program:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20081e, &(0x7f0000000100), 0x1, 0x502, &(0x7f0000000a00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x3920e, r0, 0x2, 0x0, 0x2}) (fail_nth: 21)

[   85.558276][   T46] Bluetooth: hci0: command tx timeout
[   85.654477][ T5344] loop0: detected capacity change from 0 to 512
[   85.771471][ T5344] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.800955][ T5344] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.812156][   T25] audit: type=1800 audit(1764970048.331:2): pid=5344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=15 res=0 errno=0
[   85.825326][ T5344] FAULT_INJECTION: forcing a failure.
[   85.825326][ T5344] name failslab, interval 1, probability 0, space 0, times 1
[   85.841783][   T25] audit: type=1800 audit(1764970048.341:3): pid=5344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file2" dev="loop0" ino=16 res=0 errno=0
[   85.860141][ T5344] CPU: 0 UID: 0 PID: 5344 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.860159][ T5344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.860167][ T5344] Call Trace:
[   85.860172][ T5344]  <TASK>
[   85.860178][ T5344]  dump_stack_lvl+0x189/0x250
[   85.860343][ T5344]  ? __pfx____ratelimit+0x10/0x10
[   85.860425][ T5344]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.860439][ T5344]  ? __pfx__printk+0x10/0x10
[   85.860459][ T5344]  ? __pfx___might_resched+0x10/0x10
[   85.860479][ T5344]  ? fs_reclaim_acquire+0x7d/0x100
[   85.860533][ T5344]  should_fail_ex+0x414/0x560
[   85.860554][ T5344]  should_failslab+0xa8/0x100
[   85.860574][ T5344]  __kmalloc_noprof+0xcb/0x800
[   85.860588][ T5344]  ? ext4_find_extent+0x207/0xcc0
[   85.860606][ T5344]  ext4_find_extent+0x207/0xcc0
[   85.860630][ T5344]  ext4_ext_map_blocks+0x278/0x69c0
[   85.860654][ T5344]  ? is_bpf_text_address+0x26/0x2b0
[   85.860675][ T5344]  ? is_bpf_text_address+0x292/0x2b0
[   85.860714][ T5344]  ? kernel_text_address+0xa5/0xe0
[   85.860740][ T5344]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   85.860758][ T5344]  ? __lock_acquire+0x6b6/0x2cf0
[   85.860799][ T5344]  ext4_map_query_blocks+0x135/0x9f0
[   85.860825][ T5344]  ? __pfx_ext4_map_query_blocks+0x10/0x10
[   85.860842][ T5344]  ? rcu_is_watching+0x15/0xb0
[   85.860863][ T5344]  ? down_read+0x274/0x2e0
[   85.860908][ T5344]  ? ext4_map_blocks+0x32d/0x16f0
[   85.860928][ T5344]  ext4_map_blocks+0x4b8/0x16f0
[   85.860944][ T5344]  ? percpu_ref_get_many+0x19/0x140
[   85.860974][ T5344]  ? __pfx_ext4_map_blocks+0x10/0x10
[   85.860996][ T5344]  ? rcu_is_watching+0x15/0xb0
[   85.861025][ T5344]  _ext4_get_block+0x1fa/0x4c0
[   85.861046][ T5344]  ? __pfx__ext4_get_block+0x10/0x10
[   85.861067][ T5344]  ? _raw_spin_unlock+0x28/0x50
[   85.861084][ T5344]  ? create_empty_buffers+0x465/0x530
[   85.861106][ T5344]  mext_folio_mkwrite+0x188/0x290
[   85.861130][ T5344]  ext4_move_extents+0x2b9a/0x3830
[   85.861146][ T5344]  ? __lock_acquire+0x6b6/0x2cf0
[   85.861188][ T5344]  ? __pfx_ext4_move_extents+0x10/0x10
[   85.861212][ T5344]  ? rcu_read_lock_any_held+0xb3/0x120
[   85.861242][ T5344]  ? sb_start_write+0x114/0x1c0
[   85.861258][ T5344]  ? mnt_want_write_file+0x164/0x200
