program:
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./bus\x00', 0x18418, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRES8], 0xfe, 0x4be, &(0x7f0000000880)="$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")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
truncate(&(0x7f0000000100)='./file1\x00', 0x20fdfffffe)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

[   84.436079][ T4666] Bluetooth: hci0: command tx timeout
[   84.607618][ T5320] loop0: detected capacity change from 0 to 128
[   84.722680][ T5320] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   85.197382][ T5320] loop0: detected capacity change from 128 to 64
[   85.223698][ T5321] ------------[ cut here ]------------
[   85.232796][ T5321] le32_to_cpu(aed->lengthAllocDescs) != epos->offset - sizeof(struct allocExtDesc)
[   85.232818][ T5321] WARNING: fs/udf/inode.c:2085 at __udf_add_aext+0x524/0x6d0, CPU#0: syz.0.0/5321
[   85.264698][ T5321] Modules linked in:
[   85.270044][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.284192][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.293781][ T5321] RIP: 0010:__udf_add_aext+0x524/0x6d0
[   85.301393][ T5321] Code: 01 dc fe 49 8b 3e 4c 89 e6 e8 18 ff 01 ff 31 c0 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 0d 21 70 fe 90 <0f> 0b 90 e9 14 fc ff ff e8 ff 20 70 fe 90 0f 0b 90 e9 66 fd ff ff
[   85.322967][ T5321] RSP: 0000:ffffc9000dd17180 EFLAGS: 00010283
[   85.329204][ T5321] RAX: ffffffff8355ae83 RBX: dffffc0000000000 RCX: 0000000000100000
[   85.333103][ T5321] RDX: ffffc90020001000 RSI: 00000000000008ee RDI: 00000000000008ef
[   85.337997][ T5321] RBP: 1ffff92001ba2eb5 R08: ffff8880373324c0 R09: 0000000000000002
[   85.346397][ T5321] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000
[   85.354220][ T5321] R13: 0000000000000001 R14: ffffc9000dd175a0 R15: ffffc9000dd175a8
[   85.365099][ T5321] FS:  00007f56106bc6c0(0000) GS:ffff88808ca49000(0000) knlGS:0000000000000000
[   85.375539][ T5321] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.387927][ T5321] CR2: 00005570da4a4d24 CR3: 0000000044764000 CR4: 0000000000352ef0
[   85.396168][ T5321] Call Trace:
[   85.401111][ T5321]  <TASK>
[   85.402586][ T5321]  udf_do_extend_file+0x90c/0x11e0
[   85.408455][ T5321]  ? __pfx_udf_do_extend_file+0x10/0x10
[   85.417664][ T5321]  udf_map_block+0xfff/0x4330
[   85.419991][ T5321]  ? stack_trace_save+0xa9/0x100
[   85.422128][ T5321]  ? __pfx_stack_trace_save+0x10/0x10
[   85.424374][ T5321]  ? __pfx_udf_map_block+0x10/0x10
[   85.440124][ T5321]  ? check_path+0x21/0x40
[   85.442203][ T5321]  ? check_noncircular+0xda/0x150
[   85.455772][ T5321]  ? do_raw_spin_lock+0x12b/0x2f0
[   85.465223][ T5321]  ? do_raw_spin_unlock+0x4d/0x210
[   85.473257][ T5321]  __udf_get_block+0x52/0x250
[   85.476045][ T5321]  ? create_empty_buffers+0x465/0x530
[   85.479127][ T5321]  __block_write_begin_int+0x6c6/0x1910
[   85.482088][ T5321]  ? __pfx_udf_get_block+0x10/0x10
[   85.495940][ T5321]  ? __pfx___block_write_begin_int+0x10/0x10
[   85.508336][ T5321]  ? __pfx_udf_get_block+0x10/0x10
[   85.511850][ T5321]  block_write_begin+0x8d/0x120
[   85.515098][ T5321]  ? udf_write_begin+0x92/0x270
[   85.517370][ T5321]  udf_write_begin+0x118/0x270
[   85.519561][ T5321]  generic_perform_write+0x2e2/0x8f0
[   85.522136][ T5321]  ? __pfx_generic_perform_write+0x10/0x10
[   85.546096][ T5321]  ? file_update_time_flags+0x400/0x4a0
[   85.555648][ T5321]  ? __generic_file_write_iter+0xf9/0x230
