program:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000000)={0x1, 0x8, 0x6a40, 0xb3, 0xbcd})
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f00000029c0)={0xc, {"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", 0x1000}}, 0xf13)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f0000000240)={[{@stripe={'stripe', 0x3d, 0x2}}, {@nobh}, {@oldalloc}, {@noauto_da_alloc}, {@minixdf}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@nojournal_checksum}, {@orlov}, {@user_xattr}, {@quota}, {@delalloc}]}, 0x1, 0x559, &(0x7f0000000b40)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x35)
pwrite64(r3, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000500), &(0x7f00000000c0)=ANY=[], 0x841, 0x1)
ioctl$VT_RELDISP(r0, 0x5605)
ioctl$FIBMAP(r2, 0x1, &(0x7f0000000080)=0xfaeb)

[  103.020220][ T5329] loop0: detected capacity change from 0 to 1024
[  103.025339][ T5329] =======================================================
[  103.025339][ T5329] WARNING: The mand mount option has been deprecated and
[  103.025339][ T5329]          and is ignored by this kernel. Remove the mand
[  103.025339][ T5329]          option from the mount to silence this warning.
[  103.025339][ T5329] =======================================================
[  103.044071][ T5329] EXT4-fs: Ignoring removed nobh option
[  103.046776][ T5329] EXT4-fs: Ignoring removed oldalloc option
[  103.049760][ T5329] EXT4-fs: Ignoring removed orlov option
[  103.061229][ T5305] Bluetooth: hci0: command tx timeout
[  103.128148][ T5329] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  103.181332][ T5329] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.297890][ T5329] ==================================================================
[  103.301395][ T5329] BUG: KASAN: use-after-free in ext4_find_extent+0xaea/0xcc0
[  103.305077][ T5329] Read of size 4 at addr ffff888050683c70 by task syz.0.0/5329
[  103.308682][ T5329] 
[  103.310018][ T5329] CPU: 0 UID: 0 PID: 5329 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  103.310040][ T5329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  103.310049][ T5329] Call Trace:
[  103.310058][ T5329]  <TASK>
[  103.310065][ T5329]  dump_stack_lvl+0xe8/0x150
[  103.310089][ T5329]  print_report+0xba/0x230
[  103.310108][ T5329]  ? ext4_find_extent+0xaea/0xcc0
[  103.310124][ T5329]  kasan_report+0x117/0x150
[  103.310141][ T5329]  ? ext4_find_extent+0xaea/0xcc0
[  103.310156][ T5329]  ext4_find_extent+0xaea/0xcc0
[  103.310171][ T5329]  ext4_ext_map_blocks+0x283/0x58b0
[  103.310185][ T5329]  ? kernel_text_address+0xa5/0xe0
[  103.310201][ T5329]  ? arch_stack_walk+0xfb/0x150
[  103.310225][ T5329]  ? __lock_acquire+0x6b5/0x2cf0
[  103.310244][ T5329]  ? ext4_alloc_io_end_vec+0x2b/0x160
[  103.310262][ T5329]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  103.310274][ T5329]  ? kasan_save_track+0x4f/0x80
[  103.310290][ T5329]  ? kasan_save_track+0x3e/0x80
[  103.310307][ T5329]  ? __kasan_slab_alloc+0x6c/0x80
[  103.310318][ T5329]  ? kmem_cache_alloc_noprof+0x2bc/0x650
[  103.310336][ T5329]  ? ext4_alloc_io_end_vec+0x2b/0x160
[  103.310353][ T5329]  ? ext4_do_writepages+0x11c3/0x46e0
[  103.310365][ T5329]  ? ext4_writepages+0x241/0x3b0
[  103.310374][ T5329]  ? do_writepages+0x32e/0x550
[  103.310383][ T5329]  ? file_write_and_wait_range+0x36e/0x440
[  103.310399][ T5329]  ext4_map_create_blocks+0x11d/0x540
[  103.310412][ T5329]  ext4_map_blocks+0x7cd/0x11d0
[  103.310425][ T5329]  ? __pfx_ext4_map_blocks+0x10/0x10
[  103.310437][ T5329]  ? ext4_inode_journal_mode+0x193/0x470
[  103.310445][ T5329]  ext4_do_writepages+0x22c0/0x46e0
[  103.310465][ T5329]  ? __pfx_ext4_do_writepages+0x10/0x10
[  103.310476][ T5329]  ? add_lock_to_list+0xc7/0x100
[  103.310492][ T5329]  ? __pfx__ext4_get_block+0x10/0x10
[  103.310507][ T5329]  ext4_writepages+0x241/0x3b0
[  103.310518][ T5329]  ? __pfx_ext4_writepages+0x10/0x10
