Extracting prog: 1m18.779169664s
Minimizing prog: 12m37.640412164s
Simplifying prog options: 0s
Extracting C: 27.732730309s
Simplifying C: 3m58.614978313s


extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
single: successfully extracted reproducer
found reproducer with 8 syscalls
minimizing guilty program
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$eJzs289vFFUcAPDvTH+g/GpF/AGiVomx8UdLCyoHLxpNPGA00QPerNtCCAs1tCZCiFRj8GJiSPRsPJr4F3jzYtSTiVe9GxKiXEBPNTM7Q7fLbmlhu1u7n08y8N7O27733Tdv58282QB61kj2TxKxPSJ+j4ihWnZ5gZHaf9evnq/8c/V8JYnFxbf+SvJy166er5RFy/dtKzKjaUT6aVJUstzc2XMnp6rVmTNFfnz+1Pvjc2fPPXvi1NTxmeMzpycPHz50cOKF5yefa0ucWVzX9n40u2/Pa+9cer1y9NJ7P3+XtXd7sb8+jnYZyQL/ezHXuO+JdlfWZTvq0kl/FxvCmvRFRNZdA/n4H4q+WOq8oXj1k642DlhX2blpS+vdC4vAJpZEt1sAdEd5os+uf8utQ1OPDeHKS7ULoCzu68VW29MfaVFmoOH6tp1GIuLowr9fZ1us030IAIB6n1e+OhLPNJv/pXF/XbmdxRrKcETcExG7IuLeiNgdEfdF5GUfiIgH11h/49LQzfOf9PJtBbZK2fzvxWJta/n8r5z9xXBfkduRxz+QHDtRnTlQfCajMbAly0+sUMcPr/z2Rat99fO/bMvqL+eCRTsu9zfcoJuemp/KJ6VtcOXjiL39zeJPbqwEJBGxJyL2rq3SnWXixFPf7mtV6Nbxr6AN60yL30Q8Wev/hWiIv5SsvD45fldUZw6Ml0fFzX759eKbreq/o/jbIOv/rcuP/8Yiw0n9eu3c2uu4+MdnLa9pbvf4H0zezvtlsHjtw6n5+TMTEYPJkTy/7PXJpfeW+bJ8Fv/o/ubjf1fxnuTdiIciIjuIH46IRyLi0aLtj0XE4xGxf4X4f3q59b6N0P/TTb//bhz/Df2/9kTfyR+/b1X/6vr/UJ4aLV7Jv/9uYbUNvJPPDgAAAP4v0vwZ+CQdu5FO07Gx2jP8u2NrWp2dm3/62OwHp6drz8oPx0Ba3ukaqrsfOpEsFH+xlp8s7hWX+w8W942/7Ls7z49VZqvTXY4det22FuM/82dft1sHrLtm62iTg11oCNBxjeM/f/Rhaa3/whudbhDQMX6vDb3rFuM/7VQ7gM5z/ofe1Wz8X2jIWwuAzcn5H3qX8Q+9y/iH3mX8Q0+6k9/1S2zSxMBqCke6EZq6aRLbNkYzlhLd/mYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABoj/8CAAD//2wj7mI=")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$eJzs289vFFUcAPDvTH+g/GpF/AGiVomx8UdLCyoHLxpNPGA00QPerNtCCAs1tCZCiFRj8GJiSPRsPJr4F3jzYtSTiVe9GxKiXEBPNTM7Q7fLbmlhu1u7n08y8N7O27733Tdv58282QB61kj2TxKxPSJ+j4ihWnZ5gZHaf9evnq/8c/V8JYnFxbf+SvJy166er5RFy/dtKzKjaUT6aVJUstzc2XMnp6rVmTNFfnz+1Pvjc2fPPXvi1NTxmeMzpycPHz50cOKF5yefa0ucWVzX9n40u2/Pa+9cer1y9NJ7P3+XtXd7sb8+jnYZyQL/ezHXuO+JdlfWZTvq0kl/FxvCmvRFRNZdA/n4H4q+WOq8oXj1k642DlhX2blpS+vdC4vAJpZEt1sAdEd5os+uf8utQ1OPDeHKS7ULoCzu68VW29MfaVFmoOH6tp1GIuLowr9fZ1us030IAIB6n1e+OhLPNJv/pXF/XbmdxRrKcETcExG7IuLeiNgdEfdF5GUfiIgH11h/49LQzfOf9PJtBbZK2fzvxWJta/n8r5z9xXBfkduRxz+QHDtRnTlQfCajMbAly0+sUMcPr/z2Rat99fO/bMvqL+eCRTsu9zfcoJuemp/KJ6VtcOXjiL39zeJPbqwEJBGxJyL2rq3SnWXixFPf7mtV6Nbxr6AN60yL30Q8Wev/hWiIv5SsvD45fldUZw6Ml0fFzX759eKbreq/o/jbIOv/rcuP/8Yiw0n9eu3c2uu4+MdnLa9pbvf4H0zezvtlsHjtw6n5+TMTEYPJkTy/7PXJpfeW+bJ8Fv/o/ubjf1fxnuTdiIciIjuIH46IRyLi0aLtj0XE4xGxf4X4f3q59b6N0P/TTb//bhz/Df2/9kTfyR+/b1X/6vr/UJ4aLV7Jv/9uYbUNvJPPDgAAAP4v0vwZ+CQdu5FO07Gx2jP8u2NrWp2dm3/62OwHp6drz8oPx0Ba3ukaqrsfOpEsFH+xlp8s7hWX+w8W942/7Ls7z49VZqvTXY4det22FuM/82dft1sHrLtm62iTg11oCNBxjeM/f/Rhaa3/whudbhDQMX6vDb