program:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000180)={[{@nodelalloc}, {@grpid}]}, 0x1, 0x599, &(0x7f0000000600)="$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")
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = syz_open_dev$sg(&(0x7f0000000c40), 0x0, 0x200)
ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000080)=0x7fffffff)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000000c0)=ANY=[], 0x118)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000180), 0xfc, 0x566, &(0x7f00000010c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1e5)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305829, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8001})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000040))
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000f80), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_INTERFACE(r5, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="04110000", @ANYRES16=r6, @ANYBLOB="010025bd7000fbdbdf25070000000800010001000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4080080)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0xc000003, 0xf, &(0x7f0000000180)=[0x1f, 0x9, 0x8, 0x899d, 0x7fffffff, 0x825, 0x7, 0xd, 0xfffffe01, 0x1, 0x4, 0x2, 0x6, 0x8811, 0x0], 0x1, 0x4000005})
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file7\x00', 0x5)
[ 85.627411][ T5336] Bluetooth: hci0: command tx timeout
[ 85.695734][ T5360] loop0: detected capacity change from 0 to 1024
[ 85.745045][ T5360] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 85.847252][ T5360] loop0: detected capacity change from 1024 to 64
[ 85.870282][ T5360] ==================================================================
[ 85.874029][ T5360] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.877926][ T5360] Read of size 18446744073709551600 at addr ffff88804c83dd24 by task syz.0.0/5360
[ 85.882205][ T5360]
[ 85.883359][ T5360] CPU: 0 UID: 0 PID: 5360 Comm: syz.0.0 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 85.883378][ T5360] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 85.883384][ T5360] Call Trace:
[ 85.883393][ T5360]
[ 85.883399][ T5360] dump_stack_lvl+0x189/0x250
[ 85.883417][ T5360] ? __virt_addr_valid+0x1c8/0x5c0
[ 85.883440][ T5360] ? rcu_is_watching+0x15/0xb0
[ 85.883448][ T5360] ? __kasan_check_byte+0x12/0x40
[ 85.883456][ T5360] ? __pfx_dump_stack_lvl+0x10/0x10
[ 85.883463][ T5360] ? rcu_is_watching+0x15/0xb0
[ 85.883470][ T5360] ? lock_release+0x4b/0x3e0
[ 85.883480][ T5360] ? __virt_addr_valid+0x1c8/0x5c0
[ 85.883488][ T5360] ? __virt_addr_valid+0x4a5/0x5c0
[ 85.883496][ T5360] print_report+0xca/0x240
[ 85.883504][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.883512][ T5360] kasan_report+0x118/0x150
[ 85.883522][ T5360] ? bdev_getblk+0x80/0x660
[ 85.883537][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.883549][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.883560][ T5360] kasan_check_range+0x2b0/0x2c0
[ 85.883573][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.883584][ T5360] __asan_memmove+0x29/0x70
[ 85.883593][ T5360] ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.883609][ T5360] ext4_xattr_ibody_set+0x254/0x6a0
[ 85.883623][ T5360] ext4_destroy_inline_data_nolock+0x214/0x5b0
