program: syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000440)={[{@noauto_da_alloc}, {@data_ordered}, {@dioread_lock}, {@norecovery}, {@discard}, {@dioread_nolock}, {@nobh}, {@usrquota}, {@noauto_da_alloc}]}, 0x1, 0x569, &(0x7f0000002100)="$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") syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file2\x00', 0x90, &(0x7f0000003280)=ANY=[], 0x4, 0xd9c, &(0x7f0000001dc0)="$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") socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000040)='./file0\x00', 0x40c5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)={0x8c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x56, 0xe, {{{}, {}, @device_b, @device_b}, 0x0, @default, 0x0, @val={0x0, 0x6, @default_ibss_ssid}, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @val={0x2a, 0x1}, @void, @void, @val={0x72, 0x6}, @val={0x71, 0x7}, @val={0x76, 0x6, {0x0, 0x0, 0x0, 0x2e}}}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x971}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x8c}}, 0x0) creat(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)={0x30, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0xfc}, @NL80211_ATTR_CSA_IES={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x400e880}, 0x4090) r6 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r6, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000"}) rename(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') rename(&(0x7f0000001640)='./file1\x00', &(0x7f0000000b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r7 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x101a02, 0x0) pwritev(r7, &(0x7f0000002240)=[{&(0x7f00000001c0)="fd", 0x4}], 0x2, 0x0, 0x0) mkdir(&(0x7f0000000000)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file2\x00', 0x2) chdir(&(0x7f00000000c0)='./bus\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x20083, 0x2) [ 78.912823][ T1309] ieee802154 phy0 wpan0: encryption failed: -22 [ 78.915355][ T1309] ieee802154 phy1 wpan1: encryption failed: -22 [ 78.919129][ T4666] Bluetooth: hci0: command tx timeout [ 79.014072][ T5320] loop0: detected capacity change from 0 to 1024 [ 79.030443][ T5320] EXT4-fs: Ignoring removed nobh option [ 79.048412][ T5320] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal [ 79.123603][ T5320] loop0: detected capacity change from 0 to 4096 [ 79.163077][ T5320] NILFS (loop0): invalid segment: Checksum error in segment payload [ 79.168500][ T5320] NILFS (loop0): trying rollback from an earlier position [ 79.184228][ T5320] NILFS (loop0): recovery complete [ 79.189732][ T5324] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 79.208303][ T24] audit: type=1800 audit(1738280594.219:2): pid=5320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=13 res=0 errno=0 [ 79.247249][ T5320] loop0: detected capacity change from 4096 to 64 [ 79.262018][ T5320] ------------[ cut here ]------------ [ 79.264254][ T5320] WARNING: CPU: 0 PID: 5320 at fs/inode.c:407 drop_nlink+0xc4/0x110 [ 79.268300][ T5320] Modules linked in: [ 79.269852][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-09585-gb4b0881156fb #0 [ 79.273837][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.277964][ T5320] RIP: 0010:drop_nlink+0xc4/0x110 [ 79.279986][ T5320] Code: bb 70 07 00 00 be 08 00 00 00 e8 97 12 e7 ff 3e 48 ff 83 70 07 00 00 5b 41 5c 41 5e 41 5f 5d c3 cc cc cc cc e8 dd 