5240] name failslab, interval 1, probability 0, space 0, times 0 [ 602.371058][ T5243] loop3: detected capacity change from 0 to 61 [ 602.375945][ T5240] CPU: 0 PID: 5240 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 602.386908][ T5236] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (11 blocks) [ 602.390716][ T5240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 602.390728][ T5240] Call Trace: [ 602.390734][ T5240] dump_stack_lvl+0xd6/0x122 [ 602.400306][ T5243] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (30 blocks) [ 602.410107][ T5240] dump_stack+0x11/0x1b [ 602.410128][ T5240] should_fail+0x23c/0x250 [ 602.435935][ T5240] ? mempool_alloc_slab+0x16/0x20 [ 602.441003][ T5240] __should_failslab+0x81/0x90 [ 602.445746][ T5240] should_failslab+0x5/0x20 [ 602.450239][ T5240] kmem_cache_alloc+0x4f/0x300 [ 602.455040][ T5240] mempool_alloc_slab+0x16/0x20 [ 602.459881][ T5240] ? mempool_free+0x130/0x130 [ 602.464548][ T5240] mempool_alloc+0x9d/0x310 [ 602.469039][ T5240] ? pagecache_get_page+0x7aa/0x910 [ 602.474291][ T5240] bio_alloc_bioset+0xcc/0x530 [ 602.479038][ T5240] ? __find_get_block+0x669/0x930 [ 602.484082][ T5240] submit_bh_wbc+0x130/0x330 [ 602.488660][ T5240] ? __getblk_gfp+0x4d3/0x590 [ 602.493317][ T5240] submit_bh+0x21/0x30 [ 602.497362][ T5240] ? __wait_on_buffer+0x60/0x60 [ 602.502194][ T5240] ext4_read_bh+0xf1/0x170 [ 602.506661][ T5240] ext4_sb_bread_unmovable+0xf7/0x1a0 [ 602.512020][ T5240] ext4_fill_super+0x427/0x7840 [ 602.516873][ T5240] ? vsnprintf+0xe8f/0xed0 [ 602.521273][ T5240] ? snprintf+0x83/0xb0 [ 602.525409][ T5240] ? set_blocksize+0x197/0x270 [ 602.530163][ T5240] mount_bdev+0x1e8/0x290 [ 602.534546][ T5240] ? ext4_mount+0x40/0x40 [ 602.539071][ T5240] ? ext4_errno_to_code+0x110/0x110 [ 602.544246][ T5240] ext4_mount+0x2d/0x40 [ 602.548378][ T5240] legacy_get_tree+0x70/0xc0 [ 602.552968][ T5240] vfs_get_tree+0x4a/0x1a0 [ 602.557447][ T5240] path_mount+0x11ec/0x1d20 [ 602.561948][ T5240] __se_sys_mount+0x24b/0x2f0 [ 602.566624][ T5240] __x64_sys_mount+0x63/0x70 [ 602.571208][ T5240] do_syscall_64+0x44/0xa0 [ 602.575609][ T5240] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 602.581536][ T5240] RIP: 0033:0x7f1dfce41c2a [ 602.585944][ T5240] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 602.605540][ T5240] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 602.613981][ T5240] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 602.621937][ T5240] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 602.629885][ T5240] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 602.637836][ T5240] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 22:21:30 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 602.645791][ T5240] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 602.684355][ T5240] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 602.691001][ T5240] EXT4-fs (loop5): mount failed [ 602.704856][ T5251] loop2: detected capacity change from 0 to 131456 [ 602.713585][ T5251] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 602.723701][ T5251] EXT4-fs (loop2): group descriptors corrupted! 22:21:30 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 77) 22:21:30 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) ptrace(0x8, r0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r1 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r2, r3, 0x0, 0x80001d00c0d0) sendfile(r1, r2, &(0x7f00000001c0)=0x2, 0x2e) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) syz_mount_image$ext4(&(0x7f00000002c0)='ext3\x00', &(0x7f0000000380)='./bus\x00', 0xaf4, 0x7, &(0x7f0000000740)=[{&(0x7f00000003c0)="a710d6c1fe802f98fd2e5f55301d1c20cd126a08c59d2c5f80ba3ae253dcf7831a09a1b30be04e45f88297cb67969476b81a1e6b08193280f16b19a396d0483e0d86c441210d5b9be9d7b2f6a358d408f14d3b05", 0x54, 0x1}, {&(0x7f0000000440)="e2b04ca5d584415dc08cef32fa782cff6ee9affff000b095d22b0c5e7c0a640aaa58b28cbe40b8923d6c49510be07f551949a230a17b6dc4204d21cf282c67b13f29ff5eeb8d600b0211504ae412db8c539bd213231ffb873963a3d83ad7af7bd18597dfb60ebd863fd27249dde2e0a2a82d37ac8e379c6b7132560ebfb780beefa7c84b3ec7699849cdd3786d954ce0e8eb8b5a7b04d74e81254d4a775ffa79ab8997447275e6749ab72d367fecf9838db0aa64bbac8607e8898a863bdefc14723dcf37c5e173a9c46000c6f88a98a7057bfa3cc2bcb1bef94afb905d47665180651a19b9", 0xe5, 0x6}, {&(0x7f0000000540)="b2569427f5995ade995272b4dfcfcc9b5dce946f2878bb350f21f8da7a64b8cdc98602124f2763a4fe3f9877d7f1e48c0c7c61ce1dbc950d5c82be2b9750d34234f247e939e6636692c6bb0eaf0dc1093e5a6826af5b27e481f937f59bbe4f6aa9a9a5e279f349060a9e80d698e9a7231ffa452bd03ca7", 0x77, 0x54}, {&(0x7f00000005c0)="51d1fd31c52269d919a317c445f72382c8f3b1f47c954da0a0da7a999323935efd4e40836f4c70361ec434ee55de8a628d7910c2ebc58fec9cd305c9b4ffc5c95a0da62ae8ed6eaadce9e3", 0x4b, 0x7}, {&(0x7f0000000640)="93ab7cef959c765eccd0ce88a136e0d76d848fd2c437ab5a0ca423444b029b84b740969d65765c8d148fc33e29594d576bf31b4575c2f2e849d8b8b37acf082de62d240df8ae86aa2934b35ffe64998b2eea9f4595dc03228b00a01791184e84c1e5662c1fe6bf07e04b82b83f29848e142c36b3510bc677a02a34b0825333a00cea7f092ea174188bfd2fbd695cf2150d5fc9082f2fd5cf353cbad23a04153e8e8893c6991e8a4cfb4062871ca19c4cfab3157f3b97ef5315b413551e3a56", 0xbf, 0x7}, {&(0x7f0000000700)="1ad23655318f482f634849ca3d1ec5ee1b0e9e9be7b5f2bb8a65ff80ad6faa5bc47ed036ffa528", 0x27, 0xfffffffffffffffa}, {&(0x7f0000001600)="b30b985a3e2d57d800a0098877b080cd24b8996f22422921cf5fcb623cd9b49b24d313c93e03259761ee60965c2c581d03fe14f25672f7bdb998e865a02c22f7e17a33dc95b51188a1b847d0177db28ae737d95de490e6eaf9bb02b073ddcf71b45b0cb211be3ee6394296a0a0276e7d5abd77cc4f61a0de89a3e62bc6616168e2a270c5d9967d499d70ebe0949250cd0ae275b6a032ff2834aac8c80183dae7c8f4e7cd6acdfc58c62b878435d8853d3f51ceaaafa1739f038b1850deaff66a975d22c3d3324714281efd1b1770aa8c9819ae7fad04e698532d9d9f148dedde40eed6e0e562f2988789cc6ff926650247e75203395a37209c6430487974f775b5fa44546820a6c9486aba94d5a004ad7c33ed7fa3ffeba32ad19d3b4e991959e6c8cf5eb51965aceac211bfdfd126543bfe4eac5d62968394af2fe406a89c8f3bc833034834fc594a32a9aa5066bb0e94b47ffd90957adae2af5f72b904eb5c66d11a4914bc8263d5b94fae2c62726ce81228dd81995f74c711b01a2f72eca628b5ca1bef94ada3790e5b27c164c6d7c56fb7008917c0d797f4dcdefbda0712c0f32c4e6f54acce316290f5ed0f7c896e731d1b80c9cc60f2525971247b6d614162ddcf4ac7328cee874cfeb70acedc299f3e6e468b727098b7322a51cbc1b6530fbad8b35d8739ccf33a881f1ebc8f535879d410a3cb4f8a9d962b39015694d8171d8fbe0b943b36dbf3b8db3f0d160001f585b7f03c486594646ea954db9b9cd049a192f81e26f9e0ad44c5c6484174b9fe258f44629410320cdcfdfd97156f4a9ce9941355520dfaafaf927553f753b9986a03ed5d6ccfb3370d070e3f6f1a2c0fbe2ae86e7a7aeb37d6223ad1101500403d8b3edd51c3a01b8c87e0fe973ffbdc66e0a730c16327a80c46888ff0a53da8208de651663b6174fc53e45ca751f94b4db59a9f628fdfc5f35cae64ee4a995010df553ea68a331203d3bd8130e47a262ed9beb006a388f2f99992f8c81fb82e2d31eba5bc2fd5b2135f1872b07f9a641705c4d50fe18398c7bca198cb99c8c65a0bb285bce394bc3b0cf90685833a26e3a10cfb917a1122cc03be3e95e6a7c1cc3032ab98c64e2bd168d2aaa57423c4c8b7fe04656763af7bde54e174b54b4ff6a6789171539780c2d2b3a5882f4a99e48781dce91edca205026200dffdc24ed644cb33f2b73e42292389ea08f1970e018baab6a6d689480dad0cbbbba207acb2bd168c984c182686703c93b8d8e55ef556f0eac714d560fa5eae343a958ea839c9762ac571920caeb5e317cbb8d841f0558a409c99e40bc4620ff2f05bd1f6dce22f748111ee517ff8480bcbbf65e265cc61b9135fdae23e6645296a430c57a7c83933771753a2216b8638217ee9d41dc1df8e1fcb8afc747725ef3820379aed2ec69b6c03be6293a2c4b458bec51635afb881b61e738aa94b898274f8a055a6ad6d6cede3d3834647712080f7c4770c9463be9a1f124de2db36afd344b2910b54296f9d1d9a8d01479f0a3483702403542db25d658d1fa0e08f43f8e1a91ea98852d06786b408db0658f7d9f61a510ce2d80669cdaaf61e68319feb09e71cc5f2c7f31c3b3bf8f26189a7588beca93eabdc3c8579f95cec4cb87d0871d70aee3ab885fbfa20b15df8f6c3a38432783c4c1fc938bf20419e2308da6a84514244deb3f60f4fd0f213d2a17e0d1d6b9021c451aaef6d49c574b9ca5820cb00a26da4aab37db47b66691e64dd68651f73384ef9fa969fc060e9aafb76dd5f260961041345ca813f875058d3cd41316b844f88ce282b4bc8b2bf4207b2fff10fd5f58aed5e0bea30775d66ccba67ee1ece2f645e740f76d6cc1cd8403a403826f1a8f7391fed6fd225acfa4ee72f6da9c997cf29385121b6614aa3df6ba4fc49cb2fb6dae996f221c92c9ae614c633078dc0b683e44b79a8800c9a45eedd80b8e7823f8e70cdb8f97c5ef013d7130eceb0d4c4f72d5a7febb7d64643fe5da3dbe350b73c4d901df9bc2fa0f241ad530bbc916f17a2a3d79c25b3c0f9d5c066d209bc077f118076024965280e10cc029252cdef9459cd9998dea01f8e5d2114c91d4e3750e9f70794cf35b04c8231052af6f95e8e72c7521476c417539f73f70e583daf79be6b28ab6e15ccc1c62fb6a0175eec45afdfaf8c03e9604bc429132847677ffd4f3a199d47aa074dd27264d475a2574400bde5cc6edea38f36fd7346c6976897d58b6318f738a31161b8290d43b2878658ea786c479dd2ea8607660896f85e6a953c0f8449040e57372a69137f7ae73791070a7ccb14b51d5a0d6788ae3a2e2371c81efceec87dbbc5e5a1f7c47be5fd2990df05dc5795a0e61bc5a0da05fe33954bf40cecfe76517781cdc8de387d6a9ab21e3d9a9cbee3eb225672b544e4407e2858e0772b0bb7d3ccdab7dfec950ee8df2a6d20b297c7f91ab41f584595e2b19508928a3f2ac7e6e90ebe08c92a73d663f164801ced2e55f4090f1830b2e4896ce803726ebadbf723a56f4aa55c78b17e8c6a49921ea72c4b80f8e5f511e355ffb0a1a0d68bdf58e294a3490cb82aecbc84df1200745f6e9e730642194c0ac1b5384c368d4380f89c1de77e1490632e744cc302a13419eec0df336e48c6cd50da2900bda071a02bb773ea581fc68795e104c1438c0bc156293a3f09096746437b3781da31e16f84492c35b81298a232e79eeb19c608b8fbfe0c93a0bcb405eb986305b2d7a67ccf54c48f37a92e3685b601565690dde2f574cb99f7941267008dd3e7693483d2aa1e2ae4326bc8c98bf8d0d8ec1170fa955384c13a1e7b06dba1d8a7cc11c56edb07e964f31d3cc33d3081bf69d08228258ac4f10ec0067703f35dad93210f2fdba8ffc5a18847548861090eb73368909b5df6af2b52246ef82881d5d071a02f742fded3c6d48a6bb0ee978e41c064e8006dacb2f1805ca221f3515315c34df79073c96900a0a8bed213c9ae114ee0e2f3efaa75242d8e4ecf561fbad9cf63fb49a561f7925b8d75acff662de91deb35c93edfbb52d71c16c1af7f4c6c4ad9dd33bafdafe2604e68032948a6607dc1186df88ff2cc20aa6e2e96009623bcd86a71250b4f4628420df06404aaa285c12c84355d5b879514c472943a4b5a65e7150c5f884a13dfcca36f0a099efc1f51dde011a7d81e618e3a91aaf4bea16acd36df374b493d201ca496bba6b4fe61b1ac89a1a7c36af150d20f313c6dbedf22faaaf352a3298c2aa12a2131f7495204fa51321ab40a85c9c67ce0428039c3ea3b5c7614d69cc0610d4d2396a28867399a49284e37195cb73b00b98121cd6c874bd10f2cb47c1cf432051258d27003f1a3eb9983e19ab285322bba173c1dcc29d706995ef51b80a53fcd5bc1694cf7769046c99d46eca33ee2745ca1070375fc44185ee229c70b0108d2458f914de1a9477ca7c13fc92f6b0f1d3c757e33a3feb9b48adf0d075c84d8e27a5a033858d5c72b50597a980cf693e71964c24b1425ede4f820b57a4d1caaa677567dd766263e3e469f91547b260f1ea68ce4d0de8fd6260c465febb704c1222f950d85a922c834eccaec05f125073cf9c1598ca5de81004e31df6c9828d688108893fd9bc2176f768c4a373cf42b2efe099a2bcc25af197c164d1fd24e55be4db92e92aabd808fe0384ff517c63daf26ca62b34dd515a2338d4254561ff46c8179eaf25094add596003b758293f82663bfecf37f32cd4bea5f246ae1070d9434c9ce6f865cc435fc498a4740ee9e684e3191dbed26ebbf259d641b770feed10cebe2c7685dfdb1c410d3aa23ad23fc2499a4559bd83abb4510c2e071ed3e23e7eb86cc1486f2a95f00043b95ab532f023533d29b531f6c8c47ebd52681a3924e474edf364aef2bc4b3728c9763de5925c4c3c8b1445af93bf681f2a3e32a38674dec6291f6fcceb6ff13809526325722c6b9c95e1494ee3f3b111548ff156c41a464de4dd163b65da9b875815d9b6bc35ce3f8e5b0ce77f7c0a02a04df6336389d06ba7daa05c0c05435afae0de0ffb30c5a995fe09db7db2a756f11bb5df855dbc9c465f95fb749f6f734a5282f26a8ef37ca144b3ea027392ac7a024be1a575a093ef87a8300669f69aa33a884edd6b502915ac2b93b4ad3e54ba94d3cc1fff1b9f8158870130e5cb6c0d3b310a8532eb84e4fb42f0cde798cef9e56b33555f60aa7463ec3d43e27aa7465a419f93b240953f5ec8c8c08541b85e1d579aff06b822a492c9ae90ad3348f1309f60033564bc3dc7b624d0ded7a7e8e9f3624e9b711a471f9c001bb7bc0b05db20166aee58190604bab86aec40770046e09adb126fe119f253fe447b9d41d0bdbe72fd003ef78043ab65bd7132406922b0313c24134491f24ee151688151b5013fe0ac31c6de44954d11207203fedb3702f1095c09204bc28158982c830679419f857baaf676ea2e7faade82963905d7bb040ae3cedd28c2cbab52c727166bccb52bc24f286d664a7930016b4be3cf98866d1a60548ad4eda51997499c8fc12e6fd628c61a507ce2a2aa3a151b00ce0c81f92213d2009e3fc89c50d19ee0f83977c16f541e98ad9138aae3363918c7c72384dc209938fafba2189d6929c5b737f3ec8e08247705134ebbf866eefac9e02da02eb161eb321da2d265ee1979e2bb29c5bbe8d0cac7cacb406127d5b329e9bd6e85235b2951753f50b86b2ff9c1c589d0be2e5f89a65bf91cc2c328ffa9fae6e36761fe326c2f3667a0f4a9fbb6a708528d78509e68d791d2a0c987ab8ff7a4c6557b07effdb452387111aa0d513e6c752d64e8af018501654c593dd7867aa8539fc1e8eb440059e5857a09fe4edf8e6739c9135d3835ba4b176cc9c75461f028a592aac0381696754544c636d49d9871add019ea88eec922dc4e908d9b86fdf523d56250a002de174999985553410eec88258073554229cb1fe38e18e3341b1d470fe80e2045d14f04d9d0dc53400600e02c59bee5268f66b5cbbde45a9b0413db99a7b5cf8c147fa1b3d2fc35fafaa2e31a4656d6750e60ba0ebd136f5dfe7f251c83452eb4080f32dbdf2c1d6b794110d5b88a781a3dffe5fa137e17296078e77650f41c6ffa89ba060c2a20395afa28cc1e2bfa1244074678ac82e5ba1956ee0e9297bdf4d7bd8a5cc48d86b01e1fa4bd840df4b87ccd14c188ba5431c937978d4602a1558355e0e99b0e9544eda563deb9692eff661756b7ba73110f00ca8b5d0db55f77271ba3a8be8ec884529c5a7c70ff658527b6e74943917dd79e91dda6f055ad0a37514f5f4519df2b0c79902a5c4c8f2fadbca9dfd29e3d0e5509d056f2b94620fd7c923709f9d5a86fed5c6f7d5e489985d2aa50cda074d9bd107134b72eac8a3026a0424b8f02ba613ce9f5ea149862264e94bcb4a108b7f41cc6b51ad486af116f4248efa55ce72f5dd333a520d6675eeb457bf496e330f05571ba0eb3762a22db690fbfdab60b05ee810bed56075b2be2f0a900d60a5de989ab9aa750399cf4b9e55ff28f4e0f8fc53fbec96a62794538d5601ffe77442e9332ffd6e5732419252844bb5a8fde028765f706ec6e9a72561909d944f98c284507521125985557070c00b3712a29519e32ebeb668ce159c7d52b444e866d5aa817525c7eb3b7bda8d8915694dfda5cbbf6b65601eabe7f83aa7d36db84878eac3b8905a05ce9053326b3ce216dcb759ec2f3a43aeef06c04d96bfe5e5bc5c10570073fb564ef1ecb277097924e0d5b5af08b2f301d65ad0c654", 0x1000, 0x3}], 0x282008, &(0x7f0000000900)=ANY=[@ANYBLOB="71756f74612c6e6f6175746f5f64615f616c6c6f632c6a6f75726e616c5f696f7072696f3d3078303030303030303030303030303030342c6d69904079cb6eb234c59242c6c2534098e5697864662c70726a71756f74612c6a71666d743d76667376312c636f6d6d69743d3078303030303030303030303030303030372c6f626a5f757365723d2f70726f632f7379732f6e65742f697076342f74637070636f6e67657374696f6e5f636f6e74726f6c002c005ca2ee18828b1acd22bdacd96c3a536c10500cc93e1e18dd5480daec8927361ed3c8ea4d1b303f81e7a888814b48c2d59e0954f68fb8a5effb123ff2f4bc"]) fcntl$setlease(r4, 0x409, 0x20000000) pwritev(r4, &(0x7f00000001c0), 0x0, 0xffff8000, 0x5) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:30 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 602.921876][ T5236] loop4: detected capacity change from 0 to 23 [ 602.936540][ T5243] loop3: detected capacity change from 0 to 61 [ 602.941193][ T5236] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (11 blocks) [ 602.957698][ T5243] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (30 blocks) [ 602.989863][ T5279] loop5: detected capacity change from 0 to 131456 [ 603.002475][ T5280] loop1: detected capacity change from 0 to 131456 [ 603.011609][ T5279] FAULT_INJECTION: forcing a failure. [ 603.011609][ T5279] name failslab, interval 1, probability 0, space 0, times 0 [ 603.024325][ T5279] CPU: 1 PID: 5279 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 603.032993][ T5279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 603.043046][ T5279] Call Trace: [ 603.046360][ T5279] dump_stack_lvl+0xd6/0x122 [ 603.050962][ T5279] dump_stack+0x11/0x1b [ 603.055141][ T5279] should_fail+0x23c/0x250 [ 603.059548][ T5279] __should_failslab+0x81/0x90 [ 603.064357][ T5279] should_failslab+0x5/0x20 [ 603.068863][ T5279] kmem_cache_alloc_node+0x61/0x2c0 [ 603.074100][ T5279] ? create_task_io_context+0x36/0x210 [ 603.079626][ T5279] create_task_io_context+0x36/0x210 [ 603.084914][ T5279] submit_bio_checks+0x7c3/0x850 [ 603.089853][ T5279] ? mempool_alloc_slab+0x16/0x20 [ 603.094890][ T5279] ? mempool_free+0x130/0x130 [ 603.099562][ T5279] submit_bio_noacct+0x33/0x7d0 [ 603.104417][ T5279] ? bio_add_page+0x380/0x460 [ 603.109083][ T5279] submit_bio+0x10c/0x190 [ 603.113436][ T5279] submit_bh_wbc+0x2f3/0x330 [ 603.118060][ T5279] submit_bh+0x21/0x30 [ 603.122110][ T5279] ? __wait_on_buffer+0x60/0x60 [ 603.126957][ T5279] ext4_read_bh+0xf1/0x170 [ 603.131414][ T5279] ext4_sb_bread_unmovable+0xf7/0x1a0 [ 603.136797][ T5279] ext4_fill_super+0x427/0x7840 [ 603.141632][ T5279] ? vsnprintf+0xe8f/0xed0 [ 603.146029][ T5279] ? snprintf+0x83/0xb0 [ 603.150185][ T5279] ? set_blocksize+0x197/0x270 [ 603.154971][ T5279] mount_bdev+0x1e8/0x290 [ 603.159282][ T5279] ? ext4_mount+0x40/0x40 [ 603.163602][ T5279] ? ext4_errno_to_code+0x110/0x110 [ 603.168805][ T5279] ext4_mount+0x2d/0x40 [ 603.173011][ T5279] legacy_get_tree+0x70/0xc0 [ 603.177586][ T5279] vfs_get_tree+0x4a/0x1a0 [ 603.182027][ T5279] path_mount+0x11ec/0x1d20 [ 603.186575][ T5279] __se_sys_mount+0x24b/0x2f0 [ 603.191239][ T5279] __x64_sys_mount+0x63/0x70 [ 603.195891][ T5279] do_syscall_64+0x44/0xa0 [ 603.200297][ T5279] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 603.206179][ T5279] RIP: 0033:0x7f1dfce41c2a [ 603.210577][ T5279] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 603.230168][ T5279] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 603.238563][ T5279] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 603.246579][ T5279] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 603.254617][ T5279] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 603.262582][ T5279] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 603.270533][ T5279] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:30 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff], 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 603.286511][ T5290] loop4: detected capacity change from 0 to 31 22:21:30 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbe00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 603.318325][ T5290] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (15 blocks) [ 603.343005][ T5279] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 603.352745][ T5279] EXT4-fs (loop5): mount failed 22:21:30 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 78) [ 603.371797][ T5290] loop4: detected capacity change from 0 to 31 [ 603.378454][ T5290] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (15 blocks) [ 603.403689][ T5310] loop3: detected capacity change from 0 to 95 [ 603.411143][ T5310] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (47 blocks) [ 603.425712][ T5294] loop1: detected capacity change from 0 to 131456 [ 603.480669][ T5322] loop2: detected capacity change from 0 to 131456 [ 603.489022][ T5322] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 603.499120][ T5322] EXT4-fs (loop2): group descriptors corrupted! 22:21:30 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() pipe(&(0x7f00000002c0)) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/attr/current\x00', 0x2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:30 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 603.582452][ T5330] loop5: detected capacity change from 0 to 131456 [ 603.624720][ T5330] FAULT_INJECTION: forcing a failure. [ 603.624720][ T5330] name failslab, interval 1, probability 0, space 0, times 0 [ 603.637364][ T5330] CPU: 0 PID: 5330 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 603.646088][ T5330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 603.656124][ T5330] Call Trace: [ 603.659398][ T5330] dump_stack_lvl+0xd6/0x122 [ 603.663992][ T5330] dump_stack+0x11/0x1b [ 603.668146][ T5330] should_fail+0x23c/0x250 [ 603.672554][ T5330] __should_failslab+0x81/0x90 [ 603.677324][ T5330] should_failslab+0x5/0x20 [ 603.681831][ T5330] kmem_cache_alloc_node_trace+0x61/0x2e0 [ 603.687580][ T5330] ? __crypto_alg_lookup+0x36d/0x3a0 [ 603.692861][ T5330] ? __kmalloc_node+0x30/0x40 [ 603.697564][ T5330] __kmalloc_node+0x30/0x40 [ 603.702126][ T5330] crypto_create_tfm_node+0x4a/0x1f0 [ 603.707485][ T5330] ? crypto_alg_mod_lookup+0x397/0x4e0 [ 603.712946][ T5330] crypto_alloc_tfm_node+0x100/0x290 [ 603.718331][ T5330] crypto_alloc_shash+0x2b/0x30 [ 603.723180][ T5330] ext4_fill_super+0x657/0x7840 [ 603.728034][ T5330] ? vsnprintf+0xe8f/0xed0 [ 603.732451][ T5330] ? snprintf+0x83/0xb0 [ 603.736608][ T5330] ? set_blocksize+0x197/0x270 [ 603.741432][ T5330] mount_bdev+0x1e8/0x290 [ 603.745788][ T5330] ? ext4_mount+0x40/0x40 [ 603.750117][ T5330] ? ext4_errno_to_code+0x110/0x110 [ 603.755444][ T5330] ext4_mount+0x2d/0x40 [ 603.759601][ T5330] legacy_get_tree+0x70/0xc0 [ 603.764669][ T5330] vfs_get_tree+0x4a/0x1a0 [ 603.769079][ T5330] path_mount+0x11ec/0x1d20 22:21:31 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 603.773631][ T5330] __se_sys_mount+0x24b/0x2f0 [ 603.778317][ T5330] __x64_sys_mount+0x63/0x70 [ 603.782903][ T5330] do_syscall_64+0x44/0xa0 [ 603.787323][ T5330] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 603.793275][ T5330] RIP: 0033:0x7f1dfce41c2a [ 603.797736][ T5330] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 603.817365][ T5330] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 603.822879][ T5341] loop4: detected capacity change from 0 to 32 [ 603.825818][ T5330] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 603.825834][ T5330] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 603.847902][ T5330] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 603.855928][ T5330] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 603.863886][ T5330] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 603.871943][ T5330] EXT4-fs (loop5): Cannot load crc32c driver. [ 603.881111][ T5329] loop1: detected capacity change from 0 to 131456 [ 603.896134][ T5341] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (16 blocks) [ 603.942471][ T5310] loop3: detected capacity change from 0 to 95 [ 603.970442][ T5310] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (47 blocks) 22:21:31 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 79) 22:21:31 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbf00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 604.076896][ T5341] loop4: detected capacity change from 0 to 32 [ 604.088792][ T5341] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (16 blocks) [ 604.100320][ T5367] loop5: detected capacity change from 0 to 131456 [ 604.111206][ T5371] loop3: detected capacity change from 0 to 95 [ 604.119859][ T5371] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (47 blocks) [ 604.136642][ T5367] FAULT_INJECTION: forcing a failure. [ 604.136642][ T5367] name failslab, interval 1, probability 0, space 0, times 0 [ 604.149243][ T5367] CPU: 0 PID: 5367 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 604.157911][ T5367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 604.167944][ T5367] Call Trace: [ 604.171209][ T5367] dump_stack_lvl+0xd6/0x122 [ 604.175857][ T5367] dump_stack+0x11/0x1b [ 604.180057][ T5367] should_fail+0x23c/0x250 [ 604.184496][ T5367] __should_failslab+0x81/0x90 [ 604.189277][ T5367] should_failslab+0x5/0x20 [ 604.193762][ T5367] kmem_cache_alloc_node_trace+0x61/0x2e0 [ 604.199479][ T5367] ? __kmalloc_node+0x30/0x40 [ 604.204138][ T5367] __kmalloc_node+0x30/0x40 [ 604.208714][ T5367] kvmalloc_node+0x81/0x110 [ 604.213216][ T5367] ext4_fill_super+0x318b/0x7840 [ 604.218160][ T5367] ? vsnprintf+0xe8f/0xed0 [ 604.222574][ T5367] ? snprintf+0x83/0xb0 [ 604.226713][ T5367] mount_bdev+0x1e8/0x290 [ 604.231033][ T5367] ? ext4_mount+0x40/0x40 [ 604.235451][ T5367] ? ext4_errno_to_code+0x110/0x110 [ 604.240677][ T5367] ext4_mount+0x2d/0x40 [ 604.244899][ T5367] legacy_get_tree+0x70/0xc0 [ 604.249476][ T5367] vfs_get_tree+0x4a/0x1a0 [ 604.253875][ T5367] path_mount+0x11ec/0x1d20 [ 604.258394][ T5367] __se_sys_mount+0x24b/0x2f0 [ 604.263058][ T5367] __x64_sys_mount+0x63/0x70 [ 604.267649][ T5367] do_syscall_64+0x44/0xa0 [ 604.272055][ T5367] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 604.277948][ T5367] RIP: 0033:0x7f1dfce41c2a [ 604.282350][ T5367] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 604.301987][ T5367] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 604.310451][ T5367] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 604.318475][ T5367] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 22:21:31 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff], 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 604.326428][ T5367] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 604.334395][ T5367] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 604.342485][ T5367] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 604.350483][ T5367] EXT4-fs (loop5): not enough memory [ 604.359154][ T5329] loop1: detected capacity change from 0 to 131456 22:21:31 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4203, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:31 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000380)={0x0, 0x0}) capset(&(0x7f00000004c0)={0x20071026, r0}, &(0x7f0000000500)={0x0, 0x50, 0x80000001, 0x7, 0x9}) prlimit64(r0, 0xf, &(0x7f00000001c0)={0x10000, 0x4}, &(0x7f00000002c0)) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x3f, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000000440)="28a4fbf6e98d5b9c533235fbabb46470174c335007ea1142d1c685cca378b495560d5db199a6efc8a50b482c6cd21a409b31538ea158e1a3c312ae2a5f6c4d01808d7723d5a1f086a6f7a4b74adeec511c781bec6783cf6a75ff7a847c", 0x5d, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) getrlimit(0xc, &(0x7f0000000000)) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 604.380004][ T5371] loop3: detected capacity change from 0 to 95 [ 604.387421][ T5371] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (47 blocks) [ 604.411272][ T5391] loop4: detected capacity change from 0 to 33 [ 604.418243][ T5391] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (16 blocks) 22:21:31 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:31 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:31 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 80) [ 604.501400][ T5406] loop2: detected capacity change from 0 to 131456 [ 604.508962][ T5406] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 604.519071][ T5406] EXT4-fs (loop2): group descriptors corrupted! [ 604.683693][ T5413] loop3: detected capacity change from 0 to 96 [ 604.694834][ T5413] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (48 blocks) [ 604.710104][ T5412] capability: warning: `syz-executor.1' uses deprecated v2 capabilities in a way that may be insecure [ 604.724946][ T5419] loop5: detected capacity change from 0 to 131456 [ 604.727410][ T5391] loop4: detected capacity change from 0 to 33 [ 604.738208][ T5419] FAULT_INJECTION: forcing a failure. [ 604.738208][ T5419] name failslab, interval 1, probability 0, space 0, times 0 [ 604.738858][ T5391] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (16 blocks) [ 604.750857][ T5419] CPU: 0 PID: 5419 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 604.768856][ T5419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 604.778911][ T5419] Call Trace: [ 604.782197][ T5419] dump_stack_lvl+0xd6/0x122 [ 604.786774][ T5419] dump_stack+0x11/0x1b [ 604.790914][ T5419] should_fail+0x23c/0x250 [ 604.795333][ T5419] ? mempool_alloc_slab+0x16/0x20 [ 604.800348][ T5419] __should_failslab+0x81/0x90 [ 604.805099][ T5419] should_failslab+0x5/0x20 [ 604.809586][ T5419] kmem_cache_alloc+0x4f/0x300 [ 604.814336][ T5419] mempool_alloc_slab+0x16/0x20 [ 604.819169][ T5419] ? mempool_free+0x130/0x130 [ 604.823904][ T5419] mempool_alloc+0x9d/0x310 [ 604.828393][ T5419] ? pagecache_get_page+0x7aa/0x910 [ 604.833579][ T5419] bio_alloc_bioset+0xcc/0x530 [ 604.838401][ T5419] ? __find_get_block+0x669/0x930 [ 604.843415][ T5419] submit_bh_wbc+0x130/0x330 [ 604.848059][ T5419] ? __getblk_gfp+0x3f/0x590 [ 604.852652][ T5419] submit_bh+0x21/0x30 [ 604.856699][ T5419] ext4_read_bh_lock+0x184/0x1b0 [ 604.861623][ T5419] ext4_fill_super+0x3662/0x7840 [ 604.866596][ T5419] ? vsnprintf+0xe8f/0xed0 [ 604.870995][ T5419] ? snprintf+0x83/0xb0 [ 604.875174][ T5419] mount_bdev+0x1e8/0x290 [ 604.879486][ T5419] ? ext4_mount+0x40/0x40 [ 604.883810][ T5419] ? ext4_errno_to_code+0x110/0x110 [ 604.889034][ T5419] ext4_mount+0x2d/0x40 [ 604.893187][ T5419] legacy_get_tree+0x70/0xc0 [ 604.897821][ T5419] vfs_get_tree+0x4a/0x1a0 [ 604.902233][ T5419] path_mount+0x11ec/0x1d20 [ 604.906754][ T5419] __se_sys_mount+0x24b/0x2f0 [ 604.911439][ T5419] __x64_sys_mount+0x63/0x70 [ 604.916015][ T5419] do_syscall_64+0x44/0xa0 [ 604.920449][ T5419] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 604.926345][ T5419] RIP: 0033:0x7f1dfce41c2a [ 604.930815][ T5419] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 604.950404][ T5419] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 604.958851][ T5419] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 604.966886][ T5419] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 604.974840][ T5419] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 604.982800][ T5419] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 604.991025][ T5419] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 605.007838][ T5412] loop1: detected capacity change from 0 to 131456 [ 605.018143][ T5413] loop3: detected capacity change from 0 to 96 22:21:32 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4303, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 605.027937][ T5413] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (48 blocks) [ 605.040808][ T5419] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 605.049570][ T5419] EXT4-fs (loop5): mount failed 22:21:32 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xedc0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:32 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 81) [ 605.124456][ T5443] loop3: detected capacity change from 0 to 118 [ 605.133306][ T5443] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (59 blocks) [ 605.134098][ T5447] loop5: detected capacity change from 0 to 131456 [ 605.151218][ T5447] FAULT_INJECTION: forcing a failure. [ 605.151218][ T5447] name failslab, interval 1, probability 0, space 0, times 0 [ 605.163836][ T5447] CPU: 1 PID: 5447 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 605.172507][ T5447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 605.182554][ T5447] Call Trace: [ 605.185830][ T5447] dump_stack_lvl+0xd6/0x122 [ 605.190455][ T5447] dump_stack+0x11/0x1b [ 605.194588][ T5447] should_fail+0x23c/0x250 [ 605.199045][ T5447] ? mempool_alloc_slab+0x16/0x20 [ 605.204047][ T5447] __should_failslab+0x81/0x90 [ 605.208793][ T5447] should_failslab+0x5/0x20 [ 605.213356][ T5447] kmem_cache_alloc+0x4f/0x300 [ 605.218104][ T5447] ? cpumask_next+0x58/0x80 [ 605.222584][ T5447] mempool_alloc_slab+0x16/0x20 [ 605.227427][ T5447] ? mempool_free+0x130/0x130 [ 605.232078][ T5447] mempool_alloc+0x9d/0x310 [ 605.236558][ T5447] ? pagecache_get_page+0x7aa/0x910 [ 605.241739][ T5447] bio_alloc_bioset+0xcc/0x530 [ 605.246480][ T5447] ? __find_get_block+0x669/0x930 [ 605.251559][ T5447] submit_bh_wbc+0x130/0x330 [ 605.256234][ T5447] ? __getblk_gfp+0x3f/0x590 [ 605.260826][ T5447] submit_bh+0x21/0x30 [ 605.264949][ T5447] ext4_read_bh_lock+0x184/0x1b0 [ 605.270019][ T5447] ext4_fill_super+0x3662/0x7840 [ 605.274934][ T5447] ? vsnprintf+0xe8f/0xed0 [ 605.279330][ T5447] ? snprintf+0x83/0xb0 [ 605.283499][ T5447] mount_bdev+0x1e8/0x290 [ 605.287831][ T5447] ? ext4_mount+0x40/0x40 [ 605.292145][ T5447] ? ext4_errno_to_code+0x110/0x110 [ 605.297446][ T5447] ext4_mount+0x2d/0x40 [ 605.301647][ T5447] legacy_get_tree+0x70/0xc0 [ 605.306312][ T5447] vfs_get_tree+0x4a/0x1a0 [ 605.310794][ T5447] path_mount+0x11ec/0x1d20 [ 605.315282][ T5447] __se_sys_mount+0x24b/0x2f0 [ 605.319963][ T5447] __x64_sys_mount+0x63/0x70 [ 605.324533][ T5447] do_syscall_64+0x44/0xa0 [ 605.328930][ T5447] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 605.334818][ T5447] RIP: 0033:0x7f1dfce41c2a [ 605.339300][ T5447] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 605.358924][ T5447] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 605.367325][ T5447] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a 22:21:32 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff], 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:32 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, 0x0, 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 605.375289][ T5447] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 605.383238][ T5447] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 605.391199][ T5447] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 605.399221][ T5447] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:32 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x400009, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000400)=@abs={0x1}, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x3, 0x10000001, 0x4, 0x3, 0x9, 0x4, 0x7, 0x8000005, 0x24}, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x24030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000380)="20000000000100000c000000ce0000000f000000010000000000000000ac580bad2000000020000020000000d7f4655fd7f48777fff6f0d28f67856ab160d4c5655f0100ffff53ef010001000000d7f4655f00000000013c76000100000000000000", 0x62, 0x3ff}, {&(0x7f0000010400), 0x0, 0x800}, {0x0}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = socket(0x1, 0x80000, 0x7fffffff) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setresuid(0x0, r3, 0x0) fchown(r1, r3, 0xee00) r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r4, &(0x7f0000002680), 0x0, 0x2, 0x0) r5 = openat(r4, &(0x7f0000000080)='./bus\x00', 0x504c0, 0x64) sendfile(r1, r5, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 605.429526][ T5447] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 605.437884][ T5443] loop3: detected capacity change from 0 to 118 [ 605.438480][ T5447] EXT4-fs (loop5): mount failed [ 605.450502][ T5443] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (59 blocks) [ 605.464805][ T5465] loop4: detected capacity change from 0 to 33 22:21:32 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 82) [ 605.491287][ T5465] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (16 blocks) [ 605.507032][ T5476] loop1: detected capacity change from 0 to 264192 [ 605.534109][ T5482] loop5: detected capacity change from 0 to 131456 [ 605.708942][ T5488] loop2: detected capacity change from 0 to 131456 [ 605.724318][ T5488] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 605.734422][ T5488] EXT4-fs (loop2): group descriptors corrupted! [ 605.740949][ T5482] FAULT_INJECTION: forcing a failure. [ 605.740949][ T5482] name failslab, interval 1, probability 0, space 0, times 0 22:21:33 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4800, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:33 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfeff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 605.753570][ T5482] CPU: 0 PID: 5482 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 605.762249][ T5482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 605.772305][ T5482] Call Trace: [ 605.775570][ T5482] dump_stack_lvl+0xd6/0x122 [ 605.780155][ T5482] dump_stack+0x11/0x1b [ 605.784304][ T5482] should_fail+0x23c/0x250 [ 605.788797][ T5482] __should_failslab+0x81/0x90 [ 605.793563][ T5482] ? mb_cache_create+0x40/0x350 [ 605.798497][ T5482] should_failslab+0x5/0x20 [ 605.801799][ T5499] loop3: detected capacity change from 0 to 127 [ 605.803025][ T5482] kmem_cache_alloc_trace+0x52/0x320 [ 605.803048][ T5482] mb_cache_create+0x40/0x350 [ 605.810064][ T5499] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (63 blocks) [ 605.814539][ T5482] ext4_xattr_create_cache+0xf/0x10 [ 605.814566][ T5482] ext4_fill_super+0x526f/0x7840 [ 605.825193][ T5502] loop4: detected capacity change from 0 to 36 [ 605.828717][ T5482] mount_bdev+0x1e8/0x290 [ 605.836386][ T5502] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (18 blocks) [ 605.838925][ T5482] ? ext4_mount+0x40/0x40 [ 605.863004][ T5482] ? ext4_errno_to_code+0x110/0x110 [ 605.868211][ T5482] ext4_mount+0x2d/0x40 [ 605.872532][ T5482] legacy_get_tree+0x70/0xc0 [ 605.877202][ T5482] vfs_get_tree+0x4a/0x1a0 [ 605.881596][ T5482] path_mount+0x11ec/0x1d20 [ 605.886078][ T5482] __se_sys_mount+0x24b/0x2f0 [ 605.890860][ T5482] __x64_sys_mount+0x63/0x70 [ 605.895459][ T5482] do_syscall_64+0x44/0xa0 [ 605.899881][ T5482] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 605.905808][ T5482] RIP: 0033:0x7f1dfce41c2a [ 605.910229][ T5482] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 605.929824][ T5482] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 605.938213][ T5482] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 605.946340][ T5482] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 605.954292][ T5482] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 605.962247][ T5482] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 605.970269][ T5482] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 605.978353][ T5482] EXT4-fs (loop5): Failed to create ea_block_cache 22:21:33 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 83) [ 606.018715][ T5502] loop4: detected capacity change from 0 to 36 [ 606.018739][ T5499] loop3: detected capacity change from 0 to 127 [ 606.030174][ T5502] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (18 blocks) [ 606.042753][ T5499] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (63 blocks) 22:21:33 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) prlimit64(r0, 0xf, &(0x7f00000001c0)={0x3b, 0x4}, &(0x7f00000002c0)) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) prlimit64(r0, 0xd, &(0x7f0000000600)={0x0, 0x7ff}, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f00000005c0)={0x38, 0x0, 0x10000020, 0x4, 0x20, 0x3, 0x5, 0xffff, 0xffc8, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c82}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) syz_mount_image$vfat(&(0x7f0000000640), &(0x7f0000000680)='./file1\x00', 0x1, 0x4, &(0x7f0000000980)=[{&(0x7f00000006c0)="5c85f55fc111c8d4bb082c2bff2a0b3e753730b4ed6a624d8dc40e587054927ec06994adc6c0442732bad8a34897c777cf9ee55d852ea58d4d231ad9a4139dc627f9e4313d8a8738958bf05c4cb1693a7bd08995e1e7061eac2430eecd4e46181f36e6dab9d458bbae8eb205f5b5c9b5f08c490ff28121b5c4f78977917f6d68101d6fd42132e1deb95b51baefb971cec41960ee77c57624470fdcd5e119ca4547ee6d1a9f94abd7b3a60641a7e0c6c0d37505a6dd", 0xb5, 0x1}, {&(0x7f0000000780)="5f734edd486b38620766569d662f2101cc91ec2cd2f54bf60c02728544275b64340cb6a2d4853b9e6bf25e1b54c4e95a5285dcfd27c1a7c6ac4e597b302fd9b59b7c45a67c88f0688692de9f22c81667ecf4d827728ec2b353e3122b0766e6e9b09942279dd22b3bfd9e7904bbc6615c9eb0ae21336871469b2893ff5d0987f08386dc8fca74867e48a818563ca465788b30eec6dd6e28e84ddcb8e15d", 0x9d, 0x20}, {&(0x7f0000000840)="4ae3702db6ed0885da53ebf3615aa04bf7b981ec2363f4d8a02e2768d4edfe858912a5c44bee1524389d89883b3b91f309d98b748feb0acdfae1968db1b7fd9ff6b8a1a11f28c522bd8ac9090efdb911f0388dd0d496e9228a3f40c3b5f9fe63a4b1bdb1d0fe8cfd8896ef7a9c8d58e6a2136453b8c720fa5dd3de0a4873f9ca", 0x80, 0xffffffffffff0917}, {&(0x7f00000008c0)="db3e60e5aefe99d68120f5268523fb1ae9af2806867b52549881cb426aaa7d083df5a2267ed00c7dd91f26bd867994ac0269e7a3d436fd3503b881f22cf56581ff59e5e5a79213b29c25e0d05d07c047bc8d39aebf4d4a21f842fd772134154a2fd8a66ac01d8e135f993bfc38df38d3e54b4bd3cdeaf915b074e9897f5028eecb77dd", 0x83, 0x8}], 0x42000, &(0x7f0000000a00)={[{@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@uni_xlate}, {@rodir}, {@shortname_winnt}, {@uni_xlateno}, {@utf8}, {@numtail}], [{@fsname}, {@obj_user={'obj_user', 0x3d, 'ext4\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\\'}}, {@dont_measure}, {@seclabel}]}) clone(0x50002800, &(0x7f0000000380)="3981c448ae218d9c838a5ab9048f53f5527290141f9f52f129037210b70ae58b6ea2a096127dcb9a1b590c7fc3d60ae176e3f0c659ee1b4de6def435e957e09367eace26c20795900c9293f682c204a36b2fa4ec3ed934f57865b00977d0af6c24e52d6fe6a625f96fa2dac818ae5e4a0228b58b24a2867187bb3cb81186b1a720ee99670e2ec06cc5648bc5c68e28a4248105796dfc3ad26e6e7c55968b866755190d45bbe078551be28e4a557355f55f7fdb9b84cf1fdfd28ddac83afbced36b4731a7597a18debd313dbdf421006233aaddbd859a181b5f5df30b49b10fa16d399c4e46", &(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)="08b2ed61d2ba35d7cd17e03d45c753a5e898ea22eab1af57415db18bda2916462f041b9e2e5925bec50c8640503c41047a59db4ccfe6e9d8b622fc261314882cc0d2a6324e0b3929127b22721e234895fdc896d1c9cd5f5f401312f7bbce28e3ec69b6525c0a2b139e8fdc9df7462fdbdc57b32959b2a0daadaef427f53273c902ca73303feb126ee338fe1bd5333d8f2fab16d34e1399b13790511b293f7b9e37db014b52718293") fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 606.069223][ T5526] loop5: detected capacity change from 0 to 131456 [ 606.087232][ T5526] FAULT_INJECTION: forcing a failure. [ 606.087232][ T5526] name failslab, interval 1, probability 0, space 0, times 0 [ 606.099872][ T5526] CPU: 0 PID: 5526 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 606.108541][ T5526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.118585][ T5526] Call Trace: [ 606.121906][ T5526] dump_stack_lvl+0xd6/0x122 [ 606.126524][ T5526] dump_stack+0x11/0x1b [ 606.130695][ T5526] should_fail+0x23c/0x250 [ 606.135110][ T5526] ? mb_cache_create+0xb9/0x350 [ 606.139967][ T5526] __should_failslab+0x81/0x90 [ 606.144774][ T5526] should_failslab+0x5/0x20 [ 606.149289][ T5526] __kmalloc+0x6f/0x350 [ 606.153445][ T5526] ? kmem_cache_alloc_trace+0x221/0x320 [ 606.158989][ T5526] ? mb_cache_create+0x40/0x350 [ 606.163838][ T5526] mb_cache_create+0xb9/0x350 [ 606.168697][ T5526] ext4_xattr_create_cache+0xf/0x10 [ 606.173881][ T5526] ext4_fill_super+0x526f/0x7840 [ 606.178818][ T5526] mount_bdev+0x1e8/0x290 [ 606.183187][ T5526] ? ext4_mount+0x40/0x40 [ 606.187567][ T5526] ? ext4_errno_to_code+0x110/0x110 [ 606.192766][ T5526] ext4_mount+0x2d/0x40 [ 606.196967][ T5526] legacy_get_tree+0x70/0xc0 [ 606.201574][ T5526] vfs_get_tree+0x4a/0x1a0 [ 606.206048][ T5526] path_mount+0x11ec/0x1d20 [ 606.210555][ T5526] __se_sys_mount+0x24b/0x2f0 [ 606.215237][ T5526] __x64_sys_mount+0x63/0x70 [ 606.219946][ T5526] do_syscall_64+0x44/0xa0 [ 606.224361][ T5526] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 606.230260][ T5526] RIP: 0033:0x7f1dfce41c2a [ 606.234678][ T5526] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 606.249368][ T5532] loop1: detected capacity change from 0 to 131456 [ 606.254281][ T5526] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 22:21:33 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:33 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, 0x0, 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 606.254303][ T5526] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 606.254316][ T5526] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 606.254327][ T5526] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 606.254337][ T5526] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 606.301152][ T5526] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 606.309195][ T5526] EXT4-fs (loop5): Failed to create ea_block_cache 22:21:33 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 84) 22:21:33 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4803, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:33 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xff0f, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 606.391292][ T5546] loop5: detected capacity change from 0 to 131456 [ 606.393473][ T5553] loop3: detected capacity change from 0 to 127 [ 606.400222][ T5555] loop4: detected capacity change from 0 to 36 [ 606.409271][ T5553] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (63 blocks) [ 606.421047][ T5546] FAULT_INJECTION: forcing a failure. [ 606.421047][ T5546] name failslab, interval 1, probability 0, space 0, times 0 [ 606.433676][ T5546] CPU: 0 PID: 5546 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 606.442393][ T5546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.452437][ T5546] Call Trace: [ 606.455705][ T5546] dump_stack_lvl+0xd6/0x122 [ 606.460292][ T5546] dump_stack+0x11/0x1b [ 606.464491][ T5546] should_fail+0x23c/0x250 [ 606.468941][ T5546] __should_failslab+0x81/0x90 [ 606.473754][ T5546] ? mb_cache_create+0x40/0x350 [ 606.478650][ T5546] should_failslab+0x5/0x20 [ 606.483163][ T5546] kmem_cache_alloc_trace+0x52/0x320 [ 606.488435][ T5546] mb_cache_create+0x40/0x350 [ 606.493144][ T5546] ext4_xattr_create_cache+0xf/0x10 [ 606.498386][ T5546] ext4_fill_super+0x526f/0x7840 [ 606.503328][ T5546] mount_bdev+0x1e8/0x290 [ 606.507677][ T5546] ? ext4_mount+0x40/0x40 [ 606.512000][ T5546] ? ext4_errno_to_code+0x110/0x110 [ 606.517184][ T5546] ext4_mount+0x2d/0x40 [ 606.521338][ T5546] legacy_get_tree+0x70/0xc0 [ 606.525952][ T5546] vfs_get_tree+0x4a/0x1a0 [ 606.530349][ T5546] path_mount+0x11ec/0x1d20 [ 606.534906][ T5546] __se_sys_mount+0x24b/0x2f0 [ 606.539574][ T5546] __x64_sys_mount+0x63/0x70 [ 606.544150][ T5546] do_syscall_64+0x44/0xa0 [ 606.548555][ T5546] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 606.554459][ T5546] RIP: 0033:0x7f1dfce41c2a [ 606.558855][ T5546] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 606.579099][ T5546] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 606.587511][ T5546] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 606.595516][ T5546] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 606.603474][ T5546] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 606.611433][ T5546] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 606.619400][ T5546] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 606.627416][ T5546] EXT4-fs (loop5): Failed to create ea_block_cache [ 606.627996][ T5555] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (18 blocks) [ 606.827218][ T5563] loop2: detected capacity change from 0 to 131456 [ 606.839341][ T5563] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 606.849454][ T5563] EXT4-fs (loop2): group descriptors corrupted! [ 606.865172][ T5532] loop1: detected capacity change from 0 to 131456 22:21:34 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) ptrace$cont(0x1f, r0, 0x8001, 0x643) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = getpid() r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x101801, 0x0) setsockopt$netlink_NETLINK_RX_RING(r3, 0x10e, 0x6, &(0x7f0000000380)={0x32ed, 0xff, 0x5, 0x36e9}, 0x10) ptrace$setregs(0xf, r2, 0x7, &(0x7f00000001c0)="9febaa0ce68b82249c2780f50a79a68648729733de6695f5157419165ce3acaac8bbc4464631722272b44d8c50d90c8d59b86214") r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) mount(&(0x7f00000004c0)=ANY=[@ANYBLOB="2f6465762f6d643000526324d410fa58d90e8621cd0c40b8da32d5c7d8360913737cfb579fa58a9000000000000000a5bdff6fa27eab1811612bb75aa08d3d76a8880c9fed2bd15d5e72231bf40a78c8f90cd494a744add26ba5045694c751284afc7e3a6a"], &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='devtmpfs\x00', 0x4040, &(0x7f0000000480)='/dev/nvram\x00') 22:21:34 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 85) [ 606.878302][ T5555] loop4: detected capacity change from 0 to 36 [ 606.887474][ T5553] loop3: detected capacity change from 0 to 127 [ 606.906474][ T5555] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (18 blocks) [ 606.916898][ T5553] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (63 blocks) [ 606.932054][ T5591] loop1: detected capacity change from 0 to 131456 [ 606.944167][ T5596] loop5: detected capacity change from 0 to 131456 [ 606.954840][ T5596] FAULT_INJECTION: forcing a failure. [ 606.954840][ T5596] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 606.968238][ T5596] CPU: 0 PID: 5596 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 606.976900][ T5596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.986951][ T5596] Call Trace: [ 606.990249][ T5596] dump_stack_lvl+0xd6/0x122 [ 606.994873][ T5596] dump_stack+0x11/0x1b [ 606.999029][ T5596] should_fail+0x23c/0x250 [ 607.003456][ T5596] __alloc_pages+0x102/0x320 [ 607.008029][ T5596] alloc_pages+0x382/0x3d0 [ 607.012427][ T5596] get_zeroed_page+0x13/0x40 [ 607.017051][ T5596] ext4_calculate_overhead+0x68/0x9d0 [ 607.022423][ T5596] ? register_shrinker+0xdc/0xf0 [ 607.027422][ T5596] ? mb_cache_create+0x310/0x350 [ 607.032372][ T5596] ext4_fill_super+0x5719/0x7840 [ 607.037288][ T5596] mount_bdev+0x1e8/0x290 [ 607.041594][ T5596] ? ext4_mount+0x40/0x40 [ 607.045918][ T5596] ? ext4_errno_to_code+0x110/0x110 [ 607.051131][ T5596] ext4_mount+0x2d/0x40 [ 607.055267][ T5596] legacy_get_tree+0x70/0xc0 [ 607.059953][ T5596] vfs_get_tree+0x4a/0x1a0 [ 607.064449][ T5596] path_mount+0x11ec/0x1d20 [ 607.068952][ T5596] __se_sys_mount+0x24b/0x2f0 [ 607.073629][ T5596] __x64_sys_mount+0x63/0x70 [ 607.078222][ T5596] do_syscall_64+0x44/0xa0 [ 607.082645][ T5596] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 607.088628][ T5596] RIP: 0033:0x7f1dfce41c2a [ 607.093040][ T5596] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 607.112637][ T5596] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 607.121036][ T5596] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a 22:21:34 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4c00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 607.129004][ T5596] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 607.136959][ T5596] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 607.144912][ T5596] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 607.152866][ T5596] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:34 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffe, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:34 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) setrlimit(0x2, &(0x7f00000001c0)={0xffffffffffff1283, 0x7fff}) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) [ 607.215222][ T5610] loop4: detected capacity change from 0 to 38 22:21:34 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:34 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, 0x0, 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 607.258793][ T5610] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (19 blocks) [ 607.281887][ T5619] loop3: detected capacity change from 0 to 127 [ 607.289664][ T5617] loop1: detected capacity change from 0 to 131456 [ 607.338103][ T5619] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (63 blocks) [ 607.348009][ T5610] loop4: detected capacity change from 0 to 38 [ 607.356001][ T5610] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (19 blocks) 22:21:34 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 86) [ 607.551742][ T5636] loop2: detected capacity change from 0 to 131456 [ 607.560732][ T5636] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 607.570867][ T5636] EXT4-fs (loop2): group descriptors corrupted! [ 607.585184][ T5644] loop5: detected capacity change from 0 to 131456 [ 607.595225][ T5644] FAULT_INJECTION: forcing a failure. [ 607.595225][ T5644] name failslab, interval 1, probability 0, space 0, times 0 [ 607.607862][ T5644] CPU: 1 PID: 5644 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 607.616537][ T5644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 607.626590][ T5644] Call Trace: [ 607.629858][ T5644] dump_stack_lvl+0xd6/0x122 [ 607.634441][ T5644] dump_stack+0x11/0x1b [ 607.638579][ T5644] should_fail+0x23c/0x250 [ 607.642983][ T5644] ? kzalloc+0x16/0x20 [ 607.647047][ T5644] __should_failslab+0x81/0x90 [ 607.651879][ T5644] should_failslab+0x5/0x20 [ 607.656452][ T5644] __kmalloc+0x6f/0x350 [ 607.660649][ T5644] kzalloc+0x16/0x20 [ 607.664582][ T5644] alloc_workqueue+0x12f/0xad0 [ 607.669389][ T5644] ? ext4_calculate_overhead+0x9be/0x9d0 [ 607.675013][ T5644] ? ext4_fill_super+0x5725/0x7840 [ 607.680140][ T5644] ext4_fill_super+0x544c/0x7840 [ 607.685183][ T5644] mount_bdev+0x1e8/0x290 [ 607.689509][ T5644] ? ext4_mount+0x40/0x40 [ 607.693836][ T5644] ? ext4_errno_to_code+0x110/0x110 [ 607.699046][ T5644] ext4_mount+0x2d/0x40 [ 607.703191][ T5644] legacy_get_tree+0x70/0xc0 [ 607.707796][ T5644] vfs_get_tree+0x4a/0x1a0 [ 607.712233][ T5644] path_mount+0x11ec/0x1d20 [ 607.716725][ T5644] __se_sys_mount+0x24b/0x2f0 [ 607.721388][ T5644] __x64_sys_mount+0x63/0x70 [ 607.725983][ T5644] do_syscall_64+0x44/0xa0 [ 607.730386][ T5644] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 607.736266][ T5644] RIP: 0033:0x7f1dfce41c2a [ 607.740719][ T5644] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 607.760316][ T5644] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 607.768752][ T5644] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 607.776711][ T5644] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 607.784677][ T5644] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 607.792635][ T5644] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 22:21:35 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 607.800590][ T5644] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 607.808586][ T5644] EXT4-fs: failed to create workqueue [ 607.813961][ T5644] EXT4-fs (loop5): mount failed [ 607.837969][ T5619] loop3: detected capacity change from 0 to 127 [ 607.844780][ T5619] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (63 blocks) 22:21:35 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x20000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:35 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 87) 22:21:35 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6800, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 607.883556][ T5660] loop4: detected capacity change from 0 to 48 [ 607.895728][ T5660] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (24 blocks) [ 607.909370][ T5667] loop3: detected capacity change from 0 to 256 [ 607.920832][ T5671] loop5: detected capacity change from 0 to 131456 [ 607.930620][ T5667] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (128 blocks) [ 607.930901][ T5617] loop1: detected capacity change from 0 to 131456 [ 607.942519][ T5671] FAULT_INJECTION: forcing a failure. [ 607.942519][ T5671] name failslab, interval 1, probability 0, space 0, times 0 [ 607.959270][ T5671] CPU: 1 PID: 5671 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 607.968016][ T5671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 607.978209][ T5671] Call Trace: [ 607.981508][ T5671] dump_stack_lvl+0xd6/0x122 [ 607.986100][ T5671] dump_stack+0x11/0x1b [ 607.990317][ T5671] should_fail+0x23c/0x250 [ 607.994737][ T5671] __should_failslab+0x81/0x90 [ 607.999559][ T5671] ? alloc_workqueue+0x15d/0xad0 [ 608.004545][ T5671] should_failslab+0x5/0x20 [ 608.009093][ T5671] kmem_cache_alloc_trace+0x52/0x320 [ 608.014365][ T5671] alloc_workqueue+0x15d/0xad0 [ 608.019156][ T5671] ? ext4_calculate_overhead+0x9be/0x9d0 [ 608.024782][ T5671] ? ext4_fill_super+0x5725/0x7840 [ 608.029876][ T5671] ext4_fill_super+0x544c/0x7840 [ 608.034853][ T5671] mount_bdev+0x1e8/0x290 [ 608.039164][ T5671] ? ext4_mount+0x40/0x40 [ 608.043496][ T5671] ? ext4_errno_to_code+0x110/0x110 [ 608.048702][ T5671] ext4_mount+0x2d/0x40 [ 608.052840][ T5671] legacy_get_tree+0x70/0xc0 [ 608.057414][ T5671] vfs_get_tree+0x4a/0x1a0 [ 608.061850][ T5671] path_mount+0x11ec/0x1d20 [ 608.066342][ T5671] __se_sys_mount+0x24b/0x2f0 [ 608.071033][ T5671] __x64_sys_mount+0x63/0x70 [ 608.075623][ T5671] do_syscall_64+0x44/0xa0 [ 608.080075][ T5671] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 608.085967][ T5671] RIP: 0033:0x7f1dfce41c2a [ 608.090447][ T5671] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 608.110055][ T5671] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 608.118469][ T5671] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 608.126511][ T5671] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 22:21:35 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./bus\x00', 0x240401, 0x1) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 608.134494][ T5671] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 608.142448][ T5671] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 608.150437][ T5671] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 608.158448][ T5671] EXT4-fs: failed to create workqueue [ 608.163886][ T5671] EXT4-fs (loop5): mount failed 22:21:35 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:35 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:35 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 608.199971][ T5682] loop4: detected capacity change from 0 to 52 [ 608.210723][ T5682] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (26 blocks) [ 608.221477][ T5667] loop3: detected capacity change from 0 to 256 [ 608.233754][ T5667] EXT4-fs (loop3): bad geometry: block count 256 exceeds size of device (128 blocks) [ 608.474353][ T5697] loop2: detected capacity change from 0 to 131456 [ 608.498192][ T5697] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 608.508300][ T5697] EXT4-fs (loop2): group descriptors corrupted! [ 608.514393][ T5682] loop4: detected capacity change from 0 to 52 22:21:35 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 88) [ 608.540579][ T5709] loop3: detected capacity change from 0 to 512 [ 608.548265][ T5682] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (26 blocks) [ 608.571888][ T5720] loop1: detected capacity change from 0 to 131456 22:21:36 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6c00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 608.608646][ T5709] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 608.616152][ T5725] loop5: detected capacity change from 0 to 131456 [ 608.618812][ T5709] EXT4-fs (loop3): group descriptors corrupted! [ 608.635718][ T5725] FAULT_INJECTION: forcing a failure. [ 608.635718][ T5725] name failslab, interval 1, probability 0, space 0, times 0 [ 608.648474][ T5725] CPU: 1 PID: 5725 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 608.657254][ T5725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 608.667292][ T5725] Call Trace: [ 608.670554][ T5725] dump_stack_lvl+0xd6/0x122 [ 608.675134][ T5725] dump_stack+0x11/0x1b [ 608.679267][ T5725] should_fail+0x23c/0x250 [ 608.683662][ T5725] ? kzalloc+0x16/0x20 [ 608.687729][ T5725] __should_failslab+0x81/0x90 [ 608.692475][ T5725] should_failslab+0x5/0x20 [ 608.697044][ T5725] __kmalloc+0x6f/0x350 [ 608.701238][ T5725] kzalloc+0x16/0x20 [ 608.705117][ T5725] apply_wqattrs_prepare+0x3a/0x630 [ 608.710294][ T5725] ? should_fail+0xd6/0x250 [ 608.714773][ T5725] ? vsnprintf+0xe8f/0xed0 [ 608.719166][ T5725] apply_workqueue_attrs+0x9e/0x100 [ 608.724481][ T5725] alloc_workqueue+0x7b0/0xad0 [ 608.729382][ T5725] ? ext4_calculate_overhead+0x9be/0x9d0 [ 608.735051][ T5725] ? ext4_fill_super+0x5725/0x7840 [ 608.740174][ T5725] ext4_fill_super+0x544c/0x7840 [ 608.745092][ T5725] mount_bdev+0x1e8/0x290 [ 608.749399][ T5725] ? ext4_mount+0x40/0x40 [ 608.753795][ T5725] ? ext4_errno_to_code+0x110/0x110 [ 608.758969][ T5725] ext4_mount+0x2d/0x40 [ 608.763106][ T5725] legacy_get_tree+0x70/0xc0 [ 608.767683][ T5725] vfs_get_tree+0x4a/0x1a0 [ 608.772084][ T5725] path_mount+0x11ec/0x1d20 [ 608.776589][ T5725] __se_sys_mount+0x24b/0x2f0 [ 608.781249][ T5725] __x64_sys_mount+0x63/0x70 [ 608.785875][ T5725] do_syscall_64+0x44/0xa0 [ 608.790291][ T5725] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 608.796163][ T5725] RIP: 0033:0x7f1dfce41c2a [ 608.800565][ T5725] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 608.820255][ T5725] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 608.828659][ T5725] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 608.836613][ T5725] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 608.844568][ T5725] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 608.852528][ T5725] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 608.860512][ T5725] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 608.874330][ T5725] EXT4-fs: failed to create workqueue [ 608.879787][ T5725] EXT4-fs (loop5): mount failed [ 608.892298][ T5709] loop3: detected capacity change from 0 to 512 22:21:36 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:36 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 89) [ 608.901357][ T5709] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 608.911525][ T5709] EXT4-fs (loop3): group descriptors corrupted! [ 608.919832][ T5737] loop4: detected capacity change from 0 to 54 [ 608.931235][ T5737] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (27 blocks) [ 608.974924][ T5746] loop3: detected capacity change from 0 to 1024 [ 608.984046][ T5749] loop5: detected capacity change from 0 to 131456 [ 608.984895][ T5746] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 609.000661][ T5746] EXT4-fs (loop3): group descriptors corrupted! [ 609.007682][ T5749] FAULT_INJECTION: forcing a failure. [ 609.007682][ T5749] name failslab, interval 1, probability 0, space 0, times 0 [ 609.020340][ T5749] CPU: 0 PID: 5749 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 609.028994][ T5749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 609.039052][ T5749] Call Trace: [ 609.042328][ T5749] dump_stack_lvl+0xd6/0x122 [ 609.046909][ T5749] dump_stack+0x11/0x1b [ 609.051066][ T5749] should_fail+0x23c/0x250 [ 609.055460][ T5749] __should_failslab+0x81/0x90 [ 609.060204][ T5749] ? apply_wqattrs_prepare+0x5f/0x630 [ 609.065569][ T5749] should_failslab+0x5/0x20 [ 609.070060][ T5749] kmem_cache_alloc_trace+0x52/0x320 [ 609.075324][ T5749] apply_wqattrs_prepare+0x5f/0x630 [ 609.080518][ T5749] ? should_fail+0xd6/0x250 [ 609.084998][ T5749] ? vsnprintf+0xe8f/0xed0 [ 609.089394][ T5749] apply_workqueue_attrs+0x9e/0x100 [ 609.094634][ T5749] alloc_workqueue+0x7b0/0xad0 [ 609.099374][ T5749] ? ext4_calculate_overhead+0x9be/0x9d0 [ 609.105069][ T5749] ? ext4_fill_super+0x5725/0x7840 [ 609.110178][ T5749] ext4_fill_super+0x544c/0x7840 [ 609.115093][ T5749] mount_bdev+0x1e8/0x290 [ 609.119410][ T5749] ? ext4_mount+0x40/0x40 [ 609.123788][ T5749] ? ext4_errno_to_code+0x110/0x110 [ 609.128972][ T5749] ext4_mount+0x2d/0x40 [ 609.133111][ T5749] legacy_get_tree+0x70/0xc0 [ 609.137680][ T5749] vfs_get_tree+0x4a/0x1a0 [ 609.142077][ T5749] path_mount+0x11ec/0x1d20 [ 609.146565][ T5749] __se_sys_mount+0x24b/0x2f0 [ 609.151221][ T5749] __x64_sys_mount+0x63/0x70 [ 609.155806][ T5749] do_syscall_64+0x44/0xa0 [ 609.160204][ T5749] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 609.166096][ T5749] RIP: 0033:0x7f1dfce41c2a [ 609.170491][ T5749] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 609.190082][ T5749] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 609.198472][ T5749] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 609.206441][ T5749] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 609.214401][ T5749] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 22:21:36 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[r3], 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:36 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 609.222379][ T5749] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 609.230326][ T5749] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 609.262823][ T5749] EXT4-fs: failed to create workqueue [ 609.268271][ T5749] EXT4-fs (loop5): mount failed [ 609.283172][ T5737] loop4: detected capacity change from 0 to 54 [ 609.284356][ T5746] loop3: detected capacity change from 0 to 1024 [ 609.289949][ T5737] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (27 blocks) [ 609.303731][ T5746] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 609.308398][ T5720] loop1: detected capacity change from 0 to 131456 [ 609.315322][ T5746] EXT4-fs (loop3): group descriptors corrupted! 