3rFuM/7VQ7gM5z/ofe1Wz8X2jIWwuAzcn5H3qX8Q+9y/iH3mX8Q0+6k9/1S2zSxMBqCke6EZq6aRLbNkYzlhLd/mYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABoj/8CAAD//2wj7mI=")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$eJzs289vFFUcAPDvTH+g/GpF/AGiVomx8UdLCyoHLxpNPGA00QPerNtCCAs1tCZCiFRj8GJiSPRsPJr4F3jzYtSTiVe9GxKiXEBPNTM7Q7fLbmlhu1u7n08y8N7O27733Tdv58282QB61kj2TxKxPSJ+j4ihWnZ5gZHaf9evnq/8c/V8JYnFxbf+SvJy166er5RFy/dtKzKjaUT6aVJUstzc2XMnp6rVmTNFfnz+1Pvjc2fPPXvi1NTxmeMzpycPHz50cOKF5yefa0ucWVzX9n40u2/Pa+9cer1y9NJ7P3+XtXd7sb8+jnYZyQL/ezHXuO+JdlfWZTvq0kl/FxvCmvRFRNZdA/n4H4q+WOq8oXj1k642DlhX2blpS+vdC4vAJpZEt1sAdEd5os+uf8utQ1OPDeHKS7ULoCzu68VW29MfaVFmoOH6tp1GIuLowr9fZ1us030IAIB6n1e+OhLPNJv/pXF/XbmdxRrKcETcExG7IuLeiNgdEfdF5GUfiIgH11h/49LQzfOf9PJtBbZK2fzvxWJta/n8r5z9xXBfkduRxz+QHDtRnTlQfCajMbAly0+sUMcPr/z2Rat99fO/bMvqL+eCRTsu9zfcoJuemp/KJ6VtcOXjiL39zeJPbqwEJBGxJyL2rq3SnWXixFPf7mtV6Nbxr6AN60yL30Q8Wev/hWiIv5SsvD45fldUZw6Ml0fFzX759eKbreq/o/jbIOv/rcuP/8Yiw0n9eu3c2uu4+MdnLa9pbvf4H0zezvtlsHjtw6n5+TMTEYPJkTy/7PXJpfeW+bJ8Fv/o/ubjf1fxnuTdiIciIjuIH46IRyLi0aLtj0XE4xGxf4X4f3q59b6N0P/TTb//bhz/Df2/9kTfyR+/b1X/6vr/UJ4aLV7Jv/9uYbUNvJPPDgAAAP4v0vwZ+CQdu5FO07Gx2jP8u2NrWp2dm3/62OwHp6drz8oPx0Ba3ukaqrsfOpEsFH+xlp8s7hWX+w8W942/7Ls7z49VZqvTXY4det22FuM/82dft1sHrLtm62iTg11oCNBxjeM/f/Rhaa3/whudbhDQMX6vDb3rFuM/7VQ7gM5z/ofe1Wz8X2jIWwuAzcn5H3qX8Q+9y/iH3mX8Q0+6k9/1S2zSxMBqCke6EZq6aRLbNkYzlhLd/mYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABoj/8CAAD//2wj7mI=")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(0x0, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$eJzs289vFFUcAPDvTH+g/GpF/AGiVomx8UdLCyoHLxpNPGA00QPerNtCCAs1tCZCiFRj8GJiSPRsPJr4F3jzYtSTiVe9GxKiXEBPNTM7Q7fLbmlhu1u7n08y8N7O27733Tdv58282QB61kj2TxKxPSJ+j4ihWnZ5gZHaf9evnq/8c/V8JYnFxbf+SvJy166er5RFy/dtKzKjaUT6aVJUstzc2XMnp6rVmTNFfnz+1Pvjc2fPPXvi1NTxmeMzpycPHz50cOKF5yefa0ucWVzX9n40u2/Pa+9cer1y9NJ7P3+XtXd7sb8+jnYZyQL/ezHXuO+JdlfWZTvq0kl/FxvCmvRFRNZdA/n4H4q+WOq8oXj1k642DlhX2blpS+vdC4vAJpZEt1sAdEd5os+uf8utQ1OPDeHKS7ULoCzu68VW29MfaVFmoOH6tp1GIuLowr9fZ1us030IAIB6n1e+OhLPNJv/pXF/XbmdxRrKcETcExG7IuLeiNgdEfdF5GUfiIgH11h/49LQzfOf9PJtBbZK2fzvxWJta/n8r5z9xXBfkduRxz+QHDtRnTlQfCajMbAly0+sUMcPr/z2Rat99fO/bMvqL+eCRTsu9zfcoJuemp/KJ6VtcOXjiL39zeJPbqwEJBGxJyL2rq3SnWXixFPf7mtV6Nbxr6AN60yL30Q8Wev/hWiIv5SsvD45fldUZw6Ml0fFzX759eKbreq/o/jbIOv/rcuP/8Yiw0n9eu3c2uu4+MdnLa9pbvf4H0zezvtlsHjtw6n5+TMTEYPJkTy/7PXJpfeW+bJ8Fv/o/ubjf1fxnuTdiIciIjuIH46IRyLi0aLtj0XE4xGxf4X4f3q59b6N0P/TTb//bhz/Df2/9kTfyR+/b1X/6vr/UJ4aLV7Jv/9uYbUNvJPPDgAAAP4v0vwZ+CQdu5FO07Gx2jP8u2NrWp2dm3/62OwHp6drz8oPx0Ba3ukaqrsfOpEsFH+xlp8s7hWX+w8W942/7Ls7z49VZqvTXY4det22FuM/82dft1sHrLtm62iTg11oCNBxjeM/f/Rhaa3/whudbhDQMX6vDb3rFuM/7VQ7gM5z/ofe1Wz8X2jIWwuAzcn5H3qX8Q+9y/iH3mX8Q0+6k9/1S2zSxMBqCke6EZq6aRLbNkYzlhLd/mYