| Date | Name | Commit | Repro | Result |
|---|---|---|---|---|
| 2025/06/29 | android16-6.12 (ToT) | 68f4f0b0690a | C | [report] WARNING in ovl_dir_modified |
| 2025/06/29 | lts (merge base) | e0e2f7824338 | C | Didn't crash |
| 2025/06/29 | upstream (ToT) | afa9a6f4f574 | C | Didn't crash |
syzbot |
sign-in | mailing list | source | docs |
| Date | Name | Commit | Repro | Result |
|---|---|---|---|---|
| 2025/06/29 | android16-6.12 (ToT) | 68f4f0b0690a | C | [report] WARNING in ovl_dir_modified |
| 2025/06/29 | lts (merge base) | e0e2f7824338 | C | Didn't crash |
| 2025/06/29 | upstream (ToT) | afa9a6f4f574 | C | Didn't crash |
| Created | Duration | User | Patch | Repo | Result |
|---|---|---|---|---|---|
| 2025/12/02 18:36 | 4m | retest repro | android16-6.12 | error | |
| 2025/12/02 09:13 | 3m | retest repro | android16-6.12 | error | |
| 2025/12/02 09:13 | 10m | retest repro | android16-6.12 | error | |
| 2025/12/02 09:13 | 11m | retest repro | android16-6.12 | error | |
| 2025/12/02 09:13 | 3m | retest repro | android16-6.12 | error | |
| 2025/12/02 09:13 | 12m | retest repro | android16-6.12 | error |
veth0_vlan: entered promiscuous mode veth1_macvtap: entered promiscuous mode ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Not tainted syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812180d2df R09: 1ffff11024301a5b R10: dffffc0000000000 R11: ffffed1024301a5c R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812180d240 R15: ffff88811390daa0 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000200000001000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000064f6 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812180d2df R09: 1ffff11024301a5b R10: dffffc0000000000 R11: ffffed1024301a5c R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812180d240 R15: ffff88811390daa0 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cb8000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000064f6 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812180e4ff R09: 1ffff11024301c9f R10: dffffc0000000000 R11: ffffed1024301ca0 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812180e460 R15: ffff8881139ff990 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 000000000000679d R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812180e4ff R09: 1ffff11024301c9f R10: dffffc0000000000 R11: ffffed1024301ca0 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812180e460 R15: ffff8881139ff990 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cb7000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 000000000000679d R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881211b40bf R09: 1ffff11024236817 R10: dffffc0000000000 R11: ffffed1024236818 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881211b4020 R15: ffff888113926aa0 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000200000001000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000006a46 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881211b40bf R09: 1ffff11024236817 R10: dffffc0000000000 R11: ffffed1024236818 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881211b4020 R15: ffff888113926aa0 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000200000001000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000006a46 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212aa89f R09: 1ffff11024255513 R10: dffffc0000000000 R11: ffffed1024255514 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212aa800 R15: ffff888113a13220 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000006cff R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212aa89f R09: 1ffff11024255513 R10: dffffc0000000000 R11: ffffed1024255514 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212aa800 R15: ffff888113a13220 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000200000001000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000006cff R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881213207ff R09: 1ffff110242640ff R10: dffffc0000000000 R11: ffffed1024264100 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121320760 R15: ffff888113933cc0 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000006f9f R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881213207ff R09: 1ffff110242640ff R10: dffffc0000000000 R11: ffffed1024264100 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121320760 R15: ffff888113933cc0 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000006f9f R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212ec0bf R09: 1ffff1102425d817 R10: dffffc0000000000 R11: ffffed102425d818 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212ec020 R15: ffff888113a2aee0 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007250 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212ec0bf R09: 1ffff1102425d817 R10: dffffc0000000000 R11: ffffed102425d818 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212ec020 R15: ffff888113a2aee0 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cbb000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007250 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212f52df R09: 1ffff1102425ea5b R10: dffffc0000000000 R11: ffffed102425ea5c R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212f5240 R15: ffff888121336770 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000074f9 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212f52df R09: 1ffff1102425ea5b R10: dffffc0000000000 R11: ffffed102425ea5c R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212f5240 R15: ffff888121336770 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cc0000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000074f9 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881211bc7ff R09: 1ffff110242378ff R10: dffffc0000000000 R11: ffffed1024237900 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881211bc760 R15: ffff888113934880 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000077a4 