22:21:36 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r3, 0x409, 0x20000000) r4 = dup(r0) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r5, 0x409, 0x20000000) r6 = creat(&(0x7f0000002940)='./file0\x00', 0x56) io_submit(0x0, 0x8, &(0x7f00000029c0)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x6, 0x7fff, 0xffffffffffffffff, &(0x7f0000000380)="3f51dc59c1e728431c6ee95c24ed79dcca122e302e3ee1b59bfb5d350b3b15c703449d696dfe40eea6a08129620260c3c655f8913d11753a6b8e0b770201e993b6af97811a360482a0b478f05d805aa7fdff471ae19e085bf3f24df50970cdab47fa99829f5a1370355b38a2023af5f261559f4193c91c7a32b5f2cdaa4e90081559063605c6a2b46c127abf6c4c0b405c2739689d0f3b3c5eb8b9eae2de340317918d132a15f7296da5b9e044869cd66735222092a2", 0xb6, 0x9, 0x0, 0x2, r2}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0xc, 0x101, 0xffffffffffffffff, &(0x7f0000000480)="529465e2765dd22955a621812b30c6a28854fe758904510b88b84ddafb6a4da75778738dcd6293a918ad9ced48d5cacd9cf76bf0eb00fbf544424e15c49284ebe3b1399fb4f2d6ff6a68d06ed4d8f837bcae6084d4f7433f6844b2d303511e4151142e520ea1e49240bbe78dbf2585bb8a3e2c0d422194d64fe8a380851200383a77d60b", 0x84, 0x621bffb3, 0x0, 0x2}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x7, 0x3e, r0, &(0x7f00000005c0)="9ca10332c37bb957a11e02c54366afe63591206a9ed50100a481473df1", 0x1d, 0x6}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x6, 0x81, r2, &(0x7f0000000640)="d9b2e1dadaab0ab2be4a35c82e9585525bf41526bfdbab09b2cac5a548ffd6564e8d0b6c75589a4a90cddeb770cb1306496cc186a74f44", 0x37, 0x7fffffff, 0x0, 0x3}, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x3, 0x3, r2, &(0x7f0000000700)="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", 0x1000, 0x7fff, 0x0, 0x1}, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x8, 0x87c, r3, &(0x7f0000001780)="960fb083f10d0375d5b20a1d822c722243658f47ae1bdf7b913d309b44dd7f831050741f2b4cc57243ce4b759698edf8eaf2d797025df5fb", 0x38, 0x4, 0x0, 0x1}, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, 0x7, r4, &(0x7f0000001800)="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", 0x1000, 0x10000, 0x0, 0x1, r2}, &(0x7f0000002980)={0x0, 0x0, 0x0, 0x6, 0x142a, r5, &(0x7f0000002840)="1d7ac1f581c1376e585d29c323c012b1f680cb6e8c763afa417f4c3a4756e03c143954daf0ebe9b87e2a41db1271a65a862c7d35907c8c122385623a136b49c9ffe1aec7e1bd1ec34d3ba8759cf63a9aea73181871115258d276c9e7ef168f58b49beda00f942080a9ed576d70f8e5e8367f86c2be08ae4153fe403804b52e0e6066629a860f74246739daf8aa6469f99443a90b1a937c60abe3ec32f379f8772f63724d2fd732a92465256aaed58a3e15b223d2dba0e9234315fcb8ab21adaecea4fe74ee899630dc7b", 0xca, 0xb0a, 0x0, 0x2, r6}]) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:36 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 90) 22:21:36 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80040, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 609.514785][ T5771] loop2: detected capacity change from 0 to 131456 [ 609.527513][ T5771] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 609.537682][ T5771] EXT4-fs (loop2): group descriptors corrupted! 22:21:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7400, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 609.593005][ T5791] loop1: detected capacity change from 0 to 131456 [ 609.615299][ T5797] loop5: detected capacity change from 0 to 131456 [ 609.626860][ T5802] loop4: detected capacity change from 0 to 58 [ 609.629315][ T5801] loop3: detected capacity change from 0 to 1024 [ 609.646283][ T5802] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (29 blocks) [ 609.656356][ T5797] FAULT_INJECTION: forcing a failure. [ 609.656356][ T5797] name failslab, interval 1, probability 0, space 0, times 0 [ 609.669009][ T5797] CPU: 1 PID: 5797 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 609.677677][ T5797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 609.687754][ T5797] Call Trace: [ 609.691031][ T5797] dump_stack_lvl+0xd6/0x122 [ 609.695625][ T5797] dump_stack+0x11/0x1b [ 609.699785][ T5797] should_fail+0x23c/0x250 [ 609.702097][ T5801] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 609.704194][ T5797] __should_failslab+0x81/0x90 [ 609.704217][ T5797] should_failslab+0x5/0x20 [ 609.714298][ T5801] EXT4-fs (loop3): group descriptors corrupted! [ 609.719015][ T5797] kmem_cache_alloc_node+0x61/0x2c0 [ 609.734970][ T5797] ? alloc_unbound_pwq+0x3e6/0x780 [ 609.740080][ T5797] alloc_unbound_pwq+0x3e6/0x780 [ 609.745021][ T5797] apply_wqattrs_prepare+0x1ed/0x630 [ 609.750311][ T5797] ? vsnprintf+0xe8f/0xed0 [ 609.754786][ T5797] apply_workqueue_attrs+0x9e/0x100 [ 609.759988][ T5797] alloc_workqueue+0x7b0/0xad0 [ 609.764755][ T5797] ? ext4_calculate_overhead+0x9be/0x9d0 [ 609.770397][ T5797] ? ext4_fill_super+0x5725/0x7840 [ 609.775507][ T5797] ext4_fill_super+0x544c/0x7840 [ 609.780446][ T5797] mount_bdev+0x1e8/0x290 [ 609.784860][ T5797] ? ext4_mount+0x40/0x40 [ 609.789215][ T5797] ? ext4_errno_to_code+0x110/0x110 [ 609.794529][ T5797] ext4_mount+0x2d/0x40 [ 609.798685][ T5797] legacy_get_tree+0x70/0xc0 [ 609.803282][ T5797] vfs_get_tree+0x4a/0x1a0 [ 609.807701][ T5797] path_mount+0x11ec/0x1d20 [ 609.812200][ T5797] __se_sys_mount+0x24b/0x2f0 [ 609.816911][ T5797] __x64_sys_mount+0x63/0x70 [ 609.821597][ T5797] do_syscall_64+0x44/0xa0 [ 609.826046][ T5797] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 609.832000][ T5797] RIP: 0033:0x7f1dfce41c2a [ 609.836475][ T5797] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 609.856066][ T5797] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 609.864500][ T5797] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 609.872479][ T5797] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 609.880443][ T5797] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 609.888472][ T5797] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 609.896425][ T5797] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 609.904430][ T5797] EXT4-fs: failed to create workqueue [ 609.909784][ T5797] EXT4-fs (loop5): mount failed 22:21:37 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:37 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 91) 22:21:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7a00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 609.945442][ T5802] loop4: detected capacity change from 0 to 58 [ 609.952010][ T5802] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (29 blocks) [ 609.969685][ T5820] loop3: detected capacity change from 0 to 32768 [ 609.978054][ T5820] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 609.988167][ T5820] EXT4-fs (loop3): group descriptors corrupted! [ 609.998758][ T5824] loop5: detected capacity change from 0 to 131456 [ 610.014519][ T5830] loop4: detected capacity change from 0 to 61 [ 610.017615][ T5824] FAULT_INJECTION: forcing a failure. [ 610.017615][ T5824] name failslab, interval 1, probability 0, space 0, times 0 [ 610.033174][ T5830] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (30 blocks) [ 610.033422][ T5824] CPU: 0 PID: 5824 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 610.051367][ T5824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 610.061404][ T5824] Call Trace: [ 610.064662][ T5824] dump_stack_lvl+0xd6/0x122 [ 610.069234][ T5824] dump_stack+0x11/0x1b [ 610.073368][ T5824] should_fail+0x23c/0x250 [ 610.077762][ T5824] __should_failslab+0x81/0x90 [ 610.082506][ T5824] should_failslab+0x5/0x20 [ 610.087081][ T5824] kmem_cache_alloc_node+0x61/0x2c0 [ 610.092257][ T5824] ? alloc_unbound_pwq+0x3e6/0x780 [ 610.097416][ T5824] alloc_unbound_pwq+0x3e6/0x780 [ 610.102375][ T5824] apply_wqattrs_prepare+0x1ed/0x630 [ 610.107676][ T5824] ? vsnprintf+0xe8f/0xed0 [ 610.112093][ T5824] apply_workqueue_attrs+0x9e/0x100 [ 610.117325][ T5824] alloc_workqueue+0x7b0/0xad0 [ 610.122079][ T5824] ? ext4_calculate_overhead+0x9be/0x9d0 [ 610.127772][ T5824] ? ext4_fill_super+0x5725/0x7840 [ 610.132857][ T5824] ext4_fill_super+0x544c/0x7840 [ 610.137785][ T5824] mount_bdev+0x1e8/0x290 [ 610.142091][ T5824] ? ext4_mount+0x40/0x40 [ 610.146410][ T5824] ? ext4_errno_to_code+0x110/0x110 [ 610.151621][ T5824] ext4_mount+0x2d/0x40 [ 610.155765][ T5824] legacy_get_tree+0x70/0xc0 [ 610.160424][ T5824] vfs_get_tree+0x4a/0x1a0 [ 610.164818][ T5824] path_mount+0x11ec/0x1d20 [ 610.169307][ T5824] __se_sys_mount+0x24b/0x2f0 [ 610.173970][ T5824] __x64_sys_mount+0x63/0x70 [ 610.178543][ T5824] do_syscall_64+0x44/0xa0 [ 610.182945][ T5824] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 610.188821][ T5824] RIP: 0033:0x7f1dfce41c2a [ 610.193216][ T5824] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 610.213385][ T5824] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 610.221776][ T5824] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 610.229743][ T5824] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 610.237752][ T5824] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 22:21:37 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) sched_setattr(r0, &(0x7f00000001c0)={0x38, 0x1, 0x1, 0x80000001, 0x5, 0xffff, 0x80000000, 0x2, 0x20, 0x3}, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r3, 0x409, 0x20000000) r4 = syz_open_dev$loop(&(0x7f00000002c0), 0x8ea1, 0x4000) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000003c0)={0x2, &(0x7f0000000380)=[{0x8b8, 0x7f, 0x0, 0x80000000}, {0xcfc, 0x3, 0x0, 0x10000}]}) fcntl$dupfd(r5, 0x0, r4) 22:21:37 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 610.245724][ T5824] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 610.253755][ T5824] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 610.261758][ T5824] EXT4-fs: failed to create workqueue [ 610.267133][ T5824] EXT4-fs (loop5): mount failed 22:21:37 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[r3], 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 610.303326][ T5820] loop3: detected capacity change from 0 to 32768 [ 610.310106][ T5830] loop4: detected capacity change from 0 to 61 [ 610.310118][ T5848] loop1: detected capacity change from 0 to 131456 [ 610.325643][ T5830] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (30 blocks) [ 610.335751][ T5820] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 610.345854][ T5820] EXT4-fs (loop3): group descriptors corrupted! 22:21:37 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 92) [ 610.395494][ T5865] loop5: detected capacity change from 0 to 131456 [ 610.403437][ T5865] FAULT_INJECTION: forcing a failure. [ 610.403437][ T5865] name failslab, interval 1, probability 0, space 0, times 0 [ 610.416167][ T5865] CPU: 0 PID: 5865 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 610.424835][ T5865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 610.434880][ T5865] Call Trace: [ 610.438151][ T5865] dump_stack_lvl+0xd6/0x122 [ 610.442766][ T5865] dump_stack+0x11/0x1b [ 610.447032][ T5865] should_fail+0x23c/0x250 [ 610.451438][ T5865] __should_failslab+0x81/0x90 [ 610.456241][ T5865] should_failslab+0x5/0x20 [ 610.460741][ T5865] kmem_cache_alloc_node_trace+0x61/0x2e0 [ 610.466463][ T5865] ? apply_wqattrs_cleanup+0x35b/0x490 [ 610.472026][ T5865] ? init_rescuer+0x67/0x190 [ 610.476613][ T5865] init_rescuer+0x67/0x190 [ 610.481023][ T5865] alloc_workqueue+0x853/0xad0 [ 610.485853][ T5865] ? ext4_calculate_overhead+0x9be/0x9d0 [ 610.491564][ T5865] ? ext4_fill_super+0x5725/0x7840 [ 610.496675][ T5865] ext4_fill_super+0x544c/0x7840 [ 610.501603][ T5865] mount_bdev+0x1e8/0x290 [ 610.505964][ T5865] ? ext4_mount+0x40/0x40 [ 610.510284][ T5865] ? ext4_errno_to_code+0x110/0x110 [ 610.515480][ T5865] ext4_mount+0x2d/0x40 [ 610.519641][ T5865] legacy_get_tree+0x70/0xc0 [ 610.524265][ T5865] vfs_get_tree+0x4a/0x1a0 [ 610.528677][ T5865] path_mount+0x11ec/0x1d20 [ 610.533262][ T5865] __se_sys_mount+0x24b/0x2f0 [ 610.537936][ T5865] __x64_sys_mount+0x63/0x70 [ 610.542530][ T5865] do_syscall_64+0x44/0xa0 [ 610.546946][ T5865] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 610.552881][ T5865] RIP: 0033:0x7f1dfce41c2a [ 610.557356][ T5865] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 610.576948][ T5865] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 610.585406][ T5865] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a 22:21:38 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 610.593361][ T5865] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 610.601414][ T5865] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 610.609366][ T5865] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 610.617319][ T5865] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 610.635400][ T5865] EXT4-fs: failed to create workqueue [ 610.640847][ T5865] EXT4-fs (loop5): mount failed [ 610.677520][ T5879] loop3: detected capacity change from 0 to 65536 22:21:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb700, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:38 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 93) [ 610.723714][ T5879] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 610.733857][ T5879] EXT4-fs (loop3): group descriptors corrupted! [ 610.740611][ T5887] loop2: detected capacity change from 0 to 131456 [ 610.749267][ T5887] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 610.759495][ T5887] EXT4-fs (loop2): group descriptors corrupted! [ 610.776409][ T5891] loop5: detected capacity change from 0 to 131456 [ 610.783622][ T5892] loop4: detected capacity change from 0 to 91 [ 610.794167][ T5892] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (45 blocks) [ 610.804447][ T5891] FAULT_INJECTION: forcing a failure. [ 610.804447][ T5891] name failslab, interval 1, probability 0, space 0, times 0 [ 610.817062][ T5891] CPU: 1 PID: 5891 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 610.825732][ T5891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 610.835796][ T5891] Call Trace: [ 610.839068][ T5891] dump_stack_lvl+0xd6/0x122 [ 610.843740][ T5891] dump_stack+0x11/0x1b [ 610.847906][ T5891] should_fail+0x23c/0x250 [ 610.852320][ T5891] __should_failslab+0x81/0x90 [ 610.857100][ T5891] should_failslab+0x5/0x20 [ 610.861608][ T5891] kmem_cache_alloc_node_trace+0x61/0x2e0 [ 610.867326][ T5891] ? apply_wqattrs_cleanup+0x35b/0x490 22:21:38 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2040000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 610.872777][ T5891] ? init_rescuer+0x67/0x190 [ 610.877394][ T5891] init_rescuer+0x67/0x190 [ 610.881910][ T5891] alloc_workqueue+0x853/0xad0 [ 610.886668][ T5891] ? ext4_calculate_overhead+0x9be/0x9d0 [ 610.892323][ T5891] ? ext4_fill_super+0x5725/0x7840 [ 610.897423][ T5891] ext4_fill_super+0x544c/0x7840 [ 610.902501][ T5891] mount_bdev+0x1e8/0x290 [ 610.906829][ T5891] ? ext4_mount+0x40/0x40 [ 610.911220][ T5891] ? ext4_errno_to_code+0x110/0x110 [ 610.916465][ T5891] ext4_mount+0x2d/0x40 [ 610.920617][ T5891] legacy_get_tree+0x70/0xc0 22:21:38 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:38 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:38 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x5000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 610.925212][ T5891] vfs_get_tree+0x4a/0x1a0 [ 610.929623][ T5891] path_mount+0x11ec/0x1d20 [ 610.934176][ T5891] __se_sys_mount+0x24b/0x2f0 [ 610.938860][ T5891] __x64_sys_mount+0x63/0x70 [ 610.943532][ T5891] do_syscall_64+0x44/0xa0 [ 610.947946][ T5891] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 610.953850][ T5891] RIP: 0033:0x7f1dfce41c2a 22:21:38 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 610.958304][ T5891] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 610.977909][ T5891] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 610.986329][ T5891] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 610.994296][ T5891] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 611.002310][ T5891] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 611.010294][ T5891] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 611.018286][ T5891] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 611.029475][ T5891] EXT4-fs: failed to create workqueue [ 611.035007][ T5891] EXT4-fs (loop5): mount failed [ 611.045662][ T5892] loop4: detected capacity change from 0 to 91 [ 611.062770][ T5892] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (45 blocks) 22:21:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbc00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:38 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 611.130401][ T5926] loop4: detected capacity change from 0 to 94 [ 611.137570][ T5926] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (47 blocks) [ 611.193794][ T5926] loop4: detected capacity change from 0 to 94 [ 611.200443][ T5926] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (47 blocks) 22:21:38 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[r3], 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:38 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6040000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:38 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 94) 22:21:38 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) r0 = getpid() sched_setaffinity(r0, 0x8, &(0x7f0000000500)=0x9) prlimit64(r0, 0x3, &(0x7f00000001c0)={0x81, 0xce19}, &(0x7f00000002c0)) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbd00, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 611.501282][ T5954] loop5: detected capacity change from 0 to 131456 [ 611.505989][ T5952] loop4: detected capacity change from 0 to 94 [ 611.511032][ T5957] loop3: detected capacity change from 0 to 197120 [ 611.520695][ T5953] loop1: detected capacity change from 0 to 131456 [ 611.543690][ T5952] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (47 blocks) [ 611.547640][ T5954] FAULT_INJECTION: forcing a failure. [ 611.547640][ T5954] name failslab, interval 1, probability 0, space 0, times 0 [ 611.553598][ T5957] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 611.565698][ T5954] CPU: 1 PID: 5954 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 611.575787][ T5957] EXT4-fs (loop3): group descriptors corrupted! [ 611.584395][ T5954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 611.584407][ T5954] Call Trace: [ 611.584414][ T5954] dump_stack_lvl+0xd6/0x122 [ 611.608603][ T5954] dump_stack+0x11/0x1b [ 611.612868][ T5954] should_fail+0x23c/0x250 [ 611.617287][ T5954] __should_failslab+0x81/0x90 [ 611.622123][ T5954] should_failslab+0x5/0x20 [ 611.626618][ T5954] kmem_cache_alloc_node_trace+0x61/0x2e0 [ 611.632326][ T5954] ? apply_wqattrs_cleanup+0x35b/0x490 [ 611.637775][ T5954] ? init_rescuer+0x67/0x190 [ 611.642414][ T5954] init_rescuer+0x67/0x190 [ 611.646905][ T5954] alloc_workqueue+0x853/0xad0 [ 611.651702][ T5954] ? ext4_calculate_overhead+0x9be/0x9d0 [ 611.657403][ T5954] ? ext4_fill_super+0x5725/0x7840 [ 611.662631][ T5954] ext4_fill_super+0x544c/0x7840 [ 611.667553][ T5954] mount_bdev+0x1e8/0x290 [ 611.671937][ T5954] ? ext4_mount+0x40/0x40 [ 611.676274][ T5954] ? ext4_errno_to_code+0x110/0x110 [ 611.681468][ T5954] ext4_mount+0x2d/0x40 [ 611.685635][ T5954] legacy_get_tree+0x70/0xc0 [ 611.690232][ T5954] vfs_get_tree+0x4a/0x1a0 [ 611.694691][ T5954] path_mount+0x11ec/0x1d20 [ 611.699198][ T5954] __se_sys_mount+0x24b/0x2f0 [ 611.703940][ T5954] __x64_sys_mount+0x63/0x70 [ 611.708519][ T5954] do_syscall_64+0x44/0xa0 [ 611.712922][ T5954] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 611.718846][ T5954] RIP: 0033:0x7f1dfce41c2a [ 611.723312][ T5954] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 611.742903][ T5954] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 611.751298][ T5954] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 611.759255][ T5954] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 611.767209][ T5954] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 611.775171][ T5954] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 611.783139][ T5954] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:39 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 611.824488][ T5954] EXT4-fs: failed to create workqueue [ 611.829943][ T5954] EXT4-fs (loop5): mount failed [ 611.842004][ T5967] loop2: detected capacity change from 0 to 131456 [ 611.873675][ T5967] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 611.883764][ T5967] EXT4-fs (loop2): group descriptors corrupted! 22:21:39 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 95) 22:21:39 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xedc0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 611.996721][ T5952] loop4: detected capacity change from 0 to 94 [ 612.005041][ T5952] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (47 blocks) [ 612.009026][ T5980] loop3: detected capacity change from 0 to 229376 [ 612.023791][ T5980] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 612.033907][ T5980] EXT4-fs (loop3): group descriptors corrupted! [ 612.037344][ T5988] loop5: detected capacity change from 0 to 131456 [ 612.071187][ T5988] FAULT_INJECTION: forcing a failure. [ 612.071187][ T5988] name failslab, interval 1, probability 0, space 0, times 0 [ 612.072529][ T5997] loop4: detected capacity change from 0 to 118 [ 612.083876][ T5988] CPU: 1 PID: 5988 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 612.091798][ T5997] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (59 blocks) [ 612.098753][ T5988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.098766][ T5988] Call Trace: [ 612.121451][ T5988] dump_stack_lvl+0xd6/0x122 [ 612.126030][ T5988] dump_stack+0x11/0x1b [ 612.130184][ T5988] should_fail+0x23c/0x250 [ 612.134583][ T5988] ? ext4_alloc_inode+0x27/0x300 [ 612.139535][ T5988] __should_failslab+0x81/0x90 [ 612.144280][ T5988] ? set_qf_name+0x230/0x230 [ 612.148911][ T5988] should_failslab+0x5/0x20 [ 612.153400][ T5988] kmem_cache_alloc+0x4f/0x300 [ 612.158160][ T5988] ? set_qf_name+0x230/0x230 [ 612.162734][ T5988] ext4_alloc_inode+0x27/0x300 [ 612.167483][ T5988] ? set_qf_name+0x230/0x230 [ 612.172061][ T5988] iget_locked+0x14b/0x6a0 [ 612.176480][ T5988] __ext4_iget+0x15d/0x2800 [ 612.180968][ T5988] ? alloc_workqueue+0xa18/0xad0 [ 612.186029][ T5988] ? ext4_fill_super+0x5725/0x7840 [ 612.191172][ T5988] ext4_fill_super+0x54b7/0x7840 [ 612.196094][ T5988] mount_bdev+0x1e8/0x290 [ 612.200471][ T5988] ? ext4_mount+0x40/0x40 [ 612.204938][ T5988] ? ext4_errno_to_code+0x110/0x110 [ 612.210121][ T5988] ext4_mount+0x2d/0x40 [ 612.214259][ T5988] legacy_get_tree+0x70/0xc0 [ 612.218836][ T5988] vfs_get_tree+0x4a/0x1a0 [ 612.223235][ T5988] path_mount+0x11ec/0x1d20 [ 612.227793][ T5988] __se_sys_mount+0x24b/0x2f0 [ 612.232456][ T5988] __x64_sys_mount+0x63/0x70 [ 612.237033][ T5988] do_syscall_64+0x44/0xa0 [ 612.241445][ T5988] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 612.247332][ T5988] RIP: 0033:0x7f1dfce41c2a [ 612.251729][ T5988] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 612.271493][ T5988] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 612.279957][ T5988] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 612.287925][ T5988] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 612.295881][ T5988] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 612.303845][ T5988] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 612.311805][ T5988] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 612.319794][ T5988] EXT4-fs (loop5): get root inode failed [ 612.325438][ T5988] EXT4-fs (loop5): mount failed 22:21:39 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2) sendmsg$NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x101}, 0x14}}, 0x0) sendmsg$NL80211_CMD_START_SCHED_SCAN(r1, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)={0xb4, r3, 0x2, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x15}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_SCAN_SSIDS={0x74, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}, {0xf, 0x0, @random="da2a6295c358f047f29e32"}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xb, 0x0, @random="c4222960100447"}, {0xa, 0x0, @default_ap_ssid}]}, @NL80211_ATTR_SCAN_FREQUENCIES={0x14, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x4}, {0x8, 0x0, 0x3f}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x20000080}, 0x4008000) 22:21:39 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 612.376441][ T5980] loop3: detected capacity change from 0 to 229376 [ 612.399001][ T5980] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 612.409151][ T5980] EXT4-fs (loop3): group descriptors corrupted! [ 612.430481][ T6012] loop1: detected capacity change from 0 to 131456 [ 612.516645][ T6017] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 612.548109][ T6019] loop2: detected capacity change from 0 to 131456 22:21:40 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 612.742430][ T5997] loop4: detected capacity change from 0 to 118 [ 612.768219][ T5997] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (59 blocks) [ 612.772032][ T6033] loop3: detected capacity change from 0 to 262144 22:21:40 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 96) [ 612.785756][ T6033] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 612.795869][ T6033] EXT4-fs (loop3): group descriptors corrupted! [ 612.806741][ T6038] loop5: detected capacity change from 0 to 131456 [ 612.824342][ T6038] FAULT_INJECTION: forcing a failure. [ 612.824342][ T6038] name failslab, interval 1, probability 0, space 0, times 0 [ 612.836998][ T6038] CPU: 0 PID: 6038 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 612.845646][ T6038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.855690][ T6038] Call Trace: [ 612.858945][ T6038] dump_stack_lvl+0xd6/0x122 [ 612.863532][ T6038] dump_stack+0x11/0x1b [ 612.867667][ T6038] should_fail+0x23c/0x250 [ 612.872063][ T6038] ? xas_create+0x3fb/0xb30 [ 612.876544][ T6038] __should_failslab+0x81/0x90 [ 612.881289][ T6038] should_failslab+0x5/0x20 [ 612.885790][ T6038] kmem_cache_alloc+0x4f/0x300 [ 612.890535][ T6038] xas_create+0x3fb/0xb30 [ 612.894854][ T6038] xas_store+0x70/0xca0 [ 612.898987][ T6038] ? memcg_check_events+0x23/0x3b0 [ 612.904077][ T6038] ? get_page_from_freelist+0x55e/0x830 [ 612.909632][ T6038] ? cgroup_rstat_updated+0x34/0x100 [ 612.914898][ T6038] ? xas_find_conflict+0x422/0x4c0 [ 612.920098][ T6038] __add_to_page_cache_locked+0x20b/0x4f0 [ 612.925820][ T6038] ? workingset_activation+0x270/0x270 [ 612.931314][ T6038] add_to_page_cache_lru+0xa0/0x1b0 [ 612.936541][ T6038] pagecache_get_page+0x6ad/0x910 [ 612.941543][ T6038] __getblk_gfp+0x199/0x590 [ 612.946068][ T6038] __ext4_get_inode_loc+0x1fe/0x8c0 [ 612.951246][ T6038] ? find_inode_fast+0x120/0x1c0 [ 612.956175][ T6038] __ext4_iget+0x268/0x2800 [ 612.960654][ T6038] ? alloc_workqueue+0xa18/0xad0 [ 612.965611][ T6038] ? ext4_fill_super+0x5725/0x7840 [ 612.970778][ T6038] ext4_fill_super+0x54b7/0x7840 [ 612.975722][ T6038] mount_bdev+0x1e8/0x290 [ 612.980047][ T6038] ? ext4_mount+0x40/0x40 [ 612.984351][ T6038] ? ext4_errno_to_code+0x110/0x110 [ 612.989551][ T6038] ext4_mount+0x2d/0x40 [ 612.993684][ T6038] legacy_get_tree+0x70/0xc0 [ 612.998251][ T6038] vfs_get_tree+0x4a/0x1a0 [ 613.002645][ T6038] path_mount+0x11ec/0x1d20 [ 613.007127][ T6038] __se_sys_mount+0x24b/0x2f0 [ 613.011792][ T6038] __x64_sys_mount+0x63/0x70 [ 613.016362][ T6038] do_syscall_64+0x44/0xa0 [ 613.020793][ T6038] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 613.026711][ T6038] RIP: 0033:0x7f1dfce41c2a [ 613.031106][ T6038] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 613.050692][ T6038] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 613.059157][ T6038] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 613.067121][ T6038] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 613.075075][ T6038] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 613.083026][ T6038] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 22:21:40 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfeff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 613.090973][ T6038] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:40 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 613.115458][ T6035] loop1: detected capacity change from 0 to 131456 [ 613.124138][ T6033] loop3: detected capacity change from 0 to 262144 [ 613.127926][ T6054] loop4: detected capacity change from 0 to 127 [ 613.139087][ T6054] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (63 blocks) [ 613.148637][ T6038] EXT4-fs (loop5): corrupt root inode, run e2fsck 22:21:40 executing program 1: prlimit64(0x0, 0x3, &(0x7f0000000280)={0x9, 0x7fff}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) r2 = accept4(r1, 0x0, &(0x7f00000001c0), 0x0) writev(r2, &(0x7f0000002400)=[{&(0x7f0000000380)="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", 0x1000}, {&(0x7f00000002c0)="4bd42745fbd1b2b3e0340a54d8a2f01a0b9facf9bbdbe65a3885d6a62098", 0x1e}, {&(0x7f0000001380)="a0fab0b9f2908c5055ab3c0b079277ba5b69e1cb5d7434fb9c8755fe006997f7f0a62931db40b1e372492ddc8ac4030d4928e5ecbd398701fb69468ffdbfde63dbf49ef1bf7dca190ad86d4b4389836ada7b6aab8abbca42fb0b6251bdb317a4527026b6aa9b63a485a4ba7f5bfd36067e64e2f24cfe4108f24d5a2b27081a63", 0x80}, {&(0x7f0000001400)="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", 0x1000}], 0x4) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 613.168967][ T6033] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 613.179087][ T6033] EXT4-fs (loop3): group descriptors corrupted! [ 613.189835][ T6038] EXT4-fs (loop5): mount failed 22:21:40 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xff0f, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:40 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 97) [ 613.233971][ T6065] loop1: detected capacity change from 0 to 131456 [ 613.258373][ T6074] loop4: detected capacity change from 0 to 127 [ 613.266227][ T6074] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (63 blocks) 22:21:40 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x9000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:40 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 613.454417][ T6074] loop4: detected capacity change from 0 to 127 [ 613.461041][ T6074] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (63 blocks) [ 613.472787][ T6082] loop5: detected capacity change from 0 to 131456 [ 613.488425][ T6082] FAULT_INJECTION: forcing a failure. [ 613.488425][ T6082] name failslab, interval 1, probability 0, space 0, times 0 [ 613.501195][ T6082] CPU: 0 PID: 6082 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 613.507889][ T6079] loop1: detected capacity change from 0 to 131456 [ 613.509872][ T6082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 613.509884][ T6082] Call Trace: [ 613.509892][ T6082] dump_stack_lvl+0xd6/0x122 [ 613.509917][ T6082] dump_stack+0x11/0x1b [ 613.509934][ T6082] should_fail+0x23c/0x250 [ 613.509950][ T6082] ? mempool_alloc_slab+0x16/0x20 [ 613.547816][ T6082] __should_failslab+0x81/0x90 [ 613.552571][ T6082] should_failslab+0x5/0x20 [ 613.557057][ T6082] kmem_cache_alloc+0x4f/0x300 [ 613.561805][ T6082] ? workingset_activation+0x236/0x270 [ 613.567319][ T6082] mempool_alloc_slab+0x16/0x20 [ 613.572296][ T6082] ? mempool_free+0x130/0x130 [ 613.576973][ T6082] mempool_alloc+0x9d/0x310 [ 613.581475][ T6082] ? pagecache_get_page+0x7aa/0x910 [ 613.586675][ T6082] bio_alloc_bioset+0xcc/0x530 [ 613.591417][ T6082] ? __find_get_block+0x669/0x930 [ 613.596569][ T6082] submit_bh_wbc+0x130/0x330 [ 613.601152][ T6082] ? __getblk_gfp+0x4d3/0x590 [ 613.605819][ T6082] submit_bh+0x21/0x30 [ 613.609877][ T6082] ext4_read_bh_lock+0x184/0x1b0 [ 613.614802][ T6082] ext4_sb_breadahead_unmovable+0x58/0x70 [ 613.620605][ T6082] __ext4_get_inode_loc+0x67e/0x8c0 [ 613.625824][ T6082] ? find_inode_fast+0x120/0x1c0 [ 613.630808][ T6082] __ext4_iget+0x268/0x2800 [ 613.635305][ T6082] ? alloc_workqueue+0xa18/0xad0 [ 613.640254][ T6082] ? ext4_fill_super+0x5725/0x7840 [ 613.645353][ T6082] ext4_fill_super+0x54b7/0x7840 [ 613.650270][ T6082] mount_bdev+0x1e8/0x290 [ 613.654574][ T6082] ? ext4_mount+0x40/0x40 [ 613.658892][ T6082] ? ext4_errno_to_code+0x110/0x110 [ 613.664154][ T6082] ext4_mount+0x2d/0x40 [ 613.668299][ T6082] legacy_get_tree+0x70/0xc0 [ 613.672956][ T6082] vfs_get_tree+0x4a/0x1a0 [ 613.677443][ T6082] path_mount+0x11ec/0x1d20 [ 613.681928][ T6082] __se_sys_mount+0x24b/0x2f0 [ 613.686635][ T6082] __x64_sys_mount+0x63/0x70 [ 613.691208][ T6082] do_syscall_64+0x44/0xa0 [ 613.695617][ T6082] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 613.701492][ T6082] RIP: 0033:0x7f1dfce41c2a [ 613.705883][ T6082] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 613.725465][ T6082] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 613.733927][ T6082] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 613.741954][ T6082] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 22:21:41 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffe, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 613.749915][ T6082] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 613.758131][ T6082] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 613.766187][ T6082] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:41 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x0, &(0x7f0000000300), 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 613.796918][ T6082] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 613.814234][ T6082] EXT4-fs (loop5): mount failed [ 613.814690][ T6110] loop3: detected capacity change from 0 to 264192 [ 613.821854][ T6111] loop4: detected capacity change from 0 to 127 [ 613.828451][ T6110] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 613.842134][ T6110] EXT4-fs (loop3): group descriptors corrupted! [ 613.848745][ T6111] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (63 blocks) [ 613.907517][ T6124] loop1: detected capacity change from 0 to 131456 [ 613.915705][ T6125] loop2: detected capacity change from 0 to 131456 22:21:41 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0), 0x40c001) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000001, 0x1010, r2, 0x7e1ef000) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:41 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:41 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 98) [ 614.065537][ T6111] loop4: detected capacity change from 0 to 127 [ 614.074142][ T6110] loop3: detected capacity change from 0 to 264192 [ 614.091412][ T6111] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (63 blocks) [ 614.101805][ T6132] loop1: detected capacity change from 0 to 131456 22:21:41 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x20000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:41 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xa000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:41 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000002c0)={0x80000001, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) setrlimit(0x9, &(0x7f00000001c0)={0x3ff, 0x200}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 614.146542][ T6110] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 614.156732][ T6110] EXT4-fs (loop3): group descriptors corrupted! [ 614.184038][ T6151] loop5: detected capacity change from 0 to 131456 22:21:41 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 614.322266][ T6151] FAULT_INJECTION: forcing a failure. [ 614.322266][ T6151] name failslab, interval 1, probability 0, space 0, times 0 [ 614.334912][ T6151] CPU: 0 PID: 6151 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 614.343588][ T6151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.353630][ T6151] Call Trace: [ 614.356935][ T6151] dump_stack_lvl+0xd6/0x122 [ 614.361584][ T6151] dump_stack+0x11/0x1b [ 614.365738][ T6151] should_fail+0x23c/0x250 [ 614.370201][ T6151] ? mempool_alloc_slab+0x16/0x20 [ 614.375203][ T6151] __should_failslab+0x81/0x90 [ 614.379996][ T6151] should_failslab+0x5/0x20 [ 614.384478][ T6151] kmem_cache_alloc+0x4f/0x300 [ 614.389276][ T6151] mempool_alloc_slab+0x16/0x20 [ 614.394151][ T6151] ? mempool_free+0x130/0x130 [ 614.398822][ T6151] mempool_alloc+0x9d/0x310 [ 614.403303][ T6151] ? pagecache_get_page+0x7aa/0x910 [ 614.408498][ T6151] bio_alloc_bioset+0xcc/0x530 [ 614.413301][ T6151] ? __find_get_block+0x85c/0x930 [ 614.418320][ T6151] submit_bh_wbc+0x130/0x330 [ 614.422969][ T6151] ? __getblk_gfp+0x3f/0x590 [ 614.427545][ T6151] submit_bh+0x21/0x30 [ 614.431601][ T6151] ext4_read_bh_lock+0x184/0x1b0 [ 614.436519][ T6151] ext4_sb_breadahead_unmovable+0x58/0x70 [ 614.442222][ T6151] __ext4_get_inode_loc+0x67e/0x8c0 [ 614.447412][ T6151] ? find_inode_fast+0x120/0x1c0 [ 614.452391][ T6151] __ext4_iget+0x268/0x2800 [ 614.456877][ T6151] ? alloc_workqueue+0xa18/0xad0 [ 614.461882][ T6151] ? ext4_fill_super+0x5725/0x7840 [ 614.466988][ T6151] ext4_fill_super+0x54b7/0x7840 [ 614.471909][ T6151] mount_bdev+0x1e8/0x290 [ 614.476270][ T6151] ? ext4_mount+0x40/0x40 [ 614.480576][ T6151] ? ext4_errno_to_code+0x110/0x110 [ 614.485850][ T6151] ext4_mount+0x2d/0x40 [ 614.490004][ T6151] legacy_get_tree+0x70/0xc0 [ 614.494583][ T6151] vfs_get_tree+0x4a/0x1a0 [ 614.498981][ T6151] path_mount+0x11ec/0x1d20 [ 614.503469][ T6151] __se_sys_mount+0x24b/0x2f0 [ 614.508144][ T6151] __x64_sys_mount+0x63/0x70 [ 614.512770][ T6151] do_syscall_64+0x44/0xa0 [ 614.517171][ T6151] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 614.523073][ T6151] RIP: 0033:0x7f1dfce41c2a [ 614.527464][ T6151] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 614.547048][ T6151] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 614.555437][ T6151] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 614.563442][ T6151] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 614.571412][ T6151] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 614.579360][ T6151] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 614.587353][ T6151] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 614.599784][ T6164] loop3: detected capacity change from 0 to 264192 [ 614.606432][ T6161] loop1: detected capacity change from 0 to 131456 [ 614.620400][ T6151] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 614.630376][ T6164] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 614.640563][ T6164] EXT4-fs (loop3): group descriptors corrupted! 22:21:42 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 614.663874][ T6151] EXT4-fs (loop5): mount failed [ 614.671753][ T6178] loop4: detected capacity change from 0 to 256 [ 614.679329][ T6178] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (128 blocks) 22:21:42 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 99) [ 614.719779][ T6164] loop3: detected capacity change from 0 to 264192 [ 614.740393][ T6178] loop4: detected capacity change from 0 to 256 [ 614.749974][ T6164] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 614.759545][ T6198] loop5: detected capacity change from 0 to 131456 [ 614.760095][ T6164] EXT4-fs (loop3): group descriptors corrupted! [ 614.774464][ T6198] FAULT_INJECTION: forcing a failure. [ 614.774464][ T6198] name failslab, interval 1, probability 0, space 0, times 0 [ 614.778513][ T6178] EXT4-fs (loop4): bad geometry: block count 256 exceeds size of device (128 blocks) [ 614.787105][ T6198] CPU: 1 PID: 6198 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 614.805248][ T6198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.815402][ T6198] Call Trace: [ 614.818756][ T6198] dump_stack_lvl+0xd6/0x122 [ 614.823348][ T6198] dump_stack+0x11/0x1b [ 614.827571][ T6198] should_fail+0x23c/0x250 [ 614.832035][ T6198] ? mempool_alloc_slab+0x16/0x20 [ 614.837123][ T6198] __should_failslab+0x81/0x90 [ 614.841943][ T6198] should_failslab+0x5/0x20 [ 614.846494][ T6198] kmem_cache_alloc+0x4f/0x300 [ 614.851294][ T6198] mempool_alloc_slab+0x16/0x20 [ 614.856141][ T6198] ? mempool_free+0x130/0x130 [ 614.860911][ T6198] mempool_alloc+0x9d/0x310 [ 614.865412][ T6198] ? pagecache_get_page+0x7aa/0x910 [ 614.870628][ T6198] bio_alloc_bioset+0xcc/0x530 [ 614.875380][ T6198] ? __find_get_block+0x669/0x930 [ 614.880391][ T6198] submit_bh_wbc+0x130/0x330 [ 614.884993][ T6198] ? __getblk_gfp+0x3f/0x590 [ 614.889630][ T6198] submit_bh+0x21/0x30 [ 614.893681][ T6198] ext4_read_bh_lock+0x184/0x1b0 [ 614.898609][ T6198] ext4_sb_breadahead_unmovable+0x58/0x70 [ 614.904327][ T6198] __ext4_get_inode_loc+0x67e/0x8c0 [ 614.909587][ T6198] ? find_inode_fast+0x120/0x1c0 [ 614.914516][ T6198] __ext4_iget+0x268/0x2800 [ 614.919005][ T6198] ? alloc_workqueue+0xa18/0xad0 [ 614.923929][ T6198] ? ext4_fill_super+0x5725/0x7840 [ 614.929023][ T6198] ext4_fill_super+0x54b7/0x7840 [ 614.933945][ T6198] mount_bdev+0x1e8/0x290 [ 614.938257][ T6198] ? ext4_mount+0x40/0x40 [ 614.942572][ T6198] ? ext4_errno_to_code+0x110/0x110 [ 614.947766][ T6198] ext4_mount+0x2d/0x40 [ 614.951910][ T6198] legacy_get_tree+0x70/0xc0 [ 614.956486][ T6198] vfs_get_tree+0x4a/0x1a0 [ 614.960888][ T6198] path_mount+0x11ec/0x1d20 [ 614.965421][ T6198] __se_sys_mount+0x24b/0x2f0 [ 614.970087][ T6198] __x64_sys_mount+0x63/0x70 [ 614.974663][ T6198] do_syscall_64+0x44/0xa0 [ 614.979079][ T6198] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 614.985075][ T6198] RIP: 0033:0x7f1dfce41c2a [ 614.989505][ T6198] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 615.009094][ T6198] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 615.017488][ T6198] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 615.025498][ T6198] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 615.033590][ T6198] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 615.041546][ T6198] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 615.049504][ T6198] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 22:21:42 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:42 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:42 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 615.109090][ T6208] loop2: detected capacity change from 0 to 131456 [ 615.136115][ T6198] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 615.144868][ T6198] EXT4-fs (loop5): mount failed 22:21:42 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) (fail_nth: 100) 22:21:42 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000380)={'syz1', "20c6ef490bb0b71e7dea9e24001e9f8ea97211205cdcec33de1883f4142e20703781252b5fc829a91d0d430524fd02ae4f1330fa7af04244dcf30da079dedebc0acbe1609b9b20db44d4b49d2fcba5d7"}, 0x54) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r1, 0x409, 0x20000000) ftruncate(r1, 0x10001) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 615.386393][ T6224] loop5: detected capacity change from 0 to 131456 [ 615.393332][ T6225] loop3: detected capacity change from 0 to 264192 [ 615.401503][ T6225] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 615.411632][ T6225] EXT4-fs (loop3): group descriptors corrupted! [ 615.415894][ T6232] loop1: detected capacity change from 0 to 131456 [ 615.423801][ T6224] FAULT_INJECTION: forcing a failure. [ 615.423801][ T6224] name failslab, interval 1, probability 0, space 0, times 0 [ 615.437000][ T6224] CPU: 1 PID: 6224 Comm: syz-executor.5 Not tainted 5.15.0-rc2-syzkaller #0 [ 615.445677][ T6224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 615.455736][ T6224] Call Trace: [ 615.459013][ T6224] dump_stack_lvl+0xd6/0x122 [ 615.463681][ T6224] dump_stack+0x11/0x1b [ 615.467837][ T6224] should_fail+0x23c/0x250 [ 615.472252][ T6224] ? mempool_alloc_slab+0x16/0x20 [ 615.477273][ T6224] __should_failslab+0x81/0x90 [ 615.482061][ T6224] should_failslab+0x5/0x20 [ 615.486698][ T6224] kmem_cache_alloc+0x4f/0x300 [ 615.491467][ T6224] mempool_alloc_slab+0x16/0x20 [ 615.496315][ T6224] ? mempool_free+0x130/0x130 [ 615.500992][ T6224] mempool_alloc+0x9d/0x310 [ 615.505495][ T6224] ? submit_bio_noacct+0x7ab/0x7d0 [ 615.510611][ T6224] bio_alloc_bioset+0xcc/0x530 [ 615.515435][ T6224] ? submit_bio+0x10c/0x190 [ 615.519949][ T6224] submit_bh_wbc+0x130/0x330 [ 615.524600][ T6224] submit_bh+0x21/0x30 [ 615.528677][ T6224] ? __wait_on_buffer+0x60/0x60 [ 615.533600][ T6224] ext4_read_bh_nowait+0xf4/0x120 [ 615.538624][ T6224] __ext4_get_inode_loc+0x6ac/0x8c0 [ 615.543835][ T6224] ? find_inode_fast+0x120/0x1c0 [ 615.548837][ T6224] __ext4_iget+0x268/0x2800 [ 615.553387][ T6224] ? alloc_workqueue+0xa18/0xad0 [ 615.558334][ T6224] ? ext4_fill_super+0x5725/0x7840 [ 615.563448][ T6224] ext4_fill_super+0x54b7/0x7840 [ 615.568379][ T6224] mount_bdev+0x1e8/0x290 [ 615.572708][ T6224] ? ext4_mount+0x40/0x40 [ 615.577073][ T6224] ? ext4_errno_to_code+0x110/0x110 [ 615.582343][ T6224] ext4_mount+0x2d/0x40 [ 615.586490][ T6224] legacy_get_tree+0x70/0xc0 [ 615.591086][ T6224] vfs_get_tree+0x4a/0x1a0 [ 615.595496][ T6224] path_mount+0x11ec/0x1d20 [ 615.600025][ T6224] __se_sys_mount+0x24b/0x2f0 [ 615.604762][ T6224] __x64_sys_mount+0x63/0x70 [ 615.609339][ T6224] do_syscall_64+0x44/0xa0 [ 615.613788][ T6224] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 615.619750][ T6224] RIP: 0033:0x7f1dfce41c2a [ 615.624151][ T6224] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 615.643762][ T6224] RSP: 002b:00007f1dfabb7fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 615.652218][ T6224] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f1dfce41c2a [ 615.660192][ T6224] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f1dfabb8000 [ 615.668146][ T6224] RBP: 00007f1dfabb8040 R08: 00007f1dfabb8040 R09: 0000000020000000 [ 615.676131][ T6224] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 615.684085][ T6224] R13: 0000000020000100 R14: 00007f1dfabb8000 R15: 0000000020013800 [ 615.698543][ T6224] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 615.705303][ T6224] EXT4-fs (loop5): mount failed [ 615.725741][ T6242] loop4: detected capacity change from 0 to 512 22:21:43 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:43 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 615.734808][ T6242] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 615.744928][ T6242] EXT4-fs (loop4): group descriptors corrupted! [ 615.766196][ T6225] loop3: detected capacity change from 0 to 264192 [ 615.773288][ T6225] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:21:43 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 615.783406][ T6225] EXT4-fs (loop3): group descriptors corrupted! [ 615.791107][ T6253] loop5: detected capacity change from 0 to 131456 [ 615.799993][ T6253] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 615.808149][ T6242] loop4: detected capacity change from 0 to 512 [ 615.815570][ T6253] EXT4-fs (loop5): mount failed [ 615.820933][ T6242] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 615.831053][ T6242] EXT4-fs (loop4): group descriptors corrupted! 22:21:43 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:43 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 615.879850][ T6272] loop3: detected capacity change from 0 to 264192 [ 615.885587][ T6268] loop5: detected capacity change from 0 to 131456 [ 615.895045][ T6272] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 615.897412][ T6268] EXT4-fs error (device loop5): ext4_fill_super:4810: inode #2: comm syz-executor.5: iget: root inode unallocated [ 615.905187][ T6272] EXT4-fs (loop3): group descriptors corrupted! [ 615.917158][ T6268] EXT4-fs (loop5): get root inode failed [ 615.924585][ T6275] loop4: detected capacity change from 0 to 1024 [ 615.928991][ T6268] EXT4-fs (loop5): mount failed 22:21:43 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 615.979725][ T6286] loop2: detected capacity change from 0 to 131456 [ 616.012521][ T6275] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.022686][ T6275] EXT4-fs (loop4): group descriptors corrupted! 22:21:43 executing program 1: ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(0xffffffffffffffff, 0xc08c5336, &(0x7f0000000380)={0x0, 0x8, 0x1, 'queue1\x00', 0x20}) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 616.221606][ T6275] loop4: detected capacity change from 0 to 1024 [ 616.244442][ T6272] loop3: detected capacity change from 0 to 264192 [ 616.251826][ T6275] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.252199][ T6268] loop5: detected capacity change from 0 to 131456 [ 616.261940][ T6275] EXT4-fs (loop4): group descriptors corrupted! [ 616.274937][ T6272] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.281461][ T6268] EXT4-fs error (device loop5): ext4_fill_super:4810: inode #2: comm syz-executor.5: iget: root inode unallocated [ 616.285057][ T6272] EXT4-fs (loop3): group descriptors corrupted! [ 616.297141][ T6268] EXT4-fs (loop5): get root inode failed [ 616.308971][ T6268] EXT4-fs (loop5): mount failed 22:21:43 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80040, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:43 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 616.327037][ T6317] loop1: detected capacity change from 0 to 131456 22:21:43 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x4, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 616.377047][ T6328] loop4: detected capacity change from 0 to 1024 [ 616.393250][ T6328] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.403378][ T6328] EXT4-fs (loop4): group descriptors corrupted! [ 616.433524][ T6333] loop3: detected capacity change from 0 to 264192 [ 616.455215][ T6333] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.465313][ T6333] EXT4-fs (loop3): group descriptors corrupted! 22:21:43 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:43 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 616.483164][ T6336] loop5: detected capacity change from 0 to 131456 [ 616.537878][ T6336] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 616.551149][ T6353] loop4: detected capacity change from 0 to 32768 [ 616.567882][ T6336] EXT4-fs (loop5): mount failed [ 616.572255][ T6354] loop3: detected capacity change from 0 to 264192 [ 616.580589][ T6353] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.590707][ T6353] EXT4-fs (loop4): group descriptors corrupted! [ 616.612727][ T6336] loop5: detected capacity change from 0 to 131456 [ 616.619505][ T6354] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.629616][ T6354] EXT4-fs (loop3): group descriptors corrupted! 22:21:44 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:44 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0xaaaaaaaaaaaaa7d, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000000500)="3d909da448e58c74409092283de721d84269d2ff65e530c79031585bff3f0aa299aa7d9d4ce7363a1cbcef807e89316831259286c04654b22877390e8d02341c826b11b056c5a76fc4e635fb1a4116f676242a2e1017a03bfa8292decab1894d92d11f0ef9e1d31cf82722ece733ba2cad980fc5d5cf5b4f0cee8944cdbcfaa86cfce7d704482161a2bcd22afd012b6433fc20638a9abd9afc9152ffe423838b5baa1cc8c7db3d512a0676fdff8a17b5300e21f14a0d5705b07754b402c3f7d0a9252b6dcc0a86d905b64ddec6b47a", 0x0, 0x802}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(r0, &(0x7f0000000040)='./bus\x00', 0x230100, 0x91) sendfile(r0, r1, 0x0, 0x80001d00c0d0) preadv(0xffffffffffffffff, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r2, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r3, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000fddbdf25050000004c00078008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="ae1e0100", @ANYRES32=r0, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3, @ANYBLOB="0c000400ff00000000000000"], 0x6c}, 0x1, 0x0, 0x0, 0xbe112c0a880bc71f}, 0x801) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x80800) fallocate(r4, 0x2d, 0x6, 0x280407) 22:21:44 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 616.640413][ T6353] loop4: detected capacity change from 0 to 32768 [ 616.651414][ T6353] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 616.661649][ T6353] EXT4-fs (loop4): group descriptors corrupted! [ 616.668408][ T6336] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 616.675661][ T6336] EXT4-fs (loop5): mount failed 22:21:44 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x5, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:44 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 617.017004][ T6384] loop2: detected capacity change from 0 to 131456 [ 617.051479][ T6382] loop3: detected capacity change from 0 to 264192 22:21:44 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) [ 617.063279][ T6390] loop4: detected capacity change from 0 to 65536 [ 617.102067][ T6382] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 617.112219][ T6382] EXT4-fs (loop3): group descriptors corrupted! [ 617.143137][ T6390] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 617.153293][ T6390] EXT4-fs (loop4): group descriptors corrupted! 22:21:44 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10040000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 618.665441][ T6412] loop3: detected capacity change from 0 to 264192 22:21:47 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2040000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:47 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000001c0)=0x0) ioctl$PIO_FONTX(0xffffffffffffffff, 0x4b6c, &(0x7f00000002c0)={0x7f, 0x16, &(0x7f0000000400)="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"}) ptrace$setregs(0x2, r0, 0x0, &(0x7f0000000380)="1d489fc9d4b16facfcfef7f825b086abb99765ae993e29482de8d02a1b167ff73a2a63658b0473c1d08bf55834ca8363a8577bb254b9d1ec36da5d1eecd0339e24f1a9310c9a4378f59f2f3047518458adf4b87b1508") writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r1 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r2 = gettid() tkill(r2, 0x7) prlimit64(r2, 0x1, 0x0, &(0x7f0000000800)) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x1dfe40, 0x60) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) fcntl$setsig(r1, 0xa, 0x1b) sendfile(r3, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:47 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:47 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 619.634259][ T6412] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 619.644390][ T6412] EXT4-fs (loop3): group descriptors corrupted! [ 619.649966][ T6422] loop5: detected capacity change from 0 to 131456 [ 619.667558][ T6426] loop4: detected capacity change from 0 to 66048 [ 619.710750][ T6422] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 619.724848][ T6426] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 619.735089][ T6426] EXT4-fs (loop4): group descriptors corrupted! [ 619.741123][ T6432] loop1: detected capacity change from 0 to 131456 [ 619.754101][ T6435] loop3: detected capacity change from 0 to 264192 [ 619.754696][ T6422] EXT4-fs (loop5): mount failed [ 619.774085][ T6426] loop4: detected capacity change from 0 to 66048 [ 619.780872][ T6426] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 619.790991][ T6426] EXT4-fs (loop4): group descriptors corrupted! [ 619.799499][ T6435] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 619.809649][ T6435] EXT4-fs (loop3): group descriptors corrupted! 