program:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20081e, &(0x7f0000000100), 0x1, 0x502, &(0x7f0000000a00)="$eJzs3c9vI1cdAPCvnV9OmjZp6QEQokspLGi1TuJto6oHKCeEUCVEjyBtQ+KNothxFDulCXvY/g9IVOIER/4Azj3xJyC4cYEDEj8iULMSSFPNeLzrzdob7yaxs/HnI41m3ryxv+/t7rzn+W7iF8DYuhYR9yJiOiI+iIiF/Hwh3+Ld9pZe99nR3fXjo7vrhUiS9/9VyOrTc9H1mtQL+XuWIuLH34/4WeHxuM2Dw+21Wq261y7OLrXqu0vNg8ObW/W1zepmdadSWV1ZXX771luVc+vra/Xp9sFE2sBv/yJt1nxe192Pc/T/JDP1IE5qMiJ+eAHBRmEi78/0qBvCMylGxCsR8Xp2/y/ERPa3CQBcZUmyEMlCdxkAuOqKWQ6sUCznuYD5KBbL5XYO79WYK9YazdaNO439nY12rmwxpop3tmrV5TxXuBhThbS8kh0/LFdOlG9FxMsR8cuZ2axcXm/UNkb5wQcAxtgLJ+b//860538A4IorjboBAMDQmf8BYPyY/wFg/Jj/AWD8mP8BYPyY/wFg/Jj/AWCs/Oi999ItOc6//3rjw4P97caHNzeqze1yfX+9vN7Y2y1vNhqb2Xf21E97v1qjsbvyZux/tPid3WZrqXlweLve2N9p3c6+1/t2dWoovQIAnuTl1z79cyEi7r0zm23RtZaDuRqutuJZXjx7fu0Ahm9i1A0ARsZqXzC+zvCMLz0AV0SPJXofUXrkcT+/OkmS5GKbBVyg61+S/4dx1ZX/91PAMGbk/2F8DZr/Py0/ADx/kqQw6Jr/MeiFAMDlJscP9Hm+fyXf/y7/z4Gfbpy84pOLbBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcbp31f8v5WuDzUSyWyxEvRsRiTBXubNWqyxHxUkT8aWZqJi2vjLjNAMBZFf9eyNf/ur7wxvzJ2unC/ZlsHxE///X7v/pordXa+2N6/t8Pzrc+yc9XRtF+AOA0nXk623c9yH92dHe9sw2zPf/4XkSU2vGPj6bj+EH8yZjM9qWYioi5/xTycluhK3dxFvc+jogv9up/IeazHEh75dOT8dPYLw41fvGR+MWsrr1P/yy+8NSRk4VzaD481z5Nx593e91/xbiW7Xvf/6VshDq7fPxL32r9OBsDH8bvjH8Tfca/a4PGePMPP2gfzT5e93HElycjOrGPu8afTvxCn/hvDBj/L1/56uv96pLfRFyP3vG7Yy216rtLzYPDm1v1tc3qZnWnUlldWV1++9ZblaUsR73Ufzb45zs3XupXl/Z/rk/80in9/8aA/f/t/z74ydeeEP9bX+8VvxivPiF+Oid+c8D4a3O/L/WrS+Nv9Ox/R//+3xgw/l//dvjYsuEAwOg0Dw6312q16t4wDzofJIYa1MEVOEj/1VyCZvQ8+O6wYk3HU70qSZ4pVr8R4zyybsBl0L7Xk+peRNwfdWMAAAAAAAAAAAAAAICehvEbS6PuIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFfX5wEAAP//90HVog==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x3920e, r0, 0x2, 0x0, 0x2}) (fail_nth: 22)

[   85.956545][ T5348] loop0: detected capacity change from 0 to 512
[   86.110753][ T5348] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.133849][ T5348] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.168967][   T25] audit: type=1800 audit(1764970049.169:2): pid=5348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=15 res=0 errno=0
[   86.179107][ T5348] FAULT_INJECTION: forcing a failure.
