program:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f00000003c0)={[{@errors_remount}, {@jqfmt_vfsold}, {@data_err_abort}, {@norecovery}, {@norecovery}]}, 0x1, 0x4cd, &(0x7f0000000a00)="$eJzs3ctrXNcZAPBvZqyn1cp2S7FdqA0uuA+s0YNiqe2iXbVdGEoN3bTgqtJYVTXSCM3ItYShcrLzIouQkEDIIstA/oFkE69iAiHrZB+8CA6Jo0ASCEyYOzPy6DHKJJY8Qff3g+s595zr+c7R8B3dOXM1N4DUOl/7JxMxFBHvRsRwfXf7AefrD5sPb83UtkxUq1c/ziTH1fabhzb/3/GI2IiI/oj4258i/p3ZHbe8tr4wXSwWVhr7+cricr68tn5pfnF6rjBXWBqbvDw1NTk6MT51YGO988x/71x54y+9r33+9IN7z771Zq1bQ4221nEcpPrQe+JkS92xiPj9YQTrglxjPAPd7gjfSe31+1FEXEjyfzhyyasJpEG1Wq1+Ve1r17xRBY6sbHIOnMmORES9nM2OjNTP4X8cg9liqVz59fXS6tJs/Vz5RPRkr88XC6ON9wonoidT2x9Lyo/2x3fsT0Qk58DP5QaS/ZGZUnH2yU51wA7Hd+T/Z7l6/gMp4S0/pJf8h/SS/5Be8h/SS/5Desl/SC/5D+kl/yG95D+kl/yH9JL/kEp/vXKltlWbf/8+e2NtdaF049Jsobwwsrg6MzJTWomRuVLf6509X7FUWh77TazezFcK5Uq+vLZ+bbG0ulS5Nr84PdcbhZ5DHg/QuZPn7r6fiYiN3w4kW01vo02uwtFW/X/9OwCA9Ml1ewICusbSH6SX9/jAHl/Ru01/u4blx4r6TWGBQ5TtdgeArrl4xud/kFbW/yG9rP9Dem0/x3c2AGnUnfV/oJus/0N6DbXc/yfTcv+vH7Tcu2s0In4YEe/levqa9/oCjoLsh5lG7l8c/vnQztbezBfJokBvRPzvpasv3JyuVFbGavWfbNVXXqzX93aj+0DHkvwdbzz6RQ4Aqbb58NZMc9uqPHH4cT/6Y/0ihN3xjzXWJvuTzygHNzPbrlXIHNC1Cxu3I+L0XvEzjfud1z/5GNzM7Yp/qvGYqT9F0t9jyX3THyf+/Vc7jX+mJf7PWuKffeyfCqTD3dr8M7pX/meTnI6t/Ns+/wwd0PXR7ee/7Nb8l2sz/53rMMZ/Xn7qftv4tyPO7hm/Ga8/ibUzfq1vFzuM/+Cff/9Ju7bqK/Xn2St+U62Urywu58tr65fmF6fnCnOFpbHJy1NTk6MT41P5ZI0631yp3u13p9+5t9/4B9vE32/8tbpfdjj+L3/69j/O7xP/Fxf2fv1P7RN/ICJ+1WH8T8c/+Fe7tlr82Tbjz+6M37LAV6ub6DB++fk/93V4KADwBJTX1hemi8XCioKCwrcsVIbrWfR96c9BFro9MwGH7VHSd7snAAAAAAAAAAAAQKcO7JrhP0Tbpm6PEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgKPg6AAD//029zuw=") (async)
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) (async)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0) (async, rerun: 32)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) (rerun: 32)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x1718, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a4b78c660e677df701908b9aaa3f6a00400", "036c47c6780820d1cbf7896de1fdcf335263bdbcef0100a197fce47ddfdd753abd9501ce721b6ae9b49600002a000000000000000000000000000018c900", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x20, 0x1, 0x0, r0, &(0x7f0000000580)="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", 0xfffffffffffffcc2, 0x1000000}])

[   89.159149][ T5110] loop0: detected capacity change from 0 to 512
[   89.170877][ T5110] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   89.214323][ T5111] loop0: detected capacity change from 512 to 11
[   89.220518][ T5110] EXT4-fs (loop0): get root inode failed
[   89.225439][ T5113] kmmpd-loop0: attempt to access beyond end of device
[   89.225439][ T5113] loop0: rw=14337, sector=34, nr_sectors = 2 limit=11
[   89.231714][ T5110] EXT4-fs (loop0): mount failed
[   89.249243][ T5113] Buffer I/O error on dev loop0, logical block 17, lost sync page write
[   89.256858][ T5113] EXT4-fs error (device loop0): kmmpd:186: comm kmmpd-loop0: Error writing to MMP block
[   89.270233][ T5113] EXT4-fs (loop0): Remounting filesystem read-only
