program: r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000300)="$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") socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r1 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0xffff}}}, 0x24}}, 0x0) r2 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='8', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845) io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)="30573472b621739991c336124406e8a5c812ca847e3bf9b837c91d46ab", 0x1d, 0x1) lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000800)=ANY=[], 0x361, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0) [ 76.550595][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.553096][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.556032][ T4667] Bluetooth: hci0: command tx timeout [ 76.677530][ T5319] loop0: detected capacity change from 0 to 1024 [ 76.689422][ T5319] ======================================================= [ 76.689422][ T5319] WARNING: The mand mount option has been deprecated and [ 76.689422][ T5319] and is ignored by this kernel. Remove the mand [ 76.689422][ T5319] option from the mount to silence this warning. [ 76.689422][ T5319] ======================================================= [ 76.751222][ T5319] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.777810][ T5319] BUG: unable to handle page fault for address: ffffed102a27ccfd [ 76.780983][ T5319] #PF: supervisor read access in kernel mode [ 76.783592][ T5319] #PF: error_code(0x0000) - not-present page [ 76.786102][ T5319] PGD 5ffcd067 P4D 5ffcd067 PUD 2fff7067 PMD 0 [ 76.788808][ T5319] Oops: Oops: 0000 [#1] SMP KASAN NOPTI [ 76.791204][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 76.795268][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.799711][ T5319] RIP: 0010:kasan_check_range+0xbe/0x2c0 [ 76.802288][ T5319] Code: cb 48 f7 d3 4c 01 fb 41 80 3b 00 0f 85 de 01 00 00 49 ff c3 48 ff c3 75 ee e9 21 01 00 00 44 89 dd 83 e5 07 0f 84 b5 00 00 00 <41> 80 3b 00 4d 89 dc 0f 85 75 01 00 00 83 fd 07 0f 84 8d 00 00 00 [ 76.811027][ T5319] RSP: 0018:ffffc9000d3b73c0 EFLAGS: 00010206 [ 76.813527][ T5319] RAX: 0000000000000001 RBX: dffffc0000000001 RCX: ffffffff828a507e [ 76.816722][ T5319] RDX: 0000000000000001 RSI: 000000000000fbff RDI: ffff8881513e67ec [ 76.819894][ T5319] RBP: 0000000000000005 R08: ffff8881513f63ea R09: 1ffff1102a27ec7d [ 76.822947][ T5319] R10: dffffc0000000000 R11: ffffed102a27ccfd R12: 0000000000001f81 [ 76.826169][ T5319] R13: dffffc0000000000 R14: ffffed102a27ec7e R15: 1ffff1102a27ccfd [ 76.829562][ T5319] FS: 00007ff4aceae6c0(0000) GS:ffff88808d732000(0000) knlGS:0000000000000000 [ 76.833332][ T5319] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.836144][ T5319] CR2: ffffed102a27ccfd CR3: 000000000b551000 CR4: 0000000000352ef0 [ 76.839564][ T5319] Call Trace: [ 76.841047][ T5319] [ 76.842337][ T5319] ? ext4_xattr_set_entry+0x179e/0x1e20 [ 76.844838][ T5319] __asan_memmove+0x40/0x70 [ 76.846807][ T5319] ext4_xattr_set_entry+0x179e/0x1e20 [ 76.849085][ T5319] ext4_xattr_block_set+0x61b/0x2ac0 [ 76.851380][ T5319] ? ext4_destroy_inode+0x143/0x2d0 [ 76.853814][ T5319] ? __pfx_ext4_free_in_core_inode+0x10/0x10 [ 76.856428][ T5319] ? __pfx_evict+0x10/0x10 [ 76.858559][ T5319] ? do_raw_spin_unlock+0x4d/0x240 [ 76.861170][ T5319] ? _raw_spin_unlock+0x28/0x50 [ 76.863438][ T5319] ? iput+0x946/0xc50 [ 76.865231][ T5319] ? __pfx_ext4_xattr_block_set+0x10/0x10 [ 76.867680][ T5319] ? ext4_xattr_ibody_set+0x510/0x6a0 [ 76.870074][ T5319] ext4_xattr_set_handle+0xdfb/0x1590 [ 76.872347][ T5319] ? __pfx_ext4_xattr_set_handle+0x10/0x10 [ 76.874939][ T5319] ? __ext4_journal_start_sb+0x27e/0x5c0 [ 76.877534][ T5319] ext4_xattr_set+0x230/0x320 [ 76.879652][ T5319] ? __pfx_ext4_xattr_set+0x10/0x10 [ 76.881971][ T5319] ? __pfx_evm_protect_xattr+0x10/0x10 [ 76.884407][ T5319] ? __pfx_ext4_xattr_trusted_set+0x10/0x10 [ 76.887016][ T5319] __vfs_setxattr+0x43c/0x480 [ 76.889256][ T5319] __vfs_setxattr_noperm+0x12d/0x660 [ 76.891680][ T5319] vfs_setxattr+0x16b/0x2f0 [ 76.893797][ T5319] ? __pfx_vfs_setxattr+0x10/0x10 [ 76.895946][ T5319] filename_setxattr+0x274/0x600 [ 76.897992][ T5319] ? __pfx_filename_setxattr+0x10/0x10 [ 76.900373][ T5319] ? getname_flags+0x1e5/0x540 [ 76.902449][ T5319] path_setxattrat+0x364/0x3a0 [ 76.904431][ T5319] ? __pfx_path_setxattrat+0x10/0x10 [ 76.906697][ T5319] __x64_sys_lsetxattr+0xbf/0xe0 [ 76.908744][ T5319] do_syscall_64+0xfa/0xfa0 [ 76.910602][ T5319] ? lockdep_hardirqs_on+0x9c/0x150 [ 76.912773][ T5319] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.915596][ T5319] ? clear_bhb_loop+0x60/0xb0 [ 76.917718][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.920282][ T5319] RIP: 0033:0x7ff4abf8f6c9 [ 76.922241][ T5319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.930531][ T5319] RSP: 002b:00007ff4aceae038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd [ 76.934092][ T5319] RAX: ffffffffffffffda RBX: 00007ff4ac1e5fa0 RCX: 00007ff4abf8f6c9 [ 76.937383][ T5319] RDX: 0000200000000000 RSI: 00002000000000c0 RDI: 0000200000000100 [ 76.940659][ T5319] RBP: 00007ff4ac011f91 R08: 0000000000000000 R09: 0000000000000000 [ 76.944059][ T5319] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000000 [ 76.947603][ T5319] R13: 00007ff4ac1e6038 R14: 00007ff4ac1e5fa0 R15: 00007ffd5f11e188 [ 76.951151][ T5319] [ 76.952518][ T5319] Modules linked in: [ 76.954176][ T5319] CR2: ffffed102a27ccfd [ 76.955884][ T5319] ---[ end trace 0000000000000000 ]--- [ 76.958305][ T5319] RIP: 0010:kasan_check_range+0xbe/0x2c0 [ 76.960834][ T5319] Code: cb 48 f7 d3 4c 01 fb 41 80 3b 00 0f 85 de 01 00 00 49 ff c3 48 ff c3 75 ee e9 21 01 00 00 44 89 dd 83 e5 07 0f 84 b5 00 00 00 <41> 80 3b 00 4d 89 dc 0f 85 75 01 00 00 83 fd 07 0f 84 8d 00 00 00 [ 76.970847][ T5319] RSP: 0018:ffffc9000d3b73c0 EFLAGS: 00010206 [ 76.973539][ T5319] RAX: 0000000000000001 RBX: dffffc0000000001 RCX: ffffffff828a507e [ 76.977162][ T5319] RDX: 0000000000000001 RSI: 000000000000fbff RDI: ffff8881513e67ec [ 76.980708][ T5319] RBP: 0000000000000005 R08: ffff8881513f63ea R09: 1ffff1102a27ec7d [ 76.984090][ T5319] R10: dffffc0000000000 R11: ffffed102a27ccfd R12: 0000000000001f81 [ 76.987886][ T5319] R13: dffffc0000000000 R14: ffffed102a27ec7e R15: 1ffff1102a27ccfd [ 76.991317][ T5319] FS: 00007ff4aceae6c0(0000) GS:ffff88808d732000(0000) knlGS:0000000000000000 [ 76.995062][ T5319] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.997824][ T5319] CR2: ffffed102a27ccfd CR3: 000000000b551000 CR4: 0000000000352ef0 [ 77.001353][ T5319] Kernel panic - not syncing: Fatal exception [ 77.004515][ T5319] Kernel Offset: disabled [ 77.006399][ T5319] Rebooting in 86400 seconds..