[   86.179107][ T5348] name failslab, interval 1, probability 0, space 0, times 1
[   86.186986][ T5323] Bluetooth: hci0: command tx timeout
[   86.197674][ T5348] CPU: 0 UID: 0 PID: 5348 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.197693][ T5348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.197700][ T5348] Call Trace:
[   86.197706][ T5348]  <TASK>
[   86.197711][ T5348]  dump_stack_lvl+0x189/0x250
[   86.197833][ T5348]  ? __pfx____ratelimit+0x10/0x10
[   86.197875][ T5348]  ? __pfx_dump_stack_lvl+0x10/0x10
[   86.197883][ T5348]  ? __pfx__printk+0x10/0x10
[   86.197895][ T5348]  ? __pfx___might_resched+0x10/0x10
[   86.197903][ T5348]  ? fs_reclaim_acquire+0x7d/0x100
[   86.197943][ T5348]  should_fail_ex+0x414/0x560
[   86.197954][ T5348]  should_failslab+0xa8/0x100
[   86.197966][ T5348]  __kmalloc_noprof+0xcb/0x800
[   86.197975][ T5348]  ? ext4_find_extent+0x207/0xcc0
[   86.197989][ T5348]  ext4_find_extent+0x207/0xcc0
[   86.198006][ T5348]  ext4_ext_map_blocks+0x278/0x69c0
[   86.198028][ T5348]  ? is_bpf_text_address+0x26/0x2b0
[   86.198047][ T5348]  ? is_bpf_text_address+0x292/0x2b0
[   86.198064][ T5348]  ? kernel_text_address+0xa5/0xe0
[   86.198083][ T5348]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   86.198103][ T5348]  ? __lock_acquire+0x6b6/0x2cf0
[   86.198131][ T5348]  ext4_map_query_blocks+0x135/0x9f0
[   86.198153][ T5348]  ? __pfx_ext4_map_query_blocks+0x10/0x10
[   86.198165][ T5348]  ? rcu_is_watching+0x15/0xb0
[   86.198176][ T5348]  ? down_read+0x274/0x2e0
[   86.198209][ T5348]  ? ext4_map_blocks+0x32d/0x16f0
[   86.198222][ T5348]  ext4_map_blocks+0x4b8/0x16f0
[   86.198234][ T5348]  ? percpu_ref_get_many+0x19/0x140
[   86.198259][ T5348]  ? __pfx_ext4_map_blocks+0x10/0x10
[   86.198277][ T5348]  ? rcu_is_watching+0x15/0xb0
[   86.198297][ T5348]  _ext4_get_block+0x1fa/0x4c0
[   86.198313][ T5348]  ? __pfx__ext4_get_block+0x10/0x10
[   86.198329][ T5348]  ? _raw_spin_unlock+0x28/0x50
[   86.198342][ T5348]  ? create_empty_buffers+0x465/0x530
[   86.198357][ T5348]  mext_folio_mkwrite+0x188/0x290
[   86.198375][ T5348]  ext4_move_extents+0x2b9a/0x3830
[   86.198386][ T5348]  ? __lock_acquire+0x6b6/0x2cf0
[   86.198415][ T5348]  ? __pfx_ext4_move_extents+0x10/0x10
[   86.198432][ T5348]  ? rcu_read_lock_any_held+0xb3/0x120
[   86.198456][ T5348]  ? sb_start_write+0x114/0x1c0
[   86.198471][ T5348]  ? mnt_want_write_file+0x164/0x200
[   86.198483][ T5348]  ext4_ioctl+0x2cf9/0x4760
[   86.198501][ T5348]  ? __pfx_ext4_ioctl+0x10/0x10
[   86.198513][ T5348]  ? is_bpf_text_address+0x26/0x2b0
[   86.198530][ T5348]  ? is_bpf_text_address+0x292/0x2b0
[   86.198541][ T5348]  ? is_bpf_text_address+0x26/0x2b0
[   86.198556][ T5348]  ? kernel_text_address+0xa5/0xe0
[   86.198570][ T5348]  ? __kernel_text_address+0xd/0x40
