program: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH") r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb7, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x8f}, [@ldst={0x7}]}, &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x18) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080)=r2, 0x2) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x20, 0x3, &(0x7f0000000180)=ANY=[@ANYRESHEX=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3d0, &(0x7f00000004c0)="$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") r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write(r4, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e", 0x3d) r5 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400) ioctl$LOOP_SET_STATUS(r5, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x3, 0x9, 0x10, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c282ec6bcfeef4fb0efcc1d8a6078ed98e033fd5f0643902dd8f6fac274de9d940bba5e592bbd4ce85450d00", "f625c10e6e4c36c800dee96015e0fb7e904dc8df62a3a893ec00347f41be5a08", [0x2, 0x9]}) creat(&(0x7f0000000240)='./file1\x00', 0xa) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r3, 0x0, 0x14, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884366a578bb3fb7dbfc", 0x0, 0x0, 0x0, 0x9, 0x0, &(0x7f0000000700)="49723b3ab53a13274c", 0x0}, 0x50) setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f00000013c0)=ANY=[], 0x700, 0x0) renameat2(r1, &(0x7f0000000080)='./file1\x00', r0, &(0x7f00000000c0)='./file0\x00', 0x0) mkdir(&(0x7f0000000400)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) geteuid() mount$overlay(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000340), 0x0, &(0x7f00000009c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}], [{@permit_directio}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@subj_role={'subj_role', 0x3d, '{+'}}, {@dont_measure}]}) chdir(&(0x7f00000005c0)='./bus\x00') rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') syz_usb_connect(0x0, 0x24, 0x0, 0x0) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0) r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) sendfile(r7, r6, &(0x7f0000002080)=0x64, 0x23b) [ 70.497372][ T5313] Bluetooth: hci0: command tx timeout [ 70.585968][ T5328] loop0: detected capacity change from 0 to 1024 [ 70.623982][ T5328] EXT4-fs: Ignoring removed orlov option [ 70.626123][ T5328] EXT4-fs: Ignoring removed nomblk_io_submit option [ 70.645281][ T5328] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.689363][ T5328] loop0: detected capacity change from 1024 to 1023 [ 70.707435][ T5328] ------------[ cut here ]------------ [ 70.710344][ T5328] kernel BUG at fs/ext4/inline.c:1970! [ 70.715417][ T5328] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 70.717671][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted 6.12.0-rc4-syzkaller-00261-g850925a8133c #0 [ 70.721278][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 70.725446][ T5328] RIP: 0010:ext4_inline_data_truncate+0xced/0xcf0 [ 70.728247][ T5328] Code: e9 17 fd ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 44 fd ff ff e8 83 b8 9f ff e9 3a fd ff ff e8 19 07 68 09 e8 d4 fa 35 ff 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e [ 70.736195][ T5328] RSP: 0018:ffffc9000d367400 EFLAGS: 00010283 [ 70.739046][ T5328] RAX: ffffffff825eef9c RBX: ffffc9000d3674a0 RCX: 0000000000040000 [ 70.742563][ T5328] RDX: ffffc9000daea000 RSI: 0000000000001457 RDI: 0000000000001458 [ 70.746026][ T5328] RBP: ffffc9000d367590 R08: ffffffff825eec48 R09: 1ffff110087bd778 [ 70.749567][ T5328] R10: dffffc0000000000 R11: ffffed10087bd779 R12: ffffc9000d367500 [ 70.752655][ T5328] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000 [ 70.755526][ T5328] FS: 00007f0aa21006c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 70.758919][ T5328] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.761303][ T5328] CR2: 00005583eb8b3730 CR3: 0000000042db2000 CR4: 0000000000352ef0 [ 70.764102][ T5328] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.766853][ T5328] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.769711][ T5328] Call Trace: [ 70.770981][ T5328] [ 70.772127][ T5328] ? __die_body+0x5f/0xb0 [ 70.773883][ T5328] ? die+0x9e/0xc0 [ 70.775353][ T5328] ? do_trap+0x15a/0x3a0 [ 70.777081][ T5328] ? ext4_inline_data_truncate+0xced/0xcf0 [ 70.779443][ T5328] ? do_error_trap+0x1dc/0x2c0 [ 70.781261][ T5328] ? ext4_inline_data_truncate+0xced/0xcf0 [ 70.783237][ T5328] ? __pfx_do_error_trap+0x10/0x10 [ 70.785009][ T5328] ? report_bug+0x3e8/0x500 [ 70.786790][ T5328] ? handle_invalid_op+0x34/0x40 [ 70.788601][ T5328] ? ext4_inline_data_truncate+0xced/0xcf0 [ 70.790592][ T5328] ? exc_invalid_op+0x38/0x50 [ 70.792510][ T5328] ? asm_exc_invalid_op+0x1a/0x20 [ 70.794208][ T5328] ? ext4_inline_data_truncate+0x998/0xcf0 [ 70.796478][ T5328] ? ext4_inline_data_truncate+0xcec/0xcf0 [ 70.798564][ T5328] ? ext4_inline_data_truncate+0xced/0xcf0 [ 70.800624][ T5328] ? __pfx_ext4_inline_data_truncate+0x10/0x10 [ 70.802626][ T5328] ext4_truncate+0x3ca/0x11c0 [ 70.804220][ T5328] ? __pfx_ext4_truncate+0x10/0x10 [ 70.806169][ T5328] ext4_setattr+0x119a/0x1bc0 [ 70.807976][ T5328] ? __pfx_ext4_setattr+0x10/0x10 [ 70.809831][ T5328] notify_change+0xbca/0xe90 [ 70.811610][ T5328] do_truncate+0x220/0x310 [ 70.813182][ T5328] ? __pfx_do_truncate+0x10/0x10 [ 70.815041][ T5328] ? apparmor_file_truncate+0x297/0x350 [ 70.817214][ T5328] path_openat+0x2e1e/0x3590 [ 70.818996][ T5328] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 70.821369][ T5328] ? __pfx_path_openat+0x10/0x10 [ 70.823289][ T5328] do_filp_open+0x235/0x490 [ 70.825141][ T5328] ? __pfx_do_filp_open+0x10/0x10 [ 70.827257][ T5328] ? _raw_spin_unlock+0x28/0x50 [ 70.829037][ T5328] ? alloc_fd+0x5a1/0x640 [ 70.830643][ T5328] do_sys_openat2+0x13e/0x1d0 [ 70.832289][ T5328] ? __pfx_do_sys_openat2+0x10/0x10 [ 70.835152][ T5328] ? __rseq_handle_notify_resume+0x34d/0x14d0 [ 70.837557][ T5328] __x64_sys_creat+0x123/0x170 [ 70.839487][ T5328] ? __pfx___x64_sys_creat+0x10/0x10 [ 70.841490][ T5328] ? do_syscall_64+0x100/0x230 [ 70.843375][ T5328] ? do_syscall_64+0xb6/0x230 [ 70.845214][ T5328] do_syscall_64+0xf3/0x230 [ 70.847037][ T5328] ? clear_bhb_loop+0x35/0x90 [ 70.848834][ T5328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.850945][ T5328] RIP: 0033:0x7f0aa137e719 [ 70.852751][ T5328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 70.860142][ T5328] RSP: 002b:00007f0aa2100038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 70.863193][ T5328] RAX: ffffffffffffffda RBX: 00007f0aa1535f80 RCX: 00007f0aa137e719 [ 70.866135][ T5328] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000020000240 [ 70.869049][ T5328] RBP: 00007f0aa13f132e R08: 0000000000000000 R09: 0000000000000000 [ 70.871930][ T5328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 70.874843][ T5328] R13: 0000000000000000 R14: 00007f0aa1535f80 R15: 00007ffe0bc10468 [ 70.877732][ T5328] [ 70.878921][ T5328] Modules linked in: [ 70.881946][ T5328] ---[ end trace 0000000000000000 ]--- [ 70.890954][ T5328] RIP: 0010:ext4_inline_data_truncate+0xced/0xcf0 [ 70.893417][ T5328] Code: e9 17 fd ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 44 fd ff ff e8 83 b8 9f ff e9 3a fd ff ff e8 19 07 68 09 e8 d4 fa 35 ff 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e [ 70.901996][ T5328] RSP: 0018:ffffc9000d367400 EFLAGS: 00010283 [ 70.904346][ T5328] RAX: ffffffff825eef9c RBX: ffffc9000d3674a0 RCX: 0000000000040000 [ 70.907194][ T5328] RDX: ffffc9000daea000 RSI: 0000000000001457 RDI: 0000000000001458 [ 70.910950][ T5328] RBP: ffffc9000d367590 R08: ffffffff825eec48 R09: 1ffff110087bd778 [ 70.914679][ T5328] R10: dffffc0000000000 R11: ffffed10087bd779 R12: ffffc9000d367500 [ 70.917665][ T5328] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000 [ 70.921308][ T5328] FS: 00007f0aa21006c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 70.924281][ T5328] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.926551][ T5328] CR2: 00007f0aa20def98 CR3: 0000000042db2000 CR4: 0000000000352ef0 [ 70.929951][ T5328] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.932850][ T5328] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.935790][ T5328] Kernel panic - not syncing: Fatal exception [ 70.938349][ T5328] Kernel Offset: disabled [ 70.940019][ T5328] Rebooting in 86400 seconds..