program:
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f0000000080)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@minixdf}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@nojournal_checksum}, {@orlov}, {@user_xattr}, {@quota}, {@delalloc}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r4, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x10)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r5, 0x0)
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file1\x00', 0xa00010, &(0x7f0000000080)=ANY=[@ANYBLOB='iocharset=iso8859-1,nostrict,iocharset=default,anchor=00000000000000000145,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c706172746974696f6e3d30303030303030303030303030303030303030322c756e64656c6574652c706172746974696f6e3d30303030303030303030303030303030303030312c756e686964652c001e066340c987db28915dbe6892bc3dce41ae76eaf528dc889820692d753009e30e567403a6c30e933de68a0a923eec1dccf226b58adb7d968bafe76628bceade8672fb893f87dc88", @ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES8], 0x1, 0xc5a, &(0x7f0000001040)="$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")
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
r6 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r6, &(0x7f0000001fc0)=""/184, 0x20002078)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x35)
pwrite64(r7, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000500), &(0x7f0000001040)=ANY=[], 0x841, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
write$FUSE_WRITE(r8, &(0x7f00000000c0)={0x18}, 0xfffffdef)

[   85.271245][ T5305] Bluetooth: hci0: command tx timeout
[   85.340160][ T5327] loop0: detected capacity change from 0 to 1024
[   85.364162][ T5327] =======================================================
[   85.364162][ T5327] WARNING: The mand mount option has been deprecated and
[   85.364162][ T5327]          and is ignored by this kernel. Remove the mand
[   85.364162][ T5327]          option from the mount to silence this warning.
[   85.364162][ T5327] =======================================================
[   85.401010][ T5327] EXT4-fs: Ignoring removed oldalloc option
[   85.403837][ T5327] EXT4-fs: Ignoring removed orlov option
[   85.411837][ T5327] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   85.428355][ T5327] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.522003][ T5327] ==================================================================
[   85.525090][ T5327] BUG: KASAN: use-after-free in ext4_find_extent+0xae6/0xcc0
[   85.528724][ T5327] Read of size 4 at addr ffff888052402794 by task syz.0.0/5327
[   85.532244][ T5327] 
[   85.533323][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.533335][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.533341][ T5327] Call Trace:
[   85.533346][ T5327]  <TASK>
[   85.533350][ T5327]  dump_stack_lvl+0x189/0x250
[   85.533364][ T5327]  ? __virt_addr_valid+0x1c8/0x5c0
[   85.533382][ T5327]  ? rcu_is_watching+0x15/0xb0
[   85.533399][ T5327]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.533414][ T5327]  ? rcu_is_watching+0x15/0xb0
[   85.533426][ T5327]  ? lock_release+0x4b/0x3e0
[   85.533436][ T5327]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[   85.533490][ T5327]  ? __virt_addr_valid+0x1c8/0x5c0
[   85.533504][ T5327]  ? __virt_addr_valid+0x4a5/0x5c0
[   85.533524][ T5327]  print_report+0xca/0x240
[   85.533538][ T5327]  ? ext4_find_extent+0xae6/0xcc0
[   85.533549][ T5327]  kasan_report+0x118/0x150
[   85.533565][ T5327]  ? ext4_find_extent+0xae6/0xcc0
[   85.533576][ T5327]  ext4_find_extent+0xae6/0xcc0
[   85.533588][ T5327]  ext4_ext_map_blocks+0x288/0x6ac0
[   85.533604][ T5327]  ? __lock_acquire+0xab9/0xd20
[   85.533616][ T5327]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   85.533631][ T5327]  ? ext4_es_lookup_extent+0x622/0xa70
[   85.533642][ T5327]  ext4_map_blocks+0x860/0x1740
[   85.533651][ T5327]  ? __pfx_ext4_map_blocks+0x10/0x10
[   85.533658][ T5327]  ? __pfx_hlock_conflict+0x10/0x10
[   85.533666][ T5327]  ? check_path+0x21/0x40
