program:
syz_read_part_table(0x617, &(0x7f0000000000)="$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")
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000540)='./file0\x00', 0x1000000, &(0x7f0000001bc0)=ANY=[@ANYBLOB="7569643d666f726765742c6c6f6e6761642c0035c1701df5d0b87a690f389896bca4e14c591f52cffb8d200b5096c943638e5d4750164db51b14f083138115db86bc99dd686929c2ee5f67cf547d32f667d7eec1e69a809925a5885847d555a95f9227fd9c5a91d7c029c0bd580f0bc9b700095edce34f56718910977bfb316f32c1e812f0c435f568cf6a28fd67f19cb260306ccf0da5b288fe8993"], 0x1, 0x4e8, &(0x7f00000005c0)="$eJzs3M9vHFcdAPDvG3vdtQvUbUNqSiWMfIhp6sg/mjhgVGGSmFaqQGrqHhAScmI7WPWPyHaqpuJHuXHjhMSJC6pUIagqJCTUAyeE+AOQQBSJcEGCA/IJjqAZ7+yu7SU2rNeO489HSnZ29juz7432O++98bwJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACDii9emR8fScZcCADhKX77+yui49h8ATpVXjf8BAOC0SJHFvUjx9z9upXPF+23Vl5dW77w5e3Wm9Wa9qdiyq4jP/1XHxieev3hp8nL5ev/tD9sn4ivXX50evLK2cnt9YWNjYX5wdnXp5tr8woH30O72uz1bHIDBldfvzC8ubgyOX5jY8fGb/X995NGz/VOXRybOl7GzV2dmrjfFdFf+72/fwwiPVnoii59Hih9+7r00HBFZtJ8L+5w7Oq03uvP8Kyoxe3WmqMjy0tzqZv5hKhOhe2dO9JQ5cgS52JbhiJG8rD0ymvZVIovpSPGp2EqfiYiuMg/OF38Y3H8H3UdQyBbyck5GxItxAnIWHlCPRBa/jBQrj1Xj2eNLZ+AYdEcW34sU517YSueL/kDenubd5pdfG3xpdXGtKTalWot60scHR0nfhAdYNbIYLnr8W+m54y4McKR6I4vFSJH94o3iulIU16Ufm7o888LF5itMT+2znzz2QkRMHHBMXimvNebbZodbJwAAAAAAAAAAAHjYVVMWP40U3/pktXj/Yv0G+Xv/Lhxz+YAOSln8IFK89NpWMTW++bkUXU3P96g76XN/Olv+3uqVtdt315dufWOz5ed91ekbG5vrczdbfxy9UW3cF13Y7zkG0IZKyuJKpPjLe+82bsPvT/lvsDYVuKse+87nG7/N6u7fX3He+Nj282zKOQTXvjrUvNzyJ/s/zI/LvzOlLH4bKb50Y6AoS4q+2JMzsR13LY/78JlaXNaT16ic39y/vcfFpeWF0Tz295HiT38oY6OILScKPtmIHctjs0jx6V/tjO2rxZ5pxI6XZbjzs9axH2/ETuSxP44UA/ODZWxfHnumFnu2EXvh5tryfKtDCQAHlbf/r0SKv00NprJt7N5uf/a2/99sjAXe3r2j/9Lmt9v+9zete7vWrk9HisUPBmrl7CtK2qr9fy5S3HjnmbI+RdtbdiseL/5vtP8jkeLpf+yMrdZin2jEjh34wMIJkOf/1yLFu/98v54btRyovW1kbXP+P107OzTGDJ3J/8eb1vXXvrfncKoOp97G3bden1teXli3YMGChfrCcZ+ZgE7L+/8/ihRD3/+wPt6t9f8/sv2uMf7/17cb/f+p3TvqUP//iaZ1U7XRSCUfm2+u3K48FVHduPvWyNLK3K2FWwurE8+PXhybvPTZS5OVnnJw31hq+1jBwybP/z9Hiq//+if1v3ftHP+3vv7Xt3tHHcr/J5vW9e0Yr7RddTj18vz/aKT43Rvv13P6ftf/yut9w0Pbr/WH6XYo/880reuvfe+jh1N1AAAAAAAAAAAAOLEqKYvfRIrvDnWn8l67g9z/u+cBNB26/+9s07r5I5qv2PZBBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYI8ssliLFB98YSt9J18xEHGu+RV4aP0nAAD//5okKSs=")
sendmsg$sock(r0, &(0x7f0000000540)={&(0x7f0000000000)=@rc, 0x80, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x97, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x9}, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000980)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r2 = open(&(0x7f0000000040)='./file2\x00', 0x181042, 0x0)
write$P9_RREADDIR(r2, &(0x7f00000001c0)={0xb, 0x29, 0x1, {0x5}}, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000340)='map_files\x00')
fchdir(r3)
syz_read_part_table(0x5c7, &(0x7f0000000000)="$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")