[   86.198584][ T5348]  ? unwind_get_return_address+0x4d/0x90
[   86.198596][ T5348]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   86.198606][ T5348]  ? arch_stack_walk+0xfc/0x150
[   86.198626][ T5348]  ? stack_trace_save+0x9c/0xe0
[   86.198636][ T5348]  ? stack_depot_save_flags+0x40/0x850
[   86.198650][ T5348]  ? format_decode+0xd0/0xe10
[   86.198665][ T5348]  ? kasan_save_track+0x4f/0x80
[   86.198678][ T5348]  ? kasan_save_track+0x3e/0x80
[   86.198688][ T5348]  ? __kasan_save_free_info+0x46/0x50
[   86.198698][ T5348]  ? __kasan_slab_free+0x5c/0x80
[   86.198710][ T5348]  ? kfree+0x1c0/0x660
[   86.198719][ T5348]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   86.198737][ T5348]  ? security_file_ioctl+0xcb/0x2d0
[   86.198753][ T5348]  ? __se_sys_ioctl+0x47/0x170
[   86.198764][ T5348]  ? do_syscall_64+0xfa/0xf80
[   86.198772][ T5348]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.198793][ T5348]  ? file_ioctl+0x22d/0x780
[   86.198807][ T5348]  ? __pfx_file_ioctl+0x10/0x10
[   86.198829][ T5348]  ? kasan_quarantine_put+0xdd/0x220
[   86.198840][ T5348]  ? lockdep_hardirqs_on+0x98/0x140
[   86.198862][ T5348]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   86.198878][ T5348]  ? do_vfs_ioctl+0xb33/0x1430
[   86.198888][ T5348]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   86.198901][ T5348]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   86.198922][ T5348]  ? __mutex_unlock_slowpath+0x1a1/0x730
[   86.198944][ T5348]  ? __fget_files+0x2a/0x420
[   86.198962][ T5348]  ? __fget_files+0x3a0/0x420
[   86.198975][ T5348]  ? __fget_files+0x2a/0x420
[   86.198992][ T5348]  ? bpf_lsm_file_ioctl+0x9/0x20
[   86.199006][ T5348]  ? __pfx_ext4_ioctl+0x10/0x10
[   86.199018][ T5348]  __se_sys_ioctl+0xfc/0x170
[   86.199031][ T5348]  do_syscall_64+0xfa/0xf80
[   86.199040][ T5348]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.199050][ T5348]  ? clear_bhb_loop+0x60/0xb0
[   86.199064][ T5348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.199074][ T5348] RIP: 0033:0x7fbdfdd8f7c9
[   86.199086][ T5348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.199101][ T5348] RSP: 002b:00007fbdfeb6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.199110][ T5348] RAX: ffffffffffffffda RBX: 00007fbdfdfe5fa0 RCX: 00007fbdfdd8f7c9
[   86.199115][ T5348] RDX: 0000200000000080 RSI: 00000000c028660f RDI: 0000000000000005
[   86.199119][ T5348] RBP: 00007fbdfeb6e090 R08: 0000000000000000 R09: 0000000000000000
[   86.199123][ T5348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   86.199127][ T5348] R13: 00007fbdfdfe6038 R14: 00007fbdfdfe5fa0 R15: 00007ffda7ad4a78
[   86.199142][ T5348]  </TASK>
[   86.199330][ T5348] ------------[ cut here ]------------
[   86.437427][ T5348] kernel BUG at fs/ext4/extents.c:5683!
