program:
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f0000000080)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@minixdf}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@nojournal_checksum}, {@orlov}, {@user_xattr}, {@quota}, {@delalloc}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0xfeffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000840)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8fff0ff79a4f0ff00000000b7060000ffffffff6d6405000000000065040400010000000404000001000000b7050000400000006a0a80fe000000008500000053000000b70000000000000095000010000000004e62011c3034fdb117168bd07ba08af339d1a1ee35fe163a255c33282044b32495ef8ab9adc67ccc945ff15d802f5132143c0a9fc7a84452569957c1002ed7d458e17f791f4798c8eb484de03312c69b3edff5be26765ba5f8f2879021c2ea53ac547a654bbd2db5356b971d83dd12742be9087a3e7b7c0efd3e38c794eb06b0b8c392904ae7dd5e4dee88518ddf12dddd4bfc6a4dd3b6beba51074229b0d4b504516c4c3e5d1aa044d8d00728141cd67bcd68f253288e655c6b34e02e90637ef2912ba7de26ff2357ef17f95a25780c3a057826ef4e912f01a201e694e3049b8c8fe8b65d8d66bb766f7f3f918c86a702522368d9f81897133af94a5a4cff7f4d8b9d8eaf302f0b2e0c252b0000000000000000ee917bca4885bbf597a14ab6458e6272d88e0c8088f404f011289ebc5623faa1182632161e073af1d69a2e36be115be3b325ecd201d2ffb0a7fa4f5d1106560cdcf071defd0a8be3b69ce3e4f361aca75827426dde87fdf4617222674280f55e98107450c19b861299fcd9ed9d8679406419406bf0c5329bd5b4697336112b0b8756ce3574046bf611a108f8df4d1a88597840b702b6fa8edfff8faf8b8ec039bab385cac0535373bb8fab90539b1a65ddff841eb671f7faf39a43a66c5540b8762b42007c9ec43193ccf617dbf8a12b4a189edbf9fb7c42b1f435ccd4b19b53b60322af0aa66e8f448e1bd96822e6b70b62912c926dbe417cccd4f696d528fa8a3ea847f10e9b1106f3bb506f1d7fbdf801000000000000006c028eb5b5a073d0de5538ab42e171b3baae34c35987b0dda497ac3f5e97e60eaeea15c6d55badf9b86b1c000100006e60cd06c9ed24313ce607d403bb6030f800000000690db0221b1705c501f802ff59b4e683efa4b6e77e042072ec9eb8166f6e28b49a7705a1befc4d315878f88a8fb1dd679fb4c5557abae6849917dc51a89d47b728502f7e621fc0e3ba04020000c149ee6601728c750930519339b44197c22da865059b475afd96187d881e93b42a5fdfd686d8900c44c67133eeb0109dcb60dddad58037fda65885a15a42560ee3027a5ebf95254744f10fd607bc3100b94932b8d9447c42f6e21ee0e54f8be386bdc09decece910a481e648e0cb074536a25ff581d92af08a06f857311a2f14326b0b290205e91a682e00c8762cbc6b904c980eef6e6ae00f0000000000006a8194479700a02b92bec8d05eae1f24fdd7b80d3dde04c22f689594de2ebb9687219de8d73ac83823feb402a2415a9850d5f0183ec67be96dc0e4acd7acf1dfe79d6771903b76e2ae47d972651390c22d641030e1ddac018dc3116e1803af10a5f2b5f7ba58aca5bcabbbab24414a3810788e5503e4be66d683daac5f00000000000000001000ba96edb95ede0e1957c2a2754258d9fd028096cc15a8b912b494d4bbe609031ea1ca65a548941d5d16297757310d9daebd5a3dabbced3b051129cd60a37d397643324e6f0aadf978d639650000000000000000570b0acbcaa196e6b46e213a34c1a550e7c2d8cee7a278cee591f360e345d37dc9f8991a16c08d72317e42d2ac9126acd76130ef1086016697e4d51c4b42b2efc8edab88d46bc3d5d6e5a634c912bc40513643bf44cb416b3149040220aa39035ae46d16d879fc815a5cb84b0d5c8ad970128adf8dec1171e860ca54ce5d6a5aa0327bca4f49a710bf8a8399071237fe5d764e2034873c94a4f21287f3bce3eeb69e94df2e14e4ab10cc7834b304bc879b80255991dd7aac2e92c9e7c411c019d229c1f1e563152f1c5ae9cda3e808000000a0c779d624c5a2b7491b8f73e767389ecd1dee951353bb22b7caf89468871