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABoj/8CAAD//2wj7mI=")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$eJzs289vFFUcAPDvTH+g/GpF/AGiVomx8UdLCyoHLxpNPGA00QPerNtCCAs1tCZCiFRj8GJiSPRsPJr4F3jzYtSTiVe9GxKiXEBPNTM7Q7fLbmlhu1u7n08y8N7O27733Tdv58282QB61kj2TxKxPSJ+j4ihWnZ5gZHaf9evnq/8c/V8JYnFxbf+SvJy166er5RFy/dtKzKjaUT6aVJUstzc2XMnp6rVmTNFfnz+1Pvjc2fPPXvi1NTxmeMzpycPHz50cOKF5yefa0ucWVzX9n40u2/Pa+9cer1y9NJ7P3+XtXd7sb8+jnYZyQL/ezHXuO+JdlfWZTvq0kl/FxvCmvRFRNZdA/n4H4q+WOq8oXj1k642DlhX2blpS+vdC4vAJpZEt1sAdEd5os+uf8utQ1OPDeHKS7ULoCzu68VW29MfaVFmoOH6tp1GIuLowr9fZ1us030IAIB6n1e+OhLPNJv/pXF/XbmdxRrKcETcExG7IuLeiNgdEfdF5GUfiIgH11h/49LQzfOf9PJtBbZK2fzvxWJta/n8r5z9xXBfkduRxz+QHDtRnTlQfCajMbAly0+sUMcPr/z2Rat99fO/bMvqL+eCRTsu9zfcoJuemp/KJ6VtcOXjiL39zeJPbqwEJBGxJyL2rq3SnWXixFPf7mtV6Nbxr6AN60yL30Q8Wev/hWiIv5SsvD45fldUZw6Ml0fFzX759eKbreq/o/jbIOv/rcuP/8Yiw0n9eu3c2uu4+MdnLa9pbvf4H0zezvtlsHjtw6n5+TMTEYPJkTy/7PXJpfeW+bJ8Fv/o/ubjf1fxnuTdiIciIjuIH46IRyLi0aLtj0XE4xGxf4X4f3q59b6N0P/TTb//bhz/Df2/9kTfyR+/b1X/6vr/UJ4aLV7Jv/9uYbUNvJPPDgAAAP4v0vwZ+CQdu5FO07Gx2jP8u2NrWp2dm3/62OwHp6drz8oPx0Ba3ukaqrsfOpEsFH+xlp8s7hWX+w8W942/7Ls7z49VZqvTXY4det22FuM/82dft1sHrLtm62iTg11oCNBxjeM/f/Rhaa3/whudbhDQMX6vDb3rFuM/7VQ7gM5z/ofe1Wz8X2jIWwuAzcn5H3qX8Q+9y/iH3mX8Q0+6k9/1S2zSxMBqCke6EZq6aRLbNkYzlhLd/mYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABoj/8CAAD//2wj7mI=")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$eJzs289vFFUcAPDvTH+g/GpF/AGiVomx8UdLCyoHLxpNPGA00QPerNtCCAs1tCZCiFRj8GJiSPRsPJr4F3jzYtSTiVe9GxKiXEBPNTM7Q7fLbmlhu1u7n08y8N7O27733Tdv58282QB61kj2TxKxPSJ+j4ihWnZ5gZHaf9evnq/8c/V8JYnFxbf+SvJy166er5RFy/dtKzKjaUT6aVJUstzc2XMnp6rVmTNFfnz+1Pvjc2fPPXvi1NTxmeMzpycPHz50cOKF5yefa0ucWVzX9n40u2/Pa+9cer1y9NJ7P3+XtXd7sb8+jnYZyQL/ezHXuO+JdlfWZTvq0kl/FxvCmvRFRNZdA/n4H4q+WOq8oXj1k642DlhX2blpS+vdC4vAJpZEt1sAdEd5os+uf8utQ1OPDeHKS7ULoCzu68VW29MfaVFmoOH6tp1GIuLowr9fZ1us030IAIB6n1e+OhLPNJv/pXF/XbmdxRrKcETcExG7IuLeiNgdEfdF5GUfiIgH11h/49LQzfOf9PJtBbZK2fzvxWJta/n8r5z9xXBfkduRxz+QHDtRnTlQfCajMbAly0+sUMcPr/z2Rat99fO/bMvqL+eCRTsu9zfcoJuemp/KJ6VtcOXjiL39zeJPbqwEJBGxJyL2rq3SnWXixFPf7mtV6Nbxr6AN60yL30Q8Wev/hWiIv5SsvD45fldUZw6Ml0fFzX759eKbreq/o/jbIOv/rcuP/8Yiw0n9eu3c2uu4+MdnLa9pbvf4H0zezvtlsHjtw6n5+TMTEYPJkTy/7PXJpfeW+bJ8Fv/o/ubjf1fxnuTdiIciIjuIH46IRyLi0aLtj0XE4xGxf4X4f3q59b6N0P/TTb//bhz/Df2/9kTfyR+/b1X/6vr/UJ4aLV7Jv/9uYbUNvJPPDgAAAP4v0vwZ+CQdu5FO07Gx2jP8u2NrWp2dm3/62OwHp6drz8oPx0Ba3ukaqrsfOpEsFH+xlp8s7hWX+w8W942/7Ls7z49VZqvTXY4det22FuM/82dft1sHrLtm62iTg11oCNBxjeM/f/Rhaa3/whudbhDQMX6vDb3rFuM/7VQ7gM5z/ofe1Wz8X2jIWwuAzcn5H3qX8Q+9y/iH3mX8Q0+6k9/1S2zSxMBqCke6EZq6aRLbNkYzlhLd/mYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABoj/8CAAD//2wj7mI=")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(0x0, 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)

