program:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x10, &(0x7f0000000100)={[{@dioread_lock}]}, 0x5, 0x7e5, &(0x7f00000018c0)="$eJzs3ctrW9kZAPDvyvKjTlK7UGjSlaHQGoLlOnWTFrpI6aIUGgi06yZCVkxq2QqWHGJjSEMpdFNoQxeFdpN12qa7btuZ7cy/MLMZhiEhM+OESZjF4OHqEcu25MgZWZqJfz+49jn3oXO++zj3yPdwHcCxNZX+yESciYg/JxETjflJRAzXUtmIi/X1nm1tFtIpie3tX32U1NZ5urVZiJZtYnw8TjQypyPijT9EnM3sL7eyvrGUL5WKq438bHX5xmxlfWPm+nJ+sbhYXDk/Nz9/7sIPL4z2LtZP3t44+egvP//evy9++vtvPfjTm0lcjJONZa1x9MpUTNX3SQynu3CXn/W6sAFLBl0BXkl6aQ7Vr/I4ExPZGOl+2+xRVgwAODK3I2IbADhmEvd/ADhmmn8HeLq1WUin7duD/XtEvz3+aUSM1eNvPt+sL8k2ntmN1Z6Djj9Ndj3vSCJisgflT0XEP/77m3+mUxzRc0iAdn53JyKuTk412/+d9ifZN2ahrvsBGd9vJg4YHDC1J6/9g/75X9r/+dFO/2/n+su86P9Em/7PaJtr91VMxe4RJ/uv/8zDHhTTUdr/+8nwzti2Zy3xN0wONXKnan2+4eTa9VIxbdu+HhHTMTya5ufaf3xteNn0k8+e7JrbEnFr/+/ju7+9n5af/t5ZI/Mwu6fJXchX872IPfX4TsS3s+3iT14c/6RD//dyl2X84sd//HunZWn8abzNaXf8Rz+qbPtexHejffxNyUHjE8/P1k6H2eZJ0cZ/3vvbeKfyW49/OqXl178LnOp9sG2kx3/84Pgnk9bxmpXDl/HWvYn/d1rWOf6m9uf/SPLrWrp5Kd3KV6urcxEjyS/3zz+3s20z31w/jX/6O+2v/4PO//Q74dUu488++vBfL42/OWNf/A1jXRZ2SGn8C4c6/m0T6VfhDovypQfPloY6ld/d8Z9PE0PTjTndtH8da5ovlUZa1nnlHQcAAAAAAAAAAAAAAAAAAAAAAAAAh5CpvaQ0yeRepDOZXC5q/8P7mzGeKZUr1bPXymsrC/WXmU7G8GhE1F51OdHyPtS5xvvwm/lze/I/iIhvRMRfR79Wy+cK5dLCoIMHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIYTHf7/f+qD0frv5wOtIQBwJMZeusaTYl8qAgD0zcvv/xExevT1AAD6p6v7PwDwWnH/B4DjZywz6BoAAP02FpEddB0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4rV2+dCmdtp9vbRbS/MLN9bWl8s2ZhWJlKbe8VsgVyqs3covl8mKpmCuUl1s2fafd55XK5RvzsbJ2a7ZarFRnK+sbV5bLayvVK9eX84vFK8XhvkUGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN2rrG8s5Uul4mojcX88YvecPiWGGhXq5SfPnOx3FP1IbE/U99SXpT49T4ztnfP+zLunD9rq7r7TWOILJwbZKgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8dXweAAD//9GqGUs=")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x2, 0x3, 0x1, 0x1, 0x22}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
r1 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0x195)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000040000000030a09020000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002400000000014000000110001"], 0x88}}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000280)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r3 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f0000000300)={0x0, {}, 0x0, {}, 0x5, 0xa, 0xe, 0x29, "22536a030000000000000043a52dbc3a9ae8b04fcca15548328cb3e74d938981061383375e1d61471a2d2dfe0000000000000000000000040000000000821700", "0410263626c0240010f9db74161ccff2c5cf5e00", [0x5, 0xff]})
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x4008, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), r1)
sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x70, r4, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x5, 0x5, 0x7]}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xff}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x5}, @SEG6_ATTR_DST={0x14, 0x1, @loopback}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x9}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x5}, @SEG6_ATTR_DST={0x14, 0x1, @remote}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000780)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0x8, 0x1, 'ttl\x00'}, @NFTA_MATCH_INFO={0x6, 0x3, "01cc"}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x6}}], {0x14}}, 0x98}, 0x1, 0x0, 0x0, 0x24004001}, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r1, 0x9000)