520823715cfebd04189c6c6b34bd8a6541f6bc0630000000000f94e85f5111add3a3cb5bcace95f38465402c39df835754ef33056b0e1134187822c001a25304f3e00b44675d0a25a21dc4023c642cc6f5a75c45a29ab933600acf9a2d471b73a73178cdf309e5d53311996215b44295dfddc1dd6b81132e999366e460d15d366e84da02b8afc40c47e733f804460ed8300ec34eab2ed80097bd32ff1a6143ab1476037e474ca876187c85bed4391215cd77e6a1fd6399a498b96b9b0cca93255acb08c67e50004c5af6fd5b4ce7c1ebc9202bd7b329a4d2530486d5999dd7f90ebecca37f2869135438f0540801fd7481daf9ec94b799c12e714d573e2a6331f496254f254a60c52b2026ed6a72c82cd191490fabe7b151f92e5d700f21830d613fbe490f305b3845a78817e59bf7ed36471dbca01d39e50ae2535460e1d2f2614940647233a02d5000000000000000000f70e52f0d56f6a4dcf7e57c03d4b4add0500000000000000320304d0d2b308c5ed3956eae263035d703f862224e9818a3d7ac270793a7bf2af87585293960a80ac63c54e55063bf8d24639e561253ef0caf6c58118120d8acecc0528f0d81d291009fc46401baf9c22d1c452a5b61b7a1b9adfcc17f5ad99dcdf935923185db7b14a7fa7babc1f53df70618bb73aa810b756696f26653b84cf842ae433fda59fbe312be11bb7dfecdc38c1c1f688d2724568cc396fca7c74984b7f7bd000000000000003ff3e5857fc6598c933610be374909dc8622b0722259e922f40d7862f7ea72f1754f07711de7600000000000000000000000000c4cb643e73ad8a45f0c7164484540e66e29943aa72297d831ce6c978866a55ed53130c6747f569c9c9abe724b4fc647b17401d2201e8c201e7d6ffa1fa122677f7393ed4fe8a93306f048b6703b04544e42a9cd937ef8d98ee8d878a12a627791c5c2d9fc6de65356be92fd98fdbe819686c7bd3be5bd0ce627c8357675f752c73a502d25c31c831078f098c34295bfe90e882843003841f4c0c65dc1810a50000000000000015911cb03e743c482199757d35df5b59fe0a0c5240c85498d818578e2d65c4ff4acbee037498222b1f81f3726a244da1fd6b8c195f1303bedb744045f31e1547d7bc3c3eae68b8da059a59c8c37e3639c2c4eb3d8229ac24d2ce12bc0e5db4a8202d72e64d5c5eacd0d0c0cd7a879ed967f5a2bd39ae4cf7daf7c9fa1777d54fb5920c8434163f75062c62455bf6e23817a85d"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0xfeffff, 0x113, 0x3f00f000, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0x4a, 0xffffff0c}, 0x40)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000540)={<r3=>0x0, @in6={{0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x8}}, 0x1, 0xa, 0x4f, 0xc}, &(0x7f0000000380)=0x98)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000004c0)={r3, 0x8, 0x0, 0x4, 0x8}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'gretap0\x00', &(0x7f0000000440)={'erspan0\x00', <r4=>0x0, 0x40, 0x7800, 0xb12, 0xffff5cc3, {{0x11, 0x4, 0x1, 0x2, 0x44, 0x65, 0x0, 0x4, 0x2f, 0x0, @loopback, @loopback, {[@timestamp={0x44, 0x8, 0x17, 0x0, 0x9, [0x7b44]}, @timestamp={0x44, 0x18, 0x8f, 0x0, 0xd, [0x9, 0xa, 0x3, 0x810000, 0x6]}, @timestamp_prespec={0x44, 0xc, 0x9, 0x3, 0x0, [{@empty}]}, @end, @noop]}}}}})
ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000300)={@empty, 0x2d, r4})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r5, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
r8 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r8, &(0x7f0000000000)=""/188, 0xbc)
syz_usb_disconnect(r7)
syz_usb_connect$cdc_ecm(0x5, 0x4d, &(0x7f0000000280)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x7f, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xc, 0x2, 0x2, 0x6, 0x0, 0x4, {{0x5}, {0x5, 0x24, 0x0, 0x726b}, {0xd, 0x24, 0xf, 0x1, 0x7, 0xffff, 0x5, 0x8}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x208, 0x0, 0x1, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x6, 0x4, 0x6}}}}}]}}]}}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x1009}}]})