22:21:47 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 620.011302][ T6452] loop2: detected capacity change from 0 to 131456 [ 620.030402][ T6422] loop5: detected capacity change from 0 to 131456 22:21:47 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) r2 = accept4$inet6(0xffffffffffffffff, &(0x7f0000002f80)={0xa, 0x0, 0x0, @private0}, &(0x7f0000002fc0)=0x1c, 0x0) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r3, 0x409, 0x20000000) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000003080)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000480)="b1f9dd5dec48c76ce76ff6a39de988f37eb567202e2e4d43323ffae1fce8b8bac1a651666accb943d4beace88071719883694e20063c61e844295fdafeda21a929bad427f04c60c5f87c090acd813ddff11733b0c82e1d9478cfa96f846700a3bec19dae2d219d11e186156375e925a734828b4eee", 0x75}, {&(0x7f0000000500)="3d273873b8ba5547b9ab4c3c18f92a9685d3b5d708dc824a59f6fcd4b097664b0efd203c7c693484e797d6d31b18b416d45e40363b8dcaae31d9842ca12b712eec78436396137489ef4fbcfbf4b76f8b2f9dffacd7ff6b6de4d7cf502a69c9e1177f966b32568004", 0x68}], 0x2, 0x0, 0x0, 0x44080}}, {{&(0x7f00000005c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000029c0)=[{&(0x7f0000000640)="aa271c0f50a79bb638b5d18da0e7678137d5ea14c008b6ce81321c6106c128c7a67ce32f2308c56207d838a16db8f644071f54dc9b22818df1c64e98b475e65db3e98e212fe546fa2649a3355ca5697c5a06633cd817ff8c36127672ab07bf45608cf609575de6c9eace9f0838379eb028df85f76f6b56673bf8e2c2158fa8aa920ff8de0ed3925801c1b9760513", 0x8e}, {&(0x7f0000000700)="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", 0x1000}, {&(0x7f0000001700)="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", 0x1000}, {&(0x7f0000002700)}, {&(0x7f0000002740)="c0498355bbad821d33eb2d279e9268a02b688c70ccb473", 0x17}, {&(0x7f0000002780)="77daaaa63a55a0ee9ea2e72831573794cca98737175fabf05ccabb7d1604094596b6f7f4748628fa46f9ee26985b9194e46ed76043a38ce33b8d761e1da1f34855dca7aea8e6a4b4cb6f0d155738ddf5037c720c70d635bb683a53a5a611869b39a5df158b9e8c0491629a1c6be87c15386233076ceeedb367b9020ed9c49d517a52d607bb6ab9c7478acd5301536697", 0x90}, {&(0x7f0000002840)="49eaa8d223b00a4f2585e48be365324f8390de779cdff61e074d4d4dd11f67572a563131a168c18dde240b2394cc2035c7d068eaf7f64a010903af427ccce3a22ac7fca8b2b46c319250744e28e1249e65caa8e9", 0x54}, {&(0x7f00000028c0)="809968a542feb64369f00b1ce679d6bf0a502a25c550b9e44847b5e3e28a4f8134d1db49628f1a929039cd7535b5248fa19ee4246fda8dd2de9f0a66d1c4744b27c70b898dc29ecd7765138733a4e2794cb7b7e23d97e826863fb025cb1758b53aec3ffef4bf954afaaa04222d314e3e0059f61216c5fed1e9ae49b9c3d59443096d", 0x82}, {&(0x7f0000002980)="065c77968b2d6fc3f61a8a953fc87a67f21744dc71990facddf6e222bf19db81ebe9", 0x22}], 0x9, &(0x7f0000002d80)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8, 0x8084}}, {{&(0x7f0000002e40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002f00)=[{&(0x7f0000002ec0)="b180e383cb0bc263e109aa262c4576397788c81b40367310", 0x18}], 0x1, &(0x7f0000003000)=ANY=[@ANYBLOB="1c00000000000039c9af68279eccdd00", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32, @ANYRES32=r3, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x48, 0x40004}}], 0x3, 0x8010) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) sched_setattr(r0, &(0x7f00000002c0)={0x38, 0x1, 0x42bd2e037a41de75, 0x3ff, 0x7, 0x8, 0x26e9, 0x100000001, 0x8, 0x4}, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x81, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) preadv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000380)=""/208, 0xd0}], 0x1, 0x40, 0x4) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 620.074346][ T6422] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 620.083180][ T6422] EXT4-fs (loop5): mount failed [ 620.093495][ T6474] loop4: detected capacity change from 0 to 98304 [ 620.106976][ T6478] loop1: detected capacity change from 0 to 140 22:21:47 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x11000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:47 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x6, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 620.117801][ T6474] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.128013][ T6474] EXT4-fs (loop4): group descriptors corrupted! 22:21:47 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x12000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:47 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 620.197625][ T6488] loop5: detected capacity change from 0 to 131456 [ 620.222514][ T6488] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 620.226849][ T6499] loop3: detected capacity change from 0 to 264192 [ 620.229261][ T6488] EXT4-fs (loop5): mount failed [ 620.236307][ T6500] loop4: detected capacity change from 0 to 131072 22:21:47 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x7, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 620.248543][ T6499] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.258632][ T6499] EXT4-fs (loop3): group descriptors corrupted! [ 620.261150][ T6500] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.275056][ T6500] EXT4-fs (loop4): group descriptors corrupted! [ 620.283059][ T6499] loop3: detected capacity change from 0 to 264192 [ 620.290037][ T6499] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.300305][ T6499] EXT4-fs (loop3): group descriptors corrupted! [ 620.307349][ T6508] loop5: detected capacity change from 0 to 131456 [ 620.318464][ T6508] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 620.320840][ T6500] loop4: detected capacity change from 0 to 131072 [ 620.332204][ T6500] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.335374][ T6508] EXT4-fs (loop5): mount failed 22:21:47 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x14000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 620.342734][ T6500] EXT4-fs (loop4): group descriptors corrupted! [ 620.353209][ T6478] loop1: detected capacity change from 0 to 140 [ 620.385118][ T6529] loop3: detected capacity change from 0 to 264192 22:21:47 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) prlimit64(r0, 0xc, &(0x7f00000001c0)={0x100000000, 0xf4d}, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 620.398021][ T6529] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.408205][ T6529] EXT4-fs (loop3): group descriptors corrupted! [ 620.437771][ T6508] loop5: detected capacity change from 0 to 131456 22:21:47 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x5000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 620.460144][ T6508] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 620.468588][ T6508] EXT4-fs (loop5): mount failed [ 620.479356][ T6529] loop3: detected capacity change from 0 to 264192 [ 620.491920][ T6529] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.502076][ T6529] EXT4-fs (loop3): group descriptors corrupted! 22:21:47 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x8, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 620.531408][ T6547] loop1: detected capacity change from 0 to 131456 22:21:48 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x20000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:48 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:48 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:48 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 620.587004][ T6559] loop4: detected capacity change from 0 to 163840 [ 620.596867][ T6559] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.606981][ T6559] EXT4-fs (loop4): group descriptors corrupted! [ 620.649650][ T6564] loop5: detected capacity change from 0 to 131456 [ 620.665023][ T6573] loop3: detected capacity change from 0 to 264192 [ 620.680539][ T6573] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.684037][ T6564] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 620.690646][ T6573] EXT4-fs (loop3): group descriptors corrupted! [ 620.698044][ T6581] loop4: detected capacity change from 0 to 196608 [ 620.704751][ T6564] EXT4-fs (loop5): mount failed [ 620.905794][ T6583] loop2: detected capacity change from 0 to 140 [ 620.912821][ T6581] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 620.916146][ T6583] EXT4-fs (loop2): bad geometry: block count 256 exceeds size of device (70 blocks) [ 620.923030][ T6581] EXT4-fs (loop4): group descriptors corrupted! 22:21:48 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000380)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe462, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) r0 = socket$inet_icmp(0x2, 0x2, 0x1) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0), &(0x7f00000002c0)=0xc) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./bus\x00', 0x0, 0x29003, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r3, 0x409, 0x20000000) r4 = syz_io_uring_setup(0x17e6, &(0x7f0000000140), &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000400)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x3938700}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x6, 0x0, @fd=r3, 0x6207addc, 0x0, 0x0, 0x2, 0x0, {0x0, r7}}, 0xfffffffe) [ 620.969853][ T6573] loop3: detected capacity change from 0 to 264192 [ 620.976855][ T6564] loop5: detected capacity change from 0 to 131456 [ 620.988121][ T6581] loop4: detected capacity change from 0 to 196608 [ 620.991727][ T6573] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.001370][ T6581] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:21:48 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x9, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:48 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x20100000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 621.004890][ T6573] EXT4-fs (loop3): group descriptors corrupted! [ 621.011058][ T6564] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 621.014977][ T6581] EXT4-fs (loop4): group descriptors corrupted! [ 621.034125][ T6564] EXT4-fs (loop5): mount failed 22:21:48 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6040000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 621.066916][ T6617] loop1: detected capacity change from 0 to 131456 [ 621.080792][ T6622] loop4: detected capacity change from 0 to 197120 [ 621.091702][ T6622] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.101855][ T6622] EXT4-fs (loop4): group descriptors corrupted! 22:21:48 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 621.122592][ T6630] loop5: detected capacity change from 0 to 131456 [ 621.134323][ T6628] loop3: detected capacity change from 0 to 264192 [ 621.181560][ T6628] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.191713][ T6628] EXT4-fs (loop3): group descriptors corrupted! [ 621.201371][ T6630] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 621.213442][ T6630] EXT4-fs (loop5): mount failed 22:21:48 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 621.241191][ T6628] loop3: detected capacity change from 0 to 264192 [ 621.257550][ T6643] loop4: detected capacity change from 0 to 229376 [ 621.265324][ T6630] loop5: detected capacity change from 0 to 131456 [ 621.278701][ T6643] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.288874][ T6643] EXT4-fs (loop4): group descriptors corrupted! [ 621.297907][ T6630] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 621.307491][ T6628] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.307617][ T6661] loop1: detected capacity change from 0 to 131456 [ 621.317663][ T6628] EXT4-fs (loop3): group descriptors corrupted! 22:21:48 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:48 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x22000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:48 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0xa, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 621.369403][ T6630] EXT4-fs (loop5): mount failed [ 621.428208][ T6668] loop4: detected capacity change from 0 to 262144 [ 621.436831][ T6668] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.447010][ T6668] EXT4-fs (loop4): group descriptors corrupted! 22:21:48 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:48 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000380)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000400)=""/190, 0xbe}], 0x1, &(0x7f00000004c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xf8}}, {{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000640)=""/241, 0xf1}, {&(0x7f0000000740)=""/83, 0x53}, {&(0x7f00000007c0)=""/198, 0xc6}], 0x3, &(0x7f00000008c0)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000000940), 0x6e, &(0x7f0000000dc0)=[{&(0x7f00000009c0)=""/77, 0x4d}, {&(0x7f0000000a40)=""/191, 0xbf}, {&(0x7f0000000b00)=""/71, 0x47}, {&(0x7f0000000b80)=""/93, 0x5d}, {&(0x7f0000000c00)=""/202, 0xca}, {&(0x7f0000000d00)=""/155, 0x9b}], 0x6, &(0x7f0000000e40)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000e80)=""/47, 0x2f}, {&(0x7f0000000ec0)=""/212, 0xd4}, {&(0x7f0000000fc0)=""/188, 0xbc}, {&(0x7f0000001080)=""/75, 0x4b}, {&(0x7f0000001100)=""/192, 0xc0}, {&(0x7f00000011c0)=""/123, 0x7b}, {&(0x7f0000001240)=""/24, 0x18}, {&(0x7f0000001280)=""/183, 0xb7}, {&(0x7f0000001340)=""/67, 0x43}], 0x9, &(0x7f0000001480)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{&(0x7f0000001500)=@abs, 0x6e, &(0x7f0000001740)=[{&(0x7f0000001580)=""/196, 0xc4}, {&(0x7f0000001680)=""/124, 0x7c}, {&(0x7f0000001700)=""/11, 0xb}], 0x3, &(0x7f0000001780)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}], 0x5, 0x120, &(0x7f0000001900)) sched_setattr(r0, &(0x7f0000001940)={0x38, 0x5, 0x4, 0x10001, 0x524, 0x8bea, 0x3, 0x3f48, 0x1, 0x5}, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 621.493108][ T6668] loop4: detected capacity change from 0 to 262144 [ 621.504295][ T6668] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.514383][ T6668] EXT4-fs (loop4): group descriptors corrupted! [ 621.525269][ T6683] loop3: detected capacity change from 0 to 264192 22:21:48 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 621.535471][ T6683] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.545768][ T6683] EXT4-fs (loop3): group descriptors corrupted! [ 621.553273][ T6689] loop5: detected capacity change from 0 to 131456 [ 621.573416][ T6699] loop1: detected capacity change from 0 to 131456 [ 621.585653][ T6683] loop3: detected capacity change from 0 to 264192 [ 621.599750][ T6689] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 621.606841][ T6689] EXT4-fs (loop5): mount failed 22:21:49 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x9000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 621.775941][ T6703] loop2: detected capacity change from 0 to 140 [ 621.819876][ T6703] EXT4-fs (loop2): bad geometry: block count 256 exceeds size of device (70 blocks) [ 621.829564][ T6683] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.839740][ T6683] EXT4-fs (loop3): group descriptors corrupted! [ 621.859682][ T6689] loop5: detected capacity change from 0 to 131456 22:21:49 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x25000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 621.869258][ T6689] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 621.876673][ T6689] EXT4-fs (loop5): mount failed [ 621.895477][ T6724] loop4: detected capacity change from 0 to 264192 [ 621.907974][ T6724] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:21:49 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xa000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 621.918101][ T6724] EXT4-fs (loop4): group descriptors corrupted! 22:21:49 executing program 1: ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000380)={{0x2, 0x4e20, @broadcast}, {0x306, @remote}, 0x0, {0x2, 0x4e20, @remote}, 'sit0\x00'}) prlimit64(0x0, 0x5, &(0x7f0000000280)={0x806, 0x1ff}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r0, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) r1 = openat(r0, &(0x7f00000002c0)='./bus\x00', 0x400802, 0xc6) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000001c0)=0x0) tkill(r2, 0x18) sendmsg$inet(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000000400)="0185955bdd439150ba6eb56341e6f6fd0a7e35fd19fc0e052b7ce4367c4c4876b63171869ffd1f81c52dab836f324d5d989044", 0x33}, {&(0x7f0000000440)="9af3b79d5a3969", 0x7}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="ea52297c130663e1be9f99193415a15b832b70dedc0d6e3c13e141e9a062e4d896892d832b06db24dd24515805eef6573c2b3ba9940006a06a32e348bc6033aa98b32fce36ba8cf00b2b76e5a5d583d00159697ef41cb21205cec1f9307d64e18b783ade71b7d15b902b9af4f43e7a3eeedaf8b41dcc17f36ea312b2e248216df45db53f7fd6af7b98a0459f13eae83fd023c8136a3107d16647f6e721fdbe313631613591ccf55b8b6874b52e21452a63856c9e4f9cd654f0d2f50d27c37430c810caa173417424c0947780a9dcf6daefb0e4da9f471cd6333b3dbb4b", 0xdd}, {&(0x7f0000001580)="36414c353c5139805a09348c2d564aaecd47737bdf429c7aee503db21245016fb67cd966f14f5928b9bb423def10f2cb6d9ebc4ced736a81f1279d81c602b515c5eed6a7b713154dd2f731ad61d4acb9f86c52d9b971fc8e8e57134fc1223e19b8fe5a74c7f78e731777c33d26549abdd64a436b1d9ba8fbaafdb5654016ce03ef45f56e5b3a18228d2c701c5712e34524147bcd7c4638141a1ae7a9352c3eef10972d8524044107727598d8dec7c20ea32bb55de87af20ff1c4f8ff4dc7c5df2640e9c5467bfbd08a8c7df5f0e2241f865db555b10dd1c4f072ea8ceb", 0xdd}, {&(0x7f0000001680)="82cbd2d8ff0f35974c915fd273911d7ecf992cf105b2469b8bea70cb40531aec0119acd70364284088ec74d6e3dcb811bbb8d5bb70ddde891d71b83ec6e0b9cdf96941ac921395fa867c9bfc4856242639ddfcb8315e345c7fd4c17be69bec01c63c5c374f7bfe5b97fff2b4e12203cd0de604ff65c0472aa08947ac04fa40c999de2790e9507e6031d4546e67e67f01c0244df445916e5bedc12dc07e0d31840f", 0xa1}, {&(0x7f0000001740)}, {&(0x7f0000001780)="669b4317e97ae172522e5f23d27bc9772c04ce16117e3bea79ce5197a6d3586a16386c72ec972b847b1a4c41c2852aa5ac3956be543912725ac1d2f9eb18746afd3a67aa9ed4d198c6398fbfdee1f88d009e4b86ae7255c3b098c13c260d836962ef8a66decb665e1c7c7a80f0a51602a43b5f43421a95fe12dc84d9", 0x7c}], 0x8, &(0x7f0000001980)=ANY=[@ANYBLOB="14000000000000000000000002000000010000000000000014000000000000200000000002000000b9d800000000000014000000000085224040000000000000070000009404010000000000556b58dc76dcb2aa17fb7e6b513196d4bb3dcf32ff390f5a1b41519f40a133d51674034ea80e100d00000000cb6db06e8766b46855367e998a3f449eb9271730ff1cd070d89f23cb07000000026d8e39c5ddec30f638400407dbe591184923367b77e52bf4e2e5202a5118d0e7006d4cbb330fd6453c7a74c009ba149ebc24fd93e5a9d3d048a5043d1686c07015749f8c9fb5a3d5870c2ffd1a19fa1b1abe72c92d0f68dd"], 0x48}, 0x50000) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000040000100000c000000ce0000000f0000000100000000000000000000d7f46501000000d7f4655f00000000010000000100"/84, 0x8e, 0x400}, {&(0x7f0000001740)="d79208b50005bef056f3d5548b0080000000000000f58f8559e516becf6dca4c4d36f5", 0x23, 0x6}, {0x0, 0x0, 0x8c7c}], 0x0, 0x0) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x480, 0x81) sendfile(r3, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x1f) 22:21:49 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0xb, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 621.968590][ T6732] loop3: detected capacity change from 0 to 264192 [ 621.980293][ T6732] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 621.990436][ T6732] EXT4-fs (loop3): group descriptors corrupted! [ 622.012163][ T6744] loop4: detected capacity change from 0 to 264192 22:21:49 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2e000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:49 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 622.025346][ T6744] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.035444][ T6744] EXT4-fs (loop4): group descriptors corrupted! [ 622.057733][ T6751] loop1: detected capacity change from 0 to 131456 [ 622.073722][ T6756] loop3: detected capacity change from 0 to 264192 [ 622.082378][ T6758] loop5: detected capacity change from 0 to 131456 [ 622.089220][ T6756] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.099324][ T6756] EXT4-fs (loop3): group descriptors corrupted! [ 622.110241][ T6758] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 622.117109][ T6758] EXT4-fs (loop5): mount failed 22:21:49 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x0, &(0x7f0000000300), 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0xc8400, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x208080, 0x0) r4 = syz_open_dev$rtc(&(0x7f00000002c0), 0xfffffffffffffffc, 0x3a4c0) close_range(r1, r0, 0x2) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r5, 0x409, 0x20000000) fcntl$setlease(0xffffffffffffffff, 0x409, 0x20000000) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f00000003c0)={0x6, 0x0, &(0x7f0000000380)=[0xffffffffffffffff, 0xffffffffffffffff, r3, r4, r5, r2, r0, r2, 0xffffffffffffffff]}, 0x9) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x1397) 22:21:49 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 622.154181][ T6769] loop4: detected capacity change from 0 to 264192 [ 622.174105][ T6769] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.184213][ T6769] EXT4-fs (loop4): group descriptors corrupted! [ 622.215468][ T6783] loop1: detected capacity change from 0 to 131456 [ 622.226675][ T6780] loop3: detected capacity change from 0 to 264192 [ 622.242638][ T6780] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.252893][ T6780] EXT4-fs (loop3): group descriptors corrupted! 22:21:49 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:49 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:49 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:49 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0xc, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:49 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f030000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:49 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f00000001c0)={0x38, 0x5, 0x10, 0x3f, 0x0, 0x80, 0x3ff, 0x6, 0x7, 0x76}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 622.409353][ T6803] loop4: detected capacity change from 0 to 264192 [ 622.424859][ T6808] loop3: detected capacity change from 0 to 264192 [ 622.436378][ T6811] loop1: detected capacity change from 0 to 131456 [ 622.445455][ T6803] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.455557][ T6803] EXT4-fs (loop4): group descriptors corrupted! [ 622.637777][ T6821] loop2: detected capacity change from 0 to 140 [ 622.648569][ T6821] EXT4-fs (loop2): bad geometry: block count 256 exceeds size of device (70 blocks) [ 622.665209][ T6812] loop5: detected capacity change from 0 to 131456 [ 622.701091][ T6808] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.711239][ T6808] EXT4-fs (loop3): group descriptors corrupted! [ 622.745174][ T6812] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 622.752302][ T6812] EXT4-fs (loop5): mount failed [ 622.786142][ T6808] loop3: detected capacity change from 0 to 264192 [ 622.801543][ T6812] loop5: detected capacity change from 0 to 131456 [ 622.809628][ T6808] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.819759][ T6808] EXT4-fs (loop3): group descriptors corrupted! [ 622.827969][ T6803] loop4: detected capacity change from 0 to 264192 22:21:50 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:50 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0xd, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:50 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 622.837482][ T6803] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.847800][ T6803] EXT4-fs (loop4): group descriptors corrupted! [ 622.859293][ T6812] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 622.865797][ T6812] EXT4-fs (loop5): mount failed [ 622.869058][ T6811] loop1: detected capacity change from 0 to 131456 [ 622.909669][ T6858] loop4: detected capacity change from 0 to 264192 [ 622.918021][ T6858] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.923654][ T6856] loop3: detected capacity change from 0 to 264192 [ 622.928113][ T6858] EXT4-fs (loop4): group descriptors corrupted! [ 622.939599][ T6867] loop5: detected capacity change from 0 to 131456 [ 622.951055][ T6867] EXT4-fs (loop5): corrupt root inode, run e2fsck 22:21:50 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x0, 0xe463, 0xd, 0x0, 0x19, 0x20000000, 0xfffffffa}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) r1 = perf_event_open(&(0x7f0000000380)={0x5, 0x80, 0x36, 0x1, 0x4, 0x70, 0x0, 0xff, 0x95204, 0x7, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x401, 0x1, @perf_bp={&(0x7f0000000140), 0xd}, 0x0, 0xfffffffffffffff8, 0x2, 0x8, 0xfffffffeffffffff, 0x2, 0x0, 0x0, 0x100, 0x0, 0x94}, r0, 0x3, 0xffffffffffffffff, 0xa) fallocate(r1, 0x0, 0xfff, 0x1) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r2, r3, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 622.963858][ T6858] loop4: detected capacity change from 0 to 264192 [ 622.974397][ T6867] EXT4-fs (loop5): mount failed [ 622.982402][ T6856] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 622.992592][ T6856] EXT4-fs (loop3): group descriptors corrupted! [ 623.002681][ T6858] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:21:50 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:50 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000800, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 623.012800][ T6858] EXT4-fs (loop4): group descriptors corrupted! [ 623.050068][ T6881] loop1: detected capacity change from 0 to 131456 [ 623.060860][ T6867] loop5: detected capacity change from 0 to 131456 [ 623.076095][ T6867] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 623.083646][ T6893] loop4: detected capacity change from 0 to 264192 [ 623.090618][ T6867] EXT4-fs (loop5): mount failed [ 623.099489][ T6893] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.109617][ T6893] EXT4-fs (loop4): group descriptors corrupted! [ 623.132421][ T6899] loop3: detected capacity change from 0 to 264192 [ 623.167494][ T6899] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.177630][ T6899] EXT4-fs (loop3): group descriptors corrupted! 22:21:50 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:50 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0xe, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 623.245778][ T6913] loop5: detected capacity change from 0 to 131456 [ 623.254391][ T6913] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 623.260817][ T6913] EXT4-fs (loop5): mount failed 22:21:50 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x0, 0x0, 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:50 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:50 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40030000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 623.408452][ T6900] loop1: detected capacity change from 0 to 131456 22:21:50 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9, 0x0, 0x0, 0x0, 0x0, 0x907e}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) creat(&(0x7f0000000180)='./file0\x00', 0x151) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 623.462286][ T6932] loop3: detected capacity change from 0 to 264192 [ 623.493330][ T6913] loop5: detected capacity change from 0 to 131456 [ 623.502810][ T6913] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 623.509372][ T6913] EXT4-fs (loop5): mount failed [ 623.520992][ T6932] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.522489][ T6938] loop4: detected capacity change from 0 to 264192 [ 623.531130][ T6932] EXT4-fs (loop3): group descriptors corrupted! 22:21:50 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0xf, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 623.553633][ T6938] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.563740][ T6938] EXT4-fs (loop4): group descriptors corrupted! [ 623.708531][ T6938] loop4: detected capacity change from 0 to 264192 [ 623.723562][ T6932] loop3: detected capacity change from 0 to 264192 [ 623.730550][ T6938] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.740679][ T6938] EXT4-fs (loop4): group descriptors corrupted! [ 623.744014][ T6957] loop5: detected capacity change from 0 to 131456 22:21:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:51 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x41030000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 623.754041][ T6932] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.764152][ T6932] EXT4-fs (loop3): group descriptors corrupted! [ 623.809473][ T6965] loop1: detected capacity change from 0 to 131456 [ 623.814277][ T6957] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 623.822924][ T6957] EXT4-fs (loop5): mount failed [ 623.857567][ T6979] loop3: detected capacity change from 0 to 264192 [ 623.862945][ T6957] loop5: detected capacity change from 0 to 131456 [ 623.866287][ T6979] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.880665][ T6979] EXT4-fs (loop3): group descriptors corrupted! 22:21:51 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x48000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 623.902287][ T6974] loop4: detected capacity change from 0 to 264192 22:21:51 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x10, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 623.941027][ T6957] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 623.948884][ T6974] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 623.949621][ T6957] EXT4-fs (loop5): mount failed [ 623.959179][ T6974] EXT4-fs (loop4): group descriptors corrupted! 22:21:51 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r2, 0x409, 0x20000000) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000380)) fallocate(0xffffffffffffffff, 0x8, 0x6, 0x3f) [ 624.028156][ T6999] loop3: detected capacity change from 0 to 264192 [ 624.032172][ T7001] loop1: detected capacity change from 0 to 131456 [ 624.037078][ T6974] loop4: detected capacity change from 0 to 264192 [ 624.042810][ T6996] loop5: detected capacity change from 0 to 131456 [ 624.053838][ T6974] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.064545][ T6974] EXT4-fs (loop4): group descriptors corrupted! 22:21:51 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x11, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:51 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) creat(&(0x7f0000000100)='./bus\x00', 0x0) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r3, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 624.088057][ T6996] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 624.101511][ T6996] EXT4-fs (loop5): mount failed [ 624.118934][ T6999] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.129121][ T6999] EXT4-fs (loop3): group descriptors corrupted! [ 624.181930][ T7024] loop5: detected capacity change from 0 to 131456 [ 624.184671][ T6999] loop3: detected capacity change from 0 to 264192 [ 624.196264][ T6999] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.196724][ T7024] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 624.206394][ T6999] EXT4-fs (loop3): group descriptors corrupted! [ 624.221850][ T7024] EXT4-fs (loop5): mount failed 22:21:51 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x0, 0x0, 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10040000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:51 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4c000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 624.326872][ T7036] loop4: detected capacity change from 0 to 264192 [ 624.336273][ T7036] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.346402][ T7036] EXT4-fs (loop4): group descriptors corrupted! 22:21:51 executing program 1: prlimit64(0x0, 0xa, &(0x7f0000000280)={0x43c, 0x2a9b2eaf}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fcntl$getownex(r0, 0x10, &(0x7f00000001c0)={0x0, 0x0}) sched_setattr(r3, &(0x7f00000002c0)={0x38, 0x1, 0x10000000, 0x1, 0x2, 0x5a3f, 0x300000, 0x4, 0x81, 0x1}, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 624.405744][ T7024] loop5: detected capacity change from 0 to 131456 [ 624.453597][ T7057] loop1: detected capacity change from 0 to 131456 [ 624.485087][ T7024] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 624.491949][ T7024] EXT4-fs (loop5): mount failed [ 624.497413][ T7062] loop3: detected capacity change from 0 to 264192 [ 624.508793][ T7062] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.518913][ T7062] EXT4-fs (loop3): group descriptors corrupted! 22:21:52 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x12, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 624.615711][ T7036] loop4: detected capacity change from 0 to 264192 [ 624.623299][ T7036] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.625013][ T7062] loop3: detected capacity change from 0 to 264192 [ 624.633645][ T7036] EXT4-fs (loop4): group descriptors corrupted! [ 624.648022][ T7062] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.658199][ T7062] EXT4-fs (loop3): group descriptors corrupted! [ 624.670937][ T7078] loop5: detected capacity change from 0 to 131456 [ 624.679692][ T7078] EXT4-fs (loop5): corrupt root inode, run e2fsck 22:21:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x11000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:52 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x60000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 624.723923][ T7065] loop1: detected capacity change from 0 to 131456 [ 624.745372][ T7078] EXT4-fs (loop5): mount failed [ 624.768149][ T7095] loop4: detected capacity change from 0 to 264192 [ 624.778002][ T7095] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.788113][ T7095] EXT4-fs (loop4): group descriptors corrupted! [ 624.793843][ T7098] loop3: detected capacity change from 0 to 264192 [ 624.833818][ T7095] loop4: detected capacity change from 0 to 264192 [ 624.846710][ T7078] loop5: detected capacity change from 0 to 131456 [ 624.853388][ T7098] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 624.863488][ T7098] EXT4-fs (loop3): group descriptors corrupted! [ 624.874114][ T7095] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:21:52 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000440)={{}, 0x0, 0x4, @unused=[0x1fc000000, 0x1, 0x80000000, 0x2], @devid}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000300)={{}, 0x0, 0xc, @unused=[0x1, 0x0, 0x1, 0x7], @devid}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000200)={0x0, 0x8, 0x7}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000440)={{}, 0x0, 0x8, @inherit={0x58, &(0x7f0000000000)={0x0, 0x2, 0x20, 0xa00000, {0x14, 0x8020, 0xfff, 0x8000, 0x7}, [0x5, 0x101]}}, @devid}) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000002fc0)={0x10, 0x4, {0x4, @struct={0x5, 0x1}, 0x0, 0xfffffffffffffff7, 0x1, 0x9, 0x7, 0x7fff, 0x8, @struct={0x5, 0x9}, 0x5, 0x5ca2, [0x2, 0x0, 0xa38d, 0x0, 0x7]}, {0x19d345c3, @struct={0x3, 0x5}, 0x0, 0x6, 0x8, 0x2, 0x64b5b35b, 0x1cc68c83, 0x440, @struct={0x0, 0x38e}, 0x1, 0x8000, [0x968, 0x401, 0xdc, 0x80000001, 0x1, 0x1000]}, {0x1, @usage=0x1f, 0x0, 0x8001, 0xffffffffffffff75, 0x1, 0x0, 0x6a, 0x0, @struct={0xeb7e, 0x5b24}, 0xf80000, 0x6, [0x8, 0x1, 0x7, 0x615, 0x2, 0x4]}, {0x9, 0x100000000, 0x7}}) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f00000001c0)={r2, 0x8, 0x20, 0x1}) recvmmsg(r3, &(0x7f0000002f00)=[{{&(0x7f0000000380)=@ethernet={0x0, @link_local}, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000400)=""/92, 0x5c}, {&(0x7f0000000480)=""/73, 0x49}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000500)=""/134, 0x86}, {&(0x7f00000005c0)=""/225, 0xe1}, {&(0x7f00000006c0)=""/192, 0xc0}, {&(0x7f0000000780)=""/19, 0x13}], 0x7, &(0x7f0000000840)=""/144, 0x90}, 0xba5}, {{&(0x7f0000000900)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @remote}}, 0x80, &(0x7f0000002c40)=[{&(0x7f0000000980)=""/83, 0x53}, {&(0x7f0000000a00)=""/4096, 0x1000}, {&(0x7f0000001a00)=""/97, 0x61}, {&(0x7f0000001a80)=""/234, 0xea}, {&(0x7f0000001b80)=""/4096, 0x1000}, {&(0x7f0000002b80)=""/83, 0x53}, {&(0x7f0000002c00)=""/12, 0xc}], 0x7, &(0x7f0000002cc0)=""/136, 0x88}, 0x5}, {{&(0x7f0000002d80)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000002e00), 0x0, &(0x7f0000002e40)=""/134, 0x86}, 0x10000}], 0x3, 0x100, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:52 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x68000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 624.884351][ T7095] EXT4-fs (loop4): group descriptors corrupted! [ 624.900088][ T7078] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 624.907092][ T7078] EXT4-fs (loop5): mount failed [ 624.907521][ T7112] loop1: detected capacity change from 0 to 131456 22:21:52 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x23, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x12000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:52 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) creat(&(0x7f0000000100)='./bus\x00', 0x0) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r3, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 625.007481][ T7128] loop3: detected capacity change from 0 to 264192 [ 625.025176][ T7129] loop5: detected capacity change from 0 to 131456 [ 625.027221][ T7131] loop4: detected capacity change from 0 to 264192 [ 625.034810][ T7129] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 625.046307][ T7129] EXT4-fs (loop5): mount failed [ 625.047177][ T7128] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.061282][ T7128] EXT4-fs (loop3): group descriptors corrupted! [ 625.073807][ T7131] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.075739][ T7129] loop5: detected capacity change from 0 to 131456 [ 625.083943][ T7131] EXT4-fs (loop4): group descriptors corrupted! [ 625.101216][ T7129] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 625.120550][ T7129] EXT4-fs (loop5): mount failed 22:21:52 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x0, 0x0, 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x14000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:52 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2e, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:52 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6c000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 625.245122][ T7141] loop1: detected capacity change from 0 to 131456 [ 625.265654][ T7168] loop3: detected capacity change from 0 to 264192 [ 625.292410][ T7170] loop5: detected capacity change from 0 to 131456 [ 625.319762][ T7171] loop4: detected capacity change from 0 to 264192 [ 625.329368][ T7168] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.339473][ T7168] EXT4-fs (loop3): group descriptors corrupted! [ 625.380939][ T7170] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 625.421995][ T7171] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.432139][ T7171] EXT4-fs (loop4): group descriptors corrupted! [ 625.459012][ T7170] EXT4-fs (loop5): mount failed 22:21:52 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000002400)=[{&(0x7f0000002280)=""/101, 0x65}, {&(0x7f0000002300)}, {&(0x7f0000002340)=""/182, 0xb6}], 0x3, &(0x7f0000002440)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x40}}], 0x1, 0x2, &(0x7f0000002500)) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r2, 0x409, 0x20000000) r3 = syz_open_dev$vcsu(&(0x7f00000028c0), 0x8, 0x40000) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r4, 0x409, 0x20000000) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000002d40)=[{{&(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000001c0)="5591", 0x2}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f00000002c0)}, {&(0x7f0000001ec0)="4473b85ba978c2600a47e5315c2a8c2d39dd100477c057d5a8286547594c1232f8a49c3382e935851f4138ef7d418ab33c7f1fb8bcb885a2cc250eb7d910492b5d9fb3c6f4ee8fd5ef37a494a3f16646e54c3a59bbbe6a90e0999d1c0dcfa326a537f581b8a2150e2d5dcd188f7a50e59826ff13154e3c9817dfabe8b5ac624783e27908f4e807d8cb1d0a5b37b55799705320b102b6ab7c8a39fc79d0af6210c618fb73f6bc31a5c3eb2d8b135e193ec9e0fa383ee3163615f2a2de3349672ec8c237d55c3be5", 0xc7}, {&(0x7f00000014c0)="96580d6057b472b0d39f5631081858889c415cf993d524797bcc49c4e1f26545369fca09aa48bc3a953ab835f10a09cf397a9c085315e4bb069a62928cfd7a606303ac5990ecc67ee922", 0x4a}, {&(0x7f0000001540)="b6bdd300bcbefd4a4d13346d53bdf58197f807ad6ad204f668b1a074a2377950004b0bbbe7d00c0a07ed17afb334f7b8b2e7af8421933912c4da5ac41e0457902490f4b05fff828a263eddc1a5ddade64388ac72668ef8460fc38cf50984a35cc2723841da1dafac88ed32f460a44c39cceb6d1f1b8ef2fa35eb8939e779bd43c2f1fbe66c3155244017a2d1786d98f07dc7953e53271d5725335c14809cb035b3555615b403c54a22", 0xa9}, {&(0x7f0000001600)="6bb877a7db0584cecc80e6e27e72e230ae6f43fc245ec54196b7259ed3cf204b389a503645830212ece416c9249971da8ae57deedf3ab5e8165f15acf70615930653f2ba07d854c140fbf5fe65782f80b1fb3a9fe952a53d1d6cbbafbc22fbd18eda59c8f6beebab3496374cd765b51f8ae81bddb56adcfc7c37c835ee20cd2683f380033f0654ad04b88f6f89e86f1ccc4adfd153", 0x95}], 0x7, &(0x7f00000017c0)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}], 0x88, 0x8000}}, {{&(0x7f0000001880)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001e40)=[{&(0x7f0000001900)="d073f03dde1a07e3dfa8185dc3eb99fb4f0864b080d76281f437924543e0c439e22fa4b39172ef37eb0f0117e92e489307c3368652e160dd44c2c408891e3d7e1e5e95c9628e13b29af3fb86ed04f522c60d26b6aa67d315eb5733390c293322bb39403e4e517e900ce723d707b6b6ad061cd7d33fde42fa2231b91c473a6421c5ca5ae952d83047cb889c48c3731801dca837405aeb6d8b6b3ccc4ba09bf86abf88e2ae1221bb75f4984e347498d0835b4d832588e05a6859743cbe3bd5d8a403a194cf72ccb5fe2b5ca20ba8ca88ef250acb22be7f1e140f5b34d8177d45a36f17683fcfd76654fb958a", 0xeb}, {&(0x7f0000001a00)="5ede9e7371374b316c09a28e8ade0d19ab12a07cd56363ee8d45a232da3bd7ff89860688b1a45719f9f52b18614fcd5249f927c1f1e340906f9d3a818d54d79cedf42eb7ab72511e646be51821b0a1c566bbda222aee11beb201af0adf10183a38bba53d5a352a82b0d60bb4526148e76cea9740cf38923319fa561f7772f8d87393a79584cf113cce46defecd9779daba33a18e361f671f365e192489a9ff18beb6ea0043278bd032edaa29f332afe41297aa20", 0xb4}, {&(0x7f0000001ac0)="80be255bb061df8eeb51649b260b1749bd65857c08b52f48232783bacd7c36012f46c6f6feeb125faa653c01a1c742490195afa051836967cd0b051c3077e6cd76e5cb5a6e3baa1b0be9ce113ecaddb111730fc4aa0cc21f88ab7de4cfeed4ce013ef8bef33b82129a1772d328680aad15362d818f0be354c951f8c1f744c50c7215c588884fd0", 0x87}, {&(0x7f0000001b80)="ef83989d85f068ede38944c4d37889b0a98de91859a8680b722882b735b5e14728054ef28a7ebe159a4ef0c35487b026092e967a384f3166907f2312154de1e3bcf2fcf05010f4b40e31e865ba53bc1255c24b4915410173ba55e016b6c5c16ec1f6d8158801c7fd7a21de2d12c83c96dc1580caa6b69e82cde1a5b0e036a407d9a5d1d6b33c5a96a97d8ee96d09c20d0d9ddb655968c74e716da0dfbde6fed02d9f91a0bb1444", 0xa7}, {&(0x7f0000001c40)="b01a334cc3cc2a065c8b191a7a4861373d9947dc80cfe7ae5470d2d23b02500827b9dc451376a957f3ecdcfe6c8768a813de805af00c06cb68f477b52869986cfbb27657eb3e1b1467f7dad762136289249bb4addcb976038c1902452b872420bc61664dd3dc1707ebd76d5c56bce87914703088d7674e1cff21648b1571ad01b260c54e61f3e7a5dbb256780c04b7cd282c9b5410362c92df3ad251492691a9e072df6896da0b7ee4df31e18092ef8fbf3d3c5640b1400d6ebe9a34a66c59d37790b77c2b7d48e420c72647b3c9ac8500ee454d01f73c1a6fb6f42967758e813307f9c8a38f9e19750969e65655ecc8f401e2467d55b5", 0xf7}, {&(0x7f0000001d40)="7695370e2d703a375997a03171bcd5b107db4ba2438d805a194c0a7ab62b4a8317e94d67f28b2b6f492bef177a08b72af85390605d00690748c7967711d0620b369a64f203715d4326a38273c6d3479ef6a6fcee6096580d1120bd2740bddba941dc6d11b4b30d8e0382b8e2d5a67a72e7792af6e1925c677c7237a1ed55d1c8887fd066819385d690b933554b1e0bd3ef66c90e30a03c35735f66d4c6100de65f6bae398647d90b8064a5", 0xab}, {&(0x7f0000001e00)="d6a54744670eaf1af8b100180f865ea31b69cf99ce631b335392b5c507e93f2a26c866", 0x23}], 0x7, &(0x7f0000002000)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98, 0x890}}, {{&(0x7f00000020c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000002240)=[{&(0x7f0000002140)="c15cdb49cd81464896d171f3dc4e9f3d14580029a4b18f64409ebf3a8e74ae5c329007e7aa9fa2ba75d8b28f4fcb8402155cc6d4c67b63878dc7ab26830cae27dc459f631921207f99988899b1c118a390cd522b95b4867ae04eb7def9487df2fa1020301bd79a65005dfb7a9ef67c759dfc751c7e5a3ec618a96293b443", 0x7e}, {&(0x7f00000021c0)="55a5240a529223578b4cb092c693d061e6bdedcd2fe0acfde6d7136e45f3fb1b9786241861d9a2b26e10c932525c49ad5a775044623689b01bbcdbb0e208337a9bd99d22defd", 0x46}], 0x2, &(0x7f0000002540)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r1, 0xffffffffffffffff}}}], 0x40, 0x800}}, {{&(0x7f0000002580)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000002600), 0x0, 0x0, 0x0, 0x4}}, {{&(0x7f0000002640)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000002880)=[{&(0x7f00000026c0)="aac019d698a48cf3637edade78e58a1879fda34a83cb82278e6f4b4ffa1d7e3fb5dc98d50844b2863ad6dee587baee4b5c2011546a8afc6950d613fa90c8b14a1c6da7469d41a589aff199c2be8c556da99b29aa4bf725def5186718a8e79dc39ab89ec38c8af59e80726b3c77165d5938fa54509d6e452af73e1832c5e1b6e47490f4fb9b46abeda50365f14fe3d09e42ad4a5ee07f2c923f5522bbea3099c93cd4b93edadda84b0697d6cad7493a2eeefd534d4b0ccbf29fcc", 0xba}, {&(0x7f0000002780)="939ca184024d4a12b56627108c056f080910c2bde79b86ea66e8e2c23be156c1e0aadc583aa060d57cddaaedddcce7f8c308eb3de3c12b56f21ff30a6e03ebde691b7b65", 0x44}, {&(0x7f0000002800)="d2d33a5606bc3b73877560ff117dd73d3cb58aaead4b371a67b1e1b471e35dca9124c501b5560e42918e6c2c357820e4d015787fbff0870cd3568fe3ab0dd79e02a3b4fd99f303cd", 0x48}], 0x3, &(0x7f0000001400)=ANY=[@ANYBLOB="2c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32, @ANYRES32=r4, @ANYBLOB="0000000035e11f449acd2428f1e6f96583b978a00b34bb0c94be76cf385aa5518ff5934f33c207aa8974acc2970900001e0dfcd374e8787bab49d72af769fe80f53efce2ed6367310db2f41f22b3a519360234ddebe3a115b0c6a3a04107311b16377bcfa3eb8645e58868825069f98010a6bd5c5b2ca6ae4d6c1afd0de6b823a3475f08068f0a955bde"], 0x30, 0x4000}}, {{&(0x7f0000002940)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000002cc0)=[{&(0x7f00000029c0)="1ec9f54f9387a5aa94bddb4b4578ec98bfd028d49f41468ecbb0d5942a57238015d0a78a3590ae2d700e5412ed75d51fd95b738ad53e175776234c0697eebbb8579f239a4a89c9771142392ac9507f296e9076a94ce8fe7b9a08eba9eab4cf89f49d20b583e160172aba4f4c428b474747bab5302ed203292738f09b3a18fbe04df12087e6fbe5d165609235adf8eb8e6c6cbc07580cd39b244a3b802e38418accd8c16501ff1ba9e84868900de81ed25169c40c2969993d79bb5da6", 0xbc}, {&(0x7f0000002a80)="2e1ff56834965960b359f7ab329c52c19412f3f6c5772d0f122bdad99a4857fe051f5fc0544cf72f7d5af3e5f8ead34c8158d05243b18fb411faacb1cfbdd1b9e86491a698b5d61444e7d38e15d96dd18479b8443c9af709680f189c3a2ffceaf49137237f1e07d2be64059a3d6334dde8a12b62c397ca098ae8d309750b8ee0e18660b0f86201f3da99dee21c4687854dfabd23bc47b9a34c5bed20f5107d9d12c42756f9e1c451593367a9d183e954287219c7a72a74c1e0d412204103f070d0e914de87dc9619b2a32f77ab947238da2d4a4d9d", 0xd5}, {&(0x7f0000002b80)="0c036d4d", 0x4}, {&(0x7f0000002bc0)}, {&(0x7f0000002c00)="189e458d97c3115220f64668b4ee79165f6fc87775270a6c533043b901a4", 0x1e}, {&(0x7f0000002c40)="b061453d06900c85e3a0e955558f79a0bf5fdeef97376a50e06af2fd55ca1954e2d8bc2b09646001e9dfa345fa07737b1d447e233be08855eb7d64e62637462891a3fb80fc14dbb4a62bbac77459cb8e705028c052cad9a9c1a45d78eae07b23004d9c37ac501ecfb528f738dd832c0e1a3a", 0x72}], 0x6}}], 0x6, 0x40000) writev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f00000002c0)="39fc165ce3edfcf600000013001104583eaa00000000000000f73f020000003b0a00010400ffe60e002b000a00020014a4ee", 0x32}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r5 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r5, r6, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 625.532361][ T7184] loop1: detected capacity change from 0 to 131456 [ 625.545703][ T7168] loop3: detected capacity change from 0 to 264192 [ 625.556998][ T7171] loop4: detected capacity change from 0 to 264192 [ 625.567633][ T7170] loop5: detected capacity change from 0 to 131456 [ 625.578677][ T7168] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.588892][ T7168] EXT4-fs (loop3): group descriptors corrupted! [ 625.603485][ T7171] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.613640][ T7171] EXT4-fs (loop4): group descriptors corrupted! [ 625.631235][ T7170] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 625.656084][ T7170] EXT4-fs (loop5): mount failed 22:21:53 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) setrlimit(0xa, &(0x7f00000001c0)={0x6, 0x7f}) 22:21:53 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x20000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:53 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x100c0, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:53 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x74000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 625.733019][ T7212] loop1: detected capacity change from 0 to 131456 [ 625.766079][ T7222] loop3: detected capacity change from 0 to 264192 [ 625.785635][ T7222] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.795792][ T7222] EXT4-fs (loop3): group descriptors corrupted! 22:21:53 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x20100000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:53 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0xffff}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) sched_setattr(r0, &(0x7f00000001c0)={0x38, 0x3, 0x23, 0x6, 0x2, 0x8, 0x7, 0x80, 0x101, 0x6}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 625.826102][ T7231] loop4: detected capacity change from 0 to 264192 [ 625.838338][ T7231] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.848464][ T7231] EXT4-fs (loop4): group descriptors corrupted! 22:21:53 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) creat(&(0x7f0000000100)='./bus\x00', 0x0) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r3, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 625.908268][ T7222] loop3: detected capacity change from 0 to 264192 [ 625.914744][ T7244] loop4: detected capacity change from 0 to 264192 [ 625.924671][ T7248] loop1: detected capacity change from 0 to 131456 [ 625.932178][ T7222] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.942361][ T7222] EXT4-fs (loop3): group descriptors corrupted! [ 625.952007][ T7244] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 625.962105][ T7244] EXT4-fs (loop4): group descriptors corrupted! 22:21:53 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:53 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x22000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 626.245672][ T7270] loop4: detected capacity change from 0 to 264192 [ 626.280736][ T7270] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:21:53 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7a000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 626.290848][ T7270] EXT4-fs (loop4): group descriptors corrupted! [ 626.297668][ T7276] loop2: detected capacity change from 0 to 131456 [ 626.306407][ T7276] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 626.316501][ T7276] EXT4-fs (loop2): group descriptors corrupted! [ 626.345435][ T7279] loop3: detected capacity change from 0 to 264192 [ 626.363935][ T7279] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 626.374042][ T7279] EXT4-fs (loop3): group descriptors corrupted! 22:21:53 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setaffinity(r0, 0x8, &(0x7f0000000500)=0x9) sched_setattr(r0, &(0x7f00000001c0)={0x38, 0x5, 0x10000038, 0x101, 0x67, 0x9, 0x8, 0xffffffff, 0x1, 0x1800000}, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) r1 = socket(0x1, 0x5, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setresuid(0x0, r2, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000009c0)=[{{&(0x7f0000000380)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000400)="422eb42e4c83b95686040a2c71b4c6f6aae79b2eaa11b53fcd90cfb9d3ddbe67e4df61bf89dc8e26b1d834481e0adddd46d27e945295cf422de7be76eb4e491f25769bce670b83a445c81d184d48ab8fd9cd111e01277f484e48bc17b8a724e63a40ac5272d4f1b01681af5bc9d712069c08603a23004de10533b6b90c479bb30c3078bdc396c7", 0x87}], 0x1, 0x0, 0x0, 0xa000}}, {{&(0x7f0000000540)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000000880)=[{&(0x7f00000004c0)="c571acd940c56156f31188ae53887b8710aeab2e24ab1b9e3a906a4023", 0x1d}, {&(0x7f00000005c0)="bdb649dbc9273e90b27803fe6a4b637a14f63d4e75ef6c35b6d73c4e9a2d7328a44bc83a95fc63cbd8b2bdb9488ef9e14aff64504377aa5382c802fbe6522df575dc4eb82efc70d13e52349976ceedfd969b0a5bb4cff051a34780adf5286d5a7a951f0d2abeb89cd2b260684b5c7e0d8272ebbdeb4b312182014cfb4d92218372c6462a7ac634ae7c1b2d77f8ff291a859762524bb86b0fa630e468a10d4972683b66692bcc392c244681c7f3357f577866640b8291e8d2c4551d78198ec9fd66d4ba131f7f28f07f4915c693d532ab67a4397c9f8904588ee79e800ad9afc7b5101f", 0xe3}, {&(0x7f00000006c0)="c035691a4cf8a796746e68a097fb73c062ef5dc0c358b967b5ab", 0x1a}, {&(0x7f0000000700)="a369b9f330e0cafcb32d758bb453cc9030db91591c246ccbd3eda1ba7af9ae8432bb32410d9b10b0ce6652ac45112e68ce1095b85f42bab78967bb05b72792a024289712961b66ff0d7383e1aa648470ceef1650c0d4017e88b55a22e76248356fc32d8f8b3e63aed6d1d9d5e3a9aca89074c923f7740fcb6e7f1b26b464c4cf45e736c19c001febb7ca47f6978259d46c90edf753603e5f4435804257ceb4e3e50ba13f701ad2a1992f98b7310e97e5781f6b9acafbdd195f865b1a5fb837f041", 0xc1}, {&(0x7f0000000800)="c1070c742856f7d59b7bfa2650e362ad0faff6356410b2fba946350c450044cecc76a735e72b9ab27dd9d312460d3b6909f281d3f41c8dd0b51aba136bed23d6e39f", 0x42}], 0x5, &(0x7f0000000940)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, r2, 0xee00}}}], 0x48, 0x4000040}}], 0x2, 0x4000040) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r3, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 626.427766][ T7230] loop5: detected capacity change from 0 to 131456 [ 626.436750][ T7230] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 not in group (block 135266304)! [ 626.447583][ T7230] EXT4-fs (loop5): group descriptors corrupted! 22:21:53 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0xfffffffffffffffc, 0x73, 0x10, @buffer={0x0, 0x5, &(0x7f00000001c0)=""/5}, &(0x7f0000000380)="e7976f3ea9c677f9188e7758b44b1f838a376048831443c1eab0296f6fabea02cc80a67e7eaf5475f4f7a10ed087ce9d7ea718fbd919319e744d2dfd2b408539a2342a7c26d3bc95ef28989d10e9d8f0d771d1dd1143138b68914ea5b4677f787b588345e8b0d94b3e51a5f21689db7243a68d", &(0x7f00000002c0)=""/25, 0x6, 0x11, 0x0, &(0x7f0000000400)}) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 626.493417][ T7270] loop4: detected capacity change from 0 to 264192 [ 626.500739][ T7279] loop3: detected capacity change from 0 to 264192 [ 626.519983][ T7270] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 626.530108][ T7270] EXT4-fs (loop4): group descriptors corrupted! [ 626.536889][ T7279] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 626.542205][ T7304] loop1: detected capacity change from 0 to 131456 [ 626.547106][ T7279] EXT4-fs (loop3): group descriptors corrupted! 22:21:54 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="02000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:54 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x25000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:54 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x85ffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 626.661717][ T7319] loop5: detected capacity change from 0 to 131456 [ 626.670631][ T7319] EXT4-fs (loop5): inodes count not valid: 2 vs 32 22:21:54 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) setrlimit(0x2, &(0x7f00000003c0)={0x7, 0x1}) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x212a80, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x48142, 0x0) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000380)=[r0, r3], 0x2) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 626.714417][ T7327] loop3: detected capacity change from 0 to 264192 [ 626.729324][ T7327] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 626.736663][ T7329] loop4: detected capacity change from 0 to 264192 [ 626.739456][ T7327] EXT4-fs (loop3): group descriptors corrupted! [ 626.755724][ T7335] loop1: detected capacity change from 0 to 131456 22:21:54 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x0, 0x280407) [ 626.774509][ T7319] loop5: detected capacity change from 0 to 131456 22:21:54 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8cffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:54 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="08000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 626.816697][ T7319] EXT4-fs (loop5): inodes count not valid: 2 vs 32 [ 626.856436][ T7351] loop3: detected capacity change from 0 to 264192 [ 626.856728][ T7329] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 626.865125][ T7351] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 626.873040][ T7329] EXT4-fs (loop4): group descriptors corrupted! [ 626.889373][ T7351] EXT4-fs (loop3): group descriptors corrupted! [ 626.891722][ T7355] loop5: detected capacity change from 0 to 131456 [ 626.959639][ T7355] EXT4-fs (loop5): inodes count not valid: 8 vs 32 22:21:54 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:54 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2e000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:54 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) getrlimit(0x9, &(0x7f0000000380)) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = getpid() sched_setaffinity(r0, 0x8, &(0x7f0000000500)=0x9) prlimit64(r0, 0x6, &(0x7f00000001c0)={0xffff, 0x10001}, &(0x7f00000002c0)) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 627.073075][ T7351] loop3: detected capacity change from 0 to 264192 [ 627.081976][ T7355] loop5: detected capacity change from 0 to 131456 [ 627.095363][ T7355] EXT4-fs (loop5): inodes count not valid: 8 vs 32 [ 627.096394][ T7379] loop4: detected capacity change from 0 to 264192 [ 627.109946][ T7379] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 627.120146][ T7379] EXT4-fs (loop4): group descriptors corrupted! [ 627.153031][ T7384] loop2: detected capacity change from 0 to 131456 [ 627.168375][ T7384] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 627.178487][ T7384] EXT4-fs (loop2): group descriptors corrupted! 22:21:54 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x97ffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:54 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbe000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 627.292124][ T7387] loop1: detected capacity change from 0 to 131456 22:21:54 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="09000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:54 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 627.332461][ T7379] loop4: detected capacity change from 0 to 264192 [ 627.342099][ T7379] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 627.352248][ T7379] EXT4-fs (loop4): group descriptors corrupted! 