program: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2) r1 = memfd_create(&(0x7f00000003c0)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\x0f<\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xd5\xf3\\\x00\xbe]Et\xad*\xecj\x02\xc8\xc4\f\x04\x99\xf6\xfc', 0x3) ftruncate(r1, 0xffff) fcntl$addseals(r1, 0x409, 0x7) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r2) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r5) ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000080)={'wpan1\x00', 0x0}) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)={0x3c, r6, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x1}]}, 0x3c}}, 0x0) sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)={0x14, r3, 0x72b}, 0x14}, 0x1, 0x0, 0x0, 0x4c800}, 0x0) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000100)=ANY=[@ANYBLOB="000000a0ee01cb9a", @ANYRES32=r1, @ANYBLOB="0000000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20]) syz_mount_image$udf(&(0x7f0000000e00), &(0x7f0000000180)='./file0\x00', 0x400007, &(0x7f0000000ec0)={[{@volume={'volume', 0x3d, 0x3f}}, {@iocharset={'iocharset', 0x3d, 'cp864'}}, {@session}, {@uid_forget}, {@undelete}, {}, {@longad}, {@uid_forget}, {@utf8}]}, 0x1, 0xc2d, &(0x7f00000001c0)="$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") syz_mount_image$nilfs2(&(0x7f0000001240), &(0x7f0000000300)='./file0\x00', 0x4, &(0x7f00000002c0)=ANY=[], 0x1, 0xae4, &(0x7f0000000340)="$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") mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x11, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffc, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r10 = socket$kcm(0x2, 0x5, 0x84) sendmsg$inet(r10, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000500)="12", 0x1}], 0x1}, 0x0) sendmsg$inet(r10, &(0x7f0000000f80)={&(0x7f0000000800)={0x2, 0x0, @local}, 0x10, &(0x7f0000000e40)=[{&(0x7f0000002ec0)="0f", 0x1}], 0x1, 0x0, 0x0, 0x600}, 0x0) r11 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400) ioctl$LOOP_SET_STATUS(r11, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0x10, 0xc1584972050808b3, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc1d8a6138ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800def96086b50512904d865c2fdc451f728d347f41be5a08", [0x2000000000, 0x4]}) sendmmsg$unix(r9, &(0x7f0000005a40)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x98}}, {{&(0x7f0000005840)=@file={0x1, './file2\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4004000}}], 0x2, 0x0) r12 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r12, 0x7, 0x0, 0x0, 0x0) syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1e4047c, &(0x7f0000000ec0)=ANY=[], 0x1, 0x0, &(0x7f0000000000)) fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) [ 68.951166][ T4665] Bluetooth: hci0: command tx timeout [ 69.042147][ T5325] loop0: detected capacity change from 0 to 2048 [ 69.072622][ T5325] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 69.211013][ T5326] loop0: detected capacity change from 2048 to 0 [ 69.222372][ T5326] syz.0.0: attempt to access beyond end of device [ 69.222372][ T5326] loop0: rw=0, sector=1408, nr_sectors = 1 limit=0 [ 69.233805][ T5326] syz.0.0: attempt to access beyond end of device [ 69.233805][ T5326] loop0: rw=2049, sector=128, nr_sectors = 1 limit=0 [ 69.239006][ T5326] Buffer I/O error on dev loop0, logical block 128, lost sync page write [ 69.244999][ T5326] ======================================================= [ 69.244999][ T5326] WARNING: The mand mount option has been deprecated and [ 69.244999][ T5326] and is ignored by this kernel. Remove the mand [ 69.244999][ T5326] option from the mount to silence this warning. [ 69.244999][ T5326] ======================================================= [ 69.258459][ T5326] ------------[ cut here ]------------ [ 69.260869][ T5326] WARNING: CPU: 0 PID: 5326 at fs/buffer.c:1173 mark_buffer_dirty+0x2c6/0x440 [ 69.264237][ T5326] Modules linked in: [ 69.265736][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 69.269954][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.273951][ T5326] RIP: 0010:mark_buffer_dirty+0x2c6/0x440 [ 69.276142][ T5326] Code: 4c 89 f7 e8 7c 54 dc ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 97 de fb ff e8 a2 f4 75 ff eb 8b e8 9b f4 75 ff 90 <0f> 0b 90 e9 82 fd ff ff e8 8d f4 75 ff 90 0f 0b 90 e9 a9 fd ff ff [ 69.283791][ T5326] RSP: 0018:ffffc9000d407bb0 EFLAGS: 00010287 [ 69.286089][ T5326] RAX: ffffffff82297f55 RBX: 0000000000000001 RCX: 0000000000100000 [ 69.289055][ T5326] RDX: ffffc9000f25b000 RSI: 0000000000001581 RDI: 0000000000001582 [ 69.292318][ T5326] RBP: 0000000000000000 R08: ffffffff82297cd3 R09: 1ffff11008923874 [ 69.295346][ T5326] R10: dffffc0000000000 R11: ffffed1008923875 R12: dffffc0000000000 [ 69.298438][ T5326] R13: ffff888040a36004 R14: ffff88804491c3a0 R15: ffff88804491c3a0 [ 69.301502][ T5326] FS: 00007febb6b256c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 69.304775][ T5326] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.307254][ T5326] CR2: 0000000020005a40 CR3: 0000000043608000 CR4: 0000000000352ef0 [ 69.310315][ T5326] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.313684][ T5326] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.316870][ T5326] Call Trace: [ 69.318203][ T5326] [ 69.319380][ T5326] ? __warn+0x165/0x4d0 [ 69.321092][ T5326] ? mark_buffer_dirty+0x2c6/0x440 [ 69.323080][ T5326] ? report_bug+0x2b3/0x500 [ 69.324980][ T5326] ? mark_buffer_dirty+0x2c6/0x440 [ 69.326872][ T5326] ? handle_bug+0x60/0x90 [ 69.328517][ T5326] ? exc_invalid_op+0x1a/0x50 [ 69.330251][ T5326] ? asm_exc_invalid_op+0x1a/0x20 [ 69.332259][ T5326] ? mark_buffer_dirty+0x43/0x440 [ 69.334176][ T5326] ? mark_buffer_dirty+0x2c5/0x440 [ 69.336117][ T5326] ? mark_buffer_dirty+0x2c6/0x440 [ 69.338058][ T5326] udf_open_lvid+0x384/0x5b0 [ 69.339932][ T5326] ? __pfx_udf_open_lvid+0x10/0x10 [ 69.342025][ T5326] ? shrink_dcache_sb+0x38e/0x3e0 [ 69.344293][ T5326] udf_reconfigure+0x2f9/0x490 [ 69.346502][ T5326] reconfigure_super+0x43a/0x870 [ 69.348439][ T5326] path_mount+0xc22/0xfa0 [ 69.350090][ T5326] __se_sys_mount+0x2d6/0x3c0 [ 69.352012][ T5326] ? __pfx___se_sys_mount+0x10/0x10 [ 69.354103][ T5326] ? do_syscall_64+0x100/0x230 [ 69.355946][ T5326] ? __x64_sys_mount+0x20/0xc0 [ 69.357816][ T5326] do_syscall_64+0xf3/0x230 [ 69.359579][ T5326] ? clear_bhb_loop+0x35/0x90 [ 69.361417][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.363636][ T5326] RIP: 0033:0x7febb5d874ca [ 69.365510][ T5326] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.372748][ T5326] RSP: 002b:00007febb6b24e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 69.375919][ T5326] RAX: ffffffffffffffda RBX: 00007febb6b24ef0 RCX: 00007febb5d874ca [ 69.378852][ T5326] RDX: 0000000020000180 RSI: 0000000020000100 RDI: 0000000000000000 [ 69.381956][ T5326] RBP: 0000000020000180 