program: ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000001c0)={&(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x100800, 0x0, 0xffffffffffffffff}) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000540)=""/201, 0xc9}, {&(0x7f00000002c0)=""/142, 0x8e}], 0x2) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000040)={[{@nobarrier}, {@resuid}, {@barrier_val={'barrier', 0x3d, 0x9}}]}, 0x1, 0x4b0, &(0x7f0000000b80)="$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") r1 = open(&(0x7f0000000180)='./bus\x00', 0x4a37e, 0x4) r2 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0) setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, &(0x7f0000000080)=0x1, 0x4) open(0x0, 0x14937e, 0x111) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r3, 0x0, 0x29, 0x2, @val=@tcx}, 0x40) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r4 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]}) ftruncate(r2, 0x2008002) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r1, 0x1000000) r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r6, 0xca, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x0, 0x0, r5, &(0x7f0000000000)="98", 0x3e8000072a, 0x1000000, 0x0, 0x10}]) [ 75.793820][ T4687] Bluetooth: hci0: command tx timeout [ 75.830875][ T5340] loop0: detected capacity change from 0 to 512 [ 75.921581][ T5340] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.928021][ T5340] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.984537][ T5340] loop0: detected capacity change from 512 to 64 [ 75.999578][ T5340] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Out of memory [ 76.027348][ T5340] EXT4-fs error (device loop0): ext4_setattr:5984: inode #18: comm syz.0.0: mark_inode_dirty error [ 76.041647][ T5340] EXT4-fs error (device loop0) in ext4_setattr:6035: Out of memory [ 76.094866][ T5339] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Out of memory [ 76.099677][ T5339] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #18: comm syz.0.0: mark_inode_dirty error [ 76.112375][ T5340] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Out of memory [ 76.118373][ T5340] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #18: comm syz.0.0: mark_inode_dirty error [ 76.124382][ T5340] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.0: bg 0: block 8184: padding at end of block bitmap is not set [ 76.131193][ T5340] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Out of memory [ 76.139133][ T5340] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #18: comm syz.0.0: mark_inode_dirty error [ 76.154307][ T1822] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 96 with error 28 [ 76.160940][ T1822] EXT4-fs (loop0): This should not happen!! Data will be lost [ 76.160940][ T1822] [ 76.165061][ T1822] EXT4-fs (loop0): Total free blocks count 0 [ 76.168485][ T1822] EXT4-fs (loop0): Free/Dirty block details [ 76.171418][ T1822] EXT4-fs (loop0): free_blocks=0 [ 76.177444][ T1822] EXT4-fs (loop0): dirty_blocks=96 [ 76.179626][ T1822] EXT4-fs (loop0): Block reservation details [ 76.182267][ T1822] EXT4-fs (loop0): i_reserved_data_blocks=96 [ 76.188026][ T5340] ------------[ cut here ]------------ [ 76.190573][ T5340] WARNING: fs/ext4/inode.c:3965 at ext4_dirty_folio+0x167/0x1b0, CPU#0: syz.0.0/5340 [ 76.194629][ T5340] Modules linked in: [ 76.196340][ T5340] CPU: 0 UID: 0 PID: 5340 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 76.200363][ T5340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.207734][ T5340] RIP: 0010:ext4_dirty_folio+0x167/0x1b0 [ 76.210268][ T5340] Code: af ba ab ff 49 83 3f 00 74 1a e8 04 10 44 ff 4c 89 e7 48 89 de 5b 41 5c 41 5d 41 