program:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x40000010}]})
syz_mount_image$bcachefs(&(0x7f00000058c0), &(0x7f0000005900)='./file0\x00', 0x400, &(0x7f00000001c0)=ANY=[], 0x6, 0x59c5, &(0x7f000000b300)="$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")
[ 58.970210][ T4675] Bluetooth: hci0: command tx timeout
[ 58.970055][ T4675] Bluetooth: hci0: command tx timeout
[ 58.999853][ T5326] loop0: detected capacity change from 0 to 32768
[ 59.017102][ T5326] ==================================================================
[ 59.020095][ T5326] BUG: KASAN: slab-out-of-bounds in journal_entry_dev_usage_to_text+0x12d/0x1d0
[ 59.023591][ T5326] Read of size 8 at addr ffff88804cb8e000 by task syz.0.0/5326
[ 59.026527][ T5326]
[ 59.027488][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.12.0-rc5-syzkaller-00181-g6c52d4da1c74 #0
[ 59.031889][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 59.035820][ T5326] Call Trace:
[ 59.037055][ T5326]
[ 59.038114][ T5326] dump_stack_lvl+0x241/0x360
[ 59.039883][ T5326] ? __pfx_dump_stack_lvl+0x10/0x10
[ 59.041904][ T5326] ? __pfx__printk+0x10/0x10
[ 59.043666][ T5326] ? _printk+0xd5/0x120
[ 59.045223][ T5326] ? __virt_addr_valid+0x183/0x530
[ 59.047408][ T5326] ? __virt_addr_valid+0x183/0x530
[ 59.049534][ T5326] print_report+0x169/0x550
[ 59.051329][ T5326] ? __virt_addr_valid+0x183/0x530
[ 59.053341][ T5326] ? __virt_addr_valid+0x183/0x530
[ 59.055313][ T5326] ? __virt_addr_valid+0x45f/0x530
[ 59.057343][ T5326] ? __phys_addr+0xba/0x170
[ 59.058981][ T5326] ? journal_entry_dev_usage_to_text+0x12d/0x1d0
[ 59.061463][ T5326] kasan_report+0x143/0x180
[ 59.063272][ T5326] ? journal_entry_dev_usage_to_text+0x12d/0x1d0
[ 59.065600][ T5326] journal_entry_dev_usage_to_text+0x12d/0x1d0
[ 59.067962][ T5326] bch2_sb_clean_to_text+0x138/0x240
[ 59.070440][ T5326] bch2_sb_field_validate+0x201/0x2e0
[ 59.073067][ T5326] ? __pfx_bch2_sb_field_validate+0x10/0x10
[ 59.075866][ T5326] ? BCH_SB_BACKGROUND_COMPRESSION_TYPE+0x1b/0x80
[ 59.078876][ T5326] ? bch2_opt_validate+0x2ca/0x300
[ 59.081312][ T5326] bch2_sb_validate+0xbb1/0xf70
[ 59.083279][ T5326] ? blk_status_to_errno+0x22/0x80
[ 59.085162][ T5326] ? __pfx_bch2_sb_validate+0x10/0x10
[ 59.086933][ T5326] ? bch2_sb_compatible+0x493/0x850
[ 59.088641][ T5326] ? read_one_super+0x65a/0xf40
[ 59.090322][ T5326] ? read_one_super+0xe23/0xf40
[ 59.091979][ T5326] ? __pfx_read_one_super+0x10/0x10
[ 59.093826][ T5326] ? __pfx_bch2_sb_realloc+0x10/0x10
[ 59.095726][ T5326] ? bdev_file_open_by_path+0x382/0x480
[ 59.097528][ T5326] ? __pfx_bdev_file_open_by_path+0x10/0x10
[ 59.099633][ T5326] ? trace_kmalloc+0x1f/0xd0
[ 59.101498][ T5326] ? __asan_memcpy+0x40/0x70
[ 59.103345][ T5326] __bch2_read_super+0xc24/0x1380
[ 59.105429][ T5326] ? stack_depot_save_flags+0x6e4/0x830
[ 59.107578][ T5326] ? __pfx___bch2_read_super+0x10/0x10
[ 59.109809][ T5326] ? rcu_is_watching+0x15/0xb0
[ 59.111659][ T5326] ? __bch2_darray_resize_noprof+0x18b/0x240
[ 59.113888][ T5326] ? kfree+0x4e/0x440
