program:
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x0)
r2 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x2a)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x8005, 0x0, 0x0, 0x12, 0x8, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef00c1f7e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x401]})
write$cgroup_devices(r2, &(0x7f0000000080)=ANY=[], 0xa)
fallocate(r2, 0x1, 0x0, 0x1001f0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r0, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={0x34, 0x0, 0x5, 0xffffffff, 0x1000000c, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random="8b"}, @crypto_settings=[@NL80211_ATTR_CIPHER_SUITES_PAIRWISE={0x10, 0x49, [0xfac08, 0xfac06, 0xfac0b]}]]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x880)

[   84.514709][ T5317] Bluetooth: hci0: command tx timeout
[   84.675351][ T5339] loop0: detected capacity change from 0 to 512
[   84.870265][ T5339] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.890957][ T5339] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.185258][ T5339] loop0: detected capacity change from 512 to 64
[   85.195490][ T5340] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.0: corrupted xattr block 32: invalid header
[   85.243772][ T5339] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.0: corrupted xattr block 32: invalid header
[   85.270407][ T5339] syz.0.0: attempt to access beyond end of device
[   85.270407][ T5339] loop0: rw=2049, sector=104, nr_sectors = 2 limit=64
[   85.277855][ T5339] EXT4-fs warning (device loop0): ext4_end_bio:372: I/O error 10 writing to inode 15 starting block 52)
[   85.285239][ T5339] EXT4-fs (loop0): failed to convert unwritten extents to written extents -- potential data loss!  (inode 15, error -5)
[   85.308409][ T5339] Buffer I/O error on device loop0, logical block 52
[   85.368340][ T5339] syz.0.0: attempt to access beyond end of device
[   85.368340][ T5339] loop0: rw=2049, sector=224, nr_sectors = 2 limit=64
[   85.396213][ T5339] EXT4-fs warning (device loop0): ext4_end_bio:372: I/O error 10 writing to inode 15 starting block 112)
[   85.424736][  T131] ------------[ cut here ]------------
[   85.428110][  T131] kernel BUG at fs/ext4/mballoc.c:4780!
[   85.430585][  T131] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[   85.433497][  T131] CPU: 0 UID: 0 PID: 131 Comm: kworker/u4:5 Not tainted syzkaller #0 PREEMPT(full) 
[   85.437497][  T131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.442171][  T131] Workqueue: writeback wb_workfn (flush-7:0)
[   85.445432][  T131] RIP: 0010:ext4_mb_use_inode_pa+0x6c1/0x720
[   85.448705][  T131] Code: e8 44 9f a4 ff 48 ba 00 00 00 00 00 fc ff df e9 da fa ff ff e8 20 d6 37 ff 90 0f 0b e8 18 d6 37 ff 90 0f 0b e8 10 d6 37 ff 90 <0f> 0b e8 08 d6 37 ff 90 0f 0b 48 8b 0c 24 80 e1 07 80 c1 03 38 c1
[   85.457528][  T131] RSP: 0018:ffffc900014f64e8 EFLAGS: 00010293
[   85.460328][  T131] RAX: ffffffff828e08b0 RBX: 00000000fffffff0 RCX: ffff888032b90000
[   85.464167][  T131] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000004
[   85.468025][  T131] RBP: 1ffff11008eecdd7 R08: ffff88804776b6d3 R09: 1ffff11008eed6da
[   85.471824][  T131] R10: dffffc0000000000 R11: ffffed1008eed6db R12: 0000000000000000
[   85.475301][  T131] R13: 0000000000000014 R14: 1ffff11008eed6dd R15: ffff88804776b6e8
[   85.479179][  T131] FS:  0000000000000000(0000) GS:ffff88808c812000(0000) knlGS:0000000000000000
[   85.483952][  T131] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.486968][  T131] CR2: 00007f4fb74f54c0 CR3: 0000000012378000 CR4: 0000000000352ef0
[   85.490197][  T131] Call Trace:
[   85.491668][  T131]  <TASK>
[   85.493019][  T131]  ext4_mb_use_preallocated+0x660/0x13f0
[   85.495403][  T131]  ext4_mb_new_blocks+0x5e2/0x46c0
[   85.497943][  T131]  ? trace_kmalloc+0x2a/0xf0
[   85.500494][  T131]  ? __asan_memset+0x22/0x50
[   85.502984][  T131]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[   85.505455][  T131]  ? ext4_ext_check_overlap+0x32e/0x580
[   85.507865][  T131]  ? ext4_ext_find_goal+0xf0/0x1e0
[   85.510098][  T131]  ext4_ext_map_blocks+0x1515/0x5860
[   85.513311][  T131]  ? __lock_acquire+0x6b5/0x2cf0
[   85.516727][  T131]  ? stack_depot_save_flags+0x33/0x810
[   85.519246][  T131]  ? ext4_alloc_io_end_vec+0x2b/0x160
[   85.521373][  T131]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   85.523581][  T131]  ? kasan_save_track+0x4f/0x80
[   85.525486][  T131]  ? kasan_save_track+0x3e/0x80
