program:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800700, &(0x7f00000006c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x20}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@minixdf}, {@nombcache}, {@quota}, {@quota}]}, 0x3, 0x467, &(0x7f0000002280)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='net_prio.prioidx\x00', 0x275a, 0x0)
mkdir(&(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x5)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000100), &(0x7f0000000140)=0x4)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
symlink(&(0x7f0000000dc0)='./file0\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/warn_count', 0x37f880, 0x171)
write$cgroup_int(r1, &(0x7f0000000040)=0x1f00, 0x12)
stat(&(0x7f00000001c0)='./file0\x00', &(0x7f00000003c0))
[ 75.038870][ T5323] Bluetooth: hci0: command tx timeout
[ 75.143021][ T5338] loop0: detected capacity change from 0 to 512
[ 75.194377][ T5338] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.0: corrupted in-inode xattr: invalid ea_ino
[ 75.202817][ T5338] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.0: couldn't read orphan inode 15 (err -117)
[ 75.210068][ T5338] EXT4-fs (loop0): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 75.222974][ T5338] EXT4-fs error (device loop0): ext4_lookup:1813: inode #13: comm syz.0.0: iget: bad extended attribute block 7177
[ 75.249354][ T5338] BUG: Bad page map in process syz.0.0 pte:6161616161616161 pmd:36d75067
[ 75.253361][ T5338] addr:00007fdc46c00000 vm_flags:0c0444bb anon_vma:0000000000000000 mapping:ffff88801cc1f470 index:faa00
[ 75.257964][ T5338] file:resource2 fault:kernfs_vma_fault mmap:kernfs_fop_mmap read_folio:0x0
[ 75.261563][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-09734-g445d9f05fa14 #0
[ 75.265429][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.269462][ T5338] Call Trace:
[ 75.270628][ T5338]
[ 75.271627][ T5338] dump_stack_lvl+0x241/0x360
[ 75.273420][ T5338] ? __pfx_dump_stack_lvl+0x10/0x10
[ 75.275372][ T5338] ? __pfx__printk+0x10/0x10
[ 75.277085][ T5338] ? __pte_offset_map_lock+0x273/0x300
[ 75.279172][ T5338] ? __pfx_kernfs_vma_fault+0x10/0x10
[ 75.281276][ T5338] ? __pfx_kernfs_fop_mmap+0x10/0x10
[ 75.283393][ T5338] print_bad_pte+0x511/0x530
[ 75.285199][ T5338] vm_normal_page+0x155/0x200
[ 75.287030][ T5338] unmap_page_range+0xaec/0x4230
[ 75.288999][ T5338] ? kasan_quarantine_put+0xdc/0x230
[ 75.291022][ T5338] ? memtype_free+0x223/0x590
[ 75.292908][ T5338] ? memtype_free+0x245/0x590
[ 75.294716][ T5338] ? __pfx_unmap_page_range+0x10/0x10
[ 75.296813][ T5338] ? __pfx_pagerange_is_ram_callback+0x10/0x10
[ 75.299330][ T5338] ? untrack_pfn+0x34d/0x640
[ 75.300983][ T5338] ? __pfx_untrack_pfn+0x10/0x10
[ 75.302891][ T5338] ? uprobe_munmap+0x183/0x460
[ 75.304756][ T5338] ? unmap_single_vma+0x1bd/0x2b0
[ 75.306599][ T5338] unmap_vmas+0x3cc/0x5f0
[ 75.308203][ T5338] ? __pfx_unmap_vmas+0x10/0x10
[ 75.309975][ T5338] ? tlb_gather_mmu_fullmm+0x160/0x210
[ 75.312038][ T5338] exit_mmap+0x275/0xc40
[ 75.313681][ T5338] ? __pfx_exit_mmap+0x10/0x10