[  103.310530][ T5329]  ? do_raw_spin_unlock+0x4d/0x210
[  103.310539][ T5329]  ? __pfx_ext4_writepages+0x10/0x10
[  103.310551][ T5329]  do_writepages+0x32e/0x550
[  103.310566][ T5329]  ? do_raw_spin_unlock+0x4d/0x210
[  103.310579][ T5329]  file_write_and_wait_range+0x36e/0x440
[  103.310597][ T5329]  ? __pfx_file_write_and_wait_range+0x10/0x10
[  103.310615][ T5329]  ? generic_perform_write+0x80a/0x8f0
[  103.310625][ T5329]  generic_buffers_fsync_noflush+0x70/0x1d0
[  103.310639][ T5329]  ext4_sync_file+0x321/0xb70
[  103.310652][ T5329]  ext4_buffered_write_iter+0x2ca/0x3a0
[  103.310671][ T5329]  ext4_file_write_iter+0x298/0x1bf0
[  103.310693][ T5329]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  103.310714][ T5329]  vfs_write+0x61d/0xb90
[  103.310732][ T5329]  ? __pfx_vfs_write+0x10/0x10
[  103.310745][ T5329]  ? __fget_files+0x2a/0x420
[  103.310764][ T5329]  __x64_sys_pwrite64+0x199/0x230
[  103.310773][ T5329]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  103.310784][ T5329]  do_syscall_64+0x14d/0xf80
[  103.310862][ T5329]  ? trace_irq_disable+0x3b/0x150
[  103.310886][ T5329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.310899][ T5329]  ? clear_bhb_loop+0x40/0x90
[  103.310908][ T5329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.310917][ T5329] RIP: 0033:0x7f93ba79c799
[  103.310929][ T5329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  103.310935][ T5329] RSP: 002b:00007f93bb56dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  103.310944][ T5329] RAX: ffffffffffffffda RBX: 00007f93baa15fa0 RCX: 00007f93ba79c799
[  103.310949][ T5329] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000007
[  103.310953][ T5329] RBP: 00007f93ba832c99 R08: 0000000000000000 R09: 0000000000000000
[  103.310963][ T5329] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000000
[  103.310969][ T5329] R13: 00007f93baa16038 R14: 00007f93baa15fa0 R15: 00007ffc94396518
[  103.310977][ T5329]  </TASK>
[  103.310981][ T5329] 
[  103.491389][ T5329] The buggy address belongs to the physical page:
[  103.494001][ T5329] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50683
[  103.498046][ T5329] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  103.502423][ T5329] raw: 04fff00000000000 ffffea000141a108 ffffea000141a088 0000000000000000
[  103.506463][ T5329] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  103.510632][ T5329] page dumped because: kasan: bad access detected
[  103.514195][ T5329] page_owner info is not present (never set?)
[  103.517004][ T5329] 
[  103.518377][ T5329] Memory state around the buggy address:
[  103.522063][ T5329]  ffff888050683b00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  103.527029][ T5329]  ffff888050683b80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  103.530742][ T5329] >ffff888050683c00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  103.534453][ T5329]                                                              ^
[  103.538123][ T5329]  ffff888050683c80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  103.541984][ T5329]  ffff888050683d00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  103.546143][ T5329] ==================================================================
[  103.705623][ T5329] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  103.709369][ T5329] CPU: 0 UID: 0 PID: 5329 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  103.714211][ T5329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  103.720176][ T5329] Call Trace:
[  103.721746][ T5329]  <TASK>
[  103.723165][ T5329]  vpanic+0x56c/0xa60
[  103.725107][ T5329]  ? __pfx_vpanic+0x10/0x10
[  103.727206][ T5329]  panic+0xc5/0xd0
[  103.729038][ T5329]  ? __pfx_panic+0x10/0x10
[  103.731686][ T5329]  ? preempt_schedule_thunk+0x16/0x30
[  103.734917][ T5329]  ? preempt_schedule_thunk+0x16/0x30