5e 41 5f 5d e9 1f ef cf ff e8 ea 0f 44 ff 90 <0f> 0b 90 eb e0 e8 df 0f 44 ff 90 0f 0b 90 eb a7 e8 d4 0f 44 ff 48 [ 76.218716][ T5340] RSP: 0018:ffffc9000a577538 EFLAGS: 00010287 [ 76.221647][ T5340] RAX: ffffffff827cf776 RBX: ffffea000036f8c0 RCX: 0000000000100000 [ 76.225506][ T5340] RDX: ffffc900210a2000 RSI: 000000000000a7fe RDI: 000000000000a7ff [ 76.229162][ T5340] RBP: 1ffffd400006df18 R08: ffffea000036f8c7 R09: 1ffffd400006df18 [ 76.232807][ T5340] R10: dffffc0000000000 R11: fffff9400006df19 R12: ffff8880121ba198 [ 76.236483][ T5340] R13: 1ffffd400006df19 R14: 0000000000000001 R15: ffffea000036f8e8 [ 76.240017][ T5340] FS: 00007f95903596c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000 [ 76.243968][ T5340] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.246738][ T5340] CR2: 000056062993d168 CR3: 00000000410ef000 CR4: 0000000000352ef0 [ 76.250286][ T5340] Call Trace: [ 76.251848][ T5340] [ 76.253256][ T5340] bio_set_pages_dirty+0xf3/0x170 [ 76.255479][ T5340] __blkdev_direct_IO+0x846/0xf80 [ 76.257553][ T5340] ? __pfx_aio_complete_rw+0x10/0x10 [ 76.259726][ T5340] ? __pfx___blkdev_direct_IO+0x10/0x10 [ 76.262150][ T5340] ? __lock_acquire+0x6b6/0x2cf0 [ 76.264529][ T5340] blkdev_direct_IO+0x127e/0x1800 [ 76.266558][ T5340] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 76.269139][ T5340] ? reacquire_held_locks+0x104/0x190 [ 76.271536][ T5340] ? __mark_inode_dirty+0x6a8/0x1330 [ 76.274235][ T5340] ? blkdev_read_iter+0x210/0x440 [ 76.276486][ T5340] ? touch_atime+0x384/0x6d0 [ 76.278495][ T5340] ? blkdev_read_iter+0x210/0x440 [ 76.280874][ T5340] blkdev_read_iter+0x23d/0x440 [ 76.283132][ T5340] aio_read+0x311/0x470 [ 76.285211][ T5340] ? __pfx_aio_read+0x10/0x10 [ 76.287367][ T5340] ? __might_fault+0xb0/0x130 [ 76.289499][ T5340] io_submit_one+0x755/0x1430 [ 76.291687][ T5340] ? irqentry_exit+0x5e8/0x670 [ 76.294138][ T5340] ? __pfx_io_submit_one+0x10/0x10 [ 76.296611][ T5340] ? __might_fault+0xb0/0x130 [ 76.298789][ T5340] ? __might_fault+0xb0/0x130 [ 76.301038][ T5340] __se_sys_io_submit+0x185/0x320 [ 76.303333][ T5340] ? __pfx___se_sys_io_submit+0x10/0x10 [ 76.306002][ T5340] do_syscall_64+0xec/0xf80 [ 76.308166][ T5340] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.311071][ T5340] ? trace_irq_disable+0x37/0x100 [ 76.313373][ T5340] ? clear_bhb_loop+0x60/0xb0 [ 76.315475][ T5340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.317889][ T5340] RIP: 0033:0x7f958f58f7c9 [ 76.319873][ T5340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.328428][ T5340] RSP: 002b:00007f9590359038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 76.332094][ T5340] RAX: ffffffffffffffda RBX: 00007f958f7e5fa0 RCX: 00007f958f58f7c9 [ 76.335578][ T5340] RDX: 00002000000000c0 RSI: 00000000000000ca RDI: 00007f9590338000 [ 76.339300][ T5340] RBP: 00007f958f613f91 R08: 0000000000000000 R09: 0000000000000000 [ 76.342873][ T5340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.346478][ T5340] R13: 00007f958f7e6038 R14: 00007f958f7e5fa0 R15: 00007ffdc84d9698 [ 76.350042][ T5340] [ 76.351394][ T5340] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 76.354410][ T5340] CPU: 0 UID: 0 PID: 5340 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 76.357895][ T5340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.362516][ T5340] Call Trace: [ 76.364032][ T5340] [ 76.365313][ T5340] vpanic+0x1e0/0x670 [ 76.367106][ T5340] panic+0xb9/0xc0 [ 76.368780][ T5340] ? __pfx_panic+0x10/0x10 [ 76.370643][ T5340] __warn+0x317/0x4b0 [ 76.372390][ T5340] ? ext4_dirty_folio+0x167/0x1b0 [ 76.374380][ T5340] ? ext4_dirty_folio+0x167/0x1b0 [ 76.376547][ T5340] __report_bug+0x288/0x500 [ 