[ 85.883635][ T5360] ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[ 85.883648][ T5360] ? __asan_memcpy+0x40/0x70
[ 85.883657][ T5360] ? ext4_read_inline_data+0x103/0x2c0
[ 85.883668][ T5360] ext4_convert_inline_data_nolock+0x1f1/0x970
[ 85.883681][ T5360] ? __pfx_ext4_convert_inline_data_nolock+0x10/0x10
[ 85.883694][ T5360] ? down_write+0x162/0x1f0
[ 85.883757][ T5360] ext4_convert_inline_data+0x4b3/0x5e0
[ 85.883770][ T5360] ? __pfx_ext4_convert_inline_data+0x10/0x10
[ 85.883780][ T5360] ? down_write+0x162/0x1f0
[ 85.883791][ T5360] ? rcu_read_lock_any_held+0xb3/0x120
[ 85.883802][ T5360] ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 85.883813][ T5360] ext4_fallocate+0x1e2/0x3d0
[ 85.883830][ T5360] vfs_fallocate+0x669/0x7e0
[ 85.883843][ T5360] ? __pfx_vfs_fallocate+0x10/0x10
[ 85.883855][ T5360] file_ioctl+0x611/0x780
[ 85.883865][ T5360] ? __pfx_file_ioctl+0x10/0x10
[ 85.883878][ T5360] ? kasan_quarantine_put+0xdd/0x220
[ 85.883890][ T5360] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 85.883899][ T5360] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 85.883910][ T5360] do_vfs_ioctl+0xb33/0x1430
[ 85.883921][ T5360] ? __pfx_do_vfs_ioctl+0x10/0x10
[ 85.883936][ T5360] ? __lock_acquire+0xab9/0xd20
[ 85.883956][ T5360] ? __fget_files+0x2a/0x420
[ 85.883970][ T5360] ? __fget_files+0x2a/0x420
[ 85.883977][ T5360] ? __fget_files+0x3a0/0x420
[ 85.883986][ T5360] ? __fget_files+0x2a/0x420
[ 85.883996][ T5360] ? bpf_lsm_file_ioctl+0x9/0x20
[ 85.884006][ T5360] __se_sys_ioctl+0x82/0x170
[ 85.884015][ T5360] do_syscall_64+0xfa/0x3b0
[ 85.884028][ T5360] ? lockdep_hardirqs_on+0x9c/0x150
[ 85.884044][ T5360] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 85.884055][ T5360] ? clear_bhb_loop+0x60/0xb0
[ 85.884068][ T5360] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 85.884078][ T5360] RIP: 0033:0x7ff4c058eb69
[ 85.884089][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 85.884098][ T5360] RSP: 002b:00007ff4c1389038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 85.884111][ T5360] RAX: ffffffffffffffda RBX: 00007ff4c07b5fa0 RCX: 00007ff4c058eb69
[ 85.884121][ T5360] RDX: 0000200000000000 RSI: 0000000040305829 RDI: 000000000000000a
[ 85.884128][ T5360] RBP: 00007ff4c0611df1 R08: 0000000000000000 R09: 0000000000000000
[ 85.884135][ T5360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 85.884142][ T5360] R13: 0000000000000000 R14: 00007ff4c07b5fa0 R15: 00007ffc4e4e3a38
[ 85.884153][ T5360]
[ 85.884158][ T5360]
[ 86.058205][ T5360] The buggy address belongs to the physical page:
[ 86.060682][ T5360] page: refcount:4 mapcount:0 mapping:ffff888032164d80 index:0x4 pfn:0x4c83d
[ 86.064496][ T5360] memcg:ffff88801c2a8d00
[ 86.066391][ T5360] aops:def_blk_aops ino:700000 dentry name(?):""
[ 86.069640][ T5360] flags: 0x4fff18000004205(locked|referenced|workingset|private|node=1|zone=1|lastcpupid=0x7ff)
[ 86.074376][ T5360] raw: 04fff18000004205 0000000000000000 dead000000000122 ffff888032164d80
[ 86.078202][ T5360] raw: 0000000000000004 ffff8880437a3828 00000004ffffffff ffff88801c2a8d00
[ 86.081894][ T5360] page dumped because: kasan: bad access detected
[ 86.084784][ T5360] page_owner tracks the page as allocated
[ 86.087577][ T5360] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_MOVABLE|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL), pid 5360, tgid 5359 (syz.0.0), ts 85867079250, free_ts 85823445885