[ 59.115479][ T5326] ? __bch2_darray_resize_noprof+0x18b/0x240
[ 59.117676][ T5326] bch2_fs_open+0x270/0x2f80
[ 59.119391][ T5326] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 59.121668][ T5326] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 59.124159][ T5326] ? lockdep_hardirqs_on+0x99/0x150
[ 59.126278][ T5326] ? __pfx_bch2_fs_open+0x10/0x10
[ 59.128219][ T5326] ? stack_trace_save+0x118/0x1d0
[ 59.130217][ T5326] ? kasan_save_track+0x51/0x80
[ 59.131875][ T5326] ? kasan_save_track+0x3f/0x80
[ 59.133679][ T5326] ? kasan_save_free_info+0x40/0x50
[ 59.135599][ T5326] ? __kasan_slab_free+0x59/0x70
[ 59.137585][ T5326] ? kfree+0x1a0/0x440
[ 59.139169][ T5326] ? sget+0x2b8/0x620
[ 59.140721][ T5326] ? bch2_fs_get_tree+0x683/0x1710
[ 59.142557][ T5326] ? vfs_get_tree+0x90/0x2b0
[ 59.144348][ T5326] ? do_new_mount+0x2be/0xb40
[ 59.146241][ T5326] ? __se_sys_mount+0x2d6/0x3c0
[ 59.148168][ T5326] ? do_syscall_64+0xf3/0x230
[ 59.149973][ T5326] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.152709][ T5326] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 59.154930][ T5326] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 59.157258][ T5326] ? kasan_quarantine_put+0xdc/0x230
[ 59.159269][ T5326] ? lockdep_hardirqs_on+0x99/0x150
[ 59.161261][ T5326] ? sget+0x2b8/0x620
[ 59.162733][ T5326] ? __pfx_bch2_test_super+0x10/0x10
[ 59.164746][ T5326] ? sget+0x2b8/0x620
[ 59.166362][ T5326] ? __pfx_bch2_noset_super+0x10/0x10
[ 59.168340][ T5326] bch2_fs_get_tree+0x738/0x1710
[ 59.170303][ T5326] ? __pfx_bch2_fs_get_tree+0x10/0x10
[ 59.172232][ T5326] ? generic_parse_monolithic+0x387/0x400
[ 59.174370][ T5326] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 59.176561][ T5326] ? apparmor_capable+0x13b/0x1b0
[ 59.178428][ T5326] vfs_get_tree+0x90/0x2b0
[ 59.180159][ T5326] do_new_mount+0x2be/0xb40
[ 59.181977][ T5326] ? __pfx_do_new_mount+0x10/0x10
[ 59.183921][ T5326] __se_sys_mount+0x2d6/0x3c0
[ 59.185800][ T5326] ? __pfx___se_sys_mount+0x10/0x10
[ 59.187753][ T5326] ? exc_page_fault+0x590/0x8c0
[ 59.189674][ T5326] ? __x64_sys_mount+0x20/0xc0
[ 59.191477][ T5326] do_syscall_64+0xf3/0x230
[ 59.193146][ T5326] ? clear_bhb_loop+0x35/0x90
[ 59.194945][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.197196][ T5326] RIP: 0033:0x7f991597feba
[ 59.198832][ T5326] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 59.206692][ T5326] RSP: 002b:00007f99166dfe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 59.209937][ T5326] RAX: ffffffffffffffda RBX: 00007f99166dfef0 RCX: 00007f991597feba
[ 59.212986][ T5326] RDX: 00000000200058c0 RSI: 0000000020005900 RDI: 00007f99166dfeb0
[ 59.216095][ T5326] RBP: 00000000200058c0 R08: 00007f99166dfef0 R09: 0000000000000400
[ 59.219184][ T5326] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000020005900
[ 59.222179][ T5326] R13: 00007f99166dfeb0 R14: 00000000000059c5 R15: 00000000200001c0
[ 59.225170][ T5326]
[ 59.226463][ T5326]
[ 59.227441][ T5326] Allocated by task 5326:
[ 59.229112][ T5326] kasan_save_track+0x3f/0x80
[ 59.230912][ T5326] __kasan_kmalloc+0x98/0xb0
