program:
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000000)={[{@nouid32}, {@mblk_io_submit}, {@i_version}]}, 0x1, 0x746, &(0x7f0000000f40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x6)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x8, 0x8005, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0xc]})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x0, 0x0, 0x3, 0x1}, @enum]}}, 0x0, 0x32, 0x0, 0x1}, 0x28)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1000})
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x8)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x22301, 0x0)
splice(r2, &(0x7f0000000180)=0x8, r0, &(0x7f00000001c0)=0x8, 0x0, 0x2)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000000)={[{@nouid32}, {@mblk_io_submit}, {@i_version}]}, 0x1, 0x746, &(0x7f0000000f40)="$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") (async)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x6) (async)
creat(&(0x7f0000000380)='./bus\x00', 0x0) (async)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) (async)
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) (async)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x8, 0x8005, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0xc]}) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x0, 0x0, 0x3, 0x1}, @enum]}}, 0x0, 0x32, 0x0, 0x1}, 0x28) (async)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1000}) (async)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x8) (async)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x22301, 0x0) (async)
splice(r2, &(0x7f0000000180)=0x8, r0, &(0x7f00000001c0)=0x8, 0x0, 0x2) (async)

[   73.828449][ T1010] ata1.00: status: { DRDY }
[   73.833237][ T1010] ata1.00: configured for UDMA/100
[   73.835924][ T1010] ata1: EH complete
[   73.848959][ T4666] Bluetooth: hci0: command tx timeout
[   73.953851][ T5318] loop0: detected capacity change from 0 to 2048
[   73.989506][ T5318] EXT4-fs: Ignoring removed mblk_io_submit option
[   73.992024][ T5318] EXT4-fs: Ignoring removed i_version option
[   74.030055][ T5318] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.088520][ T5318] loop0: detected capacity change from 2048 to 64
[   74.113157][ T5318] ==================================================================
[   74.116688][ T5318] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x9c1/0x1e20
[   74.120276][ T5318] Read of size 18446744073709551600 at addr ffff888011f96eb8 by task syz.0.0/5318
[   74.124597][ T5318] 
[   74.125678][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   74.125691][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   74.125696][ T5318] Call Trace:
[   74.125703][ T5318]  <TASK>
[   74.125708][ T5318]  dump_stack_lvl+0xe8/0x150
[   74.125726][ T5318]  print_report+0xba/0x230
[   74.125737][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.125749][ T5318]  kasan_report+0x117/0x150
[   74.125763][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.125774][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.125785][ T5318]  kasan_check_range+0x264/0x2c0
[   74.125795][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.125806][ T5318]  __asan_memmove+0x29/0x70
[   74.125819][ T5318]  ext4_xattr_set_entry+0x9c1/0x1e20
[   74.125830][ T5318]  ext4_xattr_ibody_set+0x254/0x6a0
[   74.125839][ T5318]  ext4_destroy_inline_data_nolock+0x23a/0x5e0
[   74.125851][ T5318]  ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[   74.125862][ T5318]  ? trace_kmalloc+0x2a/0x110
[   74.125875][ T5318]  ? __asan_memcpy+0x40/0x70
[   74.125884][ T5318]  ? ext4_read_inline_data+0x103/0x2c0
[   74.125894][ T5318]  ext4_convert_inline_data_nolock+0x208/0x990
[   74.125905][ T5318]  ? __pfx_ext4_convert_inline_data_nolock+0x10/0x10
[   74.125914][ T5318]  ? down_write+0x16d/0x200
[   74.125969][ T5318]  ? ext4_get_inode_loc+0xc5/0xf0
[   74.125977][ T5318]  ext4_convert_inline_data+0x4ce/0x600
[   74.125987][ T5318]  ? __pfx_ext4_convert_inline_data+0x10/0x10
[   74.125997][ T5318]  ? down_write+0x16d/0x200
[   74.126006][ T5318]  ext4_fallocate+0x1e2/0x3d0
[   74.126017][ T5318]  vfs_fallocate+0x669/0x7e0
[   74.126026][ T5318]  ? __pfx_vfs_fallocate+0x10/0x10
[   74.126034][ T5318]  file_ioctl+0x6e6/0x860
[   74.126043][ T5318]  ? __pfx_file_ioctl+0x10/0x10
[   74.126051][ T5318]  ? kasan_quarantine_put+0xbb/0x1f0