program did not crash
testing program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@stripe}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x455, &(0x7f0000000880)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
request_key(0x0, 0x0, &(0x7f0000001fee)='y\xa9n::e\x00\x00\x00\x00\x00\x00\x00\x00H\x00\x00\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=38.147532216s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
simplifying C reproducer
testing compiled C program (duration=38.147532216s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
testing compiled C program (duration=38.147532216s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
testing compiled C program (duration=38.147532216s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
testing compiled C program (duration=38.147532216s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
testing compiled C program (duration=38.147532216s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
testing compiled C program (duration=38.147532216s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-chdir-creat-mount-open-mmap-request_key-openat$cgroup_ro
program crashed: KASAN: out-of-bounds Read in ext4_xattr_set_entry
reproducing took 18m22.76732024s
repro crashed as (corrupted=false):
==================================================================
BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0xaf2/0x21d0 fs/ext4/xattr.c:1719
Read of size 18446744073709551600 at addr ffff88811f22f008 by task syz-executor172/283

CPU: 0 PID: 283 Comm: syz-executor172 Not tainted 6.1.141-syzkaller-00025-g45271a2c461a #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
Call Trace:
 <TASK>
 __dump_stack+0x21/0x24 lib/dump_stack.c:88
 dump_stack_lvl+0xee/0x150 lib/dump_stack.c:106
 print_address_description+0x71/0x210 mm/kasan/report.c:316
 print_report+0x4a/0x60 mm/kasan/report.c:427
 kasan_report+0x122/0x150 mm/kasan/report.c:531
 check_region_inline mm/kasan/generic.c:-1 [inline]
 kasan_check_range+0x280/0x290 mm/kasan/generic.c:189
 memmove+0x2d/0x70 mm/kasan/shadow.c:54
 ext4_xattr_set_entry+0xaf2/0x21d0 fs/ext4/xattr.c:1719
 ext4_xattr_ibody_set+0x24e/0x6c0 fs/ext4/xattr.c:2229
 ext4_destroy_inline_data_nolock+0x211/0x5b0 fs/ext4/inline.c:451
 ext4_convert_inline_data_nolock+0x3c9/0x9e0 fs/ext4/inline.c:1232
 ext4_try_add_inline_entry+0x784/0xad0 fs/ext4/inline.c:1342
 ext4_add_entry+0x4eb/0xd70 fs/ext4/namei.c:2458
 ext4_add_nondir+0x97/0x270 fs/ext4/namei.c:2845
 ext4_create+0x2e0/0x460 fs/ext4/namei.c:2891
 lookup_open fs/namei.c:3481 [inline]
 open_last_lookups fs/namei.c:3549 [inline]
 path_openat+0x11e3/0x2f50 fs/namei.c:3779
 do_filp_open+0x1c1/0x3c0 fs/namei.c:3809