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010102}}, @IPSET_ATTR_CADT_FLAGS={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x60}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x10)
mmap(&(0x7f00001e1000/0x2000)=nil, 0x2000, 0x17ffff0, 0x4012011, r0, 0x4f37c000)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x35)
pwrite64(r9, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
chdir(&(0x7f0000000180)='./file1\x00')
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000500), &(0x7f0000001040)=ANY=[], 0x841, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
write$FUSE_WRITE(r10, &(0x7f00000000c0)={0x18}, 0xfffffdef)

[   75.120587][ T5313] Bluetooth: hci0: command tx timeout
[   75.189464][ T5332] loop0: detected capacity change from 0 to 1024
[   75.201573][ T5332] =======================================================
[   75.201573][ T5332] WARNING: The mand mount option has been deprecated and
[   75.201573][ T5332]          and is ignored by this kernel. Remove the mand
[   75.201573][ T5332]          option from the mount to silence this warning.
[   75.201573][ T5332] =======================================================
[   75.253751][ T5332] EXT4-fs: Ignoring removed oldalloc option
[   75.256568][ T5332] EXT4-fs: Ignoring removed orlov option
[   75.263382][ T5332] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   75.285464][ T5332] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.547372][ T5326] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   75.697540][ T5326] usb 5-1: Using ep0 maxpacket: 32
[   75.703446][ T5326] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   75.710719][ T5326] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   75.715521][ T5326] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   75.719729][ T5326] usb 5-1: Product: syz
[   75.721479][ T5326] usb 5-1: Manufacturer: syz
[   75.723307][ T5326] usb 5-1: SerialNumber: syz
[   75.736214][ T5326] usb 5-1: config 0 descriptor??
[   75.740477][ T5332] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   75.750253][ T5326] hub 5-1:0.0: bad descriptor, ignoring hub
[   75.752972][ T5326] hub 5-1:0.0: probe with driver hub failed with error -5
[   76.420859][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[   76.423785][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[   76.637947][ T5332] usb 5-1: reset high-speed USB device number 2 using dummy_hcd
[   76.790601][ T5332] usb 5-1: device firmware changed
[   76.794374][ T5326] usb 5-1: USB disconnect, device number 2
[   76.937183][ T5326] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   77.087524][ T5326] usb 5-1: Using ep0 maxpacket: 32
[   77.092288][ T5326] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   77.099854][ T5326] usb 5-1: string descriptor 0 read error: -22
[   77.102647][ T5326] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   77.106528][ T5326] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   77.117658][ T5326] usb 5-1: config 0 descriptor??