[   74.126063][ T5318]  ? tomoyo_path_number_perm+0x219/0x630
[   74.126108][ T5318]  ? tomoyo_path_number_perm+0x219/0x630
[   74.126116][ T5318]  do_vfs_ioctl+0xc26/0x1530
[   74.126124][ T5318]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   74.126132][ T5318]  ? do_futex+0x395/0x420
[   74.126146][ T5318]  ? __fget_files+0x2a/0x420
[   74.126161][ T5318]  ? __fget_files+0x2a/0x420
[   74.126173][ T5318]  ? __fget_files+0x3a0/0x420
[   74.126186][ T5318]  ? __fget_files+0x2a/0x420
[   74.126198][ T5318]  ? bpf_lsm_file_ioctl+0x9/0x20
[   74.126212][ T5318]  __se_sys_ioctl+0x82/0x170
[   74.126220][ T5318]  do_syscall_64+0x14d/0xf80
[   74.126229][ T5318]  ? trace_irq_disable+0x3b/0x150
[   74.126245][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.126253][ T5318]  ? clear_bhb_loop+0x40/0x90
[   74.126262][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.126270][ T5318] RIP: 0033:0x7f8ab979c799
[   74.126280][ T5318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   74.126287][ T5318] RSP: 002b:00007f8aba73bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.126297][ T5318] RAX: ffffffffffffffda RBX: 00007f8ab9a15fa0 RCX: 00007f8ab979c799
[   74.126303][ T5318] RDX: 0000200000000040 RSI: 0000000040305839 RDI: 0000000000000004
[   74.126307][ T5318] RBP: 00007f8ab9832c99 R08: 0000000000000000 R09: 0000000000000000
[   74.126312][ T5318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.126316][ T5318] R13: 00007f8ab9a16038 R14: 00007f8ab9a15fa0 R15: 00007ffd378c72d8
[   74.126324][ T5318]  </TASK>
[   74.126327][ T5318] 
[   74.278408][ T5318] The buggy address belongs to the physical page:
[   74.281872][ T5318] page: refcount:2 mapcount:0 mapping:ffff88801cc2d900 index:0x2 pfn:0x11f96
[   74.285783][ T5318] memcg:ffff88801c6c0d40
[   74.287451][ T5318] aops:def_blk_aops ino:700000 dentry name(?):""
[   74.290271][ T5318] flags: 0xfff98000004224(referenced|lru|workingset|private|node=0|zone=1|lastcpupid=0x7ff)
[   74.295175][ T5318] raw: 00fff98000004224 ffff88801c6d5600 ffffea00004bb408 ffff88801cc2d900
[   74.298548][ T5318] raw: 0000000000000002 ffff88801a8071d0 00000002ffffffff ffff88801c6c0d40
[   74.302253][ T5318] page dumped because: kasan: bad access detected
[   74.305376][ T5318] page_owner tracks the page as allocated
[   74.308354][ T5318] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_MOVABLE|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL), pid 5318, tgid 5317 (syz.0.0), ts 74100100201, free_ts 74071324128
[   74.317025][ T5318]  post_alloc_hook+0x231/0x280
[   74.319190][ T5318]  get_page_from_freelist+0x24dc/0x2580
[   74.321950][ T5318]  __alloc_frozen_pages_noprof+0x18d/0x380
[   74.324797][ T5318]  alloc_pages_mpol+0x232/0x4a0
[   74.327031][ T5318]  alloc_pages_noprof+0xa8/0x190
[   74.329213][ T5318]  folio_alloc_noprof+0x1e/0x30
[   74.331709][ T5318]  filemap_alloc_folio_noprof+0x111/0x470
[   74.334629][ T5318]  __filemap_get_folio_mpol+0x3fc/0xb00
[   74.337179][ T5318]  bdev_getblk+0x1f6/0x6e0
[   74.339283][ T5318]  __ext4_get_inode_loc+0x528/0xfa0
[   74.341588][ T5318]  ext4_get_inode_loc+0x81/0xf0
[   74.343517][ T5318]  ext4_convert_inline_data+0x26e/0x600
[   74.345840][ T5318]  ext4_fallocate+0x1e2/0x3d0
[   74.347963][ T5318]  vfs_fallocate+0x669/0x7e0
[   74.350050][ T5318]  file_ioctl+0x6e6/0x860
[   74.351895][ T5318]  do_vfs_ioctl+0xc26/0x1530
[   74.353998][ T5318] page last free pid 77 tgid 77 stack trace:
[   74.357056][ T5318]  free_unref_folios+0xed5/0x16d0
[   74.359626][ T5318]  shrink_folio_list+0x4a6b/0x5290
[   74.363216][ T5318]  evict_folios+0x4795/0x5880
[   74.366187][ T5318]  try_to_shrink_lruvec+0xb62/0xfa0
[   74.368737][ T5318]  shrink_one+0x25c/0x710
[   74.370746][ T5318]  shrink_node+0x3197/0x3a90
[   74.372986][ T5318]  kswapd+0x1742/0x2e10
[   74.374997][ T5318]  kthread+0x388/0x470
[   74.376947][ T5318]  ret_from_fork+0x51e/0xb90
[   74.379301][ T5318]  ret_from_fork_asm+0x1a/0x30
[   74.381806][ T5318] 
[   74.383098][ T5318] Memory state around the buggy address:
[   74.386104][ T5318]  ffff888011f96d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.390140][ T5318]  ffff888011f96e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.393618][ T5318] >ffff888011f96e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.397025][ T5318]                                         ^