R08: 00007febb6b24ef0 R09: 0000000001e4047c [ 69.385132][ T5326] R10: 0000000001e4047c R11: 0000000000000246 R12: 0000000020000100 [ 69.388250][ T5326] R13: 00007febb6b24eb0 R14: 0000000000000000 R15: 0000000020000ec0 [ 69.391569][ T5326] [ 69.392739][ T5326] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 69.395151][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 69.398889][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.402888][ T5326] Call Trace: [ 69.404164][ T5326] [ 69.405262][ T5326] dump_stack_lvl+0x241/0x360 [ 69.407090][ T5326] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.409108][ T5326] ? __pfx__printk+0x10/0x10 [ 69.410865][ T5326] ? vscnprintf+0x5d/0x90 [ 69.412537][ T5326] panic+0x349/0x880 [ 69.414026][ T5326] ? __warn+0x174/0x4d0 [ 69.415604][ T5326] ? __pfx_panic+0x10/0x10 [ 69.417249][ T5326] __warn+0x344/0x4d0 [ 69.418727][ T5326] ? mark_buffer_dirty+0x2c6/0x440 [ 69.420676][ T5326] report_bug+0x2b3/0x500 [ 69.422405][ T5326] ? mark_buffer_dirty+0x2c6/0x440 [ 69.424399][ T5326] handle_bug+0x60/0x90 [ 69.425975][ T5326] exc_invalid_op+0x1a/0x50 [ 69.427681][ T5326] asm_exc_invalid_op+0x1a/0x20 [ 69.429550][ T5326] RIP: 0010:mark_buffer_dirty+0x2c6/0x440 [ 69.431749][ T5326] Code: 4c 89 f7 e8 7c 54 dc ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 97 de fb ff e8 a2 f4 75 ff eb 8b e8 9b f4 75 ff 90 <0f> 0b 90 e9 82 fd ff ff e8 8d f4 75 ff 90 0f 0b 90 e9 a9 fd ff ff [ 69.438935][ T5326] RSP: 0018:ffffc9000d407bb0 EFLAGS: 00010287 [ 69.441322][ T5326] RAX: ffffffff82297f55 RBX: 0000000000000001 RCX: 0000000000100000 [ 69.444348][ T5326] RDX: ffffc9000f25b000 RSI: 0000000000001581 RDI: 0000000000001582 [ 69.447341][ T5326] RBP: 0000000000000000 R08: ffffffff82297cd3 R09: 1ffff11008923874 [ 69.450229][ T5326] R10: dffffc0000000000 R11: ffffed1008923875 R12: dffffc0000000000 [ 69.453186][ T5326] R13: ffff888040a36004 R14: ffff88804491c3a0 R15: ffff88804491c3a0 [ 69.456272][ T5326] ? mark_buffer_dirty+0x43/0x440 [ 69.458279][ T5326] ? mark_buffer_dirty+0x2c5/0x440 [ 69.460250][ T5326] udf_open_lvid+0x384/0x5b0 [ 69.462054][ T5326] ? __pfx_udf_open_lvid+0x10/0x10 [ 69.464006][ T5326] ? shrink_dcache_sb+0x38e/0x3e0 [ 69.465982][ T5326] udf_reconfigure+0x2f9/0x490 [ 69.467802][ T5326] reconfigure_super+0x43a/0x870 [ 69.469720][ T5326] path_mount+0xc22/0xfa0 [ 69.471369][ T5326] __se_sys_mount+0x2d6/0x3c0 [ 69.473022][ T5326] ? __pfx___se_sys_mount+0x10/0x10 [ 69.474796][ T5326] ? do_syscall_64+0x100/0x230 [ 69.476454][ T5326] ? __x64_sys_mount+0x20/0xc0 [ 69.478146][ T5326] do_syscall_64+0xf3/0x230 [ 69.479903][ T5326] ? clear_bhb_loop+0x35/0x90 [ 69.481734][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.484031][ T5326] RIP: 0033:0x7febb5d874ca [ 69.485787][ T5326] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.492980][ T5326] RSP: 002b:00007febb6b24e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 69.496112][ T5326] RAX: ffffffffffffffda RBX: 00007febb6b24ef0 RCX: 00007febb5d874ca [ 69.499167][ T5326] RDX: 0000000020000180 RSI: 0000000020000100 RDI: 0000000000000000 [ 69.502130][ T5326] RBP: 0000000020000180 R08: 00007febb6b24ef0 R09: 0000000001e4047c [ 69.505078][ T5326] R10: 0000000001e4047c R11: 0000000000000246 R12: 0000000020000100 [ 69.508057][ T5326] R13: 00007febb6b24eb0 R14: 0000000000000000 R15: 0000000020000ec0 [ 69.511117][ T5326] [ 69.512549][ T5326] Kernel Offset: disabled [ 69.514232][ T5326] Rebooting in 86400 seconds..