7a 80 ff 90 <0f> 0b 90 eb 83 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 5c ff ff ff [ 79.287175][ T5320] RSP: 0018:ffffc9000d2cf8f0 EFLAGS: 00010283 [ 79.289309][ T5320] RAX: ffffffff823ef1b3 RBX: 1ffff11008ab3834 RCX: 0000000000100000 [ 79.292050][ T5320] RDX: ffffc90020001000 RSI: 0000000000000ca0 RDI: 0000000000000ca1 [ 79.294711][ T5320] RBP: 0000000000000000 R08: ffffffff823ef133 R09: 1ffffffff20367ee [ 79.297494][ T5320] R10: dffffc0000000000 R11: fffffbfff20367ef R12: ffff88804559c1a0 [ 79.300223][ T5320] R13: 1ffff92001a59f30 R14: ffff88804559c158 R15: dffffc0000000000 [ 79.303274][ T5320] FS: 00007f6b46b746c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 79.306753][ T5320] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 79.309369][ T5320] CR2: 00007f6b46b72fb8 CR3: 0000000040fc6000 CR4: 0000000000352ef0 [ 79.312389][ T5320] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 79.315841][ T5320] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 79.318717][ T5320] Call Trace: [ 79.319984][ T5320] [ 79.321129][ T5320] ? __warn+0x165/0x4d0 [ 79.322739][ T5320] ? drop_nlink+0xc4/0x110 [ 79.324546][ T5320] ? report_bug+0x2b3/0x500 [ 79.326378][ T5320] ? drop_nlink+0xc4/0x110 [ 79.327960][ T5320] ? handle_bug+0x60/0x90 [ 79.329521][ T5320] ? exc_invalid_op+0x1a/0x50 [ 79.331227][ T5320] ? asm_exc_invalid_op+0x1a/0x20 [ 79.333073][ T5320] ? drop_nlink+0x43/0x110 [ 79.334747][ T5320] ? drop_nlink+0xc3/0x110 [ 79.336652][ T5320] ? drop_nlink+0xc4/0x110 [ 79.338322][ T5320] nilfs_rename+0x5f4/0x980 [ 79.340008][ T5320] ? __pfx_nilfs_rename+0x10/0x10 [ 79.341881][ T5320] ? do_raw_spin_lock+0x14f/0x370 [ 79.343688][ T5320] ? down_write_nested+0x195/0x220 [ 79.345782][ T5320] ? __pfx_down_write_nested+0x10/0x10 [ 79.347864][ T5320] ? do_raw_spin_unlock+0x58/0x8b0 [ 79.349736][ T5320] ? __pfx_nilfs_rename+0x10/0x10 [ 79.351649][ T5320] vfs_rename+0xbdb/0xf00 [ 79.353278][ T5320] ? __pfx_vfs_rename+0x10/0x10 [ 79.355142][ T5320] ? bpf_lsm_path_rename+0x9/0x10 [ 79.357115][ T5320] do_renameat2+0xd94/0x13f0 [ 79.358982][ T5320] ? __pfx_do_renameat2+0x10/0x10 [ 79.360915][ T5320] ? __virt_addr_valid+0x183/0x530 [ 79.362830][ T5320] ? __virt_addr_valid+0x45f/0x530 [ 79.364892][ T5320] ? __phys_addr_symbol+0x2f/0x70 [ 79.367021][ T5320] ? strncpy_from_user+0x146/0x270 [ 79.368975][ T5320] ? getname_flags+0x1e3/0x540 [ 79.370817][ T5320] __x64_sys_rename+0x82/0x90 [ 79.372549][ T5320] do_syscall_64+0xf3/0x230 [ 79.374209][ T5320] ? clear_bhb_loop+0x35/0x90 [ 79.376060][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.378262][ T5320] RIP: 0033:0x7f6b45d8cda9 [ 79.379954][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 79.386926][ T5320] RSP: 002b:00007f6b46b74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 79.390066][ T5320] RAX: ffffffffffffffda RBX: 00007f6b45fa5fa0 RCX: 00007f6b45d8cda9 [ 79.393048][ T5320] RDX: 0000000000000000 RSI: 0000000020000b80 RDI: 0000000020001640 [ 79.396090][ T5320] RBP: 00007f6b45e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 79.398848][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 79.401734][ T5320] R13: 0000000000000000 R14: 00007f6b45fa5fa0 R15: 00007fff8e683678 [ 79.404489][ T5320] [ 79.405762][ T5320] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 79.408349][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-09585-gb4b0881156fb #0 [ 