[   77.120687][ T5333] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   77.125821][ T5326] hub 5-1:0.0: bad descriptor, ignoring hub
[   77.131985][ T5326] hub 5-1:0.0: probe with driver hub failed with error -5
[   77.140382][ T5313] Bluetooth: hci0: command tx timeout
[   77.343077][ T5332] ==================================================================
[   77.346920][ T5332] BUG: KASAN: use-after-free in ext4_find_extent+0xae6/0xcc0
[   77.350338][ T5332] Read of size 4 at addr ffff88804bb6ae54 by task syz.0.0/5332
[   77.353601][ T5332] 
[   77.354723][ T5332] CPU: 0 UID: 0 PID: 5332 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   77.354739][ T5332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.354747][ T5332] Call Trace:
[   77.354754][ T5332]  <TASK>
[   77.354761][ T5332]  dump_stack_lvl+0x189/0x250
[   77.354781][ T5332]  ? __virt_addr_valid+0x1c8/0x5c0
[   77.354798][ T5332]  ? rcu_is_watching+0x15/0xb0
[   77.354814][ T5332]  ? __pfx_dump_stack_lvl+0x10/0x10
[   77.354827][ T5332]  ? rcu_is_watching+0x15/0xb0
[   77.354841][ T5332]  ? lock_release+0x4b/0x3e0
[   77.354851][ T5332]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[   77.354910][ T5332]  ? __virt_addr_valid+0x1c8/0x5c0
[   77.354926][ T5332]  ? __virt_addr_valid+0x4a5/0x5c0
[   77.354942][ T5332]  print_report+0xca/0x240
[   77.354951][ T5332]  ? ext4_find_extent+0xae6/0xcc0
[   77.354962][ T5332]  kasan_report+0x118/0x150
[   77.354976][ T5332]  ? ext4_find_extent+0xae6/0xcc0
[   77.354993][ T5332]  ext4_find_extent+0xae6/0xcc0
[   77.355011][ T5332]  ext4_ext_map_blocks+0x288/0x6ac0
[   77.355027][ T5332]  ? __lock_acquire+0xab9/0xd20
[   77.355041][ T5332]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   77.355056][ T5332]  ? ext4_es_lookup_extent+0x622/0xa70
[   77.355071][ T5332]  ext4_map_blocks+0x860/0x1740
[   77.355086][ T5332]  ? __pfx_ext4_map_blocks+0x10/0x10
[   77.355097][ T5332]  ? __mutex_trylock_common+0x153/0x260
[   77.355107][ T5332]  ? __bfs+0x151/0x2a0
[   77.355114][ T5332]  ? __pfx_hlock_conflict+0x10/0x10
[   77.355128][ T5332]  _ext4_get_block+0x200/0x4c0
[   77.355140][ T5332]  ? __pfx__ext4_get_block+0x10/0x10
[   77.355155][ T5332]  ext4_get_block_unwritten+0x2e/0x100
[   77.355169][ T5332]  ext4_block_write_begin+0x993/0x1710
[   77.355187][ T5332]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   77.355200][ T5332]  ? __pfx_ext4_block_write_begin+0x10/0x10
[   77.355212][ T5332]  ? folio_mapping+0x16f/0x1f0
[   77.355222][ T5332]  ? ext4_inode_journal_mode+0x18c/0x480
[   77.355243][ T5332]  ext4_write_begin+0xc04/0x19a0
[   77.355266][ T5332]  ? __pfx_ext4_write_begin+0x10/0x10
[   77.355276][ T5332]  ? __ext4_handle_dirty_metadata+0x2fd/0x810
[   77.355294][ T5332]  ext4_da_write_begin+0x445/0xda0
[   77.355312][ T5332]  ? rcu_is_watching+0x15/0xb0
[   77.355327][ T5332]  ? __pfx_ext4_da_write_begin+0x10/0x10
[   77.355342][ T5332]  generic_perform_write+0x2c2/0x900
[   77.355365][ T5332]  ? __pfx_generic_perform_write+0x10/0x10
[   77.355383][ T5332]  ? file_modified_flags+0x4bb/0x560
[   77.355396][ T5332]  ? ext4_write_checks+0x24b/0x2c0
[   77.355405][ T5332]  ext4_buffered_write_iter+0xce/0x3a0
[   77.355415][ T5332]  ext4_file_write_iter+0x298/0x1bc0
[   77.355432][ T5332]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   77.355442][ T5332]  vfs_write+0x5c9/0xb30
[   77.355451][ T5332]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   77.355460][ T5332]  ? __pfx_vfs_write+0x10/0x10
