------------[ cut here ]------------
kernel BUG at fs/ext4/extents.c:3186!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 3170 Comm: kworker/u4:7 Tainted: G        W         syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
Workqueue: ext4-rsv-conversion ext4_end_io_rsv_work
RIP: 0010:ext4_split_extent_at+0xe22/0xe40 fs/ext4/extents.c:3186
Code: ff ff 44 89 f1 80 e1 07 fe c1 38 c1 0f 8c fc fb ff ff 4c 89 f7 49 89 d7 e8 bb e4 d2 ff 4c 89 fa e9 e9 fb ff ff e8 7e b6 93 ff <0f> 0b e8 77 b6 93 ff 0f 0b e8 70 b6 93 ff 0f 0b e8 69 b6 93 ff 0f
RSP: 0018:ffffc9000101f460 EFLAGS: 00010293
RAX: ffffffff81d61682 RBX: 0000000000000002 RCX: ffff8881124d62c0
RDX: 0000000000000000 RSI: 0000000000000023 RDI: 0000000000000023
RBP: ffffc9000101f5d8 R08: 0000000000000010 R09: 0000000000000018
R10: dffffc0000000000 R11: ffffed10223ba68a R12: dffffc0000000000
R13: 0000000000000023 R14: 0000000000000030 R15: 0000000000000010
FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007faffe284060 CR3: 0000000111587000 CR4: 00000000003506b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 ext4_split_extent+0x363/0x4c0 fs/ext4/extents.c:3385
 ext4_split_convert_extents fs/ext4/extents.c:3715 [inline]
 ext4_convert_unwritten_extents_endio fs/ext4/extents.c:3751 [inline]
 ext4_ext_handle_unwritten_extents fs/ext4/extents.c:3898 [inline]
 ext4_ext_map_blocks+0x245a/0x61e0 fs/ext4/extents.c:4231
 ext4_map_blocks+0x988/0x1b30 fs/ext4/inode.c:674
 ext4_convert_unwritten_extents+0x2b7/0x5f0 fs/ext4/extents.c:4869
 ext4_convert_unwritten_io_end_vec+0x103/0x180 fs/ext4/extents.c:4908
 ext4_end_io_end fs/ext4/page-io.c:186 [inline]
 ext4_do_flush_completed_IO fs/ext4/page-io.c:259 [inline]
 ext4_end_io_rsv_work+0x2c1/0x610 fs/ext4/page-io.c:273
 process_one_work+0x6be/0xba0 kernel/workqueue.c:2325
 worker_thread+0xa59/0x1200 kernel/workqueue.c:2472
 kthread+0x411/0x500 kernel/kthread.c:337
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>
Modules linked in:
---[ end trace 23aa2afcf06c9fd8 ]---
RIP: 0010:ext4_split_extent_at+0xe22/0xe40 fs/ext4/extents.c:3186
Code: ff ff 44 89 f1 80 e1 07 fe c1 38 c1 0f 8c fc fb ff ff 4c 89 f7 49 89 d7 e8 bb e4 d2 ff 4c 89 fa e9 e9 fb ff ff e8 7e b6 93 ff <0f> 0b e8 77 b6 93 ff 0f 0b e8 70 b6 93 ff 0f 0b e8 69 b6 93 ff 0f
RSP: 0018:ffffc9000101f460 EFLAGS: 00010293
RAX: ffffffff81d61682 RBX: 0000000000000002 RCX: ffff8881124d62c0
RDX: 0000000000000000 RSI: 0000000000000023 RDI: 0000000000000023
RBP: ffffc9000101f5d8 R08: 0000000000000010 R09: 0000000000000018
R10: dffffc0000000000 R11: ffffed10223ba68a R12: dffffc0000000000
R13: 0000000000000023 R14: 0000000000000030 R15: 0000000000000010
FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007faffbf11ff8 CR3: 0000000111587000 CR4: 00000000003506b0