[   85.533674][ T5327]  _ext4_get_block+0x200/0x4c0
[   85.533684][ T5327]  ? __pfx__ext4_get_block+0x10/0x10
[   85.533699][ T5327]  ext4_get_block_unwritten+0x2e/0x100
[   85.533711][ T5327]  ext4_block_write_begin+0x993/0x1710
[   85.533728][ T5327]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   85.533740][ T5327]  ? __pfx_ext4_block_write_begin+0x10/0x10
[   85.533753][ T5327]  ? folio_mapping+0x16f/0x1f0
[   85.533763][ T5327]  ? ext4_inode_journal_mode+0x18c/0x480
[   85.533777][ T5327]  ext4_write_begin+0xc04/0x19a0
[   85.533793][ T5327]  ? __pfx_ext4_write_begin+0x10/0x10
[   85.533804][ T5327]  ext4_da_write_begin+0x445/0xda0
[   85.533817][ T5327]  ? __pfx___might_resched+0x10/0x10
[   85.533828][ T5327]  ? __pfx_ext4_da_write_begin+0x10/0x10
[   85.533841][ T5327]  generic_perform_write+0x2c5/0x900
[   85.533854][ T5327]  ? __pfx_generic_perform_write+0x10/0x10
[   85.533863][ T5327]  ? file_modified_flags+0x4bb/0x560
[   85.533875][ T5327]  ? ext4_write_checks+0x24b/0x2c0
[   85.533889][ T5327]  ext4_buffered_write_iter+0xce/0x3a0
[   85.533902][ T5327]  ext4_file_write_iter+0x298/0x1bc0
[   85.533919][ T5327]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   85.533935][ T5327]  vfs_write+0x5c9/0xb30
[   85.533947][ T5327]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   85.533960][ T5327]  ? __pfx_vfs_write+0x10/0x10
[   85.533974][ T5327]  ? __fget_files+0x2a/0x420
[   85.533988][ T5327]  ksys_write+0x145/0x250
[   85.534001][ T5327]  ? __pfx_ksys_write+0x10/0x10
[   85.534013][ T5327]  ? do_syscall_64+0xbe/0xfa0
[   85.534027][ T5327]  do_syscall_64+0xfa/0xfa0
[   85.534041][ T5327]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.534054][ T5327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.534063][ T5327]  ? clear_bhb_loop+0x60/0xb0
[   85.534074][ T5327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.534084][ T5327] RIP: 0033:0x7ff89518f749
[   85.534095][ T5327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.534104][ T5327] RSP: 002b:00007ff8960db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   85.534117][ T5327] RAX: ffffffffffffffda RBX: 00007ff8953e5fa0 RCX: 00007ff89518f749
[   85.534123][ T5327] RDX: 00000000fffffdef RSI: 00002000000000c0 RDI: 000000000000000b
[   85.534129][ T5327] RBP: 00007ff895213f91 R08: 0000000000000000 R09: 0000000000000000
[   85.534135][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.534142][ T5327] R13: 00007ff8953e6038 R14: 00007ff8953e5fa0 R15: 00007ffc6b842378
[   85.534154][ T5327]  </TASK>
[   85.534158][ T5327] 
[   85.690163][ T5327] The buggy address belongs to the physical page:
[   85.692707][ T5327] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52402
[   85.695991][ T5327] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[   85.699081][ T5327] raw: 04fff00000000000 ffffea00014900c8 ffffea0001490048 0000000000000000
[   85.703326][ T5327] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   85.706962][ T5327] page dumped because: kasan: bad access detected
[   85.709675][ T5327] page_owner info is not present (never set?)
[   85.712123][ T5327] 
[   85.713066][ T5327] Memory state around the buggy address:
[   85.715348][ T5327]  ffff888052402680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.718590][ T5327]  ffff888052402700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.722761][ T5327] >ffff888052402780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.726549][ T5327]                          ^
[   85.728665][ T5327]  ffff888052402800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.732170][ T5327]  ffff888052402880: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.735503][ T5327] ==================================================================
[   85.751304][ T5327] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   85.754445][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.758579][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.763473][ T5327] Call Trace:
[   85.765265][ T5327]  <TASK>
[   85.766613][ T5327]  dump_stack_lvl+0x99/0x250