[ 86.096183][ T5360] post_alloc_hook+0x240/0x2a0
[ 86.098376][ T5360] get_page_from_freelist+0x21e4/0x22c0
[ 86.100884][ T5360] __alloc_frozen_pages_noprof+0x181/0x370
[ 86.103596][ T5360] alloc_pages_mpol+0x232/0x4a0
[ 86.105762][ T5360] alloc_pages_noprof+0xa9/0x190
[ 86.107978][ T5360] folio_alloc_noprof+0x1e/0x30
[ 86.110029][ T5360] filemap_alloc_folio_noprof+0xdf/0x470
[ 86.112460][ T5360] __filemap_get_folio+0x3f2/0xaf0
[ 86.114711][ T5360] bdev_getblk+0x1ad/0x660
[ 86.116806][ T5360] __ext4_get_inode_loc+0x561/0x1040
[ 86.119237][ T5360] ext4_get_inode_loc+0x81/0xf0
[ 86.121579][ T5360] ext4_convert_inline_data+0x254/0x5e0
[ 86.123972][ T5360] ext4_fallocate+0x1e2/0x3d0
[ 86.125982][ T5360] vfs_fallocate+0x669/0x7e0
[ 86.127981][ T5360] file_ioctl+0x611/0x780
[ 86.129866][ T5360] do_vfs_ioctl+0xb33/0x1430
[ 86.131822][ T5360] page last free pid 5329 tgid 5329 stack trace:
[ 86.134334][ T5360] free_unref_folios+0xdbd/0x1520
[ 86.136331][ T5360] folios_put_refs+0x559/0x640
[ 86.138417][ T5360] folio_batch_move_lru+0x319/0x3a0
[ 86.140592][ T5360] lru_add_drain_cpu+0x119/0x880
[ 86.142685][ T5360] lru_add_drain+0x122/0x3e0
[ 86.144567][ T5360] __folio_batch_release+0x48/0x90
[ 86.146482][ T5360] shmem_undo_range+0x49e/0x14b0
[ 86.148399][ T5360] shmem_evict_inode+0x272/0xa70
[ 86.150470][ T5360] evict+0x501/0x9c0
[ 86.152223][ T5360] __dentry_kill+0x209/0x660
[ 86.154290][ T5360] dput+0x19f/0x2b0
[ 86.155900][ T5360] do_renameat2+0x6de/0xa80
[ 86.157891][ T5360] __x64_sys_rename+0x82/0x90
[ 86.159703][ T5360] do_syscall_64+0xfa/0x3b0
[ 86.161787][ T5360] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.164648][ T5360]
[ 86.165794][ T5360] Memory state around the buggy address:
[ 86.168343][ T5360] ffff88804c83dc00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.171721][ T5360] ffff88804c83dc80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.174979][ T5360] >ffff88804c83dd00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.178572][ T5360] ^
[ 86.181027][ T5360] ffff88804c83dd80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.184620][ T5360] ffff88804c83de00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.188133][ T5360] ==================================================================
[ 86.221136][ T5360] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 86.224281][ T5360] CPU: 0 UID: 0 PID: 5360 Comm: syz.0.0 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 86.229801][ T5360] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.234433][ T5360] Call Trace:
[ 86.235805][ T5360]
[ 86.237073][ T5360] dump_stack_lvl+0x99/0x250
[ 86.239059][ T5360] ? __asan_memcpy+0x40/0x70
[ 86.241164][ T5360] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.243529][ T5360] ? __pfx__printk+0x10/0x10
[ 86.245586][ T5360] vpanic+0x27a/0x730
[ 86.247351][ T5360] ? __pfx_print_hex_dump+0x10/0x10
[ 86.249658][ T5360] ? __pfx_vpanic+0x10/0x10
[ 86.251599][ T5360] ? preempt_schedule_common+0x83/0xd0
[ 86.253946][ T5360] ? preempt_schedule+0xae/0xc0
[ 86.255801][ T5360] panic+0xb9/0xc0
[ 86.257458][ T5360] ? __pfx_panic+0x10/0x10
[ 86.259615][ T5360] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 86.262794][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 86.265260][ T5360] check_panic_on_warn+0x89/0xb0