write$binfmt_script(r2, &(0x7f0000000280)={'#! ', './file0', [{0x20, ':\\*+^\'+))+'}, {0x20, 'noload'}, {}, {0x20, 'resgid'}, {0x20, '#\\:'}, {0x20, '&'}, {0x20, '#[)\x7f-.(}$\x00'}, {0x20, 'noload'}, {0x20, '-$]!*'}], 0xa, "92f6304e083db873c3cde68486ede7e9fb51f95b12c3d948114d8b9e9e5b1872880da175c0347154feb66afbfb2a0a7d143fda7f33cbbd067fc93c777c872c8c"}, 0x83)
ftruncate(r1, 0x6)
sendfile(r2, r2, &(0x7f0000000240), 0x7f06)
creat(&(0x7f0000000140)='./file3\x00', 0x114)
[ 69.113472][ T5306] Bluetooth: hci0: command tx timeout
[ 69.176924][ T5322] loop0: detected capacity change from 0 to 2048
[ 69.199573][ T5322] loop0: p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[ 70.050039][ T5302] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[ 70.096626][ T5301] udevd[5301]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[ 70.117829][ T5324] udevd[5324]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory
[ 70.140290][ T5325] udevd[5325]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory
[ 70.149668][ T5324] udevd[5324]: inotify_add_watch(7, /dev/loop0p13, 10) failed: No such file or directory
[ 70.156838][ T5301] udevd[5301]: inotify_add_watch(7, /dev/loop0p14, 10) failed: No such file or directory
[ 70.162987][ T5329] udevd[5329]: inotify_add_watch(7, /dev/loop0p10, 10) failed: No such file or directory
[ 70.187044][ T5326] udevd[5326]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[ 70.212031][ T5327] udevd[5327]: inotify_add_watch(7, /dev/loop0p8, 10) failed: No such file or directory
[ 70.219992][ T5330] udevd[5330]: inotify_add_watch(7, /dev/loop0p11, 10) failed: No such file or directory
[ 70.228370][ T5328] udevd[5328]: inotify_add_watch(7, /dev/loop0p9, 10) failed: No such file or directory
[ 70.237109][ T5325] udevd[5325]: inotify_add_watch(7, /dev/loop0p17, 10) failed: No such file or directory
[ 70.246000][ T5329] udevd[5329]: inotify_add_watch(7, /dev/loop0p19, 10) failed: No such file or directory
[ 70.254696][ T5301] udevd[5301]: inotify_add_watch(7, /dev/loop0p18, 10) failed: No such file or directory
[ 70.265411][ T5331] udevd[5331]: inotify_add_watch(7, /dev/loop0p12, 10) failed: No such file or directory
[ 70.272094][ T5326] udevd[5326]: inotify_add_watch(7, /dev/loop0p15, 10) failed: No such file or directory
[ 70.287427][ T5324] udevd[5324]: inotify_add_watch(7, /dev/loop0p16, 10) failed: No such file or directory
[ 70.294243][ T5302] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 70.298452][ T5302] Buffer I/O error on dev loop0p4, logical block 0, async page read
[ 70.302266][ T5302] I/O error, dev loop0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 70.312978][ T5332] loop0: detected capacity change from 0 to 512
[ 70.330408][ T5325] udevd[5325]: inotify_add_watch(7, /dev/loop0p21, 10) failed: No such file or directory
[ 70.337345][ T5329] udevd[5329]: inotify_add_watch(7, /dev/loop0p24, 10) failed: No such file or directory
[ 70.342642][ T5301] udevd[5301]: inotify_add_watch(7, /dev/loop0p23, 10) failed: No such file or directory