[   85.861276][ T5344]  ext4_ioctl+0x2cf9/0x4760
[   85.861298][ T5344]  ? __pfx_ext4_ioctl+0x10/0x10
[   85.861314][ T5344]  ? is_bpf_text_address+0x26/0x2b0
[   85.861337][ T5344]  ? is_bpf_text_address+0x292/0x2b0
[   85.861354][ T5344]  ? is_bpf_text_address+0x26/0x2b0
[   85.861375][ T5344]  ? kernel_text_address+0xa5/0xe0
[   85.861394][ T5344]  ? __kernel_text_address+0xd/0x40
[   85.861411][ T5344]  ? unwind_get_return_address+0x4d/0x90
[   85.861426][ T5344]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.861440][ T5344]  ? arch_stack_walk+0xfc/0x150
[   85.861466][ T5344]  ? stack_trace_save+0x9c/0xe0
[   85.861482][ T5344]  ? stack_depot_save_flags+0x40/0x850
[   85.861499][ T5344]  ? format_decode+0xd0/0xe10
[   85.861519][ T5344]  ? kasan_save_track+0x4f/0x80
[   85.861533][ T5344]  ? kasan_save_track+0x3e/0x80
[   85.861547][ T5344]  ? __kasan_save_free_info+0x46/0x50
[   85.861559][ T5344]  ? __kasan_slab_free+0x5c/0x80
[   85.861573][ T5344]  ? kfree+0x1c0/0x660
[   85.861585][ T5344]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   85.861603][ T5344]  ? security_file_ioctl+0xcb/0x2d0
[   85.861619][ T5344]  ? __se_sys_ioctl+0x47/0x170
[   85.861633][ T5344]  ? do_syscall_64+0xfa/0xf80
[   85.861644][ T5344]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.861673][ T5344]  ? file_ioctl+0x22d/0x780
[   85.861691][ T5344]  ? __pfx_file_ioctl+0x10/0x10
[   85.861720][ T5344]  ? kasan_quarantine_put+0xdd/0x220
[   85.861735][ T5344]  ? lockdep_hardirqs_on+0x98/0x140
[   85.861763][ T5344]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   85.861797][ T5344]  ? do_vfs_ioctl+0xb33/0x1430
[   85.861811][ T5344]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   85.861830][ T5344]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   85.861865][ T5344]  ? __mutex_unlock_slowpath+0x1a1/0x730
[   85.861895][ T5344]  ? __fget_files+0x2a/0x420
[   85.861918][ T5344]  ? __fget_files+0x3a0/0x420
[   85.861936][ T5344]  ? __fget_files+0x2a/0x420
[   85.861958][ T5344]  ? bpf_lsm_file_ioctl+0x9/0x20
[   85.861977][ T5344]  ? __pfx_ext4_ioctl+0x10/0x10
[   85.861994][ T5344]  __se_sys_ioctl+0xfc/0x170
[   85.862012][ T5344]  do_syscall_64+0xfa/0xf80
[   85.862025][ T5344]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.862038][ T5344]  ? clear_bhb_loop+0x60/0xb0
[   85.862054][ T5344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.862067][ T5344] RIP: 0033:0x7f38fc78f7c9
[   85.862081][ T5344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.862092][ T5344] RSP: 002b:00007f38fd55d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.862108][ T5344] RAX: ffffffffffffffda RBX: 00007f38fc9e5fa0 RCX: 00007f38fc78f7c9
[   85.862118][ T5344] RDX: 0000200000000080 RSI: 00000000c028660f RDI: 0000000000000005
[   85.862126][ T5344] RBP: 00007f38fd55d090 R08: 0000000000000000 R09: 0000000000000000
[   85.862134][ T5344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   85.862142][ T5344] R13: 00007f38fc9e6038 R14: 00007f38fc9e5fa0 R15: 00007ffc63a1e8a8
[   85.862167][ T5344]  </TASK>
[   85.862454][ T5344] ------------[ cut here ]------------
[   86.100901][ T5344] kernel BUG at fs/ext4/extents.c:5683!
