program: r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) r1 = syz_usb_connect(0x3, 0x9d3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000001000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000001180)=ANY=[@ANYBLOB="0003"]}]}) fcntl$dupfd(r0, 0x0, r0) r2 = syz_open_dev$usbfs(&(0x7f0000000180), 0x10000001d, 0x8041) ioctl$USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000005980)={0x2, 0x15, 0x796c, 0x8, 0x0, 0xfffffffe, 0x0}) connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f00000003c0)={[{@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noauto_da_alloc}, {@nogrpid}, {@barrier_val={'barrier', 0x3d, 0x20000002}}, {@delalloc}, {@nojournal_checksum}, {@orlov}, {@user_xattr}, {@lazytime}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x81}}]}, 0x1, 0x559, &(0x7f00000005c0)="$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") r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r3, &(0x7f0000000140)='2', 0x1, 0x8000c61) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x35) pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xfecc) setxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000500), &(0x7f0000001340)=ANY=[@ANYRESDEC=r1, @ANYBLOB="180a9b970920834fb178b5ff015bd53112d9afc4860e55e15ca039b19e72b087a531a7e8c20581f1a2226ceecd694d4b48b88e969d7a672762e6cc05d0061ead569fc30031f3b4e014a99edbfbfa48fa9d82f5f2dd75baef9f56a47215b3d17daf8ab2f6d87c7ba1dbfb3329949a15bc930cd48332956c7f87dcffd0e33f4add30ea8b4e96dcc202dd5211e0bc6c62ad36b1a976553011f8e29b199e11b51244f401a91af4f878281a0a777f7241c8636a58a00c765187c20441f30959741d7d4e05", @ANYRES16=r1, @ANYRES64=r2, @ANYRESHEX=r2, @ANYRES64=r4, @ANYRES64=r4, @ANYRES16=r2, @ANYRES16=r2], 0x841, 0x0) ioctl$FIBMAP(r3, 0x1, &(0x7f0000000080)=0xfaeb) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) r7 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r7, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x20) syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60f91e2e00107300fc040000000000000000000000000000ff02000000000000000000000000000100000000ff"], 0x0) recvfrom$l2tp6(r7, &(0x7f0000002400)=""/4096, 0x1000, 0x20000, 0x0, 0x0) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r6, 0x244}, [@IFLA_NET_NS_PID={0x8}]}, 0x28}}, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = socket$unix(0x1, 0x2, 0x0) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010028bd7000fddbdf07b87572bf25070000", @ANYRES32=r11, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c65723000000000000008000500070000000a0018000303030303030000"], 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884) r12 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r12) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$SIOCSIFHWADDR(r12, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) [ 84.205868][ T5304] Bluetooth: hci0: command tx timeout [ 84.575173][ T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 84.725178][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 84.731764][ T9] usb 5-1: unable to get BOS descriptor or descriptor too short [ 84.738657][ T9] usb 5-1: config 109 has an invalid interface number: 225 but max is 2 [ 84.742169][ T9] usb 5-1: config 109 contains an unexpected descriptor of type 0x2, skipping [ 84.747295][ T9] usb 5-1: config 109 has an invalid descriptor of length 0, skipping remainder of the config [ 84.752396][ T9] usb 5-1: config 109 has 1 interface, different from the descriptor's value: 3 [ 84.757442][ T9] usb 5-1: config 109 has no interface number 0 [ 84.760512][ T9] usb 5-1: config 109 interface 225 altsetting 64 endpoint 0x5 has an invalid bInterval 72, changing to 7 [ 