Extracting prog: 42.997274828s
Minimizing prog: 32m53.220515554s
Simplifying prog options: 2m59.027747236s
Extracting C: 1m56.973102877s
Simplifying C: 0s


extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_INIT-write$FUSE_DIRENTPLUS-openat$cgroup_ro-syz_open_dev$loop-ioctl$LOOP_SET_STATUS-write$binfmt_script
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000300)={0x50, 0x0, 0x0, {0x7, 0x28, 0x1, 0x1000001, 0x2, 0x4, 0x9, 0x7f}}, 0x50)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})
write$binfmt_script(r2, &(0x7f0000000100), 0xfecc)

program crashed: general protection fault in bfs_get_block
single: successfully extracted reproducer
found reproducer with 13 syscalls
minimizing guilty program
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_INIT-write$FUSE_DIRENTPLUS-openat$cgroup_ro-syz_open_dev$loop-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000300)={0x50, 0x0, 0x0, {0x7, 0x28, 0x1, 0x1000001, 0x2, 0x4, 0x9, 0x7f}}, 0x50)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_INIT-write$FUSE_DIRENTPLUS-openat$cgroup_ro-syz_open_dev$loop
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000300)={0x50, 0x0, 0x0, {0x7, 0x28, 0x1, 0x1000001, 0x2, 0x4, 0x9, 0x7f}}, 0x50)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400)

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_INIT-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000300)={0x50, 0x0, 0x0, {0x7, 0x28, 0x1, 0x1000001, 0x2, 0x4, 0x9, 0x7f}}, 0x50)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_INIT-write$FUSE_DIRENTPLUS-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000300)={0x50, 0x0, 0x0, {0x7, 0x28, 0x1, 0x1000001, 0x2, 0x4, 0x9, 0x7f}}, 0x50)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_INIT-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000300)={0x50, 0x0, 0x0, {0x7, 0x28, 0x1, 0x1000001, 0x2, 0x4, 0x9, 0x7f}}, 0x50)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-syz_clone-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_emit_vhci-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-mmap-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, 0x0, 0x0, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180), 0x0, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, 0x0, &(0x7f00000002c0), &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), 0x0, &(0x7f0000000380)="bc8fbfd3625412f0eae13dd0ac1e193f65a84903df3bdbe65b857394b6ef383d0b34f7566e99a57e41aadc38e27470c2a9172c4a04380c2db8d7f3077622a7fd36308d24d5f7f6e76d52f842cce04adb98bcf468c7f10dfd03d868a5da63d8c76c2c7f14272a59505ee53f92fc175db9069b2a8e1d80cb1b9e81292909fe01c59515b788f0b64c4dee7ce2a23db07d54e23eb2d91d9b5a5f1551cecc618c3225655806f30e8241e7fc15afb804310718")
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), 0x0)
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program crashed: WARNING in mark_buffer_dirty
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, 0x0, 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, 0x0, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x1, 0xb, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc162a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800defb6015e0fb7e904d865c8ec58d347f41be5a0800", [0x80004, 0x7]})

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0)

program crashed: WARNING in mark_buffer_dirty
extracting C reproducer
testing compiled C program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
program did not crash
simplifying guilty program options
testing program (duration=50.016347509s, {Threaded:false Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0)

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0)