[   86.127017][ T5344] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[   86.130278][ T5344] CPU: 0 UID: 0 PID: 5344 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.134237][ T5344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.138762][ T5344] RIP: 0010:ext4_swap_extents+0x196c/0x19a0
[   86.141433][ T5344] Code: fe c1 38 c1 0f 8c 7e fe ff ff e8 1f 17 b3 ff e9 74 fe ff ff e8 b5 79 4b ff 90 0f 0b e8 ad 79 4b ff 90 0f 0b e8 a5 79 4b ff 90 <0f> 0b e8 9d 79 4b ff 90 0f 0b e8 95 79 4b ff 90 0f 0b e8 8d 79 4b
[   86.150282][ T5344] RSP: 0018:ffffc9000d4f72c0 EFLAGS: 00010293
[   86.153029][ T5344] RAX: ffffffff8275e17b RBX: 0000000000000000 RCX: ffff88800056c980
[   86.157272][ T5344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   86.161428][ T5344] RBP: dffffc0000000000 R08: ffff888043679547 R09: 1ffff110086cf2a8
[   86.165076][ T5344] R10: dffffc0000000000 R11: ffffed10086cf2a9 R12: 0000000000000001
[   86.168466][ T5344] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[   86.171842][ T5344] FS:  00007f38fd55d6c0(0000) GS:ffff88808d683000(0000) knlGS:0000000000000000
[   86.175803][ T5344] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.178573][ T5344] CR2: 00007ffff25f4c8c CR3: 000000001fdff000 CR4: 0000000000352ef0
[   86.182206][ T5344] Call Trace:
[   86.183919][ T5344]  <TASK>
[   86.185375][ T5344]  ? __pfx__ext4_get_block+0x10/0x10
[   86.187645][ T5344]  ? _raw_spin_unlock+0x28/0x50
[   86.189719][ T5344]  ? create_empty_buffers+0x465/0x530
[   86.192122][ T5344]  ? mext_folio_mkwrite+0x207/0x290
[   86.194161][ T5344]  ext4_move_extents+0x2c58/0x3830
[   86.196384][ T5344]  ? __lock_acquire+0x6b6/0x2cf0
[   86.198502][ T5344]  ? __pfx_ext4_move_extents+0x10/0x10
[   86.200810][ T5344]  ? rcu_read_lock_any_held+0xb3/0x120
[   86.203092][ T5344]  ? sb_start_write+0x114/0x1c0
[   86.205402][ T5344]  ? mnt_want_write_file+0x164/0x200
[   86.208030][ T5344]  ext4_ioctl+0x2cf9/0x4760
[   86.210380][ T5344]  ? __pfx_ext4_ioctl+0x10/0x10
[   86.213244][ T5344]  ? is_bpf_text_address+0x26/0x2b0
[   86.215545][ T5344]  ? is_bpf_text_address+0x292/0x2b0
[   86.217778][ T5344]  ? is_bpf_text_address+0x26/0x2b0
[   86.220099][ T5344]  ? kernel_text_address+0xa5/0xe0
[   86.222205][ T5344]  ? __kernel_text_address+0xd/0x40
[   86.224281][ T5344]  ? unwind_get_return_address+0x4d/0x90
[   86.226812][ T5344]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   86.229566][ T5344]  ? arch_stack_walk+0xfc/0x150
[   86.231913][ T5344]  ? stack_trace_save+0x9c/0xe0
[   86.234155][ T5344]  ? stack_depot_save_flags+0x40/0x850
[   86.237941][ T5344]  ? format_decode+0xd0/0xe10
[   86.240373][ T5344]  ? kasan_save_track+0x4f/0x80
[   86.243192][ T5344]  ? kasan_save_track+0x3e/0x80
[   86.245675][ T5344]  ? __kasan_save_free_info+0x46/0x50
[   86.248194][ T5344]  ? __kasan_slab_free+0x5c/0x80
[   86.250767][ T5344]  ? kfree+0x1c0/0x660
[   86.252696][ T5344]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   86.255326][ T5344]  ? security_file_ioctl+0xcb/0x2d0
[   86.257555][ T5344]  ? __se_sys_ioctl+0x47/0x170
[   86.259656][ T5344]  ? do_syscall_64+0xfa/0xf80