[ 70.348408][ T5328] udevd[5328]: inotify_add_watch(7, /dev/loop0p20, 10) failed: No such file or directory
[ 70.355460][ T5324] udevd[5324]: inotify_add_watch(7, /dev/loop0p25, 10) failed: No such file or directory
[ 70.361564][ T5331] udevd[5331]: inotify_add_watch(7, /dev/loop0p22, 10) failed: No such file or directory
[ 70.375564][ T5326] udevd[5326]: inotify_add_watch(7, /dev/loop0p28, 10) failed: No such file or directory
[ 70.382576][ T5330] udevd[5330]: inotify_add_watch(7, /dev/loop0p26, 10) failed: No such file or directory
[ 70.388581][ T5327] udevd[5327]: inotify_add_watch(7, /dev/loop0p27, 10) failed: No such file or directory
[ 70.403707][ T5302] Buffer I/O error on dev loop0p4, logical block 1, async page read
[ 70.411062][ T5324] udevd[5324]: inotify_add_watch(7, /dev/loop0p29, 10) failed: No such file or directory
[ 70.434899][ T3880] ==================================================================
[ 70.437885][ T3880] BUG: KASAN: slab-use-after-free in update_io_ticks+0xa6/0x2d0
[ 70.440831][ T3880] Read of size 8 at addr ffff888031d567a8 by task kworker/u4:11/3880
[ 70.443795][ T3880]
[ 70.444643][ T3880] CPU: 0 UID: 0 PID: 3880 Comm: kworker/u4:11 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[ 70.448967][ T3880] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 70.452947][ T3880] Workqueue: loop0 loop_rootcg_workfn
[ 70.454991][ T3880] Call Trace:
[ 70.456269][ T3880]
[ 70.457378][ T3880] dump_stack_lvl+0x241/0x360
[ 70.459205][ T3880] ? __pfx_dump_stack_lvl+0x10/0x10
[ 70.461173][ T3880] ? __pfx__printk+0x10/0x10
[ 70.462871][ T3880] ? _printk+0xd5/0x120
[ 70.464507][ T3880] ? __virt_addr_valid+0x183/0x530
[ 70.466484][ T3880] ? __virt_addr_valid+0x183/0x530
[ 70.468480][ T3880] print_report+0x169/0x550
[ 70.470206][ T3880] ? __virt_addr_valid+0x183/0x530
[ 70.472149][ T3880] ? __virt_addr_valid+0x183/0x530
[ 70.474087][ T3880] ? __virt_addr_valid+0x45f/0x530
[ 70.475994][ T3880] ? __phys_addr+0xba/0x170
[ 70.477740][ T3880] ? update_io_ticks+0xa6/0x2d0
[ 70.479650][ T3880] kasan_report+0x143/0x180
[ 70.481434][ T3880] ? update_io_ticks+0xa6/0x2d0
[ 70.483231][ T3880] update_io_ticks+0xa6/0x2d0
[ 70.485010][ T3880] ? __pfx_update_io_ticks+0x10/0x10
[ 70.486891][ T3880] ? seqcount_lockdep_reader_access+0x1d7/0x220
[ 70.489143][ T3880] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 70.491506][ T3880] blk_account_io_done+0x199/0x740
[ 70.493496][ T3880] ? blk_stat_add+0x75/0x4a0
[ 70.495287][ T3880] __blk_mq_end_request+0x270/0x5d0
[ 70.497395][ T3880] loop_process_work+0x1bc8/0x21c0
[ 70.499342][ T3880] ? __pfx_loop_process_work+0x10/0x10
[ 70.501366][ T3880] ? lockdep_unlock+0x16a/0x300
[ 70.503229][ T3880] ? mark_lock+0x2ae/0x360
[ 70.504974][ T3880] ? __lock_acquire+0x1397/0x2100
[ 70.506859][ T3880] ? do_raw_spin_unlock+0x58/0x8b0
[ 70.508813][ T3880] ? __pfx_lock_acquire+0x10/0x10