program did not crash
testing program (duration=50.016347509s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$bfs-openat$cgroup_ro-syz_emit_vhci-syz_clone-openat$incfs-write$FUSE_DIRENTPLUS-openat$cgroup_ro-ioctl$LOOP_SET_STATUS
detailed listing:
executing program 0:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8008, &(0x7f0000001980)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="2fecfb2b47b99181063f4ea9a91ac6f65072f0152c20c39ac1fa3f98a9bf4519f1ddd806e46d4f97e3a0c06d3b224332dd177d91e19dbd12718934e5c33da190f134ef5de5cd25678f897b106a4bcc4956a5b987b8b305cec56493d8d526a15bc1359b9c7c18c1c9cf278f262b8d7fea7e8630bec974d1d44f316f6be8491fa5febafde1aece65252ae1609105a79749c16f8ef0593680b0ab39ae08bb", @ANYRESDEC, @ANYRES8, @ANYRESDEC, @ANYRES64, @ANYRES8], 0xd, 0xb6, &(0x7f00000001c0)="$eJzs1zFKxEAYBeCXCDGtjQgW2qbxDp7F0kqsFEG8gRfxKh4hvYVFOhF1RJNlCdul2IXl+4qBN4+fmfZ//Xw5fe6S8piU7uTmrazd3t1fP+XvTJWZJuyHOslhkjbJ2dGY3y/Hrpr6fni46oeD843h5qOUsvDh7+WjAADAMnUu5vmnTBdf0xb4H45Xfbvl/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2m8AAAD//6ykLvo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
syz_emit_vhci(0x0, 0x11)
syz_clone(0x4080, &(0x7f0000000180)="bec17978a1fc07f0f0c514acc775a0af529160614d175101bb5f17089b", 0x1d, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000380))
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x0)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000200)=ANY=[], 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0)

program did not crash
reproducing took 38m32.218665259s
repro crashed as (corrupted=false):
------------[ cut here ]------------
WARNING: CPU: 0 PID: 5605 at fs/buffer.c:1177 mark_buffer_dirty+0x2e5/0x520 fs/buffer.c:1177
Modules linked in:
CPU: 0 UID: 0 PID: 5605 Comm: syz.0.26 Not tainted 6.12.0-rc7-syzkaller-00070-g0a9b9d17f3a7 #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:mark_buffer_dirty+0x2e5/0x520 fs/buffer.c:1177
Code: 89 df e8 ae 78 db ff 48 8b 3b be 20 00 00 00 5b 41 5e 41 5f 5d e9 fb e8 fb ff e8 36 9c 71 ff e9 73 ff ff ff e8 2c 9c 71 ff 90 <0f> 0b 90 e9 61 fd ff ff e8 1e 9c 71 ff 90 0f 0b 90 e9 88 fd ff ff
RSP: 0018:ffffc9000cc0ea88 EFLAGS: 00010293
RAX: ffffffff82234de4 RBX: ffff888045886001 RCX: ffff88801fae4880
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: ffffffff82234b41 R09: 1ffff11008761379
R10: dffffc0000000000 R11: ffffed100876137a R12: dffffc0000000000
R13: ffff888043b09bc8 R14: ffff888043b09bc8 R15: ffff88804e055200
FS:  00007f92a1c166c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f92a1a6576e CR3: 0000000052038000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 bfs_move_block fs/bfs/file.c:44 [inline]
 bfs_move_blocks fs/bfs/file.c:57 [inline]
 bfs_get_block+0xadd/0xb70 fs/bfs/file.c:126
 __block_write_begin_int+0x50c/0x1a70 fs/buffer.c:2121
 block_write_begin+0x8f/0x120 fs/buffer.c:2231
 bfs_write_begin+0x35/0xd0 fs/bfs/file.c:179
 generic_perform_write+0x344/0x6d0 mm/filemap.c:4054
 generic_file_write_iter+0xae/0x310 mm/filemap.c:4181
 __kernel_write_iter+0x42a/0x940 fs/read_write.c:616
 __kernel_write+0x120/0x180 fs/read_write.c:636
 __dump_emit+0x237/0x360 fs/coredump.c:807
 writenote+0x221/0x3b0 fs/binfmt_elf.c:1463
 write_note_info fs/binfmt_elf.c:1951 [inline]
 elf_core_dump+0x3886/0x4770 fs/binfmt_elf.c:2108
 do_coredump+0x2162/0x2ec0 fs/coredump.c:758
 get_signal+0x13fc/0x1740 kernel/signal.c:2903
 arch_do_signal_or_restart+0x96/0x860 arch/x86/kernel/signal.c:337
 exit_to_user_mode_loop kernel/entry/common.c:111 [inline]
 exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline]
 irqentry_exit_to_user_mode+0x79/0x280 kernel/entry/common.c:231
 exc_general_protection+0x410/0x5d0 arch/x86/kernel/traps.c:693
 asm_exc_general_protection+0x26/0x30 arch/x86/include/asm/idtentry.h:617
RIP: 0033:0x7f92a0d7e721
Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
RSP: 002b:0000000020000190 EFLAGS: 00010217
RAX: 0000000000000000 RBX: 00007f92a0f35f80 RCX: 00007f92a0d7e719
RDX: 0000000020000280 RSI: 0000000020000190 RDI: 0000000000004080
RBP: 00007f92a0df175e R08: 0000000020000380 R09: 0000000020000380
R10: 00000000200002c0 R11: 0000000000000202 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f92a0f35f80 R15: 00007ffcf888df88
 </TASK>