 do_sys_openat2+0x185/0x7e0 fs/open.c:1341
 do_sys_open fs/open.c:1357 [inline]
 __do_sys_openat fs/open.c:1373 [inline]
 __se_sys_openat fs/open.c:1368 [inline]
 __x64_sys_openat+0x136/0x160 fs/open.c:1368
 x64_sys_call+0x783/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:258
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f83c2445bf9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffeca9f06e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000073 RCX: 00007f83c2445bf9
RDX: 000000000000275a RSI: 00002000000000c0 RDI: 00000000ffffff9c
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f83c24aa604
R13: 00007ffeca9f08c8 R14: 0000000000000001 R15: 0000000000000001
 </TASK>

The buggy address belongs to the physical page:
page:ffffea00047c8bc0 refcount:3 mapcount:1 mapping:ffff88811382f650 index:0x3 pfn:0x11f22f
memcg:ffff88810033d7c0
aops:def_blk_aops ino:700000
flags: 0x5600000000022056(referenced|uptodate|lru|workingset|private|mappedtodisk|zone=1)
raw: 5600000000022056 ffffea000488cd48 ffffea00047c8b88 ffff88811382f650
raw: 0000000000000003 ffff88812257ca80 0000000300000000 ffff88810033d7c0
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 284, tgid 284 (udevd), ts 24500376880, free_ts 21264371665
 set_page_owner include/linux/page_owner.h:33 [inline]
 post_alloc_hook+0x1f5/0x210 mm/page_alloc.c:2637
 prep_new_page+0x1c/0x110 mm/page_alloc.c:2644
 get_page_from_freelist+0x2c7b/0x2cf0 mm/page_alloc.c:4539
 __alloc_pages+0x19e/0x3a0 mm/page_alloc.c:5850
 __folio_alloc+0x12/0x40 mm/page_alloc.c:5882
 __folio_alloc_node include/linux/gfp.h:245 [inline]
 folio_alloc include/linux/gfp.h:274 [inline]
 filemap_alloc_folio include/linux/pagemap.h:513 [inline]
 page_cache_ra_unbounded+0x234/0x720 mm/readahead.c:260
 do_page_cache_ra mm/readahead.c:312 [inline]
 force_page_cache_ra mm/readahead.c:343 [inline]
 page_cache_sync_ra+0x3e3/0x490 mm/readahead.c:727
 page_cache_sync_readahead include/linux/pagemap.h:1257 [inline]
 filemap_get_pages mm/filemap.c:2690 [inline]
 filemap_read+0x62d/0x22c0 mm/filemap.c:2785
 blkdev_read_iter+0x41e/0x560 block/fops.c:614
 call_read_iter include/linux/fs.h:2276 [inline]
 new_sync_read fs/read_write.c:389 [inline]
 vfs_read+0x41e/0x8c0 fs/read_write.c:470
 ksys_read+0x140/0x240 fs/read_write.c:613
 __do_sys_read fs/read_write.c:623 [inline]
 __se_sys_read fs/read_write.c:621 [inline]
 __x64_sys_read+0x7b/0x90 fs/read_write.c:621
 x64_sys_call+0x2f/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:1
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
page last free stack trace:
 reset_page_owner include/linux/page_owner.h:26 [inline]
 free_pages_prepare mm/page_alloc.c:1545 [inline]
 free_pcp_prepare mm/page_alloc.c:1619 [inline]