[   86.442197][   T25] audit: type=1800 audit(1764970049.169:3): pid=5348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file2" dev="loop0" ino=16 res=0 errno=0
[   86.464152][ T5348] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[   86.466900][ T5348] CPU: 0 UID: 0 PID: 5348 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.471105][ T5348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.475838][ T5348] RIP: 0010:ext4_swap_extents+0x196c/0x19a0
[   86.478473][ T5348] Code: fe c1 38 c1 0f 8c 7e fe ff ff e8 1f 17 b3 ff e9 74 fe ff ff e8 b5 79 4b ff 90 0f 0b e8 ad 79 4b ff 90 0f 0b e8 a5 79 4b ff 90 <0f> 0b e8 9d 79 4b ff 90 0f 0b e8 95 79 4b ff 90 0f 0b e8 8d 79 4b
[   86.486594][ T5348] RSP: 0018:ffffc9000d52f2c0 EFLAGS: 00010293
[   86.489430][ T5348] RAX: ffffffff8275e17b RBX: 0000000000000000 RCX: ffff88800057c980
[   86.493016][ T5348] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   86.496611][ T5348] RBP: dffffc0000000000 R08: ffff888042f81547 R09: 1ffff110085f02a8
[   86.499996][ T5348] R10: dffffc0000000000 R11: ffffed10085f02a9 R12: 0000000000000001
[   86.503396][ T5348] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[   86.506698][ T5348] FS:  00007fbdfeb6e6c0(0000) GS:ffff88808d683000(0000) knlGS:0000000000000000
[   86.511075][ T5348] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.514416][ T5348] CR2: 00007fbdfeb1d9b8 CR3: 00000000114cf000 CR4: 0000000000352ef0
[   86.517900][ T5348] Call Trace:
[   86.519608][ T5348]  <TASK>
[   86.521042][ T5348]  ? __pfx__ext4_get_block+0x10/0x10
[   86.523421][ T5348]  ? _raw_spin_unlock+0x28/0x50
[   86.525434][ T5348]  ? create_empty_buffers+0x465/0x530
[   86.527668][ T5348]  ? mext_folio_mkwrite+0x207/0x290
[   86.529779][ T5348]  ext4_move_extents+0x2c58/0x3830
[   86.531953][ T5348]  ? __lock_acquire+0x6b6/0x2cf0
[   86.534125][ T5348]  ? __pfx_ext4_move_extents+0x10/0x10
[   86.536447][ T5348]  ? rcu_read_lock_any_held+0xb3/0x120
[   86.538892][ T5348]  ? sb_start_write+0x114/0x1c0
[   86.541257][ T5348]  ? mnt_want_write_file+0x164/0x200
[   86.544012][ T5348]  ext4_ioctl+0x2cf9/0x4760
[   86.546119][ T5348]  ? __pfx_ext4_ioctl+0x10/0x10
[   86.548310][ T5348]  ? is_bpf_text_address+0x26/0x2b0
[   86.550698][ T5348]  ? is_bpf_text_address+0x292/0x2b0
[   86.552993][ T5348]  ? is_bpf_text_address+0x26/0x2b0
[   86.555301][ T5348]  ? kernel_text_address+0xa5/0xe0
[   86.557543][ T5348]  ? __kernel_text_address+0xd/0x40
[   86.559707][ T5348]  ? unwind_get_return_address+0x4d/0x90
[   86.562025][ T5348]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   86.564815][ T5348]  ? arch_stack_walk+0xfc/0x150
[   86.566917][ T5348]  ? stack_trace_save+0x9c/0xe0
[   86.569018][ T5348]  ? stack_depot_save_flags+0x40/0x850
[   86.571554][ T5348]  ? format_decode+0xd0/0xe10
[   86.573907][ T5348]  ? kasan_save_track+0x4f/0x80
[   86.576313][ T5348]  ? kasan_save_track+0x3e/0x80
[   86.578744][ T5348]  ? __kasan_save_free_info+0x46/0x50
[   86.581021][ T5348]  ? __kasan_slab_free+0x5c/0x80
[   86.583235][ T5348]  ? kfree+0x1c0/0x660
[   86.585057][ T5348]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   86.587497][ T5348]  ? security_file_ioctl+0xcb/0x2d0