22:21:54 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r1, 0x409, 0x20000000) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f00000002c0)={0x200000, 0x0, &(0x7f00000001c0)=[r0, r1]}, 0x2) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 627.401682][ T7404] loop3: detected capacity change from 0 to 264192 [ 627.408981][ T7404] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 627.419099][ T7404] EXT4-fs (loop3): group descriptors corrupted! [ 627.456340][ T7419] loop5: detected capacity change from 0 to 131456 [ 627.464803][ T7419] EXT4-fs (loop5): inodes count not valid: 9 vs 32 [ 627.484649][ T7404] loop3: detected capacity change from 0 to 264192 22:21:54 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="0a000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 627.498494][ T7404] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 627.508639][ T7404] EXT4-fs (loop3): group descriptors corrupted! [ 627.518575][ T7426] loop4: detected capacity change from 0 to 264192 [ 627.535722][ T7425] loop1: detected capacity change from 0 to 131456 [ 627.600249][ T7426] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 627.604512][ T7442] loop5: detected capacity change from 0 to 131456 [ 627.610381][ T7426] EXT4-fs (loop4): group descriptors corrupted! [ 627.638312][ T7442] EXT4-fs (loop5): inodes count not valid: 10 vs 32 22:21:55 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x0, 0x280407) 22:21:55 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbf000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:55 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getrlimit(0xe, &(0x7f0000000380)) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) r0 = getpid() sched_setaffinity(r0, 0x8, &(0x7f0000000500)=0x9) sched_setattr(r0, &(0x7f00000003c0)={0x38, 0x1, 0x0, 0x0, 0x6, 0x6, 0xfffffffffffff001, 0xfffffffffffffeff, 0x8001, 0x40}, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x123000, 0x0) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='./bus/file0\x00', 0x80, 0x0) sendfile(r2, r3, 0x0, 0x80001d00c0d0) creat(&(0x7f0000000400)='./file0\x00', 0x24) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 627.711570][ T7454] loop3: detected capacity change from 0 to 264192 [ 627.722156][ T7454] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 627.732258][ T7454] EXT4-fs (loop3): group descriptors corrupted! [ 627.741884][ T7458] loop1: detected capacity change from 0 to 131456 22:21:55 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:55 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="0b000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:55 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:55 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) sched_setattr(0xffffffffffffffff, &(0x7f00000001c0)={0x38, 0x1, 0x20, 0x7, 0x80000000, 0x7, 0x6, 0x1, 0xa44, 0x8}, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x202008, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:55 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc0000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 627.959553][ T7480] loop4: detected capacity change from 0 to 264192 [ 627.971443][ T7482] loop5: detected capacity change from 0 to 131456 [ 627.981109][ T7486] loop3: detected capacity change from 0 to 264192 [ 627.982521][ T7484] loop1: detected capacity change from 0 to 131456 [ 627.990577][ T7486] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.004262][ T7486] EXT4-fs (loop3): group descriptors corrupted! [ 628.073081][ T7495] loop2: detected capacity change from 0 to 131456 [ 628.082004][ T7495] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.092121][ T7495] EXT4-fs (loop2): group descriptors corrupted! [ 628.105618][ T7482] EXT4-fs (loop5): inodes count not valid: 11 vs 32 22:21:55 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc0ed0000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 628.130092][ T7480] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.140239][ T7480] EXT4-fs (loop4): group descriptors corrupted! [ 628.264702][ T7482] loop5: detected capacity change from 0 to 131456 [ 628.271420][ T7509] loop3: detected capacity change from 0 to 264192 [ 628.275664][ T7480] loop4: detected capacity change from 0 to 264192 [ 628.279992][ T7509] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.294562][ T7509] EXT4-fs (loop3): group descriptors corrupted! [ 628.301054][ T7482] EXT4-fs (loop5): inodes count not valid: 11 vs 32 22:21:55 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x10000000, 0xe463, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) sched_setattr(r0, &(0x7f00000002c0)={0x38, 0x3, 0x42, 0x4, 0x3ff, 0x3, 0x2, 0x8001, 0x8, 0x9}, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000000380)="0b7c090cd887f2fee00209d9c4b4d1b24c06715189d1bf3752467fb6bca602daa0de85640d13ae3993d6f34880997e97939fa37a431e7cb612f50400"/74, 0x4a, 0x800}, {0x0, 0x0, 0x8c7c}], 0x6820, 0x0) prlimit64(r0, 0xc, 0x0, &(0x7f00000001c0)) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000440), 0x101000, 0x0) fallocate(r2, 0x1c, 0x1f, 0x200) r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) ftruncate(r3, 0x3) sendfile(r1, r3, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) setrlimit(0x7, &(0x7f0000000400)={0x6, 0xda}) 22:21:55 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="0c000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:55 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000800, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 628.309225][ T7480] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.319394][ T7480] EXT4-fs (loop4): group descriptors corrupted! [ 628.334008][ T7509] loop3: detected capacity change from 0 to 264192 [ 628.341020][ T7509] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.351174][ T7509] EXT4-fs (loop3): group descriptors corrupted! [ 628.404832][ T7537] loop5: detected capacity change from 0 to 131456 [ 628.410515][ T7536] loop4: detected capacity change from 0 to 264192 [ 628.422493][ T7533] loop1: detected capacity change from 0 to 131456 [ 628.434285][ T7537] EXT4-fs (loop5): inodes count not valid: 12 vs 32 [ 628.445725][ T7536] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.455906][ T7536] EXT4-fs (loop4): group descriptors corrupted! [ 628.510544][ T7536] loop4: detected capacity change from 0 to 264192 22:21:56 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x0, 0x280407) 22:21:56 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd3fbf3e2, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="0d000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 628.552886][ T7536] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.563006][ T7536] EXT4-fs (loop4): group descriptors corrupted! [ 628.606863][ T7561] loop3: detected capacity change from 0 to 264192 [ 628.609588][ T7565] loop5: detected capacity change from 0 to 131456 [ 628.639912][ T7565] EXT4-fs (loop5): inodes count not valid: 13 vs 32 [ 628.670956][ T7561] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.681071][ T7561] EXT4-fs (loop3): group descriptors corrupted! 22:21:56 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {0x0, 0x0, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:56 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r2, 0x409, 0x20000000) ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f00000001c0)={0x9, 0x6}) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:56 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x42030000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="0e000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 628.840223][ T7582] loop1: detected capacity change from 0 to 131456 [ 628.849820][ T7585] loop4: detected capacity change from 0 to 264192 [ 628.874642][ T7561] loop3: detected capacity change from 0 to 264192 [ 628.907514][ T7561] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.917699][ T7561] EXT4-fs (loop3): group descriptors corrupted! [ 628.924515][ T7598] loop2: detected capacity change from 0 to 131456 [ 628.934350][ T7598] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.944447][ T7598] EXT4-fs (loop2): group descriptors corrupted! [ 628.954985][ T7585] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 628.965093][ T7585] EXT4-fs (loop4): group descriptors corrupted! [ 628.982844][ T7596] loop5: detected capacity change from 0 to 131456 22:21:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="1e000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 629.058586][ T7596] EXT4-fs (loop5): inodes count not valid: 14 vs 32 22:21:56 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xdaffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 629.142263][ T7585] loop4: detected capacity change from 0 to 264192 [ 629.147062][ T7616] loop5: detected capacity change from 0 to 131456 [ 629.157997][ T7616] EXT4-fs (loop5): inodes count not valid: 30 vs 32 [ 629.181920][ T7585] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:21:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="21000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 629.192043][ T7585] EXT4-fs (loop4): group descriptors corrupted! [ 629.209996][ T7624] loop3: detected capacity change from 0 to 264192 [ 629.217814][ T7624] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.227903][ T7624] EXT4-fs (loop3): group descriptors corrupted! 22:21:56 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x43030000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 629.244849][ T7632] loop5: detected capacity change from 0 to 131456 [ 629.253662][ T7632] EXT4-fs (loop5): inodes count not valid: 33 vs 32 [ 629.273717][ T7638] loop4: detected capacity change from 0 to 264192 [ 629.282233][ T7638] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.292324][ T7638] EXT4-fs (loop4): group descriptors corrupted! [ 629.298650][ T7582] loop1: detected capacity change from 0 to 131456 [ 629.307297][ T7624] loop3: detected capacity change from 0 to 264192 [ 629.317097][ T7632] loop5: detected capacity change from 0 to 131456 [ 629.324012][ T7624] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.328331][ T7632] EXT4-fs (loop5): inodes count not valid: 33 vs 32 22:21:56 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) setrlimit(0x6, &(0x7f00000001c0)={0x1, 0x5}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x4030014, 0x0, &(0x7f0000000300), 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 629.334124][ T7624] EXT4-fs (loop3): group descriptors corrupted! [ 629.364807][ T7638] loop4: detected capacity change from 0 to 264192 [ 629.381644][ T7638] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.391862][ T7638] EXT4-fs (loop4): group descriptors corrupted! [ 629.426986][ T7668] loop1: detected capacity change from 0 to 131456 22:21:56 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x0) 22:21:56 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe2f3fbd3, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="23000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 629.508609][ T7681] loop5: detected capacity change from 0 to 131456 [ 629.518968][ T7681] EXT4-fs (loop5): inodes count not valid: 35 vs 32 [ 629.539361][ T7682] loop3: detected capacity change from 0 to 264192 [ 629.552880][ T7682] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.563064][ T7682] EXT4-fs (loop3): group descriptors corrupted! 22:21:57 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {0x0, 0x0, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:57 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r3, 0x409, 0x20000000) write(r3, &(0x7f0000000380)="a49450b1753ad7a8f4e304abaa38944c2251a62362f2b74b82380ee0e66d44930aae3af9bcb2c34367dae73b6f01e7a9c4", 0x31) r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r4, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) mkdirat(r4, &(0x7f00000003c0)='./file1\x00', 0x40) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) prlimit64(r0, 0x1, &(0x7f00000001c0)={0x1f, 0x235}, &(0x7f00000002c0)) 22:21:57 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x48000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:57 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="25000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 629.699545][ T7696] loop5: detected capacity change from 0 to 131456 [ 629.742762][ T7682] loop3: detected capacity change from 0 to 264192 [ 629.780376][ T7708] loop1: detected capacity change from 0 to 131456 [ 629.803965][ T7696] EXT4-fs (loop5): inodes count not valid: 37 vs 32 [ 629.811068][ T7712] loop2: detected capacity change from 0 to 131456 [ 629.832180][ T7712] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.842307][ T7712] EXT4-fs (loop2): group descriptors corrupted! 22:21:57 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="29000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:57 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf6ffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 629.925539][ T7707] loop4: detected capacity change from 0 to 264192 22:21:57 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) io_uring_register$IORING_UNREGISTER_FILES(0xffffffffffffffff, 0x3, 0x0, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) getpgid(r0) [ 629.984650][ T7707] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.994949][ T7707] EXT4-fs (loop4): group descriptors corrupted! [ 630.005444][ T7726] loop5: detected capacity change from 0 to 131456 [ 630.016850][ T7726] EXT4-fs (loop5): inodes count not valid: 41 vs 32 [ 630.044164][ T7728] loop3: detected capacity change from 0 to 264192 [ 630.048255][ T7707] loop4: detected capacity change from 0 to 264192 [ 630.053006][ T7728] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.067277][ T7728] EXT4-fs (loop3): group descriptors corrupted! [ 630.083624][ T7726] loop5: detected capacity change from 0 to 131456 22:21:57 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf9fdffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 630.096173][ T7726] EXT4-fs (loop5): inodes count not valid: 41 vs 32 [ 630.118592][ T7707] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.128691][ T7707] EXT4-fs (loop4): group descriptors corrupted! 22:21:57 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x48030000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 630.150487][ T7747] loop1: detected capacity change from 0 to 131456 [ 630.210489][ T7760] loop3: detected capacity change from 0 to 264192 [ 630.218234][ T7761] loop4: detected capacity change from 0 to 264192 [ 630.229553][ T7761] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.239644][ T7761] EXT4-fs (loop4): group descriptors corrupted! [ 630.246379][ T7760] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.256466][ T7760] EXT4-fs (loop3): group descriptors corrupted! [ 630.292222][ T7760] loop3: detected capacity change from 0 to 264192 [ 630.299549][ T7761] loop4: detected capacity change from 0 to 264192 [ 630.305154][ T7760] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.306750][ T7761] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.316147][ T7760] EXT4-fs (loop3): group descriptors corrupted! [ 630.332608][ T7761] EXT4-fs (loop4): group descriptors corrupted! 22:21:57 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfdfdffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:57 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="00200000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:57 executing program 1: perf_event_open(0x0, 0xffffffffffffffff, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) ftruncate(0xffffffffffffffff, 0x0) mmap(&(0x7f000013f000/0xf000)=nil, 0xf000, 0x3000006, 0x800000000009031, 0xffffffffffffffff, 0x0) accept$inet(0xffffffffffffffff, 0x0, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) move_pages(0x0, 0x1, &(0x7f0000000100)=[&(0x7f000051d000/0x3000)=nil], &(0x7f0000000000), &(0x7f0000000180), 0x4) fallocate(r0, 0x34, 0xce, 0xffffffff) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000380)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) preadv(0xffffffffffffffff, &(0x7f0000000740)=[{&(0x7f00000002c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/9, 0x9}, {&(0x7f0000000400)=""/114, 0x72}, {&(0x7f0000000480)=""/252, 0xfc}, {&(0x7f0000000240)=""/3, 0x3}, {&(0x7f0000000580)=""/199, 0xc7}, {&(0x7f0000000680)=""/178, 0xb2}], 0x7, 0x80, 0x25) [ 630.407045][ T7784] loop3: detected capacity change from 0 to 264192 [ 630.424359][ T7784] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.429912][ T7791] loop5: detected capacity change from 0 to 131456 [ 630.434475][ T7784] EXT4-fs (loop3): group descriptors corrupted! [ 630.449162][ T7793] loop1: detected capacity change from 0 to 131456 [ 630.471652][ T7784] loop3: detected capacity change from 0 to 264192 [ 630.488190][ T7784] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.498314][ T7784] EXT4-fs (loop3): group descriptors corrupted! 22:21:57 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {0x0, 0x0, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:57 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4c000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:57 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x11000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 630.541717][ T7791] EXT4-fs (loop5): inodes count not valid: 8192 vs 32 [ 630.563902][ T7810] loop4: detected capacity change from 0 to 264192 [ 630.566341][ T7813] loop0: detected capacity change from 0 to 264192 [ 630.574172][ T7810] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.579488][ T7813] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.587007][ T7810] EXT4-fs (loop4): group descriptors corrupted! [ 630.603333][ T7813] EXT4-fs (loop0): group descriptors corrupted! 22:21:58 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfdffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 630.636524][ T7791] loop5: detected capacity change from 0 to 131456 [ 630.659702][ T7791] EXT4-fs (loop5): inodes count not valid: 8192 vs 32 [ 630.672915][ T7827] loop2: detected capacity change from 0 to 131456 [ 630.680945][ T7827] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.691038][ T7827] EXT4-fs (loop2): group descriptors corrupted! [ 630.711116][ T7830] loop3: detected capacity change from 0 to 264192 [ 630.722559][ T7830] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.732702][ T7830] EXT4-fs (loop3): group descriptors corrupted! 22:21:58 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x10000031, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f0000000380)={{r0}, 0x3, &(0x7f00000001c0)=[0x80000001, 0x0, 0xfffffffffffffffd], 0x3fffc00, 0x1, [0xfffffffffffff5fa, 0x9, 0x67a, 0x4]}) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(r0, &(0x7f0000000040)='/proc/self/exe\x00', 0x92c2, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:58 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="c0000100000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 630.825873][ T7810] loop4: detected capacity change from 0 to 264192 [ 630.846209][ T7830] loop3: detected capacity change from 0 to 264192 [ 630.858920][ T7810] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.869064][ T7810] EXT4-fs (loop4): group descriptors corrupted! [ 630.877509][ T7830] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 630.887638][ T7830] EXT4-fs (loop3): group descriptors corrupted! 22:21:58 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0xb, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 630.932586][ T7859] loop5: detected capacity change from 0 to 131456 [ 630.951225][ T7861] loop1: detected capacity change from 0 to 131456 [ 630.959818][ T7859] EXT4-fs (loop5): inodes count not valid: 65728 vs 32 22:21:58 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfeffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:58 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x60000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:58 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() r0 = getpid() sched_setaffinity(r0, 0x8, &(0x7f0000000500)=0x9) capset(&(0x7f00000001c0)={0x20080522, r0}, &(0x7f00000002c0)={0x10000, 0x4, 0x0, 0x9, 0x8, 0x8001}) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 631.015713][ T7869] loop0: detected capacity change from 0 to 131456 [ 631.024625][ T7869] EXT4-fs (loop0): corrupt root inode, run e2fsck [ 631.031134][ T7869] EXT4-fs (loop0): mount failed [ 631.053704][ T7859] loop5: detected capacity change from 0 to 131456 22:21:58 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2) sendmsg$NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x101}, 0x14}}, 0x0) sendmsg$NL80211_CMD_START_SCHED_SCAN(r1, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)={0xb4, r3, 0x2, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x15}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_SCAN_SSIDS={0x74, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}, {0xf, 0x0, @random="da2a6295c358f047f29e32"}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xb, 0x0, @random="c4222960100447"}, {0xa, 0x0, @default_ap_ssid}]}, @NL80211_ATTR_SCAN_FREQUENCIES={0x14, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x4}, {0x8, 0x0, 0x3f}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x20000080}, 0x4008000) [ 631.072898][ T7883] loop1: detected capacity change from 0 to 131456 [ 631.096584][ T7859] EXT4-fs (loop5): inodes count not valid: 65728 vs 32 22:21:58 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20020000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 631.126443][ T7893] loop3: detected capacity change from 0 to 264192 [ 631.139564][ T7897] loop4: detected capacity change from 0 to 264192 [ 631.146365][ T7893] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.150710][ T7900] loop0: detected capacity change from 0 to 131456 [ 631.156490][ T7893] EXT4-fs (loop3): group descriptors corrupted! [ 631.182030][ T7897] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.192162][ T7897] EXT4-fs (loop4): group descriptors corrupted! [ 631.221278][ T7909] loop5: detected capacity change from 0 to 131456 [ 631.237912][ T7909] EXT4-fs (loop5): inodes count not valid: 544 vs 32 [ 631.278056][ T7916] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 631.279531][ T7897] loop4: detected capacity change from 0 to 264192 [ 631.319093][ T7897] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.329220][ T7897] EXT4-fs (loop4): group descriptors corrupted! 22:21:58 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00), 0x0, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:58 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xff0f0000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:58 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20030000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:58 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000400)={0x38, 0x6, 0x9, 0x2, 0x401, 0x0, 0xffffffffffffff2a, 0x9, 0x2, 0x7ff}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x6, 0xc0000000000, 0x280407) r3 = openat(r2, &(0x7f00000001c0)='./file0\x00', 0x80000, 0x2) name_to_handle_at(r3, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380)=@ceph_nfs_snapfh={0x1c, 0x4e, {0xff, 0x3, 0x0, 0xc9d}}, &(0x7f00000003c0), 0x400) 22:21:58 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:58 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x68000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 631.432274][ T7933] loop3: detected capacity change from 0 to 264192 [ 631.440052][ T7933] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.445354][ T7939] loop1: detected capacity change from 0 to 131456 [ 631.450154][ T7933] EXT4-fs (loop3): group descriptors corrupted! [ 631.470910][ T7938] loop5: detected capacity change from 0 to 131456 22:21:58 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffbffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 631.489867][ T7943] loop4: detected capacity change from 0 to 264192 [ 631.515967][ T7938] EXT4-fs (loop5): inodes count not valid: 800 vs 32 [ 631.530881][ T7951] loop2: detected capacity change from 0 to 131456 [ 631.541175][ T7943] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.551275][ T7943] EXT4-fs (loop4): group descriptors corrupted! [ 631.572221][ T7951] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.582321][ T7951] EXT4-fs (loop2): group descriptors corrupted! 22:21:59 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20040000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 631.703093][ T7960] loop3: detected capacity change from 0 to 264192 [ 631.711075][ T7960] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.721257][ T7960] EXT4-fs (loop3): group descriptors corrupted! [ 631.740180][ T7943] loop4: detected capacity change from 0 to 264192 [ 631.747297][ T7976] loop5: detected capacity change from 0 to 131456 [ 631.747324][ T7943] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.759675][ T7976] EXT4-fs (loop5): inodes count not valid: 1056 vs 32 [ 631.763923][ T7943] EXT4-fs (loop4): group descriptors corrupted! [ 631.788627][ T7960] loop3: detected capacity change from 0 to 264192 22:21:59 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) prlimit64(r0, 0x1, &(0x7f00000001c0)={0x80000000, 0xffffffff}, &(0x7f00000002c0)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x4030014, 0x0, &(0x7f0000000380), 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:21:59 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6c000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:59 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffbff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 631.801014][ T7960] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.811125][ T7960] EXT4-fs (loop3): group descriptors corrupted! 22:21:59 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20050000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 631.868949][ T7998] loop1: detected capacity change from 0 to 131456 [ 631.887685][ T8002] loop4: detected capacity change from 0 to 264192 [ 631.891308][ T8004] loop3: detected capacity change from 0 to 264192 [ 631.906197][ T8004] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.916355][ T8004] EXT4-fs (loop3): group descriptors corrupted! [ 631.947053][ T8002] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 631.957163][ T8002] EXT4-fs (loop4): group descriptors corrupted! [ 631.970903][ T8013] loop5: detected capacity change from 0 to 131456 [ 631.982302][ T8013] EXT4-fs (loop5): inodes count not valid: 1312 vs 32 [ 631.999062][ T8002] loop4: detected capacity change from 0 to 264192 [ 632.005990][ T8002] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.016093][ T8002] EXT4-fs (loop4): group descriptors corrupted! 22:21:59 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00), 0x0, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:21:59 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffdf9, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:59 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20060000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:21:59 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x74000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 632.288393][ T8037] loop3: detected capacity change from 0 to 264192 [ 632.299665][ T8037] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.304946][ T8044] loop5: detected capacity change from 0 to 131456 [ 632.309869][ T8037] EXT4-fs (loop3): group descriptors corrupted! [ 632.331985][ T8044] EXT4-fs (loop5): inodes count not valid: 1568 vs 32 [ 632.341726][ T8048] loop4: detected capacity change from 0 to 264192 [ 632.366900][ T8048] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.377017][ T8048] EXT4-fs (loop4): group descriptors corrupted! [ 632.397789][ T8052] loop2: detected capacity change from 0 to 131456 [ 632.406640][ T8052] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.416784][ T8052] EXT4-fs (loop2): group descriptors corrupted! 22:21:59 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:21:59 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) fcntl$setlease(0xffffffffffffffff, 0x409, 0x20000000) r1 = gettid() tkill(r1, 0x7) r2 = socket(0x1, 0x5, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setresuid(0x0, r3, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006dc0)=[{{&(0x7f0000000380)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000540)=[{&(0x7f0000000400)="11e4d328d903e652fe57548ac3bf8423a801debd2f41cc39de588b99a152361c8477d4b950aa0b433a8c2511df3903cec208dfb7ebf7ce1fa11ad884b4c297d361ad002c1b41647253f12b9e18b6b53c48f988698dd95a81b0fe79eeb4b991c5698480d933eb6ec8b9ee5c5fc5b4da4b9fee68bbe853778adfe297550ab2ce3b4755faa4c780c8543ac7b2305d452091bd4e12bbad63e3aa807a0f02ac4b4c8f17f6fa55f556c601c1330495fecaef265a92adc6dd0c3e24160e4dcb0088a3cf599450fc46d1e6e304d119868ec4910cd396c3e35550f02ad675c1cf64095dbfb71fd9f5397174bd7149945cb19a61d6871de8ff26", 0xf5}, {&(0x7f0000000500)="7e56260b609b03debe2249904e128333aaf9c5a660b2a863ef323b3ea422f0f2141743fb955377f4edd008b8c46cc9", 0x2f}], 0x2, &(0x7f0000000580)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xa0, 0x4000}}, {{&(0x7f0000000700)=@file={0x0, './bus\x00'}, 0x6e, &(0x7f00000017c0)=[{&(0x7f0000000780)="226eb617889cc8e90080db17260faa62d663d2b8e335aa89654a56cbf4d2379df5792c63", 0x24}, {&(0x7f00000007c0)="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", 0x1000}], 0x2, &(0x7f0000001c80)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff}}}], 0x80, 0x4000000}}, {{&(0x7f0000001d00)=@file={0x0, '.\x00'}, 0x6e, &(0x7f0000001f40)=[{&(0x7f0000001d80)="d82e99aa5b210adc403879f6971bf54cc837d339add10aad181696ca7dc01c1b0c549a8403e024c50f053a0859b67bc5a13087274c2bc7a4d2d41cc943877dcd1bf9b1e16b7dc10c7626aa1ae268e0c36cc77e8b91c1780cb76089da822933895ba4c90d97a9ff736599c61476f56946ff11497d95cc5b60c2d6a8928bf0543bc195afa0c92a126028602975f170d019f0989eb3e564ed23e725f1d827e1058077cdeae72390133360e55587eaa28675bd5022f171d7c0e8", 0xb8}, {&(0x7f0000001e40)="d22deaa91852efc3e655f3d9df30fda5", 0x10}, {&(0x7f0000001e80)="6850f6f98908e0e5859cecd3495b989d6f0f0ced587e8683ef256f3de449d0eddf70948d6a2d7c6b79943236d982940a19c82dd7e85dcd8b34a7e4e51432fca7d0008a849b4d0e6a5020e1e617ffcc43d33558f8c306b3ea7a122e4f0e2d37bcc4e9aae503895003c438f27885ee28e5a560e75912bc1d3d36e83e25dfe6230f8bea68419e374422e954cfac4fa410a6fd6ae66f99baeb0f54a3f455f78ccce5e523c7d5873447ec71fa8daa56ed63acdeda11f4e41e", 0xb6}], 0x3, &(0x7f0000005080)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}], 0xe0, 0x10}}, {{&(0x7f0000005180)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f00000053c0)=[{&(0x7f0000005200)="d4e7c132b6becf7255320ed25ece1d5da2e138f2edd93b724422a1e99aec22ee77cc9ae981049fc241dd1ff77072af64594c51b386f7bb562b958cad75e0d3b228017e0c2e94b8a955b380ebd0f1ff48c6abb640fe4d516fe4263d6f0d12edf8d6a0bda902c9a188fde69341524cec886e164565a9718f23a6fcee9196946518ac1e04e3f72b6030bd3f5c7a75c25066041e66a4fd510410adc56dab61cd36815fe7f22f9cb61d80d0a7e18c4fd12c88303d520fc47eaa312bec", 0xba}, {&(0x7f00000052c0)="1db9b691d3349bb8e824f0b5b64a83097c1e89d6f7edc45b5ddfa73137827908caf7881716a96e2681c505aec93712114e1b06e8842710c633b24c5303d76cb293321e4225ff1febb8d0d550f63fc87020205d554bafe24c7785ec6080c96a911221943bf44006b436fb35bdcbf635c84ddfaba17673403623551a81b4dedf454c4486069837df1a7277894f4c8a6c5b751b4affdeed847dde5cfcb297ba62cd29eb112594a2b05e3aaa448140ebb5f0e8249a1daba40420c6f532731df55f6985722b8b9c936e10aa1dfaef25cf2cbc1d0bb9d1c72e761c83fe361ccf46f7a99d20e1e32448951b1f", 0xe9}], 0x2, &(0x7f0000005880)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38, 0x8800}}, {{&(0x7f00000058c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000005a80)=[{&(0x7f0000005940)="633b13cb9d78f9a1f4ea9ecc9e14ce53f4a330cb9a3a2abd41d6a677da0350cf45f82cecb0588931c129ca3b98cff5afd806cb9a18140e486b0ddfc86c4808e27a60a164dec302", 0x47}, {&(0x7f00000059c0)="b7f9f876fdbfc0df91fbc993190145d7435c0d1b07fa0e2978e02f68ddc1b9eb80be0f00199f0f448d1f466d2f94927f31bbe026b695fc7413b271e6bf0d9fda999657f49fc6b0a48b308ae08c161bf8fa216492ae0e6d5caaa523fc29249440a70fe2cedd9b97485a400ec667bf3a64fc1dd4680ffd11d8980781e2311cfc2fbb5fc826c7ae029352dabd32cf8aa2ed85e186da7df9dd18aadc4577600a730a61b6894c", 0xa4}], 0x2, &(0x7f0000005c00)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xee01, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xffffffffffffffff}}}], 0x40, 0x4000844}}, {{&(0x7f0000005c40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000006d40)=[{&(0x7f0000005cc0)="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", 0x1000}, {&(0x7f0000006cc0)="54744c28d441fc31edd444280e8a73d9d8fce9b3d45d01e786cdd74780cb8f1300aab3e2bf8ab580252ff5a7ffd050d519065701b7219d3e7a3e335e3cf53c25a36978169729ecf0a93b8da450e194e92d56cff37d4a659ea6598f63bc708364bb312caad50e056aba3c08375af67b283a60edd3991d2277f5", 0x79}], 0x2, &(0x7f0000006d80)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r1, r3, 0xee00}}}], 0x40, 0x40000}}], 0x6, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) prlimit64(r0, 0xf, &(0x7f00000001c0)={0x5, 0x9}, &(0x7f00000002c0)) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d0) 22:21:59 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffdfd, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:21:59 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x0, &(0x7f0000000300), 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 632.545635][ T8044] loop5: detected capacity change from 0 to 131456 [ 632.558652][ T8048] loop4: detected capacity change from 0 to 264192 [ 632.567698][ T8044] EXT4-fs (loop5): inodes count not valid: 1568 vs 32 [ 632.588532][ T8069] loop3: detected capacity change from 0 to 264192 [ 632.595199][ T8048] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.605293][ T8048] EXT4-fs (loop4): group descriptors corrupted! [ 632.608475][ T8077] loop1: detected capacity change from 0 to 131456 [ 632.623456][ T8069] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.633624][ T8069] EXT4-fs (loop3): group descriptors corrupted! 22:22:00 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff7f, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7a000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:00 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20070000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 632.735277][ T8099] loop5: detected capacity change from 0 to 131456 [ 632.745012][ T8101] loop3: detected capacity change from 0 to 264192 [ 632.746101][ T8102] loop4: detected capacity change from 0 to 264192 [ 632.758386][ T8099] EXT4-fs (loop5): inodes count not valid: 1824 vs 32 [ 632.767035][ T8102] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.777267][ T8102] EXT4-fs (loop4): group descriptors corrupted! 22:22:00 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20080000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 632.780619][ T8091] loop1: detected capacity change from 0 to 131456 [ 632.841159][ T8101] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 632.851330][ T8101] EXT4-fs (loop3): group descriptors corrupted! [ 632.891385][ T8114] loop5: detected capacity change from 0 to 131456 [ 632.903141][ T8114] EXT4-fs (loop5): inodes count not valid: 2080 vs 32 22:22:00 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00), 0x0, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:00 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r0, 0x409, 0x20000000) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f00000001c0)={0x90002013}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) fcntl$notify(r1, 0x402, 0x80000001) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x85ffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:00 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff85, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 633.141828][ T8133] loop1: detected capacity change from 0 to 131456 [ 633.160693][ T8139] loop4: detected capacity change from 0 to 264192 [ 633.168320][ T8141] loop3: detected capacity change from 0 to 264192 [ 633.194311][ T8141] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.204467][ T8141] EXT4-fs (loop3): group descriptors corrupted! [ 633.217060][ T8139] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.227164][ T8139] EXT4-fs (loop4): group descriptors corrupted! [ 633.284810][ T8151] loop2: detected capacity change from 0 to 131456 [ 633.293148][ T8151] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.303239][ T8151] EXT4-fs (loop2): group descriptors corrupted! 22:22:00 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:22:00 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20090000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:00 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff8c, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 633.438761][ T8139] loop4: detected capacity change from 0 to 264192 [ 633.448945][ T8139] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.459016][ T8166] loop3: detected capacity change from 0 to 264192 [ 633.462460][ T8169] loop5: detected capacity change from 0 to 131456 [ 633.465558][ T8139] EXT4-fs (loop4): group descriptors corrupted! [ 633.475513][ T8166] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:22:00 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) pidfd_open(r0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8cffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 633.482783][ T8169] EXT4-fs (loop5): inodes count not valid: 2336 vs 32 [ 633.488395][ T8166] EXT4-fs (loop3): group descriptors corrupted! [ 633.514761][ T8169] loop5: detected capacity change from 0 to 131456 [ 633.525291][ T8169] EXT4-fs (loop5): inodes count not valid: 2336 vs 32 22:22:00 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff97, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:01 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="200a0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 633.562678][ T8185] loop4: detected capacity change from 0 to 264192 [ 633.570348][ T8185] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.580459][ T8185] EXT4-fs (loop4): group descriptors corrupted! 22:22:01 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x97ffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 633.640058][ T8203] loop3: detected capacity change from 0 to 264192 [ 633.647987][ T8207] loop5: detected capacity change from 0 to 131456 [ 633.649513][ T8204] loop1: detected capacity change from 0 to 131456 [ 633.668405][ T8203] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.678641][ T8203] EXT4-fs (loop3): group descriptors corrupted! [ 633.695193][ T8207] EXT4-fs (loop5): inodes count not valid: 2592 vs 32 [ 633.747668][ T8221] loop4: detected capacity change from 0 to 264192 [ 633.790794][ T8221] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.800979][ T8221] EXT4-fs (loop4): group descriptors corrupted! [ 633.841387][ T8221] loop4: detected capacity change from 0 to 264192 [ 633.865295][ T8221] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 633.875610][ T8221] EXT4-fs (loop4): group descriptors corrupted! 22:22:01 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f465", 0xf, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:01 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="200b0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:01 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffffda, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:01 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000400)={0x38, 0x5, 0x4, 0x7c53fd17, 0x0, 0x7, 0x0, 0xfff, 0x7, 0x393}, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) mount(&(0x7f00000001c0)=@sr0, &(0x7f00000002c0)='./bus\x00', &(0x7f0000000380)='afs\x00', 0x400, &(0x7f00000003c0)=']}\x00') r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 634.034794][ T8245] loop1: detected capacity change from 0 to 131456 [ 634.037699][ T8246] loop5: detected capacity change from 0 to 131456 [ 634.045185][ T8247] loop3: detected capacity change from 0 to 264192 [ 634.061032][ T8246] EXT4-fs (loop5): inodes count not valid: 2848 vs 32 [ 634.068585][ T8247] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.078719][ T8247] EXT4-fs (loop3): group descriptors corrupted! [ 634.157596][ T8260] loop2: detected capacity change from 0 to 131456 [ 634.165375][ T8260] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.175475][ T8260] EXT4-fs (loop2): group descriptors corrupted! 22:22:01 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(r3, 0x0, 0x6, 0x280407) 22:22:01 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb7000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:01 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="200c0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:01 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffff6, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 634.320610][ T8271] loop4: detected capacity change from 0 to 264192 [ 634.322430][ T8275] loop5: detected capacity change from 0 to 131456 [ 634.334399][ T8271] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.334777][ T8280] loop3: detected capacity change from 0 to 264192 [ 634.344499][ T8271] EXT4-fs (loop4): group descriptors corrupted! [ 634.354886][ T8275] EXT4-fs (loop5): inodes count not valid: 3104 vs 32 [ 634.360459][ T8280] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.374241][ T8280] EXT4-fs (loop3): group descriptors corrupted! [ 634.388880][ T8271] loop4: detected capacity change from 0 to 264192 [ 634.396371][ T8271] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.397596][ T8280] loop3: detected capacity change from 0 to 264192 [ 634.406512][ T8271] EXT4-fs (loop4): group descriptors corrupted! 22:22:01 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() r0 = open(&(0x7f00000001c0)='./file0\x00', 0x10380, 0x1) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r1, 0x409, 0x20000000) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000002c0)=[0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff], 0x4) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x68, 0x3ff, 0x3) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x180) sendfile(r2, r3, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:01 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffffd, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:01 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbc000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 634.420077][ T8280] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.430207][ T8280] EXT4-fs (loop3): group descriptors corrupted! [ 634.439855][ T8275] loop5: detected capacity change from 0 to 131456 [ 634.446817][ T8275] EXT4-fs (loop5): inodes count not valid: 3104 vs 32 22:22:01 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="200d0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 634.483746][ T8311] loop4: detected capacity change from 0 to 264192 [ 634.501336][ T8311] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.511457][ T8311] EXT4-fs (loop4): group descriptors corrupted! [ 634.511723][ T8316] loop3: detected capacity change from 0 to 264192 [ 634.526232][ T8322] loop1: detected capacity change from 0 to 131456 [ 634.539860][ T8326] loop5: detected capacity change from 0 to 131456 [ 634.569449][ T8316] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.579576][ T8316] EXT4-fs (loop3): group descriptors corrupted! [ 634.587028][ T8326] EXT4-fs (loop5): inodes count not valid: 3360 vs 32 [ 634.622494][ T8311] loop4: detected capacity change from 0 to 264192 [ 634.637361][ T8311] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.647502][ T8311] EXT4-fs (loop4): group descriptors corrupted! [ 634.679156][ T8316] loop3: detected capacity change from 0 to 264192 [ 634.687140][ T8326] loop5: detected capacity change from 0 to 131456 [ 634.696010][ T8326] EXT4-fs (loop5): inodes count not valid: 3360 vs 32 [ 634.740500][ T8316] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.750630][ T8316] EXT4-fs (loop3): group descriptors corrupted! 22:22:02 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f465", 0xf, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:02 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) setrlimit(0xd, &(0x7f00000001c0)={0x7, 0x1}) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x80, 0x108) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:02 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbd000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:02 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="200e0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 634.890903][ T8363] loop5: detected capacity change from 0 to 131456 [ 634.894253][ T8362] loop4: detected capacity change from 0 to 264192 [ 634.914668][ T8363] EXT4-fs (loop5): inodes count not valid: 3616 vs 32 [ 634.914855][ T8371] loop1: detected capacity change from 0 to 131456 [ 634.951895][ T8362] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 634.962057][ T8362] EXT4-fs (loop4): group descriptors corrupted! [ 635.013702][ T8378] loop2: detected capacity change from 0 to 131456 [ 635.021151][ T8378] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 635.031269][ T8378] EXT4-fs (loop2): group descriptors corrupted! 22:22:02 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 1) fallocate(r3, 0x0, 0x6, 0x0) 22:22:02 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffffe, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:02 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="200f0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:02 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f00000001c0)={0x10000, 0x8000, 0x5, 0xfffffff7, 0x3, "cee9568dd2ba96fe08a7166ce43dc3b2121408", 0x10000, 0x7bb}) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:02 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc0ed0000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 635.207351][ T8400] loop3: detected capacity change from 0 to 264192 [ 635.216807][ T8400] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 635.225076][ T8404] loop5: detected capacity change from 0 to 131456 [ 635.226904][ T8400] EXT4-fs (loop3): group descriptors corrupted! [ 635.230647][ T8405] loop4: detected capacity change from 0 to 264192 [ 635.237245][ T8406] loop1: detected capacity change from 0 to 131456 22:22:02 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd3fbf3e2, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 635.294506][ T8404] EXT4-fs (loop5): inodes count not valid: 3872 vs 32 [ 635.303050][ T8405] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 635.313189][ T8405] EXT4-fs (loop4): group descriptors corrupted! [ 635.372706][ T8421] FAULT_INJECTION: forcing a failure. [ 635.372706][ T8421] name failslab, interval 1, probability 0, space 0, times 0 [ 635.385337][ T8421] CPU: 1 PID: 8421 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 635.394006][ T8421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 635.404124][ T8421] Call Trace: [ 635.407391][ T8421] dump_stack_lvl+0xd6/0x122 [ 635.411971][ T8421] dump_stack+0x11/0x1b [ 635.416124][ T8421] should_fail+0x23c/0x250 [ 635.420538][ T8421] __should_failslab+0x81/0x90 [ 635.425338][ T8421] ? alloc_pipe_info+0xac/0x350 [ 635.430230][ T8421] should_failslab+0x5/0x20 [ 635.434718][ T8421] kmem_cache_alloc_trace+0x52/0x320 [ 635.439988][ T8421] alloc_pipe_info+0xac/0x350 [ 635.444675][ T8421] splice_direct_to_actor+0x5f7/0x650 [ 635.450057][ T8421] ? security_file_permission+0x7c/0xa0 [ 635.455634][ T8421] ? do_splice_direct+0x190/0x190 [ 635.460641][ T8421] ? security_file_permission+0x87/0xa0 [ 635.466202][ T8421] do_splice_direct+0x106/0x190 [ 635.471111][ T8421] do_sendfile+0x63e/0xbb0 [ 635.475526][ T8421] __x64_sys_sendfile64+0x102/0x140 [ 635.480711][ T8421] do_syscall_64+0x44/0xa0 [ 635.485118][ T8421] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 635.491123][ T8421] RIP: 0033:0x7fabf13d4709 [ 635.495619][ T8421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 22:22:02 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xdaffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:03 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe2f3fbd3, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 635.515219][ T8421] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 635.523618][ T8421] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 635.531594][ T8421] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 635.539547][ T8421] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 635.547554][ T8421] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 635.555514][ T8421] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:03 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f465", 0xf, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:03 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf6ffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:03 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20100000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:03 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 635.762045][ T8436] loop4: detected capacity change from 0 to 264192 [ 635.770114][ T8442] loop3: detected capacity change from 0 to 264192 [ 635.771980][ T8439] loop5: detected capacity change from 0 to 131456 [ 635.779576][ T8442] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 635.793264][ T8442] EXT4-fs (loop3): group descriptors corrupted! [ 635.802210][ T8436] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 635.812323][ T8436] EXT4-fs (loop4): group descriptors corrupted! [ 635.824136][ T8406] loop1: detected capacity change from 0 to 131456 [ 635.860589][ T8456] loop2: detected capacity change from 0 to 131456 [ 635.869272][ T8456] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 635.879391][ T8456] EXT4-fs (loop2): group descriptors corrupted! [ 636.014549][ T8442] loop3: detected capacity change from 0 to 264192 [ 636.022087][ T8439] EXT4-fs (loop5): inodes count not valid: 4128 vs 32 [ 636.022703][ T8442] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.039009][ T8442] EXT4-fs (loop3): group descriptors corrupted! 22:22:03 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 2) fallocate(r3, 0x0, 0x6, 0x0) 22:22:03 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x20, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sched_setattr(r0, &(0x7f00000001c0)={0x38, 0x7, 0x20, 0xfffff000, 0x2, 0x10000, 0x80, 0x1, 0x6, 0x5208}, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) r1 = syz_open_dev$vcsu(&(0x7f00000002c0), 0x9, 0x509000) clock_gettime(0x0, &(0x7f00000027c0)={0x0, 0x0}) recvmmsg(r1, &(0x7f0000002780)=[{{&(0x7f0000000380)=@un=@abs, 0x80, &(0x7f0000002700)=[{&(0x7f0000000400)=""/148, 0x94}, {&(0x7f00000004c0)=""/45, 0x2d}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/157, 0x9d}, {&(0x7f00000015c0)}, {&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000002600)=""/10, 0xa}, {&(0x7f0000002640)=""/184, 0xb8}], 0x8}, 0x4fdc}], 0x1, 0x40010000, &(0x7f0000002800)={r2, r3+10000000}) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x4030011, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x100021, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d0) write$binfmt_misc(r1, &(0x7f0000002840)={'syz1', "ade6315e104840d7e0cdadd2832393cd577bc77ab9a3da19ed4afb3e5fafb45597b852c89507b8d34e9528955450fab59b1bcb7a7cbd60eb6839dc7fce87"}, 0x42) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:03 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf9fdffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:03 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20110000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:03 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 636.113973][ T8479] loop1: detected capacity change from 0 to 131456 [ 636.130847][ T8485] loop3: detected capacity change from 0 to 264192 [ 636.137919][ T8487] loop4: detected capacity change from 0 to 264192 [ 636.145447][ T8488] loop5: detected capacity change from 0 to 131456 [ 636.152783][ T8485] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.162931][ T8485] EXT4-fs (loop3): group descriptors corrupted! [ 636.181274][ T8488] EXT4-fs (loop5): inodes count not valid: 4384 vs 32 [ 636.219149][ T8487] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.229253][ T8487] EXT4-fs (loop4): group descriptors corrupted! [ 636.240864][ T8497] FAULT_INJECTION: forcing a failure. [ 636.240864][ T8497] name failslab, interval 1, probability 0, space 0, times 0 [ 636.253471][ T8497] CPU: 0 PID: 8497 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 636.262211][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 636.272248][ T8497] Call Trace: [ 636.275515][ T8497] dump_stack_lvl+0xd6/0x122 [ 636.280093][ T8497] dump_stack+0x11/0x1b [ 636.284268][ T8497] should_fail+0x23c/0x250 [ 636.288667][ T8497] ? kcalloc+0x32/0x40 [ 636.292720][ T8497] __should_failslab+0x81/0x90 [ 636.297484][ T8497] should_failslab+0x5/0x20 [ 636.301980][ T8497] __kmalloc+0x6f/0x350 [ 636.306185][ T8497] ? alloc_pipe_info+0x189/0x350 [ 636.311146][ T8497] kcalloc+0x32/0x40 [ 636.315074][ T8497] alloc_pipe_info+0x1be/0x350 [ 636.319851][ T8497] splice_direct_to_actor+0x5f7/0x650 [ 636.325221][ T8497] ? security_file_permission+0x7c/0xa0 [ 636.330759][ T8497] ? do_splice_direct+0x190/0x190 [ 636.335766][ T8497] ? security_file_permission+0x87/0xa0 [ 636.341298][ T8497] do_splice_direct+0x106/0x190 [ 636.346131][ T8497] do_sendfile+0x63e/0xbb0 [ 636.350557][ T8497] __x64_sys_sendfile64+0x102/0x140 [ 636.355802][ T8497] do_syscall_64+0x44/0xa0 [ 636.360208][ T8497] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 636.366094][ T8497] RIP: 0033:0x7fabf13d4709 [ 636.370493][ T8497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 636.390084][ T8497] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 636.398573][ T8497] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 636.406528][ T8497] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 22:22:03 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xedc000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 636.414579][ T8497] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 636.422531][ T8497] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 636.430573][ T8497] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:03 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20120000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 636.570995][ T8487] loop4: detected capacity change from 0 to 264192 [ 636.598234][ T8511] loop5: detected capacity change from 0 to 131456 [ 636.604625][ T8487] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:22:04 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f0000", 0x16, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 636.610932][ T8511] EXT4-fs (loop5): inodes count not valid: 4640 vs 32 [ 636.614858][ T8487] EXT4-fs (loop4): group descriptors corrupted! [ 636.635228][ T8510] loop3: detected capacity change from 0 to 264192 [ 636.645744][ T8510] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.655846][ T8510] EXT4-fs (loop3): group descriptors corrupted! [ 636.680309][ T8511] loop5: detected capacity change from 0 to 131456 [ 636.688092][ T8495] loop1: detected capacity change from 0 to 131456 [ 636.744187][ T8511] EXT4-fs (loop5): inodes count not valid: 4640 vs 32 [ 636.751558][ T8533] loop2: detected capacity change from 0 to 131456 [ 636.760403][ T8533] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.770583][ T8533] EXT4-fs (loop2): group descriptors corrupted! 22:22:04 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:04 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfdfdffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 636.837605][ T8540] loop4: detected capacity change from 0 to 264192 [ 636.846405][ T8540] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.856527][ T8540] EXT4-fs (loop4): group descriptors corrupted! 22:22:04 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 3) fallocate(r3, 0x0, 0x6, 0x0) 22:22:04 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) r1 = getpgid(r0) ptrace$setregs(0xd, r1, 0xfff, &(0x7f0000000400)="8472153f0c28112de37572d7905efd5b4ba541b23d8170acb4bcc17e559e9941be3445521ea36ce4298686548669457c8bc5bfa8a2aebc9a189b9a8ce2433ed5ba647334eb28176faa155b0f2cc053c791f76cf4b453b4fb185fa39f44a5b5dde13572d5b74421e61baca129d1fe1daa81fd4a8bcb442375880f6e26326a671b2fb65622b0af8f353f896e2f67acbb1c6b0adba26efa8b43a47c7f669eae208bb2c39a56963a827233ebb15302d7628dbfa8be4b") writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r2 = gettid() tkill(r2, 0x7) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f00000002c0)=0xc) rt_tgsigqueueinfo(r2, r3, 0x2, &(0x7f0000000380)={0x21, 0x5}) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 636.931522][ T8540] loop4: detected capacity change from 0 to 264192 [ 636.933465][ T8544] loop3: detected capacity change from 0 to 264192 [ 636.951693][ T8540] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.955983][ T8544] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 636.961796][ T8540] EXT4-fs (loop4): group descriptors corrupted! 22:22:04 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20140000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:04 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 636.978190][ T8544] EXT4-fs (loop3): group descriptors corrupted! [ 637.039375][ T8566] loop5: detected capacity change from 0 to 131456 [ 637.063666][ T8566] EXT4-fs (loop5): inodes count not valid: 5152 vs 32 [ 637.099415][ T8577] FAULT_INJECTION: forcing a failure. [ 637.099415][ T8577] name failslab, interval 1, probability 0, space 0, times 0 [ 637.112038][ T8577] CPU: 0 PID: 8577 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 637.120703][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 637.130745][ T8577] Call Trace: [ 637.134010][ T8577] dump_stack_lvl+0xd6/0x122 [ 637.138589][ T8577] dump_stack+0x11/0x1b [ 637.142749][ T8577] should_fail+0x23c/0x250 [ 637.147151][ T8577] ? kmalloc_array+0x2d/0x40 [ 637.151821][ T8577] __should_failslab+0x81/0x90 [ 637.156573][ T8577] should_failslab+0x5/0x20 [ 637.161087][ T8577] __kmalloc+0x6f/0x350 [ 637.165305][ T8577] kmalloc_array+0x2d/0x40 [ 637.169739][ T8577] iter_file_splice_write+0xd5/0x790 [ 637.175008][ T8577] ? atime_needs_update+0x2ba/0x390 [ 637.180265][ T8577] ? touch_atime+0xe0/0x250 [ 637.184750][ T8577] ? generic_file_splice_read+0x2a9/0x330 [ 637.190466][ T8577] ? splice_from_pipe+0xd0/0xd0 [ 637.195387][ T8577] direct_splice_actor+0x80/0xa0 [ 637.200307][ T8577] splice_direct_to_actor+0x345/0x650 [ 637.205730][ T8577] ? do_splice_direct+0x190/0x190 [ 637.211284][ T8577] do_splice_direct+0x106/0x190 [ 637.216132][ T8577] do_sendfile+0x63e/0xbb0 [ 637.220552][ T8577] __x64_sys_sendfile64+0x102/0x140 [ 637.225737][ T8577] do_syscall_64+0x44/0xa0 [ 637.230142][ T8577] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 637.236067][ T8577] RIP: 0033:0x7fabf13d4709 [ 637.240466][ T8577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 637.260060][ T8577] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 637.268491][ T8577] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 637.276445][ T8577] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 637.284397][ T8577] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 637.292352][ T8577] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 637.300305][ T8577] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 637.318268][ T8572] loop3: detected capacity change from 0 to 264192 22:22:04 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfdffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 637.368081][ T8572] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.378209][ T8572] EXT4-fs (loop3): group descriptors corrupted! 