[ 75.315428][ T5338] ? __pfx_exit_aio+0x10/0x10
[ 75.317358][ T5338] ? uprobe_clear_state+0x271/0x290
[ 75.319326][ T5338] ? mm_update_next_owner+0xa4/0x810
[ 75.321361][ T5338] ? do_raw_spin_unlock+0x58/0x8b0
[ 75.323299][ T5338] __mmput+0x115/0x390
[ 75.324883][ T5338] exit_mm+0x220/0x310
[ 75.326397][ T5338] ? __pfx_exit_mm+0x10/0x10
[ 75.328173][ T5338] ? taskstats_exit+0x326/0xa60
[ 75.330019][ T5338] do_exit+0x9b2/0x28e0
[ 75.331554][ T5338] ? __pfx_do_exit+0x10/0x10
[ 75.333294][ T5338] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 75.335383][ T5338] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 75.337699][ T5338] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 75.340104][ T5338] ? _raw_spin_lock_irq+0xdf/0x120
[ 75.342008][ T5338] do_group_exit+0x207/0x2c0
[ 75.343624][ T5338] ? _raw_spin_unlock_irq+0x23/0x50
[ 75.345504][ T5338] ? lockdep_hardirqs_on+0x99/0x150
[ 75.347380][ T5338] get_signal+0x16b2/0x1750
[ 75.349047][ T5338] ? __pfx_get_signal+0x10/0x10
[ 75.350889][ T5338] arch_do_signal_or_restart+0x96/0x860
[ 75.353007][ T5338] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 75.355372][ T5338] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 75.357670][ T5338] ? syscall_exit_to_user_mode+0xa3/0x340
[ 75.359853][ T5338] syscall_exit_to_user_mode+0xce/0x340
[ 75.362789][ T5338] do_syscall_64+0x100/0x230
[ 75.364696][ T5338] ? clear_bhb_loop+0x35/0x90
[ 75.366471][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.368528][ T5338] RIP: 0033:0x7fdc47b80809
[ 75.370067][ T5338] Code: Unable to access opcode bytes at 0x7fdc47b807df.
[ 75.372663][ T5338] RSP: 002b:00007fdc488b70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 75.375561][ T5338] RAX: 0000000000000001 RBX: 00007fdc47d45fa8 RCX: 00007fdc47b80809
[ 75.378439][ T5338] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdc47d45fac
[ 75.381349][ T5338] RBP: 00007fdc47d45fa0 R08: 7fffffffffffffff R09: 0000000000000000
[ 75.384344][ T5338] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fdc47d45fac
[ 75.387027][ T5338] R13: 0000000000000000 R14: 00007ffc13380bc0 R15: 00007ffc13380ca8
[ 75.389922][ T5338]
[ 75.392143][ T5338] Disabling lock debugging due to kernel taint
[ 75.400169][ T5338] BUG: Bad page map in process syz.0.0 pte:8061616161616161 pmd:36d75067
[ 75.403539][ T5338] addr:00007fdc46c01000 vm_flags:0c0444bb anon_vma:0000000000000000 mapping:ffff88801cc1f470 index:faa01
[ 75.407752][ T5338] file:resource2 fault:kernfs_vma_fault mmap:kernfs_fop_mmap read_folio:0x0
[ 75.410925][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Tainted: G B 6.12.0-syzkaller-09734-g445d9f05fa14 #0
[ 75.415151][ T5338] Tainted: [B]=BAD_PAGE
[ 75.416844][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.420633][ T5338] Call Trace:
[ 75.422079][ T5338]
[ 75.423173][ T5338] dump_stack_lvl+0x241/0x360
[ 75.424992][ T5338] ? __pfx_dump_stack_lvl+0x10/0x10
[ 75.426986][ T5338] ? __pfx__printk+0x10/0x10
[ 75.428673][ T5338] ? __pte_offset_map_lock+0x273/0x300
[ 75.430602][ T5338] ? __pfx_kernfs_vma_fault+0x10/0x10