[   77.355472][ T5332]  ? __fget_files+0x2a/0x420
[   77.355487][ T5332]  ksys_write+0x145/0x250
[   77.355499][ T5332]  ? __pfx_ksys_write+0x10/0x10
[   77.355509][ T5332]  ? rcu_is_watching+0x15/0xb0
[   77.355527][ T5332]  ? do_syscall_64+0xbe/0x3b0
[   77.355545][ T5332]  do_syscall_64+0xfa/0x3b0
[   77.355559][ T5332]  ? lockdep_hardirqs_on+0x9c/0x150
[   77.355573][ T5332]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.355584][ T5332]  ? clear_bhb_loop+0x60/0xb0
[   77.355595][ T5332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.355604][ T5332] RIP: 0033:0x7fbce258eec9
[   77.355617][ T5332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.355627][ T5332] RSP: 002b:00007fbce33fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   77.355640][ T5332] RAX: ffffffffffffffda RBX: 00007fbce27e5fa0 RCX: 00007fbce258eec9
[   77.355649][ T5332] RDX: 00000000fffffdef RSI: 00002000000000c0 RDI: 000000000000000c
[   77.355660][ T5332] RBP: 00007fbce2611f91 R08: 0000000000000000 R09: 0000000000000000
[   77.355668][ T5332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   77.355675][ T5332] R13: 00007fbce27e6038 R14: 00007fbce27e5fa0 R15: 00007ffd856f08d8
[   77.355685][ T5332]  </TASK>
[   77.355689][ T5332] 
[   77.532022][ T5332] The buggy address belongs to the physical page:
[   77.534794][ T5332] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4bb6a
[   77.538388][ T5332] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[   77.541506][ T5332] raw: 04fff00000000000 ffffea00012edac8 ffffea00012eda48 0000000000000000
[   77.545131][ T5332] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   77.548741][ T5332] page dumped because: kasan: bad access detected
[   77.551439][ T5332] page_owner info is not present (never set?)
[   77.553945][ T5332] 
[   77.554933][ T5332] Memory state around the buggy address:
[   77.557604][ T5332]  ffff88804bb6ad00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   77.561049][ T5332]  ffff88804bb6ad80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   77.564591][ T5332] >ffff88804bb6ae00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   77.568034][ T5332]                                                  ^
[   77.570864][ T5332]  ffff88804bb6ae80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   77.574320][ T5332]  ffff88804bb6af00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   77.577707][ T5332] ==================================================================
[   77.590814][ T5332] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   77.593861][ T5332] CPU: 0 UID: 0 PID: 5332 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   77.597704][ T5332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.602145][ T5332] Call Trace:
[   77.603565][ T5332]  <TASK>
[   77.604865][ T5332]  dump_stack_lvl+0x99/0x250
[   77.606993][ T5332]  ? __asan_memcpy+0x40/0x70
[   77.609038][ T5332]  ? __pfx_dump_stack_lvl+0x10/0x10
[   77.611246][ T5332]  ? __pfx__printk+0x10/0x10
[   77.613181][ T5332]  vpanic+0x237/0x6d0
[   77.614892][ T5332]  ? __pfx_vpanic+0x10/0x10
[   77.617327][ T5332]  ? preempt_schedule+0xae/0xc0
[   77.619916][ T5332]  ? __pfx_preempt_schedule+0x10/0x10
[   77.622181][ T5332]  panic+0xb9/0xc0
[   77.623744][ T5332]  ? __pfx_panic+0x10/0x10
[   77.625782][ T5332]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   77.628259][ T5332]  ? is_module_address+0x17/0xf0
[   77.630331][ T5332]  ? ext4_find_extent+0xae6/0xcc0
[   77.632477][ T5332]  check_panic_on_warn+0x89/0xb0
