program: r0 = openat$nmem0(0xffffffffffffff9c, &(0x7f0000000840), 0x20b000, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d00)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0xc, 0x3, "b07346e358c21925"}, @NFTA_MATCH_NAME={0xb, 0x1, 'cgroup\x00'}, @NFTA_MATCH_REV={0x8}]}}}]}]}], {0x14}}, 0xe8}}, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000880)={0x4, 0x8, 0x4, 0xe, 0x9, 0xf, 0x2, 0x9, 0x0}, &(0x7f00000008c0)=0x20) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000900)={r2, @in6={{0xa, 0x401, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x10}}, 0x5, 0x77a7, 0x6, 0x0, 0x1}, &(0x7f00000009c0)=0x98) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000180)={[{@dioread_lock}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@usrquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@errors_remount}]}, 0xff, 0x756, &(0x7f0000001e40)="$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") r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x1ff) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write(r5, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b28", 0x41) sendmsg$nl_route(r5, &(0x7f0000000800)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000700)=@ipv6_getrule={0x1c, 0x22, 0x2, 0x70bd2d, 0x25dfdbff, {0xa, 0x80, 0x14, 0x8, 0x4, 0x0, 0x0, 0x4, 0x5}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000051}, 0x24000010) unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) r6 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400) ioctl$LOOP_SET_STATUS(r6, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0xf0, 0x9, 0x7, 0x1d, "9e959f16d802dd8f6fac274de9d940bba5e51e92bbd4ce85450d00", "f625c10e6e4c36c800def96015e0fb7e904dc8df62a3a893ec00347f41be5a08", [0x4, 0x7]}) writev(r4, &(0x7f0000000680)=[{&(0x7f0000000000)="31f158e07a931baf401ecc5dfdbba3741bb0633f4085ab3c2809294b7632abf483d7eb926fe08e8238199a4d05429552b32aa5fda6bd08716942553e0ef24576cbc566e63d628c13026ed822ea6b3cdd", 0x50}, {&(0x7f0000000240)="507080b89e8e49f8eb4f277a9e280a8360e066247e1285a792047820c63cef1ac3c9223f301aa973bb7950af3d3d9a0c378ff4c8846b094b19517f1296ceca7ddf346effc3e257550171d065db6b798281af2a006f3fc0edbb99a42a763b4086cc4a41ccdcc43390393b955fdce6c67af96d9df953250beb920af88ee98b6e9e9ea50448", 0x84}, {&(0x7f0000000300)="3f89e00b7d112ad23780359b65bd6f6335ec11ee3713e054dd444f376603ae7c00acea9a35db457177326d8cb10734872512ae85e2ce69ec693c894725647de15df3b9800e30ddb25935dfc11f3ef2383295b3bc45e5551c725aaf2f9e655945f2e78705095c864d3bcc160e61b86581cdbe40c5b8fdde649e1bec45a29c3b7db04178573db862bb3d3229d5d12f1d7d880915b2a15f8e057766d32b223569097a17ee51eb00423b136c1416e10c718e90", 0xb1}, {&(0x7f00000003c0)="74d515e55a7694248920f65cf77bd0e26386f4b6b90325ceb5d4ca9f1f3853e786850a6adfa2ee1db17adc", 0x2b}, {&(0x7f0000000400)="61283c42fb272e49fc1fee78930a347c146ff0c014508e13ded49d6ab2e78325cae19527c8b7f9b072e9ab02ba5d76b5c3217ef8c14898259263d17887e79f067c9e5d4a7448793ecfb81155d60d215544b58ac2cec4b972c387bbe27c634cad21ad0054852752742397190e6c8e7b690b14952da2389cb8d56860a6818c975672c8b4ba450254163df1f73f6c18fa1a1b190549379f7fccc936d332ee1d5b82bd4116eaee374519af08f4e3bb07daaefd1ccc", 