76.378469][ T5340] ? ext4_dirty_folio+0x167/0x1b0 [ 76.380766][ T5340] ? __pfx___report_bug+0x10/0x10 [ 76.382955][ T5340] ? pin_user_pages_fast+0x4d/0xb0 [ 76.385162][ T5340] ? iov_iter_extract_pages+0x43b/0x5e0 [ 76.387529][ T5340] ? ext4_dirty_folio+0x167/0x1b0 [ 76.389749][ T5340] report_bug+0x16a/0x220 [ 76.391565][ T5340] ? ext4_dirty_folio+0x167/0x1b0 [ 76.393517][ T5340] ? ext4_dirty_folio+0x169/0x1b0 [ 76.395594][ T5340] handle_bug+0x98/0x200 [ 76.397697][ T5340] exc_invalid_op+0x1a/0x50 [ 76.399778][ T5340] asm_exc_invalid_op+0x1a/0x20 [ 76.401844][ T5340] RIP: 0010:ext4_dirty_folio+0x167/0x1b0 [ 76.404189][ T5340] Code: af ba ab ff 49 83 3f 00 74 1a e8 04 10 44 ff 4c 89 e7 48 89 de 5b 41 5c 41 5d 41 5e 41 5f 5d e9 1f ef cf ff e8 ea 0f 44 ff 90 <0f> 0b 90 eb e0 e8 df 0f 44 ff 90 0f 0b 90 eb a7 e8 d4 0f 44 ff 48 [ 76.412333][ T5340] RSP: 0018:ffffc9000a577538 EFLAGS: 00010287 [ 76.415044][ T5340] RAX: ffffffff827cf776 RBX: ffffea000036f8c0 RCX: 0000000000100000 [ 76.418461][ T5340] RDX: ffffc900210a2000 RSI: 000000000000a7fe RDI: 000000000000a7ff [ 76.421901][ T5340] RBP: 1ffffd400006df18 R08: ffffea000036f8c7 R09: 1ffffd400006df18 [ 76.425293][ T5340] R10: dffffc0000000000 R11: fffff9400006df19 R12: ffff8880121ba198 [ 76.428774][ T5340] R13: 1ffffd400006df19 R14: 0000000000000001 R15: ffffea000036f8e8 [ 76.432263][ T5340] ? ext4_dirty_folio+0x166/0x1b0 [ 76.434505][ T5340] ? ext4_dirty_folio+0x166/0x1b0 [ 76.436753][ T5340] bio_set_pages_dirty+0xf3/0x170 [ 76.438856][ T5340] __blkdev_direct_IO+0x846/0xf80 [ 76.441089][ T5340] ? __pfx_aio_complete_rw+0x10/0x10 [ 76.443482][ T5340] ? __pfx___blkdev_direct_IO+0x10/0x10 [ 76.445894][ T5340] ? __lock_acquire+0x6b6/0x2cf0 [ 76.448094][ T5340] blkdev_direct_IO+0x127e/0x1800 [ 76.450309][ T5340] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 76.452513][ T5340] ? reacquire_held_locks+0x104/0x190 [ 76.454870][ T5340] ? __mark_inode_dirty+0x6a8/0x1330 [ 76.457183][ T5340] ? blkdev_read_iter+0x210/0x440 [ 76.459328][ T5340] ? touch_atime+0x384/0x6d0 [ 76.461346][ T5340] ? blkdev_read_iter+0x210/0x440 [ 76.463716][ T5340] blkdev_read_iter+0x23d/0x440 [ 76.466030][ T5340] aio_read+0x311/0x470 [ 76.467881][ T5340] ? __pfx_aio_read+0x10/0x10 [ 76.470087][ T5340] ? __might_fault+0xb0/0x130 [ 76.472337][ T5340] io_submit_one+0x755/0x1430 [ 76.474348][ T5340] ? irqentry_exit+0x5e8/0x670 [ 76.476588][ T5340] ? __pfx_io_submit_one+0x10/0x10 [ 76.478806][ T5340] ? __might_fault+0xb0/0x130 [ 76.480794][ T5340] ? __might_fault+0xb0/0x130 [ 76.482700][ T5340] __se_sys_io_submit+0x185/0x320 [ 76.485211][ T5340] ? __pfx___se_sys_io_submit+0x10/0x10 [ 76.487603][ T5340] do_syscall_64+0xec/0xf80 [ 76.489488][ T5340] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.491965][ T5340] ? trace_irq_disable+0x37/0x100 [ 76.494102][ T5340] ? clear_bhb_loop+0x60/0xb0 [ 76.496164][ T5340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.498748][ T5340] RIP: 0033:0x7f958f58f7c9 [ 76.500710][ T5340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.509974][ T5340] RSP: 002b:00007f9590359038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 76.514064][ T5340] RAX: ffffffffffffffda RBX: 00007f958f7e5fa0 RCX: 00007f958f58f7c9 [ 76.517257][ T5340] RDX: 00002000000000c0 RSI: 00000000000000ca RDI: 00007f9590338000 [ 76.520468][ T5340] RBP: 00007f958f613f91 R08: 0000000000000000 R09: 0000000000000000 [ 76.523738][ T5340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.527357][ T5340] R13: 00007f958f7e6038 R14: 00007f958f7e5fa0 R15: 00007ffdc84d9698 [ 76.530828][ T5340] [ 76.532720][ T5340] Kernel Offset: disabled [ 76.534695][ T5340] Rebooting in 86400 seconds..