22:22:04 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:04 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f0000", 0x16, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 637.449374][ T8583] loop1: detected capacity change from 0 to 131456 [ 637.452434][ T8584] loop4: detected capacity change from 0 to 264192 22:22:04 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="201b0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 637.498718][ T8584] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.508873][ T8584] EXT4-fs (loop4): group descriptors corrupted! [ 637.516698][ T8595] loop3: detected capacity change from 0 to 264192 [ 637.524968][ T8595] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.535245][ T8595] EXT4-fs (loop3): group descriptors corrupted! [ 637.559607][ T8602] loop5: detected capacity change from 0 to 131456 [ 637.575999][ T8602] EXT4-fs (loop5): inodes count not valid: 6944 vs 32 22:22:05 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20220000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 637.607521][ T8584] loop4: detected capacity change from 0 to 264192 [ 637.614438][ T8584] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.622227][ T8595] loop3: detected capacity change from 0 to 264192 [ 637.624572][ T8584] EXT4-fs (loop4): group descriptors corrupted! [ 637.640022][ T8595] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.650129][ T8595] EXT4-fs (loop3): group descriptors corrupted! [ 637.688532][ T8617] loop2: detected capacity change from 0 to 131456 [ 637.695994][ T8617] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.706127][ T8617] EXT4-fs (loop2): group descriptors corrupted! [ 637.717205][ T8621] loop5: detected capacity change from 0 to 131456 [ 637.725372][ T8621] EXT4-fs (loop5): inodes count not valid: 8736 vs 32 22:22:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfeffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:05 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x200, 0x274) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:05 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7ffffffffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 637.849313][ T8621] loop5: detected capacity change from 0 to 131456 [ 637.859127][ T8639] loop4: detected capacity change from 0 to 264192 [ 637.881052][ T8621] EXT4-fs (loop5): inodes count not valid: 8736 vs 32 [ 637.889846][ T8646] loop3: detected capacity change from 0 to 264192 22:22:05 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 4) fallocate(r3, 0x0, 0x6, 0x0) [ 637.897698][ T8648] loop1: detected capacity change from 0 to 131456 [ 637.905043][ T8646] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.915308][ T8646] EXT4-fs (loop3): group descriptors corrupted! [ 637.922614][ T8639] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 637.932737][ T8639] EXT4-fs (loop4): group descriptors corrupted! [ 638.020199][ T8661] FAULT_INJECTION: forcing a failure. [ 638.020199][ T8661] name failslab, interval 1, probability 0, space 0, times 0 [ 638.032876][ T8661] CPU: 0 PID: 8661 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 638.041538][ T8661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 638.051650][ T8661] Call Trace: [ 638.054922][ T8661] dump_stack_lvl+0xd6/0x122 [ 638.059614][ T8661] dump_stack+0x11/0x1b [ 638.063770][ T8661] should_fail+0x23c/0x250 [ 638.068170][ T8661] __should_failslab+0x81/0x90 [ 638.072930][ T8661] ? __iomap_dio_rw+0x139/0x1010 [ 638.077901][ T8661] should_failslab+0x5/0x20 [ 638.082389][ T8661] kmem_cache_alloc_trace+0x52/0x320 [ 638.087656][ T8661] __iomap_dio_rw+0x139/0x1010 [ 638.092422][ T8661] ? __cond_resched+0x11/0x40 [ 638.097083][ T8661] ? ext4_xattr_security_get+0x2e/0x40 [ 638.102583][ T8661] ? ext4_initxattrs+0xb0/0xb0 [ 638.107345][ T8661] ? __vfs_getxattr+0x264/0x280 [ 638.112196][ T8661] iomap_dio_rw+0x30/0x70 [ 638.116517][ T8661] ? ext4_file_write_iter+0x521/0x11f0 [ 638.121967][ T8661] ext4_file_write_iter+0xaa9/0x11f0 [ 638.127239][ T8661] ? ext4_file_write_iter+0x521/0x11f0 [ 638.132685][ T8661] do_iter_readv_writev+0x2de/0x380 [ 638.137876][ T8661] do_iter_write+0x192/0x5c0 [ 638.142542][ T8661] ? splice_from_pipe_next+0x34f/0x3b0 [ 638.147986][ T8661] ? kmalloc_array+0x2d/0x40 [ 638.152566][ T8661] vfs_iter_write+0x4c/0x70 [ 638.157060][ T8661] iter_file_splice_write+0x43a/0x790 [ 638.162432][ T8661] ? splice_from_pipe+0xd0/0xd0 [ 638.167270][ T8661] direct_splice_actor+0x80/0xa0 [ 638.172319][ T8661] splice_direct_to_actor+0x345/0x650 [ 638.177703][ T8661] ? do_splice_direct+0x190/0x190 [ 638.182723][ T8661] do_splice_direct+0x106/0x190 [ 638.187555][ T8661] do_sendfile+0x63e/0xbb0 [ 638.192003][ T8661] __x64_sys_sendfile64+0x102/0x140 [ 638.197194][ T8661] do_syscall_64+0x44/0xa0 [ 638.201604][ T8661] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 638.207485][ T8661] RIP: 0033:0x7fabf13d4709 [ 638.211897][ T8661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 638.231489][ T8661] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 638.239928][ T8661] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 638.247904][ T8661] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 638.255860][ T8661] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 638.263813][ T8661] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 638.271765][ T8661] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:05 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) 22:22:05 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20250000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:05 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 638.347902][ T8664] loop5: detected capacity change from 0 to 131456 [ 638.382630][ T8664] EXT4-fs (loop5): inodes count not valid: 9504 vs 32 22:22:05 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f0000", 0x16, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xff0f0000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 638.442436][ T8639] loop4: detected capacity change from 0 to 264192 [ 638.451357][ T8677] loop3: detected capacity change from 0 to 264192 [ 638.458477][ T8639] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 638.463178][ T8664] loop5: detected capacity change from 0 to 131456 [ 638.468614][ T8639] EXT4-fs (loop4): group descriptors corrupted! [ 638.483266][ T8677] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 638.488357][ T8687] loop1: detected capacity change from 0 to 131456 [ 638.493368][ T8677] EXT4-fs (loop3): group descriptors corrupted! [ 638.505198][ T8664] EXT4-fs (loop5): inodes count not valid: 9504 vs 32 [ 638.527679][ T8677] loop3: detected capacity change from 0 to 264192 22:22:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffbffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 638.534480][ T8677] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 638.544621][ T8677] EXT4-fs (loop3): group descriptors corrupted! 22:22:06 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="202e0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:06 executing program 1: fallocate(0xffffffffffffffff, 0x53, 0x8, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x2, 0x200000000000000, 0x3f}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 638.602657][ T8706] loop4: detected capacity change from 0 to 264192 [ 638.609745][ T8708] loop2: detected capacity change from 0 to 131456 [ 638.617264][ T8708] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 638.627379][ T8708] EXT4-fs (loop2): group descriptors corrupted! [ 638.636418][ T8706] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 638.646608][ T8706] EXT4-fs (loop4): group descriptors corrupted! 22:22:06 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffbff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 638.695076][ T8713] loop5: detected capacity change from 0 to 131456 22:22:06 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 5) fallocate(r3, 0x0, 0x6, 0x0) [ 638.764200][ T8713] EXT4-fs (loop5): inodes count not valid: 11808 vs 32 [ 638.771404][ T8725] loop3: detected capacity change from 0 to 264192 [ 638.780445][ T8729] loop4: detected capacity change from 0 to 264192 [ 638.789921][ T8719] loop1: detected capacity change from 0 to 131456 22:22:06 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x204000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:06 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20480000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffdf9, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:06 executing program 1: r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000007c0)=ANY=[@ANYBLOB="500000105f69ec17e68cde935d030021a9f4fc12f9abe49d357d1a33cb3f8b43738f5387", @ANYRES16=0x0, @ANYBLOB="000428bd7000fedbdf257f0000000a00f500091b9cf19b4f0000060048001a0000001300340052e3c2aed360bb91a5843086e5f3060014005500a24da5f76edbf57eaa474d2c38028891"], 0x50}, 0x1, 0x0, 0x0, 0x8800}, 0x24008040) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) r3 = syz_mount_image$nfs(&(0x7f00000002c0), &(0x7f0000000380)='./file0\x00', 0xf6, 0x2, &(0x7f0000000500)=[{&(0x7f00000003c0)="ffb43c376b7bbb76be331376547e23fee4d0b0ddc8f4f34699c9f46ae6f005acc3caea6796bad8e698ee07f863cdc65777870ef78d5a0a7779a6a830ab6ccc1e102c1773dc0457f8c12b0d4fddad406b370450c9e1e1", 0x56, 0x8}, {&(0x7f0000000440)="b4c0387ca3eadc4fceb0282cc86cb619cff04f98ba45cde082ce0ee42727099a63343daa35973f4aa5dab48d0103af330b21bb94e0d91dee9ee1746f92f2febc6b7151ff5ca28d7dbda1f56b4f5792a3cc9194e0e231ebc85c28a6ed4a0fe28257d75b02a1b8a1bc2348c135772644006f77fd2c7b78391ba89201ab16ed8bbe623b567059c59e8da493f32c2044a351eaaf36b537d6c8b25072faa55678d220", 0xa0, 0x2}], 0x100000, &(0x7f0000000540)=ANY=[@ANYBLOB='+.,\x00,/dev/vcsa\x00,ext4\x00,IPVS\x00,,^%:-,,rootcontext=unconfined_u,fsuui~=\bfWeaeeb-b204-74ae-15e0-467ec986,fowner>', @ANYRESDEC, @ANYBLOB=',fsmagic=0x00000000000003e2,subj_role=ext4\x00,func=KEXEC_INITRAMFS_CHECK,uid<', @ANYRESDEC=0xee00, @ANYBLOB=',\x00']) openat(r3, &(0x7f0000000640)='./bus\x00', 0x6100, 0x34) r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r4, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r4) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 638.807482][ T8725] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 638.817610][ T8725] EXT4-fs (loop3): group descriptors corrupted! [ 638.830935][ T8729] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 638.841041][ T8729] EXT4-fs (loop4): group descriptors corrupted! [ 638.950741][ T8749] FAULT_INJECTION: forcing a failure. [ 638.950741][ T8749] name failslab, interval 1, probability 0, space 0, times 0 [ 638.963424][ T8749] CPU: 0 PID: 8749 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 638.972087][ T8749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 638.982125][ T8749] Call Trace: [ 638.985384][ T8749] dump_stack_lvl+0xd6/0x122 [ 638.990013][ T8749] dump_stack+0x11/0x1b [ 638.994241][ T8749] should_fail+0x23c/0x250 [ 638.998729][ T8749] ? kcalloc+0x32/0x50 [ 639.002800][ T8749] __should_failslab+0x81/0x90 [ 639.007548][ T8749] should_failslab+0x5/0x20 [ 639.012037][ T8749] __kmalloc+0x6f/0x350 [ 639.016172][ T8749] kcalloc+0x32/0x50 [ 639.020055][ T8749] ext4_find_extent+0x21c/0x7f0 [ 639.024893][ T8749] ext4_ext_map_blocks+0x115/0x1ff0 [ 639.030072][ T8749] ? __find_get_block+0x72d/0x930 [ 639.035084][ T8749] ? ext4_es_lookup_extent+0x206/0x490 [ 639.040526][ T8749] ext4_map_blocks+0x1cf/0xf00 [ 639.045278][ T8749] ? crypto_shash_update+0x13c/0x1a0 [ 639.050573][ T8749] ext4_iomap_begin+0x4b0/0x630 [ 639.055465][ T8749] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 639.060649][ T8749] iomap_iter+0x39c/0x470 [ 639.064995][ T8749] __iomap_dio_rw+0x698/0x1010 [ 639.069760][ T8749] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 639.075378][ T8749] iomap_dio_rw+0x30/0x70 [ 639.079753][ T8749] ? ext4_file_write_iter+0x521/0x11f0 [ 639.085212][ T8749] ext4_file_write_iter+0xaa9/0x11f0 [ 639.090479][ T8749] ? ext4_file_write_iter+0x521/0x11f0 [ 639.095925][ T8749] do_iter_readv_writev+0x2de/0x380 [ 639.101185][ T8749] do_iter_write+0x192/0x5c0 [ 639.105761][ T8749] ? splice_from_pipe_next+0x34f/0x3b0 [ 639.111272][ T8749] ? kmalloc_array+0x2d/0x40 [ 639.115853][ T8749] vfs_iter_write+0x4c/0x70 [ 639.120341][ T8749] iter_file_splice_write+0x43a/0x790 [ 639.125747][ T8749] ? splice_from_pipe+0xd0/0xd0 [ 639.130607][ T8749] direct_splice_actor+0x80/0xa0 [ 639.135584][ T8749] splice_direct_to_actor+0x345/0x650 [ 639.140942][ T8749] ? do_splice_direct+0x190/0x190 [ 639.145961][ T8749] do_splice_direct+0x106/0x190 [ 639.150865][ T8749] do_sendfile+0x63e/0xbb0 [ 639.155269][ T8749] __x64_sys_sendfile64+0x102/0x140 [ 639.160463][ T8749] do_syscall_64+0x44/0xa0 [ 639.164914][ T8749] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 639.170888][ T8749] RIP: 0033:0x7fabf13d4709 [ 639.175298][ T8749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 639.194888][ T8749] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 639.203346][ T8749] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 639.211379][ T8749] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 639.219335][ T8749] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 639.227362][ T8749] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 639.235329][ T8749] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 639.301439][ T8744] loop5: detected capacity change from 0 to 131456 [ 639.342003][ T8755] loop4: detected capacity change from 0 to 264192 [ 639.353320][ T8744] EXT4-fs (loop5): inodes count not valid: 18464 vs 32 [ 639.418691][ T8755] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 639.428879][ T8755] EXT4-fs (loop4): group descriptors corrupted! [ 639.468203][ T8766] loop1: detected capacity change from 0 to 131456 [ 639.487833][ T8744] loop5: detected capacity change from 0 to 131456 [ 639.537192][ T8755] loop4: detected capacity change from 0 to 264192 [ 639.552300][ T8744] EXT4-fs (loop5): inodes count not valid: 18464 vs 32 22:22:07 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000", 0x1a, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:07 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x300000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:07 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffdfd, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 639.585040][ T8755] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 639.595230][ T8755] EXT4-fs (loop4): group descriptors corrupted! 22:22:07 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="204c0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 639.659031][ T8785] loop3: detected capacity change from 0 to 264192 [ 639.673939][ T8799] loop4: detected capacity change from 0 to 264192 [ 639.682613][ T8799] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 639.692727][ T8799] EXT4-fs (loop4): group descriptors corrupted! [ 639.754856][ T8785] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 639.765009][ T8785] EXT4-fs (loop3): group descriptors corrupted! [ 639.771800][ T8807] loop2: detected capacity change from 0 to 131456 [ 639.779993][ T8807] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 639.790084][ T8807] EXT4-fs (loop2): group descriptors corrupted! 22:22:07 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe466, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) clone3(&(0x7f0000000480)={0x201201a00, &(0x7f00000001c0), &(0x7f00000002c0)=0x0, &(0x7f0000000380), {0x2a}, &(0x7f00000003c0)=""/23, 0x17, &(0x7f0000000400)=""/34, &(0x7f0000000440)=[r0, r0, r0, r0, r0, r0], 0x6}, 0x58) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r2, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0x2, &(0x7f0000000540)=0x19, 0x4) sched_setattr(r1, &(0x7f0000000500)={0x38, 0x6, 0x10, 0x9, 0x4, 0x10001, 0x20, 0x81, 0xe0, 0x8000}, 0x0) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r3, r4, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:07 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 6) fallocate(r3, 0x0, 0x6, 0x0) [ 639.800109][ T8806] loop5: detected capacity change from 0 to 131456 [ 639.822704][ T8806] EXT4-fs (loop5): inodes count not valid: 19488 vs 32 [ 639.833916][ T8814] loop1: detected capacity change from 0 to 131456 [ 639.939600][ T8825] loop4: detected capacity change from 0 to 264192 [ 639.950320][ T8826] FAULT_INJECTION: forcing a failure. [ 639.950320][ T8826] name failslab, interval 1, probability 0, space 0, times 0 [ 639.962956][ T8826] CPU: 0 PID: 8826 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 639.971794][ T8826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 639.981836][ T8826] Call Trace: [ 639.985105][ T8826] dump_stack_lvl+0xd6/0x122 [ 639.989700][ T8826] dump_stack+0x11/0x1b [ 639.993896][ T8826] should_fail+0x23c/0x250 [ 639.998306][ T8826] ? __es_insert_extent+0x51f/0xe70 [ 640.003513][ T8826] __should_failslab+0x81/0x90 [ 640.008264][ T8826] should_failslab+0x5/0x20 [ 640.012804][ T8826] kmem_cache_alloc+0x4f/0x300 [ 640.017587][ T8826] __es_insert_extent+0x51f/0xe70 [ 640.022642][ T8826] ext4_es_insert_extent+0x1cb/0x1950 [ 640.028008][ T8826] ext4_ext_map_blocks+0x100a/0x1ff0 [ 640.033337][ T8826] ? _raw_spin_lock_irqsave+0x38/0xa0 [ 640.038748][ T8826] ext4_map_blocks+0x1cf/0xf00 [ 640.043500][ T8826] ext4_iomap_begin+0x4b0/0x630 [ 640.048508][ T8826] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 640.053702][ T8826] iomap_iter+0x39c/0x470 [ 640.058018][ T8826] __iomap_dio_rw+0x698/0x1010 [ 640.062872][ T8826] ? __vfs_getxattr+0x264/0x280 [ 640.067722][ T8826] iomap_dio_rw+0x30/0x70 [ 640.072081][ T8826] ? ext4_file_write_iter+0x521/0x11f0 [ 640.077525][ T8826] ext4_file_write_iter+0xaa9/0x11f0 [ 640.082818][ T8826] ? ext4_file_write_iter+0x521/0x11f0 [ 640.088276][ T8826] do_iter_readv_writev+0x2de/0x380 [ 640.093542][ T8826] do_iter_write+0x192/0x5c0 [ 640.098171][ T8826] ? splice_from_pipe_next+0x34f/0x3b0 [ 640.103610][ T8826] ? kmalloc_array+0x2d/0x40 [ 640.108308][ T8826] vfs_iter_write+0x4c/0x70 [ 640.112820][ T8826] iter_file_splice_write+0x43a/0x790 [ 640.118191][ T8826] ? splice_from_pipe+0xd0/0xd0 [ 640.123041][ T8826] direct_splice_actor+0x80/0xa0 [ 640.127961][ T8826] splice_direct_to_actor+0x345/0x650 [ 640.133313][ T8826] ? do_splice_direct+0x190/0x190 [ 640.138322][ T8826] do_splice_direct+0x106/0x190 [ 640.143169][ T8826] do_sendfile+0x63e/0xbb0 [ 640.147574][ T8826] __x64_sys_sendfile64+0x102/0x140 [ 640.152768][ T8826] do_syscall_64+0x44/0xa0 [ 640.157240][ T8826] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 640.163121][ T8826] RIP: 0033:0x7fabf13d4709 [ 640.167544][ T8826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 22:22:07 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff7f, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 640.187315][ T8826] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 640.195712][ T8826] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 640.203682][ T8826] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 640.211648][ T8826] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 640.219603][ T8826] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 640.227557][ T8826] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 640.276365][ T8825] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 640.286498][ T8825] EXT4-fs (loop4): group descriptors corrupted! [ 640.373284][ T8806] loop5: detected capacity change from 0 to 131456 [ 640.383346][ T8806] EXT4-fs (loop5): inodes count not valid: 19488 vs 32 [ 640.396767][ T8785] loop3: detected capacity change from 0 to 264192 [ 640.406551][ T8785] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 640.416754][ T8785] EXT4-fs (loop3): group descriptors corrupted! 22:22:07 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20600000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 640.435858][ T8825] loop4: detected capacity change from 0 to 264192 [ 640.442842][ T8825] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 640.453037][ T8825] EXT4-fs (loop4): group descriptors corrupted! 22:22:07 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000", 0x1a, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:07 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x400000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:07 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff85, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 640.506213][ T8855] loop5: detected capacity change from 0 to 131456 [ 640.515653][ T8855] EXT4-fs (loop5): inodes count not valid: 24608 vs 32 [ 640.527038][ T8822] loop1: detected capacity change from 0 to 131456 [ 640.541563][ T8867] loop3: detected capacity change from 0 to 264192 22:22:08 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) setrlimit(0xc, &(0x7f0000000300)={0x5, 0x800}) open(&(0x7f00000001c0)='./bus\x00', 0x5d1e42, 0x4c) getpid() getrlimit(0x8, &(0x7f00000002c0)) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x8009, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x4, &(0x7f0000000380)=[{&(0x7f0000000400)="20000000000100000c00fd1cfc29e586e7eeb5330000ce0000000f000000010000000000000000001700002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x5e, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}, {&(0x7f0000000080)="10fdf1f5ca2ebeab8a7ce0c000", 0xd, 0xffff}], 0x4000, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) write$binfmt_script(r0, &(0x7f0000000480)={'#! ', './file0', [{0x20, 'ext4\x00'}, {0x20, 'ext4\x00'}, {0x20, '-##-\\)('}, {0x20, '@,\\8'}, {0x20, '{%^'}], 0xa, "2a44e7f9e404cf79ffb0d7c3ae7a905bbd760437ca4108ef2958f82c61d3a9123663d7d99ff38c926e3f3e8a0252328b269801d68d99e2e2c82e12fc17ee8be02c69959f59cd0d8f15b618a8bfec8f5ed10dec2344f7dc8817f414e4fb652e0f89f68bd3b0807aa7bc65da48352137ee46170b05984056005e9e97efc51d038fdec544a48f50491a2d3b29ccc229fb81c0a82396bf986443766cb1835f733bb55018127c587091e48d13733eb4572b9180b9b79f1e2747022da02b744de07bc07d036c30f9dd14de571bc44c5fbccae3ad65aa2bcf307197"}, 0x100) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) mount(&(0x7f0000000340)=@loop={'/dev/loop', 0x0}, &(0x7f0000000580)='./bus\x00', &(0x7f00000005c0)='rootfs\x00', 0x3842060, &(0x7f0000000600)='\x00') fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 640.549799][ T8867] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 640.559940][ T8867] EXT4-fs (loop3): group descriptors corrupted! [ 640.566610][ T8872] loop4: detected capacity change from 0 to 264192 [ 640.575201][ T8872] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 640.585361][ T8872] EXT4-fs (loop4): group descriptors corrupted! 22:22:08 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 7) fallocate(r3, 0x0, 0x6, 0x0) [ 640.642417][ T8878] loop2: detected capacity change from 0 to 131456 [ 640.651013][ T8878] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 640.661102][ T8878] EXT4-fs (loop2): group descriptors corrupted! [ 640.669998][ T8855] loop5: detected capacity change from 0 to 131456 22:22:08 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20680000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 640.707491][ T8855] EXT4-fs (loop5): inodes count not valid: 24608 vs 32 [ 640.811641][ T8867] loop3: detected capacity change from 0 to 264192 [ 640.834811][ T8867] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 640.844940][ T8867] EXT4-fs (loop3): group descriptors corrupted! [ 640.852195][ T8896] FAULT_INJECTION: forcing a failure. [ 640.852195][ T8896] name failslab, interval 1, probability 0, space 0, times 0 [ 640.864808][ T8896] CPU: 1 PID: 8896 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 640.873476][ T8896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 640.883556][ T8896] Call Trace: [ 640.886829][ T8896] dump_stack_lvl+0xd6/0x122 [ 640.891509][ T8896] dump_stack+0x11/0x1b [ 640.895648][ T8896] should_fail+0x23c/0x250 [ 640.900082][ T8896] ? kcalloc+0x32/0x50 [ 640.904139][ T8896] __should_failslab+0x81/0x90 [ 640.908910][ T8896] should_failslab+0x5/0x20 [ 640.913421][ T8896] __kmalloc+0x6f/0x350 [ 640.917558][ T8896] kcalloc+0x32/0x50 [ 640.921514][ T8896] ext4_find_extent+0x21c/0x7f0 [ 640.926467][ T8896] ? kfree+0xf8/0x1d0 [ 640.930442][ T8896] ext4_ext_map_blocks+0x115/0x1ff0 [ 640.935634][ T8896] ? __find_get_block+0x72d/0x930 [ 640.940693][ T8896] ext4_map_blocks+0x71e/0xf00 [ 640.945460][ T8896] ext4_iomap_begin+0x4b0/0x630 [ 640.950297][ T8896] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 640.955485][ T8896] iomap_iter+0x39c/0x470 [ 640.959838][ T8896] __iomap_dio_rw+0x698/0x1010 [ 640.964593][ T8896] ? __vfs_getxattr+0x264/0x280 [ 640.969507][ T8896] iomap_dio_rw+0x30/0x70 [ 640.973826][ T8896] ? ext4_file_write_iter+0x521/0x11f0 [ 640.979270][ T8896] ext4_file_write_iter+0xaa9/0x11f0 [ 640.984537][ T8896] ? ext4_file_write_iter+0x521/0x11f0 [ 640.989993][ T8896] do_iter_readv_writev+0x2de/0x380 [ 640.995181][ T8896] do_iter_write+0x192/0x5c0 [ 640.999779][ T8896] ? splice_from_pipe_next+0x34f/0x3b0 [ 641.005232][ T8896] ? kmalloc_array+0x2d/0x40 [ 641.009810][ T8896] vfs_iter_write+0x4c/0x70 [ 641.014303][ T8896] iter_file_splice_write+0x43a/0x790 [ 641.019660][ T8896] ? splice_from_pipe+0xd0/0xd0 [ 641.024493][ T8896] direct_splice_actor+0x80/0xa0 [ 641.029420][ T8896] splice_direct_to_actor+0x345/0x650 [ 641.034773][ T8896] ? do_splice_direct+0x190/0x190 [ 641.039780][ T8896] do_splice_direct+0x106/0x190 [ 641.044687][ T8896] do_sendfile+0x63e/0xbb0 [ 641.049112][ T8896] __x64_sys_sendfile64+0x102/0x140 [ 641.054369][ T8896] do_syscall_64+0x44/0xa0 [ 641.058866][ T8896] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 641.064747][ T8896] RIP: 0033:0x7fabf13d4709 [ 641.069143][ T8896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 641.088745][ T8896] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 641.097153][ T8896] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 641.105108][ T8896] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 641.113125][ T8896] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 641.121088][ T8896] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 641.129042][ T8896] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:08 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x500000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 641.250095][ T8872] loop4: detected capacity change from 0 to 264192 [ 641.258199][ T8872] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 641.268331][ T8872] EXT4-fs (loop4): group descriptors corrupted! [ 641.285355][ T8910] loop1: detected capacity change from 0 to 131456 [ 641.293752][ T8911] loop5: detected capacity change from 0 to 131456 22:22:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff8c, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:08 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="206c0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 641.315007][ T8911] EXT4-fs (loop5): inodes count not valid: 26656 vs 32 [ 641.348993][ T8920] loop3: detected capacity change from 0 to 264192 22:22:08 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000", 0x1a, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 641.356675][ T8920] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 641.366822][ T8920] EXT4-fs (loop3): group descriptors corrupted! [ 641.401897][ T8935] loop5: detected capacity change from 0 to 131456 [ 641.409882][ T8934] loop4: detected capacity change from 0 to 264192 [ 641.418212][ T8920] loop3: detected capacity change from 0 to 264192 [ 641.429129][ T8935] EXT4-fs (loop5): inodes count not valid: 27680 vs 32 [ 641.480299][ T8946] loop2: detected capacity change from 0 to 131456 [ 641.488324][ T8946] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 641.498523][ T8946] EXT4-fs (loop2): group descriptors corrupted! 22:22:08 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 8) fallocate(r3, 0x0, 0x6, 0x0) [ 641.610616][ T8920] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 641.620728][ T8920] EXT4-fs (loop3): group descriptors corrupted! [ 641.632288][ T8934] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 641.642416][ T8934] EXT4-fs (loop4): group descriptors corrupted! [ 641.678541][ T8953] FAULT_INJECTION: forcing a failure. [ 641.678541][ T8953] name failslab, interval 1, probability 0, space 0, times 0 [ 641.691233][ T8953] CPU: 0 PID: 8953 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 641.699966][ T8953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 641.710001][ T8953] Call Trace: [ 641.713262][ T8953] dump_stack_lvl+0xd6/0x122 [ 641.717838][ T8953] dump_stack+0x11/0x1b [ 641.721976][ T8953] should_fail+0x23c/0x250 [ 641.726382][ T8953] ? ext4_mb_new_blocks+0x317/0x1fc0 [ 641.731691][ T8953] __should_failslab+0x81/0x90 [ 641.736456][ T8953] should_failslab+0x5/0x20 [ 641.740949][ T8953] kmem_cache_alloc+0x4f/0x300 [ 641.745696][ T8953] ext4_mb_new_blocks+0x317/0x1fc0 [ 641.750792][ T8953] ? ext4_find_extent+0x6cf/0x7f0 [ 641.755820][ T8953] ? ext4_ext_search_right+0x300/0x540 [ 641.761261][ T8953] ? ext4_inode_to_goal_block+0x1bd/0x1d0 [ 641.766969][ T8953] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 641.772234][ T8953] ? __find_get_block+0x72d/0x930 [ 641.777307][ T8953] ext4_map_blocks+0x71e/0xf00 [ 641.782058][ T8953] ext4_iomap_begin+0x4b0/0x630 [ 641.786946][ T8953] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 641.792141][ T8953] iomap_iter+0x39c/0x470 [ 641.796472][ T8953] __iomap_dio_rw+0x698/0x1010 [ 641.801223][ T8953] ? __vfs_getxattr+0x264/0x280 [ 641.806058][ T8953] iomap_dio_rw+0x30/0x70 [ 641.810375][ T8953] ? ext4_file_write_iter+0x521/0x11f0 [ 641.815831][ T8953] ext4_file_write_iter+0xaa9/0x11f0 [ 641.821101][ T8953] ? ext4_file_write_iter+0x521/0x11f0 [ 641.826602][ T8953] do_iter_readv_writev+0x2de/0x380 [ 641.831788][ T8953] do_iter_write+0x192/0x5c0 [ 641.836363][ T8953] ? splice_from_pipe_next+0x34f/0x3b0 [ 641.841805][ T8953] ? kmalloc_array+0x2d/0x40 [ 641.846380][ T8953] vfs_iter_write+0x4c/0x70 [ 641.850868][ T8953] iter_file_splice_write+0x43a/0x790 [ 641.856225][ T8953] ? splice_from_pipe+0xd0/0xd0 [ 641.861058][ T8953] direct_splice_actor+0x80/0xa0 [ 641.866107][ T8953] splice_direct_to_actor+0x345/0x650 [ 641.871461][ T8953] ? do_splice_direct+0x190/0x190 [ 641.876476][ T8953] do_splice_direct+0x106/0x190 [ 641.881338][ T8953] do_sendfile+0x63e/0xbb0 [ 641.885749][ T8953] __x64_sys_sendfile64+0x102/0x140 [ 641.891007][ T8953] do_syscall_64+0x44/0xa0 [ 641.895431][ T8953] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 641.901313][ T8953] RIP: 0033:0x7fabf13d4709 [ 641.905719][ T8953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 641.925369][ T8953] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 641.933779][ T8953] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 641.941747][ T8953] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 641.949721][ T8953] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 641.957678][ T8953] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 641.965631][ T8953] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:09 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) io_setup(0x8000, &(0x7f00000002c0)) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x61840, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) prlimit64(r0, 0x0, &(0x7f00000001c0)={0x3}, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:09 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x600000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:09 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20740000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 642.103495][ T8934] loop4: detected capacity change from 0 to 264192 [ 642.112625][ T8934] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 642.122742][ T8934] EXT4-fs (loop4): group descriptors corrupted! [ 642.137929][ T8969] loop5: detected capacity change from 0 to 131456 [ 642.146099][ T8969] EXT4-fs (loop5): inodes count not valid: 29728 vs 32 [ 642.169555][ T8978] loop3: detected capacity change from 0 to 264192 [ 642.170905][ T8968] loop1: detected capacity change from 0 to 131456 [ 642.185084][ T8969] loop5: detected capacity change from 0 to 131456 [ 642.203789][ T8978] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:22:09 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff97, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:09 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="207a0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 642.213941][ T8978] EXT4-fs (loop3): group descriptors corrupted! [ 642.225040][ T8969] EXT4-fs (loop5): inodes count not valid: 29728 vs 32 [ 642.257411][ T8993] loop4: detected capacity change from 0 to 264192 22:22:09 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f0000000000000400", 0x1c, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:09 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x604000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 642.277141][ T8993] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 642.287290][ T8993] EXT4-fs (loop4): group descriptors corrupted! [ 642.331969][ T9005] loop5: detected capacity change from 0 to 131456 [ 642.339480][ T8993] loop4: detected capacity change from 0 to 264192 [ 642.346759][ T9005] EXT4-fs (loop5): inodes count not valid: 31264 vs 32 [ 642.400570][ T8993] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 642.410788][ T8993] EXT4-fs (loop4): group descriptors corrupted! [ 642.425164][ T9019] loop2: detected capacity change from 0 to 131456 [ 642.442061][ T9017] loop3: detected capacity change from 0 to 264192 [ 642.475117][ T9019] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 642.485291][ T9019] EXT4-fs (loop2): group descriptors corrupted! [ 642.493412][ T9017] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 642.503607][ T9017] EXT4-fs (loop3): group descriptors corrupted! [ 642.590809][ T9028] FAULT_INJECTION: forcing a failure. [ 642.590809][ T9028] name failslab, interval 1, probability 0, space 0, times 0 [ 642.603435][ T9028] CPU: 1 PID: 9028 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 642.612161][ T9028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 642.622200][ T9028] Call Trace: [ 642.625461][ T9028] dump_stack_lvl+0xd6/0x122 [ 642.630052][ T9028] dump_stack+0x11/0x1b [ 642.634190][ T9028] should_fail+0x23c/0x250 [ 642.638661][ T9028] ? __es_insert_extent+0x51f/0xe70 [ 642.643848][ T9028] __should_failslab+0x81/0x90 [ 642.648596][ T9028] should_failslab+0x5/0x20 [ 642.653107][ T9028] kmem_cache_alloc+0x4f/0x300 [ 642.657868][ T9028] __es_insert_extent+0x51f/0xe70 [ 642.662920][ T9028] ext4_es_insert_extent+0x1cb/0x1950 [ 642.668281][ T9028] ext4_map_blocks+0xa5d/0xf00 [ 642.673103][ T9028] ext4_iomap_begin+0x4b0/0x630 [ 642.677943][ T9028] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 642.683127][ T9028] iomap_iter+0x39c/0x470 [ 642.687511][ T9028] __iomap_dio_rw+0x698/0x1010 [ 642.692264][ T9028] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 642.697949][ T9028] iomap_dio_rw+0x30/0x70 [ 642.702384][ T9028] ? ext4_file_write_iter+0x521/0x11f0 [ 642.707873][ T9028] ext4_file_write_iter+0xaa9/0x11f0 [ 642.713144][ T9028] ? ext4_file_write_iter+0x521/0x11f0 [ 642.718591][ T9028] do_iter_readv_writev+0x2de/0x380 [ 642.723876][ T9028] do_iter_write+0x192/0x5c0 [ 642.728709][ T9028] ? splice_from_pipe_next+0x34f/0x3b0 [ 642.734164][ T9028] ? kmalloc_array+0x2d/0x40 [ 642.738803][ T9028] vfs_iter_write+0x4c/0x70 [ 642.743358][ T9028] iter_file_splice_write+0x43a/0x790 [ 642.748716][ T9028] ? splice_from_pipe+0xd0/0xd0 [ 642.753590][ T9028] direct_splice_actor+0x80/0xa0 [ 642.758555][ T9028] splice_direct_to_actor+0x345/0x650 [ 642.763913][ T9028] ? do_splice_direct+0x190/0x190 [ 642.768921][ T9028] do_splice_direct+0x106/0x190 [ 642.773783][ T9028] do_sendfile+0x63e/0xbb0 [ 642.778204][ T9028] __x64_sys_sendfile64+0x102/0x140 [ 642.783456][ T9028] do_syscall_64+0x44/0xa0 [ 642.787924][ T9028] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 642.793812][ T9028] RIP: 0033:0x7fabf13d4709 [ 642.798243][ T9028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 642.817843][ T9028] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 642.826243][ T9028] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 642.834200][ T9028] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 22:22:09 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 9) fallocate(r3, 0x0, 0x6, 0x0) [ 642.842157][ T9028] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 642.850112][ T9028] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000001 [ 642.858113][ T9028] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:10 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x700000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:10 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffffda, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:10 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f00000002c0)=0xc) capset(&(0x7f0000000380)={0x20080522, r2}, &(0x7f00000003c0)={0x4, 0x5, 0x1200000, 0x7, 0x3, 0x1}) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:10 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x800000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:10 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20be0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 643.028045][ T9047] loop4: detected capacity change from 0 to 264192 [ 643.032035][ T9046] loop1: detected capacity change from 0 to 131456 [ 643.044275][ T9047] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 643.045766][ T9049] loop3: detected capacity change from 0 to 264192 [ 643.054415][ T9047] EXT4-fs (loop4): group descriptors corrupted! 22:22:10 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20bf0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:10 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffff6, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:10 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x900000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 643.073705][ T9050] loop5: detected capacity change from 0 to 131456 [ 643.082165][ T9050] EXT4-fs (loop5): inodes count not valid: 48672 vs 32 [ 643.091878][ T9049] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 643.102008][ T9049] EXT4-fs (loop3): group descriptors corrupted! 22:22:10 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f0000000000000400", 0x1c, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 643.172621][ T9069] loop4: detected capacity change from 0 to 264192 [ 643.188119][ T9072] loop5: detected capacity change from 0 to 131456 [ 643.196625][ T9069] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 643.206749][ T9069] EXT4-fs (loop4): group descriptors corrupted! [ 643.207811][ T9072] EXT4-fs (loop5): inodes count not valid: 48928 vs 32 [ 643.221335][ T9071] loop3: detected capacity change from 0 to 264192 [ 643.229804][ T9071] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 643.239880][ T9071] EXT4-fs (loop3): group descriptors corrupted! [ 643.246221][ T9046] loop1: detected capacity change from 0 to 131456 22:22:10 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r0, 0x409, 0x20000000) fallocate(r0, 0x60, 0x2, 0xfffffffeffffffff) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 643.297306][ T9090] loop2: detected capacity change from 0 to 131456 [ 643.308563][ T9090] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 643.318718][ T9090] EXT4-fs (loop2): group descriptors corrupted! 22:22:10 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 10) fallocate(r3, 0x0, 0x6, 0x0) [ 643.449917][ T9072] loop5: detected capacity change from 0 to 131456 [ 643.482338][ T9069] loop4: detected capacity change from 0 to 264192 [ 643.490962][ T9072] EXT4-fs (loop5): inodes count not valid: 48928 vs 32 [ 643.501683][ T9107] FAULT_INJECTION: forcing a failure. [ 643.501683][ T9107] name failslab, interval 1, probability 0, space 0, times 0 [ 643.514353][ T9107] CPU: 1 PID: 9107 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 643.523027][ T9107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 643.533064][ T9107] Call Trace: [ 643.536330][ T9107] dump_stack_lvl+0xd6/0x122 [ 643.540908][ T9107] dump_stack+0x11/0x1b [ 643.545167][ T9107] should_fail+0x23c/0x250 [ 643.549647][ T9107] ? mempool_alloc_slab+0x16/0x20 [ 643.554655][ T9107] __should_failslab+0x81/0x90 [ 643.559409][ T9107] should_failslab+0x5/0x20 [ 643.563916][ T9107] kmem_cache_alloc+0x4f/0x300 [ 643.568663][ T9107] ? ext4_fc_track_range+0x90/0x140 [ 643.573848][ T9107] mempool_alloc_slab+0x16/0x20 [ 643.578682][ T9107] ? mempool_free+0x130/0x130 [ 643.583367][ T9107] mempool_alloc+0x9d/0x310 [ 643.587855][ T9107] bio_alloc_bioset+0xcc/0x530 [ 643.592605][ T9107] ? iov_iter_alignment+0x34b/0x370 [ 643.597850][ T9107] iomap_dio_bio_iter+0x5c1/0xbc0 [ 643.602865][ T9107] __iomap_dio_rw+0x8d8/0x1010 [ 643.607618][ T9107] iomap_dio_rw+0x30/0x70 [ 643.611980][ T9107] ? ext4_file_write_iter+0x521/0x11f0 [ 643.617426][ T9107] ext4_file_write_iter+0xaa9/0x11f0 [ 643.622707][ T9107] ? ext4_file_write_iter+0x521/0x11f0 [ 643.628216][ T9107] do_iter_readv_writev+0x2de/0x380 [ 643.633405][ T9107] do_iter_write+0x192/0x5c0 [ 643.637984][ T9107] ? splice_from_pipe_next+0x34f/0x3b0 [ 643.643508][ T9107] ? kmalloc_array+0x2d/0x40 [ 643.648111][ T9107] vfs_iter_write+0x4c/0x70 [ 643.652615][ T9107] iter_file_splice_write+0x43a/0x790 [ 643.657983][ T9107] ? splice_from_pipe+0xd0/0xd0 [ 643.662892][ T9107] direct_splice_actor+0x80/0xa0 [ 643.667831][ T9107] splice_direct_to_actor+0x345/0x650 [ 643.673231][ T9107] ? do_splice_direct+0x190/0x190 [ 643.678309][ T9107] do_splice_direct+0x106/0x190 [ 643.683248][ T9107] do_sendfile+0x63e/0xbb0 [ 643.687655][ T9107] __x64_sys_sendfile64+0x102/0x140 [ 643.692842][ T9107] do_syscall_64+0x44/0xa0 [ 643.697250][ T9107] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 643.703138][ T9107] RIP: 0033:0x7fabf13d4709 [ 643.707536][ T9107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 643.727128][ T9107] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 643.735522][ T9107] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 643.743477][ T9107] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 643.751431][ T9107] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 643.759396][ T9107] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 643.767353][ T9107] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:11 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffffd, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:11 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20c00000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:11 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xa00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 643.907838][ T9071] loop3: detected capacity change from 0 to 264192 [ 643.916471][ T9071] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 643.926607][ T9071] EXT4-fs (loop3): group descriptors corrupted! [ 643.962370][ T9123] loop3: detected capacity change from 0 to 264192 [ 643.964264][ T9125] loop1: detected capacity change from 0 to 131456 [ 644.013399][ T9123] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.018660][ T9136] loop4: detected capacity change from 0 to 264192 [ 644.023534][ T9123] EXT4-fs (loop3): group descriptors corrupted! [ 644.045009][ T9136] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.055286][ T9136] EXT4-fs (loop4): group descriptors corrupted! 22:22:11 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f0000000000000400", 0x1c, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 644.062723][ T9140] loop5: detected capacity change from 0 to 131456 [ 644.076569][ T9140] EXT4-fs (loop5): inodes count not valid: 49184 vs 32 [ 644.083921][ T9123] loop3: detected capacity change from 0 to 264192 [ 644.091627][ T9123] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.101731][ T9123] EXT4-fs (loop3): group descriptors corrupted! 22:22:11 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffffe, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:11 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20c10000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:11 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 644.157778][ T9153] loop5: detected capacity change from 0 to 131456 [ 644.170082][ T9153] EXT4-fs (loop5): inodes count not valid: 49440 vs 32 [ 644.172583][ T9159] loop4: detected capacity change from 0 to 264192 [ 644.185449][ T9159] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.195572][ T9159] EXT4-fs (loop4): group descriptors corrupted! [ 644.206903][ T9167] loop3: detected capacity change from 0 to 264192 [ 644.215079][ T9167] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.225229][ T9167] EXT4-fs (loop3): group descriptors corrupted! 22:22:11 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 11) fallocate(r3, 0x0, 0x6, 0x0) [ 644.253034][ T9171] loop2: detected capacity change from 0 to 131456 [ 644.261438][ T9171] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.271547][ T9171] EXT4-fs (loop2): group descriptors corrupted! [ 644.417569][ T9178] FAULT_INJECTION: forcing a failure. [ 644.417569][ T9178] name failslab, interval 1, probability 0, space 0, times 0 [ 644.430226][ T9178] CPU: 1 PID: 9178 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 644.438889][ T9178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 644.448927][ T9178] Call Trace: [ 644.452188][ T9178] dump_stack_lvl+0xd6/0x122 [ 644.456776][ T9178] dump_stack+0x11/0x1b [ 644.461001][ T9178] should_fail+0x23c/0x250 [ 644.465408][ T9178] __should_failslab+0x81/0x90 [ 644.470165][ T9178] should_failslab+0x5/0x20 [ 644.474723][ T9178] kmem_cache_alloc_node+0x61/0x2c0 [ 644.479909][ T9178] ? create_task_io_context+0x36/0x210 [ 644.485386][ T9178] create_task_io_context+0x36/0x210 [ 644.490703][ T9178] submit_bio_checks+0x7c3/0x850 [ 644.495646][ T9178] ? bio_iov_iter_get_pages+0xe63/0xf10 [ 644.501175][ T9178] submit_bio_noacct+0x33/0x7d0 [ 644.506060][ T9178] submit_bio+0x10c/0x190 [ 644.510379][ T9178] iomap_dio_bio_iter+0x990/0xbc0 [ 644.515500][ T9178] __iomap_dio_rw+0x8d8/0x1010 [ 644.520260][ T9178] iomap_dio_rw+0x30/0x70 [ 644.524646][ T9178] ? ext4_file_write_iter+0x521/0x11f0 [ 644.530092][ T9178] ext4_file_write_iter+0xaa9/0x11f0 [ 644.535362][ T9178] ? ext4_file_write_iter+0x521/0x11f0 [ 644.540953][ T9178] do_iter_readv_writev+0x2de/0x380 [ 644.546152][ T9178] do_iter_write+0x192/0x5c0 [ 644.550728][ T9178] ? splice_from_pipe_next+0x34f/0x3b0 [ 644.556168][ T9178] ? kmalloc_array+0x2d/0x40 [ 644.560832][ T9178] vfs_iter_write+0x4c/0x70 [ 644.565322][ T9178] iter_file_splice_write+0x43a/0x790 [ 644.570724][ T9178] ? splice_from_pipe+0xd0/0xd0 [ 644.576079][ T9178] direct_splice_actor+0x80/0xa0 [ 644.580998][ T9178] splice_direct_to_actor+0x345/0x650 [ 644.586349][ T9178] ? do_splice_direct+0x190/0x190 [ 644.591356][ T9178] do_splice_direct+0x106/0x190 [ 644.596186][ T9178] do_sendfile+0x63e/0xbb0 [ 644.600593][ T9178] __x64_sys_sendfile64+0x102/0x140 [ 644.605882][ T9178] do_syscall_64+0x44/0xa0 [ 644.610346][ T9178] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 644.616262][ T9178] RIP: 0033:0x7fabf13d4709 [ 644.620723][ T9178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 644.640352][ T9178] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 644.648754][ T9178] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 644.656735][ T9178] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 644.664698][ T9178] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 644.672706][ T9178] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 644.680661][ T9178] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 644.772115][ T9153] loop5: detected capacity change from 0 to 131456 [ 644.784487][ T9153] EXT4-fs (loop5): inodes count not valid: 49440 vs 32 [ 644.816104][ T9167] loop3: detected capacity change from 0 to 264192 [ 644.823372][ T9159] loop4: detected capacity change from 0 to 264192 [ 644.837586][ T9159] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.847734][ T9159] EXT4-fs (loop4): group descriptors corrupted! [ 644.855018][ T9167] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:22:12 executing program 1: ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f00000001c0)={'ip6gre0\x00', &(0x7f0000000380)={'syztnl2\x00', 0x0, 0x4, 0x1, 0xd, 0x6, 0x40, @empty, @private2, 0x7800, 0x700, 0x0, 0x7}}) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x1ff, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x5}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:12 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20040200000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 644.865201][ T9167] EXT4-fs (loop3): group descriptors corrupted! 22:22:12 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:12 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 644.907018][ T9204] loop1: detected capacity change from 0 to 140 [ 644.929025][ T9210] loop5: detected capacity change from 0 to 131456 [ 644.943027][ T9213] loop4: detected capacity change from 0 to 264192 22:22:12 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 644.984504][ T9213] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 644.984835][ T9210] EXT4-fs (loop5): inodes count not valid: 132128 vs 32 [ 644.994654][ T9213] EXT4-fs (loop4): group descriptors corrupted! 22:22:12 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 645.101630][ T9204] loop1: detected capacity change from 0 to 140 [ 645.130113][ T9232] loop4: detected capacity change from 0 to 264192 22:22:12 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 12) fallocate(r3, 0x0, 0x6, 0x0) [ 645.148047][ T9233] loop2: detected capacity change from 0 to 131456 [ 645.192817][ T9233] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 645.202983][ T9233] EXT4-fs (loop2): group descriptors corrupted! [ 645.209418][ T9232] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 645.219513][ T9232] EXT4-fs (loop4): group descriptors corrupted! [ 645.274275][ T9247] loop3: detected capacity change from 0 to 264192 [ 645.283573][ T9210] loop5: detected capacity change from 0 to 131456 [ 645.315082][ T9210] EXT4-fs (loop5): inodes count not valid: 132128 vs 32 [ 645.333768][ T9247] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 645.343904][ T9247] EXT4-fs (loop3): group descriptors corrupted! [ 645.401682][ T9257] FAULT_INJECTION: forcing a failure. [ 645.401682][ T9257] name failslab, interval 1, probability 0, space 0, times 0 [ 645.414341][ T9257] CPU: 1 PID: 9257 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 645.423001][ T9257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 645.433058][ T9257] Call Trace: [ 645.436332][ T9257] dump_stack_lvl+0xd6/0x122 [ 645.440916][ T9257] dump_stack+0x11/0x1b [ 645.445060][ T9257] should_fail+0x23c/0x250 [ 645.449458][ T9257] ? mempool_alloc_slab+0x16/0x20 [ 645.454467][ T9257] __should_failslab+0x81/0x90 [ 645.459248][ T9257] should_failslab+0x5/0x20 [ 645.463751][ T9257] kmem_cache_alloc+0x4f/0x300 [ 645.468671][ T9257] mempool_alloc_slab+0x16/0x20 [ 645.473512][ T9257] ? mempool_free+0x130/0x130 [ 645.478173][ T9257] mempool_alloc+0x9d/0x310 [ 645.482659][ T9257] ? crypto_shash_update+0x13c/0x1a0 [ 645.488009][ T9257] ? pagecache_get_page+0x7aa/0x910 [ 645.493275][ T9257] sg_pool_alloc+0x74/0x90 [ 645.497707][ T9257] __sg_alloc_table+0xce/0x290 [ 645.502463][ T9257] sg_alloc_table_chained+0xaf/0x140 [ 645.507765][ T9257] ? sg_alloc_table_chained+0x140/0x140 [ 645.513317][ T9257] scsi_alloc_sgtables+0x184/0x510 [ 645.518416][ T9257] sd_init_command+0x952/0x1610 [ 645.523250][ T9257] scsi_queue_rq+0x10cd/0x15a0 [ 645.528005][ T9257] blk_mq_dispatch_rq_list+0x63b/0x1080 [ 645.533540][ T9257] blk_mq_do_dispatch_sched+0x3b5/0x640 [ 645.539073][ T9257] __blk_mq_sched_dispatch_requests+0x1eb/0x290 [ 645.545302][ T9257] ? rb_insert_color+0x2fa/0x310 [ 645.550242][ T9257] blk_mq_sched_dispatch_requests+0x9f/0x110 [ 645.556224][ T9257] __blk_mq_run_hw_queue+0xbc/0x140 [ 645.561414][ T9257] __blk_mq_delay_run_hw_queue+0x163/0x2f0 [ 645.567209][ T9257] blk_mq_run_hw_queue+0x22c/0x250 [ 645.572305][ T9257] blk_mq_sched_insert_requests+0x12b/0x1f0 [ 645.578255][ T9257] blk_mq_flush_plug_list+0x302/0x3d0 [ 645.583613][ T9257] blk_flush_plug_list+0x235/0x260 [ 645.588713][ T9257] blk_finish_plug+0x44/0x60 [ 645.593288][ T9257] __iomap_dio_rw+0xca7/0x1010 [ 645.598119][ T9257] iomap_dio_rw+0x30/0x70 [ 645.602441][ T9257] ? ext4_file_write_iter+0x521/0x11f0 [ 645.607937][ T9257] ext4_file_write_iter+0xaa9/0x11f0 [ 645.613204][ T9257] ? ext4_file_write_iter+0x521/0x11f0 [ 645.618649][ T9257] do_iter_readv_writev+0x2de/0x380 [ 645.623834][ T9257] do_iter_write+0x192/0x5c0 [ 645.628411][ T9257] ? splice_from_pipe_next+0x34f/0x3b0 [ 645.633906][ T9257] ? kmalloc_array+0x2d/0x40 [ 645.638482][ T9257] vfs_iter_write+0x4c/0x70 [ 645.642975][ T9257] iter_file_splice_write+0x43a/0x790 [ 645.648330][ T9257] ? splice_from_pipe+0xd0/0xd0 [ 645.653162][ T9257] direct_splice_actor+0x80/0xa0 [ 645.658136][ T9257] splice_direct_to_actor+0x345/0x650 [ 645.663488][ T9257] ? do_splice_direct+0x190/0x190 [ 645.668492][ T9257] do_splice_direct+0x106/0x190 [ 645.673327][ T9257] do_sendfile+0x63e/0xbb0 [ 645.677732][ T9257] __x64_sys_sendfile64+0x102/0x140 [ 645.682917][ T9257] do_syscall_64+0x44/0xa0 [ 645.687354][ T9257] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 645.693281][ T9257] RIP: 0033:0x7fabf13d4709 [ 645.697679][ T9257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 645.717271][ T9257] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 645.725686][ T9257] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 645.733641][ T9257] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 645.741613][ T9257] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 645.749566][ T9257] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 645.757543][ T9257] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:13 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:13 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x0, 0x31, 0xe463, 0x8, 0x0, 0x0, 0x6a1}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r1, 0x409, 0x20000000) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r2, 0x409, 0x20000000) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000015c0), 0x1, 0x0) fcntl$setlease(r3, 0x409, 0x20000000) sendmmsg$unix(0xffffffffffffffff, &(0x7f000000eb80)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000001c0)="99a27a8d4e4682e23d107e9dd3599ac485bf50fbc3e71b74bfb598d42cbe2c9888e4a67324363305cb8842728ce2c91d9a394f6619f1f4bf", 0x38}, {&(0x7f00000002c0)="f7ff5ae5a8f4b45bbf924982ff9ad66d601d2780cd501be4f4ce2b80016b8d6db0254a4584ea05f902825a4212ac936e3b35c3cef6", 0x35}, {&(0x7f0000000380)="bc7a6ffc253bd972fb3fc3892dabca6014bf1dd4ba292d249c19ae163fd6a049befc30be313ef7eb4a5ab7f865cbf6f44b819abea9ffe0deb2c3319dcea9623f4c09133ec2dd7b2f2f57e4b5fde8ac4f81b4f1aeeb351e9fd822f260d79bb9d615146d106e1f8cda98363c6085e9d8a21355406d1a000470cd76b97d552f2b6531aa795753e0a163c7716aecf0e90bc7d605d2024a3457f1d88b488ff08de8dbdfbea6f9bec27f7778616aa14a47dac10b9a7fa7a470ff578a3e8ddaae1aadc6759dd4fb89fbbb0507ccda05e5", 0xcd}], 0x3, &(0x7f0000000580)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee01}}}, @cred={{0x1c}}], 0xb8, 0x4000}}, {{&(0x7f0000000640)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000003ac0)=[{&(0x7f00000006c0)="727eb7bbe1cdda80232778a51ff7021a15fd5b5592c2", 0x16}, {&(0x7f0000000700)="9c4a60bfabac53abcff4dbc620edb3ce305c367d6020107b48593f7e545a3c3d30cab47394fc6bb48e3268e991c5d047e7398d043586160e1ec1273ef1e255aafb310d7c2b331f0ad7dc3e4e4aa0641d1b13b55195917199e91ab4e024f63b7c13f3f4e275d80a07f79caab6b20c091e50f9adacaf27d910f3378cfd8126ae0db358f356260de2a4115df53525567c929c82efad1851c63880", 0x99}, {&(0x7f00000007c0)="75954abfa4c2d5f14d62e40b7a858977aee06d2f13bff68df3b72d2bed39f208bf5230a0484626b3c38fc44445ec1eebcbc5933f38141894ed5206ce49724bf6d1a307b55bd2f8c8a6d05a402ee994e17a464c657741818a3e16ec03a223b49eaa1de4164d0757d622fefc", 0x6b}, {&(0x7f0000000840)="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", 0x1000}, {&(0x7f0000001840)="987761598c668567f1135c461f7730294cdb51d6bb61ba9a781cf65c7dd6778d37c3889f96b4f65d337150d0747dfbf9f870cf13651e18e7c281a9a5527941cf0500af476e2426f639be27ed44b3cf89e53efcbff6827a0058db5f95b19853c5796ff208bc2f1460728c19aff5ae140b91e92ba5f70c3379fe241db5753142a303c16561405a308cb369552615ff713273f3c505a75fb019c8eac8b2c118c74ff4a13f9e297172a979e58afb74112624f3da28e5d9c763574b461e26fcf0dc4f9a104a37d29919230823cec440b1cc0d622d50f96fa2deac98763ced75f97d62b5a927b4701eb8d7a15763", 0xeb}, {&(0x7f0000001940)="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", 0x1000}, {&(0x7f0000002940)="fe604e30d43aff74bd4b150d7d85a146d4a15771630adfab7507ffdb79d0ed5d79c3d8e8d00a5baea32cbb6289cb40a4bae86dad43443183b971834292d33a5b5ff2ae19e1f5d8fe8b2f13c084eee286ae1cca9093cf64cccf9a4655faa277a10611ee8d3b5266f56cd4a89459d1fe8f9192f5ed12ac37", 0x77}, {&(0x7f00000029c0)="0116d236d9eea3baa5dff70e4fb4fb3364f93974f30929475d3edf7544b52c53186a82665968f6c738ad474e8871b934714b053c58a2d4624673c887c9365b8333ad763db1ddc6358f3459955cd408dcd1e981db17176851bd5cbfd9a25e062613d21f40416bb146fafff7fe4bf8cc3a27d700752a613687213d88eac10dda327041024af0b94192ecc95a2f778cf8fd0197f7acfd5a10d5dfaee35a9149132dc50e7d3ca021b8f5917b028945b3ec8280aebebd6f269e2dff82e6ebd6992b42a541a27483fc238e59ccfb4d36d8d37a9480dc7f92", 0xd5}, {&(0x7f0000002ac0)="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", 0x1000}], 0x9, &(0x7f0000003ec0)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88, 0x4}}, {{&(0x7f0000003f80)=@file={0x0, './bus\x00'}, 0x6e, &(0x7f0000005780)=[{&(0x7f0000004000)="0ede4e1970787ef3a86025f6f814e443456e95d896c26732dd9db6c718d10d985c8bf45c4b833179e7202573a65d992e7fe29c0454246ee8a11b4fd8f1bf16ba5eb49a9f206da1638d3f5783086a9371c58f0ba503d30646686e9e2bc84b7a0aedb8db646a55178643175a02f8c68ee6f82f0254fad58ed7269b0d87e53689c4284f9501d1f730a60fde18e95ce45accc2ceaca04fc8e3fb", 0x98}, {&(0x7f00000040c0)="df268d58b480b619c4e4c8e2a31130a1c9d7aeca01c423753880c0abef955dbd62bb291a63c37fd548629f272b8b5a0f4ec5b586494630d8c1659d939b85cd763b7aed0cb5836eb44b7ab740a28aa37c820c1cf58ea12fe64172a796958dcdfc590956083ed27c6c8b8b1cb34f40d049", 0x70}, {&(0x7f0000004140)="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", 