[   89.277072][ T5113] kmmpd-loop0: attempt to access beyond end of device
[   89.277072][ T5113] loop0: rw=14337, sector=34, nr_sectors = 2 limit=11
[   89.282210][ T5113] Buffer I/O error on dev loop0, logical block 17, lost sync page write
[   89.288546][ T5110] ------------[ cut here ]------------
[   89.290800][ T5110] ODEBUG: free active (active state 0) object: ffff88803db586d8 object type: timer_list hint: print_daily_error_info+0x0/0x490
[   89.297358][ T5110] WARNING: CPU: 0 PID: 5110 at lib/debugobjects.c:518 debug_print_object+0x17a/0x1f0
[   89.301031][ T5110] Modules linked in:
[   89.302572][ T5110] CPU: 0 UID: 0 PID: 5110 Comm: syz.0.0 Not tainted 6.11.0-rc7-syzkaller-00097-g196145c606d0 #0
[   89.306779][ T5110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.310894][ T5110] RIP: 0010:debug_print_object+0x17a/0x1f0
[   89.313163][ T5110] Code: e8 9b 8a 40 fd 4c 8b 0b 48 c7 c7 00 99 60 8c 48 8b 74 24 08 48 89 ea 44 89 e1 4d 89 f8 ff 34 24 e8 8b 66 9b fc 48 83 c4 08 90 <0f> 0b 90 90 ff 05 7c 5e 5e 0b 48 83 c4 10 5b 41 5c 41 5d 41 5e 41
[   89.320696][ T5110] RSP: 0018:ffffc90002e9f7d8 EFLAGS: 00010286
[   89.323103][ T5110] RAX: c36459b1f326a800 RBX: ffffffff8c0cc1a0 RCX: ffff888000d24880
[   89.326326][ T5110] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   89.329375][ T5110] RBP: ffffffff8c609a80 R08: ffffffff8155b372 R09: fffffbfff1cfa0e0
[   89.332338][ T5110] R10: dffffc0000000000 R11: fffffbfff1cfa0e0 R12: 0000000000000000
[   89.335388][ T5110] R13: ffffffff8c609998 R14: dffffc0000000000 R15: ffff88803db586d8
[   89.338487][ T5110] FS:  00007ffbb20da6c0(0000) GS:ffff88801fe00000(0000) knlGS:0000000000000000
[   89.341943][ T5110] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   89.344663][ T5110] CR2: 000055d0157ce5e8 CR3: 000000003bbe2000 CR4: 0000000000350ef0
[   89.347707][ T5110] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   89.350843][ T5110] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   89.354393][ T5110] Call Trace:
[   89.355779][ T5110]  <TASK>
[   89.357001][ T5110]  ? __warn+0x163/0x4e0
[   89.358681][ T5110]  ? debug_print_object+0x17a/0x1f0
[   89.360651][ T5110]  ? report_bug+0x2b3/0x500
[   89.362574][ T5110]  ? debug_print_object+0x17a/0x1f0
[   89.364694][ T5110]  ? handle_bug+0x3e/0x70
[   89.366438][ T5110]  ? exc_invalid_op+0x1a/0x50
[   89.368303][ T5110]  ? asm_exc_invalid_op+0x1a/0x20
[   89.370316][ T5110]  ? __warn_printk+0x292/0x360
[   89.372224][ T5110]  ? debug_print_object+0x17a/0x1f0
[   89.375406][ T5110]  ? __pfx_print_daily_error_info+0x10/0x10
[   89.377651][ T5110]  ? __pfx_print_daily_error_info+0x10/0x10
[   89.380019][ T5110]  debug_check_no_obj_freed+0x45b/0x580
[   89.382184][ T5110]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[   89.384693][ T5110]  ? lockdep_hardirqs_on+0x99/0x150
[   89.386662][ T5110]  ? ext4_fill_super+0x2b34/0x6df0
[   89.388632][ T5110]  kfree+0x10f/0x360
[   89.390203][ T5110]  ext4_fill_super+0x2b34/0x6df0
[   89.392162][ T5110]  ? __pfx_ext4_fill_super+0x10/0x10