[ 70.510669][ T3880] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 70.512902][ T3880] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 70.515242][ T3880] ? process_scheduled_works+0x976/0x1840
[ 70.517381][ T3880] process_scheduled_works+0xa66/0x1840
[ 70.519443][ T3880] ? __pfx_process_scheduled_works+0x10/0x10
[ 70.521736][ T3880] ? assign_work+0x364/0x3d0
[ 70.523542][ T3880] worker_thread+0x870/0xd30
[ 70.525329][ T3880] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 70.527703][ T3880] ? __kthread_parkme+0x169/0x1d0
[ 70.529540][ T3880] ? __pfx_worker_thread+0x10/0x10
[ 70.531417][ T3880] kthread+0x2f0/0x390
[ 70.532924][ T3880] ? __pfx_worker_thread+0x10/0x10
[ 70.534866][ T3880] ? __pfx_kthread+0x10/0x10
[ 70.536637][ T3880] ret_from_fork+0x4b/0x80
[ 70.538230][ T3880] ? __pfx_kthread+0x10/0x10
[ 70.539926][ T3880] ret_from_fork_asm+0x1a/0x30
[ 70.541682][ T3880]
[ 70.542830][ T3880]
[ 70.543745][ T3880] Allocated by task 5322:
[ 70.545374][ T3880] kasan_save_track+0x3f/0x80
[ 70.547067][ T3880] __kasan_slab_alloc+0x66/0x80
[ 70.548833][ T3880] kmem_cache_alloc_lru_noprof+0x1dd/0x390
[ 70.550998][ T3880] bdev_alloc_inode+0x29/0x90
[ 70.552740][ T3880] alloc_inode+0x65/0x1a0
[ 70.554326][ T3880] new_inode+0x22/0x1d0
[ 70.555980][ T3880] bdev_alloc+0x26/0x380
[ 70.557430][ T3880] add_partition+0x1b6/0x8a0
[ 70.559112][ T3880] bdev_disk_changed+0xb22/0x13f0
[ 70.560940][ T3880] loop_set_status+0x70c/0x8f0
[ 70.562690][ T3880] lo_ioctl+0xcbc/0x1f50
[ 70.564263][ T3880] blkdev_ioctl+0x57d/0x6a0
[ 70.566050][ T3880] __se_sys_ioctl+0xf5/0x170
[ 70.567751][ T3880] do_syscall_64+0xf3/0x230
[ 70.569369][ T3880] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 70.571580][ T3880]
[ 70.572572][ T3880] Freed by task 16:
[ 70.574228][ T3880] kasan_save_track+0x3f/0x80
[ 70.576081][ T3880] kasan_save_free_info+0x40/0x50
[ 70.577820][ T3880] __kasan_slab_free+0x59/0x70
[ 70.579472][ T3880] kmem_cache_free+0x195/0x410
[ 70.581059][ T3880] rcu_core+0xaaa/0x17a0
[ 70.582465][ T3880] handle_softirqs+0x2d4/0x9b0
[ 70.584044][ T3880] run_ksoftirqd+0xca/0x130
[ 70.585600][ T3880] smpboot_thread_fn+0x544/0xa30
[ 70.587243][ T3880] kthread+0x2f0/0x390
[ 70.588745][ T3880] ret_from_fork+0x4b/0x80
[ 70.590333][ T3880] ret_from_fork_asm+0x1a/0x30
[ 70.592004][ T3880]
[ 70.592910][ T3880] Last potentially related work creation:
[ 70.594920][ T3880] kasan_save_stack+0x3f/0x60
[ 70.596802][ T3880] __kasan_record_aux_stack+0xac/0xc0
[ 70.598688][ T3880] call_rcu+0x167/0xa70
[ 70.600171][ T3880] evict+0x836/0x9a0
[ 70.601460][ T3880] device_release+0x99/0x1c0
[ 70.603163][ T3880] kobject_put+0x22f/0x480
[ 70.604879][ T3880] blkdev_release+0x15/0x20
[ 70.606699][ T3880] __fput+0x23c/0xa50
[ 70.608222][ T3880] __x64_sys_close+0x7f/0x110
[ 70.609933][ T3880] do_syscall_64+0xf3/0x230
[ 70.611546][ T3880] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 70.613766][ T3880]
[ 70.614663][ T3880] The buggy address belongs to the object at ffff888031d56780
[ 70.614663][ T3880] which belongs to the cache bdev_cache of size 2784