[   85.768757][ T5327]  ? __asan_memcpy+0x40/0x70
[   85.770871][ T5327]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.773268][ T5327]  ? __pfx__printk+0x10/0x10
[   85.775312][ T5327]  vpanic+0x237/0x6d0
[   85.777121][ T5327]  ? __pfx_vpanic+0x10/0x10
[   85.779298][ T5327]  ? preempt_schedule+0xae/0xc0
[   85.781563][ T5327]  ? __pfx_preempt_schedule+0x10/0x10
[   85.783839][ T5327]  panic+0xb9/0xc0
[   85.785533][ T5327]  ? __pfx_panic+0x10/0x10
[   85.787873][ T5327]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   85.792319][ T5327]  ? is_module_address+0x17/0xf0
[   85.795419][ T5327]  ? ext4_find_extent+0xae6/0xcc0
[   85.798282][ T5327]  check_panic_on_warn+0x89/0xb0
[   85.800526][ T5327]  ? ext4_find_extent+0xae6/0xcc0
[   85.802702][ T5327]  end_report+0x78/0x160
[   85.804608][ T5327]  kasan_report+0x129/0x150
[   85.806667][ T5327]  ? ext4_find_extent+0xae6/0xcc0
[   85.808884][ T5327]  ext4_find_extent+0xae6/0xcc0
[   85.811057][ T5327]  ext4_ext_map_blocks+0x288/0x6ac0
[   85.813331][ T5327]  ? __lock_acquire+0xab9/0xd20
[   85.815531][ T5327]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   85.818094][ T5327]  ? ext4_es_lookup_extent+0x622/0xa70
[   85.820532][ T5327]  ext4_map_blocks+0x860/0x1740
[   85.822848][ T5327]  ? __pfx_ext4_map_blocks+0x10/0x10
[   85.825586][ T5327]  ? __pfx_hlock_conflict+0x10/0x10
[   85.828115][ T5327]  ? check_path+0x21/0x40
[   85.830102][ T5327]  _ext4_get_block+0x200/0x4c0
[   85.832399][ T5327]  ? __pfx__ext4_get_block+0x10/0x10
[   85.835207][ T5327]  ext4_get_block_unwritten+0x2e/0x100
[   85.838249][ T5327]  ext4_block_write_begin+0x993/0x1710
[   85.840900][ T5327]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   85.843652][ T5327]  ? __pfx_ext4_block_write_begin+0x10/0x10
[   85.846266][ T5327]  ? folio_mapping+0x16f/0x1f0
[   85.848410][ T5327]  ? ext4_inode_journal_mode+0x18c/0x480
[   85.850884][ T5327]  ext4_write_begin+0xc04/0x19a0
[   85.853048][ T5327]  ? __pfx_ext4_write_begin+0x10/0x10
[   85.855347][ T5327]  ext4_da_write_begin+0x445/0xda0
[   85.857190][ T5327]  ? __pfx___might_resched+0x10/0x10
[   85.859437][ T5327]  ? __pfx_ext4_da_write_begin+0x10/0x10
[   85.861909][ T5327]  generic_perform_write+0x2c5/0x900
[   85.864382][ T5327]  ? __pfx_generic_perform_write+0x10/0x10
[   85.866914][ T5327]  ? file_modified_flags+0x4bb/0x560
[   85.869342][ T5327]  ? ext4_write_checks+0x24b/0x2c0
[   85.871654][ T5327]  ext4_buffered_write_iter+0xce/0x3a0
[   85.874175][ T5327]  ext4_file_write_iter+0x298/0x1bc0
[   85.876785][ T5327]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   85.879761][ T5327]  vfs_write+0x5c9/0xb30
[   85.881690][ T5327]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   85.884344][ T5327]  ? __pfx_vfs_write+0x10/0x10
[   85.886307][ T5327]  ? __fget_files+0x2a/0x420
[   85.888301][ T5327]  ksys_write+0x145/0x250
[   85.890361][ T5327]  ? __pfx_ksys_write+0x10/0x10
[   85.892691][ T5327]  ? do_syscall_64+0xbe/0xfa0
[   85.894986][ T5327]  do_syscall_64+0xfa/0xfa0
[   85.897029][ T5327]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.899347][ T5327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.902197][ T5327]  ? clear_bhb_loop+0x60/0xb0
[   85.904285][ T5327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.906884][ T5327] RIP: 0033:0x7ff89518f749
[   85.908953][ T5327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.917316][ T5327] RSP: 002b:00007ff8960db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   85.921326][ T5327] RAX: ffffffffffffffda RBX: 00007ff8953e5fa0 RCX: 00007ff89518f749
[   85.925262][ T5327] RDX: 00000000fffffdef RSI: 00002000000000c0 RDI: 000000000000000b
[   85.928798][ T5327] RBP: 00007ff895213f91 R08: 0000000000000000 R09: 0000000000000000
[   85.932188][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.936074][ T5327] R13: 00007ff8953e6038 R14: 00007ff8953e5fa0 R15: 00007ffc6b842378
[   85.940083][ T5327]  </TASK>
[   85.941775][ T5327] Kernel Offset: disabled
[   85.943612][ T5327] Rebooting in 86400 seconds..