0xfd}, {&(0x7f0000004240)="4d3bab766bc5688450991c3d0ea29261a768b673ed9d5a928e41739fb4aa41f2f3b01c82d29ca04eb5ffcad1c2c4b58905864c7dbb6fcaed99e6ccebb325101e1773707e9b95b5121651c6a560db701240b505f72225f0df5f3dd12407e52d37d9602b2d30c0352d221b712fded5b7e76f490fa1381169b2415a1f4f593b0530b824c8bb30d53c78b166598285686f75036bc6012b4e78ee7ea933cad151e066632941bd440adcd2cfdd13104b952adb057f7452f6ee69891e835c4955efd05d8bcf6819812af48c78248fb1f01f7edc047a9d5ed4b53a535323c1296a8d0a713a403e368ed021104294b2326eab439177213d17f96552eaca630b3973bb4a96f5361e9bc3ae4d18ba9f7ed73318270dac10bb80bfce6590b0dcf32c8bd35718aaee998e35533aed2d140eeada2f984da8761fd0ce4d54e1f140a24654cfe1ab17a7b632be2d17608227b3c945bd7c195de9f0dd0a27b2686156220f71b9d85e4d01c0b7c886fb3e331ee97b94197f6da154d138c70729731c314ae77a5410ca37f38aa1ed3264b35e046f2433856685d8979c1a3d2c8ab7df2837a1935111179dab747b798cbb0e5f7cba1fe324e7fb23fb816b2f0afa1aa648f4d0f6256c175fb25a3a3877b5dc88486af1f2ec797443a9fbe9318bf4b9caabd206614f688bee6b07cb6a22d05547c6710a9f3d7f6e24ecdf453f5a5a96b5b4b47f10cfa5d54deeb3c12b6cfd932fb9b60143426022cf0c644fbac1504b0c5e08b81e8758795b75e49fc3e37b7a72c15d2351a241d58735db1ae7629a65c6efa293a013f138d4a6aba05ad674a6bc89ea87e31fc353a73d32e4bf2af821819cf810c73705c955085f5ca273ac03017d9330b2041b80c60375ae5422188a80a6bd9e26d60c721ebdd7a4d46856de72e6030dac30dd165183704511b820fd9a2bf0234a44a47df8481538b0f23ea009a5ce987c046351cda3a397a16a6c1a4b31a0c104115bc15b4f28b22b64381c361877d2a5ad0ddc616e54924ca22af636a898c32cf81c32980c642cbf6e04a51f242e586fd0c56bf7b56c331ae3114ffe7a90435c7fa4e29765a9234f1b2c2974c8c4ff153babaa54c241aaaf94f61b168b030bf1139febf23826e57aae4ec9709b0ff8d89c635cf4f9d4b955fe36cf9d33eac8b05c147b16c66b69ea0872ddf97921103ee4a5695a12bda505adc13e09c7c35d432db5b88ac5d9f5930c43b2c100732b29ee44b1da10891f2b08035cdff5aa1f04091cc56e5f92ab028f10469e8e9097cebe24b4e83d8ea6f1294a471f152d57dc8ddbf5be07b62e722818a2244df435e0c65d0166e925205f625aa0f72bb540525562b1538e5a6b1e9ca99f3835ad35da847efc152d87f0b954d7554e80fff227b67844cfeb1042c5b05588fba5cccb49927df4c93526a2594a25e3ce57c6c2aa80e863176c31e6c0d5f171ccb99a7467447ac7de19d1d82e4936d3726899ba2582520a5daefc7a2165707f63807df5f76b88e395ed2258706e68197543a17048412852c7fbc53edb26547e950f3e8a052fca3867f50babc3449e2891adf932e0e4b9f2580dd3e8120240f1f7bfc9069fa35085c5ee1594b7e3584f10c9b992b38168a027bfb04d02a682751d3c19fcc145dfa4fb4a7a790d9cf4d635412230abbff7f95a94dde97c66cf06d1099c1076a0e18333f0ec75596b499a3f1c5ebb6de690b209c646c8930b665c1e8b5b67446dd529b4c93caf8e37272946f6d4d30ce6f69dbaedd25c5810334a3b518eac2305cccac8403121fae5adefb4ebc81710ee0f763cdf6dd79498ea2f899cef43c60dd2b507ba03d2502cf03da26d7a9f85c205d61707cbfc3d66666cebe93b3e68325eb379b241491c4c5ba728fc44a9ed149d20effa1ae1c77514873ea39c10410eac1f08342edf22ed7553f826529b0aaa12629e10195bc6f06e12f056ac0e6d8b8f0eb499b7837d091e577dfacbba193f8f42bdecd48f4306adc9ea1fc2912e16de5c99fc78064b397520a90804c958d6c0f66a66b36582807aed50575261145129510b183ae3973ea4d9ce9467df3e2c586c490de67f829c1d0a9ab24888aab1986bc392e671d096674551c8aa5f716033448947743e3e9e7dc5b7d68da291309bdeda4993c486a258525f69a86a3afefa8bd27e6fa4491387d23da821a9dd6df0765f62ffcd39ef38e25a3edc429829bf26436225226ff9cc29734fa3542304bf1b039ef7855115bbb4edebdb62f4e0772e9f89f506f972d5574cf4c88e3c6a086756169c742bed58e2df046546912972c48b391beeb4135e420c929bb9df8572f17b6fe947a4fdc4e07b8911d190c096edbdb114d9e8ee8982d7faf0c326a1222530df4444feab1f220d8b900bd35669a6575e3b542c9fb70b2fe7920af9220e28ec761277a920a80c9b49893246ce44815edf014de6d7309b98979a06838fb11e5a5ea19d63dbeb2ed45344fb091352c02a74dfe817520c84826ac46ca550042e8e04c181db3375b306da073962882af573b832102a55a9295cfc7a1f0a1c822e7bbef3c80f93aec7ee9c648e8f6e1ffa3da52a92d89f4b566db6a520af6e5374ef8011b3599622121f4822af3b19a17a09d5fb5095845ff7057b98fe67c1ab3f6ed0abefeba7628942150bd87d4ce14547c4ed300c161ce17fcf472c5463df797e8f0c6b1aa45100af8631217ce45b89f8466b26ad0a69afcab7c87904ef73109ffefb31264395b17e1ca4ded7c3c2121f4ac10cb912335ec6a99cd1197f7672da863e5d41a2f3af3182829db40c84ac3905d1d968183399624758f6bed5dcf91a16627e56042ead966452b44613d16e0a2eeee4a411a4d64e97e57312e76febbca27a2b228d72b58c86341c4266476f95426943025620c50a593b1c8b8bd9350ead9cc94fce2e77bec3dcb94c6388cb3b613e76652c9e487937240f4028d9e38c2316fa293fe59d1f17161681e3b3ddbb63bf5052d65cdae8aceab4e0d6f87cc39c9981f2edd7bf61aee6d2fd624c7dbedd74f403737aa03163bee9456dc240a84691271f44f977205b11df56138923dba4b17b65e7cdc45052db55253c005f27f0cbbc3c69be569aa619bd5a7c1d13999404f5a3fb9ae2a646aae049e02b1929bcbeedf912f512622cf02dfb8b4402abf574f2719fe4ff42cd3c622226fdff1c224c75d62cf9af227419e8b654c299aa2ff04a6cdf8606a8872779566838014e4f73ec8fc433b162dea2b8ca7c8ec74af7f7a7cbd999a29d1f912e3f518e33e5a7b91364aa62bb0f938b81eacf0d38150ffa82a17f69c70f58ca5f48fe82e329ddffa151515b729cbe332e2292e803576c0c2e4c35c46708e383bb67861241e17ce59b83c88963b4f0e64d3c0acc6b34f6adc3d69c1733bbdbcef1ee8091c83bb1a68387b13a693c96f24e57656700e6d2d969c76b9b662dc57cc14ea98778a4ed580b1288f9ec0c7301166ec7b70934234060419c60c4d233a5817f05bb8ce34584ef9d0684ddf7b11f282c2a2672dd16edcb0315f475e1a9584591db04c292b8618f97c2a0938674eeb9467eaff6468749fa803fdbc366ebed1ed82a646297a660168e019105234c65ff3c197b584c0f5b2dffc222fa5bfeb0bb3840ee684e88553849be89cb2420bc463bc3fdc738b681212b9843c403678a4a57c7c8284e778e5187d02d002b620d1073196d8c1218c1a3b3f627a90a82324516927ea5a6d1982ebcbfeb51ee3d00c621aef5a7844ac0e7f1a48e93bcf00c71d91640da19d1bffc910514d5f797941a55774bcc2a79280cb025fab4a061a532773049f423fccd03a9ac08ba7d43dcfda4018643dc643dabe16f62e299f727e2ed67437aa6cea4334e185bc173b905a3e4cb837a6a5839876217a6b641b69b6495ee6aceb96f3e0d0ffc8c14d1f389ae581afee0674434c6776587f0e661c913f647ddd7e6114485643f96766980a8489af53dfef69c9b041129e4374cce2caedf6832a4150bfc5440f5d584264c2cac477c429a5ec37bc6d72ebecc986182de6d39c319ea852c574d244766381d50419f196073573ec2fb310ed7d58753db6479ac1bbbdc86055068e6a88988ac3bfcc2a459c89c9d78630755618970806b3f17afe2da4f3d5d249154609d274872f740e64e56ea1453617cfbcc232ec1f7dc19d75a74a9291b795d0b989673d390c8c45f34a0612f2b1a396e14119e01fe4483b64367bfc1ffc1736bd217d2804564edbad3787053927bcf654c179d41aaf4237594be2c10dbc1399c80e34c3305f2cafcee51a093d90578ab63b9da4db4d758e093a2cdc04f464e70519464e87838dbad5011fb27728621c40469a90e02274e568121437b8b380a9606dbe86bf658d905db10bb02d6006a346ab62e7e91bd874c3fd452c053128978c24540861ac95c1d2f09a13380ad9729e8ae51263b286b037cf819b75550fdc213fa22ed52187df40467ca37b304138ae003883868733cb00da851f1d6c222912086aa2cc6a70315771a91d05f89bcd5186304b192cabe090e9dcd7966db31a9fcf8863bd26bf686646c8c6bcdcf6f84b5a219a519a65a4204db72f95de7d925bf024e9ec71ff3795ec7b280a8f16501ff8e08dff21f7a2d94ec4930502381e33a43ae315c006c6e42be38541c8ce733502045f2657c2313f1124d6e9683b28166e1fdb74b59d8de236f070b6b30b5b153eb8c8bca669f1f27f6e0a05ac09f7d867723afb1e6f3d1d0eb797d03ee50b14c489184d08b4744d3947ff90fe6fdf7493baab72de9d7852ca7188686ca771069a8a60a9a11113af5161be6b9e4ec2e9f512efa6fd51da9027294b4bc6679e1f960c84e9b3181af991972c68cf3fae80e074fb4e4aff07f4b6b6bcdb8aef1e15db8e72d0b33e0c62f61a0be28adae043c518054f231e41f7c66dc8f7497e9097f834b629f4b17114140f292bb35b5170d3d4f54a1db4bb40ba179eb5d653d3bae2f83badedfcfd554ae0510a43a45c59f26d77ad63306c8837f019d92cd1f4e076805a60e75d7c6e3ece854cd799780cac4f4d5ba2adb57b352417988cff1c69205e3fbfbcf101b46e33007ccdf9c88c8256cd1efb7207298984a721c2a25eb9423b8cda3d45b8790fcfc553f3c8bd094997b97769a883695742758ff889260b023895f8e85ca6b28fa6767cdd53ac9a4cd911f4275be614bf03d8d6cdba9f09849603021bd2b9fcb46ee20edc6fc80bce2cbbea774375cc0541c49c7f628649f3c85e0726cfb30539d2bbedf4126b4269e3f02f7685010d0d195206bc0d696b28e78bb7c5e356018951e31e0715afd03a1709e7a1c401c780c78a696cfbf961b9676b7c8de8c585c5d934fad80f65dc1595c4961e1f447f0e57f649960105e28a3d86a44953c146651f86779c4771c468ea4d81204fc3c337057b5233dfe4d23e3690d7c156ce033264b9f6062f4b0c9e0a3ab1bef486fe2f963d9f831e19c17d0055ef16ae5b55fe2c99b969d0e602f435515ce0f439d46c95019e1266fdcf1d98ce11399ae7949e3e3bddbb109f842aedad4b86764eeda2f06d39883878db531595b85e194e6582c90974d0c582f68bbf81217158ffb8b44c4f10f3d7749c84e669b4aefb90bf03f4d2b2fc4ed71a049f4b3ca49f228d76c24b2885751905dcda8d91308a24526ebb74e0458ee76e8e188e7919a0838d3ad4ada985952535eccf00cd0fbccd936ebd3059a91b7ce9d6b4a5b66b95ed8c4c72a4bfd9f615416a986687d41a723a990a4a71248644cb0a9f8cb9c28b4b87b43", 0x1000}, {&(0x7f0000005240)="63cdf6a092f0432329153d7d260213ead9550c8a72380be9c7c97882ac11a9059d9da3e04c9b828aebc49c1de70908143ef780c2ee4bdb91f7336834607f5b68b6eb15c835ea638ba6d626892e1e1e9379a63aa0e5af470beff162cc8b5c6b8dcd789cfd25a9d6a3c882aad20b37d2b3350b50b321034913a6542d7fa39eacc273f7ec5321899ce7729c1ff78799032d9a0d0ce343e5dd36d3264e7f18984cb3c1249e9429a8823895b51a233fd4f288c221f65deeecea4fd26aee3663782429ae4987c04911aaa5bc39d37fc1cd37a094d90f36298b988107588d2d52359afcc2f5570b234cbcc762e9b175f0850a8d245387f255ab7dd0cd5178f43eb10f", 0xff}, {&(0x7f0000005340)="16da29657529d189cc4d9974c1de5961d19811306b6064468e49f5cd98e2aa7070a2002901ea762025d516fcbf29fcfb5ffc3d96fc637e33b4829c4ca368259d20249b589070cd0c99ba2dc8f820dfd232a36c0dfc6887e20a96e1e4415b91c6c91e09f32b5c78d02588172abdce817e427da1d0c5c5ec3865a436e52f0494d12221b87ff4b3f85bb30f483e344ad0d32730a83657ac2a10e3e848a07b299d77fee66f24f977e44d6f3162d674febdba664d6ffe61e99d838f4a29136d751050d627b74972cce4b8c21ac6fbc63081ddb142b85b29bf34b8c51843b2dd75", 0xde}, {&(0x7f0000005440)="5e9cc5d5883a1249cc7b7e645eea3496a0ffd71606b98ac11e9aa30d61dfb4b0549a2ebf8673137864ac8cb668575fc7f86311f60f320a5c7997730d1b31acbf9d891d00672d3d7c7a1cfb672a9a790edbed5c8fba484ee4edff62fa5e8a50110882a5133e0ba2dc4526445eebcd714dc91d66f4b9258587dc9b9bc75bedd672c594b031257ec55f3098f4cf1bb09d513c5615dcf325f052d199c0305b6c245e8f", 0xa1}, {&(0x7f0000005500)="b18a89554dad3efa6efc1594106c9411ebe66190148ea4a6ea35e59b5c1a0cc2fd83509912066634f4d0d717e495b630e8684719fb8dce63427759b88cf746a22a6c48559b81fcc6a2806003f82a005c1820113765b973bd3928", 0x5a}, {&(0x7f0000005580)="cc55429b5c54b04cb246df778225c1e5447afca9ae89926165c832268389c9c0498210abbcd4ae01f28c2cd083d5129f41857d91f06149dcdcd1b564b1de1f100a0db6b34905891d47cf14a2f541e2e828219f08bfba6bcfafb7f72a20f1843227aa23f1a4fac4d47309ef1fb2124366b40075e19083971af636ac47cae44c772f9290c642f1d321515d7920bcbe6e83f5ff10956b0d0f55fe31d6798c2140526558ff53134bc569ce58ea2c56cb209b251487d9e43f0bf19950a71f0b1c392f69fd05dff8801bbedc87c485bd6889086a16", 0xd2}, {&(0x7f0000005680)="8de67af648c2c5bb9af521d7c012a8b88dcf30264a9ce4c0b9d65a5cbc0c8e62d1ec8b81b1005a73a381bc781fb45574d42080a3eebd8e0c4f9fda0923026dab3f3df9ed2d707cef810b310a3df1e0f61ebaf538dac7efe1ead639beaa6cad2f4b1fd71460013c215afdc9e9b452614ab37c10d8a30137426221d86b33cceb6c0e1dcccf24442d8096a07faefeaada1a0887e64d1415e15fb69284093eb1dc7c66185e78806bced36367de957386e9f508e743a6ac9e03a791dcb08826a2c2d09e6b6b945e78abcd7c5cf8a1f6663dd2e8872c51665b71f39afd2daef51247a1", 0xe0}], 0xa, &(0x7f0000005b00)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xffffffffffffffff}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}], 0x138, 0x40}}, {{&(0x7f0000005c40)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000006f40)=[{&(0x7f0000005cc0)="9bcd74a210927a5904a7b1fd9c7269e07c269662807c65ce05a05a43a2d4465d47b417d24e8db973fc450a61ae619419c716f964a8906d1655a0cd8e598e500255fbe6afb06b01393b5fd6cf08c7e8", 0x4f}, {&(0x7f0000005d40)="f1e814e1d43846db2eb26661c143c723b010b414c425b2ccd14e576d8ae197a618c2242be13ed7c2bf8ba93b2ced954519fa7c7380b8856532bd79f7375174f6356e4a7689019d0524e98c1ec21919fae5a63406c8ad6effa026cf8736cf684b624698306168ca669fe3003ddfdb8522e0ad0be0f91277789c3fdfcdab67113eae08db1a579ae52b2768fb005e697bd96831bbdcc0a23b2fec7da2b47ba5ba52b094f1684d962ec8dbfe7a4e77cd8c", 0xaf}, {&(0x7f0000005e00)="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", 0x1000}, {&(0x7f0000006e00)="7ccce921d279048a0a2cce3826db082b150ef24041ee1a5c0e9247f3344620550595946e047226f8bc8682e016266fdd41b112af16722bf5143398e6587a00744f31035823fe2257e28871cc75b18342ed36ea46d6b456a9bf6d352b67fa3230aebbc309e9ee58716c5b49c5df7bb86e4795ec659c44444d6d513f4a32c14d6fa92abcc7812f84b614b04cc547f66c537ccdb2320e09bd81549b2e", 0x9b}, {&(0x7f0000006ec0)="0f512b7732fe9587eea1ce32705f437a32e42d528b5c8064d88c7d7e74c19484edb126f667ba59153b946819b03a6d38037988c72e2c09dd86d6a453d224416fa5bf8c", 0x43}], 0x5, &(0x7f000000b300)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee00}}}], 0x60, 0x4000000}}, {{0x0, 0x0, &(0x7f000000b440)=[{&(0x7f000000b380)="3dc624fa58b832fff8123f2cc5d5c031bd73b8f1b93ad907500e7d6294c651fed5bbfe486dbaabc3317011e9c287d22460a61bee7de9a245ba3b7cac5f42888bf6fa5e51c0328b6f77f7a7f02dcecee5469575d465cd8b98a2239e85faff31cfae8d14cb2a4f299759b6c2f116596de675cf537cbd699243501dc9d4fbad8d972b5c2dda1913b333b2b116d78c4f60ff76b4e341212ec169e09d0a33b9f581a09e3317fa043a201281e029eada1d64ede83ff859abcf51e8abac9a", 0xbb}], 0x1, 0x0, 0x0, 0x8810}}, {{&(0x7f000000b480)=@file={0x0, './bus/file0\x00'}, 0x6e, &(0x7f000000c800)=[{&(0x7f000000b500)="6e952b05", 0x4}, {&(0x7f000000b540)="a310d37cc4935364acfdaeb53ce52cf3fc2dfcbd83b8707550d6c1427ca9a03850170bf66c69ff01cea82ae0b375cc625c4bb79e62ff9853c121895ec4dad9ec827f88128de2978537d737f077ef6d88068d4d0d7e85296d64d12f1a0aed17297e8f4e8f856d7c887dd94231e6f1ab8a82dbcf18bd355d7cfdb6772b786e2d0b634c86768162ce4472339a6a0edae2515ce657a406445d0fc3746c", 0x9b}, {&(0x7f000000b600)="64d9906b5ea39c197ad7953793e07ec4decbe0262f71bb3b4c5cc85e6e21f0d11a33a11d9098d1a625fc8849b7676ccfab1b2d2c16831c6cd75eb5b96e160084b262e788a5dbb9a88895beb7abf013a256b9676598ef346f4bde830de6324eac48766626edec21c515c1fa5c3d61be99e959e56fd5028b309ae9a81e53f78cd20869e45e8d0a72394f9b18f5d8ae8226f9fa80987bd00e63f1c4df29d39f31b728e000d106737a3e6817124c417405fc80f5c54d43d5", 0xb6}, {&(0x7f000000b6c0)="98fa61696f28cd499a11987e7939f5d680c121040d9c7f6264627d9ac5e382d7dbccef6d52ec06ade850a7d628d1ef34558e3de23c00399fea7f1c3e3fb05b6a1e53f0962e305fd9b70c5b2fc45fb1088e80d55d2e587ddac580ac59db8d3e5e351311e3f3220650d4c53f78efa446abc3546f4e9befbeb761c817f2f5655c3fc71f26", 0x83}, {&(0x7f000000b780)="9d9f5aa941f840d24503311477ab84706d6a28313b0562444cebd9b2878ca79da1398215953fb203e8a3fd9099e57381aeabbf2a49670e1be32ef65f048ff7564039878cfd6ada3cac431bc9d1092d14f0bff0a9ddb838d9c421fa48b3615330ef1641083d5e", 0x66}, {&(0x7f000000b800)="ef95f4ca7451c6044f4c623f48155639da6c86a77747983597230699c90768947d3096a817a55454c045c70d550231a96a2657826481b63cb7b37c6d74072ee284a684f7d020c8b8690934074539276943f676189ba717da25216a072ecb2248e1a1f58be00d1e9ee8df455a68ae49881f6c5fb0ef681b70a65855ce3bde4909c6db0e5643c9e5ce91d3b09557362501c3a979cc9ac7091dca1aae4f8d745733a1b1fbba91dd8c48effb4000e6fe852f55c7a58148553ad447fb938fdfa17cbf23801146670b6c7c6c1aa84507fbed50446b5cfebad5449ce24dddbbe238b540dfb73f166bfcc6025b66b4a3808646140af8d538e80ab1c752a7794fb872e16259e0b2f3a475f686a87ea6a02d92d6a8eb72a2dbfcc2fd0f7ab6734f2b6ada6bfad5c9c30936e0828f7d93db9b5538027e254ee99fa3785cbea5a45517c83b8044821b2f31e7a7af37374bf73e826a20a664cf589601d7f19869db3a7bbf7890805542b88ca0a398d0eb6faddd70e3a6e1db035ffa09da6738f977c3d3a1a32008e18e63bd8be77ed508d6ef931f6120e593cb7ba92fd092b7e17a86bd28265a5751e65b089b00a8084a36ec8f3ecfc151f4a291e9c23d65fffc566fc445b08dbdd59c03afa1d3159ac7a7ec6b6ce0daf43792f43a8a12bc5131592135ab42981399daab99aa94fcfdaa64cfb14795f407ffde0ec8d29a655c04a8ade353cc4a451f6f80bc59781cef83e27eb2fdbecc3c0c673f9a41162f09bd13e652317a7aa67b0c884e7d71a9cfa500db5e464d096159d959ba5f76190a1c7bfeb5d7017b1e48f75817b493384d68825d8ef18c5d7b8c367d8361d6bef13f75aa5e9b8e59b59b2e43a95d05273efba82450d1f853fd07fdba0025d63bbbd68439b5450561d677841b054f5e9bad0007cdc5044a0d466063f3e473c79f3151764af6c201e5c6698b9b9b71e83a9cebe9bfc0e5926950ce698102207626ca725165b8b186b1634780839f076125444556be1d0eced0fa1d858b6bca12796eef96e3cbb476a7b6028dd5be2058a38f01c7b1575aad05428d657572a2c75f16abf9f244087b36a603b970ec541a89619d058fab68832111eba0b8d6f72ebf188213c1202ebce24d4d53cf4a06be8249b1021be14081bfe60379c75d931a53f6ac60e21414862dc0a17045558162d280bfbffb84fcec0c74f380df62c97be5dfc6b83ad06f54e53d2d7fdaf279e87e3c97dfa33d35447acc58762a06a76d7fddb14bd48f2a3df328c6ca06f1e1a866b94fb21f8eed488386256123be7dac1c4152561f9501858e90628f95da8c23ffd67d49b4cd61e2a84a96c1229c736280a47826647f387512bf9387f622a6b8461139202ed59b57678c66a67b8c7a6e991fbc082960c12ed6b1898143165348e88144df2a022dd55b3b827d36058fb210840a8884da7eb4055728e96e11734bcfa94d98893013cacd2b4894a33229b91a85b70dcad55cf641f6adee4f5aa90cc887bf6e7e2d0009b019df428d595cc20fb4a3d337c723d99559c1ae1271f28f17fe5b7c112aaa088e2d9fb03817f0e7bed7286ca24f5046322be4743c38dae56a69c1456a388e3c90f2a56d1a1b08a9f13c507e32d4b8b0ebf5d9e0c4a877503c25dd8daa1bdc349f4d011f856668fbb382344d68f7906967cb7d7d78d752b5f985c3afe410225e001bc6df13f7b14a153e4c27a8505cbb984378d96b7fa29aa07c4c9c7636788b721abc4e871cf8e2741d9572d574dafd2ddf1081abcaea151c9a268ace2eaacf7537157c66b7def27939f88fd5ed04139cc5c61d19a8edc94ffb6ec9496a6ce704d4c0a9ec8e879a1542fab3503ab7c42d14accb33aa934efe60db762bd8a32cf15e7c385a1a6c227ab71ea33a33a4a8c0b3a7b500adb2ff52117b542b9274281b23bf3621b53851a5c3f84dc11aa5e1af91e70f9c8c3279495cddb8180bd271571dcc9c4a33669afded7c826599f47189de4574b720da8af3a33f6b5f72567796ee6ea03e57c2cb47e985c0a2bea20af441bd477507c83b7b724230d264e39cdd5a4b5ddf41533895c03dfe7f5464089c2e9aa0d18ddf3086ad1eef64dd94d687f0b9a3df12ec227852c8212ba1746bb338e4c33f69c55f9bc3cfb401c3bd5d8352413440297607576ef0451fcfb3385fd7c6aa57f2dbdec8f783ac5c37d0ac5d3287e8ba8c0a6d6dc822d24881df7fa6985bb7cb9247ceab4e622989ec921e5194bb2758ad192d6dbb6805d6ec077add7adfbf4fad6254a4be9648a6670800e34230deba9060c3845c9a002fa9467a80430c2d48950108faf35c817ed4e5720cf8268a41c5454dff0069a78d74011468050c1cf6f4402f22bd5cfbb066a3a58a6920d3ce14e3ea3e97767632834becd1579d811130e6dac9a26697ea4cc7303793f1f55f65ee8712a4dfe47f22aa16c8c1ce8796ba27bea15605a8360e91f5fa419bb5bcd937d16cd62b50c41d8d80cb61d07d4b5762284756e0723c08d513b8b5586a29a86478e1cf1138ac912c242900d0b90c93df708c1a1ed556412db45426b6daa1093df01c151e2bfcb8f268f0d50bf2675c27abeaba649909c00c529962e6e3d4c474bbec41c1389e63e9c0fe621667f143c335c79445363381bb7cb1f2f746772e9fdc8e9d4d6c36aa7aa4c6a9604a86a759b0bff226e36a9b904b4e40edf9bcd02f164af5a7acbb35991387b9c45934d51444adda77958030a0f272e53d67366316bae64060962f550f6458321f2181811436fcbaeca209a7ac660f908ebf374a818c9dc1f027b2902d76c21ea28e8192df37e3ef5cf7f052940233945e19bbfd5425ab1ed96b422a7f1ad340b553d596642a75ab428bc31b94236e3a010ed50d22aa12cd168231de13ca5575fdce71f2e3e0eb23ffe39c8f2d0a7f745daffb5fcb7430ca199e29bb4ac9e2eec687688139c49d3a058308918f7a59a979eb05547f9ffeb2db903a7d2cbf8b7d26264c99230f7fbcf6c2fb5cc16c133f965790684a1aa4b7da6505e7ba1b53789d4f38520c68d31149aaa30657d7d64d921ad79115c678e1c56f654a1a37e3a9f8b88b049edb65ad1f30994e54eba742e01c074d0282ff16e04e8187aa7e6d52a58d1498b7bb797d8906fd3856f2a78911d9b1e244989297ba1b4b4f212caa1cbed65438537c80f9436efc97023a6ee8a8e454c6e0de384d97e96cf266fc0840b0540dfb2c76e2071a8ad2e6d00a84f4138467b981a3c1ec22740f0e07667a0cbc133fbbe8ec4c786501cff80f4a5e476b5c336079f685cb087e0647a5f6cb4efcf469221e6dcb36734facbab0440a7ea383619f53a59ac98bcaa096115adb2927c443687dc7f6de2418991091e575e3e74fcfb01205df91f4a2532880eb6de3f9a3ea70d8d735c28c30a7339b0e410a523e587642297df23d4663956f47ade240fa77fe3c0080dd7acf30719cb39aca8ccd7d00bf8a1d26e5bd94820e524dbea9d25fcb83ca16444d13cf3d045b7164981cbcb4744658c7e9bfb177dc1c9c07d397810b92038bb97a24b6dc9b6f6d97157aa6844f9e7227a6ffa495aa89f33242ddba690b8db8b0e217190de4d9e246a7e6b724b612b6439e49e0e14a283da31694067cef7d5dad8e2b1bbb7517f609cbf35ec04885ae3d9f1791fc6fd16901d5ecef12985de6e1c3f9d19a4ad98a2a67b8f1be48c98ba5a2b57a2cd58484c0d2791ac6cac851dc544ee535ba8095dc38fcd266128f950c6156f6addbe65b72b15941b291fe29de7491328132ff5fcb93f403b5e409a24e60b6ecf1fc7efc0792bac0913ae063837646d8f210c8f026ce464ef69e3ab25c6eb54d5c312731c0f0d967a1103f4613e8e01956ef2192e416393aaae62781f0aa52fa895858d30eb3d16ec81d4857a2718dc5084fb36a2e21ab2997d10be55028df6ed1137f196650a17e4560b44b91583f4df88152cbd44f4a2abceb0aa499ff649fc48b522b87d3bc7f6fdf2f8f3f4a9b8236d4f1b24e7dc7774a14821418c9d97b3de82034b4df1f2bb13dc87ff1ac9cae9337deba12e52ab3cff0d0aa7dcb2feb3897521a3b7f74b31d352ad1a630759b4a365a78984539329b698bb47351635ded9b358c51f077b8ba525f08fa0e304e05f7392ec6cfe5b9bba916c9315d7ad8d877fe4e5cbffd172123b03f159e0d719d3507fca08af35a1337d5a9ef4d17dcea4debf218ea11aecbbe9419d77408c6de41a60b190fc08a7aa7efd03bb63c089a415d048c8700aa12821ce90e21518695979962264d0b47b1f19a3a95e9d523354ffc96aa2899a9659752e9601f58510b84ad49a633cea13ed07ddb304fecc25b4bce1175a6af15ae87024ff1accea1a31ffdb6c4a38f71f4b538f779fffb135e5270f885e5ffd2094ea03b8f3d7fb616ad55b7492f86a47b4faff026f05031591d2b11fcef9f93be5da9818d95e53dd0117998c22237986a30eb6e6ff01157e67373fd8f2d4bb62219c739429f6d1ed204923e58444e380140009ca7129f2dbdd7613a03b2bef751188ff88c2a2e1423b20228b514b0bb5feaaf56e2cb19394621bac8ce1aa4ba24db89b2fd3d324d976ae2c82b15bd77c15b53a17a2d6bb5a1c59c19bd7251721b78d0cd45cce9be3b9aa12897808ab68f1b246a4ac50e42831494a1f4e10d9d8292551eb1dbc1c733fd402264f0778f48a049ae57166db58232b66d3a7f9b6fb17e1791c4116943b17cdeb327afe059fcd508f2f943a758fafbf30b699612588e3c0ddb6906c5046212bd9f1a300f96a41533f0636fac50c995c6bc08eaadcb042f9b4048653d49b2abe9ff60461a5c7fc8014280f134a9c9223d006c7fa2a67899c02bb80b72472bd725c17b57a496caa42edf021c1aaa07f338471e78700076c9c0f24943c033649b91731f2e668ee822c20dc3bc1667ac75cc3ea729c8cef08abc55875766646fa09a520e084d4023b090fc03619b20e8ccf733b8a2ce77ca20634dafaa7b71addaf462e8a22c0c1c3142022abfa5c13539e8fde89498abd93f5b3a095736ab788b10352ce83b20d4573b456bc8b8ab141eef590d759f434edcba20235fdc4cf7293ecf7dfa091517a14e5247001a03850e816a3a2759f2db18bf17144aca3df0935e195875dec44a2977a2c43e29fa545fa867c8b3da742df6fe9310bcc1b7d576df6df0d68cec9c810bcb8f3527989581bc5ea50f5cc8e38117f2ef4f92d7c8c6d801a3fcf0965cb191392bb41ed19a9cd0aba77a2aade46adfbe1d82d230575daa8276a41ceb5025bae6e29a751a5090ac8e62bfc124eb92a450a2a9f9e678250e8e61dec232fedcf82b4698ae4cd7e39e2a7f59be6f59ebe9d39c70806d247b0a4f7807dbcfb8cbbd0b5f4ed839480e14f715a79a7d25ac2ace2c59d4c87338629e129950f89689963d0522907dcd3253df50d1a25ffc5d0939829e154f16f6e61b6ecaed609ea17e344e8e157e129343fb42cf6d258de76e941e30be559e263719ebc5dee80e008309dc228d4d51843553fa66126056a047287e86055cf794810c583f43221576a555a97d7144ea8ce419ed8b463e6ab312cfddf878d9157334e30d8669599dec73113696a88dd3bcd14298b6547ed2698cfa40f0b881e3573cebdcb610cec3175b432dc9d39cc61e19b36d2470201beb66034c1fe328c5398f0dd47c1c41edecd42441d652c208b5257a0e03853bccbe08b136b9dfda24fda51a8124f0891488cbecefb61a87605dc228c7e907529978bd064f20813dd5da8134267b3583a0e7b9ed8b42c0813e407609", 0x1000}], 0x6, 0x0, 0x0, 0x4004884}}, {{&(0x7f000000c880)=@file={0x0, './bus\x00'}, 0x6e, &(0x7f000000ca00)=[{&(0x7f000000c900)="bd3c42b88102ee2ddfca00c25806f62c9e6edb8957cfe99954c3f2f48f86241fae8371b827693a8d6112ce05d862ba613b3687e7b791e5b2f03632197be7ee8e82f88291ffcf97c9b586ca696e285b6214f7a05ddfb9055ad0f7fcfde897dd6f0b667945715d03885b00d3982032d52ab8767a9ea74a0c51386aea0ce08cbf049fb62b3ec5c1ab6cffef80a813a58c0989f9100ca226b7f63873b878aa8298", 0x9f}, {&(0x7f000000c9c0)="4500c205dfc374d4ae1b89e1b7c976fe99e1ec5df83365558a7a77f5a84d94abd1d4f4f346e86ec2e772e40bdf38cde4d5", 0x31}], 0x2, 0x0, 0x0, 0x40000}}, {{&(0x7f000000ca40)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f000000cc00)=[{&(0x7f000000cac0)="a64ccfd7e88a0c651d7b7e25b543b85ee4bc9205bca60d6bb2f960f67d1a8be379265da2a7990cfb833e0d4e7cb70449d06dfe0cd439ec00", 0x38}, {&(0x7f000000cb00)="16f2298c652df12436b9fe7c0841bea640b0f28f9c382c410a33de968345c0ca68500585491062025c59705921327d04e657ca04dcfcb1249e31821c2e444d4d248b8f4d9a2420b0c935ea4e8745f566e0abe84d241d5685d090cbd6d03eef728ad73dc7e2a162991843e2d941b56b1654ea71336b34f7bf7994d0387bbfb5f594efb14dceecde66a5bb868ae2ec3616155a1c6182d75a244f80ca7d6c4b", 0x9e}, {&(0x7f000000cbc0)}], 0x3, 0x0, 0x0, 0x840}}, {{0x0, 0x0, &(0x7f000000dc40)=[{&(0x7f000000cc40)="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", 0x1000}], 0x1, &(0x7f000000e1c0)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xee00, 0xee01}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98, 0x48000}}, {{&(0x7f000000e280)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f000000e880)=[{&(0x7f000000e300)="a97ec925951b0668e510cf85575ce57d4d5ca517fc9c2482a0adaddbc68688386334f9cf69b18b84d1e24adf68a8030b7f5eb48fbb73ecbb977ed612fa16e5ae5ab51b7f2b9702cbc62956622a3525d546adb593bc25243ee32ab254440b8cc02d9717462286ddb82065ee191ac965ade3f6c18427fbc41684d71bf45a26721d5b8b7cf53f76115d75949caa06357634bbc43b975af88b012a8db7eeb1c3af935d04ef", 0xa3}, {&(0x7f000000e3c0)="04fd523af4456a68c602920136578442f5ae84c099fd6c77096d77845bcf3ef27d1981c018e8cad0f3012b01ba7b6f9808510e7de44bb59088afce697bf45fecc2f62147dfc246e09390daebff4a1c64da816fb49afb4a68961a4a239625a4c4987e670aaaeb3a144ce79169bb1d3d132261379c440c2c688138420bc98c9c140ccd1b9dc7fd418c97834b537a80daad57011aae74014224296a4d9a1c32c20b006bcc4c01f005414ce2824701933c20417b6c457e5f4c09afb8ad3baa24e1b423", 0xc1}, {&(0x7f000000e4c0)="dd2a7093e10438aa1c1b3551ad892e1101eef3fda7dbbbd3c8cafedf94b4d28e6b5079d1c7c70e243735b01ee50dbdaddd3419ad93978d373600b3766cc5236f8603f548bcc1fdc7b13cf0712bd02944530c6ee3eb8fde04563f9538dc8afd82fbc5280e26609a1d3deeb7e966028e6d191772c4191b6a56b9500d03959483e6851e9d1b9dfba2937c711a97e2d104efc521a68522f7c759d7c3266fcfe78a58021427074a53afa40e24f1047c3510ff00b3", 0xb2}, {&(0x7f000000e580)="8b4e8057dc11e5f632b81e5f2d8d5f152bb8f526fa2016a40fa27b5073068eb542528ba3f6e26ba5215d1a70df54b9696e2bc62c7c2bed17c7c767f710ca93e5f5604c6d97af4388278b3ccbd6bc3187fc145253a7c00637c4f6a88da4b1f9cc4538317985ccc1d67f6b79f06a96f709263a6f63833eeb9b2c32a8a066665f80227c29a463cdb3eaac37131007693f83d94442cbf326d8b54ff0d5c4ca0f8108ea58140dd4c2cd2a4b36185e6dd5d490ce869f887d3b594e6061197755eb9a2b82eb17137d64c9", 0xc7}, {&(0x7f000000e680)="2a18204de9f8d5e0a5ee14499905c0213bd437e24daffb0092769e331f95340bf835308a6c87b5f8feb05c051c1d54a723566e8c3075c1d80a734d176e1dfdf629e7ca837567f38c08fbc674193604b09d6a15be150ee49434e985e7e20dc556823e9653991e902d51d5bf5abcec15d5f815bb48ead3b491c2ecd140c36b7ed271523125177a765f1b6aabaad2a5c0c3d048f73e3e6a", 0x96}, {&(0x7f000000e740)="dfefbbccd45261bda5cf30487c1899b2b2543324c3f02de07b338fc06156c057a1258f3f5667783499a6a8b24103697ebde0830f2e57f2b6735c1118f73015ef67aca74921b102ce00345ef0864094742f43266f56585d3706516b7daf4ba24f6a875ccf0e21eecc6af027b2613aa6234dc49c4ad7048a735f31cee080850c17a6a28bb55f282fa83fca809e0facc2b1ce66105eefbe795e05a31476fb66b94f3e4694e2a61bd6a2e87e7db2910fdf15f92b367d71ab6b10405a8f9d91d14a465909ca0aaeb9ea36bb08305b10b17710a5031dc9b311b51ca4e41b7691", 0xdd}, {&(0x7f000000e840)="15fb2f2aa4", 0x5}], 0x7, &(0x7f000000eac0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, r2, r3]}}], 0xa0, 0x20000040}}], 0xa, 0x10) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:13 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000300000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 645.914091][ T9232] loop4: detected capacity change from 0 to 264192 [ 645.979232][ T9232] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 645.979863][ T9271] loop1: detected capacity change from 0 to 131456 [ 645.989417][ T9232] EXT4-fs (loop4): group descriptors corrupted! [ 645.994696][ T9275] loop5: detected capacity change from 0 to 131456 [ 646.010018][ T9247] loop3: detected capacity change from 0 to 264192 [ 646.031776][ T9247] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 646.041911][ T9247] EXT4-fs (loop3): group descriptors corrupted! 22:22:13 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 13) fallocate(r3, 0x0, 0x6, 0x0) 22:22:13 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xedc000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 646.113945][ T9286] loop2: detected capacity change from 0 to 131456 [ 646.123820][ T9286] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 646.133916][ T9286] EXT4-fs (loop2): group descriptors corrupted! [ 646.197617][ T9275] EXT4-fs (loop5): inodes count not valid: 196640 vs 32 22:22:13 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="203e0300000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:13 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 646.339791][ T9293] FAULT_INJECTION: forcing a failure. [ 646.339791][ T9293] name failslab, interval 1, probability 0, space 0, times 0 [ 646.352443][ T9293] CPU: 1 PID: 9293 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 646.361111][ T9293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 646.371164][ T9293] Call Trace: [ 646.374437][ T9293] dump_stack_lvl+0xd6/0x122 [ 646.379041][ T9293] dump_stack+0x11/0x1b [ 646.383183][ T9293] should_fail+0x23c/0x250 [ 646.387583][ T9293] ? mempool_alloc_slab+0x16/0x20 [ 646.392592][ T9293] __should_failslab+0x81/0x90 [ 646.397338][ T9293] should_failslab+0x5/0x20 [ 646.401825][ T9293] kmem_cache_alloc+0x4f/0x300 [ 646.406572][ T9293] mempool_alloc_slab+0x16/0x20 [ 646.411414][ T9293] ? mempool_free+0x130/0x130 [ 646.416108][ T9293] mempool_alloc+0x9d/0x310 [ 646.420594][ T9293] ? __getblk_gfp+0x3f/0x590 [ 646.425169][ T9293] bio_alloc_bioset+0xcc/0x530 [ 646.429918][ T9293] ? __ext4_get_inode_loc+0x760/0x8c0 [ 646.435277][ T9293] submit_bh_wbc+0x130/0x330 [ 646.439900][ T9293] __sync_dirty_buffer+0x136/0x1e0 [ 646.445050][ T9293] sync_dirty_buffer+0x16/0x20 [ 646.449794][ T9293] ext4_write_inode+0x2ad/0x3c0 [ 646.454629][ T9293] write_inode+0x89/0x180 [ 646.458978][ T9293] __writeback_single_inode+0x2a2/0x440 [ 646.464618][ T9293] writeback_single_inode+0x17b/0x3e0 [ 646.469978][ T9293] sync_inode_metadata+0x57/0x80 [ 646.474972][ T9293] ext4_sync_file+0x359/0x670 [ 646.479631][ T9293] ? tsan.module_ctor+0x10/0x10 [ 646.484464][ T9293] vfs_fsync_range+0x107/0x120 [ 646.489208][ T9293] iomap_dio_complete+0x2d5/0x3c0 [ 646.494218][ T9293] iomap_dio_rw+0x4e/0x70 [ 646.498532][ T9293] ? ext4_file_write_iter+0x521/0x11f0 [ 646.503979][ T9293] ext4_file_write_iter+0xaa9/0x11f0 [ 646.509312][ T9293] ? ext4_file_write_iter+0x521/0x11f0 [ 646.514755][ T9293] do_iter_readv_writev+0x2de/0x380 [ 646.519987][ T9293] do_iter_write+0x192/0x5c0 [ 646.524580][ T9293] ? kcsan_setup_watchpoint+0x241/0x3f0 [ 646.530212][ T9293] vfs_iter_write+0x4c/0x70 [ 646.534750][ T9293] iter_file_splice_write+0x43a/0x790 [ 646.540131][ T9293] ? splice_from_pipe+0xd0/0xd0 [ 646.545033][ T9293] direct_splice_actor+0x80/0xa0 [ 646.550033][ T9293] splice_direct_to_actor+0x345/0x650 [ 646.555386][ T9293] ? do_splice_direct+0x190/0x190 [ 646.560393][ T9293] do_splice_direct+0x106/0x190 [ 646.565227][ T9293] do_sendfile+0x63e/0xbb0 [ 646.569693][ T9293] __x64_sys_sendfile64+0x102/0x140 [ 646.574937][ T9293] do_syscall_64+0x44/0xa0 [ 646.579339][ T9293] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 646.585241][ T9293] RIP: 0033:0x7fabf13d4709 [ 646.589638][ T9293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 646.609287][ T9293] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 646.617680][ T9293] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 646.625635][ T9293] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 646.633596][ T9293] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 646.641560][ T9293] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 646.649513][ T9293] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 646.766797][ T9300] loop5: detected capacity change from 0 to 131456 [ 646.779208][ T9300] EXT4-fs (loop5): inodes count not valid: 212512 vs 32 22:22:14 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="203f0300000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 646.831004][ T9312] loop4: detected capacity change from 0 to 264192 [ 646.840105][ T9312] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 646.850298][ T9312] EXT4-fs (loop4): group descriptors corrupted! [ 646.876180][ T9319] loop5: detected capacity change from 0 to 131456 [ 646.885504][ T9315] loop3: detected capacity change from 0 to 264192 [ 646.894894][ T9319] EXT4-fs (loop5): inodes count not valid: 212768 vs 32 [ 646.903150][ T9315] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 646.913354][ T9315] EXT4-fs (loop3): group descriptors corrupted! [ 646.921474][ T9312] loop4: detected capacity change from 0 to 264192 22:22:14 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x3) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000580)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4657fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100f00000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x80000000007ff}, {0x0, 0x0, 0x2ce}], 0x400000, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) write$binfmt_elf64(r0, &(0x7f0000000380)={{0x7f, 0x45, 0x4c, 0x46, 0x81, 0x8, 0x4, 0x1f, 0x8, 0x3, 0x3e, 0x49e9, 0x254, 0x40, 0xe3, 0x5, 0x2, 0x38, 0x2, 0x7, 0x5, 0xd19}, [{0x7, 0x101, 0x7f, 0x579, 0x800, 0x1, 0x80}], "737a0860f0d7fae7084a7aa30246581f43a3da75bd766a831c2184f532e158461911240dfbc7473e6629206e71e4d35ac7f2555898e01a14b9ed17e8dcfc2b79bb7327e8cf552470fca000893bcc0cba7d7751c8208c17c255df3241e9eb27001e", ['\x00']}, 0x1d9) 22:22:14 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:14 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20400300000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 646.940163][ T9312] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 646.950350][ T9312] EXT4-fs (loop4): group descriptors corrupted! [ 646.976326][ T9335] loop1: detected capacity change from 0 to 131456 22:22:14 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 646.992930][ T9341] loop5: detected capacity change from 0 to 131456 [ 647.006400][ T9315] loop3: detected capacity change from 0 to 264192 [ 647.013790][ T9341] EXT4-fs (loop5): inodes count not valid: 213024 vs 32 [ 647.021593][ T9315] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 647.029566][ T9353] loop4: detected capacity change from 0 to 264192 [ 647.031751][ T9315] EXT4-fs (loop3): group descriptors corrupted! [ 647.040055][ T9353] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 647.054505][ T9353] EXT4-fs (loop4): group descriptors corrupted! 22:22:14 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 14) fallocate(r3, 0x0, 0x6, 0x0) [ 647.095813][ T9357] loop2: detected capacity change from 0 to 131456 [ 647.107874][ T9357] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 647.117966][ T9357] EXT4-fs (loop2): group descriptors corrupted! [ 647.280375][ T9363] FAULT_INJECTION: forcing a failure. [ 647.280375][ T9363] name failslab, interval 1, probability 0, space 0, times 0 [ 647.293016][ T9363] CPU: 1 PID: 9363 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 647.301751][ T9363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 647.311788][ T9363] Call Trace: [ 647.315049][ T9363] dump_stack_lvl+0xd6/0x122 [ 647.319636][ T9363] dump_stack+0x11/0x1b [ 647.323774][ T9363] should_fail+0x23c/0x250 [ 647.328202][ T9363] ? mempool_alloc_slab+0x16/0x20 [ 647.333289][ T9363] __should_failslab+0x81/0x90 [ 647.338033][ T9363] should_failslab+0x5/0x20 [ 647.342520][ T9363] kmem_cache_alloc+0x4f/0x300 [ 647.347265][ T9363] ? bit_wait+0x50/0x50 [ 647.351403][ T9363] mempool_alloc_slab+0x16/0x20 [ 647.356231][ T9363] ? mempool_free+0x130/0x130 [ 647.360884][ T9363] mempool_alloc+0x9d/0x310 [ 647.365366][ T9363] bio_alloc_bioset+0xcc/0x530 [ 647.370162][ T9363] submit_bh_wbc+0x130/0x330 [ 647.374737][ T9363] ? __writeback_single_inode+0x2ad/0x440 [ 647.380477][ T9363] ? __list_del_entry_valid+0x54/0xc0 [ 647.385830][ T9363] write_dirty_buffer+0xde/0xf0 [ 647.390662][ T9363] sync_mapping_buffers+0x2df/0x8d0 [ 647.395848][ T9363] ext4_sync_file+0x4d5/0x670 [ 647.400509][ T9363] ? tsan.module_ctor+0x10/0x10 [ 647.405343][ T9363] vfs_fsync_range+0x107/0x120 [ 647.410093][ T9363] iomap_dio_complete+0x2d5/0x3c0 [ 647.415104][ T9363] iomap_dio_rw+0x4e/0x70 [ 647.419418][ T9363] ? ext4_file_write_iter+0x521/0x11f0 [ 647.424908][ T9363] ext4_file_write_iter+0xaa9/0x11f0 [ 647.430174][ T9363] ? ext4_file_write_iter+0x521/0x11f0 [ 647.435618][ T9363] do_iter_readv_writev+0x2de/0x380 [ 647.440801][ T9363] do_iter_write+0x192/0x5c0 [ 647.445375][ T9363] ? splice_from_pipe_next+0x34f/0x3b0 [ 647.450811][ T9363] ? kmalloc_array+0x2d/0x40 [ 647.455395][ T9363] vfs_iter_write+0x4c/0x70 [ 647.459890][ T9363] iter_file_splice_write+0x43a/0x790 [ 647.465248][ T9363] ? splice_from_pipe+0xd0/0xd0 [ 647.470082][ T9363] direct_splice_actor+0x80/0xa0 [ 647.475000][ T9363] splice_direct_to_actor+0x345/0x650 [ 647.480407][ T9363] ? do_splice_direct+0x190/0x190 [ 647.485413][ T9363] do_splice_direct+0x106/0x190 [ 647.490326][ T9363] do_sendfile+0x63e/0xbb0 [ 647.494738][ T9363] __x64_sys_sendfile64+0x102/0x140 [ 647.499936][ T9363] do_syscall_64+0x44/0xa0 [ 647.504345][ T9363] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 647.510231][ T9363] RIP: 0033:0x7fabf13d4709 [ 647.514658][ T9363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 647.534254][ T9363] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 647.542654][ T9363] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 647.550609][ T9363] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 647.558564][ T9363] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 647.566583][ T9363] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 647.574540][ T9363] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:15 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() r0 = fork() sched_setattr(r0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:15 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 647.673694][ T9341] loop5: detected capacity change from 0 to 131456 [ 647.686151][ T9353] loop4: detected capacity change from 0 to 264192 [ 647.697657][ T9353] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 647.707771][ T9353] EXT4-fs (loop4): group descriptors corrupted! [ 647.714478][ T9341] EXT4-fs (loop5): inodes count not valid: 213024 vs 32 [ 647.735859][ T9385] loop3: detected capacity change from 0 to 264192 [ 647.745761][ T9385] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 647.755921][ T9385] EXT4-fs (loop3): group descriptors corrupted! 22:22:15 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:15 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20410300000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 647.783686][ T9377] loop1: detected capacity change from 0 to 131456 22:22:15 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:15 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 647.855393][ T9405] loop3: detected capacity change from 0 to 264192 [ 647.862390][ T9404] loop4: detected capacity change from 0 to 264192 [ 647.864369][ T9405] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 647.873721][ T9408] loop5: detected capacity change from 0 to 131456 [ 647.879018][ T9405] EXT4-fs (loop3): group descriptors corrupted! 22:22:15 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 647.923616][ T9404] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 647.933731][ T9404] EXT4-fs (loop4): group descriptors corrupted! 22:22:15 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 15) fallocate(r3, 0x0, 0x6, 0x0) [ 647.974056][ T9408] EXT4-fs (loop5): inodes count not valid: 213280 vs 32 [ 647.997861][ T9421] loop2: detected capacity change from 0 to 131456 [ 648.006349][ T9421] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.016451][ T9421] EXT4-fs (loop2): group descriptors corrupted! [ 648.060275][ T9427] loop3: detected capacity change from 0 to 264192 [ 648.068494][ T9427] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.078624][ T9427] EXT4-fs (loop3): group descriptors corrupted! [ 648.167393][ T9431] FAULT_INJECTION: forcing a failure. [ 648.167393][ T9431] name failslab, interval 1, probability 0, space 0, times 0 [ 648.180017][ T9431] CPU: 1 PID: 9431 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 648.188682][ T9431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 648.198717][ T9431] Call Trace: [ 648.201980][ T9431] dump_stack_lvl+0xd6/0x122 [ 648.206584][ T9431] dump_stack+0x11/0x1b [ 648.210726][ T9431] should_fail+0x23c/0x250 [ 648.215155][ T9431] ? mempool_alloc_slab+0x16/0x20 [ 648.220161][ T9431] __should_failslab+0x81/0x90 [ 648.224954][ T9431] should_failslab+0x5/0x20 [ 648.229446][ T9431] kmem_cache_alloc+0x4f/0x300 [ 648.234264][ T9431] mempool_alloc_slab+0x16/0x20 [ 648.239182][ T9431] ? mempool_free+0x130/0x130 [ 648.243846][ T9431] mempool_alloc+0x9d/0x310 [ 648.248383][ T9431] ? __getblk_gfp+0x3f/0x590 [ 648.253020][ T9431] bio_alloc_bioset+0xcc/0x530 [ 648.257774][ T9431] ? __ext4_get_inode_loc+0x760/0x8c0 [ 648.263185][ T9431] submit_bh_wbc+0x130/0x330 [ 648.267836][ T9431] __sync_dirty_buffer+0x136/0x1e0 [ 648.272935][ T9431] sync_dirty_buffer+0x16/0x20 [ 648.277680][ T9431] ext4_write_inode+0x2ad/0x3c0 [ 648.282566][ T9431] write_inode+0x89/0x180 [ 648.286883][ T9431] __writeback_single_inode+0x2a2/0x440 [ 648.292451][ T9431] writeback_single_inode+0x17b/0x3e0 [ 648.297810][ T9431] sync_inode_metadata+0x57/0x80 [ 648.302737][ T9431] ext4_sync_file+0x4f3/0x670 [ 648.307465][ T9431] ? tsan.module_ctor+0x10/0x10 [ 648.312427][ T9431] vfs_fsync_range+0x107/0x120 [ 648.317173][ T9431] iomap_dio_complete+0x2d5/0x3c0 [ 648.322252][ T9431] iomap_dio_rw+0x4e/0x70 [ 648.326575][ T9431] ? ext4_file_write_iter+0x521/0x11f0 [ 648.332036][ T9431] ext4_file_write_iter+0xaa9/0x11f0 [ 648.337305][ T9431] ? ext4_file_write_iter+0x521/0x11f0 [ 648.342786][ T9431] do_iter_readv_writev+0x2de/0x380 [ 648.348012][ T9431] do_iter_write+0x192/0x5c0 [ 648.352593][ T9431] ? splice_from_pipe_next+0x34f/0x3b0 [ 648.358033][ T9431] ? kmalloc_array+0x2d/0x40 [ 648.362613][ T9431] vfs_iter_write+0x4c/0x70 [ 648.367102][ T9431] iter_file_splice_write+0x43a/0x790 [ 648.372458][ T9431] ? splice_from_pipe+0xd0/0xd0 [ 648.377300][ T9431] direct_splice_actor+0x80/0xa0 [ 648.382220][ T9431] splice_direct_to_actor+0x345/0x650 [ 648.387585][ T9431] ? do_splice_direct+0x190/0x190 [ 648.392596][ T9431] do_splice_direct+0x106/0x190 [ 648.397440][ T9431] do_sendfile+0x63e/0xbb0 [ 648.401852][ T9431] __x64_sys_sendfile64+0x102/0x140 [ 648.407122][ T9431] do_syscall_64+0x44/0xa0 [ 648.411531][ T9431] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 648.417416][ T9431] RIP: 0033:0x7fabf13d4709 [ 648.421819][ T9431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 648.441415][ T9431] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 648.449901][ T9431] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 648.457864][ T9431] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 648.465853][ T9431] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 648.473881][ T9431] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 648.481857][ T9431] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:16 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 648.594178][ T9408] loop5: detected capacity change from 0 to 131456 [ 648.602773][ T9427] loop3: detected capacity change from 0 to 264192 [ 648.609813][ T9427] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.615848][ T9447] loop4: detected capacity change from 0 to 264192 [ 648.619994][ T9427] EXT4-fs (loop3): group descriptors corrupted! [ 648.628474][ T9408] EXT4-fs (loop5): inodes count not valid: 213280 vs 32 22:22:16 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() setrlimit(0x6, &(0x7f00000003c0)={0x6, 0x3}) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) lsetxattr$security_selinux(&(0x7f00000001c0)='./bus\x00', &(0x7f00000002c0), &(0x7f0000000380)='system_u:object_r:utempter_exec_t:s0\x00', 0x25, 0x1) 22:22:16 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1004000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 648.647358][ T9447] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.657552][ T9447] EXT4-fs (loop4): group descriptors corrupted! 22:22:16 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20020400000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 648.689625][ T9447] loop4: detected capacity change from 0 to 264192 [ 648.717707][ T9463] loop5: detected capacity change from 0 to 131456 [ 648.728456][ T9465] loop3: detected capacity change from 0 to 264192 22:22:16 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:16 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7ffffffffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 648.730068][ T9463] EXT4-fs (loop5): inodes count not valid: 262688 vs 32 [ 648.737205][ T9465] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.751489][ T9447] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.752070][ T9465] EXT4-fs (loop3): group descriptors corrupted! [ 648.762133][ T9447] EXT4-fs (loop4): group descriptors corrupted! [ 648.776597][ T9473] loop1: detected capacity change from 0 to 131456 [ 648.827914][ T9463] loop5: detected capacity change from 0 to 131456 [ 648.831311][ T9465] loop3: detected capacity change from 0 to 264192 [ 648.841296][ T9480] loop4: detected capacity change from 0 to 264192 [ 648.844996][ T9465] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.847891][ T9463] EXT4-fs (loop5): inodes count not valid: 262688 vs 32 [ 648.857994][ T9465] EXT4-fs (loop3): group descriptors corrupted! [ 648.922870][ T9497] loop2: detected capacity change from 0 to 131456 [ 648.949034][ T9480] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.959139][ T9480] EXT4-fs (loop4): group descriptors corrupted! [ 648.967399][ T9497] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 648.977502][ T9497] EXT4-fs (loop2): group descriptors corrupted! 22:22:16 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 16) fallocate(r3, 0x0, 0x6, 0x0) [ 649.094116][ T9480] loop4: detected capacity change from 0 to 264192 [ 649.114121][ T9480] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 649.124308][ T9480] EXT4-fs (loop4): group descriptors corrupted! 22:22:16 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20060400000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 649.194609][ T9514] FAULT_INJECTION: forcing a failure. [ 649.194609][ T9514] name failslab, interval 1, probability 0, space 0, times 0 [ 649.207275][ T9514] CPU: 0 PID: 9514 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 649.215979][ T9514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 649.226014][ T9514] Call Trace: [ 649.229279][ T9514] dump_stack_lvl+0xd6/0x122 [ 649.233858][ T9514] dump_stack+0x11/0x1b [ 649.238064][ T9514] should_fail+0x23c/0x250 [ 649.242495][ T9514] ? mempool_alloc_slab+0x16/0x20 [ 649.247499][ T9514] __should_failslab+0x81/0x90 [ 649.252261][ T9514] should_failslab+0x5/0x20 [ 649.256755][ T9514] kmem_cache_alloc+0x4f/0x300 [ 649.261504][ T9514] ? bit_wait+0x50/0x50 [ 649.265646][ T9514] mempool_alloc_slab+0x16/0x20 [ 649.270533][ T9514] ? mempool_free+0x130/0x130 [ 649.275192][ T9514] mempool_alloc+0x9d/0x310 [ 649.279679][ T9514] bio_alloc_bioset+0xcc/0x530 [ 649.284435][ T9514] submit_bh_wbc+0x130/0x330 [ 649.289072][ T9514] ? __writeback_single_inode+0x2ad/0x440 [ 649.294779][ T9514] ? __list_del_entry_valid+0x54/0xc0 [ 649.300172][ T9514] write_dirty_buffer+0xde/0xf0 [ 649.305101][ T9514] sync_mapping_buffers+0x2df/0x8d0 [ 649.310286][ T9514] ext4_sync_file+0x4d5/0x670 [ 649.315049][ T9514] ? tsan.module_ctor+0x10/0x10 [ 649.319989][ T9514] vfs_fsync_range+0x107/0x120 [ 649.324736][ T9514] iomap_dio_complete+0x2d5/0x3c0 [ 649.329802][ T9514] iomap_dio_rw+0x4e/0x70 [ 649.334119][ T9514] ? ext4_file_write_iter+0x521/0x11f0 [ 649.339635][ T9514] ext4_file_write_iter+0xaa9/0x11f0 [ 649.344903][ T9514] ? ext4_file_write_iter+0x521/0x11f0 [ 649.350396][ T9514] do_iter_readv_writev+0x2de/0x380 [ 649.355602][ T9514] do_iter_write+0x192/0x5c0 [ 649.360256][ T9514] ? splice_from_pipe_next+0x34f/0x3b0 [ 649.365712][ T9514] ? kmalloc_array+0x2d/0x40 [ 649.370293][ T9514] vfs_iter_write+0x4c/0x70 [ 649.374781][ T9514] iter_file_splice_write+0x43a/0x790 [ 649.380192][ T9514] ? splice_from_pipe+0xd0/0xd0 [ 649.385023][ T9514] direct_splice_actor+0x80/0xa0 [ 649.389940][ T9514] splice_direct_to_actor+0x345/0x650 [ 649.395296][ T9514] ? do_splice_direct+0x190/0x190 [ 649.400301][ T9514] do_splice_direct+0x106/0x190 [ 649.405174][ T9514] do_sendfile+0x63e/0xbb0 [ 649.409586][ T9514] __x64_sys_sendfile64+0x102/0x140 [ 649.414816][ T9514] do_syscall_64+0x44/0xa0 [ 649.419219][ T9514] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 649.425140][ T9514] RIP: 0033:0x7fabf13d4709 [ 649.429587][ T9514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 649.449175][ T9514] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 649.457571][ T9514] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 649.465618][ T9514] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 649.473568][ T9514] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 649.481524][ T9514] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 22:22:16 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1100000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 649.489476][ T9514] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 649.543009][ T9517] loop3: detected capacity change from 0 to 264192 22:22:17 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:17 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 649.620456][ T9517] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 649.630584][ T9517] EXT4-fs (loop3): group descriptors corrupted! 22:22:17 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1200000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:17 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 649.715606][ T9534] loop5: detected capacity change from 0 to 131456 [ 649.726248][ T9534] EXT4-fs (loop5): inodes count not valid: 263712 vs 32 [ 649.739952][ T9542] loop3: detected capacity change from 0 to 264192 [ 649.748113][ T9543] loop4: detected capacity change from 0 to 264192 [ 649.802745][ T9548] loop2: detected capacity change from 0 to 131456 [ 649.813382][ T9548] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 649.823473][ T9548] EXT4-fs (loop2): group descriptors corrupted! [ 649.832126][ T9542] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 649.842228][ T9542] EXT4-fs (loop3): group descriptors corrupted! 22:22:17 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20100400000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:17 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1400000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:17 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 17) fallocate(r3, 0x0, 0x6, 0x0) [ 649.988245][ T9555] loop5: detected capacity change from 0 to 131456 [ 649.998688][ T9555] EXT4-fs (loop5): inodes count not valid: 266272 vs 32 22:22:17 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) r1 = gettid() r2 = socket(0x1, 0x5, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setresuid(0x0, r3, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000049c0)=[{{&(0x7f0000000400)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000040)=[{&(0x7f0000000480)="80fe60d4a1152a9c5585469f3d15e9aa7a6b5ada56bcf0a3d3baf3f9714e20d9c710955977a42e9d629158fb5a9adb498ee569014c487581efcec9f7c7861648d0ee9f7c682454b580930b40d2", 0x4d}], 0x1, &(0x7f00000001c0)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}], 0x20, 0x4}}, {{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="bdba375b871904dbb065e37ed260a6304ed03a7be5c2df5aded8420c7f2bb3b753ee90d828cf153188a299b6b38f8e1e0dbad840b6e694290687ed6382079a336f5b9518964b2d651cba80b5974318dc296f9deb451c092fff82c8b02988934dd0f410188d8fc7ba0b639b58d4b8c007b6935fe1f24bd04cdd1aad4f883b260d14424d51bf20def54f75ea747778068066fed556db0eef34538d7ee32314512ac0b12dfd075373023fdd1134427648654347b5ccfcae3389701a5dd9a1fd59c0e12869ebd2", 0xc5}, {&(0x7f0000000600)="4497bde1ee1cf8c71c50fecbf8f7b179e6be5611cdb0e6aac595417a34c322fac34df4350e7c09b16ffe8502cde559b9e9c0ad2543a419a9cc409e799d8c1c8cd69ba13954f87ae3a77eefd75881ff133e8405cb69ae0708b39be84815ce43b2c7d4f30de5113a72cff35c3678c084ebe4b499853bf8098a5a01d2af881b40bda83b6e0318fc0e914941334d6e981d888ebaeda518dc789df8eb13bb76ba4164d8aa0562949ba8523384480ad05c09f02c945b780284f0a7aadcce30c68196927636e73e95606616e8e7a8a3197b3f369188827329fe2c41840533", 0xdb}, {&(0x7f0000000700)="a94c2cb09bd443b0eb4bedc7ad15da33141ba7e3c8982e002ced0165b395f7a8f5249312514f4dbb87b637947e116ecec2a6dcc1a0db22a50024a7484f04aba95c08ae4fb5fe5f96167d485dcf5db7589bb9bace2764e87d545e2f486e1d9ea4cfcd5b377d111b26602df2e897f2fb2c3c28b90d070a616a7df485c4515b19c44f173b7969ee0eec6c1fc282f6b0aaf45791962c488eb754a55a10a0d5ba4f4f75634f0ca05f20c46efbb4ed02f3545c4daecf0a350e9542c1cb4b809cbb667374cded7139bf06bf0dc76d3266f97e5515203c1ab7858d4853fb41c45c70dae68e9192c54b0f0791a3fd62831d85175bab9c1a649969452f93d671", 0xfb}, {&(0x7f00000002c0)="ef47e15bf0123e1ab642db56b022f07896fa2ba8cff461c55cd7fdbc3ffddf3ba4a2ee207f423c9d50ee07e2806047a5e1c7f5d33e4061da8b74c99cf984e6", 0x3f}, {&(0x7f0000000800)="c4121bc7361853282566227d9e2a139adeaf952d33d813b1c0d72f755ad6b02b5bda97cc026ada31e398a5e5156acbd22e40e7b9101f0e74e641555cd46963fe0781bf76eff52759329a4583", 0x4c}, {&(0x7f0000000880)="cb3d35d6918b379ff59632b404fd2b74ccef1adf8a62560ac105145995a2a2a0a8085f23fc31e404396d3b3b5367a08071e8234a704389061026694a3b57f53c6687b252f23ca26d0dc7c062557b7bc7c208dd", 0x53}, {&(0x7f0000000900)="9c96c8ba22ef9dfad4315fd172462c4b8607111bfeff3433a5a1571853d88867b26653c1dc17a5cb", 0x28}, {&(0x7f0000000940)="cf6f16ddb857f72edfd341c3de", 0xd}], 0x8, &(0x7f0000000a00)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60, 0x890}}, {{&(0x7f0000000a80)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000b00)="f71f8952822b736f35dbabb8357b36abfb3273a0e5a8cb54b5f7cf13682fc7c14ff3f11f2359d504825a472f51c88a8e602d08b3295429f11fdd33f57b67d73844deda41", 0x44}, {&(0x7f0000000b80)="39906c3d63f7bc328ac29fb4302bc4a7f0a80e77939d24aca56ca01db306b56fa9aeb125eb236c8d2a3cfafd41c925c05317616d37867c085ceb3a45972980237fc3821808e437cb5e8ab91f23c5d8cd082b0f55bbc8447186b064612d7b", 0x5e}, {&(0x7f0000000c00)="d492e0f25e46cfe6bcf6f80a4c145e360a22c92a1efe97ecccedbb021cbd0c4aa5f0d3522e97ebd7a6da5ce2e48ebc92c8dbb2eef37cba258bfdb3251ecbd46eef92c6d8e3548525b7cc96", 0x4b}, {&(0x7f0000000c80)="1b3e972acc79a23a234c9db4ddb8c2d6c1d44318f6ac5d220491e6580779f05f3c069f3a318b53bab24802879032ec1360dc0130b60b2e07a7c0c89b1a145901345a77fe8822600c372754dd254a579c29340daf158aab62b10a9a4a48c4af0ee655fc74a8ed611b8b243a14b2cd7cfbe2818fe198f5ebec2542bf3076f3e097bf55f61fd6d72667af9d501c70bc6b94933d79f2b0f40d0c7169fb217cd25b197992b2cfe156d0290dc08bddab4c06aa782ee35f6d3d56cef088b2a0135ed8d7", 0xc0}, {&(0x7f0000000d40)="66d9feb078b31107e86e6e778731621f5bdd680e3775498fb0f50fa469717d97efca83b31d4aaf1f4d0f8300090cb4b671821e156e9730126a988eff5cf0cb", 0x3f}, {&(0x7f0000000d80)="f3d6512ff8c07847c923defe3d2415905922b4eab4e05d79d9f491744dd51f74030e5f6110399c0facd31040c65ddfcd652f5fafc35991b2e996d8aa344d59a5996788", 0x43}], 0x6, &(0x7f0000000e80)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38, 0x4000080}}, {{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000000ec0)="f7b8", 0x2}, {&(0x7f0000000f00)="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", 0x1000}], 0x2, 0x0, 0x0, 0x4000000}}, {{&(0x7f0000001f40)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000002080)=[{&(0x7f0000001fc0)="f9616d79f849814578aa89038b010882d12d737bf11e8744c5b223c2c03221443c06948477106deede31f3278f03a14068f6efc3cf67f7c55e8b7d36ec292cca1b834e611e26dafdea7f38eff5b8a9d7740c467ee8ba4b764ae9d3e53a089e0c0d8585046ed07e0c5eabca814d60f2d9e760a10dbbc296330f0cd12efef1f25ac208cf7eafad76cbdf1675cb09b18ad61101185914c3df115292ee5de117ad6fb9c93ce5", 0xa4}], 0x1, 0x0, 0x0, 0x10}}, {{&(0x7f00000020c0)=@file={0x0, './bus\x00'}, 0x6e, &(0x7f0000003400)=[{&(0x7f0000002140)="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", 0x1000}, {&(0x7f0000003140)="68c179680dc7f86f38bc7cb490e6f89ee447646543cada43ea7b66f2c8e3f22f5a6fca3c1b3c770bfabec55f583ae8c7bc760a4fec85db130422a05c37550fef9cc969e2973c0635ff06547507ff3c568b82d1713f8512963d48ed26963d3402baaef0d1ce55869a206767df4a42f759a85bcdc9c5d6cf4f259816dae750e8a7603c7fdfa22f9d556e228bed7d9a9e710461194330524269e323b65e83863de7531657c541538d8da7a67cd1b69b5a6a6c21f4062d8d2a6fa63afd99a65bd9c83a7200044387d31644020b1d", 0xcc}, {&(0x7f0000003240)="5e23b2fb043f54e260f68f7981699ec4b63920022059d3f2b82c31a06b30cd2c8a8e54b67e2b9bc3709e0959b6816135f857c5c157b7ac5f3e35b693dd3955e6089fb210606dfcc401b59f6da23b3f842b1a2b56fc8eb7f6040f42dfdda794a64932091ae366a280ac765dd58321bdea", 0x70}, {&(0x7f00000032c0)="a2c8be47e592b9f71402a89c9a2171", 0xf}, {&(0x7f0000003300)="5e37f9e954172f54e8dd726608ace89dbc515833b4dcff86a088bcc7a2817af5cda1052dbb5204158c0dc861b2e3791c85d8fd92d95b956aaebd3b63e8b30c739831956faad1c685757f2e59e506eba4bf8e4d3c0d5f9dd6f46ec77c63f85623e726d96c17e4880319e02efcbed0115e6442cab779b75ee0b0b8a10cbd7538fe2da65b5631ac3e271a858145ce26de6c286dd908ea9acb85f8a3a4a0e8189014ff619fde9c0760266c418797067ce424f2ea81b5a4b2272e2fe10e127dcfac43475cbc244c83d614c094353125c1db87560ab586f40e77e416618a80a4fed8a31ec2023fd9838cf16834", 0xea}], 0x5, &(0x7f00000038c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee01}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}], 0x120, 0x4040051}}, {{&(0x7f0000003a00)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000003bc0)=[{&(0x7f0000003a80)="1a04bea472c9eca125f3d2bb698b5e7a4aeed887099e845c723d780707d940efc0cf5d438774a807a55668c2d442157e495f98f075396bde73045410fc7a", 0x3e}, {&(0x7f0000003ac0)="708a29cd4b19babf5165525dea038c26a850f780942f8892cd0cb6bc1641275c2ab459836afd0eac13660b4d95c4942b81bc088978399f14ef76446161f2ab161dcbf7a08e3e9515bfe3c8bf972952fdccfb0fdecab3651dab54094be945ccda8d277fe1c6a87b4101407cc879c4fcde2eb04950713f1448586d006649666244f065aeecf5c68b69ab", 0x89}, {&(0x7f0000003b80)="0373609e044cbe6baf5a4f0ba122c740d7462414ab79d60838c2e919b6d100167473", 0x22}], 0x3, &(0x7f0000003500)=ANY=[@ANYBLOB="1800000000000000010000000100000067e274f6288d096ada92cc2df5b03c9b2fa02b182a5e74d9a18496542a8b18dcb01709ad8278b524ae39c949c0963ca5a49f04abc9cdaaac8b46da739c31cac0c3e390f5b85fe0f97cec8cd21884dec8a2f7cd3769d8c6da1222afa0a71f8ff271f4c9be24c15e2619b5e90e02d54999dd7c3811e0db99a06691afe76b653c62daf4855af791f2b9716d9c5111a85af4b35f5d6141e511187a89e2306cb7162be5d736", @ANYRES32, @ANYRES32, @ANYBLOB="30000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x60, 0x84}}, {{&(0x7f0000003d00)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000003e00)=[{&(0x7f0000003d80)="664129ffbbf163e4367ff6e632e59ddb081f8245a7edf24db9813ae4bf2bb731cbbe7421cb707ab3b4814976cf92fb1365efa77145", 0x35}, {&(0x7f0000003dc0)="c1abe926900e5a9d5f1016ed83d030aab390f6da13b0ce09bce879bd58e2db75d0b053590d2d0f4379868276a061e965a33dcda86a99ce8ce1f26c850b31e7", 0x3f}], 0x2, &(0x7f0000003f40)=[@cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xffffffffffffffff}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78, 0x40000}}, {{&(0x7f0000003fc0)=@file={0x0, './bus\x00'}, 0x6e, &(0x7f0000004400)=[{&(0x7f0000004040)="a2ae1cbf68fc13734358c29db198e62dfc0f318a66fc8a941c36455daf65b57a192871f935242327a46d62458f64f3a449a3488beef268610b73e4e9d57368f6fbb10c0a01f9833c247c197d25", 0x4d}, {&(0x7f00000040c0)="be0820eff635ae1d527ad9cb89ae1839079c37eec5e8b0c30d5f0e9d97044d27746137e5cad6df4d011df4c369ce89875164dc089c5598cdb6b5067b761481ea3d213c4b0e0a909d2e215265989aa837a60a28285596182b4bf0f86aa201ad48971b39b3a4dfa720c7bb3966f47290a48386e7e0efc1ecc5e32c4b7c10264bfe1b41d3437ba4906f323e65f7889596c62863d6654ce2f984bd836ea1378cc7aeb34b1f1bc687b5c3139d978aa5cec232df225f3dd8c7d600b6d4f06681c193f4454459fc1144bfad05040159d77379cf71927975052508097a90513d1622ee", 0xdf}, {&(0x7f00000041c0)="8a2c8ea7027fc4c2e52000331c0081685ce0ca633a4512d9ae361756213af9fbe32bc79ae2aad5ff051b09416fbd79dec07151a8d393a257e70a5b72b55a87cfa839e9beda86b5f7585860ffc691fb23fee2c095ca301136d9fe5772b3fb930ef48beae52e7c49c1c73f801df8facbdb9996dc6d0e85c6f365e5ce06d70626c8117695962527ca15afeb15df99fbde67e35d2ef20f8e", 0x96}, {&(0x7f0000004280)="97f437", 0x3}, {&(0x7f00000042c0)="6301b7c75ec6bc50b34ac5ae1f5146229b3021324008d2b634e98e6455ddb548aaabbce394e362f2dd4df29aaf440c2ae90a40a11d19cabe08875ee14bdc0a2a6c7c9f0c3f874dea0d897499169c32845c95b3a57a58efa69e0d", 0x5a}, {&(0x7f0000004340)="e0ad934682568920b9", 0x9}, {&(0x7f0000004380)="d30599df9328d85cd6b7218c8f8ae5ece56b5b079169d460f758b0d68a36d85ca6812b82a4c4e916bb4c27db0e2603989db6b3f06f6cccab69276ddc3cefcae7b5967011eccf82f9", 0x48}], 0x7, &(0x7f0000004880)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r1, r3, 0xee00}}}], 0x110, 0x800}}], 0x9, 0x4000010) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000003480)="2000086864c4450487b80ce08155279eed0000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x63, 0x3fc}, {&(0x7f0000010400), 0x0, 0xfffffffffffffff9}, {0x0, 0x0, 0x8c80}], 0x1317882, 0x0) r4 = fsopen(&(0x7f0000000200)='nfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f00000000c0)='source', &(0x7f0000000100)='%}^]+$\x00', 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000140)='source', &(0x7f0000000180)='source', 0x0) [ 650.046768][ T9543] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 650.056895][ T9543] EXT4-fs (loop4): group descriptors corrupted! [ 650.068798][ T9567] loop3: detected capacity change from 0 to 264192 [ 650.081097][ T9567] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:22:17 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000500000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:17 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x204000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 650.091222][ T9567] EXT4-fs (loop3): group descriptors corrupted! 