fallocate(r1, 0x0, 0x0, 0x8800000)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x75, 0x9000, 0x0, 0x3)
[ 85.115874][ T5326] loop0: detected capacity change from 0 to 2048
[ 85.202578][ T5326] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 85.224953][ T24] audit: type=1800 audit(1778705774.247:2): pid=5326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 85.279249][ T5326] loop0: detected capacity change from 2048 to 2047
[ 85.308814][ T5326] ==================================================================
[ 85.312298][ T5326] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.315588][ T5326] Read of size 18446744073709551600 at addr ffff8880119e4eb8 by task syz.0.0/5326
[ 85.319659][ T5326]
[ 85.320728][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 85.320739][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 85.320745][ T5326] Call Trace:
[ 85.320750][ T5326]
[ 85.320753][ T5326] dump_stack_lvl+0xe8/0x150
[ 85.320769][ T5326] print_address_description+0x55/0x1e0
[ 85.320781][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.320800][ T5326] print_report+0x58/0x70
[ 85.320810][ T5326] kasan_report+0x117/0x150
[ 85.320831][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.320849][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.320864][ T5326] kasan_check_range+0x264/0x2c0
[ 85.320873][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.320883][ T5326] __asan_memmove+0x29/0x70
[ 85.320890][ T5326] ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.320908][ T5326] ext4_xattr_ibody_set+0x254/0x6a0
[ 85.320923][ T5326] ext4_destroy_inline_data_nolock+0x23a/0x5e0
[ 85.320936][ T5326] ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[ 85.320946][ T5326] ? trace_kmalloc+0x2a/0xf0
[ 85.320954][ T5326] ? __asan_memcpy+0x40/0x70
[ 85.320961][ T5326] ? ext4_read_inline_data+0x103/0x2c0
[ 85.320973][ T5326] ext4_convert_inline_data_nolock+0x208/0x990
[ 85.320982][ T5326] ? __pfx_ext4_convert_inline_data_nolock+0x10/0x10
[ 85.320990][ T5326] ? down_write+0x16d/0x200
[ 85.321082][ T5326] ext4_convert_inline_data+0x4ce/0x600
[ 85.321104][ T5326] ? __pfx_ext4_convert_inline_data+0x10/0x10
[ 85.321117][ T5326] ? down_write+0x16d/0x200
[ 85.321133][ T5326] ? vfs_fallocate+0x5f0/0x7e0
[ 85.321148][ T5326] ext4_fallocate+0x1e2/0x3d0
[ 85.321161][ T5326] vfs_fallocate+0x669/0x7e0
[ 85.321174][ T5326] ? __fget_files+0x2a/0x420
[ 85.321187][ T5326] ? __pfx_vfs_fallocate+0x10/0x10
[ 85.321200][ T5326] ? __fget_files+0x2a/0x420
[ 85.321212][ T5326] __x64_sys_fallocate+0xc0/0x110
[ 85.321226][ T5326] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 85.321234][ T5326] do_syscall_64+0x15f/0xf80
[ 85.321244][ T5326] ? trace_irq_disable+0x3b/0x140
[ 85.321254][ T5326] ? clear_bhb_loop+0x40/0x90
[ 85.321262][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 85.321269][ T5326] RIP: 0033:0x7f8410d9ce59
[ 85.321277][ T5326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 85.321284][ T5326] RSP: 002b:00007f8411c73fe8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 85.321293][ T5326] RAX: ffffffffffffffda RBX: 00007f8411015fa0 RCX: 00007f8410d9ce59
[ 85.321298][ T5326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 85.321303][ T5326] RBP: 00007f8410e32d6f R08: 0000000000000000 R09: 0000000000000000