[  103.738245][ T5329]  ? ext4_find_extent+0xaea/0xcc0
[  103.740667][ T5329]  check_panic_on_warn+0x89/0xb0
[  103.742933][ T5329]  ? ext4_find_extent+0xaea/0xcc0
[  103.745327][ T5329]  end_report+0x73/0x180
[  103.747425][ T5329]  ? ext4_find_extent+0xaea/0xcc0
[  103.749828][ T5329]  kasan_report+0x128/0x150
[  103.752315][ T5329]  ? ext4_find_extent+0xaea/0xcc0
[  103.754976][ T5329]  ext4_find_extent+0xaea/0xcc0
[  103.757621][ T5329]  ext4_ext_map_blocks+0x283/0x58b0
[  103.760116][ T5329]  ? kernel_text_address+0xa5/0xe0
[  103.762508][ T5329]  ? arch_stack_walk+0xfb/0x150
[  103.764975][ T5329]  ? __lock_acquire+0x6b5/0x2cf0
[  103.767972][ T5329]  ? ext4_alloc_io_end_vec+0x2b/0x160
[  103.771678][ T5329]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  103.774646][ T5329]  ? kasan_save_track+0x4f/0x80
[  103.777019][ T5329]  ? kasan_save_track+0x3e/0x80
[  103.779182][ T5329]  ? __kasan_slab_alloc+0x6c/0x80
[  103.781355][ T5329]  ? kmem_cache_alloc_noprof+0x2bc/0x650
[  103.784081][ T5329]  ? ext4_alloc_io_end_vec+0x2b/0x160
[  103.786875][ T5329]  ? ext4_do_writepages+0x11c3/0x46e0
[  103.789794][ T5329]  ? ext4_writepages+0x241/0x3b0
[  103.792379][ T5329]  ? do_writepages+0x32e/0x550
[  103.794656][ T5329]  ? file_write_and_wait_range+0x36e/0x440
[  103.797305][ T5329]  ext4_map_create_blocks+0x11d/0x540
[  103.799787][ T5329]  ext4_map_blocks+0x7cd/0x11d0
[  103.802523][ T5329]  ? __pfx_ext4_map_blocks+0x10/0x10
[  103.805849][ T5329]  ? ext4_inode_journal_mode+0x193/0x470
[  103.809049][ T5329]  ext4_do_writepages+0x22c0/0x46e0
[  103.811476][ T5329]  ? __pfx_ext4_do_writepages+0x10/0x10
[  103.813699][ T5329]  ? add_lock_to_list+0xc7/0x100
[  103.815994][ T5329]  ? __pfx__ext4_get_block+0x10/0x10
[  103.818505][ T5329]  ext4_writepages+0x241/0x3b0
[  103.820696][ T5329]  ? __pfx_ext4_writepages+0x10/0x10
[  103.822954][ T5329]  ? do_raw_spin_unlock+0x4d/0x210
[  103.825168][ T5329]  ? __pfx_ext4_writepages+0x10/0x10
[  103.827536][ T5329]  do_writepages+0x32e/0x550
[  103.829718][ T5329]  ? do_raw_spin_unlock+0x4d/0x210
[  103.832380][ T5329]  file_write_and_wait_range+0x36e/0x440
[  103.835594][ T5329]  ? __pfx_file_write_and_wait_range+0x10/0x10
[  103.838559][ T5329]  ? generic_perform_write+0x80a/0x8f0
[  103.841092][ T5329]  generic_buffers_fsync_noflush+0x70/0x1d0
[  103.843805][ T5329]  ext4_sync_file+0x321/0xb70
[  103.845904][ T5329]  ext4_buffered_write_iter+0x2ca/0x3a0
[  103.849146][ T5329]  ext4_file_write_iter+0x298/0x1bf0
[  103.852532][ T5329]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  103.855254][ T5329]  vfs_write+0x61d/0xb90
[  103.857230][ T5329]  ? __pfx_vfs_write+0x10/0x10
[  103.859402][ T5329]  ? __fget_files+0x2a/0x420
[  103.861502][ T5329]  __x64_sys_pwrite64+0x199/0x230
[  103.863621][ T5329]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  103.866416][ T5329]  do_syscall_64+0x14d/0xf80
[  103.868832][ T5329]  ? trace_irq_disable+0x3b/0x150
[  103.871354][ T5329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.874118][ T5329]  ? clear_bhb_loop+0x40/0x90
[  103.876201][ T5329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.878919][ T5329] RIP: 0033:0x7f93ba79c799
[  103.881535][ T5329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  103.891822][ T5329] RSP: 002b:00007f93bb56dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  103.895478][ T5329] RAX: ffffffffffffffda RBX: 00007f93baa15fa0 RCX: 00007f93ba79c799
[  103.899113][ T5329] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000007
[  103.903306][ T5329] RBP: 00007f93ba832c99 R08: 0000000000000000 R09: 0000000000000000
[  103.907935][ T5329] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000000
[  103.911349][ T5329] R13: 00007f93baa16038 R14: 00007f93baa15fa0 R15: 00007ffc94396518
[  103.914902][ T5329]  </TASK>
[  103.917098][ T5329] Kernel Offset: disabled
[  103.919542][ T5329] Rebooting in 86400 seconds..