[ 59.232741][ T5326] __kmalloc_node_track_caller_noprof+0x225/0x440
[ 59.235246][ T5326] krealloc_noprof+0x88/0x120
[ 59.237199][ T5326] bch2_sb_realloc+0x2d2/0x660
[ 59.239069][ T5326] read_one_super+0x73b/0xf40
[ 59.240957][ T5326] __bch2_read_super+0x87c/0x1380
[ 59.242847][ T5326] bch2_fs_open+0x270/0x2f80
[ 59.244524][ T5326] bch2_fs_get_tree+0x738/0x1710
[ 59.246450][ T5326] vfs_get_tree+0x90/0x2b0
[ 59.247993][ T5326] do_new_mount+0x2be/0xb40
[ 59.249681][ T5326] __se_sys_mount+0x2d6/0x3c0
[ 59.251242][ T5326] do_syscall_64+0xf3/0x230
[ 59.252863][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.254916][ T5326]
[ 59.255798][ T5326] The buggy address belongs to the object at ffff88804cb8c000
[ 59.255798][ T5326] which belongs to the cache kmalloc-8k of size 8192
[ 59.261280][ T5326] The buggy address is located 0 bytes to the right of
[ 59.261280][ T5326] allocated 8192-byte region [ffff88804cb8c000, ffff88804cb8e000)
[ 59.266774][ T5326]
[ 59.267767][ T5326] The buggy address belongs to the physical page:
[ 59.270251][ T5326] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4cb88
[ 59.273471][ T5326] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 59.276811][ T5326] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[ 59.279741][ T5326] page_type: f5(slab)
[ 59.281216][ T5326] raw: 04fff00000000040 ffff88801ac42280 dead000000000122 0000000000000000
[ 59.284307][ T5326] raw: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000
[ 59.287640][ T5326] head: 04fff00000000040 ffff88801ac42280 dead000000000122 0000000000000000
[ 59.291038][ T5326] head: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000
[ 59.294412][ T5326] head: 04fff00000000003 ffffea000132e201 ffffffffffffffff 0000000000000000
[ 59.297751][ T5326] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 59.301110][ T5326] page dumped because: kasan: bad access detected
[ 59.304062][ T5326] page_owner tracks the page as allocated
[ 59.306454][ T5326] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5320, tgid 5320 (kworker/0:4), ts 57550322232, free_ts 0
[ 59.313406][ T5326] post_alloc_hook+0x1f3/0x230
[ 59.315212][ T5326] get_page_from_freelist+0x303f/0x3190
[ 59.317276][ T5326] __alloc_pages_noprof+0x292/0x710
[ 59.319192][ T5326] alloc_pages_mpol_noprof+0x3e8/0x680
[ 59.321221][ T5326] alloc_slab_page+0x6a/0x120
[ 59.323106][ T5326] allocate_slab+0x5a/0x2f0
[ 59.324903][ T5326] ___slab_alloc+0xcd1/0x14b0
[ 59.326720][ T5326] __slab_alloc+0x58/0xa0
[ 59.328367][ T5326] __kmalloc_noprof+0x25a/0x400
[ 59.330213][ T5326] __sta_info_alloc+0xbcb/0x1ea0
[ 59.332075][ T5326] ieee80211_ibss_rx_no_sta+0x3c8/0x720
[ 59.334124][ T5326] ieee80211_prepare_and_rx_handle+0x228a/0x6360
[ 59.336312][ T5326] ieee80211_rx_list+0x2ce0/0x3780
[ 59.338231][ T5326] ieee80211_rx_napi+0x18a/0x3c0
[ 59.339998][ T5326] ieee80211_handle_queued_frames+0xe7/0x1e0
[ 59.342083][ T5326] tasklet_action_common+0x321/0x4d0
[ 59.343926][ T5326] page_owner free stack trace missing
[ 59.345745][ T5326]