[ 85.321308][ T5326] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000000
[ 85.321313][ T5326] R13: 00007f8411016038 R14: 00007f8411015fa0 R15: 00007fffc4621a08
[ 85.321321][ T5326]
[ 85.321324][ T5326]
[ 85.438706][ T5326] The buggy address belongs to the physical page:
[ 85.441418][ T5326] page: refcount:3 mapcount:0 mapping:ffff88801cc25940 index:0x2 pfn:0x119e4
[ 85.445166][ T5326] memcg:ffff888000f16d80
[ 85.447062][ T5326] aops:def_blk_aops ino:700000 dentry name(?):""
[ 85.449803][ T5326] flags: 0xfff18000004204(referenced|workingset|private|node=0|zone=1|lastcpupid=0x7ff)
[ 85.453977][ T5326] raw: 00fff18000004204 0000000000000000 dead000000000122 ffff88801cc25940
[ 85.457645][ T5326] raw: 0000000000000002 ffff888046f989f8 00000003ffffffff ffff888000f16d80
[ 85.461372][ T5326] page dumped because: kasan: bad access detected
[ 85.464216][ T5326] page_owner tracks the page as allocated
[ 85.466405][ T5326] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_MOVABLE|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL), pid 5326, tgid 5325 (syz.0.0), ts 85306654758, free_ts 85250104236
[ 85.474562][ T5326] post_alloc_hook+0x231/0x280
[ 85.477145][ T5326] get_page_from_freelist+0x24ba/0x2540
[ 85.479553][ T5326] __alloc_frozen_pages_noprof+0x18d/0x380
[ 85.481866][ T5326] alloc_pages_mpol+0x235/0x490
[ 85.484051][ T5326] alloc_pages_noprof+0xac/0x2a0
[ 85.486246][ T5326] folio_alloc_noprof+0x1e/0x30
[ 85.488229][ T5326] filemap_alloc_folio_noprof+0x111/0x470
[ 85.490623][ T5326] __filemap_get_folio_mpol+0x3fc/0xb00
[ 85.492930][ T5326] bdev_getblk+0x1f6/0x6e0
[ 85.494954][ T5326] __ext4_get_inode_loc+0x528/0xfa0
[ 85.497183][ T5326] ext4_get_inode_loc+0x81/0xf0
[ 85.499282][ T5326] ext4_convert_inline_data+0x26e/0x600
[ 85.501633][ T5326] ext4_fallocate+0x1e2/0x3d0
[ 85.503909][ T5326] vfs_fallocate+0x669/0x7e0
[ 85.505769][ T5326] __x64_sys_fallocate+0xc0/0x110
[ 85.507872][ T5326] do_syscall_64+0x15f/0xf80
[ 85.509892][ T5326] page last free pid 5326 tgid 5325 stack trace:
[ 85.512555][ T5326] free_unref_folios+0xcec/0x1480
[ 85.514713][ T5326] folios_put_refs+0x9ff/0xb40
[ 85.516735][ T5326] shmem_undo_range+0x52c/0x1660
[ 85.518830][ T5326] shmem_evict_inode+0x289/0xae0
[ 85.520879][ T5326] evict+0x61e/0xb10
[ 85.522591][ T5326] __dentry_kill+0x1a2/0x690
[ 85.524634][ T5326] finish_dput+0xc9/0x480
[ 85.526568][ T5326] __fput+0x691/0xa60
[ 85.528294][ T5326] fput_close_sync+0x11f/0x240
[ 85.530520][ T5326] __x64_sys_close+0x7e/0x110
[ 85.532551][ T5326] do_syscall_64+0x15f/0xf80
[ 85.534633][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 85.537147][ T5326]
[ 85.538159][ T5326] Memory state around the buggy address:
[ 85.540698][ T5326] ffff8880119e4d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 85.544194][ T5326] ffff8880119e4e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 85.547646][ T5326] >ffff8880119e4e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 85.551135][ T5326] ^
[ 85.553642][ T5326] ffff8880119e4f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 85.557146][ T5326] ffff8880119e4f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 85.560449][ T5326] ==================================================================