[   74.400154][ T5318]  ffff888011f96f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.404718][ T5318]  ffff888011f96f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.408077][ T5318] ==================================================================
[   74.417474][ T5322] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 16338: padding at end of block bitmap is not set
[   74.458534][ T5318] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   74.463160][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   74.467018][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   74.471347][ T5318] Call Trace:
[   74.472762][ T5318]  <TASK>
[   74.474024][ T5318]  vpanic+0x56c/0xa60
[   74.475850][ T5318]  ? __pfx_vpanic+0x10/0x10
[   74.478024][ T5318]  ? __pfx___schedule+0x10/0x10
[   74.480535][ T5318]  panic+0xc5/0xd0
[   74.482391][ T5318]  ? __pfx_panic+0x10/0x10
[   74.484357][ T5318]  ? preempt_schedule_thunk+0x16/0x30
[   74.486700][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.489175][ T5318]  check_panic_on_warn+0x89/0xb0
[   74.491789][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.494804][ T5318]  end_report+0x73/0x180
[   74.496853][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.499234][ T5318]  kasan_report+0x128/0x150
[   74.501299][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.503625][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.505975][ T5318]  kasan_check_range+0x264/0x2c0
[   74.509343][ T5318]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[   74.513183][ T5318]  __asan_memmove+0x29/0x70
[   74.515625][ T5318]  ext4_xattr_set_entry+0x9c1/0x1e20
[   74.518341][ T5318]  ext4_xattr_ibody_set+0x254/0x6a0
[   74.521155][ T5318]  ext4_destroy_inline_data_nolock+0x23a/0x5e0
[   74.524416][ T5318]  ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[   74.528835][ T5318]  ? trace_kmalloc+0x2a/0x110
[   74.531970][ T5318]  ? __asan_memcpy+0x40/0x70
[   74.534214][ T5318]  ? ext4_read_inline_data+0x103/0x2c0
[   74.537008][ T5318]  ext4_convert_inline_data_nolock+0x208/0x990
[   74.540446][ T5318]  ? __pfx_ext4_convert_inline_data_nolock+0x10/0x10
[   74.543728][ T5318]  ? down_write+0x16d/0x200
[   74.545928][ T5318]  ? ext4_get_inode_loc+0xc5/0xf0
[   74.548052][ T5318]  ext4_convert_inline_data+0x4ce/0x600
[   74.550222][ T5318]  ? __pfx_ext4_convert_inline_data+0x10/0x10
[   74.552807][ T5318]  ? down_write+0x16d/0x200
[   74.554880][ T5318]  ext4_fallocate+0x1e2/0x3d0
[   74.557336][ T5318]  vfs_fallocate+0x669/0x7e0
[   74.560051][ T5318]  ? __pfx_vfs_fallocate+0x10/0x10
[   74.563203][ T5318]  file_ioctl+0x6e6/0x860
[   74.565161][ T5318]  ? __pfx_file_ioctl+0x10/0x10
[   74.567340][ T5318]  ? kasan_quarantine_put+0xbb/0x1f0
[   74.569644][ T5318]  ? tomoyo_path_number_perm+0x219/0x630
[   74.572200][ T5318]  ? tomoyo_path_number_perm+0x219/0x630
[   74.574628][ T5318]  do_vfs_ioctl+0xc26/0x1530
[   74.576673][ T5318]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   74.578997][ T5318]  ? do_futex+0x395/0x420
[   74.581122][ T5318]  ? __fget_files+0x2a/0x420
[   74.583305][ T5318]  ? __fget_files+0x2a/0x420
[   74.586173][ T5318]  ? __fget_files+0x3a0/0x420
[   74.588512][ T5318]  ? __fget_files+0x2a/0x420
[   74.590564][ T5318]  ? bpf_lsm_file_ioctl+0x9/0x20
[   74.592701][ T5318]  __se_sys_ioctl+0x82/0x170
[   74.594918][ T5318]  do_syscall_64+0x14d/0xf80
[   74.597800][ T5318]  ? trace_irq_disable+0x3b/0x150
[   74.600761][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.603620][ T5318]  ? clear_bhb_loop+0x40/0x90
[   74.605722][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.608384][ T5318] RIP: 0033:0x7f8ab979c799
[   74.610376][ T5318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   74.618844][ T5318] RSP: 002b:00007f8aba73bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.622703][ T5318] RAX: ffffffffffffffda RBX: 00007f8ab9a15fa0 RCX: 00007f8ab979c799
[   74.626326][ T5318] RDX: 0000200000000040 RSI: 0000000040305839 RDI: 0000000000000004
[   74.629981][ T5318] RBP: 00007f8ab9832c99 R08: 0000000000000000 R09: 0000000000000000
[   74.633669][ T5318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.637217][ T5318] R13: 00007f8ab9a16038 R14: 00007f8ab9a15fa0 R15: 00007ffd378c72d8
[   74.640918][ T5318]  </TASK>
[   74.642634][ T5318] Kernel Offset: disabled
[   74.644554][ T5318] Rebooting in 86400 seconds..