[ 59.346598][ T5326] Memory state around the buggy address:
[ 59.348591][ T5326] ffff88804cb8df00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 59.351537][ T5326] ffff88804cb8df80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 59.354474][ T5326] >ffff88804cb8e000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 59.357403][ T5326] ^
[ 59.358937][ T5326] ffff88804cb8e080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 59.361798][ T5326] ffff88804cb8e100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 59.364569][ T5326] ==================================================================
[ 59.403114][ T5326] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 59.405726][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.12.0-rc5-syzkaller-00181-g6c52d4da1c74 #0
[ 59.409488][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 59.413489][ T5326] Call Trace:
[ 59.414810][ T5326]
[ 59.415938][ T5326] dump_stack_lvl+0x241/0x360
[ 59.417725][ T5326] ? __pfx_dump_stack_lvl+0x10/0x10
[ 59.419641][ T5326] ? __pfx__printk+0x10/0x10
[ 59.421386][ T5326] ? preempt_schedule+0xe1/0xf0
[ 59.423288][ T5326] ? vscnprintf+0x5d/0x90
[ 59.424779][ T5326] panic+0x349/0x880
[ 59.426233][ T5326] ? check_panic_on_warn+0x21/0xb0
[ 59.428167][ T5326] ? __pfx_panic+0x10/0x10
[ 59.429848][ T5326] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 59.432043][ T5326] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 59.434248][ T5326] ? print_report+0x502/0x550
[ 59.436076][ T5326] check_panic_on_warn+0x86/0xb0
[ 59.438052][ T5326] ? journal_entry_dev_usage_to_text+0x12d/0x1d0
[ 59.440492][ T5326] end_report+0x77/0x160
[ 59.442147][ T5326] kasan_report+0x154/0x180
[ 59.443999][ T5326] ? journal_entry_dev_usage_to_text+0x12d/0x1d0
[ 59.446511][ T5326] journal_entry_dev_usage_to_text+0x12d/0x1d0
[ 59.448619][ T5326] bch2_sb_clean_to_text+0x138/0x240
[ 59.450643][ T5326] bch2_sb_field_validate+0x201/0x2e0
[ 59.452727][ T5326] ? __pfx_bch2_sb_field_validate+0x10/0x10
[ 59.454883][ T5326] ? BCH_SB_BACKGROUND_COMPRESSION_TYPE+0x1b/0x80
[ 59.457350][ T5326] ? bch2_opt_validate+0x2ca/0x300
[ 59.459349][ T5326] bch2_sb_validate+0xbb1/0xf70
[ 59.461175][ T5326] ? blk_status_to_errno+0x22/0x80
[ 59.463001][ T5326] ? __pfx_bch2_sb_validate+0x10/0x10
[ 59.465198][ T5326] ? bch2_sb_compatible+0x493/0x850
[ 59.467355][ T5326] ? read_one_super+0x65a/0xf40
[ 59.469172][ T5326] ? read_one_super+0xe23/0xf40
[ 59.470963][ T5326] ? __pfx_read_one_super+0x10/0x10
[ 59.472909][ T5326] ? __pfx_bch2_sb_realloc+0x10/0x10
[ 59.474915][ T5326] ? bdev_file_open_by_path+0x382/0x480
[ 59.477117][ T5326] ? __pfx_bdev_file_open_by_path+0x10/0x10
[ 59.479356][ T5326] ? trace_kmalloc+0x1f/0xd0
[ 59.481179][ T5326] ? __asan_memcpy+0x40/0x70
[ 59.482941][ T5326] __bch2_read_super+0xc24/0x1380
[ 59.484827][ T5326] ? stack_depot_save_flags+0x6e4/0x830
[ 59.486898][ T5326] ? __pfx___bch2_read_super+0x10/0x10
[ 59.489014][ T5326] ? rcu_is_watching+0x15/0xb0
[ 59.490750][ T5326] ? __bch2_darray_resize_noprof+0x18b/0x240