[ 86.267449][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 86.270264][ T5360] end_report+0x78/0x160
[ 86.272042][ T5360] kasan_report+0x129/0x150
[ 86.274092][ T5360] ? bdev_getblk+0x80/0x660
[ 86.276037][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 86.278464][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 86.281301][ T5360] kasan_check_range+0x2b0/0x2c0
[ 86.283780][ T5360] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 86.286284][ T5360] __asan_memmove+0x29/0x70
[ 86.288068][ T5360] ext4_xattr_set_entry+0x9c1/0x1e20
[ 86.289995][ T5360] ext4_xattr_ibody_set+0x254/0x6a0
[ 86.292000][ T5360] ext4_destroy_inline_data_nolock+0x214/0x5b0
[ 86.294465][ T5360] ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[ 86.297359][ T5360] ? __asan_memcpy+0x40/0x70
[ 86.299293][ T5360] ? ext4_read_inline_data+0x103/0x2c0
[ 86.301432][ T5360] ext4_convert_inline_data_nolock+0x1f1/0x970
[ 86.304286][ T5360] ? __pfx_ext4_convert_inline_data_nolock+0x10/0x10
[ 86.307113][ T5360] ? down_write+0x162/0x1f0
[ 86.308979][ T5360] ext4_convert_inline_data+0x4b3/0x5e0
[ 86.311415][ T5360] ? __pfx_ext4_convert_inline_data+0x10/0x10
[ 86.314326][ T5360] ? down_write+0x162/0x1f0
[ 86.316402][ T5360] ? rcu_read_lock_any_held+0xb3/0x120
[ 86.318972][ T5360] ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 86.321673][ T5360] ext4_fallocate+0x1e2/0x3d0
[ 86.323697][ T5360] vfs_fallocate+0x669/0x7e0
[ 86.325929][ T5360] ? __pfx_vfs_fallocate+0x10/0x10
[ 86.328364][ T5360] file_ioctl+0x611/0x780
[ 86.330624][ T5360] ? __pfx_file_ioctl+0x10/0x10
[ 86.333221][ T5360] ? kasan_quarantine_put+0xdd/0x220
[ 86.335819][ T5360] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 86.338516][ T5360] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 86.341157][ T5360] do_vfs_ioctl+0xb33/0x1430
[ 86.343196][ T5360] ? __pfx_do_vfs_ioctl+0x10/0x10
[ 86.345399][ T5360] ? __lock_acquire+0xab9/0xd20
[ 86.347539][ T5360] ? __fget_files+0x2a/0x420
[ 86.349492][ T5360] ? __fget_files+0x2a/0x420
[ 86.351566][ T5360] ? __fget_files+0x3a0/0x420
[ 86.353456][ T5360] ? __fget_files+0x2a/0x420
[ 86.355434][ T5360] ? bpf_lsm_file_ioctl+0x9/0x20
[ 86.357640][ T5360] __se_sys_ioctl+0x82/0x170
[ 86.360011][ T5360] do_syscall_64+0xfa/0x3b0
[ 86.362275][ T5360] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.364824][ T5360] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.367401][ T5360] ? clear_bhb_loop+0x60/0xb0
[ 86.369292][ T5360] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.371672][ T5360] RIP: 0033:0x7ff4c058eb69
[ 86.373418][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 86.381391][ T5360] RSP: 002b:00007ff4c1389038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 86.385711][ T5360] RAX: ffffffffffffffda RBX: 00007ff4c07b5fa0 RCX: 00007ff4c058eb69
[ 86.389080][ T5360] RDX: 0000200000000000 RSI: 0000000040305829 RDI: 000000000000000a
[ 86.392570][ T5360] RBP: 00007ff4c0611df1 R08: 0000000000000000 R09: 0000000000000000
[ 86.395965][ T5360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.399475][ T5360] R13: 0000000000000000 R14: 00007ff4c07b5fa0 R15: 00007ffc4e4e3a38
[ 86.402983][ T5360]
[ 86.404782][ T5360] Kernel Offset: disabled
[ 86.407143][ T5360] Rebooting in 86400 seconds..