[ 75.432561][ T5338] ? __pfx_kernfs_fop_mmap+0x10/0x10
[ 75.434513][ T5338] print_bad_pte+0x511/0x530
[ 75.436222][ T5338] vm_normal_page+0x155/0x200
[ 75.437974][ T5338] unmap_page_range+0xaec/0x4230
[ 75.439874][ T5338] ? kasan_quarantine_put+0xdc/0x230
[ 75.441839][ T5338] ? memtype_free+0x223/0x590
[ 75.443552][ T5338] ? memtype_free+0x245/0x590
[ 75.445309][ T5338] ? __pfx_unmap_page_range+0x10/0x10
[ 75.447289][ T5338] ? __pfx_pagerange_is_ram_callback+0x10/0x10
[ 75.449596][ T5338] ? untrack_pfn+0x34d/0x640
[ 75.451310][ T5338] ? __pfx_untrack_pfn+0x10/0x10
[ 75.453186][ T5338] ? uprobe_munmap+0x183/0x460
[ 75.454988][ T5338] ? unmap_single_vma+0x1bd/0x2b0
[ 75.456915][ T5338] unmap_vmas+0x3cc/0x5f0
[ 75.458538][ T5338] ? __pfx_unmap_vmas+0x10/0x10
[ 75.460421][ T5338] ? tlb_gather_mmu_fullmm+0x160/0x210
[ 75.462507][ T5338] exit_mmap+0x275/0xc40
[ 75.464105][ T5338] ? __pfx_exit_mmap+0x10/0x10
[ 75.465946][ T5338] ? __pfx_exit_aio+0x10/0x10
[ 75.467695][ T5338] ? uprobe_clear_state+0x271/0x290
[ 75.469673][ T5338] ? mm_update_next_owner+0xa4/0x810
[ 75.471625][ T5338] ? do_raw_spin_unlock+0x58/0x8b0
[ 75.473558][ T5338] __mmput+0x115/0x390
[ 75.474940][ T5338] exit_mm+0x220/0x310
[ 75.476425][ T5338] ? __pfx_exit_mm+0x10/0x10
[ 75.478143][ T5338] ? taskstats_exit+0x326/0xa60
[ 75.479906][ T5338] do_exit+0x9b2/0x28e0
[ 75.481515][ T5338] ? __pfx_do_exit+0x10/0x10
[ 75.483186][ T5338] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 75.485248][ T5338] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 75.487407][ T5338] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 75.489662][ T5338] ? _raw_spin_lock_irq+0xdf/0x120
[ 75.491478][ T5338] do_group_exit+0x207/0x2c0
[ 75.493209][ T5338] ? _raw_spin_unlock_irq+0x23/0x50
[ 75.495120][ T5338] ? lockdep_hardirqs_on+0x99/0x150
[ 75.497043][ T5338] get_signal+0x16b2/0x1750
[ 75.498746][ T5338] ? __pfx_get_signal+0x10/0x10
[ 75.500638][ T5338] arch_do_signal_or_restart+0x96/0x860
[ 75.502666][ T5338] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 75.504948][ T5338] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 75.507237][ T5338] ? syscall_exit_to_user_mode+0xa3/0x340
[ 75.509176][ T5338] syscall_exit_to_user_mode+0xce/0x340
[ 75.511007][ T5338] do_syscall_64+0x100/0x230
[ 75.512641][ T5338] ? clear_bhb_loop+0x35/0x90
[ 75.514093][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.516275][ T5338] RIP: 0033:0x7fdc47b80809
[ 75.517957][ T5338] Code: Unable to access opcode bytes at 0x7fdc47b807df.
[ 75.520561][ T5338] RSP: 002b:00007fdc488b70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 75.523689][ T5338] RAX: 0000000000000001 RBX: 00007fdc47d45fa8 RCX: 00007fdc47b80809
[ 75.526618][ T5338] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdc47d45fac
[ 75.529597][ T5338] RBP: 00007fdc47d45fa0 R08: 7fffffffffffffff R09: 0000000000000000
[ 75.532464][ T5338] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fdc47d45fac
[ 75.535369][ T5338] R13: 0000000000000000 R14: 00007ffc13380bc0 R15: 00007ffc13380ca8
[ 75.538097][ T5338]