0xb3}, {&(0x7f00000004c0)="fb7eb7d512f93947c8ff3cc0a724377a98e64661ad5a4e03577f5a84a39f2ae738ba2a1d874a4fc7cc9e984ea2409a7bcc98d821388c8fcf7fe1e70dc0c39a78072984dd6c431dc28b6e60ce86ae8f8ecabf09139cc4ff84a3952b81ee793116eaf86c3c4f092107c6adcdc4ac2e5a20881d07a6580973fe01d5a4dd7863f145972d1f72ac8e5a0f5ee78528fdea7243c9485093d3103875a338aaa614998bfa15c4809b94d68866465deaa492708849be2710bcdae0ee67f656a6b0968cc223c6f7786ca038", 0xc6}, {&(0x7f00000005c0)="5c748825c0ffdab9d2533b26cf09b779a944a9dc940e22", 0x17}], 0x7) close_range(r3, 0xffffffffffffffff, 0x0) [ 69.616870][ T5303] Bluetooth: hci0: command tx timeout [ 69.650786][ T5319] x_tables: (null)_tables: cgroup match: used from hooks PREROUTING, but only valid from INPUT/OUTPUT/POSTROUTING [ 69.690710][ T5319] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 69.733470][ T5319] loop0: detected capacity change from 0 to 2048 [ 69.779573][ T5319] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.794574][ T24] audit: type=1804 audit(1739484620.668:2): pid=5319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.0" name="/newroot/0/file0/file1" dev="loop0" ino=15 res=1 errno=0 [ 69.837308][ T5319] loop0: detected capacity change from 2048 to 2047 [ 69.856233][ T5319] ------------[ cut here ]------------ [ 69.858551][ T5319] kernel BUG at fs/ext4/inline.c:1970! [ 69.861737][ T5319] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 69.864432][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0 [ 69.868954][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.873987][ T5319] RIP: 0010:ext4_inline_data_truncate+0xced/0xcf0 [ 69.876746][ T5319] Code: e9 17 fd ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 44 fd ff ff e8 d3 c0 ac ff e9 3a fd ff ff e8 99 b0 7c 09 e8 d4 27 46 ff 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e [ 69.883757][ T5319] RSP: 0018:ffffc9000d347800 EFLAGS: 00010287 [ 69.886346][ T5319] RAX: ffffffff827927cc RBX: ffffc9000d3478a0 RCX: 0000000000100000 [ 69.890032][ T5319] RDX: ffffc9000e3aa000 RSI: 00000000000012a5 RDI: 00000000000012a6 [ 69.893155][ T5319] RBP: ffffc9000d347990 R08: ffffffff82792478 R09: 1ffff11008772b2f [ 69.896589][ T5319] R10: dffffc0000000000 R11: ffffed1008772b30 R12: ffffc9000d347900 [ 69.899469][ T5319] R13: dffffc0000000000 R14: 0000000000000002 R15: 0000000000000000 [ 69.902424][ T5319] FS: 00007f651d11a6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 69.907128][ T5319] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.909579][ T5319] CR2: 00007f9e0121ced8 CR3: 0000000042c12000 CR4: 0000000000352ef0 [ 69.912477][ T5319] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.915611][ T5319] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.918671][ T5319] Call Trace: [ 69.920185][ T5319] [ 69.921587][ T5319] ? __die_body+0x5f/0xb0 [ 69.923699][ T5319] ? die+0x9e/0xc0 [ 69.925584][ T5319] ? do_trap+0x15a/0x3a0 [ 69.927237][ T5319] ? ext4_inline_data_truncate+0xced/0xcf0 [ 69.929480][ T5319] ? do_error_trap+0x1dc/0x2c0 [ 69.931334][ T5319] ? ext4_inline_data_truncate+0xced/0xcf0 [ 69.933723][ T5319] ? __pfx_do_error_trap+0x10/0x10 [ 69.935923][ T5319] ? report_bug+0x3e8/0x500 [ 69.938226][ T5319] ? handle_invalid_op+0x34/0x40 [ 69.940456][ T5319] ? ext4_inline_data_truncate+0xced/0xcf0 [ 69.942688][ T5319] ? exc_invalid_op+0x38/0x50 [ 69.944418][ T5319] ? asm_exc_invalid_op+0x1a/0x20 [ 69.946391][ T5319] ? ext4_inline_data_truncate+0x998/0xcf0 [ 69.948477][ T5319] ? ext4_inline_data_truncate+0xcec/0xcf0 [ 69.951017][ T5319] ? ext4_inline_data_truncate+0xced/0xcf0 [ 