[ 70.619754][ T3880] The buggy address is located 40 bytes inside of
[ 70.619754][ T3880] freed 2784-byte region [ffff888031d56780, ffff888031d57260)
[ 70.624634][ T3880]
[ 70.625362][ T3880] The buggy address belongs to the physical page:
[ 70.627527][ T3880] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31d50
[ 70.630544][ T3880] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 70.633493][ T3880] memcg:ffff888053053001
[ 70.635097][ T3880] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[ 70.637962][ T3880] page_type: f5(slab)
[ 70.639437][ T3880] raw: 04fff00000000040 ffff88801c2e63c0 dead000000000122 0000000000000000
[ 70.642490][ T3880] raw: 0000000000000000 00000000000b000b 00000001f5000000 ffff888053053001
[ 70.645470][ T3880] head: 04fff00000000040 ffff88801c2e63c0 dead000000000122 0000000000000000
[ 70.648619][ T3880] head: 0000000000000000 00000000000b000b 00000001f5000000 ffff888053053001
[ 70.651700][ T3880] head: 04fff00000000003 ffffea0000c75401 ffffffffffffffff 0000000000000000
[ 70.654773][ T3880] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 70.657847][ T3880] page dumped because: kasan: bad access detected
[ 70.660219][ T3880] page_owner tracks the page as allocated
[ 70.662309][ T3880] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE), pid 1, tgid 1 (swapper/0), ts 10693041676, free_ts 0
[ 70.670333][ T3880] post_alloc_hook+0x1f3/0x230
[ 70.672601][ T3880] get_page_from_freelist+0x365c/0x37a0
[ 70.674679][ T3880] __alloc_pages_noprof+0x292/0x710
[ 70.676682][ T3880] alloc_pages_mpol_noprof+0x3e8/0x680
[ 70.678678][ T3880] alloc_slab_page+0x6a/0x140
[ 70.680422][ T3880] allocate_slab+0x5a/0x2f0
[ 70.682124][ T3880] ___slab_alloc+0xcd1/0x14b0
[ 70.683929][ T3880] __slab_alloc+0x58/0xa0
[ 70.685631][ T3880] kmem_cache_alloc_lru_noprof+0x26c/0x390
[ 70.687727][ T3880] bdev_alloc_inode+0x29/0x90
[ 70.689459][ T3880] alloc_inode+0x65/0x1a0
[ 70.691076][ T3880] new_inode+0x22/0x1d0
[ 70.692606][ T3880] bdev_alloc+0x26/0x380
[ 70.694225][ T3880] __alloc_disk_node+0x12b/0x580
[ 70.696041][ T3880] __blk_mq_alloc_disk+0x244/0x3d0
[ 70.697737][ T3880] nbd_dev_add+0x50f/0xc60
[ 70.699425][ T3880] page_owner free stack trace missing
[ 70.701353][ T3880]
[ 70.702279][ T3880] Memory state around the buggy address:
[ 70.704448][ T3880] ffff888031d56680: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 70.707381][ T3880] ffff888031d56700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 70.710152][ T3880] >ffff888031d56780: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 70.712980][ T3880] ^
[ 70.714937][ T3880] ffff888031d56800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 70.717993][ T3880] ffff888031d56880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 70.720904][ T3880] ==================================================================