[   86.261643][ T5344]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.264283][ T5344]  ? file_ioctl+0x22d/0x780
[   86.266509][ T5344]  ? __pfx_file_ioctl+0x10/0x10
[   86.268898][ T5344]  ? kasan_quarantine_put+0xdd/0x220
[   86.271250][ T5344]  ? lockdep_hardirqs_on+0x98/0x140
[   86.273551][ T5344]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   86.275896][ T5344]  ? do_vfs_ioctl+0xb33/0x1430
[   86.278004][ T5344]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   86.280706][ T5344]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   86.283127][ T5344]  ? __mutex_unlock_slowpath+0x1a1/0x730
[   86.285453][ T5344]  ? __fget_files+0x2a/0x420
[   86.287344][ T5344]  ? __fget_files+0x3a0/0x420
[   86.289345][ T5344]  ? __fget_files+0x2a/0x420
[   86.291239][ T5344]  ? bpf_lsm_file_ioctl+0x9/0x20
[   86.293264][ T5344]  ? __pfx_ext4_ioctl+0x10/0x10
[   86.295277][ T5344]  __se_sys_ioctl+0xfc/0x170
[   86.297246][ T5344]  do_syscall_64+0xfa/0xf80
[   86.299341][ T5344]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.302244][ T5344]  ? clear_bhb_loop+0x60/0xb0
[   86.304828][ T5344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.307734][ T5344] RIP: 0033:0x7f38fc78f7c9
[   86.309676][ T5344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.318092][ T5344] RSP: 002b:00007f38fd55d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.322624][ T5344] RAX: ffffffffffffffda RBX: 00007f38fc9e5fa0 RCX: 00007f38fc78f7c9
[   86.326731][ T5344] RDX: 0000200000000080 RSI: 00000000c028660f RDI: 0000000000000005
[   86.330078][ T5344] RBP: 00007f38fd55d090 R08: 0000000000000000 R09: 0000000000000000
[   86.333392][ T5344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   86.336943][ T5344] R13: 00007f38fc9e6038 R14: 00007f38fc9e5fa0 R15: 00007ffc63a1e8a8
[   86.340278][ T5344]  </TASK>
[   86.341781][ T5344] Modules linked in:
[   86.344346][ T5344] ---[ end trace 0000000000000000 ]---
[   86.350833][ T5344] RIP: 0010:ext4_swap_extents+0x196c/0x19a0
[   86.353551][ T5344] Code: fe c1 38 c1 0f 8c 7e fe ff ff e8 1f 17 b3 ff e9 74 fe ff ff e8 b5 79 4b ff 90 0f 0b e8 ad 79 4b ff 90 0f 0b e8 a5 79 4b ff 90 <0f> 0b e8 9d 79 4b ff 90 0f 0b e8 95 79 4b ff 90 0f 0b e8 8d 79 4b
[   86.362645][ T5344] RSP: 0018:ffffc9000d4f72c0 EFLAGS: 00010293
[   86.366065][ T5344] RAX: ffffffff8275e17b RBX: 0000000000000000 RCX: ffff88800056c980
[   86.370044][ T5344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   86.373311][ T5344] RBP: dffffc0000000000 R08: ffff888043679547 R09: 1ffff110086cf2a8
[   86.376933][ T5344] R10: dffffc0000000000 R11: ffffed10086cf2a9 R12: 0000000000000001
[   86.381309][ T5344] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[   86.385393][ T5344] FS:  00007f38fd55d6c0(0000) GS:ffff88808d683000(0000) knlGS:0000000000000000
[   86.389762][ T5344] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.393692][ T5344] CR2: 00007ffff25f4c8c CR3: 000000001fdff000 CR4: 0000000000352ef0
[   86.397773][ T5344] Kernel panic - not syncing: Fatal exception
[   86.400708][ T5344] Kernel Offset: disabled
[   86.402719][ T5344] Rebooting in 86400 seconds..