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881211bc7ff R09: 1ffff110242378ff R10: dffffc0000000000 R11: ffffed1024237900 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881211bc760 R15: ffff888113934880 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cbf000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000077a4 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88811be9167f R09: 1ffff110237d22cf R10: dffffc0000000000 R11: ffffed10237d22d0 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88811be915e0 R15: ffff88812133a000 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007a4d R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88811be9167f R09: 1ffff110237d22cf R10: dffffc0000000000 R11: ffffed10237d22d0 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88811be915e0 R15: ffff88812133a000 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007a4d R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212547ff R09: 1ffff1102424a8ff R10: dffffc0000000000 R11: ffffed102424a900 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121254760 R15: ffff8881212bb770 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007cf6 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881212547ff R09: 1ffff1102424a8ff R10: dffffc0000000000 R11: ffffed102424a900 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121254760 R15: ffff8881212bb770 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cc3000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007cf6 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff888121221dbf R09: 1ffff110242443b7 R10: dffffc0000000000 R11: ffffed10242443b8 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121221d20 R15: ffff888121396330 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007f9f R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff888121221dbf R09: 1ffff110242443b7 R10: dffffc0000000000 R11: ffffed10242443b8 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121221d20 R15: ffff888121396330 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cc8000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000007f9f R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812133ddbf R09: 1ffff11024267bb7 R10: dffffc0000000000 R11: ffffed1024267bb8 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812133dd20 R15: ffff888113a32880 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000008247 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812133ddbf R09: 1ffff11024267bb7 R10: dffffc0000000000 R11: ffffed1024267bb8 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812133dd20 R15: ffff888113a32880 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7d00000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000008247 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812132babf R09: 1ffff11024265757 R10: dffffc0000000000 R11: ffffed1024265758 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812132ba20 R15: ffff888113ae8330 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000084ee R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812132babf R09: 1ffff11024265757 R10: dffffc0000000000 R11: ffffed1024265758 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff88812132ba20 R15: ffff888113ae8330 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 00000000000084ee R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881213280bf R09: 1ffff11024265017 R10: dffffc0000000000 R11: ffffed1024265018 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121328020 R15: ffff888113aaccc0 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000008796 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff8881213280bf R09: 1ffff11024265017 R10: dffffc0000000000 R11: ffffed1024265018 R12: 0000000000000000 R13: dffffc0000000000 R14: ffff888121328020 R15: ffff888113aaccc0 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7d02000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x1a0/0x230 fs/incfs/vfs.c:1972 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000008796 R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 0 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 0 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812125045f R09: 1ffff1102424a08b R10: dffffc0000000000 R11: ffffed102424a08c R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212503c0 R15: ffff888113aec660 FS: 000055555b2da500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055555b2fd958 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace: <TASK> ovl_remove_upper fs/overlayfs/dir.c:841 [inline] ovl_do_remove+0x81b/0xda0 fs/overlayfs/dir.c:912 ovl_rmdir+0x1e/0x30 fs/overlayfs/dir.c:945 vfs_rmdir+0x3e0/0x560 fs/namei.c:4348 incfs_kill_sb+0x109/0x230 fs/incfs/vfs.c:1968 deactivate_locked_super+0xd8/0x2a0 fs/super.c:478 deactivate_super+0xb8/0xe0 fs/super.c:511 cleanup_mnt+0x406/0x4a0 fs/namespace.c:1380 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1387 task_work_run+0x1e5/0x260 kernel/task_work.c:246 resume_user_mode_work+0x35/0x50 include/linux/resume_user_mode.h:50 exit_to_user_mode_loop kernel/entry/common.c:114 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline] syscall_exit_to_user_mode+0x63/0xb0 kernel/entry/common.c:218 do_syscall_64+0x63/0xf0 arch/x86/entry/common.c:84 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x7f651099e097 Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 RSP: 002b:00007ffe24a6df08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f651099e097 RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe24a6dfc0 RBP: 00007ffe24a6dfc0 R08: 00007ffe24a6efc0 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe24a6f0b0 R13: 00007f6510a321ca R14: 0000000000008a3f R15: 00007ffe24a70180 </TASK> ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] WARNING: CPU: 1 PID: 379 at fs/overlayfs/util.c:605 ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Modules linked in: CPU: 1 UID: 0 