program: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='ext4_free_inode\x00', r0, 0x0, 0x8000}, 0x18) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r3, 0x21eae}}, 0x20}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0) close(r4) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)) ioctl$SIOCSIFHWADDR(r4, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"}) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@errors_remount}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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") open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x42, 0x1fe) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x111, 0x6}}, 0x20) r6 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r6, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f283e6d60200000000000000000000000100", [0x208]}) io_setup(0x1, &(0x7f00000004c0)=0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0) io_submit(r7, 0x1, &(0x7f00000002c0)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x0, 0x1, 0x0, r8, &(0x7f0000000140)='i', 0x1001, 0x8b}]) ioctl$SIOCSIFHWADDR(r1, 0x8b04, &(0x7f0000000000)={'wlan1\x00', @random="020000000100"}) unlink(&(0x7f0000000180)='./file1\x00') [ 74.379860][ T5332] Bluetooth: hci0: command tx timeout [ 74.408153][ T5354] loop0: detected capacity change from 0 to 512 [ 74.453787][ T5354] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 74.458961][ T5354] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 74.485029][ T5354] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 74.501382][ T5354] EXT4-fs (loop0): 1 truncate cleaned up [ 74.504646][ T5354] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.526646][ T5354] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 74.534675][ T5354] warning: `syz.0.0' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 74.580604][ T5354] loop0: detected capacity change from 512 to 64 [ 74.597396][ T5354] ================================================================== [ 74.600428][ T5354] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.603401][ T5354] Read of size 18446744073709551600 at addr ffff88804d3862d0 by task syz.0.0/5354 [ 74.607586][ T5354] [ 74.608700][ T5354] CPU: 0 UID: 0 PID: 5354 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 74.608716][ T5354] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.608724][ T5354] Call Trace: [ 74.608733][ T5354] [ 74.608739][ T5354] dump_stack_lvl+0x189/0x250 [ 74.608759][ T5354] ? __virt_addr_valid+0x1c8/0x5c0 [ 74.608775][ T5354] ? rcu_is_watching+0x15/0xb0 [ 74.608786][ T5354] ? __kasan_check_byte+0x12/0x40 [ 74.608802][ T5354] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.608815][ T5354] ? rcu_is_watching+0x15/0xb0 [ 74.608826][ T5354] ? lock_release+0x4b/0x3e0 [ 74.608843][ T5354] ? __virt_addr_valid+0x1c8/0x5c0 [ 74.608857][ T5354] ? __virt_addr_valid+0x4a5/0x5c0 [ 74.608871][ T5354] print_report+0xca/0x240 [ 74.608884][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.608897][ T5354] kasan_report+0x118/0x150 [ 74.608911][ T5354] ? bdev_getblk+0x80/0x660 [ 74.608927][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.608943][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.608956][ T5354] kasan_check_range+0x2b0/0x2c0 [ 74.608976][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.608991][ T5354] __asan_memmove+0x29/0x70 [ 74.609004][ T5354] ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.609025][ T5354] ext4_xattr_ibody_set+0x254/0x6a0 [ 74.609041][ T5354] ext4_destroy_inline_data_nolock+0x214/0x5b0 [ 74.609055][ T5354] ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10 [ 74.609069][ T5354] ? down_write+0x162/0x1f0 [ 74.609130][ T5354] ? __filemap_get_folio+0x79f/0xaf0 [ 74.609150][ T5354] ext4_convert_inline_data_to_extent+0x540/0xdd0 [ 74.609174][ T5354] ? __pfx_ext4_convert_inline_data_to_extent+0x10/0x10 [ 74.609193][ T5354] ? ext4_inode_journal_mode+0x18c/0x480 [ 74.609209][ T5354] ? ext4_try_to_write_inline_data+0x49/0xa0 [ 74.609221][ T5354] ext4_write_begin+0x382/0x19a0 [ 74.609243][ T5354] ? __pfx_ext4_write_begin+0x10/0x10 [ 74.609262][ T5354] generic_perform_write+0x2c2/0x900 [ 74.609276][ T5354] ? __pfx_generic_perform_write+0x10/0x10 [ 74.609286][ T5354] ? file_modified_flags+0x4bb/0x560 [ 74.609298][ T5354] ? ext4_write_checks+0x24b/0x2c0 [ 74.609312][ T5354] ext4_buffered_write_iter+0xce/0x3a0 [ 74.609325][ T5354] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 74.609342][ T5354] ext4_file_write_iter+0x298/0x1bc0 [ 74.609357][ T5354] ? __lock_acquire+0xab9/0xd20 [ 74.609375][ T5354] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 74.609389][ T5354] ? aio_write+0x4c4/0x7a0 [ 74.609407][ T5354] aio_write+0x535/0x7a0 [ 74.609424][ T5354] ? __pfx_aio_write+0x10/0x10 [ 74.609443][ T5354] ? __might_fault+0xb0/0x130 [ 74.609461][ T5354] io_submit_one+0x78b/0x1310 [ 74.609480][ T5354] ? __pfx_io_submit_one+0x10/0x10 [ 74.609496][ T5354] ? __might_fault+0xb0/0x130 [ 74.609511][ T5354] ? __might_fault+0xb0/0x130 [ 74.609525][ T5354] __se_sys_io_submit+0x185/0x2f0 [ 74.609541][ T5354] ? __pfx___se_sys_io_submit+0x10/0x10 [ 74.609559][ T5354] ? do_syscall_64+0xbe/0x3b0 [ 74.609573][ T5354] do_syscall_64+0xfa/0x3b0 [ 74.609584][ T5354] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.609595][ T5354] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.609608][ T5354] ? clear_bhb_loop+0x60/0xb0 [ 74.609621][ T5354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.609634][ T5354] RIP: 0033:0x7fdcb898eec9 [ 74.609647][ T5354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 74.609656][ T5354] RSP: 002b:00007fdcb97c2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 74.609670][ T5354] RAX: ffffffffffffffda RBX: 00007fdcb8be5fa0 RCX: 00007fdcb898eec9 [ 74.609679][ T5354] RDX: 00002000000002c0 RSI: 0000000000000001 RDI: 00007fdcb9780000 [ 74.609687][ T5354] RBP: 00007fdcb8a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 74.609694][ T5354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.609700][ T5354] R13: 00007fdcb8be6038 R14: 00007fdcb8be5fa0 R15: 00007fffa2f16e38 [ 74.609712][ T5354] [ 74.609717][ T5354] [ 74.778783][ T5354] The buggy address belongs to the physical page: [ 74.781326][ T5354] page: refcount:3 mapcount:0 mapping:ffff88803202cd80 index:0x2 pfn:0x4d386 [ 74.784978][ T5354] memcg:ffff888030488d00 [ 74.786789][ T5354] aops:def_blk_aops ino:700000 dentry name(?):"" [ 74.789720][ T5354] flags: 0x4fff18000004214(referenced|dirty|workingset|private|node=1|zone=1|lastcpupid=0x7ff) [ 74.794998][ T5354] raw: 04fff18000004214 0000000000000000 dead000000000122 ffff88803202cd80 [ 74.798746][ T5354] raw: 0000000000000002 ffff88803208e828 00000003ffffffff ffff888030488d00 [ 74.802312][ T5354] page dumped because: kasan: bad access detected [ 74.804674][ T5354] page_owner tracks the page as allocated [ 74.806730][ T5354] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_MOVABLE|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL), pid 5354, tgid 5353 (syz.0.0), ts 74596620849, free_ts 74594018918 [ 74.814441][ T5354] post_alloc_hook+0x240/0x2a0 [ 74.816633][ T5354] get_page_from_freelist+0x21e4/0x22c0 [ 74.818984][ T5354] __alloc_frozen_pages_noprof+0x181/0x370 [ 74.821353][ T5354] alloc_pages_mpol+0x232/0x4a0 [ 74.823196][ T5354] alloc_pages_noprof+0xa9/0x190 [ 74.825208][ T5354] folio_alloc_noprof+0x1e/0x30 [ 74.827330][ T5354] filemap_alloc_folio_noprof+0xdf/0x470 [ 74.829777][ T5354] __filemap_get_folio+0x3f2/0xaf0 [ 74.832034][ T5354] bdev_getblk+0x1ad/0x660 [ 74.834051][ T5354] __ext4_get_inode_loc+0x561/0x1040 [ 74.836324][ T5354] ext4_reserve_inode_write+0x18b/0x360 [ 74.838633][ T5354] __ext4_mark_inode_dirty+0x15b/0x700 [ 74.840903][ T5354] ext4_dirty_inode+0xd0/0x110 [ 74.842598][ T5354] __mark_inode_dirty+0x2ec/0xe10 [ 74.844512][ T5354] file_modified_flags+0x4b0/0x560 [ 74.846503][ T5354] ext4_write_checks+0x240/0x2c0 [ 74.848543][ T5354] page last free pid 5330 tgid 5330 stack trace: [ 74.852230][ T5354] free_unref_folios+0xdbd/0x1520 [ 74.854347][ T5354] folios_put_refs+0x559/0x640 [ 74.856479][ T5354] shmem_undo_range+0x49e/0x14b0 [ 74.858667][ T5354] shmem_evict_inode+0x272/0xa70 [ 74.860893][ T5354] evict+0x504/0x9c0 [ 74.862649][ T5354] __dentry_kill+0x209/0x660 [ 74.864651][ T5354] dput+0x19f/0x2b0 [ 74.866300][ T5354] do_renameat2+0x6de/0xa80 [ 74.868263][ T5354] __x64_sys_rename+0x82/0x90 [ 74.870352][ T5354] do_syscall_64+0xfa/0x3b0 [ 74.872337][ T5354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.874818][ T5354] [ 74.875848][ T5354] Memory state around the buggy address: [ 74.878277][ T5354] ffff88804d386180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 74.881526][ T5354] ffff88804d386200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 74.884846][ T5354] >ffff88804d386280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 74.888041][ T5354] ^ [ 74.890883][ T5354] ffff88804d386300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 74.894433][ T5354] ffff88804d386380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 74.897839][ T5354] ================================================================== [ 74.917546][ T5354] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 74.920908][ T5354] CPU: 0 UID: 0 PID: 5354 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 74.924648][ T5354] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.929134][ T5354] Call Trace: [ 74.930587][ T5354] [ 74.931896][ T5354] dump_stack_lvl+0x99/0x250 [ 74.933870][ T5354] ? __asan_memcpy+0x40/0x70 [ 74.935901][ T5354] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.938151][ T5354] ? __pfx__printk+0x10/0x10 [ 74.940096][ T5354] vpanic+0x281/0x750 [ 74.941787][ T5354] ? __pfx_print_hex_dump+0x10/0x10 [ 74.943912][ T5354] ? __pfx_vpanic+0x10/0x10 [ 74.945788][ T5354] ? preempt_schedule_common+0x83/0xd0 [ 74.948020][ T5354] ? preempt_schedule+0xae/0xc0 [ 74.950300][ T5354] panic+0xb9/0xc0 [ 74.951906][ T5354] ? __pfx_panic+0x10/0x10 [ 74.953688][ T5354] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 74.956282][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.958562][ T5354] check_panic_on_warn+0x89/0xb0 [ 74.960689][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.963454][ T5354] end_report+0x78/0x160 [ 74.965307][ T5354] kasan_report+0x129/0x150 [ 74.967360][ T5354] ? bdev_getblk+0x80/0x660 [ 74.969484][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.972426][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.975195][ T5354] kasan_check_range+0x2b0/0x2c0 [ 74.977291][ T5354] ? ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.979423][ T5354] __asan_memmove+0x29/0x70 [ 74.981177][ T5354] ext4_xattr_set_entry+0x9c1/0x1e20 [ 74.983220][ T5354] ext4_xattr_ibody_set+0x254/0x6a0 [ 74.985390][ T5354] ext4_destroy_inline_data_nolock+0x214/0x5b0 [ 74.987961][ T5354] ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10 [ 74.990789][ T5354] ? down_write+0x162/0x1f0 [ 74.992826][ T5354] ? __filemap_get_folio+0x79f/0xaf0 [ 74.994926][ T5354] ext4_convert_inline_data_to_extent+0x540/0xdd0 [ 74.997369][ T5354] ? __pfx_ext4_convert_inline_data_to_extent+0x10/0x10 [ 75.000165][ T5354] ? ext4_inode_journal_mode+0x18c/0x480 [ 75.002561][ T5354] ? ext4_try_to_write_inline_data+0x49/0xa0 [ 75.005087][ T5354] ext4_write_begin+0x382/0x19a0 [ 75.007214][ T5354] ? __pfx_ext4_write_begin+0x10/0x10 [ 75.009487][ T5354] generic_perform_write+0x2c2/0x900 [ 75.011744][ T5354] ? __pfx_generic_perform_write+0x10/0x10 [ 75.014210][ T5354] ? file_modified_flags+0x4bb/0x560 [ 75.016476][ T5354] ? ext4_write_checks+0x24b/0x2c0 [ 75.018750][ T5354] ext4_buffered_write_iter+0xce/0x3a0 [ 75.021177][ T5354] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 75.023775][ T5354] ext4_file_write_iter+0x298/0x1bc0 [ 75.026096][ T5354] ? __lock_acquire+0xab9/0xd20 [ 75.028145][ T5354] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 75.030510][ T5354] ? aio_write+0x4c4/0x7a0 [ 75.032484][ T5354] aio_write+0x535/0x7a0 [ 75.034326][ T5354] ? __pfx_aio_write+0x10/0x10 [ 75.036357][ T5354] ? __might_fault+0xb0/0x130 [ 75.038345][ T5354] io_submit_one+0x78b/0x1310 [ 75.040378][ T5354] ? __pfx_io_submit_one+0x10/0x10 [ 75.042494][ T5354] ? __might_fault+0xb0/0x130 [ 75.044412][ T5354] ? __might_fault+0xb0/0x130 [ 75.046473][ T5354] __se_sys_io_submit+0x185/0x2f0 [ 75.048620][ T5354] ? __pfx___se_sys_io_submit+0x10/0x10 [ 75.051152][ T5354] ? do_syscall_64+0xbe/0x3b0 [ 75.053131][ T5354] do_syscall_64+0xfa/0x3b0 [ 75.055097][ T5354] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.057339][ T5354] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.059714][ T5354] ? clear_bhb_loop+0x60/0xb0 [ 75.061553][ T5354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.063822][ T5354] RIP: 0033:0x7fdcb898eec9 [ 75.065610][ T5354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.073201][ T5354] RSP: 002b:00007fdcb97c2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 75.076836][ T5354] RAX: ffffffffffffffda RBX: 00007fdcb8be5fa0 RCX: 00007fdcb898eec9 [ 75.080165][ T5354] RDX: 00002000000002c0 RSI: 0000000000000001 RDI: 00007fdcb9780000 [ 75.083482][ T5354] RBP: 00007fdcb8a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 75.086865][ T5354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.090064][ T5354] R13: 00007fdcb8be6038 R14: 00007fdcb8be5fa0 R15: 00007fffa2f16e38 [ 75.093302][ T5354] [ 75.095018][ T5354] Kernel Offset: disabled [ 75.096942][ T5354] Rebooting in 86400 seconds..