 free_unref_page_prepare+0x742/0x750 mm/page_alloc.c:3581
 free_unref_page+0x8f/0x530 mm/page_alloc.c:3677
 free_the_page mm/page_alloc.c:830 [inline]
 __free_pages+0x67/0x100 mm/page_alloc.c:5939
 __vunmap+0x9af/0xb70 mm/vmalloc.c:2729
 free_work+0x5a/0x80 mm/vmalloc.c:98
 process_one_work+0x71f/0xc40 kernel/workqueue.c:2299
 worker_thread+0xa29/0x11f0 kernel/workqueue.c:2446
 kthread+0x281/0x320 kernel/kthread.c:386
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295

Memory state around the buggy address:
 ffff88811f22ef00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 ffff88811f22ef80: 00 00 00 00 00 0

final repro crashed as (corrupted=false):
==================================================================
BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0xaf2/0x21d0 fs/ext4/xattr.c:1719
Read of size 18446744073709551600 at addr ffff88811f22f008 by task syz-executor172/283

CPU: 0 PID: 283 Comm: syz-executor172 Not tainted 6.1.141-syzkaller-00025-g45271a2c461a #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
Call Trace:
 <TASK>
 __dump_stack+0x21/0x24 lib/dump_stack.c:88
 dump_stack_lvl+0xee/0x150 lib/dump_stack.c:106
 print_address_description+0x71/0x210 mm/kasan/report.c:316
 print_report+0x4a/0x60 mm/kasan/report.c:427
 kasan_report+0x122/0x150 mm/kasan/report.c:531
 check_region_inline mm/kasan/generic.c:-1 [inline]
 kasan_check_range+0x280/0x290 mm/kasan/generic.c:189
 memmove+0x2d/0x70 mm/kasan/shadow.c:54
 ext4_xattr_set_entry+0xaf2/0x21d0 fs/ext4/xattr.c:1719
 ext4_xattr_ibody_set+0x24e/0x6c0 fs/ext4/xattr.c:2229
 ext4_destroy_inline_data_nolock+0x211/0x5b0 fs/ext4/inline.c:451
 ext4_convert_inline_data_nolock+0x3c9/0x9e0 fs/ext4/inline.c:1232
 ext4_try_add_inline_entry+0x784/0xad0 fs/ext4/inline.c:1342
 ext4_add_entry+0x4eb/0xd70 fs/ext4/namei.c:2458
 ext4_add_nondir+0x97/0x270 fs/ext4/namei.c:2845
 ext4_create+0x2e0/0x460 fs/ext4/namei.c:2891
 lookup_open fs/namei.c:3481 [inline]
 open_last_lookups fs/namei.c:3549 [inline]
 path_openat+0x11e3/0x2f50 fs/namei.c:3779
 do_filp_open+0x1c1/0x3c0 fs/namei.c:3809
 do_sys_openat2+0x185/0x7e0 fs/open.c:1341
 do_sys_open fs/open.c:1357 [inline]
 __do_sys_openat fs/open.c:1373 [inline]
 __se_sys_openat fs/open.c:1368 [inline]
 __x64_sys_openat+0x136/0x160 fs/open.c:1368
 x64_sys_call+0x783/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:258
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f83c2445bf9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffeca9f06e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000073 RCX: 00007f83c2445bf9
RDX: 000000000000275a RSI: 00002000000000c0 RDI: 00000000ffffff9c
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f83c24aa604