[   86.589827][ T5348]  ? __se_sys_ioctl+0x47/0x170
[   86.591925][ T5348]  ? do_syscall_64+0xfa/0xf80
[   86.593974][ T5348]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.596695][ T5348]  ? file_ioctl+0x22d/0x780
[   86.598916][ T5348]  ? __pfx_file_ioctl+0x10/0x10
[   86.601464][ T5348]  ? kasan_quarantine_put+0xdd/0x220
[   86.604269][ T5348]  ? lockdep_hardirqs_on+0x98/0x140
[   86.606617][ T5348]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   86.609146][ T5348]  ? do_vfs_ioctl+0xb33/0x1430
[   86.611324][ T5348]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   86.613777][ T5348]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   86.616018][ T5348]  ? __mutex_unlock_slowpath+0x1a1/0x730
[   86.618404][ T5348]  ? __fget_files+0x2a/0x420
[   86.620611][ T5348]  ? __fget_files+0x3a0/0x420
[   86.622982][ T5348]  ? __fget_files+0x2a/0x420
[   86.625398][ T5348]  ? bpf_lsm_file_ioctl+0x9/0x20
[   86.627614][ T5348]  ? __pfx_ext4_ioctl+0x10/0x10
[   86.629883][ T5348]  __se_sys_ioctl+0xfc/0x170
[   86.631895][ T5348]  do_syscall_64+0xfa/0xf80
[   86.633829][ T5348]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.636400][ T5348]  ? clear_bhb_loop+0x60/0xb0
[   86.638504][ T5348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.641104][ T5348] RIP: 0033:0x7fbdfdd8f7c9
[   86.643151][ T5348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.651342][ T5348] RSP: 002b:00007fbdfeb6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.654967][ T5348] RAX: ffffffffffffffda RBX: 00007fbdfdfe5fa0 RCX: 00007fbdfdd8f7c9
[   86.658861][ T5348] RDX: 0000200000000080 RSI: 00000000c028660f RDI: 0000000000000005
[   86.662576][ T5348] RBP: 00007fbdfeb6e090 R08: 0000000000000000 R09: 0000000000000000
[   86.666178][ T5348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   86.669702][ T5348] R13: 00007fbdfdfe6038 R14: 00007fbdfdfe5fa0 R15: 00007ffda7ad4a78
[   86.673159][ T5348]  </TASK>
[   86.674485][ T5348] Modules linked in:
[   86.676984][ T5348] ---[ end trace 0000000000000000 ]---
[   86.687239][ T5348] RIP: 0010:ext4_swap_extents+0x196c/0x19a0
[   86.689887][ T5348] Code: fe c1 38 c1 0f 8c 7e fe ff ff e8 1f 17 b3 ff e9 74 fe ff ff e8 b5 79 4b ff 90 0f 0b e8 ad 79 4b ff 90 0f 0b e8 a5 79 4b ff 90 <0f> 0b e8 9d 79 4b ff 90 0f 0b e8 95 79 4b ff 90 0f 0b e8 8d 79 4b
[   86.699187][ T5348] RSP: 0018:ffffc9000d52f2c0 EFLAGS: 00010293
[   86.703448][ T5348] RAX: ffffffff8275e17b RBX: 0000000000000000 RCX: ffff88800057c980
[   86.707442][ T5348] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   86.710828][ T5348] RBP: dffffc0000000000 R08: ffff888042f81547 R09: 1ffff110085f02a8
[   86.714740][ T5348] R10: dffffc0000000000 R11: ffffed10085f02a9 R12: 0000000000000001
[   86.718418][ T5348] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[   86.722779][ T5348] FS:  00007fbdfeb6e6c0(0000) GS:ffff88808d683000(0000) knlGS:0000000000000000
[   86.727053][ T5348] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.730561][ T5348] CR2: 00007fbdfeb1d9b8 CR3: 00000000114cf000 CR4: 0000000000352ef0
[   86.734578][ T5348] Kernel panic - not syncing: Fatal exception
[   86.737863][ T5348] Kernel Offset: disabled
[   86.740130][ T5348] Rebooting in 86400 seconds..