PID: 379 Comm: syz-executor Tainted: G W syzkaller #0 34657ac36494637a46594e839f4fce42f3877519 Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 RIP: 0010:ovl_dir_version_inc fs/overlayfs/util.c:605 [inline] RIP: 0010:ovl_dir_modified+0x15a/0x190 fs/overlayfs/util.c:623 Code: c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 2e 51 97 ff 49 ff 06 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 56 b2 3e ff <0f> 0b e9 3e ff ff ff e8 4a b2 3e ff 0f 0b e9 6e ff ff ff 44 89 f9 RSP: 0018:ffffc90003aefb48 EFLAGS: 00010293 RAX: ffffffff8249147a RBX: 0000000000000000 RCX: ffff888114f2a600 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc90003aefb70 R08: ffff88812125045f R09: 1ffff1102424a08b R10: dffffc0000000000 R11: ffffed102424a08c R12: 0000000000000000 R13: dffffc0000000000 R14: ffff8881212503c0 R15: ffff888113aec660 FS: 000055555b2da500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000d65e7cca000 CR3: 0000000113e6e000 CR4: 00000000003526b0 Call Trace:
| Time | Kernel | Commit | Syzkaller | Config | Log | Report | Syz repro | C repro | VM info | Assets (help?) | Manager | Title |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2026/05/27 04:03 | android16-6.12 | ad34d1539656 | 2b01f00e | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2026/02/16 03:20 | android16-6.12 | 837ec018b485 | 1e62d198 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2026/02/10 06:30 | android16-6.12 | 3b54985e1263 | 4ab09a02 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2026/02/10 05:37 | android16-6.12 | 3b54985e1263 | 4ab09a02 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2026/02/10 04:43 | android16-6.12 | 3b54985e1263 | 4ab09a02 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2026/02/10 03:52 | android16-6.12 | 3b54985e1263 | 4ab09a02 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2026/01/29 17:09 | android16-6.12 | 6acc5550e55c | aeb6fdd5 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2025/10/21 16:32 | android16-6.12 | 0d6730ee6542 | 9832ed61 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2025/09/16 17:33 | android16-6.12 | ef71e857711e | e2beed91 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2025/07/17 06:38 | android16-6.12 | 3bff0858a069 | 44f8051e | .config | strace log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2025/07/07 03:31 | android16-6.12 | e2bf362ee23b | 4f67c4ae | .config | strace log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2025/06/20 21:09 | android16-6.12 | 6c1c18fcb8b7 | 804b3919 | .config | strace log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2025/06/20 19:57 | android16-6.12 | 6c1c18fcb8b7 | 804b3919 | .config | strace log | report | syz / log | C | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | |
| 2026/06/04 04:43 | android16-6.12 | 8b70dc440368 | 197909be | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/04 03:40 | android16-6.12 | 8b70dc440368 | 197909be | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/04 02:28 | android16-6.12 | 8b70dc440368 | 197909be | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/04 02:24 | android16-6.12 | 8b70dc440368 | 197909be | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 23:52 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 23:10 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 22:06 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 21:33 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 20:30 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 19:56 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 18:56 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 18:50 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 17:47 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 16:48 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 16:20 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 15:19 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 15:03 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 13:34 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 13:34 | android16-6.12 | 40a35714b542 | 234057e5 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 11:20 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 10:12 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 09:23 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 09:03 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 08:02 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 07:52 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 06:50 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 06:00 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 05:48 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 04:25 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 03:28 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 02:37 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/03 01:28 | android16-6.12 | 66b8d2a9700a | 3c0d2131 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 23:17 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 22:55 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 21:54 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 21:15 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 20:33 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 19:44 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 19:41 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 18:19 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 18:16 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 17:15 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 17:09 | android16-6.12 | 215bb7dbd9d4 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/06/02 15:56 | android16-6.12 | be0db38c7358 | 62fe1528 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified | ||
| 2026/05/23 01:56 | android16-6.12 | d8880990072b | c69befb3 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-android-6-12-rust | WARNING in ovl_dir_modified |