R13: 00007ffeca9f08c8 R14: 0000000000000001 R15: 0000000000000001
 </TASK>

The buggy address belongs to the physical page:
page:ffffea00047c8bc0 refcount:3 mapcount:1 mapping:ffff88811382f650 index:0x3 pfn:0x11f22f
memcg:ffff88810033d7c0
aops:def_blk_aops ino:700000
flags: 0x5600000000022056(referenced|uptodate|lru|workingset|private|mappedtodisk|zone=1)
raw: 5600000000022056 ffffea000488cd48 ffffea00047c8b88 ffff88811382f650
raw: 0000000000000003 ffff88812257ca80 0000000300000000 ffff88810033d7c0
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 284, tgid 284 (udevd), ts 24500376880, free_ts 21264371665
 set_page_owner include/linux/page_owner.h:33 [inline]
 post_alloc_hook+0x1f5/0x210 mm/page_alloc.c:2637
 prep_new_page+0x1c/0x110 mm/page_alloc.c:2644
 get_page_from_freelist+0x2c7b/0x2cf0 mm/page_alloc.c:4539
 __alloc_pages+0x19e/0x3a0 mm/page_alloc.c:5850
 __folio_alloc+0x12/0x40 mm/page_alloc.c:5882
 __folio_alloc_node include/linux/gfp.h:245 [inline]
 folio_alloc include/linux/gfp.h:274 [inline]
 filemap_alloc_folio include/linux/pagemap.h:513 [inline]
 page_cache_ra_unbounded+0x234/0x720 mm/readahead.c:260
 do_page_cache_ra mm/readahead.c:312 [inline]
 force_page_cache_ra mm/readahead.c:343 [inline]
 page_cache_sync_ra+0x3e3/0x490 mm/readahead.c:727
 page_cache_sync_readahead include/linux/pagemap.h:1257 [inline]
 filemap_get_pages mm/filemap.c:2690 [inline]
 filemap_read+0x62d/0x22c0 mm/filemap.c:2785
 blkdev_read_iter+0x41e/0x560 block/fops.c:614
 call_read_iter include/linux/fs.h:2276 [inline]
 new_sync_read fs/read_write.c:389 [inline]
 vfs_read+0x41e/0x8c0 fs/read_write.c:470
 ksys_read+0x140/0x240 fs/read_write.c:613
 __do_sys_read fs/read_write.c:623 [inline]
 __se_sys_read fs/read_write.c:621 [inline]
 __x64_sys_read+0x7b/0x90 fs/read_write.c:621
 x64_sys_call+0x2f/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:1
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
page last free stack trace:
 reset_page_owner include/linux/page_owner.h:26 [inline]
 free_pages_prepare mm/page_alloc.c:1545 [inline]
 free_pcp_prepare mm/page_alloc.c:1619 [inline]
 free_unref_page_prepare+0x742/0x750 mm/page_alloc.c:3581
 free_unref_page+0x8f/0x530 mm/page_alloc.c:3677
 free_the_page mm/page_alloc.c:830 [inline]
 __free_pages+0x67/0x100 mm/page_alloc.c:5939
 __vunmap+0x9af/0xb70 mm/vmalloc.c:2729
 free_work+0x5a/0x80 mm/vmalloc.c:98
 process_one_work+0x71f/0xc40 kernel/workqueue.c:2299
 worker_thread+0xa29/0x11f0 kernel/workqueue.c:2446
 kthread+0x281/0x320 kernel/kthread.c:386
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295

Memory state around the buggy address:
 ffff88811f22ef00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 ffff88811f22ef80: 00 00 00 00 00 0