69.953651][ T5319] ? __pfx_ext4_inline_data_truncate+0x10/0x10 [ 69.956644][ T5319] ? __ext4_mark_inode_dirty+0x5b2/0x880 [ 69.958690][ T5319] ext4_truncate+0x3ca/0x11c0 [ 69.960333][ T5319] ? __pfx_ext4_truncate+0x10/0x10 [ 69.962496][ T5319] ? ext4_journal_check_start+0x175/0x250 [ 69.964785][ T5319] ? ext4_inode_is_fast_symlink+0x266/0x3a0 [ 69.967414][ T5319] ext4_evict_inode+0x90f/0xf50 [ 69.969228][ T5319] ? __pfx_ext4_evict_inode+0x10/0x10 [ 69.972468][ T5319] ? do_raw_spin_unlock+0x58/0x8b0 [ 69.975752][ T5319] ? __pfx_ext4_evict_inode+0x10/0x10 [ 69.977775][ T5319] evict+0x4e8/0x9a0 [ 69.979276][ T5319] ? __pfx_evict+0x10/0x10 [ 69.980923][ T5319] ? iput+0x713/0xa50 [ 69.982445][ T5319] __dentry_kill+0x20d/0x630 [ 69.984120][ T5319] ? dput+0x37/0x2b0 [ 69.985654][ T5319] dput+0x19f/0x2b0 [ 69.987101][ T5319] __fput+0x60b/0x9f0 [ 69.988645][ T5319] task_work_run+0x24f/0x310 [ 69.990503][ T5319] ? _raw_spin_unlock+0x28/0x50 [ 69.992735][ T5319] ? __pfx_task_work_run+0x10/0x10 [ 69.995428][ T5319] ? syscall_exit_to_user_mode+0xa3/0x340 [ 69.997854][ T5319] syscall_exit_to_user_mode+0x13f/0x340 [ 69.999849][ T5319] do_syscall_64+0x100/0x230 [ 70.001837][ T5319] ? clear_bhb_loop+0x35/0x90 [ 70.003772][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.006219][ T5319] RIP: 0033:0x7f651c38cde9 [ 70.007975][ T5319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 70.015694][ T5319] RSP: 002b:00007f651d11a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 70.018794][ T5319] RAX: 0000000000000000 RBX: 00007f651c5a5fa0 RCX: 00007f651c38cde9 [ 70.021968][ T5319] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000005 [ 70.025133][ T5319] RBP: 00007f651c40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 70.028235][ T5319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 70.031956][ T5319] R13: 0000000000000000 R14: 00007f651c5a5fa0 R15: 00007fff76a55ff8 [ 70.036144][ T5319] [ 70.037668][ T5319] Modules linked in: [ 70.039813][ T5319] ---[ end trace 0000000000000000 ]--- [ 70.052572][ T5319] RIP: 0010:ext4_inline_data_truncate+0xced/0xcf0 [ 70.055466][ T5319] Code: e9 17 fd ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 44 fd ff ff e8 d3 c0 ac ff e9 3a fd ff ff e8 99 b0 7c 09 e8 d4 27 46 ff 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e [ 70.064366][ T5319] RSP: 0018:ffffc9000d347800 EFLAGS: 00010287 [ 70.067321][ T5319] RAX: ffffffff827927cc RBX: ffffc9000d3478a0 RCX: 0000000000100000 [ 70.070927][ T5319] RDX: ffffc9000e3aa000 RSI: 00000000000012a5 RDI: 00000000000012a6 [ 70.074622][ T5319] RBP: ffffc9000d347990 R08: ffffffff82792478 R09: 1ffff11008772b2f [ 70.079222][ T5319] R10: dffffc0000000000 R11: ffffed1008772b30 R12: ffffc9000d347900 [ 70.082687][ T5319] R13: dffffc0000000000 R14: 0000000000000002 R15: 0000000000000000 [ 70.086635][ T5319] FS: 00007f651d11a6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 70.090297][ T5319] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.093249][ T5319] CR2: 00005594dacdc208 CR3: 0000000042c12000 CR4: 0000000000352ef0 [ 70.099173][ T5319] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.102557][ T5319] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.105692][ T5319] Kernel panic - not syncing: Fatal exception [ 70.108281][ T5319] Kernel Offset: disabled [ 70.110148][ T5319] Rebooting in 86400 seconds..