final repro crashed as (corrupted=false):
------------[ cut here ]------------
WARNING: CPU: 0 PID: 5605 at fs/buffer.c:1177 mark_buffer_dirty+0x2e5/0x520 fs/buffer.c:1177
Modules linked in:
CPU: 0 UID: 0 PID: 5605 Comm: syz.0.26 Not tainted 6.12.0-rc7-syzkaller-00070-g0a9b9d17f3a7 #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:mark_buffer_dirty+0x2e5/0x520 fs/buffer.c:1177
Code: 89 df e8 ae 78 db ff 48 8b 3b be 20 00 00 00 5b 41 5e 41 5f 5d e9 fb e8 fb ff e8 36 9c 71 ff e9 73 ff ff ff e8 2c 9c 71 ff 90 <0f> 0b 90 e9 61 fd ff ff e8 1e 9c 71 ff 90 0f 0b 90 e9 88 fd ff ff
RSP: 0018:ffffc9000cc0ea88 EFLAGS: 00010293
RAX: ffffffff82234de4 RBX: ffff888045886001 RCX: ffff88801fae4880
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: ffffffff82234b41 R09: 1ffff11008761379
R10: dffffc0000000000 R11: ffffed100876137a R12: dffffc0000000000
R13: ffff888043b09bc8 R14: ffff888043b09bc8 R15: ffff88804e055200
FS:  00007f92a1c166c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f92a1a6576e CR3: 0000000052038000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 bfs_move_block fs/bfs/file.c:44 [inline]
 bfs_move_blocks fs/bfs/file.c:57 [inline]
 bfs_get_block+0xadd/0xb70 fs/bfs/file.c:126
 __block_write_begin_int+0x50c/0x1a70 fs/buffer.c:2121
 block_write_begin+0x8f/0x120 fs/buffer.c:2231
 bfs_write_begin+0x35/0xd0 fs/bfs/file.c:179
 generic_perform_write+0x344/0x6d0 mm/filemap.c:4054
 generic_file_write_iter+0xae/0x310 mm/filemap.c:4181
 __kernel_write_iter+0x42a/0x940 fs/read_write.c:616
 __kernel_write+0x120/0x180 fs/read_write.c:636
 __dump_emit+0x237/0x360 fs/coredump.c:807
 writenote+0x221/0x3b0 fs/binfmt_elf.c:1463
 write_note_info fs/binfmt_elf.c:1951 [inline]
 elf_core_dump+0x3886/0x4770 fs/binfmt_elf.c:2108
 do_coredump+0x2162/0x2ec0 fs/coredump.c:758
 get_signal+0x13fc/0x1740 kernel/signal.c:2903
 arch_do_signal_or_restart+0x96/0x860 arch/x86/kernel/signal.c:337
 exit_to_user_mode_loop kernel/entry/common.c:111 [inline]
 exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline]
 irqentry_exit_to_user_mode+0x79/0x280 kernel/entry/common.c:231
 exc_general_protection+0x410/0x5d0 arch/x86/kernel/traps.c:693
 asm_exc_general_protection+0x26/0x30 arch/x86/include/asm/idtentry.h:617
RIP: 0033:0x7f92a0d7e721
Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
RSP: 002b:0000000020000190 EFLAGS: 00010217
RAX: 0000000000000000 RBX: 00007f92a0f35f80 RCX: 00007f92a0d7e719
RDX: 0000000020000280 RSI: 0000000020000190 RDI: 0000000000004080
RBP: 00007f92a0df175e R08: 0000000020000380 R09: 0000000020000380
R10: 00000000200002c0 R11: 0000000000000202 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f92a0f35f80 R15: 00007ffcf888df88
 </TASK>