84.767362][ T9] usb 5-1: config 109 interface 225 altsetting 64 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 84.772053][ T9] usb 5-1: config 109 interface 225 altsetting 64 endpoint 0x6 has invalid maxpacket 951, setting to 64 [ 84.778244][ T9] usb 5-1: config 109 interface 225 altsetting 64 has an invalid descriptor for endpoint zero, skipping [ 84.782979][ T9] usb 5-1: config 109 interface 225 altsetting 64 has an endpoint descriptor with address 0x4E, changing to 0xE [ 84.789986][ T9] usb 5-1: config 109 interface 225 altsetting 64 endpoint 0xE has invalid maxpacket 512, setting to 64 [ 84.797321][ T9] usb 5-1: config 109 interface 225 altsetting 64 has an invalid descriptor for endpoint zero, skipping [ 84.802999][ T9] usb 5-1: config 109 interface 225 altsetting 64 has 11 endpoint descriptors, different from the interface descriptor's value: 13 [ 84.810108][ T9] usb 5-1: config 109 interface 225 has no altsetting 0 [ 84.815551][ T9] usb 5-1: string descriptor 0 read error: -22 [ 84.819826][ T9] usb 5-1: New USB device found, idVendor=12d1, idProduct=ffc6, bcdDevice=e7.71 [ 84.826068][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 84.851161][ T9] option 5-1:109.225: GSM modem (1-port) converter detected [ 85.060151][ T5324] loop0: detected capacity change from 0 to 1024 [ 85.068320][ T5324] ======================================================= [ 85.068320][ T5324] WARNING: The mand mount option has been deprecated and [ 85.068320][ T5324] and is ignored by this kernel. Remove the mand [ 85.068320][ T5324] option from the mount to silence this warning. [ 85.068320][ T5324] ======================================================= [ 85.106371][ T5324] EXT4-fs: Ignoring removed oldalloc option [ 85.110537][ T5324] EXT4-fs: Ignoring removed orlov option [ 85.143662][ T5324] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.179166][ T5324] ================================================================== [ 85.183039][ T5324] BUG: KASAN: use-after-free in ext4_find_extent+0xaea/0xcc0 [ 85.187384][ T5324] Read of size 4 at addr ffff88805617052c by task syz.0.0/5324 [ 85.191269][ T5324] [ 85.192399][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 85.192418][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 85.192427][ T5324] Call Trace: [ 85.192436][ T5324] [ 85.192443][ T5324] dump_stack_lvl+0xe8/0x150 [ 85.192466][ T5324] print_report+0xba/0x230 [ 85.192481][ T5324] ? ext4_find_extent+0xaea/0xcc0 [ 85.192494][ T5324] kasan_report+0x117/0x150 [ 85.192508][ T5324] ? ext4_find_extent+0xaea/0xcc0 [ 85.192522][ T5324] ext4_find_extent+0xaea/0xcc0 [ 85.192537][ T5324] ext4_ext_map_blocks+0x283/0x58b0 [ 85.192550][ T5324] ? kernel_text_address+0xa5/0xe0 [ 85.192564][ T5324] ? check_path+0x21/0x40 [ 85.192583][ T5324] ? lockdep_unlock+0x5d/0xd0 [ 85.192593][ T5324] ? __lock_acquire+0x146e/0x2cf0 [ 85.192609][ T5324] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 85.192633][ T5324] ext4_map_create_blocks+0x11d/0x540 [ 85.192652][ T5324] ext4_map_blocks+0x7cd/0x11d0 [ 85.192668][ T5324] ? __pfx_ext4_map_blocks+0x10/0x10 [ 85.192685][ T5324] ? ext4_inode_journal_mode+0x193/0x470 [ 85.192697][ T5324] ext4_do_writepages+0x22c0/0x46e0 [ 85.192716][ T5324] ? unwind_get_return_address+0x4d/0x90 [ 85.192751][ T5324] ? __pfx_ext4_do_writepages+0x10/0x10 [ 85.192770][ T5324] ? add_lock_to_list+0xc7/0x100 [ 85.192788][ T5324] ? lockdep_unlock+0x5d/0xd0 [ 85.192800][ T5324] ? __lock_acquire+0x146e/0x2cf0 [ 85.192821][ T5324] ext4_writepages+0x241/0x3b0 [ 85.192835][ T5324] ? __pfx_ext4_writepages+0x10/0x10 [ 85.192850][ T5324] ? __pfx_ext4_writepages+0x10/0x10 [ 85.192862][ T5324] do_writepages+0x32e/0x550 [ 85.192878][ T5324] ? do_raw_spin_unlock+0x4d/0x210 [ 85.192888][ T5324] filemap_write_and_wait_range+0x335/0x3f0 [ 85.192905][ T5324] ? __pfx_filemap_write_and_wait_range+0x10/0x10 [ 85.192934][ T5324] ? down_read+0x272/0x2e0 [ 85.192998][ T5324] ext4_bmap+0x1ce/0x260 [ 85.193013][ T5324] ? __pfx_ext4_bmap+0x10/0x10 [ 85.193027][ T5324] bmap+0xac/0xe0 [ 85.193044][ T5324] file_ioctl+0x4ac/0x860 [ 85.193054][ T5324] ? __pfx_file_ioctl+0x10/0x10 [ 85.193067][ T5324] ? kasan_quarantine_put+0xbb/0x1f0 [ 85.193085][ T5324] ? tomoyo_path_number_perm+0x219/0x630 [ 85.193173][ T5324] ? tomoyo_path_number_perm+0x219/0x630 [ 85.193191][ T5324] do_vfs_ioctl+0xc26/0x1530 [ 85.193210][ T5324] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 85.193232][ T5324] ? do_futex+0x395/0x420 [ 85.193251][ T5324] ? __fget_files+0x2a/0x420 [ 85.193269][ T5324] ? __fget_files+0x2a/0x420 [ 85.193282][ T5324] ? __fget_files+0x3a0/0x420 [ 85.193296][ T5324] ? __fget_files+0x2a/0x420 [ 85.193309][ T5324] ? bpf_lsm_file_ioctl+0x9/0x20 [ 85.193322][ T5324] __se_sys_ioctl+0x82/0x170 [ 85.193332][ T5324] do_syscall_64+0x14d/0xf80 [ 85.193343][ T5324] ? trace_irq_disable+0x3b/0x150 [ 85.193350][ T5324] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.193362][ T5324] ? clear_bhb_loop+0x40/0x90 [ 85.193375][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.193389][ T5324] RIP: 0033:0x7fb15119c799 [ 85.193403][ T5324] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 85.193413][ T5324] RSP: 002b:00007fb151f82fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.193425][ T5324] RAX: ffffffffffffffda RBX: 00007fb151415fa0 RCX: 00007fb15119c799 [ 85.193433][ T5324] RDX: 0000200000000080 RSI: 0000000000000001 RDI: 0000000000000008 [ 85.193441][ T5324] RBP: 00007fb151232c99 R08: 0000000000000000 R09: 0000000000000000 [ 85.193450][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.193458][ T5324] R13: 00007fb151416038 R14: 00007fb151415fa0 R15: 00007fff22944b88 [ 85.193472][ T5324] [ 85.193477][ T5324] [ 85.361111][ T5324] The buggy address belongs to the physical page: [ 85.364119][ T5324] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x56170 [ 85.368477][ T5324] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 85.371485][ T5324] raw: 04fff00000000000 ffffea0001585c48 ffffea0001585bc8 0000000000000000 [ 85.375459][ T5324] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 85.379253][ T5324] page dumped because: kasan: bad access detected [ 85.382847][ T5324] page_owner info is not present (never set?) [ 85.385698][ T5324] [ 85.386696][ T5324] Memory state around the buggy address: [ 85.389093][ T5324] ffff888056170400: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 85.392924][ T5324] ffff888056170480: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 85.396520][ T5324] >ffff888056170500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 85.400070][ T5324] ^ [ 85.402174][ T5324] ffff888056170580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 85.406083][ T5324] ffff888056170600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 85.410125][ T5324] ================================================================== [ 85.448985][ T5324] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 85.452176][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 85.456260][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 85.461042][ T5324] Call Trace: [ 85.462567][ T5324] [ 85.463920][ T5324] vpanic+0x56c/0xa60 [ 85.465587][ T5324] ? __pfx_vpanic+0x10/0x10 [ 85.467509][ T5324] panic+0xc5/0xd0 [ 85.469121][ T5324] ? __pfx_panic+0x10/0x10 [ 85.471110][ T5324] ? preempt_schedule_thunk+0x16/0x30 [ 85.473599][ T5324] ? preempt_schedule_thunk+0x16/0x30 [ 85.476487][ T5324] ? ext4_find_extent+0xaea/0xcc0 [ 85.479119][ T5324] check_panic_on_warn+0x89/0xb0 [ 85.481396][ T5324] ? ext4_find_extent+0xaea/0xcc0 [ 85.483258][ T5324] end_report+0x73/0x180 [ 85.484911][ T5324] ? ext4_find_extent+0xaea/0xcc0 [ 85.487076][ T5324] kasan_report+0x128/0x150 [ 85.489422][ T5324] ? ext4_find_extent+0xaea/0xcc0 [ 85.492034][ T5324] ext4_find_extent+0xaea/0xcc0 [ 85.494368][ T5324] ext4_ext_map_blocks+0x283/0x58b0 [ 85.496868][ T5324] ? kernel_text_address+0xa5/0xe0 [ 85.499528][ T5324] ? check_path+0x21/0x40 [ 85.501963][ T5324] ? lockdep_unlock+0x5d/0xd0 [ 85.504363][ T5324] ? __lock_acquire+0x146e/0x2cf0 [ 85.506452][ T5324] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 85.508775][ T5324] ext4_map_create_blocks+0x11d/0x540 [ 85.511168][ T5324] ext4_map_blocks+0x7cd/0x11d0 [ 85.513415][ T5324] ? __pfx_ext4_map_blocks+0x10/0x10 [ 85.516056][ T5324] ? ext4_inode_journal_mode+0x193/0x470 [ 85.519409][ T5324] ext4_do_writepages+0x22c0/0x46e0 [ 85.522328][ T5324] ? unwind_get_return_address+0x4d/0x90 [ 85.525095][ T5324] ? __pfx_ext4_do_writepages+0x10/0x10 [ 85.527752][ T5324] ? add_lock_to_list+0xc7/0x100 [ 85.529636][ T5324] ? lockdep_unlock+0x5d/0xd0 [ 85.531374][ T5324] ? __lock_acquire+0x146e/0x2cf0 [ 85.533429][ T5324] ext4_writepages+0x241/0x3b0 [ 85.535759][ T5324] ? __pfx_ext4_writepages+0x10/0x10 [ 85.538608][ T5324] ? __pfx_ext4_writepages+0x10/0x10 [ 85.541215][ T5324] do_writepages+0x32e/0x550 [ 85.543221][ T5324] ? do_raw_spin_unlock+0x4d/0x210 [ 85.545445][ T5324] filemap_write_and_wait_range+0x335/0x3f0 [ 85.548049][ T5324] ? __pfx_filemap_write_and_wait_range+0x10/0x10 [ 85.551165][ T5324] ? down_read+0x272/0x2e0 [ 85.554109][ T5324] ext4_bmap+0x1ce/0x260 [ 85.556793][ T5324] ? __pfx_ext4_bmap+0x10/0x10 [ 85.558962][ T5324] bmap+0xac/0xe0 [ 85.560774][ T5324] file_ioctl+0x4ac/0x860 [ 85.562815][ T5324] ? __pfx_file_ioctl+0x10/0x10 [ 85.565007][ T5324] ? kasan_quarantine_put+0xbb/0x1f0 [ 85.567693][ T5324] ? tomoyo_path_number_perm+0x219/0x630 [ 85.570179][ T5324] ? tomoyo_path_number_perm+0x219/0x630 [ 85.572650][ T5324] do_vfs_ioctl+0xc26/0x1530 [ 85.574939][ T5324] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 85.577558][ T5324] ? do_futex+0x395/0x420 [ 85.579801][ T5324] ? __fget_files+0x2a/0x420 [ 85.581944][ T5324] ? __fget_files+0x2a/0x420 [ 85.583913][ T5324] ? __fget_files+0x3a0/0x420 [ 85.585883][ T5324] ? __fget_files+0x2a/0x420 [ 85.588105][ T5324] ? bpf_lsm_file_ioctl+0x9/0x20 [ 85.590374][ T5324] __se_sys_ioctl+0x82/0x170 [ 85.592593][ T5324] do_syscall_64+0x14d/0xf80 [ 85.595035][ T5324] ? trace_irq_disable+0x3b/0x150 [ 85.597684][ T5324] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.600504][ T5324] ? clear_bhb_loop+0x40/0x90 [ 85.602656][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.605171][ T5324] RIP: 0033:0x7fb15119c799 [ 85.607214][ T5324] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 85.615299][ T5324] RSP: 002b:00007fb151f82fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.619228][ T5324] RAX: ffffffffffffffda RBX: 00007fb151415fa0 RCX: 00007fb15119c799 [ 85.623208][ T5324] RDX: 0000200000000080 RSI: 0000000000000001 RDI: 0000000000000008 [ 85.626783][ T5324] RBP: 00007fb151232c99 R08: 0000000000000000 R09: 0000000000000000 [ 85.630561][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.634424][ T5324] R13: 00007fb151416038 R14: 00007fb151415fa0 R15: 00007fff22944b88 [ 85.637898][ T5324] [ 85.639696][ T5324] Kernel Offset: disabled [ 85.641556][ T5324] Rebooting in 86400 seconds..