[   77.634634][ T5332]  ? ext4_find_extent+0xae6/0xcc0
[   77.636773][ T5332]  end_report+0x78/0x160
[   77.638632][ T5332]  kasan_report+0x129/0x150
[   77.640617][ T5332]  ? ext4_find_extent+0xae6/0xcc0
[   77.642491][ T5332]  ext4_find_extent+0xae6/0xcc0
[   77.644391][ T5332]  ext4_ext_map_blocks+0x288/0x6ac0
[   77.646393][ T5332]  ? __lock_acquire+0xab9/0xd20
[   77.648246][ T5332]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   77.650604][ T5332]  ? ext4_es_lookup_extent+0x622/0xa70
[   77.652979][ T5332]  ext4_map_blocks+0x860/0x1740
[   77.655099][ T5332]  ? __pfx_ext4_map_blocks+0x10/0x10
[   77.657428][ T5332]  ? __mutex_trylock_common+0x153/0x260
[   77.659752][ T5332]  ? __bfs+0x151/0x2a0
[   77.661513][ T5332]  ? __pfx_hlock_conflict+0x10/0x10
[   77.663792][ T5332]  _ext4_get_block+0x200/0x4c0
[   77.665873][ T5332]  ? __pfx__ext4_get_block+0x10/0x10
[   77.668240][ T5332]  ext4_get_block_unwritten+0x2e/0x100
[   77.670594][ T5332]  ext4_block_write_begin+0x993/0x1710
[   77.672918][ T5332]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   77.675535][ T5332]  ? __pfx_ext4_block_write_begin+0x10/0x10
[   77.678052][ T5332]  ? folio_mapping+0x16f/0x1f0
[   77.680146][ T5332]  ? ext4_inode_journal_mode+0x18c/0x480
[   77.682358][ T5332]  ext4_write_begin+0xc04/0x19a0
[   77.684376][ T5332]  ? __pfx_ext4_write_begin+0x10/0x10
[   77.686665][ T5332]  ? __ext4_handle_dirty_metadata+0x2fd/0x810
[   77.689238][ T5332]  ext4_da_write_begin+0x445/0xda0
[   77.691419][ T5332]  ? rcu_is_watching+0x15/0xb0
[   77.695829][ T5332]  ? __pfx_ext4_da_write_begin+0x10/0x10
[   77.698265][ T5332]  generic_perform_write+0x2c2/0x900
[   77.700759][ T5332]  ? __pfx_generic_perform_write+0x10/0x10
[   77.703481][ T5332]  ? file_modified_flags+0x4bb/0x560
[   77.705867][ T5332]  ? ext4_write_checks+0x24b/0x2c0
[   77.707995][ T5332]  ext4_buffered_write_iter+0xce/0x3a0
[   77.710709][ T5332]  ext4_file_write_iter+0x298/0x1bc0
[   77.712950][ T5332]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   77.715743][ T5332]  vfs_write+0x5c9/0xb30
[   77.717784][ T5332]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   77.720277][ T5332]  ? __pfx_vfs_write+0x10/0x10
[   77.722405][ T5332]  ? __fget_files+0x2a/0x420
[   77.724432][ T5332]  ksys_write+0x145/0x250
[   77.726318][ T5332]  ? __pfx_ksys_write+0x10/0x10
[   77.728567][ T5332]  ? rcu_is_watching+0x15/0xb0
[   77.730644][ T5332]  ? do_syscall_64+0xbe/0x3b0
[   77.732691][ T5332]  do_syscall_64+0xfa/0x3b0
[   77.734731][ T5332]  ? lockdep_hardirqs_on+0x9c/0x150
[   77.737058][ T5332]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.739827][ T5332]  ? clear_bhb_loop+0x60/0xb0
[   77.741882][ T5332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.744452][ T5332] RIP: 0033:0x7fbce258eec9
[   77.746468][ T5332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.754627][ T5332] RSP: 002b:00007fbce33fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   77.758162][ T5332] RAX: ffffffffffffffda RBX: 00007fbce27e5fa0 RCX: 00007fbce258eec9
[   77.761790][ T5332] RDX: 00000000fffffdef RSI: 00002000000000c0 RDI: 000000000000000c
[   77.765128][ T5332] RBP: 00007fbce2611f91 R08: 0000000000000000 R09: 0000000000000000
[   77.768529][ T5332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   77.772049][ T5332] R13: 00007fbce27e6038 R14: 00007fbce27e5fa0 R15: 00007ffd856f08d8
[   77.776197][ T5332]  </TASK>
[   77.777920][ T5332] Kernel Offset: disabled
[   77.779945][ T5332] Rebooting in 86400 seconds..