[   89.394421][ T5110]  ? do_raw_spin_lock+0x14f/0x370
[   89.396462][ T5110]  ? __pfx_snprintf+0x10/0x10
[   89.398340][ T5110]  ? set_blocksize+0x1ff/0x360
[   89.400133][ T5110]  ? sb_set_blocksize+0x98/0xf0
[   89.402033][ T5110]  ? setup_bdev_super+0x4e6/0x5d0
[   89.404085][ T5110]  get_tree_bdev+0x3f7/0x570
[   89.405903][ T5110]  ? __pfx_ext4_fill_super+0x10/0x10
[   89.407949][ T5110]  ? __pfx_get_tree_bdev+0x10/0x10
[   89.409980][ T5110]  ? apparmor_capable+0x13b/0x1b0
[   89.411954][ T5110]  ? bpf_lsm_capable+0x9/0x10
[   89.413823][ T5110]  vfs_get_tree+0x90/0x2b0
[   89.415737][ T5110]  do_new_mount+0x2be/0xb40
[   89.417476][ T5110]  ? __pfx_do_new_mount+0x10/0x10
[   89.419451][ T5110]  __se_sys_mount+0x2d6/0x3c0
[   89.421320][ T5110]  ? __pfx___se_sys_mount+0x10/0x10
[   89.423368][ T5110]  ? exc_page_fault+0x590/0x8c0
[   89.425365][ T5110]  ? __x64_sys_mount+0x20/0xc0
[   89.427225][ T5110]  do_syscall_64+0xf3/0x230
[   89.428995][ T5110]  ? clear_bhb_loop+0x35/0x90
[   89.430856][ T5110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.433180][ T5110] RIP: 0033:0x7ffbb137f69a
[   89.434946][ T5110] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.442538][ T5110] RSP: 002b:00007ffbb20d9e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   89.446079][ T5110] RAX: ffffffffffffffda RBX: 00007ffbb20d9ef0 RCX: 00007ffbb137f69a
[   89.449125][ T5110] RDX: 00000000200004c0 RSI: 0000000020000500 RDI: 00007ffbb20d9eb0
[   89.452112][ T5110] RBP: 00000000200004c0 R08: 00007ffbb20d9ef0 R09: 0000000000000000
[   89.455557][ T5110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000500
[   89.458637][ T5110] R13: 00007ffbb20d9eb0 R14: 00000000000004cd R15: 000000000000002c
[   89.461759][ T5110]  </TASK>
[   89.462992][ T5110] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   89.465771][ T5110] CPU: 0 UID: 0 PID: 5110 Comm: syz.0.0 Not tainted 6.11.0-rc7-syzkaller-00097-g196145c606d0 #0
[   89.469747][ T5110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.473909][ T5110] Call Trace:
[   89.475209][ T5110]  <TASK>
[   89.476254][ T5110]  dump_stack_lvl+0x241/0x360
[   89.478016][ T5110]  ? __pfx_dump_stack_lvl+0x10/0x10
[   89.479976][ T5110]  ? __pfx__printk+0x10/0x10
[   89.481802][ T5110]  ? _printk+0xd5/0x120
[   89.483478][ T5110]  ? vscnprintf+0x5d/0x90
[   89.485145][ T5110]  panic+0x349/0x860
[   89.486685][ T5110]  ? __warn+0x172/0x4e0
[   89.488275][ T5110]  ? __pfx_panic+0x10/0x10
[   89.490040][ T5110]  ? show_trace_log_lvl+0x4e6/0x520
[   89.492112][ T5110]  __warn+0x346/0x4e0
[   89.493709][ T5110]  ? debug_print_object+0x17a/0x1f0
[   89.495791][ T5110]  report_bug+0x2b3/0x500
[   89.497571][ T5110]  ? debug_print_object+0x17a/0x1f0
[   89.499621][ T5110]  handle_bug+0x3e/0x70
[   89.501276][ T5110]  exc_invalid_op+0x1a/0x50
[   89.503108][ T5110]  asm_exc_invalid_op+0x1a/0x20
[   89.505034][ T5110] RIP: 0010:debug_print_object+0x17a/0x1f0