[   85.558569][ T5321]  ? udf_file_write_iter+0x1a3/0x6b0
[   85.561209][ T5321]  udf_file_write_iter+0x2ca/0x6b0
[   85.565602][ T5321]  do_iter_readv_writev+0x619/0x8c0
[   85.572574][ T5321]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   85.585348][ T5321]  vfs_writev+0x33c/0x990
[   85.594252][ T5321]  ? __pfx_vfs_writev+0x10/0x10
[   85.599591][ T5321]  ? __fget_files+0x2a/0x420
[   85.604120][ T5321]  ? __fget_files+0x3a0/0x420
[   85.609396][ T5321]  ? __fget_files+0x2a/0x420
[   85.613047][ T5321]  __se_sys_pwritev2+0x184/0x2a0
[   85.619526][ T5321]  ? __pfx___se_sys_pwritev2+0x10/0x10
[   85.623554][ T5321]  ? __x64_sys_pwritev2+0x20/0xc0
[   85.628497][ T5321]  do_syscall_64+0x14d/0xf80
[   85.633172][ T5321]  ? trace_irq_disable+0x3b/0x150
[   85.638093][ T5321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.649022][ T5321]  ? clear_bhb_loop+0x40/0x90
[   85.658553][ T5321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.668032][ T5321] RIP: 0033:0x7f560f79c819
[   85.670483][ T5321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   85.690716][ T5321] RSP: 002b:00007f56106bbfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   85.695445][ T5321] RAX: ffffffffffffffda RBX: 00007f560fa16090 RCX: 00007f560f79c819
[   85.701334][ T5321] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000004
[   85.709113][ T5321] RBP: 00007f560f832c91 R08: 0000000000000000 R09: 0000000000000000
[   85.716390][ T5321] R10: 0000000000000e7b R11: 0000000000000246 R12: 0000000000000000
[   85.721074][ T5321] R13: 00007f560fa16128 R14: 00007f560fa16090 R15: 00007ffe79b6c938
[   85.725137][ T5321]  </TASK>
[   85.728093][ T5321] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.736053][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.744837][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.752808][ T5321] Call Trace:
[   85.755824][ T5321]  <TASK>
[   85.765487][ T5321]  vpanic+0x56c/0xa60
[   85.767795][ T5321]  ? __pfx__printk+0x10/0x10
[   85.770370][ T5321]  ? __pfx_vpanic+0x10/0x10
[   85.772698][ T5321]  ? is_bpf_text_address+0x292/0x2b0
[   85.777411][ T5321]  ? is_bpf_text_address+0x26/0x2b0
[   85.780804][ T5321]  panic+0xc5/0xd0
[   85.782987][ T5321]  ? __pfx_panic+0x10/0x10
[   85.795452][ T5321]  __warn+0x315/0x4f0
[   85.797360][ T5321]  ? __udf_add_aext+0x524/0x6d0
[   85.799800][ T5321]  ? __udf_add_aext+0x524/0x6d0
[   85.802417][ T5321]  __report_bug+0x29a/0x540
[   85.817342][ T5321]  ? __pfx_folio_mark_accessed+0x10/0x10
[   85.819706][ T5321]  ? __udf_add_aext+0x524/0x6d0
[   85.822252][ T5321]  ? __pfx___report_bug+0x10/0x10
[   85.831344][ T5321]  ? bdev_getblk+0xbe/0x6e0
[   85.833638][ T5321]  ? bdev_getblk+0x582/0x6e0
[   85.838971][ T5321]  ? __udf_add_aext+0x524/0x6d0
[   85.841199][ T5321]  report_bug+0x16a/0x220
[   85.851421][ T5321]  ? __udf_add_aext+0x524/0x6d0
[   85.853700][ T5321]  ? __udf_add_aext+0x526/0x6d0
[   85.857999][ T5321]  handle_bug+0x9c/0x200
[   85.865067][ T5321]  exc_invalid_op+0x1a/0x50
[   85.867459][ T5321]  asm_exc_invalid_op+0x1a/0x20
[   85.877846][ T5321] RIP: 0010:__udf_add_aext+0x524/0x6d0
[   85.880499][ T5321] Code: 01 dc fe 49 8b 3e 4c 89 e6 e8 18 ff 01 ff 31 c0 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 0d 21 70 fe 90 <0f> 0b 90 e9 14 fc ff ff e8 ff 20 70 fe 90 0f 0b 90 e9 66 fd ff ff
[   85.900496][ T5321] RSP: 0000:ffffc9000dd17180 EFLAGS: 00010283
[   85.904004][ T5321] RAX: ffffffff8355ae83 RBX: dffffc0000000000 RCX: 0000000000100000