[   85.527349][  T131]  ? __kasan_slab_alloc+0x6c/0x80
[   85.529655][  T131]  ? ext4_inode_journal_mode+0x193/0x470
[   85.532753][  T131]  ? ext4_map_blocks+0x7b5/0x11d0
[   85.535337][  T131]  ext4_map_create_blocks+0x11d/0x540
[   85.537638][  T131]  ext4_map_blocks+0x7cd/0x11d0
[   85.539890][  T131]  ? __pfx_ext4_map_blocks+0x10/0x10
[   85.542400][  T131]  ? ext4_inode_journal_mode+0x193/0x470
[   85.545121][  T131]  ext4_do_writepages+0x229d/0x4670
[   85.547783][  T131]  ? __pfx_ext4_do_writepages+0x10/0x10
[   85.550546][  T131]  ? __lock_acquire+0x6b5/0x2cf0
[   85.552878][  T131]  ? filemap_get_folios_tag+0x118/0x720
[   85.555182][  T131]  ? filemap_get_folios_tag+0x61c/0x720
[   85.557731][  T131]  ? filemap_get_folios_tag+0x118/0x720
[   85.560939][  T131]  ? ext4_writepages+0x205/0x3b0
[   85.563756][  T131]  ? ext4_writepages+0x205/0x3b0
[   85.566148][  T131]  ext4_writepages+0x241/0x3b0
[   85.568134][  T131]  ? __pfx_ext4_writepages+0x10/0x10
[   85.570519][  T131]  ? __pfx___ext4_get_inode_loc+0x10/0x10
[   85.573024][  T131]  ? unwind_next_frame+0xa6/0x2550
[   85.575369][  T131]  ? __pfx_ext4_writepages+0x10/0x10
[   85.578199][  T131]  do_writepages+0x32e/0x550
[   85.580749][  T131]  ? reacquire_held_locks+0x104/0x190
[   85.583399][  T131]  ? writeback_sb_inodes+0x463/0x19d0
[   85.585864][  T131]  __writeback_single_inode+0x133/0x10e0
[   85.588126][  T131]  ? do_raw_spin_unlock+0x4d/0x210
[   85.590318][  T131]  writeback_sb_inodes+0x979/0x19d0
[   85.592575][  T131]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   85.595155][  T131]  ? __pfx_down_read_trylock+0x10/0x10
[   85.598201][  T131]  ? __pfx___up_read+0x10/0x10
[   85.601248][  T131]  __writeback_inodes_wb+0x111/0x240
[   85.603403][  T131]  wb_writeback+0x459/0xb00
[   85.605216][  T131]  ? queue_io+0x241/0x470
[   85.606963][  T131]  ? __pfx_wb_writeback+0x10/0x10
[   85.609037][  T131]  ? do_raw_spin_lock+0x12b/0x2f0
[   85.611447][  T131]  wb_workfn+0x921/0xf10
[   85.613761][  T131]  ? __lock_acquire+0x6b5/0x2cf0
[   85.616532][  T131]  ? look_up_lock_class+0x57/0x110
[   85.619158][  T131]  ? __pfx_wb_workfn+0x10/0x10
[   85.621416][  T131]  ? do_raw_spin_lock+0x12b/0x2f0
[   85.623600][  T131]  ? lock_acquire+0x106/0x350
[   85.625745][  T131]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   85.628093][  T131]  ? process_scheduled_works+0xa70/0x1860
[   85.630958][  T131]  ? process_scheduled_works+0xa70/0x1860
[   85.634152][  T131]  ? process_scheduled_works+0xa70/0x1860
[   85.637045][  T131]  process_scheduled_works+0xb5d/0x1860
[   85.639517][  T131]  ? __pfx_process_scheduled_works+0x10/0x10
[   85.642126][  T131]  ? assign_work+0x3d5/0x5e0
[   85.644129][  T131]  worker_thread+0xa53/0xfc0
[   85.646369][  T131]  kthread+0x388/0x470
[   85.648323][  T131]  ? __pfx_worker_thread+0x10/0x10
[   85.650782][  T131]  ? __pfx_kthread+0x10/0x10
[   85.652979][  T131]  ret_from_fork+0x514/0xb70
[   85.654987][  T131]  ? __pfx_ret_from_fork+0x10/0x10
[   85.657343][  T131]  ? __switch_to+0xc79/0x1410
[   85.660007][  T131]  ? __pfx_kthread+0x10/0x10
[   85.662821][  T131]  ret_from_fork_asm+0x1a/0x30
[   85.665157][  T131]  </TASK>
[   85.666484][  T131] Modules linked in:
[   85.669382][  T131] ---[ end trace 0000000000000000 ]---
[   85.671937][  T131] RIP: 0010:ext4_mb_use_inode_pa+0x6c1/0x720
[   85.674786][  T131] Code: e8 44 9f a4 ff 48 ba 00 00 00 00 00 fc ff df e9 da fa ff ff e8 20 d6 37 ff 90 0f 0b e8 18 d6 37 ff 90 0f 0b e8 10 d6 37 ff 90 <0f> 0b e8 08 d6 37 ff 90 0f 0b 48 8b 0c 24 80 e1 07 80 c1 03 38 c1
[   85.683707][  T131] RSP: 0018:ffffc900014f64e8 EFLAGS: 00010293
[   85.686349][  T131] RAX: ffffffff828e08b0 RBX: 00000000fffffff0 RCX: ffff888032b90000
[   85.690377][  T131] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000004
[   85.694444][  T131] RBP: 1ffff11008eecdd7 R08: ffff88804776b6d3 R09: 1ffff11008eed6da
[   85.698136][  T131] R10: dffffc0000000000 R11: ffffed1008eed6db R12: 0000000000000000
[   85.701989][  T131] R13: 0000000000000014 R14: 1ffff11008eed6dd R15: ffff88804776b6e8
[   85.706633][  T131] FS:  0000000000000000(0000) GS:ffff88808c812000(0000) knlGS:0000000000000000
[   85.711389][  T131] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.714228][  T131] CR2: 00007f4fb74f54c0 CR3: 0000000012378000 CR4: 0000000000352ef0
[   85.717705][  T131] Kernel panic - not syncing: Fatal exception
[   85.720779][  T131] Kernel Offset: disabled
[   85.722884][  T131] Rebooting in 86400 seconds..