[ 59.493043][ T5326] ? kfree+0x4e/0x440
[ 59.494604][ T5326] ? __bch2_darray_resize_noprof+0x18b/0x240
[ 59.497002][ T5326] bch2_fs_open+0x270/0x2f80
[ 59.498904][ T5326] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 59.501216][ T5326] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 59.503629][ T5326] ? lockdep_hardirqs_on+0x99/0x150
[ 59.505657][ T5326] ? __pfx_bch2_fs_open+0x10/0x10
[ 59.507564][ T5326] ? stack_trace_save+0x118/0x1d0
[ 59.509839][ T5326] ? kasan_save_track+0x51/0x80
[ 59.512102][ T5326] ? kasan_save_track+0x3f/0x80
[ 59.514019][ T5326] ? kasan_save_free_info+0x40/0x50
[ 59.516015][ T5326] ? __kasan_slab_free+0x59/0x70
[ 59.517872][ T5326] ? kfree+0x1a0/0x440
[ 59.519523][ T5326] ? sget+0x2b8/0x620
[ 59.521139][ T5326] ? bch2_fs_get_tree+0x683/0x1710
[ 59.523195][ T5326] ? vfs_get_tree+0x90/0x2b0
[ 59.525067][ T5326] ? do_new_mount+0x2be/0xb40
[ 59.526947][ T5326] ? __se_sys_mount+0x2d6/0x3c0
[ 59.528857][ T5326] ? do_syscall_64+0xf3/0x230
[ 59.530711][ T5326] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.533113][ T5326] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 59.535433][ T5326] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 59.537840][ T5326] ? kasan_quarantine_put+0xdc/0x230
[ 59.540193][ T5326] ? lockdep_hardirqs_on+0x99/0x150
[ 59.542528][ T5326] ? sget+0x2b8/0x620
[ 59.544096][ T5326] ? __pfx_bch2_test_super+0x10/0x10
[ 59.546125][ T5326] ? sget+0x2b8/0x620
[ 59.547755][ T5326] ? __pfx_bch2_noset_super+0x10/0x10
[ 59.549887][ T5326] bch2_fs_get_tree+0x738/0x1710
[ 59.551880][ T5326] ? __pfx_bch2_fs_get_tree+0x10/0x10
[ 59.553984][ T5326] ? generic_parse_monolithic+0x387/0x400
[ 59.556200][ T5326] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 59.558326][ T5326] ? apparmor_capable+0x13b/0x1b0
[ 59.560108][ T5326] vfs_get_tree+0x90/0x2b0
[ 59.561721][ T5326] do_new_mount+0x2be/0xb40
[ 59.563537][ T5326] ? __pfx_do_new_mount+0x10/0x10
[ 59.566197][ T5326] __se_sys_mount+0x2d6/0x3c0
[ 59.568184][ T5326] ? __pfx___se_sys_mount+0x10/0x10
[ 59.570248][ T5326] ? exc_page_fault+0x590/0x8c0
[ 59.572147][ T5326] ? __x64_sys_mount+0x20/0xc0
[ 59.574085][ T5326] do_syscall_64+0xf3/0x230
[ 59.575867][ T5326] ? clear_bhb_loop+0x35/0x90
[ 59.577828][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.580193][ T5326] RIP: 0033:0x7f991597feba
[ 59.582006][ T5326] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 59.589342][ T5326] RSP: 002b:00007f99166dfe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 59.592605][ T5326] RAX: ffffffffffffffda RBX: 00007f99166dfef0 RCX: 00007f991597feba
[ 59.595771][ T5326] RDX: 00000000200058c0 RSI: 0000000020005900 RDI: 00007f99166dfeb0
[ 59.598878][ T5326] RBP: 00000000200058c0 R08: 00007f99166dfef0 R09: 0000000000000400
[ 59.601970][ T5326] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000020005900
[ 59.605051][ T5326] R13: 00007f99166dfeb0 R14: 00000000000059c5 R15: 00000000200001c0
[ 59.608091][ T5326]
[ 59.609602][ T5326] Kernel Offset: disabled
[ 59.611362][ T5326] Rebooting in 86400 seconds..