[   85.925374][ T5321] RDX: ffffc90020001000 RSI: 00000000000008ee RDI: 00000000000008ef
[   85.930410][ T5321] RBP: 1ffff92001ba2eb5 R08: ffff8880373324c0 R09: 0000000000000002
[   85.941928][ T5321] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000
[   85.951062][ T5321] R13: 0000000000000001 R14: ffffc9000dd175a0 R15: ffffc9000dd175a8
[   85.956704][ T5321]  ? __udf_add_aext+0x523/0x6d0
[   85.961683][ T5321]  udf_do_extend_file+0x90c/0x11e0
[   85.965579][ T5321]  ? __pfx_udf_do_extend_file+0x10/0x10
[   85.971883][ T5321]  udf_map_block+0xfff/0x4330
[   85.978819][ T5321]  ? stack_trace_save+0xa9/0x100
[   85.983507][ T5321]  ? __pfx_stack_trace_save+0x10/0x10
[   85.988341][ T5321]  ? __pfx_udf_map_block+0x10/0x10
[   85.995802][ T5321]  ? check_path+0x21/0x40
[   85.998880][ T5321]  ? check_noncircular+0xda/0x150
[   86.004371][ T5321]  ? do_raw_spin_lock+0x12b/0x2f0
[   86.008787][ T5321]  ? do_raw_spin_unlock+0x4d/0x210
[   86.013444][ T5321]  __udf_get_block+0x52/0x250
[   86.017607][ T5321]  ? create_empty_buffers+0x465/0x530
[   86.027925][ T5321]  __block_write_begin_int+0x6c6/0x1910
[   86.034003][ T5321]  ? __pfx_udf_get_block+0x10/0x10
[   86.037820][ T5321]  ? __pfx___block_write_begin_int+0x10/0x10
[   86.044602][ T5321]  ? __pfx_udf_get_block+0x10/0x10
[   86.048809][ T5321]  block_write_begin+0x8d/0x120
[   86.052649][ T5321]  ? udf_write_begin+0x92/0x270
[   86.055696][ T5321]  udf_write_begin+0x118/0x270
[   86.058063][ T5321]  generic_perform_write+0x2e2/0x8f0
[   86.063029][ T5321]  ? __pfx_generic_perform_write+0x10/0x10
[   86.074274][ T5321]  ? file_update_time_flags+0x400/0x4a0
[   86.087236][ T5321]  ? __generic_file_write_iter+0xf9/0x230
[   86.093621][ T5321]  ? udf_file_write_iter+0x1a3/0x6b0
[   86.101538][ T5321]  udf_file_write_iter+0x2ca/0x6b0
[   86.107450][ T5321]  do_iter_readv_writev+0x619/0x8c0
[   86.114796][ T5321]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   86.119244][ T5321]  vfs_writev+0x33c/0x990
[   86.121513][ T5321]  ? __pfx_vfs_writev+0x10/0x10
[   86.124000][ T5321]  ? __fget_files+0x2a/0x420
[   86.137451][ T5321]  ? __fget_files+0x3a0/0x420
[   86.146813][ T5321]  ? __fget_files+0x2a/0x420
[   86.150386][ T5321]  __se_sys_pwritev2+0x184/0x2a0
[   86.164816][ T5321]  ? __pfx___se_sys_pwritev2+0x10/0x10
[   86.169675][ T5321]  ? __x64_sys_pwritev2+0x20/0xc0
[   86.174162][ T5321]  do_syscall_64+0x14d/0xf80
[   86.184331][ T5321]  ? trace_irq_disable+0x3b/0x150
[   86.195906][ T5321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.200726][ T5321]  ? clear_bhb_loop+0x40/0x90
[   86.206016][ T5321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.211123][ T5321] RIP: 0033:0x7f560f79c819
[   86.214578][ T5321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   86.228889][ T5321] RSP: 002b:00007f56106bbfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   86.232970][ T5321] RAX: ffffffffffffffda RBX: 00007f560fa16090 RCX: 00007f560f79c819
[   86.236229][ T5321] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000004
[   86.239986][ T5321] RBP: 00007f560f832c91 R08: 0000000000000000 R09: 0000000000000000
[   86.245719][ T5321] R10: 0000000000000e7b R11: 0000000000000246 R12: 0000000000000000
[   86.252554][ T5321] R13: 00007f560fa16128 R14: 00007f560fa16090 R15: 00007ffe79b6c938
[   86.259193][ T5321]  </TASK>
[   86.261816][ T5321] Kernel Offset: disabled
[   86.265522][ T5321] Rebooting in 86400 seconds..