[ 70.725181][ T3880] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 70.727858][ T3880] CPU: 0 UID: 0 PID: 3880 Comm: kworker/u4:11 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[ 70.731579][ T3880] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 70.735575][ T3880] Workqueue: loop0 loop_rootcg_workfn
[ 70.737988][ T3880] Call Trace:
[ 70.739454][ T3880]
[ 70.740590][ T3880] dump_stack_lvl+0x241/0x360
[ 70.742340][ T3880] ? __pfx_dump_stack_lvl+0x10/0x10
[ 70.744217][ T3880] ? __pfx__printk+0x10/0x10
[ 70.745959][ T3880] ? lock_release+0xbf/0xa30
[ 70.747749][ T3880] ? vscnprintf+0x5d/0x90
[ 70.749315][ T3880] panic+0x349/0x880
[ 70.750760][ T3880] ? check_panic_on_warn+0x21/0xb0
[ 70.752679][ T3880] ? __pfx_panic+0x10/0x10
[ 70.754347][ T3880] ? mark_lock+0x9a/0x360
[ 70.755943][ T3880] ? _raw_spin_unlock_irqrestore+0xd8/0x140
[ 70.758046][ T3880] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 70.760321][ T3880] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 70.762627][ T3880] ? print_report+0x502/0x550
[ 70.764378][ T3880] check_panic_on_warn+0x86/0xb0
[ 70.766213][ T3880] ? update_io_ticks+0xa6/0x2d0
[ 70.768024][ T3880] end_report+0x77/0x160
[ 70.769555][ T3880] kasan_report+0x154/0x180
[ 70.771101][ T3880] ? update_io_ticks+0xa6/0x2d0
[ 70.772815][ T3880] update_io_ticks+0xa6/0x2d0
[ 70.774460][ T3880] ? __pfx_update_io_ticks+0x10/0x10
[ 70.776470][ T3880] ? seqcount_lockdep_reader_access+0x1d7/0x220
[ 70.778681][ T3880] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 70.781243][ T3880] blk_account_io_done+0x199/0x740
[ 70.783281][ T3880] ? blk_stat_add+0x75/0x4a0
[ 70.785065][ T3880] __blk_mq_end_request+0x270/0x5d0
[ 70.786944][ T3880] loop_process_work+0x1bc8/0x21c0
[ 70.788775][ T3880] ? __pfx_loop_process_work+0x10/0x10
[ 70.790842][ T3880] ? lockdep_unlock+0x16a/0x300
[ 70.792687][ T3880] ? mark_lock+0x2ae/0x360
[ 70.794433][ T3880] ? __lock_acquire+0x1397/0x2100
[ 70.796317][ T3880] ? do_raw_spin_unlock+0x58/0x8b0
[ 70.798135][ T3880] ? __pfx_lock_acquire+0x10/0x10
[ 70.800048][ T3880] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 70.802261][ T3880] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 70.804535][ T3880] ? process_scheduled_works+0x976/0x1840
[ 70.806586][ T3880] process_scheduled_works+0xa66/0x1840
[ 70.808564][ T3880] ? __pfx_process_scheduled_works+0x10/0x10
[ 70.810794][ T3880] ? assign_work+0x364/0x3d0
[ 70.812569][ T3880] worker_thread+0x870/0xd30
[ 70.814255][ T3880] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 70.816360][ T3880] ? __kthread_parkme+0x169/0x1d0
[ 70.818078][ T3880] ? __pfx_worker_thread+0x10/0x10
[ 70.820005][ T3880] kthread+0x2f0/0x390
[ 70.821552][ T3880] ? __pfx_worker_thread+0x10/0x10
[ 70.823303][ T3880] ? __pfx_kthread+0x10/0x10
[ 70.825080][ T3880] ret_from_fork+0x4b/0x80
[ 70.826723][ T3880] ? __pfx_kthread+0x10/0x10
[ 70.828609][ T3880] ret_from_fork_asm+0x1a/0x30
[ 70.830392][ T3880]
[ 70.831790][ T3880] Kernel Offset: disabled
[ 70.833272][ T3880] Rebooting in 86400 seconds..