22:22:17 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sched_setattr(r0, &(0x7f00000001c0)={0x38, 0x1, 0x24, 0x0, 0x3, 0x10000, 0xffffffffffffff01, 0xfffffffffffffff8, 0x9, 0x5}, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:17 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 650.149732][ T9574] loop1: detected capacity change from 0 to 131456 [ 650.176952][ T9577] FAULT_INJECTION: forcing a failure. [ 650.176952][ T9577] name failslab, interval 1, probability 0, space 0, times 0 [ 650.189611][ T9577] CPU: 1 PID: 9577 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 650.198276][ T9577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 650.208355][ T9577] Call Trace: [ 650.211613][ T9577] dump_stack_lvl+0xd6/0x122 [ 650.216253][ T9577] dump_stack+0x11/0x1b [ 650.220461][ T9577] should_fail+0x23c/0x250 [ 650.224865][ T9577] ? kmalloc_array+0x2d/0x40 [ 650.229456][ T9577] __should_failslab+0x81/0x90 [ 650.234202][ T9577] should_failslab+0x5/0x20 [ 650.238690][ T9577] __kmalloc+0x6f/0x350 [ 650.242843][ T9577] kmalloc_array+0x2d/0x40 [ 650.247248][ T9577] iter_file_splice_write+0xd5/0x790 [ 650.252516][ T9577] ? atime_needs_update+0x2ba/0x390 [ 650.257696][ T9577] ? touch_atime+0xe0/0x250 [ 650.262182][ T9577] ? generic_file_splice_read+0x2a9/0x330 [ 650.267884][ T9577] ? splice_from_pipe+0xd0/0xd0 [ 650.272717][ T9577] direct_splice_actor+0x80/0xa0 [ 650.277674][ T9577] splice_direct_to_actor+0x345/0x650 [ 650.283024][ T9577] ? do_splice_direct+0x190/0x190 [ 650.288030][ T9577] do_splice_direct+0x106/0x190 [ 650.292883][ T9577] do_sendfile+0x63e/0xbb0 [ 650.297285][ T9577] __x64_sys_sendfile64+0x102/0x140 [ 650.302471][ T9577] do_syscall_64+0x44/0xa0 [ 650.306908][ T9577] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 650.312855][ T9577] RIP: 0033:0x7fabf13d4709 [ 650.317249][ T9577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 650.336838][ T9577] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 650.345253][ T9577] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 650.353207][ T9577] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 650.361159][ T9577] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 650.369112][ T9577] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 650.377121][ T9577] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:17 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 650.515587][ T9588] loop4: detected capacity change from 0 to 264192 [ 650.516501][ T9589] loop5: detected capacity change from 0 to 131456 [ 650.523489][ T9591] loop3: detected capacity change from 0 to 264192 [ 650.532736][ T9589] EXT4-fs (loop5): inodes count not valid: 327712 vs 32 [ 650.538533][ T9591] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 650.552152][ T9591] EXT4-fs (loop3): group descriptors corrupted! [ 650.559497][ T9588] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 650.569680][ T9588] EXT4-fs (loop4): group descriptors corrupted! [ 650.590683][ T9589] loop5: detected capacity change from 0 to 131456 [ 650.607548][ T9589] EXT4-fs (loop5): inodes count not valid: 327712 vs 32 22:22:18 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000600000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 650.613152][ T9574] loop1: detected capacity change from 0 to 131456 [ 650.657874][ T9588] loop4: detected capacity change from 0 to 264192 22:22:18 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2010000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 650.715805][ T9623] loop2: detected capacity change from 0 to 131456 [ 650.724412][ T9623] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 650.734532][ T9623] EXT4-fs (loop2): group descriptors corrupted! [ 650.758619][ T9627] loop5: detected capacity change from 0 to 131456 [ 650.765616][ T9628] loop3: detected capacity change from 0 to 264192 [ 650.776915][ T9627] EXT4-fs (loop5): inodes count not valid: 393248 vs 32 [ 650.785199][ T9628] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 650.795301][ T9628] EXT4-fs (loop3): group descriptors corrupted! 22:22:18 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f00000001c0)={0x38, 0x5, 0x10, 0x7fff, 0x7, 0x3, 0x80, 0x4, 0x5, 0x5}, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) preadv(r1, &(0x7f0000002680)=[{&(0x7f0000000200)=""/153, 0x99}], 0x1, 0x0, 0x0) r2 = openat(r1, &(0x7f00000002c0)='./file0\x00', 0x44c9c1, 0x110) sendfile(r0, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 650.802445][ T9588] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 650.812553][ T9588] EXT4-fs (loop4): group descriptors corrupted! 22:22:18 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 18) fallocate(r3, 0x0, 0x6, 0x0) 22:22:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x300000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 650.903336][ T9627] loop5: detected capacity change from 0 to 131456 [ 650.911110][ T9628] loop3: detected capacity change from 0 to 264192 [ 650.918367][ T9628] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 650.923653][ T9627] EXT4-fs (loop5): inodes count not valid: 393248 vs 32 [ 650.928476][ T9628] EXT4-fs (loop3): group descriptors corrupted! [ 650.948865][ T9651] loop1: detected capacity change from 0 to 131456 [ 651.008752][ T9665] loop4: detected capacity change from 0 to 264192 [ 651.017203][ T9665] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 651.027333][ T9665] EXT4-fs (loop4): group descriptors corrupted! [ 651.039282][ T9668] FAULT_INJECTION: forcing a failure. [ 651.039282][ T9668] name failslab, interval 1, probability 0, space 0, times 0 [ 651.051891][ T9668] CPU: 1 PID: 9668 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 651.060580][ T9668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 651.070612][ T9668] Call Trace: [ 651.073876][ T9668] dump_stack_lvl+0xd6/0x122 [ 651.078453][ T9668] dump_stack+0x11/0x1b [ 651.082590][ T9668] should_fail+0x23c/0x250 [ 651.086986][ T9668] __should_failslab+0x81/0x90 [ 651.091731][ T9668] ? __iomap_dio_rw+0x139/0x1010 [ 651.096671][ T9668] should_failslab+0x5/0x20 [ 651.101167][ T9668] kmem_cache_alloc_trace+0x52/0x320 [ 651.106433][ T9668] ? __getblk_gfp+0x3f/0x590 [ 651.112380][ T9668] __iomap_dio_rw+0x139/0x1010 [ 651.117128][ T9668] ? __brelse+0x2c/0x50 [ 651.121271][ T9668] ? ext4_mark_iloc_dirty+0x161a/0x1700 [ 651.126804][ T9668] iomap_dio_rw+0x30/0x70 [ 651.131119][ T9668] ? ext4_file_write_iter+0x521/0x11f0 [ 651.136562][ T9668] ext4_file_write_iter+0xaa9/0x11f0 [ 651.141874][ T9668] ? ext4_file_write_iter+0x521/0x11f0 [ 651.147313][ T9668] do_iter_readv_writev+0x2de/0x380 [ 651.152501][ T9668] do_iter_write+0x192/0x5c0 [ 651.157106][ T9668] ? splice_from_pipe_next+0x34f/0x3b0 [ 651.162544][ T9668] ? kmalloc_array+0x2d/0x40 [ 651.167121][ T9668] vfs_iter_write+0x4c/0x70 [ 651.171607][ T9668] iter_file_splice_write+0x43a/0x790 [ 651.176960][ T9668] ? splice_from_pipe+0xd0/0xd0 [ 651.181853][ T9668] direct_splice_actor+0x80/0xa0 [ 651.186771][ T9668] splice_direct_to_actor+0x345/0x650 [ 651.192127][ T9668] ? do_splice_direct+0x190/0x190 [ 651.197129][ T9668] do_splice_direct+0x106/0x190 [ 651.201962][ T9668] do_sendfile+0x63e/0xbb0 [ 651.206364][ T9668] __x64_sys_sendfile64+0x102/0x140 [ 651.211551][ T9668] do_syscall_64+0x44/0xa0 [ 651.215952][ T9668] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 651.221906][ T9668] RIP: 0033:0x7fabf13d4709 [ 651.226306][ T9668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 651.245898][ T9668] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 651.254292][ T9668] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 651.262247][ T9668] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 651.270207][ T9668] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 651.278161][ T9668] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 651.286114][ T9668] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:18 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2200000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:18 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20040600000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 651.399358][ T9674] loop5: detected capacity change from 0 to 131456 [ 651.408454][ T9675] loop3: detected capacity change from 0 to 264192 [ 651.420850][ T9674] EXT4-fs (loop5): inodes count not valid: 394272 vs 32 [ 651.424331][ T9665] loop4: detected capacity change from 0 to 264192 22:22:18 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000700000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x400000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:18 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 651.445411][ T9665] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 651.455527][ T9665] EXT4-fs (loop4): group descriptors corrupted! [ 651.483356][ T9651] loop1: detected capacity change from 0 to 131456 22:22:18 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() recvmmsg$unix(0xffffffffffffffff, &(0x7f00000028c0)=[{{&(0x7f0000000380), 0x6e, &(0x7f0000002780)=[{&(0x7f00000001c0)=""/46, 0x2e}, {&(0x7f0000000400)=""/113, 0x71}, {&(0x7f0000000480)=""/97, 0x61}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/215, 0xd7}, {&(0x7f0000001600)=""/99, 0x63}, {&(0x7f0000001680)=""/121, 0x79}, {&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/38, 0x26}, {&(0x7f0000002700)=""/114, 0x72}], 0xa, &(0x7f0000002840)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}], 0x1, 0x1, 0x0) prlimit64(r0, 0x5, &(0x7f0000002900)={0x7, 0x2}, &(0x7f0000002940)) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 651.499322][ T9675] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 651.509443][ T9675] EXT4-fs (loop3): group descriptors corrupted! 22:22:18 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2500000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 651.542607][ T9699] loop5: detected capacity change from 0 to 131456 [ 651.553929][ T9701] loop4: detected capacity change from 0 to 264192 [ 651.554170][ T9699] EXT4-fs (loop5): inodes count not valid: 458784 vs 32 [ 651.578813][ T9701] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:22:19 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000900000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 651.587674][ T9712] loop1: detected capacity change from 0 to 131456 [ 651.588926][ T9701] EXT4-fs (loop4): group descriptors corrupted! [ 651.652810][ T9718] loop2: detected capacity change from 0 to 131456 [ 651.661975][ T9718] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 651.672097][ T9718] EXT4-fs (loop2): group descriptors corrupted! 22:22:19 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 19) fallocate(r3, 0x0, 0x6, 0x0) [ 651.783842][ T9717] loop3: detected capacity change from 0 to 264192 [ 651.830586][ T9729] loop5: detected capacity change from 0 to 131456 [ 651.841665][ T9717] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 651.847658][ T9701] loop4: detected capacity change from 0 to 264192 [ 651.851906][ T9717] EXT4-fs (loop3): group descriptors corrupted! [ 651.853400][ T9729] EXT4-fs (loop5): inodes count not valid: 589856 vs 32 [ 651.859205][ T9701] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 651.881721][ T9701] EXT4-fs (loop4): group descriptors corrupted! [ 651.928420][ T9717] loop3: detected capacity change from 0 to 264192 [ 651.944727][ T9745] FAULT_INJECTION: forcing a failure. [ 651.944727][ T9745] name failslab, interval 1, probability 0, space 0, times 0 [ 651.957349][ T9745] CPU: 1 PID: 9745 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 651.966017][ T9745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 651.976054][ T9745] Call Trace: [ 651.979315][ T9745] dump_stack_lvl+0xd6/0x122 [ 651.983899][ T9745] dump_stack+0x11/0x1b [ 651.988041][ T9745] should_fail+0x23c/0x250 [ 651.992488][ T9745] ? kcalloc+0x32/0x50 [ 651.996626][ T9745] __should_failslab+0x81/0x90 [ 652.001372][ T9745] should_failslab+0x5/0x20 [ 652.005857][ T9745] __kmalloc+0x6f/0x350 [ 652.010041][ T9745] kcalloc+0x32/0x50 [ 652.013971][ T9745] ext4_find_extent+0x21c/0x7f0 [ 652.018863][ T9745] ? __queue_work+0x830/0xaa0 [ 652.023525][ T9745] ext4_ext_map_blocks+0x115/0x1ff0 [ 652.028706][ T9745] ? mod_delayed_work_on+0xa5/0xe0 [ 652.033807][ T9745] ? ext4_es_lookup_extent+0x36b/0x490 [ 652.039248][ T9745] ext4_map_blocks+0x71e/0xf00 [ 652.044080][ T9745] ? set_next_entity+0x23a/0x3d0 [ 652.049085][ T9745] ext4_iomap_begin+0x4b0/0x630 [ 652.053959][ T9745] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 652.059143][ T9745] iomap_iter+0x39c/0x470 [ 652.063462][ T9745] __iomap_dio_rw+0x698/0x1010 [ 652.068239][ T9745] iomap_dio_rw+0x30/0x70 [ 652.072553][ T9745] ? ext4_file_write_iter+0x521/0x11f0 [ 652.078005][ T9745] ext4_file_write_iter+0xaa9/0x11f0 [ 652.083334][ T9745] ? ext4_file_write_iter+0x521/0x11f0 [ 652.088848][ T9745] do_iter_readv_writev+0x2de/0x380 [ 652.094047][ T9745] do_iter_write+0x192/0x5c0 [ 652.098679][ T9745] ? splice_from_pipe_next+0x34f/0x3b0 [ 652.104122][ T9745] ? kmalloc_array+0x2d/0x40 [ 652.108699][ T9745] vfs_iter_write+0x4c/0x70 [ 652.113222][ T9745] iter_file_splice_write+0x43a/0x790 [ 652.118654][ T9745] ? splice_from_pipe+0xd0/0xd0 [ 652.123484][ T9745] direct_splice_actor+0x80/0xa0 [ 652.128406][ T9745] splice_direct_to_actor+0x345/0x650 [ 652.133759][ T9745] ? do_splice_direct+0x190/0x190 [ 652.138765][ T9745] do_splice_direct+0x106/0x190 [ 652.143600][ T9745] do_sendfile+0x63e/0xbb0 [ 652.148005][ T9745] __x64_sys_sendfile64+0x102/0x140 [ 652.153190][ T9745] do_syscall_64+0x44/0xa0 [ 652.157601][ T9745] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 652.163537][ T9745] RIP: 0033:0x7fabf13d4709 [ 652.167952][ T9745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 652.187621][ T9745] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 652.196014][ T9745] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 652.203965][ T9745] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 652.211916][ T9745] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 652.219949][ T9745] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 22:22:19 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2e00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 652.227903][ T9745] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:19 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x88) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:19 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 652.343363][ T9729] loop5: detected capacity change from 0 to 131456 [ 652.382206][ T9749] loop3: detected capacity change from 0 to 264192 22:22:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x500000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 652.384992][ T9729] EXT4-fs (loop5): inodes count not valid: 589856 vs 32 [ 652.398190][ T9764] loop1: detected capacity change from 0 to 131456 [ 652.412935][ T9749] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 652.423058][ T9749] EXT4-fs (loop3): group descriptors corrupted! 22:22:19 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000a00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 652.467429][ T9749] loop3: detected capacity change from 0 to 264192 [ 652.483892][ T9749] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 652.487876][ T9781] loop5: detected capacity change from 0 to 131456 [ 652.494003][ T9749] EXT4-fs (loop3): group descriptors corrupted! [ 652.513741][ T9779] loop4: detected capacity change from 0 to 264192 [ 652.557546][ T9787] loop2: detected capacity change from 0 to 131456 [ 652.569052][ T9787] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 652.579155][ T9787] EXT4-fs (loop2): group descriptors corrupted! [ 652.607586][ T9779] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 652.617735][ T9779] EXT4-fs (loop4): group descriptors corrupted! 22:22:20 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 20) fallocate(r3, 0x0, 0x6, 0x0) 22:22:20 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0xe, &(0x7f0000000380)={0x7, 0xf18}) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280), 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f00000002c0)={0x2c, 0x4, 0x2, 0xe, 0x7, 0x3ff, 0x4, 0x14a, 0x1}) [ 652.673636][ T9781] EXT4-fs (loop5): inodes count not valid: 655392 vs 32 22:22:20 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 652.743283][ T9795] loop1: detected capacity change from 0 to 131456 [ 652.778903][ T9779] loop4: detected capacity change from 0 to 264192 [ 652.786692][ T9781] loop5: detected capacity change from 0 to 131456 [ 652.796594][ T9779] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 652.806689][ T9779] EXT4-fs (loop4): group descriptors corrupted! [ 652.855105][ T9814] FAULT_INJECTION: forcing a failure. [ 652.855105][ T9814] name failslab, interval 1, probability 0, space 0, times 0 [ 652.867817][ T9814] CPU: 1 PID: 9814 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 652.876560][ T9814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 652.886595][ T9814] Call Trace: [ 652.889855][ T9814] dump_stack_lvl+0xd6/0x122 [ 652.894432][ T9814] dump_stack+0x11/0x1b [ 652.898570][ T9814] should_fail+0x23c/0x250 [ 652.902967][ T9814] ? ext4_mb_new_blocks+0x317/0x1fc0 [ 652.908235][ T9814] __should_failslab+0x81/0x90 [ 652.913003][ T9814] should_failslab+0x5/0x20 [ 652.917534][ T9814] kmem_cache_alloc+0x4f/0x300 [ 652.922319][ T9814] ext4_mb_new_blocks+0x317/0x1fc0 [ 652.927415][ T9814] ? ext4_find_extent+0x7b2/0x7f0 [ 652.932428][ T9814] ? ext4_ext_search_right+0x246/0x540 [ 652.937871][ T9814] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 652.943202][ T9814] ? ext4_es_lookup_extent+0x36b/0x490 [ 652.948648][ T9814] ext4_map_blocks+0x71e/0xf00 [ 652.953398][ T9814] ext4_iomap_begin+0x4b0/0x630 [ 652.958235][ T9814] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 652.963454][ T9814] iomap_iter+0x39c/0x470 [ 652.967772][ T9814] __iomap_dio_rw+0x698/0x1010 [ 652.972585][ T9814] iomap_dio_rw+0x30/0x70 [ 652.976900][ T9814] ? ext4_file_write_iter+0x521/0x11f0 [ 652.982405][ T9814] ext4_file_write_iter+0xaa9/0x11f0 [ 652.987677][ T9814] ? ext4_file_write_iter+0x521/0x11f0 [ 652.993120][ T9814] do_iter_readv_writev+0x2de/0x380 [ 652.998315][ T9814] do_iter_write+0x192/0x5c0 [ 653.002891][ T9814] ? splice_from_pipe_next+0x34f/0x3b0 [ 653.008333][ T9814] ? kmalloc_array+0x2d/0x40 [ 653.012979][ T9814] vfs_iter_write+0x4c/0x70 [ 653.017471][ T9814] iter_file_splice_write+0x43a/0x790 [ 653.022827][ T9814] ? splice_from_pipe+0xd0/0xd0 [ 653.027659][ T9814] direct_splice_actor+0x80/0xa0 [ 653.032636][ T9814] splice_direct_to_actor+0x345/0x650 [ 653.038025][ T9814] ? do_splice_direct+0x190/0x190 [ 653.043029][ T9814] do_splice_direct+0x106/0x190 [ 653.047860][ T9814] do_sendfile+0x63e/0xbb0 [ 653.052285][ T9814] __x64_sys_sendfile64+0x102/0x140 [ 653.057470][ T9814] do_syscall_64+0x44/0xa0 [ 653.061874][ T9814] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 653.067822][ T9814] RIP: 0033:0x7fabf13d4709 [ 653.072220][ T9814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 653.091808][ T9814] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 653.100200][ T9814] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 653.108185][ T9814] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 653.116139][ T9814] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 653.124089][ T9814] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 653.132107][ T9814] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 653.168341][ T9815] loop3: detected capacity change from 0 to 264192 [ 653.202522][ T9781] EXT4-fs (loop5): inodes count not valid: 655392 vs 32 22:22:20 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 653.255778][ T9815] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 653.265922][ T9815] EXT4-fs (loop3): group descriptors corrupted! 22:22:20 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f03000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:20 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x600000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:20 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000b00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:20 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) r0 = getpid() mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x3}, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) sched_setattr(r0, &(0x7f00000002c0)={0x38, 0x5, 0xa, 0x7, 0x2, 0x8001, 0x9, 0x3a, 0x81, 0x2093}, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) getrlimit(0x9, &(0x7f00000001c0)) [ 653.417654][ T9836] loop2: detected capacity change from 0 to 131456 [ 653.425030][ T9836] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 653.435123][ T9836] EXT4-fs (loop2): group descriptors corrupted! [ 653.446867][ T9833] loop3: detected capacity change from 0 to 264192 [ 653.455621][ T9833] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 653.465815][ T9833] EXT4-fs (loop3): group descriptors corrupted! [ 653.525303][ T9844] loop1: detected capacity change from 0 to 131456 22:22:21 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 21) fallocate(r3, 0x0, 0x6, 0x0) [ 653.601431][ T9835] loop4: detected capacity change from 0 to 264192 [ 653.610602][ T9834] loop5: detected capacity change from 0 to 131456 [ 653.623538][ T9833] loop3: detected capacity change from 0 to 264192 22:22:21 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 653.643185][ T9833] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 653.653478][ T9833] EXT4-fs (loop3): group descriptors corrupted! [ 653.661493][ T9835] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 653.671672][ T9835] EXT4-fs (loop4): group descriptors corrupted! [ 653.678758][ T9834] EXT4-fs (loop5): inodes count not valid: 720928 vs 32 [ 653.716963][ T9867] FAULT_INJECTION: forcing a failure. [ 653.716963][ T9867] name failslab, interval 1, probability 0, space 0, times 0 [ 653.729689][ T9867] CPU: 1 PID: 9867 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 653.738351][ T9867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 653.748401][ T9867] Call Trace: [ 653.751659][ T9867] dump_stack_lvl+0xd6/0x122 [ 653.756238][ T9867] dump_stack+0x11/0x1b [ 653.760377][ T9867] should_fail+0x23c/0x250 [ 653.764805][ T9867] ? ext4_mb_new_blocks+0x73f/0x1fc0 [ 653.770146][ T9867] __should_failslab+0x81/0x90 [ 653.774893][ T9867] should_failslab+0x5/0x20 [ 653.779409][ T9867] kmem_cache_alloc+0x4f/0x300 [ 653.784159][ T9867] ext4_mb_new_blocks+0x73f/0x1fc0 [ 653.789250][ T9867] ? ext4_find_extent+0x7b2/0x7f0 [ 653.794260][ T9867] ? ext4_ext_search_right+0x246/0x540 [ 653.799740][ T9867] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 653.805071][ T9867] ? ext4_es_lookup_extent+0x36b/0x490 [ 653.810529][ T9867] ext4_map_blocks+0x71e/0xf00 [ 653.815287][ T9867] ? set_next_entity+0x23a/0x3d0 [ 653.820247][ T9867] ext4_iomap_begin+0x4b0/0x630 [ 653.825117][ T9867] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 653.830362][ T9867] iomap_iter+0x39c/0x470 [ 653.834763][ T9867] __iomap_dio_rw+0x698/0x1010 [ 653.839515][ T9867] iomap_dio_rw+0x30/0x70 [ 653.843892][ T9867] ? ext4_file_write_iter+0x521/0x11f0 [ 653.849370][ T9867] ext4_file_write_iter+0xaa9/0x11f0 [ 653.854650][ T9867] ? ext4_file_write_iter+0x521/0x11f0 [ 653.860092][ T9867] do_iter_readv_writev+0x2de/0x380 [ 653.865378][ T9867] do_iter_write+0x192/0x5c0 [ 653.869968][ T9867] ? splice_from_pipe_next+0x34f/0x3b0 [ 653.875405][ T9867] ? kmalloc_array+0x2d/0x40 [ 653.880050][ T9867] vfs_iter_write+0x4c/0x70 [ 653.884545][ T9867] iter_file_splice_write+0x43a/0x790 [ 653.889912][ T9867] ? splice_from_pipe+0xd0/0xd0 [ 653.894762][ T9867] direct_splice_actor+0x80/0xa0 [ 653.899712][ T9867] splice_direct_to_actor+0x345/0x650 [ 653.905066][ T9867] ? do_splice_direct+0x190/0x190 [ 653.912078][ T9867] do_splice_direct+0x106/0x190 [ 653.916913][ T9867] do_sendfile+0x63e/0xbb0 [ 653.921324][ T9867] __x64_sys_sendfile64+0x102/0x140 [ 653.926509][ T9867] do_syscall_64+0x44/0xa0 [ 653.930914][ T9867] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 653.936864][ T9867] RIP: 0033:0x7fabf13d4709 [ 653.941264][ T9867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 653.960915][ T9867] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 653.969307][ T9867] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 653.977262][ T9867] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 653.985266][ T9867] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 653.993220][ T9867] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 654.001223][ T9867] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:21 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 654.128874][ T9835] loop4: detected capacity change from 0 to 264192 [ 654.129097][ T9834] loop5: detected capacity change from 0 to 131456 [ 654.137888][ T9835] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 654.146216][ T9834] EXT4-fs (loop5): inodes count not valid: 720928 vs 32 [ 654.152049][ T9835] EXT4-fs (loop4): group descriptors corrupted! [ 654.161283][ T9878] loop3: detected capacity change from 0 to 264192 22:22:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x604000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:21 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000c00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 654.200951][ T9878] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 654.211142][ T9878] EXT4-fs (loop3): group descriptors corrupted! [ 654.213964][ T9847] loop1: detected capacity change from 0 to 131456 [ 654.219962][ T9892] loop4: detected capacity change from 0 to 264192 [ 654.254306][ T9902] loop5: detected capacity change from 0 to 131456 [ 654.262996][ T9902] EXT4-fs (loop5): inodes count not valid: 786464 vs 32 [ 654.280133][ T9892] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 654.290257][ T9892] EXT4-fs (loop4): group descriptors corrupted! [ 654.298497][ T9905] loop2: detected capacity change from 0 to 131456 [ 654.307785][ T9905] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 654.317881][ T9905] EXT4-fs (loop2): group descriptors corrupted! 22:22:21 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) r0 = fork() sched_setattr(r0, &(0x7f00000001c0)={0x38, 0x1, 0x41, 0x7fffffff, 0x9a5, 0x7ff, 0x3, 0x8c57, 0x0, 0x4804}, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:21 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 22) fallocate(r3, 0x0, 0x6, 0x0) [ 654.464792][ T9902] loop5: detected capacity change from 0 to 131456 [ 654.464796][ T9878] loop3: detected capacity change from 0 to 264192 [ 654.468341][ T9878] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 654.484167][ T9892] loop4: detected capacity change from 0 to 264192 [ 654.487907][ T9878] EXT4-fs (loop3): group descriptors corrupted! [ 654.495296][ T9902] EXT4-fs (loop5): inodes count not valid: 786464 vs 32 22:22:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x700000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 654.502358][ T9892] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 654.517740][ T9892] EXT4-fs (loop4): group descriptors corrupted! [ 654.580891][ T9929] FAULT_INJECTION: forcing a failure. [ 654.580891][ T9929] name failslab, interval 1, probability 0, space 0, times 0 [ 654.593532][ T9929] CPU: 1 PID: 9929 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 654.602193][ T9929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 654.612239][ T9929] Call Trace: [ 654.615542][ T9929] dump_stack_lvl+0xd6/0x122 [ 654.620472][ T9929] dump_stack+0x11/0x1b [ 654.624639][ T9929] should_fail+0x23c/0x250 [ 654.629036][ T9929] ? __es_insert_extent+0x51f/0xe70 [ 654.634285][ T9929] __should_failslab+0x81/0x90 [ 654.639036][ T9929] should_failslab+0x5/0x20 [ 654.643645][ T9929] kmem_cache_alloc+0x4f/0x300 [ 654.648396][ T9929] __es_insert_extent+0x51f/0xe70 [ 654.653421][ T9929] ext4_es_insert_extent+0x1cb/0x1950 [ 654.658778][ T9929] ext4_map_blocks+0xa5d/0xf00 [ 654.663528][ T9929] ext4_iomap_begin+0x4b0/0x630 [ 654.668367][ T9929] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 654.673611][ T9929] iomap_iter+0x39c/0x470 [ 654.677945][ T9929] __iomap_dio_rw+0x698/0x1010 [ 654.682740][ T9929] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 654.688365][ T9929] iomap_dio_rw+0x30/0x70 [ 654.692682][ T9929] ? ext4_file_write_iter+0x521/0x11f0 [ 654.698163][ T9929] ext4_file_write_iter+0xaa9/0x11f0 [ 654.703437][ T9929] ? ext4_file_write_iter+0x521/0x11f0 [ 654.708882][ T9929] do_iter_readv_writev+0x2de/0x380 [ 654.714064][ T9929] do_iter_write+0x192/0x5c0 [ 654.718640][ T9929] ? splice_from_pipe_next+0x34f/0x3b0 [ 654.724081][ T9929] ? kmalloc_array+0x2d/0x40 [ 654.728677][ T9929] vfs_iter_write+0x4c/0x70 [ 654.733167][ T9929] iter_file_splice_write+0x43a/0x790 [ 654.738521][ T9929] ? splice_from_pipe+0xd0/0xd0 [ 654.743479][ T9929] direct_splice_actor+0x80/0xa0 [ 654.748412][ T9929] splice_direct_to_actor+0x345/0x650 [ 654.753764][ T9929] ? do_splice_direct+0x190/0x190 [ 654.758771][ T9929] do_splice_direct+0x106/0x190 [ 654.763618][ T9929] do_sendfile+0x63e/0xbb0 [ 654.768075][ T9929] __x64_sys_sendfile64+0x102/0x140 [ 654.773257][ T9929] do_syscall_64+0x44/0xa0 [ 654.777660][ T9929] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 654.783585][ T9929] RIP: 0033:0x7fabf13d4709 [ 654.788037][ T9929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 654.807646][ T9929] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 654.816040][ T9929] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 654.824000][ T9929] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 654.832016][ T9929] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 654.839970][ T9929] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 654.847923][ T9929] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 654.920632][ T9935] loop4: detected capacity change from 0 to 264192 [ 654.956266][ T9935] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 654.966450][ T9935] EXT4-fs (loop4): group descriptors corrupted! 22:22:22 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000080000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:22 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:22 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000d00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x800000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 655.049427][ T9935] loop4: detected capacity change from 0 to 264192 [ 655.057356][ T9935] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 655.067460][ T9935] EXT4-fs (loop4): group descriptors corrupted! [ 655.122203][ T9955] loop1: detected capacity change from 0 to 131456 [ 655.127091][ T9959] loop3: detected capacity change from 0 to 264192 [ 655.132900][ T9958] loop5: detected capacity change from 0 to 131456 [ 655.189288][ T9959] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 655.199523][ T9959] EXT4-fs (loop3): group descriptors corrupted! [ 655.206385][ T9967] loop2: detected capacity change from 0 to 131456 [ 655.217905][ T9967] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 655.228057][ T9967] EXT4-fs (loop2): group descriptors corrupted! 22:22:22 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 23) fallocate(r3, 0x0, 0x6, 0x0) [ 655.326831][ T9958] EXT4-fs (loop5): inodes count not valid: 852000 vs 32 [ 655.364362][ T9957] loop4: detected capacity change from 0 to 264192 22:22:22 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000e00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 655.378077][ T9957] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 655.388207][ T9957] EXT4-fs (loop4): group descriptors corrupted! [ 655.411754][ T9959] loop3: detected capacity change from 0 to 264192 [ 655.430915][ T9957] loop4: detected capacity change from 0 to 264192 [ 655.439443][ T9957] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 655.449580][ T9957] EXT4-fs (loop4): group descriptors corrupted! [ 655.458112][ T9959] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 655.468305][ T9959] EXT4-fs (loop3): group descriptors corrupted! [ 655.512731][ T9995] FAULT_INJECTION: forcing a failure. [ 655.512731][ T9995] name failslab, interval 1, probability 0, space 0, times 0 [ 655.525899][ T9995] CPU: 0 PID: 9995 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 655.534607][ T9995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 655.544640][ T9995] Call Trace: [ 655.547901][ T9995] dump_stack_lvl+0xd6/0x122 [ 655.552478][ T9995] dump_stack+0x11/0x1b [ 655.556614][ T9995] should_fail+0x23c/0x250 [ 655.561012][ T9995] ? mempool_alloc_slab+0x16/0x20 [ 655.566073][ T9995] __should_failslab+0x81/0x90 [ 655.570819][ T9995] should_failslab+0x5/0x20 [ 655.575306][ T9995] kmem_cache_alloc+0x4f/0x300 [ 655.580060][ T9995] ? ext4_fc_track_range+0x90/0x140 [ 655.585242][ T9995] mempool_alloc_slab+0x16/0x20 [ 655.590073][ T9995] ? mempool_free+0x130/0x130 [ 655.594733][ T9995] mempool_alloc+0x9d/0x310 [ 655.599219][ T9995] bio_alloc_bioset+0xcc/0x530 [ 655.603965][ T9995] ? iov_iter_alignment+0x34b/0x370 [ 655.609199][ T9995] iomap_dio_bio_iter+0x5c1/0xbc0 [ 655.614208][ T9995] __iomap_dio_rw+0x8d8/0x1010 [ 655.618960][ T9995] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 655.624616][ T9995] iomap_dio_rw+0x30/0x70 [ 655.628985][ T9995] ? ext4_file_write_iter+0x521/0x11f0 [ 655.634425][ T9995] ext4_file_write_iter+0xaa9/0x11f0 [ 655.639738][ T9995] ? ext4_file_write_iter+0x521/0x11f0 [ 655.645222][ T9995] do_iter_readv_writev+0x2de/0x380 [ 655.650419][ T9995] do_iter_write+0x192/0x5c0 [ 655.655067][ T9995] ? splice_from_pipe_next+0x34f/0x3b0 [ 655.660513][ T9995] ? kmalloc_array+0x2d/0x40 [ 655.665094][ T9995] vfs_iter_write+0x4c/0x70 [ 655.669674][ T9995] iter_file_splice_write+0x43a/0x790 [ 655.675104][ T9995] ? splice_from_pipe+0xd0/0xd0 [ 655.679935][ T9995] direct_splice_actor+0x80/0xa0 [ 655.684905][ T9995] splice_direct_to_actor+0x345/0x650 [ 655.690289][ T9995] ? do_splice_direct+0x190/0x190 [ 655.695360][ T9995] do_splice_direct+0x106/0x190 [ 655.700194][ T9995] do_sendfile+0x63e/0xbb0 [ 655.704601][ T9995] __x64_sys_sendfile64+0x102/0x140 [ 655.709801][ T9995] do_syscall_64+0x44/0xa0 [ 655.714206][ T9995] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 655.720098][ T9995] RIP: 0033:0x7fabf13d4709 [ 655.724498][ T9995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 655.744086][ T9995] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 655.752481][ T9995] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 655.760433][ T9995] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 655.768383][ T9995] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 655.776337][ T9995] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 655.784292][ T9995] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 655.819649][ T9993] loop5: detected capacity change from 0 to 131456 [ 655.830521][ T9993] EXT4-fs (loop5): inodes count not valid: 917536 vs 32 22:22:23 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e00000013", 0x5}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:23 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4003000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:23 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x900000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 655.942688][ T9993] loop5: detected capacity change from 0 to 131456 [ 655.953908][ T9993] EXT4-fs (loop5): inodes count not valid: 917536 vs 32 [ 655.990463][T10013] loop3: detected capacity change from 0 to 264192 [ 655.995558][T10016] loop4: detected capacity change from 0 to 264192 [ 655.999217][T10013] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 656.006843][ T9955] loop1: detected capacity change from 0 to 131456 [ 656.013591][T10013] EXT4-fs (loop3): group descriptors corrupted! [ 656.031884][T10016] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 656.042029][T10016] EXT4-fs (loop4): group descriptors corrupted! [ 656.056440][T10025] loop2: detected capacity change from 0 to 131456 [ 656.065674][T10025] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 656.075780][T10025] EXT4-fs (loop2): group descriptors corrupted! 22:22:23 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000380)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:23 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000f00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:23 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 24) fallocate(r3, 0x0, 0x6, 0x0) [ 656.216912][T10013] loop3: detected capacity change from 0 to 264192 [ 656.223776][T10016] loop4: detected capacity change from 0 to 264192 [ 656.232028][T10016] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 656.237863][T10013] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 656.242105][T10016] EXT4-fs (loop4): group descriptors corrupted! [ 656.258417][T10013] EXT4-fs (loop3): group descriptors corrupted! 22:22:23 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xa00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:23 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20041000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 656.261833][T10044] loop5: detected capacity change from 0 to 131456 [ 656.273654][T10044] EXT4-fs (loop5): inodes count not valid: 983072 vs 32 [ 656.313336][T10054] loop4: detected capacity change from 0 to 264192 [ 656.327567][T10054] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 656.337679][T10054] EXT4-fs (loop4): group descriptors corrupted! [ 656.402140][T10067] FAULT_INJECTION: forcing a failure. [ 656.402140][T10067] name failslab, interval 1, probability 0, space 0, times 0 [ 656.414777][T10067] CPU: 0 PID: 10067 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 656.423603][T10067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 656.433648][T10067] Call Trace: [ 656.436941][T10067] dump_stack_lvl+0xd6/0x122 [ 656.441599][T10067] dump_stack+0x11/0x1b [ 656.445744][T10067] should_fail+0x23c/0x250 [ 656.450143][T10067] ? mempool_alloc_slab+0x16/0x20 [ 656.455186][T10067] __should_failslab+0x81/0x90 [ 656.459934][T10067] should_failslab+0x5/0x20 [ 656.464454][T10067] kmem_cache_alloc+0x4f/0x300 [ 656.469199][T10067] mempool_alloc_slab+0x16/0x20 [ 656.474033][T10067] ? mempool_free+0x130/0x130 [ 656.478714][T10067] mempool_alloc+0x9d/0x310 [ 656.483314][T10067] ? crypto_shash_update+0x13c/0x1a0 [ 656.488610][T10067] sg_pool_alloc+0x74/0x90 [ 656.493111][T10067] __sg_alloc_table+0xce/0x290 [ 656.497863][T10067] sg_alloc_table_chained+0xaf/0x140 [ 656.503163][T10067] ? sg_alloc_table_chained+0x140/0x140 [ 656.508704][T10067] scsi_alloc_sgtables+0x184/0x510 [ 656.513808][T10067] sd_init_command+0x952/0x1610 [ 656.519001][T10067] scsi_queue_rq+0x10cd/0x15a0 [ 656.523754][T10067] blk_mq_dispatch_rq_list+0x63b/0x1080 [ 656.529289][T10067] blk_mq_do_dispatch_sched+0x3b5/0x640 [ 656.534830][T10067] __blk_mq_sched_dispatch_requests+0x1eb/0x290 [ 656.541055][T10067] ? rb_insert_color+0x2fa/0x310 [ 656.545997][T10067] blk_mq_sched_dispatch_requests+0x9f/0x110 [ 656.552098][T10067] __blk_mq_run_hw_queue+0xbc/0x140 [ 656.557284][T10067] __blk_mq_delay_run_hw_queue+0x163/0x2f0 [ 656.563128][T10067] blk_mq_run_hw_queue+0x22c/0x250 [ 656.568304][T10067] blk_mq_sched_insert_requests+0x12b/0x1f0 [ 656.574185][T10067] blk_mq_flush_plug_list+0x302/0x3d0 [ 656.579545][T10067] blk_flush_plug_list+0x235/0x260 [ 656.584686][T10067] blk_finish_plug+0x44/0x60 [ 656.589269][T10067] __iomap_dio_rw+0xca7/0x1010 [ 656.594060][T10067] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 656.599677][T10067] iomap_dio_rw+0x30/0x70 [ 656.604049][T10067] ? ext4_file_write_iter+0x521/0x11f0 [ 656.609488][T10067] ext4_file_write_iter+0xaa9/0x11f0 [ 656.614816][T10067] ? ext4_file_write_iter+0x521/0x11f0 [ 656.620328][T10067] do_iter_readv_writev+0x2de/0x380 [ 656.625579][T10067] do_iter_write+0x192/0x5c0 [ 656.630154][T10067] ? splice_from_pipe_next+0x34f/0x3b0 [ 656.635594][T10067] ? kmalloc_array+0x2d/0x40 [ 656.640170][T10067] vfs_iter_write+0x4c/0x70 [ 656.644659][T10067] iter_file_splice_write+0x43a/0x790 [ 656.650011][T10067] ? splice_from_pipe+0xd0/0xd0 [ 656.654908][T10067] direct_splice_actor+0x80/0xa0 [ 656.659829][T10067] splice_direct_to_actor+0x345/0x650 [ 656.665179][T10067] ? do_splice_direct+0x190/0x190 [ 656.670189][T10067] do_splice_direct+0x106/0x190 [ 656.675088][T10067] do_sendfile+0x63e/0xbb0 [ 656.679495][T10067] __x64_sys_sendfile64+0x102/0x140 [ 656.684684][T10067] do_syscall_64+0x44/0xa0 [ 656.689093][T10067] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 656.695086][T10067] RIP: 0033:0x7fabf13d4709 [ 656.699482][T10067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 656.719099][T10067] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 656.727560][T10067] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 656.735517][T10067] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 656.743469][T10067] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 656.751425][T10067] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 656.759376][T10067] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:24 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e00000013", 0x5}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 656.843968][T10069] loop1: detected capacity change from 0 to 131456 [ 656.857670][T10066] loop5: detected capacity change from 0 to 131456 22:22:24 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9, 0xfff, 0x4}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:24 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4103000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20201000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 656.913286][T10066] EXT4-fs (loop5): inodes count not valid: 1049632 vs 32 [ 656.932090][T10054] loop4: detected capacity change from 0 to 264192 [ 656.939480][T10054] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 656.949620][T10054] EXT4-fs (loop4): group descriptors corrupted! [ 656.983508][T10092] loop3: detected capacity change from 0 to 264192 [ 657.020427][T10092] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 657.030546][T10092] EXT4-fs (loop3): group descriptors corrupted! [ 657.037423][T10095] loop2: detected capacity change from 0 to 131456 [ 657.047234][T10095] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 657.057331][T10095] EXT4-fs (loop2): group descriptors corrupted! [ 657.101423][T10099] loop1: detected capacity change from 0 to 131456 22:22:24 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xb00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:24 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 25) fallocate(r3, 0x0, 0x6, 0x0) 22:22:24 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 657.212087][T10098] loop5: detected capacity change from 0 to 131456 [ 657.231613][T10098] EXT4-fs (loop5): inodes count not valid: 1056800 vs 32 [ 657.287266][T10098] loop5: detected capacity change from 0 to 131456 [ 657.308372][T10125] loop3: detected capacity change from 0 to 264192 [ 657.319360][T10128] loop4: detected capacity change from 0 to 264192 [ 657.364833][T10129] FAULT_INJECTION: forcing a failure. [ 657.364833][T10129] name failslab, interval 1, probability 0, space 0, times 0 [ 657.377464][T10129] CPU: 1 PID: 10129 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 657.386277][T10129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 657.396417][T10129] Call Trace: [ 657.399744][T10129] dump_stack_lvl+0xd6/0x122 [ 657.404323][T10129] dump_stack+0x11/0x1b [ 657.408462][T10129] should_fail+0x23c/0x250 [ 657.412871][T10129] ? mempool_alloc_slab+0x16/0x20 [ 657.417880][T10129] __should_failslab+0x81/0x90 [ 657.422685][T10129] should_failslab+0x5/0x20 [ 657.427170][T10129] kmem_cache_alloc+0x4f/0x300 [ 657.431918][T10129] mempool_alloc_slab+0x16/0x20 [ 657.436757][T10129] ? mempool_free+0x130/0x130 [ 657.441464][T10129] mempool_alloc+0x9d/0x310 [ 657.445964][T10129] ? __getblk_gfp+0x3f/0x590 [ 657.450614][T10129] bio_alloc_bioset+0xcc/0x530 [ 657.455382][T10129] ? __ext4_get_inode_loc+0x760/0x8c0 [ 657.460759][T10129] submit_bh_wbc+0x130/0x330 [ 657.465367][T10129] __sync_dirty_buffer+0x136/0x1e0 [ 657.470461][T10129] sync_dirty_buffer+0x16/0x20 [ 657.475208][T10129] ext4_write_inode+0x2ad/0x3c0 [ 657.480046][T10129] write_inode+0x89/0x180 [ 657.484432][T10129] __writeback_single_inode+0x2a2/0x440 [ 657.489966][T10129] writeback_single_inode+0x17b/0x3e0 [ 657.495327][T10129] sync_inode_metadata+0x57/0x80 [ 657.500297][T10129] ext4_sync_file+0x359/0x670 [ 657.505010][T10129] ? tsan.module_ctor+0x10/0x10 [ 657.509843][T10129] vfs_fsync_range+0x107/0x120 [ 657.514632][T10129] iomap_dio_complete+0x2d5/0x3c0 [ 657.519643][T10129] iomap_dio_rw+0x4e/0x70 [ 657.523959][T10129] ? ext4_file_write_iter+0x521/0x11f0 [ 657.529403][T10129] ext4_file_write_iter+0xaa9/0x11f0 [ 657.534758][T10129] ? ext4_file_write_iter+0x521/0x11f0 [ 657.540213][T10129] do_iter_readv_writev+0x2de/0x380 [ 657.545431][T10129] do_iter_write+0x192/0x5c0 [ 657.550008][T10129] ? splice_from_pipe_next+0x34f/0x3b0 [ 657.555456][T10129] ? kmalloc_array+0x2d/0x40 [ 657.560034][T10129] vfs_iter_write+0x4c/0x70 [ 657.564521][T10129] iter_file_splice_write+0x43a/0x790 [ 657.569900][T10129] ? splice_from_pipe+0xd0/0xd0 [ 657.574734][T10129] direct_splice_actor+0x80/0xa0 [ 657.579686][T10129] splice_direct_to_actor+0x345/0x650 [ 657.585045][T10129] ? do_splice_direct+0x190/0x190 [ 657.590052][T10129] do_splice_direct+0x106/0x190 [ 657.594946][T10129] do_sendfile+0x63e/0xbb0 [ 657.599351][T10129] __x64_sys_sendfile64+0x102/0x140 [ 657.604546][T10129] do_syscall_64+0x44/0xa0 [ 657.608948][T10129] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 657.614862][T10129] RIP: 0033:0x7fabf13d4709 [ 657.619332][T10129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 657.638929][T10129] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 657.647370][T10129] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 657.655327][T10129] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 657.663279][T10129] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 657.671238][T10129] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 657.679193][T10129] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:25 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4c00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:25 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e00000013", 0x5}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 657.802128][T10098] EXT4-fs (loop5): inodes count not valid: 1056800 vs 32 [ 657.810238][T10128] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 657.820337][T10128] EXT4-fs (loop4): group descriptors corrupted! [ 657.823336][T10125] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 657.836653][T10125] EXT4-fs (loop3): group descriptors corrupted! 22:22:25 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20001100000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 657.903374][T10142] loop3: detected capacity change from 0 to 264192 [ 657.916412][T10142] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 657.926525][T10142] EXT4-fs (loop3): group descriptors corrupted! [ 657.936390][T10147] loop4: detected capacity change from 0 to 264192 22:22:25 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 658.010581][T10147] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 658.021233][T10147] EXT4-fs (loop4): group descriptors corrupted! [ 658.028040][T10160] loop2: detected capacity change from 0 to 131456 [ 658.038984][T10160] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 658.049172][T10160] EXT4-fs (loop2): group descriptors corrupted! 22:22:25 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 26) fallocate(r3, 0x0, 0x6, 0x0) 22:22:25 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6800000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 658.120189][T10156] loop5: detected capacity change from 0 to 131456 22:22:25 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xd00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 658.209688][T10174] loop3: detected capacity change from 0 to 264192 [ 658.227565][T10156] EXT4-fs (loop5): inodes count not valid: 1114144 vs 32 [ 658.232983][T10174] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 658.244705][T10174] EXT4-fs (loop3): group descriptors corrupted! [ 658.280408][T10181] loop4: detected capacity change from 0 to 264192 [ 658.346800][T10186] FAULT_INJECTION: forcing a failure. [ 658.346800][T10186] name failslab, interval 1, probability 0, space 0, times 0 [ 658.359464][T10186] CPU: 0 PID: 10186 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 658.368215][T10186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.378252][T10186] Call Trace: [ 658.381514][T10186] dump_stack_lvl+0xd6/0x122 [ 658.386092][T10186] dump_stack+0x11/0x1b [ 658.390232][T10186] should_fail+0x23c/0x250 [ 658.394632][T10186] ? kmalloc_array+0x2d/0x40 [ 658.399233][T10186] __should_failslab+0x81/0x90 [ 658.403999][T10186] should_failslab+0x5/0x20 [ 658.408502][T10186] __kmalloc+0x6f/0x350 [ 658.412644][T10186] kmalloc_array+0x2d/0x40 [ 658.417048][T10186] iter_file_splice_write+0xd5/0x790 [ 658.422314][T10186] ? atime_needs_update+0x2ba/0x390 [ 658.427496][T10186] ? touch_atime+0xe0/0x250 [ 658.431982][T10186] ? generic_file_splice_read+0x2a9/0x330 [ 658.437686][T10186] ? splice_from_pipe+0xd0/0xd0 [ 658.442581][T10186] direct_splice_actor+0x80/0xa0 [ 658.447502][T10186] splice_direct_to_actor+0x345/0x650 [ 658.452861][T10186] ? do_splice_direct+0x190/0x190 [ 658.457876][T10186] do_splice_direct+0x106/0x190 [ 658.462715][T10186] do_sendfile+0x63e/0xbb0 [ 658.467192][T10186] __x64_sys_sendfile64+0x102/0x140 [ 658.472389][T10186] do_syscall_64+0x44/0xa0 [ 658.476804][T10186] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 658.482760][T10186] RIP: 0033:0x7fabf13d4709 [ 658.487164][T10186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 658.506754][T10186] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 658.515154][T10186] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 658.523197][T10186] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 658.531192][T10186] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 658.539146][T10186] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 658.547102][T10186] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 658.567081][T10181] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 658.577205][T10181] EXT4-fs (loop4): group descriptors corrupted! 22:22:26 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x6c00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:26 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20001200000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:26 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e000000130000", 0x7}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 658.749867][T10192] loop5: detected capacity change from 0 to 131456 [ 658.764984][T10198] loop3: detected capacity change from 0 to 264192 [ 658.779878][T10198] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 658.790067][T10198] EXT4-fs (loop3): group descriptors corrupted! [ 658.819138][T10208] loop4: detected capacity change from 0 to 264192 [ 658.832682][T10192] EXT4-fs (loop5): inodes count not valid: 1179680 vs 32 [ 658.840618][T10208] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 658.850767][T10208] EXT4-fs (loop4): group descriptors corrupted! [ 658.908239][T10212] loop2: detected capacity change from 0 to 131456 [ 658.918358][T10212] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 658.928484][T10212] EXT4-fs (loop2): group descriptors corrupted! 22:22:26 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7400000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 658.981090][T10218] loop3: detected capacity change from 0 to 264192 22:22:26 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 27) fallocate(r3, 0x0, 0x6, 0x0) [ 659.053547][T10218] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 659.063734][T10218] EXT4-fs (loop3): group descriptors corrupted! [ 659.078781][T10208] loop4: detected capacity change from 0 to 264192 [ 659.094301][T10192] loop5: detected capacity change from 0 to 131456 [ 659.107821][T10208] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 659.117949][T10208] EXT4-fs (loop4): group descriptors corrupted! 22:22:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:26 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20001400000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 659.163405][T10192] EXT4-fs (loop5): inodes count not valid: 1179680 vs 32 [ 659.249679][T10218] ================================================================== [ 659.257773][T10218] BUG: KCSAN: data-race in __lru_add_drain_all / lru_cache_add_inactive_or_unevictable [ 659.267405][T10218] [ 659.269718][T10218] write to 0xffff888237c22528 of 1 bytes by task 10237 on cpu 0: [ 659.277420][T10218] lru_cache_add_inactive_or_unevictable+0xaa/0x270 [ 659.284005][T10218] wp_page_copy+0x803/0x10a0 [ 659.288587][T10218] do_wp_page+0x5a8/0xba0 [ 659.292909][T10218] handle_mm_fault+0x96e/0x1580 [ 659.297747][T10218] do_user_addr_fault+0x609/0xbe0 [ 659.302756][T10218] exc_page_fault+0x91/0x220 [ 659.307331][T10218] asm_exc_page_fault+0x1e/0x30 [ 659.312180][T10218] __put_user_nocheck_4+0x3/0x11 [ 659.317105][T10218] ____sys_recvmsg+0x210/0x320 [ 659.321858][T10218] do_recvmmsg+0x3f5/0xae0 [ 659.326266][T10218] __x64_sys_recvmmsg+0xde/0x160 [ 659.331195][T10218] do_syscall_64+0x44/0xa0 [ 659.335608][T10218] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 659.341495][T10218] [ 659.343806][T10218] read to 0xffff888237c22528 of 1 bytes by task 10218 on cpu 1: [ 659.351416][T10218] __lru_add_drain_all+0x12c/0x3e0 [ 659.356524][T10218] lru_add_drain_all+0xc/0x10 [ 659.361206][T10218] invalidate_bdev+0x56/0x80 [ 659.365789][T10218] __loop_clr_fd+0x521/0x850 [ 659.370370][T10218] lo_ioctl+0xac5/0x13e0 [ 659.374614][T10218] blkdev_ioctl+0x1d0/0x3f0 [ 659.379102][T10218] block_ioctl+0x6e/0x80 [ 659.383329][T10218] __se_sys_ioctl+0xcb/0x140 [ 659.387909][T10218] __x64_sys_ioctl+0x3f/0x50 [ 659.392488][T10218] do_syscall_64+0x44/0xa0 [ 659.396902][T10218] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 659.402801][T10218] [ 659.405119][T10218] value changed: 0x09 -> 0x0a [ 659.409788][T10218] [ 659.412104][T10218] Reported by Kernel Concurrency Sanitizer on: [ 659.418246][T10218] CPU: 1 PID: 10218 Comm: syz-executor.3 Not tainted 5.15.0-rc2-syzkaller #0 [ 659.427012][T10218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 659.437069][T10218] ================================================================== [ 659.455464][T10242] loop4: detected capacity change from 0 to 264192 [ 659.462327][T10237] FAULT_INJECTION: forcing a failure. [ 659.462327][T10237] name failslab, interval 1, probability 0, space 0, times 0 [ 659.474949][T10237] CPU: 0 PID: 10237 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 659.483778][T10237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 659.493877][T10237] Call Trace: [ 659.497151][T10237] dump_stack_lvl+0xd6/0x122 [ 659.501818][T10237] dump_stack+0x11/0x1b [ 659.506041][T10237] should_fail+0x23c/0x250 [ 659.510462][T10237] __should_failslab+0x81/0x90 [ 659.515222][T10237] ? __iomap_dio_rw+0x139/0x1010 [ 659.520167][T10237] should_failslab+0x5/0x20 [ 659.524761][T10237] kmem_cache_alloc_trace+0x52/0x320 [ 659.530050][T10237] __iomap_dio_rw+0x139/0x1010 [ 659.534813][T10237] ? __ext4_mark_inode_dirty+0x502/0x5c0 [ 659.540450][T10237] ? ext4_dirty_inode+0x58/0xa0 [ 659.541757][T10218] loop3: detected capacity change from 0 to 264192 [ 659.545380][T10237] iomap_dio_rw+0x30/0x70 [ 659.556195][T10237] ? ext4_file_write_iter+0x521/0x11f0 [ 659.561739][T10237] ext4_file_write_iter+0xaa9/0x11f0 [ 659.567028][T10237] ? ext4_file_write_iter+0x521/0x11f0 [ 659.572498][T10237] do_iter_readv_writev+0x2de/0x380 [ 659.577691][T10237] do_iter_write+0x192/0x5c0 [ 659.582310][T10237] ? splice_from_pipe_next+0x34f/0x3b0 [ 659.587756][T10237] ? kmalloc_array+0x2d/0x40 [ 659.592371][T10237] vfs_iter_write+0x4c/0x70 [ 659.596928][T10237] iter_file_splice_write+0x43a/0x790 [ 659.602338][T10237] ? splice_from_pipe+0xd0/0xd0 [ 659.607170][T10237] direct_splice_actor+0x80/0xa0 [ 659.612091][T10237] splice_direct_to_actor+0x345/0x650 [ 659.617443][T10237] ? do_splice_direct+0x190/0x190 [ 659.622465][T10237] do_splice_direct+0x106/0x190 [ 659.627386][T10237] do_sendfile+0x63e/0xbb0 [ 659.631799][T10237] __x64_sys_sendfile64+0x102/0x140 [ 659.636982][T10237] do_syscall_64+0x44/0xa0 [ 659.641427][T10237] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 659.647317][T10237] RIP: 0033:0x7fabf13d4709 [ 659.651831][T10237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 659.671579][T10237] RSP: 002b:00007fabef12b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 659.680021][T10237] RAX: ffffffffffffffda RBX: 00007fabf14d9020 RCX: 00007fabf13d4709 [ 659.687980][T10237] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 659.695944][T10237] RBP: 00007fabef12b1d0 R08: 0000000000000000 R09: 0000000000000000 22:22:27 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e000000130000", 0x7}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 659.703898][T10237] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 659.711854][T10237] R13: 00007ffe202927cf R14: 00007fabef12b300 R15: 0000000000022000 22:22:27 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 659.774893][T10242] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 659.785041][T10242] EXT4-fs (loop4): group descriptors corrupted! [ 659.792678][T10253] loop5: detected capacity change from 0 to 131456 22:22:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20001b00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 659.816067][T10253] EXT4-fs (loop5): inodes count not valid: 1310752 vs 32 [ 659.823282][T10218] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 659.833396][T10218] EXT4-fs (loop3): group descriptors corrupted! [ 659.898155][T10266] loop2: detected capacity change from 0 to 131456 [ 659.905669][T10266] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 659.915769][T10266] EXT4-fs (loop2): group descriptors corrupted! 