[ 85.567193][ T5290] Bluetooth: hci0: command tx timeout
[ 85.639731][ T5326] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 85.642867][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 85.646787][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 85.651120][ T5326] Call Trace:
[ 85.652555][ T5326]
[ 85.653897][ T5326] vpanic+0x56c/0xa60
[ 85.655827][ T5326] ? __pfx_vpanic+0x10/0x10
[ 85.657785][ T5326] ? __pfx___schedule+0x10/0x10
[ 85.659958][ T5326] panic+0xc5/0xd0
[ 85.661617][ T5326] ? __pfx_panic+0x10/0x10
[ 85.663582][ T5326] ? preempt_schedule_thunk+0x16/0x30
[ 85.666001][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.668383][ T5326] check_panic_on_warn+0x89/0xb0
[ 85.670525][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.672863][ T5326] end_report+0x73/0x170
[ 85.674791][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.677176][ T5326] kasan_report+0x128/0x150
[ 85.679251][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.681555][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.683919][ T5326] kasan_check_range+0x264/0x2c0
[ 85.686142][ T5326] ? ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.688425][ T5326] __asan_memmove+0x29/0x70
[ 85.690368][ T5326] ext4_xattr_set_entry+0x9c1/0x1e20
[ 85.692554][ T5326] ext4_xattr_ibody_set+0x254/0x6a0
[ 85.694754][ T5326] ext4_destroy_inline_data_nolock+0x23a/0x5e0
[ 85.697371][ T5326] ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[ 85.700059][ T5326] ? trace_kmalloc+0x2a/0xf0
[ 85.701939][ T5326] ? __asan_memcpy+0x40/0x70
[ 85.703825][ T5326] ? ext4_read_inline_data+0x103/0x2c0
[ 85.706209][ T5326] ext4_convert_inline_data_nolock+0x208/0x990
[ 85.708937][ T5326] ? __pfx_ext4_convert_inline_data_nolock+0x10/0x10
[ 85.711900][ T5326] ? down_write+0x16d/0x200
[ 85.713982][ T5326] ext4_convert_inline_data+0x4ce/0x600
[ 85.716416][ T5326] ? __pfx_ext4_convert_inline_data+0x10/0x10
[ 85.719359][ T5326] ? down_write+0x16d/0x200
[ 85.721319][ T5326] ? vfs_fallocate+0x5f0/0x7e0
[ 85.723295][ T5326] ext4_fallocate+0x1e2/0x3d0
[ 85.725307][ T5326] vfs_fallocate+0x669/0x7e0
[ 85.727205][ T5326] ? __fget_files+0x2a/0x420
[ 85.729225][ T5326] ? __pfx_vfs_fallocate+0x10/0x10
[ 85.731339][ T5326] ? __fget_files+0x2a/0x420
[ 85.733305][ T5326] __x64_sys_fallocate+0xc0/0x110
[ 85.735626][ T5326] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 85.738208][ T5326] do_syscall_64+0x15f/0xf80
[ 85.740221][ T5326] ? trace_irq_disable+0x3b/0x140
[ 85.742440][ T5326] ? clear_bhb_loop+0x40/0x90
[ 85.744478][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 85.747026][ T5326] RIP: 0033:0x7f8410d9ce59
[ 85.748654][ T5326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 85.756803][ T5326] RSP: 002b:00007f8411c73fe8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 85.760343][ T5326] RAX: ffffffffffffffda RBX: 00007f8411015fa0 RCX: 00007f8410d9ce59
[ 85.763726][ T5326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 85.766998][ T5326] RBP: 00007f8410e32d6f R08: 0000000000000000 R09: 0000000000000000
[ 85.770394][ T5326] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000000
[ 85.773828][ T5326] R13: 00007f8411016038 R14: 00007f8411015fa0 R15: 00007fffc4621a08
[ 85.777287][ T5326]
[ 85.779037][ T5326] Kernel Offset: disabled
[ 85.780662][ T5326] Rebooting in 86400 seconds..