79.412147][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.416152][ T5320] Call Trace: [ 79.417422][ T5320] [ 79.418469][ T5320] dump_stack_lvl+0x241/0x360 [ 79.420225][ T5320] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.422170][ T5320] ? __pfx__printk+0x10/0x10 [ 79.424303][ T5320] ? vscnprintf+0x5d/0x90 [ 79.425941][ T5320] panic+0x349/0x880 [ 79.427333][ T5320] ? __warn+0x174/0x4d0 [ 79.428804][ T5320] ? __pfx_panic+0x10/0x10 [ 79.430394][ T5320] __warn+0x344/0x4d0 [ 79.431865][ T5320] ? drop_nlink+0xc4/0x110 [ 79.433553][ T5320] report_bug+0x2b3/0x500 [ 79.435215][ T5320] ? drop_nlink+0xc4/0x110 [ 79.436926][ T5320] handle_bug+0x60/0x90 [ 79.438566][ T5320] exc_invalid_op+0x1a/0x50 [ 79.440316][ T5320] asm_exc_invalid_op+0x1a/0x20 [ 79.442088][ T5320] RIP: 0010:drop_nlink+0xc4/0x110 [ 79.443918][ T5320] Code: bb 70 07 00 00 be 08 00 00 00 e8 97 12 e7 ff 3e 48 ff 83 70 07 00 00 5b 41 5c 41 5e 41 5f 5d c3 cc cc cc cc e8 dd 7a 80 ff 90 <0f> 0b 90 eb 83 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 5c ff ff ff [ 79.450879][ T5320] RSP: 0018:ffffc9000d2cf8f0 EFLAGS: 00010283 [ 79.453208][ T5320] RAX: ffffffff823ef1b3 RBX: 1ffff11008ab3834 RCX: 0000000000100000 [ 79.456303][ T5320] RDX: ffffc90020001000 RSI: 0000000000000ca0 RDI: 0000000000000ca1 [ 79.459284][ T5320] RBP: 0000000000000000 R08: ffffffff823ef133 R09: 1ffffffff20367ee [ 79.462192][ T5320] R10: dffffc0000000000 R11: fffffbfff20367ef R12: ffff88804559c1a0 [ 79.465170][ T5320] R13: 1ffff92001a59f30 R14: ffff88804559c158 R15: dffffc0000000000 [ 79.468083][ T5320] ? drop_nlink+0x43/0x110 [ 79.469820][ T5320] ? drop_nlink+0xc3/0x110 [ 79.471514][ T5320] nilfs_rename+0x5f4/0x980 [ 79.473241][ T5320] ? __pfx_nilfs_rename+0x10/0x10 [ 79.475166][ T5320] ? do_raw_spin_lock+0x14f/0x370 [ 79.477056][ T5320] ? down_write_nested+0x195/0x220 [ 79.478936][ T5320] ? __pfx_down_write_nested+0x10/0x10 [ 79.480946][ T5320] ? do_raw_spin_unlock+0x58/0x8b0 [ 79.482879][ T5320] ? __pfx_nilfs_rename+0x10/0x10 [ 79.484814][ T5320] vfs_rename+0xbdb/0xf00 [ 79.486441][ T5320] ? __pfx_vfs_rename+0x10/0x10 [ 79.488251][ T5320] ? bpf_lsm_path_rename+0x9/0x10 [ 79.490145][ T5320] do_renameat2+0xd94/0x13f0 [ 79.491925][ T5320] ? __pfx_do_renameat2+0x10/0x10 [ 79.493901][ T5320] ? __virt_addr_valid+0x183/0x530 [ 79.495944][ T5320] ? __virt_addr_valid+0x45f/0x530 [ 79.497941][ T5320] ? __phys_addr_symbol+0x2f/0x70 [ 79.499898][ T5320] ? strncpy_from_user+0x146/0x270 [ 79.501919][ T5320] ? getname_flags+0x1e3/0x540 [ 79.503764][ T5320] __x64_sys_rename+0x82/0x90 [ 79.505590][ T5320] do_syscall_64+0xf3/0x230 [ 79.507423][ T5320] ? clear_bhb_loop+0x35/0x90 [ 79.509228][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.511487][ T5320] RIP: 0033:0x7f6b45d8cda9 [ 79.513224][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 79.520665][ T5320] RSP: 002b:00007f6b46b74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 79.523803][ T5320] RAX: ffffffffffffffda RBX: 00007f6b45fa5fa0 RCX: 00007f6b45d8cda9 [ 79.526680][ T5320] RDX: 0000000000000000 RSI: 0000000020000b80 RDI: 0000000020001640 [ 79.529541][ T5320] RBP: 00007f6b45e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 79.532502][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 79.535445][ T5320] R13: 0000000000000000 R14: 00007f6b45fa5fa0 R15: 00007fff8e683678 [ 79.538250][ T5320] [ 79.539690][ T5320] Kernel Offset: disabled [ 79.541336][ T5320] Rebooting in 86400 seconds..