22:22:27 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 28) fallocate(r3, 0x0, 0x6, 0x0) [ 660.034808][T10273] loop4: detected capacity change from 0 to 264192 [ 660.081854][T10269] loop5: detected capacity change from 0 to 131456 [ 660.116421][T10273] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 660.126552][T10273] EXT4-fs (loop4): group descriptors corrupted! [ 660.159764][T10285] FAULT_INJECTION: forcing a failure. [ 660.159764][T10285] name failslab, interval 1, probability 0, space 0, times 0 [ 660.172419][T10285] CPU: 1 PID: 10285 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 660.181241][T10285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 660.191276][T10285] Call Trace: [ 660.194538][T10285] dump_stack_lvl+0xd6/0x122 [ 660.199118][T10285] dump_stack+0x11/0x1b [ 660.203258][T10285] should_fail+0x23c/0x250 [ 660.207702][T10285] ? kcalloc+0x32/0x50 [ 660.211798][T10285] __should_failslab+0x81/0x90 [ 660.216568][T10285] should_failslab+0x5/0x20 [ 660.221159][T10285] __kmalloc+0x6f/0x350 [ 660.225298][T10285] kcalloc+0x32/0x50 [ 660.229180][T10285] ext4_find_extent+0x21c/0x7f0 [ 660.234018][T10285] ? __queue_work+0x830/0xaa0 [ 660.238682][T10285] ext4_ext_map_blocks+0x115/0x1ff0 [ 660.243865][T10285] ? mod_delayed_work_on+0xa5/0xe0 [ 660.248962][T10285] ? ext4_es_lookup_extent+0x36b/0x490 [ 660.254404][T10285] ext4_map_blocks+0x71e/0xf00 [ 660.259243][T10285] ? crypto_shash_update+0x13c/0x1a0 [ 660.264592][T10285] ext4_iomap_begin+0x4b0/0x630 [ 660.269483][T10285] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 660.274670][T10285] iomap_iter+0x39c/0x470 [ 660.279037][T10285] __iomap_dio_rw+0x698/0x1010 [ 660.283864][T10285] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 660.289536][T10285] iomap_dio_rw+0x30/0x70 [ 660.293853][T10285] ? ext4_file_write_iter+0x521/0x11f0 [ 660.299298][T10285] ext4_file_write_iter+0xaa9/0x11f0 [ 660.304566][T10285] ? ext4_file_write_iter+0x521/0x11f0 [ 660.310024][T10285] do_iter_readv_writev+0x2de/0x380 [ 660.315286][T10285] do_iter_write+0x192/0x5c0 [ 660.319861][T10285] ? splice_from_pipe_next+0x34f/0x3b0 [ 660.325337][T10285] ? kmalloc_array+0x2d/0x40 [ 660.330050][T10285] vfs_iter_write+0x4c/0x70 [ 660.334538][T10285] iter_file_splice_write+0x43a/0x790 [ 660.339987][T10285] ? splice_from_pipe+0xd0/0xd0 [ 660.344819][T10285] direct_splice_actor+0x80/0xa0 [ 660.349741][T10285] splice_direct_to_actor+0x345/0x650 [ 660.355096][T10285] ? do_splice_direct+0x190/0x190 [ 660.360100][T10285] do_splice_direct+0x106/0x190 [ 660.364933][T10285] do_sendfile+0x63e/0xbb0 [ 660.369337][T10285] __x64_sys_sendfile64+0x102/0x140 [ 660.374536][T10285] do_syscall_64+0x44/0xa0 [ 660.378993][T10285] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 660.384873][T10285] RIP: 0033:0x7fabf13d4709 [ 660.389268][T10285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 660.408857][T10285] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 660.417253][T10285] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 660.425207][T10285] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 660.433161][T10285] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 660.441117][T10285] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 660.449077][T10285] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:27 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7a00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 660.558363][T10269] EXT4-fs (loop5): inodes count not valid: 1769504 vs 32 22:22:28 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e000000130000", 0x7}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:28 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1004000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 660.632556][T10269] loop5: detected capacity change from 0 to 131456 [ 660.676811][T10269] EXT4-fs (loop5): inodes count not valid: 1769504 vs 32 [ 660.706065][T10299] loop4: detected capacity change from 0 to 264192 [ 660.714672][T10297] loop3: detected capacity change from 0 to 264192 [ 660.754451][T10297] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 660.764599][T10297] EXT4-fs (loop3): group descriptors corrupted! [ 660.775010][T10299] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 660.785123][T10299] EXT4-fs (loop4): group descriptors corrupted! [ 660.822172][T10309] loop2: detected capacity change from 0 to 131456 [ 660.831896][T10309] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 660.841994][T10309] EXT4-fs (loop2): group descriptors corrupted! 22:22:28 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20002000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:28 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 29) fallocate(r3, 0x0, 0x6, 0x0) [ 661.076197][T10320] FAULT_INJECTION: forcing a failure. [ 661.076197][T10320] name failslab, interval 1, probability 0, space 0, times 0 [ 661.088913][T10320] CPU: 0 PID: 10320 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 661.097683][T10320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 661.107718][T10320] Call Trace: [ 661.111012][T10320] dump_stack_lvl+0xd6/0x122 [ 661.115665][T10320] dump_stack+0x11/0x1b [ 661.119804][T10320] should_fail+0x23c/0x250 [ 661.124206][T10320] ? ext4_mb_new_blocks+0x317/0x1fc0 [ 661.129470][T10320] __should_failslab+0x81/0x90 [ 661.134241][T10320] should_failslab+0x5/0x20 [ 661.138729][T10320] kmem_cache_alloc+0x4f/0x300 [ 661.143475][T10320] ext4_mb_new_blocks+0x317/0x1fc0 [ 661.148565][T10320] ? ext4_find_extent+0x7b2/0x7f0 [ 661.153649][T10320] ? ext4_ext_search_right+0x246/0x540 [ 661.159089][T10320] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 661.164357][T10320] ? ext4_es_lookup_extent+0x36b/0x490 [ 661.169813][T10320] ext4_map_blocks+0x71e/0xf00 [ 661.174636][T10320] ext4_iomap_begin+0x4b0/0x630 [ 661.179537][T10320] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 661.184790][T10320] iomap_iter+0x39c/0x470 [ 661.189147][T10320] __iomap_dio_rw+0x698/0x1010 [ 661.193900][T10320] iomap_dio_rw+0x30/0x70 [ 661.198293][T10320] ? ext4_file_write_iter+0x521/0x11f0 [ 661.203733][T10320] ext4_file_write_iter+0xaa9/0x11f0 [ 661.209059][T10320] ? ext4_file_write_iter+0x521/0x11f0 [ 661.214502][T10320] do_iter_readv_writev+0x2de/0x380 [ 661.219689][T10320] do_iter_write+0x192/0x5c0 [ 661.224286][T10320] ? splice_from_pipe_next+0x34f/0x3b0 [ 661.229793][T10320] ? kmalloc_array+0x2d/0x40 [ 661.234369][T10320] vfs_iter_write+0x4c/0x70 [ 661.238913][T10320] iter_file_splice_write+0x43a/0x790 [ 661.244269][T10320] ? splice_from_pipe+0xd0/0xd0 [ 661.249133][T10320] direct_splice_actor+0x80/0xa0 [ 661.254066][T10320] splice_direct_to_actor+0x345/0x650 [ 661.259420][T10320] ? do_splice_direct+0x190/0x190 [ 661.264430][T10320] do_splice_direct+0x106/0x190 [ 661.269263][T10320] do_sendfile+0x63e/0xbb0 [ 661.273665][T10320] __x64_sys_sendfile64+0x102/0x140 [ 661.278846][T10320] do_syscall_64+0x44/0xa0 [ 661.283251][T10320] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 661.289132][T10320] RIP: 0033:0x7fabf13d4709 [ 661.293526][T10320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 661.313124][T10320] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 661.321517][T10320] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 661.329473][T10320] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 661.337433][T10320] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 661.345389][T10320] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 661.353361][T10320] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:28 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1100000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:28 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e00000013000000", 0x8}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 661.519433][T10321] loop3: detected capacity change from 0 to 264192 [ 661.530458][T10321] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 661.540581][T10321] EXT4-fs (loop3): group descriptors corrupted! 22:22:29 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7fffffffffffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 661.574354][T10334] loop5: detected capacity change from 0 to 131456 [ 661.590684][T10338] loop4: detected capacity change from 0 to 264192 [ 661.649021][T10348] loop3: detected capacity change from 0 to 264192 [ 661.689055][T10350] loop2: detected capacity change from 0 to 131456 [ 661.698459][T10350] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 661.708588][T10350] EXT4-fs (loop2): group descriptors corrupted! [ 661.717846][T10334] EXT4-fs (loop5): inodes count not valid: 2097184 vs 32 [ 661.737964][T10338] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 661.748093][T10338] EXT4-fs (loop4): group descriptors corrupted! 22:22:29 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 30) fallocate(r3, 0x0, 0x6, 0x0) [ 661.821324][T10348] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 661.831492][T10348] EXT4-fs (loop3): group descriptors corrupted! 22:22:29 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20102000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:29 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x85ffffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 661.920344][T10364] loop5: detected capacity change from 0 to 131456 [ 661.945977][T10338] loop4: detected capacity change from 0 to 264192 22:22:29 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='.\x00', 0x0, 0x110096, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000c80)=ANY=[@ANYRES64=0x0, @ANYBLOB="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"]) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r5}, {0x0, r5}, {r4}, {}, {r4}, {}, {}, {0x0, r5}, {}, {r4}, {}, {}, {r3, r5}, {0x0, r5}, {}, {0x0, r5}, {0x0, r5}, {}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {}, {}, {}, {r4}, {}, {}, {r4}, {0x0, r5}, {r3, r5}, {}, {}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {}, {0x0, r5}, {}, {r3}, {0x0, r5}, {r3}, {}, {}, {}, {}, {0x0, r5}, {}, {0x0, r5}, {}, {0x0, r5}, {0x0, r5}, {}, {}, {}, {0x0, r5}, {r4}, {r3, r5}, {}, {}, {}, {}, {0x0, r5}, {0x0, r5}, {r4}, {r3}, {}, {}, {}, {0x0, r5}, {}, {}, {}, {0x0, r5}, {r3}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r3, r5}, {}, {}, {0x0, r5}, {}, {r3}, {0x0, r5}, {}, {r4}, {r3, r5}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {r3}, {0x0, r5}, {}, {0x0, r5}, {0x0, r5}, {}, {}, {r3}, {r4}, {}, {r3, r5}, {}, {}, {}, {r3}, {r3, r5}, {}, {}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {}, {}, {r3, r5}, {}, {r4, r5}, {r3, r5}, {r4, r5}, {}, {}, {}, {}, {}, {0x0, r5}, {r3}, {0x0, r5}, {r4}, {0x0, 0x0}, {0x0, r5}, {r4}, {0x0, r5}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {}, {}, {}, {}, {0x0, r5}, {}, {r4}, {}, {}, {}, {r4}, {0x0, r5}, {}, {}, {}, {}, {0x0, r5}, {r3, r5}, {r4}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {r3}, {0x0, r5}, {r3}, {0x0, r5}, {0x0, r5}, {}, {}, {}, {r4}, {r3}, {}, {}, {r3}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {}, {r4, r5}, {r3, r5}, {r4}, {r4, r5}, {}, {r6}, {r3, 0x0}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {}, {r4}, {r4}, {}, {}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r3}, {}, {0x0, r5}, {}, {}, {r4}, {r3}, {0x0, r5}, {r3}, {r4, r5}, {r3, r5}, {r4, r5}, {r4}, {}, {}, {}, {r4}, {r3}, {0x0, r5}, {}, {0x0, r5}, {r4}, {}, {r3}, {0x0, r5}, {r4, r5}, {r4}, {}, {}, {}, {}, {0x0, r5}], 0x0, "2156816c73038c"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001480)={0x0, r4, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000005ab40)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000005ad40)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005af40)={0xb7, [{}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4, r11}, {}, {0x0, r12}], 0x80, "0777b0289767f8"}) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 661.991237][T10378] loop1: detected capacity change from 0 to 131456 [ 662.004104][T10338] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 662.014368][T10338] EXT4-fs (loop4): group descriptors corrupted! [ 662.042118][T10382] FAULT_INJECTION: forcing a failure. [ 662.042118][T10382] name failslab, interval 1, probability 0, space 0, times 0 [ 662.054784][T10382] CPU: 1 PID: 10382 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 662.063535][T10382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 662.073573][T10382] Call Trace: [ 662.076836][T10382] dump_stack_lvl+0xd6/0x122 [ 662.081420][T10382] dump_stack+0x11/0x1b [ 662.085567][T10382] should_fail+0x23c/0x250 [ 662.089967][T10382] ? __es_insert_extent+0x51f/0xe70 [ 662.095148][T10382] __should_failslab+0x81/0x90 [ 662.099899][T10382] should_failslab+0x5/0x20 [ 662.104391][T10382] kmem_cache_alloc+0x4f/0x300 [ 662.109150][T10382] __es_insert_extent+0x51f/0xe70 [ 662.114158][T10382] ext4_es_insert_extent+0x1cb/0x1950 [ 662.119619][T10382] ext4_map_blocks+0xa5d/0xf00 [ 662.124369][T10382] ext4_iomap_begin+0x4b0/0x630 [ 662.129281][T10382] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 662.134490][T10382] iomap_iter+0x39c/0x470 [ 662.138807][T10382] __iomap_dio_rw+0x698/0x1010 [ 662.143560][T10382] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 662.149181][T10382] iomap_dio_rw+0x30/0x70 [ 662.153511][T10382] ? ext4_file_write_iter+0x521/0x11f0 [ 662.158954][T10382] ext4_file_write_iter+0xaa9/0x11f0 [ 662.164280][T10382] ? ext4_file_write_iter+0x521/0x11f0 [ 662.169720][T10382] do_iter_readv_writev+0x2de/0x380 [ 662.174905][T10382] do_iter_write+0x192/0x5c0 [ 662.179544][T10382] ? splice_from_pipe_next+0x34f/0x3b0 [ 662.184986][T10382] ? kmalloc_array+0x2d/0x40 [ 662.189566][T10382] vfs_iter_write+0x4c/0x70 [ 662.194133][T10382] iter_file_splice_write+0x43a/0x790 [ 662.199544][T10382] ? splice_from_pipe+0xd0/0xd0 [ 662.204378][T10382] direct_splice_actor+0x80/0xa0 [ 662.209367][T10382] splice_direct_to_actor+0x345/0x650 [ 662.214725][T10382] ? do_splice_direct+0x190/0x190 [ 662.219733][T10382] do_splice_direct+0x106/0x190 [ 662.224567][T10382] do_sendfile+0x63e/0xbb0 [ 662.228970][T10382] __x64_sys_sendfile64+0x102/0x140 [ 662.234173][T10382] do_syscall_64+0x44/0xa0 [ 662.238690][T10382] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 662.244598][T10382] RIP: 0033:0x7fabf13d4709 [ 662.248995][T10382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 662.268649][T10382] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 662.277055][T10382] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 662.285113][T10382] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 662.293068][T10382] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 662.301100][T10382] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 662.309052][T10382] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 662.347800][T10375] loop3: detected capacity change from 0 to 264192 22:22:29 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e00000013000000", 0x8}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 662.404618][T10375] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 662.414743][T10375] EXT4-fs (loop3): group descriptors corrupted! 22:22:29 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0xad0002, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000380)={0x0, 0x0}) prlimit64(r0, 0x5, &(0x7f00000001c0)={0x163, 0x4}, &(0x7f00000002c0)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r1, r2, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:29 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1200000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 662.488065][T10364] EXT4-fs (loop5): inodes count not valid: 2101280 vs 32 [ 662.519980][T10375] loop3: detected capacity change from 0 to 264192 [ 662.529169][T10400] loop1: detected capacity change from 0 to 131456 [ 662.532343][T10402] loop4: detected capacity change from 0 to 264192 [ 662.559117][T10375] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 662.569261][T10375] EXT4-fs (loop3): group descriptors corrupted! [ 662.575858][T10402] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 662.585923][T10402] EXT4-fs (loop4): group descriptors corrupted! [ 662.609007][T10410] loop2: detected capacity change from 0 to 131456 [ 662.620399][T10410] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 662.630491][T10410] EXT4-fs (loop2): group descriptors corrupted! 22:22:30 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:30 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8cffffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:30 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20002200000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:30 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1400000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:30 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 31) fallocate(r3, 0x0, 0x6, 0x0) 22:22:30 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20002500000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 662.778258][T10418] loop5: detected capacity change from 0 to 131456 [ 662.803890][T10418] EXT4-fs (loop5): inodes count not valid: 2228256 vs 32 [ 662.821309][T10417] loop1: detected capacity change from 0 to 131456 [ 662.848341][T10439] loop3: detected capacity change from 0 to 264192 [ 662.852254][T10440] loop4: detected capacity change from 0 to 264192 [ 662.857769][T10439] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 662.871543][T10439] EXT4-fs (loop3): group descriptors corrupted! [ 662.881053][T10440] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 662.891152][T10440] EXT4-fs (loop4): group descriptors corrupted! [ 662.920713][T10417] loop1: detected capacity change from 0 to 131456 [ 662.927527][T10442] loop5: detected capacity change from 0 to 131456 [ 662.937355][T10447] FAULT_INJECTION: forcing a failure. [ 662.937355][T10447] name failslab, interval 1, probability 0, space 0, times 0 [ 662.949980][T10447] CPU: 1 PID: 10447 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 662.958759][T10447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 662.968850][T10447] Call Trace: [ 662.972112][T10447] dump_stack_lvl+0xd6/0x122 [ 662.976753][T10447] dump_stack+0x11/0x1b [ 662.980902][T10447] should_fail+0x23c/0x250 [ 662.985304][T10447] ? ext4_mb_new_blocks+0x73f/0x1fc0 [ 662.990577][T10447] __should_failslab+0x81/0x90 [ 662.995340][T10447] should_failslab+0x5/0x20 [ 662.999834][T10447] kmem_cache_alloc+0x4f/0x300 [ 663.004582][T10447] ext4_mb_new_blocks+0x73f/0x1fc0 [ 663.009677][T10447] ? ext4_find_extent+0x7b2/0x7f0 [ 663.014693][T10447] ? ext4_ext_search_right+0x246/0x540 [ 663.020136][T10447] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 663.025407][T10447] ? ext4_es_lookup_extent+0x36b/0x490 [ 663.030848][T10447] ext4_map_blocks+0x71e/0xf00 [ 663.035596][T10447] ext4_iomap_begin+0x4b0/0x630 [ 663.040496][T10447] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 663.045679][T10447] iomap_iter+0x39c/0x470 [ 663.050012][T10447] __iomap_dio_rw+0x698/0x1010 [ 663.054766][T10447] iomap_dio_rw+0x30/0x70 [ 663.059122][T10447] ? ext4_file_write_iter+0x521/0x11f0 [ 663.064562][T10447] ext4_file_write_iter+0xaa9/0x11f0 [ 663.069842][T10447] ? ext4_file_write_iter+0x521/0x11f0 [ 663.075284][T10447] do_iter_readv_writev+0x2de/0x380 [ 663.080470][T10447] do_iter_write+0x192/0x5c0 [ 663.085100][T10447] ? splice_from_pipe_next+0x34f/0x3b0 [ 663.090540][T10447] ? kmalloc_array+0x2d/0x40 [ 663.095140][T10447] vfs_iter_write+0x4c/0x70 [ 663.099627][T10447] iter_file_splice_write+0x43a/0x790 [ 663.104980][T10447] ? splice_from_pipe+0xd0/0xd0 [ 663.109816][T10447] direct_splice_actor+0x80/0xa0 [ 663.114736][T10447] splice_direct_to_actor+0x345/0x650 [ 663.120149][T10447] ? do_splice_direct+0x190/0x190 [ 663.125153][T10447] do_splice_direct+0x106/0x190 [ 663.129984][T10447] do_sendfile+0x63e/0xbb0 [ 663.134407][T10447] __x64_sys_sendfile64+0x102/0x140 [ 663.139611][T10447] do_syscall_64+0x44/0xa0 [ 663.144014][T10447] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 663.149919][T10447] RIP: 0033:0x7fabf13d4709 [ 663.154322][T10447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 663.173912][T10447] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 663.182303][T10447] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 663.190299][T10447] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 663.198257][T10447] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 663.206208][T10447] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 663.214184][T10447] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:30 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f511, &(0x7f00000002c0)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) r2 = gettid() tkill(r2, 0x7) io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0) sched_setattr(r2, &(0x7f00000001c0)={0x38, 0x1, 0x30, 0x8, 0x1d, 0x400008000, 0x5, 0xbd22, 0x5, 0xffff}, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 663.287064][T10442] EXT4-fs (loop5): inodes count not valid: 2424864 vs 32 22:22:30 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)="2e00000013000000", 0x8}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 663.330632][T10439] loop3: detected capacity change from 0 to 264192 [ 663.337608][T10440] loop4: detected capacity change from 0 to 264192 [ 663.337856][T10439] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 663.354243][T10439] EXT4-fs (loop3): group descriptors corrupted! [ 663.364683][T10440] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! 22:22:30 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 663.369852][T10458] loop1: detected capacity change from 0 to 131456 [ 663.374798][T10440] EXT4-fs (loop4): group descriptors corrupted! [ 663.422239][T10442] loop5: detected capacity change from 0 to 131456 22:22:30 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x97ffffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 663.486138][T10442] EXT4-fs (loop5): inodes count not valid: 2424864 vs 32 [ 663.496055][T10483] loop2: detected capacity change from 0 to 131456 [ 663.505849][T10483] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 663.517339][T10483] EXT4-fs (loop2): group descriptors corrupted! [ 663.539521][T10487] loop3: detected capacity change from 0 to 264192 [ 663.548776][T10487] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 663.558914][T10487] EXT4-fs (loop3): group descriptors corrupted! 22:22:31 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 32) fallocate(r3, 0x0, 0x6, 0x0) [ 663.602594][T10494] loop4: detected capacity change from 0 to 264192 22:22:31 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) open(&(0x7f00000001c0)='./bus\x00', 0x80300, 0x80) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:31 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20002e00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 663.670253][T10494] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 663.678891][T10487] loop3: detected capacity change from 0 to 264192 [ 663.680366][T10494] EXT4-fs (loop4): group descriptors corrupted! [ 663.741105][T10494] loop4: detected capacity change from 0 to 264192 [ 663.756624][T10487] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 663.763762][T10494] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 663.766725][T10487] EXT4-fs (loop3): group descriptors corrupted! [ 663.776806][T10494] EXT4-fs (loop4): group descriptors corrupted! 22:22:31 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbe00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 663.785990][T10521] loop1: detected capacity change from 0 to 131456 [ 663.802639][T10515] loop5: detected capacity change from 0 to 131456 [ 663.848108][T10525] FAULT_INJECTION: forcing a failure. [ 663.848108][T10525] name failslab, interval 1, probability 0, space 0, times 0 [ 663.860770][T10525] CPU: 1 PID: 10525 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 663.869519][T10525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 663.879556][T10525] Call Trace: [ 663.882822][T10525] dump_stack_lvl+0xd6/0x122 [ 663.887465][T10525] dump_stack+0x11/0x1b [ 663.891605][T10525] should_fail+0x23c/0x250 [ 663.896078][T10525] ? mempool_alloc_slab+0x16/0x20 [ 663.901129][T10525] __should_failslab+0x81/0x90 [ 663.905876][T10525] should_failslab+0x5/0x20 [ 663.910366][T10525] kmem_cache_alloc+0x4f/0x300 [ 663.915116][T10525] mempool_alloc_slab+0x16/0x20 [ 663.919948][T10525] ? mempool_free+0x130/0x130 [ 663.924644][T10525] mempool_alloc+0x9d/0x310 [ 663.929127][T10525] ? crypto_shash_update+0x13c/0x1a0 [ 663.934394][T10525] sg_pool_alloc+0x74/0x90 [ 663.938797][T10525] __sg_alloc_table+0xce/0x290 [ 663.943546][T10525] sg_alloc_table_chained+0xaf/0x140 [ 663.948862][T10525] ? sg_alloc_table_chained+0x140/0x140 [ 663.954392][T10525] scsi_alloc_sgtables+0x184/0x510 [ 663.959491][T10525] sd_init_command+0x952/0x1610 [ 663.964327][T10525] scsi_queue_rq+0x10cd/0x15a0 [ 663.969080][T10525] blk_mq_dispatch_rq_list+0x63b/0x1080 [ 663.974636][T10525] blk_mq_do_dispatch_sched+0x3b5/0x640 [ 663.980162][T10525] __blk_mq_sched_dispatch_requests+0x1eb/0x290 [ 663.986445][T10525] ? rb_insert_color+0x2fa/0x310 [ 663.991372][T10525] blk_mq_sched_dispatch_requests+0x9f/0x110 [ 663.997333][T10525] __blk_mq_run_hw_queue+0xbc/0x140 [ 664.002544][T10525] __blk_mq_delay_run_hw_queue+0x163/0x2f0 [ 664.008336][T10525] blk_mq_run_hw_queue+0x22c/0x250 [ 664.013485][T10525] blk_mq_sched_insert_requests+0x12b/0x1f0 [ 664.019363][T10525] blk_mq_flush_plug_list+0x302/0x3d0 [ 664.024726][T10525] blk_flush_plug_list+0x235/0x260 [ 664.029826][T10525] blk_finish_plug+0x44/0x60 [ 664.034403][T10525] __iomap_dio_rw+0xca7/0x1010 [ 664.039158][T10525] iomap_dio_rw+0x30/0x70 [ 664.043475][T10525] ? ext4_file_write_iter+0x521/0x11f0 [ 664.048930][T10525] ext4_file_write_iter+0xaa9/0x11f0 [ 664.054199][T10525] ? ext4_file_write_iter+0x521/0x11f0 [ 664.059668][T10525] do_iter_readv_writev+0x2de/0x380 [ 664.064948][T10525] do_iter_write+0x192/0x5c0 [ 664.069547][T10525] ? splice_from_pipe_next+0x34f/0x3b0 [ 664.074988][T10525] ? kmalloc_array+0x2d/0x40 [ 664.079584][T10525] vfs_iter_write+0x4c/0x70 [ 664.084191][T10525] iter_file_splice_write+0x43a/0x790 [ 664.089558][T10525] ? splice_from_pipe+0xd0/0xd0 [ 664.094458][T10525] direct_splice_actor+0x80/0xa0 [ 664.099377][T10525] splice_direct_to_actor+0x345/0x650 [ 664.104731][T10525] ? do_splice_direct+0x190/0x190 [ 664.109736][T10525] do_splice_direct+0x106/0x190 [ 664.114575][T10525] do_sendfile+0x63e/0xbb0 [ 664.118976][T10525] __x64_sys_sendfile64+0x102/0x140 [ 664.124160][T10525] do_syscall_64+0x44/0xa0 [ 664.128594][T10525] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 664.134477][T10525] RIP: 0033:0x7fabf13d4709 [ 664.138876][T10525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 664.158467][T10525] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 664.166859][T10525] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 664.174810][T10525] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 664.182760][T10525] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 664.190721][T10525] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 22:22:31 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xbf00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 664.198684][T10525] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:31 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:31 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xdaffffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:31 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:31 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe2f3fbd300000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 664.325626][T10515] EXT4-fs (loop5): inodes count not valid: 3014688 vs 32 22:22:31 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x1f, 0x3, &(0x7f0000000300), 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) 22:22:31 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2010000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 664.399607][T10515] loop5: detected capacity change from 0 to 131456 [ 664.449091][T10556] loop3: detected capacity change from 0 to 264192 [ 664.466322][T10556] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 664.476425][T10556] EXT4-fs (loop3): group descriptors corrupted! [ 664.486850][T10515] EXT4-fs (loop5): inodes count not valid: 3014688 vs 32 [ 664.494621][T10560] loop2: detected capacity change from 0 to 131456 [ 664.503997][T10560] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 22:22:32 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20033e00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:32 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 33) fallocate(r3, 0x0, 0x6, 0x0) [ 664.644509][T10556] loop3: detected capacity change from 0 to 264192 [ 664.672191][T10556] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 664.681879][T10578] loop4: detected capacity change from 0 to 264192 [ 664.682334][T10556] EXT4-fs (loop3): group descriptors corrupted! [ 664.692844][T10578] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 664.705076][T10578] EXT4-fs (loop4): group descriptors corrupted! [ 664.728107][T10585] loop5: detected capacity change from 0 to 131456 [ 664.737225][T10585] EXT4-fs (loop5): inodes count not valid: 4064032 vs 32 [ 664.862804][T10584] FAULT_INJECTION: forcing a failure. [ 664.862804][T10584] name failslab, interval 1, probability 0, space 0, times 0 [ 664.875429][T10584] CPU: 1 PID: 10584 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 664.884220][T10584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 664.894266][T10584] Call Trace: [ 664.897550][T10584] dump_stack_lvl+0xd6/0x122 [ 664.902174][T10584] dump_stack+0x11/0x1b [ 664.906329][T10584] should_fail+0x23c/0x250 [ 664.910726][T10584] ? mempool_alloc_slab+0x16/0x20 [ 664.915793][T10584] __should_failslab+0x81/0x90 [ 664.920612][T10584] should_failslab+0x5/0x20 [ 664.925164][T10584] kmem_cache_alloc+0x4f/0x300 [ 664.929910][T10584] mempool_alloc_slab+0x16/0x20 [ 664.934771][T10584] ? mempool_free+0x130/0x130 [ 664.939431][T10584] mempool_alloc+0x9d/0x310 [ 664.943913][T10584] ? __getblk_gfp+0x3f/0x590 [ 664.948553][T10584] bio_alloc_bioset+0xcc/0x530 [ 664.953362][T10584] ? __ext4_get_inode_loc+0x760/0x8c0 [ 664.958720][T10584] submit_bh_wbc+0x130/0x330 [ 664.963294][T10584] __sync_dirty_buffer+0x136/0x1e0 [ 664.968391][T10584] sync_dirty_buffer+0x16/0x20 [ 664.973138][T10584] ext4_write_inode+0x2ad/0x3c0 [ 664.977973][T10584] write_inode+0x89/0x180 [ 664.982287][T10584] __writeback_single_inode+0x2a2/0x440 [ 664.987825][T10584] writeback_single_inode+0x17b/0x3e0 [ 664.993183][T10584] sync_inode_metadata+0x57/0x80 [ 664.998120][T10584] ext4_sync_file+0x359/0x670 [ 665.002808][T10584] ? tsan.module_ctor+0x10/0x10 [ 665.007642][T10584] vfs_fsync_range+0x107/0x120 [ 665.012391][T10584] iomap_dio_complete+0x2d5/0x3c0 [ 665.017402][T10584] iomap_dio_rw+0x4e/0x70 [ 665.021718][T10584] ? ext4_file_write_iter+0x521/0x11f0 [ 665.027160][T10584] ext4_file_write_iter+0xaa9/0x11f0 [ 665.032426][T10584] ? ext4_file_write_iter+0x521/0x11f0 [ 665.037868][T10584] do_iter_readv_writev+0x2de/0x380 [ 665.043056][T10584] do_iter_write+0x192/0x5c0 [ 665.047631][T10584] ? splice_from_pipe_next+0x34f/0x3b0 [ 665.053072][T10584] ? kmalloc_array+0x2d/0x40 [ 665.057701][T10584] vfs_iter_write+0x4c/0x70 [ 665.062208][T10584] iter_file_splice_write+0x43a/0x790 [ 665.067566][T10584] ? splice_from_pipe+0xd0/0xd0 [ 665.072398][T10584] direct_splice_actor+0x80/0xa0 [ 665.077324][T10584] splice_direct_to_actor+0x345/0x650 [ 665.082678][T10584] ? do_splice_direct+0x190/0x190 [ 665.087685][T10584] do_splice_direct+0x106/0x190 [ 665.092516][T10584] do_sendfile+0x63e/0xbb0 [ 665.096995][T10584] __x64_sys_sendfile64+0x102/0x140 [ 665.102181][T10584] do_syscall_64+0x44/0xa0 [ 665.106588][T10584] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 665.112546][T10584] RIP: 0033:0x7fabf13d4709 [ 665.116943][T10584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 665.136534][T10584] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 665.144927][T10584] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 665.152879][T10584] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 22:22:32 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf6ffffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 665.160923][T10584] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 665.168875][T10584] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 665.176838][T10584] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 [ 665.192624][T10585] loop5: detected capacity change from 0 to 131456 22:22:32 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f00000000010000000100000000000000", 0x54, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='/proc/self/exe\x00', 0x80, 0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000040)) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) [ 665.213518][T10578] loop4: detected capacity change from 0 to 264192 [ 665.252162][T10585] EXT4-fs (loop5): inodes count not valid: 4064032 vs 32 22:22:32 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 665.260406][T10578] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 665.270547][T10578] EXT4-fs (loop4): group descriptors corrupted! [ 665.286428][T10606] loop3: detected capacity change from 0 to 264192 [ 665.294905][T10608] loop1: detected capacity change from 0 to 131456 [ 665.312930][T10606] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 665.323044][T10606] EXT4-fs (loop3): group descriptors corrupted! 22:22:32 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2200000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:32 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20003f00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 665.390896][T10623] loop2: detected capacity change from 0 to 131456 [ 665.399967][T10623] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 22:22:32 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 34) fallocate(r3, 0x0, 0x6, 0x0) 22:22:32 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0x0, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0xe463, 0x9}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000240)="390000001300110468fe0700000000000000ff3f020000003b0a0001000000000e002b000a00020014a4ee", 0x2b}], 0x1) sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x6, 0x20000012, 0xb, 0x800, 0xffffffffffff05bd, 0x5, 0x7dbb00000, 0x0, 0xdb6}, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x2, 0x65, 0x4, 0x20, 0xfff, 0x11, 0x0, 0x6, 0x7}, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, &(0x7f00000007c0)={{'\x00', 0x3}, {0x181d}, 0x2, 0x0, 0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)="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", 0x195, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x1cd}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000880)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001010000000040005679ea5fa98c4ad27e5052d3c1a06666d59401c5a3ce7b29d6356e3ec577715117f339fd63db836090731b00b02674970472fb90bc727dd144e3b1efcacf3572dd288fb80462f34a9f5f8d", 0x9f, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {0x0, 0x0, 0x8c80}], 0x2000, 0x0) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x0) getrlimit(0x9, &(0x7f0000000100)) sendfile(r0, r1, 0x0, 0x80001d00c0d0) fallocate(0xffffffffffffffff, 0x0, 0x6, 0x280407) sched_setattr(0x0, &(0x7f00000002c0)={0x38, 0x0, 0x68, 0xfff, 0x0, 0x80, 0x4, 0x8000, 0x80000000}, 0x0) 22:22:32 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xf9fdffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 665.559870][T10631] loop4: detected capacity change from 0 to 264192 [ 665.570269][T10631] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 665.580543][T10631] EXT4-fs (loop4): group descriptors corrupted! [ 665.584923][T10641] loop5: detected capacity change from 0 to 131456 [ 665.637551][T10641] EXT4-fs (loop5): inodes count not valid: 4128800 vs 32 [ 665.648158][T10650] loop1: detected capacity change from 0 to 131456 [ 665.662970][T10651] loop3: detected capacity change from 0 to 264192 [ 665.674119][T10651] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 665.684309][T10651] EXT4-fs (loop3): group descriptors corrupted! [ 665.711298][T10657] FAULT_INJECTION: forcing a failure. [ 665.711298][T10657] name failslab, interval 1, probability 0, space 0, times 0 [ 665.723968][T10657] CPU: 1 PID: 10657 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 665.732719][T10657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 665.742755][T10657] Call Trace: [ 665.746016][T10657] dump_stack_lvl+0xd6/0x122 [ 665.750593][T10657] dump_stack+0x11/0x1b [ 665.754785][T10657] should_fail+0x23c/0x250 [ 665.759268][T10657] ? kmalloc_array+0x2d/0x40 [ 665.763891][T10657] __should_failslab+0x81/0x90 [ 665.768655][T10657] should_failslab+0x5/0x20 [ 665.773145][T10657] __kmalloc+0x6f/0x350 [ 665.777294][T10657] kmalloc_array+0x2d/0x40 [ 665.781776][T10657] iter_file_splice_write+0xd5/0x790 [ 665.787117][T10657] ? atime_needs_update+0x2ba/0x390 [ 665.792294][T10657] ? touch_atime+0xe0/0x250 [ 665.796780][T10657] ? generic_file_splice_read+0x2a9/0x330 [ 665.802481][T10657] ? splice_from_pipe+0xd0/0xd0 [ 665.807378][T10657] direct_splice_actor+0x80/0xa0 [ 665.812308][T10657] splice_direct_to_actor+0x345/0x650 [ 665.817691][T10657] ? do_splice_direct+0x190/0x190 [ 665.822767][T10657] do_splice_direct+0x106/0x190 [ 665.827600][T10657] do_sendfile+0x63e/0xbb0 [ 665.832004][T10657] __x64_sys_sendfile64+0x102/0x140 [ 665.837188][T10657] do_syscall_64+0x44/0xa0 [ 665.841628][T10657] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 665.847553][T10657] RIP: 0033:0x7fabf13d4709 [ 665.851950][T10657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 665.871536][T10657] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 665.879943][T10657] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 665.887898][T10657] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 665.895904][T10657] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 665.903856][T10657] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 665.911804][T10657] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:33 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20033f00000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:33 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfdfdffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 666.052267][T10651] loop3: detected capacity change from 0 to 264192 [ 666.060119][T10631] loop4: detected capacity change from 0 to 264192 [ 666.060154][T10651] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.067423][T10631] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.076704][T10651] EXT4-fs (loop3): group descriptors corrupted! [ 666.093015][T10631] EXT4-fs (loop4): group descriptors corrupted! 22:22:33 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x2, &(0x7f0000000300)=[{&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) [ 666.128566][T10673] loop5: detected capacity change from 0 to 131456 [ 666.138387][T10676] loop3: detected capacity change from 0 to 264192 [ 666.153781][T10676] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.162154][T10650] loop1: detected capacity change from 0 to 131456 [ 666.163910][T10676] EXT4-fs (loop3): group descriptors corrupted! 22:22:33 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfdffffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:33 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2500000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 666.172591][T10673] EXT4-fs (loop5): inodes count not valid: 4129568 vs 32 [ 666.208675][T10691] loop4: detected capacity change from 0 to 264192 [ 666.217405][T10691] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.227510][T10691] EXT4-fs (loop4): group descriptors corrupted! 22:22:33 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7400000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 666.284933][T10698] loop2: detected capacity change from 0 to 131456 [ 666.310517][T10698] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 666.320845][T10673] loop5: detected capacity change from 0 to 131456 [ 666.331564][T10673] EXT4-fs (loop5): inodes count not valid: 4129568 vs 32 [ 666.346259][T10706] loop3: detected capacity change from 0 to 264192 [ 666.355588][T10706] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.365686][T10706] EXT4-fs (loop3): group descriptors corrupted! 22:22:33 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 35) fallocate(r3, 0x0, 0x6, 0x0) 22:22:33 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20004000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 666.444090][T10722] loop1: detected capacity change from 0 to 264192 [ 666.447081][T10691] loop4: detected capacity change from 0 to 264192 [ 666.459872][T10706] loop3: detected capacity change from 0 to 264192 [ 666.468508][T10722] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.478665][T10722] EXT4-fs (loop1): group descriptors corrupted! [ 666.486016][T10706] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.496155][T10706] EXT4-fs (loop3): group descriptors corrupted! [ 666.502610][T10734] loop5: detected capacity change from 0 to 131456 [ 666.510505][T10691] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.520613][T10691] EXT4-fs (loop4): group descriptors corrupted! [ 666.554968][T10734] EXT4-fs (loop5): inodes count not valid: 4194336 vs 32 [ 666.572919][T10742] FAULT_INJECTION: forcing a failure. [ 666.572919][T10742] name failslab, interval 1, probability 0, space 0, times 0 [ 666.585545][T10742] CPU: 0 PID: 10742 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 666.594300][T10742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 666.604336][T10742] Call Trace: [ 666.607595][T10742] dump_stack_lvl+0xd6/0x122 [ 666.612175][T10742] dump_stack+0x11/0x1b [ 666.616334][T10742] should_fail+0x23c/0x250 [ 666.620733][T10742] ? kmalloc_array+0x2d/0x40 [ 666.625337][T10742] __should_failslab+0x81/0x90 [ 666.630086][T10742] should_failslab+0x5/0x20 [ 666.634575][T10742] __kmalloc+0x6f/0x350 [ 666.638740][T10742] kmalloc_array+0x2d/0x40 [ 666.643174][T10742] iter_file_splice_write+0xd5/0x790 [ 666.648516][T10742] ? atime_needs_update+0x2ba/0x390 [ 666.653704][T10742] ? touch_atime+0xe0/0x250 [ 666.658225][T10742] ? generic_file_splice_read+0x2a9/0x330 [ 666.663972][T10742] ? splice_from_pipe+0xd0/0xd0 [ 666.668804][T10742] direct_splice_actor+0x80/0xa0 [ 666.673804][T10742] splice_direct_to_actor+0x345/0x650 [ 666.679181][T10742] ? do_splice_direct+0x190/0x190 [ 666.684195][T10742] do_splice_direct+0x106/0x190 [ 666.689031][T10742] do_sendfile+0x63e/0xbb0 [ 666.693435][T10742] __x64_sys_sendfile64+0x102/0x140 [ 666.698620][T10742] do_syscall_64+0x44/0xa0 [ 666.703026][T10742] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 666.708941][T10742] RIP: 0033:0x7fabf13d4709 [ 666.713336][T10742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 666.734923][T10742] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 666.743399][T10742] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 666.751352][T10742] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 666.759383][T10742] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 666.767336][T10742] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 666.775327][T10742] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:34 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfeffffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:34 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010400)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:34 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2e00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 666.928837][T10749] loop3: detected capacity change from 0 to 264192 [ 666.949896][T10749] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 666.960004][T10749] EXT4-fs (loop3): group descriptors corrupted! [ 666.969855][T10734] loop5: detected capacity change from 0 to 131456 22:22:34 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:34 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20034000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 667.023917][T10734] EXT4-fs (loop5): inodes count not valid: 4194336 vs 32 [ 667.040148][T10765] loop4: detected capacity change from 0 to 264192 [ 667.049180][T10749] loop3: detected capacity change from 0 to 264192 [ 667.093214][T10765] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 667.103350][T10765] EXT4-fs (loop4): group descriptors corrupted! [ 667.110238][T10773] loop1: detected capacity change from 0 to 131456 [ 667.118878][T10773] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 667.129043][T10773] EXT4-fs (loop1): group descriptors corrupted! 22:22:34 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 36) fallocate(r3, 0x0, 0x6, 0x0) [ 667.277571][T10777] loop2: detected capacity change from 0 to 131456 [ 667.309341][T10777] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 667.346994][T10749] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 667.357199][T10749] EXT4-fs (loop3): group descriptors corrupted! [ 667.396812][T10765] loop4: detected capacity change from 0 to 264192 22:22:34 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfeffffffffffffff, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:34 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xff0f000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 667.460901][T10765] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 667.471027][T10765] EXT4-fs (loop4): group descriptors corrupted! [ 667.483770][T10799] FAULT_INJECTION: forcing a failure. [ 667.483770][T10799] name failslab, interval 1, probability 0, space 0, times 0 [ 667.496445][T10799] CPU: 0 PID: 10799 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 667.505198][T10799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 667.515236][T10799] Call Trace: [ 667.518561][T10799] dump_stack_lvl+0xd6/0x122 [ 667.523165][T10799] dump_stack+0x11/0x1b [ 667.527307][T10799] should_fail+0x23c/0x250 [ 667.531728][T10799] __should_failslab+0x81/0x90 [ 667.536475][T10799] ? __iomap_dio_rw+0x139/0x1010 [ 667.541399][T10799] should_failslab+0x5/0x20 [ 667.545885][T10799] kmem_cache_alloc_trace+0x52/0x320 [ 667.551203][T10799] ? __getblk_gfp+0x3f/0x590 [ 667.555781][T10799] __iomap_dio_rw+0x139/0x1010 [ 667.560628][T10799] ? __brelse+0x2c/0x50 [ 667.564771][T10799] ? ext4_mark_iloc_dirty+0x161a/0x1700 [ 667.570304][T10799] iomap_dio_rw+0x30/0x70 [ 667.576616][T10799] ? ext4_file_write_iter+0x521/0x11f0 [ 667.582122][T10799] ext4_file_write_iter+0xaa9/0x11f0 [ 667.587392][T10799] ? ext4_file_write_iter+0x521/0x11f0 [ 667.592860][T10799] do_iter_readv_writev+0x2de/0x380 [ 667.598048][T10799] do_iter_write+0x192/0x5c0 [ 667.602685][T10799] ? splice_from_pipe_next+0x34f/0x3b0 [ 667.608127][T10799] ? kmalloc_array+0x2d/0x40 [ 667.613311][T10799] vfs_iter_write+0x4c/0x70 [ 667.617802][T10799] iter_file_splice_write+0x43a/0x790 [ 667.623159][T10799] ? splice_from_pipe+0xd0/0xd0 [ 667.627990][T10799] direct_splice_actor+0x80/0xa0 [ 667.632913][T10799] splice_direct_to_actor+0x345/0x650 [ 667.638269][T10799] ? do_splice_direct+0x190/0x190 [ 667.643277][T10799] do_splice_direct+0x106/0x190 [ 667.648187][T10799] do_sendfile+0x63e/0xbb0 [ 667.652591][T10799] __x64_sys_sendfile64+0x102/0x140 [ 667.657787][T10799] do_syscall_64+0x44/0xa0 [ 667.662232][T10799] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 667.668116][T10799] RIP: 0033:0x7fabf13d4709 [ 667.672527][T10799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 667.692154][T10799] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 667.700578][T10799] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 667.708539][T10799] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 667.716561][T10799] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 667.724576][T10799] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 667.732535][T10799] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:35 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x500000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:35 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3f00000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 667.813442][T10803] loop5: detected capacity change from 0 to 131456 [ 667.861286][T10800] loop3: detected capacity change from 0 to 264192 [ 667.867569][T10810] loop1: detected capacity change from 0 to 264192 [ 667.868622][T10803] EXT4-fs (loop5): inodes count not valid: 4195104 vs 32 [ 667.877890][T10800] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 667.891470][T10800] EXT4-fs (loop3): group descriptors corrupted! 22:22:35 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20034100000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) 22:22:35 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:35 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff7f, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 667.909106][T10810] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 667.919221][T10810] EXT4-fs (loop1): group descriptors corrupted! [ 667.960084][T10800] loop3: detected capacity change from 0 to 264192 22:22:35 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffbffff00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 668.001417][T10800] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 668.004960][T10832] loop4: detected capacity change from 0 to 264192 [ 668.011577][T10800] EXT4-fs (loop3): group descriptors corrupted! [ 668.034468][T10832] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 668.044592][T10832] EXT4-fs (loop4): group descriptors corrupted! [ 668.053083][T10837] loop1: detected capacity change from 0 to 264192 [ 668.061532][T10837] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 668.071636][T10837] EXT4-fs (loop1): group descriptors corrupted! 22:22:35 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000000000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:35 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 1) [ 668.101711][T10841] loop2: detected capacity change from 0 to 131456 [ 668.110600][T10841] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 668.154691][T10840] loop5: detected capacity change from 0 to 131456 22:22:35 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 37) fallocate(r3, 0x0, 0x6, 0x0) [ 668.212663][T10840] EXT4-fs (loop5): inodes count not valid: 4260640 vs 32 [ 668.276201][T10849] loop3: detected capacity change from 0 to 264192 [ 668.277678][T10865] FAULT_INJECTION: forcing a failure. [ 668.277678][T10865] name failslab, interval 1, probability 0, space 0, times 0 [ 668.286078][T10849] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 668.295368][T10865] CPU: 0 PID: 10865 Comm: syz-executor.1 Not tainted 5.15.0-rc2-syzkaller #0 [ 668.305448][T10849] EXT4-fs (loop3): group descriptors corrupted! [ 668.314163][T10865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 668.314174][T10865] Call Trace: [ 668.314181][T10865] dump_stack_lvl+0xd6/0x122 [ 668.329728][T10850] loop4: detected capacity change from 0 to 264192 [ 668.330454][T10865] dump_stack+0x11/0x1b [ 668.330482][T10865] should_fail+0x23c/0x250 [ 668.353379][T10865] ? __se_sys_memfd_create+0xfb/0x390 [ 668.358739][T10865] __should_failslab+0x81/0x90 [ 668.363544][T10865] should_failslab+0x5/0x20 [ 668.368084][T10865] __kmalloc+0x6f/0x350 [ 668.372233][T10865] ? strnlen_user+0x137/0x1c0 [ 668.376898][T10865] __se_sys_memfd_create+0xfb/0x390 [ 668.382082][T10865] __x64_sys_memfd_create+0x2d/0x40 [ 668.387276][T10865] do_syscall_64+0x44/0xa0 [ 668.393243][T10865] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 668.399211][T10865] RIP: 0033:0x7f78dc0ee709 [ 668.403610][T10865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.423203][T10865] RSP: 002b:00007f78d9e65f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 668.431604][T10865] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00007f78dc0ee709 [ 668.439581][T10865] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007f78dc147e76 [ 668.447535][T10865] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 668.455490][T10865] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 668.463442][T10865] R13: 0000000020000100 R14: 0000000000000800 R15: 0000000020013800 [ 668.473412][T10850] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 668.483545][T10850] EXT4-fs (loop4): group descriptors corrupted! [ 668.531266][T10870] FAULT_INJECTION: forcing a failure. [ 668.531266][T10870] name failslab, interval 1, probability 0, space 0, times 0 [ 668.543903][T10870] CPU: 0 PID: 10870 Comm: syz-executor.0 Not tainted 5.15.0-rc2-syzkaller #0 [ 668.552660][T10870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 668.562707][T10870] Call Trace: [ 668.565974][T10870] dump_stack_lvl+0xd6/0x122 [ 668.570660][T10870] dump_stack+0x11/0x1b [ 668.574877][T10870] should_fail+0x23c/0x250 [ 668.579289][T10870] ? ext4_mb_new_blocks+0x317/0x1fc0 [ 668.584572][T10870] __should_failslab+0x81/0x90 [ 668.589335][T10870] should_failslab+0x5/0x20 [ 668.593902][T10870] kmem_cache_alloc+0x4f/0x300 [ 668.598748][T10870] ext4_mb_new_blocks+0x317/0x1fc0 [ 668.603840][T10870] ? ext4_find_extent+0x7b2/0x7f0 [ 668.608856][T10870] ? ext4_ext_search_right+0x246/0x540 [ 668.614298][T10870] ext4_ext_map_blocks+0x15ed/0x1ff0 [ 668.619565][T10870] ? ext4_es_lookup_extent+0x36b/0x490 [ 668.625005][T10870] ext4_map_blocks+0x71e/0xf00 [ 668.629755][T10870] ? crypto_shash_update+0x13c/0x1a0 [ 668.635029][T10870] ext4_iomap_begin+0x4b0/0x630 [ 668.639882][T10870] ? ext4_alloc_da_blocks+0xd0/0xd0 [ 668.645123][T10870] iomap_iter+0x39c/0x470 [ 668.649445][T10870] __iomap_dio_rw+0x698/0x1010 [ 668.654196][T10870] ? __ext4_mark_inode_dirty+0x481/0x5c0 [ 668.659881][T10870] iomap_dio_rw+0x30/0x70 [ 668.664199][T10870] ? ext4_file_write_iter+0x521/0x11f0 [ 668.669642][T10870] ext4_file_write_iter+0xaa9/0x11f0 [ 668.674914][T10870] ? ext4_file_write_iter+0x521/0x11f0 [ 668.680437][T10870] do_iter_readv_writev+0x2de/0x380 [ 668.685629][T10870] do_iter_write+0x192/0x5c0 [ 668.690204][T10870] ? splice_from_pipe_next+0x34f/0x3b0 [ 668.695646][T10870] ? kmalloc_array+0x2d/0x40 [ 668.700297][T10870] vfs_iter_write+0x4c/0x70 [ 668.704786][T10870] iter_file_splice_write+0x43a/0x790 [ 668.710145][T10870] ? splice_from_pipe+0xd0/0xd0 [ 668.714976][T10870] direct_splice_actor+0x80/0xa0 [ 668.719895][T10870] splice_direct_to_actor+0x345/0x650 [ 668.725248][T10870] ? do_splice_direct+0x190/0x190 [ 668.730257][T10870] do_splice_direct+0x106/0x190 [ 668.735090][T10870] do_sendfile+0x63e/0xbb0 [ 668.739495][T10870] __x64_sys_sendfile64+0x102/0x140 [ 668.744681][T10870] do_syscall_64+0x44/0xa0 [ 668.749084][T10870] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 668.754970][T10870] RIP: 0033:0x7fabf13d4709 [ 668.759375][T10870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.779011][T10870] RSP: 002b:00007fabef10a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 668.787415][T10870] RAX: ffffffffffffffda RBX: 00007fabf14d90e0 RCX: 00007fabf13d4709 [ 668.795390][T10870] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 668.803343][T10870] RBP: 00007fabef10a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 668.811370][T10870] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 0000000000000002 [ 668.819323][T10870] R13: 00007ffe202927cf R14: 00007fabef10a300 R15: 0000000000022000 22:22:36 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[0xffffffffffffffff, r3], 0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 22:22:36 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xffffff7f00000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) 22:22:36 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030014, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20004800000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef01000100", 0x3e, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004", 0x1b, 0x8c80}], 0x0, &(0x7f0000013800)) [ 668.960508][T10850] loop4: detected capacity change from 0 to 264192 [ 668.983381][T10850] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 668.993512][T10850] EXT4-fs (loop4): group descriptors corrupted! [ 669.050831][T10885] loop2: detected capacity change from 0 to 131456 [ 669.058560][T10885] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 22:22:36 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14da42, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x80, 0x28) sendfile(r4, r5, 0x0, 0x80001d00c0d0) (fail_nth: 38) fallocate(r3, 0x0, 0x6, 0x0) 22:22:36 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 2) 22:22:36 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4000080000000000, 0x1, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000013800)) [ 669.177702][T10884] loop5: detected capacity change from 0 to 131456 [ 669.200868][T10884] EXT4-fs (loop5): inodes count not valid: 4718624 vs 32 [ 669.223139][T10895] FAULT_INJECTION: forcing a failure. [ 669.223139][T10895] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 669.236245][T10895] CPU: 1 PID: 10895 Comm: syz-executor.1 Not tainted 5.15.0-rc2-syzkaller #0 [ 669.245042][T10895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 669.255093][T10895] Call Trace: [ 669.258360][T10895] dump_stack_lvl+0xd6/0x122 [ 669.263022][T10895] dump_stack+0x11/0x1b [ 669.267194][T10895] should_fail+0x23c/0x250 [ 669.268879][T10900] loop3: detected capacity change from 0 to 264192