[   89.507358][ T5110] Code: e8 9b 8a 40 fd 4c 8b 0b 48 c7 c7 00 99 60 8c 48 8b 74 24 08 48 89 ea 44 89 e1 4d 89 f8 ff 34 24 e8 8b 66 9b fc 48 83 c4 08 90 <0f> 0b 90 90 ff 05 7c 5e 5e 0b 48 83 c4 10 5b 41 5c 41 5d 41 5e 41
[   89.514916][ T5110] RSP: 0018:ffffc90002e9f7d8 EFLAGS: 00010286
[   89.517326][ T5110] RAX: c36459b1f326a800 RBX: ffffffff8c0cc1a0 RCX: ffff888000d24880
[   89.520443][ T5110] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   89.523554][ T5110] RBP: ffffffff8c609a80 R08: ffffffff8155b372 R09: fffffbfff1cfa0e0
[   89.526397][ T5110] R10: dffffc0000000000 R11: fffffbfff1cfa0e0 R12: 0000000000000000
[   89.529213][ T5110] R13: ffffffff8c609998 R14: dffffc0000000000 R15: ffff88803db586d8
[   89.532022][ T5110]  ? __warn_printk+0x292/0x360
[   89.533974][ T5110]  ? __pfx_print_daily_error_info+0x10/0x10
[   89.536320][ T5110]  ? __pfx_print_daily_error_info+0x10/0x10
[   89.538703][ T5110]  debug_check_no_obj_freed+0x45b/0x580
[   89.540930][ T5110]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[   89.543336][ T5110]  ? lockdep_hardirqs_on+0x99/0x150
[   89.545286][ T5110]  ? ext4_fill_super+0x2b34/0x6df0
[   89.547247][ T5110]  kfree+0x10f/0x360
[   89.548783][ T5110]  ext4_fill_super+0x2b34/0x6df0
[   89.550693][ T5110]  ? __pfx_ext4_fill_super+0x10/0x10
[   89.552749][ T5110]  ? do_raw_spin_lock+0x14f/0x370
[   89.554697][ T5110]  ? __pfx_snprintf+0x10/0x10
[   89.556391][ T5110]  ? set_blocksize+0x1ff/0x360
[   89.558238][ T5110]  ? sb_set_blocksize+0x98/0xf0
[   89.560113][ T5110]  ? setup_bdev_super+0x4e6/0x5d0
[   89.562115][ T5110]  get_tree_bdev+0x3f7/0x570
[   89.563942][ T5110]  ? __pfx_ext4_fill_super+0x10/0x10
[   89.565883][ T5110]  ? __pfx_get_tree_bdev+0x10/0x10
[   89.567952][ T5110]  ? apparmor_capable+0x13b/0x1b0
[   89.569944][ T5110]  ? bpf_lsm_capable+0x9/0x10
[   89.571771][ T5110]  vfs_get_tree+0x90/0x2b0
[   89.573568][ T5110]  do_new_mount+0x2be/0xb40
[   89.575394][ T5110]  ? __pfx_do_new_mount+0x10/0x10
[   89.577387][ T5110]  __se_sys_mount+0x2d6/0x3c0
[   89.579216][ T5110]  ? __pfx___se_sys_mount+0x10/0x10
[   89.581276][ T5110]  ? exc_page_fault+0x590/0x8c0
[   89.583285][ T5110]  ? __x64_sys_mount+0x20/0xc0
[   89.585216][ T5110]  do_syscall_64+0xf3/0x230
[   89.587030][ T5110]  ? clear_bhb_loop+0x35/0x90
[   89.588947][ T5110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.591293][ T5110] RIP: 0033:0x7ffbb137f69a
[   89.593125][ T5110] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.600712][ T5110] RSP: 002b:00007ffbb20d9e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   89.604037][ T5110] RAX: ffffffffffffffda RBX: 00007ffbb20d9ef0 RCX: 00007ffbb137f69a
[   89.607181][ T5110] RDX: 00000000200004c0 RSI: 0000000020000500 RDI: 00007ffbb20d9eb0
[   89.610291][ T5110] RBP: 00000000200004c0 R08: 00007ffbb20d9ef0 R09: 0000000000000000
[   89.613383][ T5110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000500
[   89.616541][ T5110] R13: 00007ffbb20d9eb0 R14: 00000000000004cd R15: 000000000000002c
[   89.619708][ T5110]  </TASK>
[   89.621224][ T5110] Kernel Offset: disabled
[   89.623000][ T5110] Rebooting in 86400 seconds..