program: r0 = socket$inet6(0x10, 0x3, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000080)=0x10) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x4048aec9, &(0x7f0000000740)={0x2, 0x0, @ioapic={0x0, 0x296a, 0xf7c, 0xffffffff, 0x0, [{0x98, 0x27, 0x81, '\x00', 0x77}, {0x1, 0xc, 0x81, '\x00', 0xf5}, {0xe9, 0x4, 0x9, '\x00', 0xe}, {0x6, 0x8, 0x3, '\x00', 0x8f}, {0xff, 0x7c, 0xb1, '\x00', 0x7}, {0xf, 0x2, 0x28, '\x00', 0xaa}, {0x7e, 0xa, 0x1, '\x00', 0x8}, {0x1, 0x3, 0x2, '\x00', 0x2}, {0x2, 0x7, 0x91, '\x00', 0x8}, {0x8, 0x3, 0x43, '\x00', 0x80}, {0xfc, 0x8, 0x4, '\x00', 0x3}, {0x2, 0x3, 0x3, '\x00', 0x8}, {0x6, 0x9, 0x8, '\x00', 0xa6}, {0x2, 0x0, 0x8, '\x00', 0x9}, {0x4, 0x4e, 0x9}, {0x6, 0x5e, 0x4, '\x00', 0x3}, {0x5, 0x5, 0x5, '\x00', 0x5}, {0x4, 0x3, 0x3, '\x00', 0xff}, {0x5, 0x0, 0xf, '\x00', 0x3}, {0x4, 0x6, 0xb, '\x00', 0x3}, {0x6f, 0x5, 0x7, '\x00', 0x4}, {0x7, 0x40, 0x9, '\x00', 0x10}, {0xa, 0x8, 0x1, '\x00', 0x7}, {0x2, 0xc, 0x92, '\x00', 0x8}]}}) r5 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r5, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={r2, 0x9, 0xc01}, &(0x7f0000000100)=0xc) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f0000000080)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@minixdf}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@nojournal_checksum}, {@orlov}, {@user_xattr}, {@quota}, {@delalloc}]}, 0x1, 0x553, &(0x7f0000001080)="$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") r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r6, &(0x7f0000000140)='2', 0x1, 0x8000c61) r7 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10) sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001340)={0x18, 0x52, 0x1, 0xfffffffc, 0x0, {0x1c}, [@nested={0x4, 0x5}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x10) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r8, 0x0) r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x35) pwrite64(r9, &(0x7f0000000140)='2', 0xfdef, 0xfecc) setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000500), &(0x7f00000001c0)=ANY=[@ANYRES8=r6, @ANYBLOB="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", @ANYRES8=r1, @ANYRESDEC=r1], 0x841, 0x0) r10 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) openat(r9, &(0x7f0000000300)='./file1\x00', 0x101000, 0xc) write$FUSE_WRITE(r10, &(0x7f00000000c0)={0x18}, 0xfffffdef) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade", 0x55}], 0x1}, 0x0) write(r0, &(0x7f0000000040)="2400000021002551241c0165ff00fc020200000003100f000ee1000c08000b0000000000", 0x24) [ 85.540076][ T5316] Bluetooth: hci0: command tx timeout [ 85.656009][ T5339] loop0: detected capacity change from 0 to 1024 [ 85.707939][ T5339] ======================================================= [ 85.707939][ T5339] WARNING: The mand mount option has been deprecated and [ 85.707939][ T5339] and is ignored by this kernel. Remove the mand [ 85.707939][ T5339] option from the mount to silence this warning. [ 85.707939][ T5339] ======================================================= [ 85.776024][ T5339] EXT4-fs: Ignoring removed oldalloc option [ 85.795598][ T5339] EXT4-fs: Ignoring removed orlov option [ 85.807929][ T5339] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 85.846316][ T5339] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.948633][ T5339] ================================================================== [ 85.952369][ T5339] BUG: KASAN: use-after-free in ext4_find_extent+0xae6/0xcc0 [ 85.955670][ T5339] Read of size 4 at addr ffff8880506dc708 by task syz.0.0/5339 [ 85.958919][ T5339] [ 85.960031][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 85.960047][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.960056][ T5339] Call Trace: [ 85.960063][ T5339] [ 85.960070][ T5339] dump_stack_lvl+0xe8/0x150 [ 85.960089][ T5339] print_report+0xca/0x240 [ 85.960102][ T5339] ? ext4_find_extent+0xae6/0xcc0 [ 85.960119][ T5339] kasan_report+0x118/0x150 [ 85.960139][ T5339] ? ext4_find_extent+0xae6/0xcc0 [ 85.960158][ T5339] ext4_find_extent+0xae6/0xcc0 [ 85.960176][ T5339] ext4_ext_map_blocks+0x278/0x69c0 [ 85.960201][ T5339] ? ext4_map_blocks+0x73f/0x16f0 [ 85.960215][ T5339] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 85.960237][ T5339] ? ext4_es_lookup_extent+0x6cd/0xb00 [ 85.960252][ T5339] ext4_map_blocks+0x82c/0x16f0 [ 85.960268][ T5339] ? kasan_save_track+0x4f/0x80 [ 85.960287][ T5339] ? __pfx_ext4_map_blocks+0x10/0x10 [ 85.960298][ T5339] ? ext4_da_write_begin+0x352/0xd30 [ 85.960317][ T5339] ? obj_cgroup_charge_account+0x13b/0x650 [ 85.960337][ T5339] _ext4_get_block+0x1fa/0x4c0 [ 85.960350][ T5339] ? __pfx__ext4_get_block+0x10/0x10 [ 85.960364][ T5339] ext4_get_block_unwritten+0x2e/0x100 [ 85.960377][ T5339] ext4_block_write_begin+0xb03/0x1940 [ 85.960392][ T5339] ? __pfx_ext4_get_block_unwritten+0x10/0x10 [ 85.960401][ T5339] ? __pfx_ext4_block_write_begin+0x10/0x10 [ 85.960413][ T5339] ? folio_mapping+0x16f/0x1f0 [ 85.960423][ T5339] ? ext4_inode_journal_mode+0x193/0x470 [ 85.960438][ T5339] ext4_write_begin+0xb3a/0x1860 [ 85.960460][ T5339] ? __pfx_ext4_write_begin+0x10/0x10 [ 85.960478][ T5339] ext4_da_write_begin+0x352/0xd30 [ 85.960499][ T5339] ? __pfx_ext4_da_write_begin+0x10/0x10 [ 85.960519][ T5339] generic_perform_write+0x2c5/0x900 [ 85.960533][ T5339] ? __pfx_generic_perform_write+0x10/0x10 [ 85.960544][ T5339] ? file_update_time_flags+0x448/0x4e0 [ 85.960560][ T5339] ? ext4_write_checks+0x24b/0x2c0 [ 85.960573][ T5339] ext4_buffered_write_iter+0xce/0x3a0 [ 85.960588][ T5339] ext4_file_write_iter+0x292/0x1bc0 [ 85.960604][ T5339] ? vfs_write+0x211/0xb30 [ 85.960620][ T5339] ? vfs_write+0x211/0xb30 [ 85.960635][ T5339] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 85.960651][ T5339] vfs_write+0x5c9/0xb30 [ 85.960667][ T5339] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 85.960680][ T5339] ? __pfx_vfs_write+0x10/0x10 [ 85.960697][ T5339] ? __fget_files+0x2a/0x420 [ 85.960711][ T5339] ksys_write+0x145/0x250 [ 85.960727][ T5339] ? __pfx_ksys_write+0x10/0x10 [ 85.960746][ T5339] do_syscall_64+0xec/0xf80 [ 85.960797][ T5339] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.960809][ T5339] ? trace_irq_disable+0x37/0x100 [ 85.960826][ T5339] ? clear_bhb_loop+0x60/0xb0 [ 85.960839][ T5339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.960851][ T5339] RIP: 0033:0x7fab2d38f7c9 [ 85.960864][ T5339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.960875][ T5339] RSP: 002b:00007fab2e2ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 85.960887][ T5339] RAX: ffffffffffffffda RBX: 00007fab2d5e5fa0 RCX: 00007fab2d38f7c9 [ 85.960896][ T5339] RDX: 00000000fffffdef RSI: 00002000000000c0 RDI: 000000000000000d [ 85.960904][ T5339] RBP: 00007fab2d413f91 R08: 0000000000000000 R09: 0000000000000000 [ 85.960912][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.960919][ T5339] R13: 00007fab2d5e6038 R14: 00007fab2d5e5fa0 R15: 00007ffe2b353408 [ 85.960933][ T5339] [ 85.960938][ T5339] [ 86.104686][ T5339] The buggy address belongs to the physical page: [ 86.107193][ T5339] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x506dc [ 86.110809][ T5339] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 86.114070][ T5339] raw: 04fff00000000000 ffffea000141b748 ffffea000141b6c8 0000000000000000 [ 86.117760][ T5339] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 86.122279][ T5339] page dumped because: kasan: bad access detected [ 86.125537][ T5339] page_owner info is not present (never set?) [ 86.128385][ T5339] [ 86.129530][ T5339] Memory state around the buggy address: [ 86.132148][ T5339] ffff8880506dc600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 86.135317][ T5339] ffff8880506dc680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 86.138726][ T5339] >ffff8880506dc700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 86.142684][ T5339] ^ [ 86.145050][ T5339] ffff8880506dc780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 86.148611][ T5339] ffff8880506dc800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 86.152267][ T5339] ================================================================== [ 86.164503][ T5340] netlink: 'syz.0.0': attribute type 4 has an invalid length. [ 86.169698][ T5339] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 86.172474][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 86.176136][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.180376][ T5339] Call Trace: [ 86.181836][ T5339] [ 86.182995][ T5339] vpanic+0x1e0/0x670 [ 86.184594][ T5339] panic+0xb9/0xc0 [ 86.185935][ T5339] ? __pfx_panic+0x10/0x10 [ 86.187582][ T5339] ? preempt_schedule_common+0x83/0xd0 [ 86.189596][ T5339] ? ext4_find_extent+0xae6/0xcc0 [ 86.191411][ T5339] check_panic_on_warn+0x89/0xb0 [ 86.193229][ T5339] ? ext4_find_extent+0xae6/0xcc0 [ 86.195137][ T5339] end_report+0x6f/0x140 [ 86.196993][ T5339] kasan_report+0x129/0x150 [ 86.198847][ T5339] ? ext4_find_extent+0xae6/0xcc0 [ 86.200893][ T5339] ext4_find_extent+0xae6/0xcc0 [ 86.202819][ T5339] ext4_ext_map_blocks+0x278/0x69c0 [ 86.204884][ T5339] ? ext4_map_blocks+0x73f/0x16f0 [ 86.206916][ T5339] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 86.209139][ T5339] ? ext4_es_lookup_extent+0x6cd/0xb00 [ 86.211395][ T5339] ext4_map_blocks+0x82c/0x16f0 [ 86.213418][ T5339] ? kasan_save_track+0x4f/0x80 [ 86.215550][ T5339] ? __pfx_ext4_map_blocks+0x10/0x10 [ 86.217761][ T5339] ? ext4_da_write_begin+0x352/0xd30 [ 86.219935][ T5339] ? obj_cgroup_charge_account+0x13b/0x650 [ 86.222260][ T5339] _ext4_get_block+0x1fa/0x4c0 [ 86.224092][ T5339] ? __pfx__ext4_get_block+0x10/0x10 [ 86.226147][ T5339] ext4_get_block_unwritten+0x2e/0x100 [ 86.228470][ T5339] ext4_block_write_begin+0xb03/0x1940 [ 86.230731][ T5339] ? __pfx_ext4_get_block_unwritten+0x10/0x10 [ 86.233204][ T5339] ? __pfx_ext4_block_write_begin+0x10/0x10 [ 86.235902][ T5339] ? folio_mapping+0x16f/0x1f0 [ 86.238012][ T5339] ? ext4_inode_journal_mode+0x193/0x470 [ 86.240543][ T5339] ext4_write_begin+0xb3a/0x1860 [ 86.242509][ T5339] ? __pfx_ext4_write_begin+0x10/0x10 [ 86.245486][ T5339] ext4_da_write_begin+0x352/0xd30 [ 86.248078][ T5339] ? __pfx_ext4_da_write_begin+0x10/0x10 [ 86.250624][ T5339] generic_perform_write+0x2c5/0x900 [ 86.253237][ T5339] ? __pfx_generic_perform_write+0x10/0x10 [ 86.255987][ T5339] ? file_update_time_flags+0x448/0x4e0 [ 86.258136][ T5339] ? ext4_write_checks+0x24b/0x2c0 [ 86.260328][ T5339] ext4_buffered_write_iter+0xce/0x3a0 [ 86.262678][ T5339] ext4_file_write_iter+0x292/0x1bc0 [ 86.264978][ T5339] ? vfs_write+0x211/0xb30 [ 86.266869][ T5339] ? vfs_write+0x211/0xb30 [ 86.268886][ T5339] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 86.271401][ T5339] vfs_write+0x5c9/0xb30 [ 86.273328][ T5339] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 86.275860][ T5339] ? __pfx_vfs_write+0x10/0x10 [ 86.278003][ T5339] ? __fget_files+0x2a/0x420 [ 86.280061][ T5339] ksys_write+0x145/0x250 [ 86.282023][ T5339] ? __pfx_ksys_write+0x10/0x10 [ 86.284057][ T5339] do_syscall_64+0xec/0xf80 [ 86.286036][ T5339] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.288567][ T5339] ? trace_irq_disable+0x37/0x100 [ 86.290668][ T5339] ? clear_bhb_loop+0x60/0xb0 [ 86.292813][ T5339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.295463][ T5339] RIP: 0033:0x7fab2d38f7c9 [ 86.297261][ T5339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.304459][ T5339] RSP: 002b:00007fab2e2ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 86.308028][ T5339] RAX: ffffffffffffffda RBX: 00007fab2d5e5fa0 RCX: 00007fab2d38f7c9 [ 86.311353][ T5339] RDX: 00000000fffffdef RSI: 00002000000000c0 RDI: 000000000000000d [ 86.314825][ T5339] RBP: 00007fab2d413f91 R08: 0000000000000000 R09: 0000000000000000 [ 86.318180][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 86.321527][ T5339] R13: 00007fab2d5e6038 R14: 00007fab2d5e5fa0 R15: 00007ffe2b353408 [ 86.324853][ T5339] [ 86.326584][ T5339] Kernel Offset: disabled [ 86.328550][ T5339] Rebooting in 86400 seconds..