program:
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x4)
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xed, 0x474, &(0x7f0000000b80)="$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")
open(&(0x7f0000000100)='./bus\x00', 0x14927e, 0x1)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f00000003c0)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x14, 0xd, "ef359f413bb9386ff7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e7376b7a5ff537ed73ac58818d78c660e677df8dc905b90242b7c528a076d2f6a00400", "036c5bc6780820d1cbf7966d61fdcf335263bd9b0abdc2542ded71038259ca171ce1a311ef545032d71e14ef3dc177e9b48b001d00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x11)
pwritev2(r2, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x2000010, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000', @ANYRESDEC=0x0, @ANYRESDEC=0x0])
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r3, &(0x7f0000002380)={0x2020}, 0x2020)

[   85.096110][ T5285] Bluetooth: hci0: command tx timeout
[   85.187013][ T5319] loop0: detected capacity change from 0 to 512
[   85.224852][ T5319] EXT4-fs (loop0): invalid journal inode
[   85.249622][ T5319] EXT4-fs (loop0): can't get journal size
[   85.295836][ T5319] EXT4-fs (loop0): 1 truncate cleaned up
[   85.315431][ T5319] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.364662][ T5319] loop0: detected capacity change from 512 to 64
[   85.385239][ T5319] syz.0.0: attempt to access beyond end of device
[   85.385239][ T5319] loop0: rw=2049, sector=72, nr_sectors = 2 limit=64
[   85.399607][ T5319] EXT4-fs warning (device loop0): ext4_end_bio:372: I/O error 10 writing to inode 15 starting block 36)
[   85.406878][ T5319] Buffer I/O error on device loop0, logical block 36
[   85.409887][ T5319] syz.0.0: attempt to access beyond end of device
[   85.409887][ T5319] loop0: rw=2049, sector=78, nr_sectors = 2 limit=64
[   85.417467][ T5319] EXT4-fs warning (device loop0): ext4_end_bio:372: I/O error 10 writing to inode 15 starting block 39)
[   85.422348][ T5319] Buffer I/O error on device loop0, logical block 39
[   85.426857][ T5319] syz.0.0: attempt to access beyond end of device
[   85.426857][ T5319] loop0: rw=2049, sector=80, nr_sectors = 16 limit=64
[   85.432241][ T5319] EXT4-fs warning (device loop0): ext4_end_bio:372: I/O error 10 writing to inode 15 starting block 40)
[   85.438314][ T5319] Buffer I/O error on device loop0, logical block 40
[   85.441250][ T5319] Buffer I/O error on device loop0, logical block 41
[   85.443921][ T5319] Buffer I/O error on device loop0, logical block 42
[   85.446696][ T5319] Buffer I/O error on device loop0, logical block 43
[   85.452206][   T88] EXT4-fs error (device loop0): ext4_do_update_inode:5742: inode #15: comm kworker/u4:5: corrupted inode contents
[   85.460835][ T5319] Buffer I/O error on device loop0, logical block 44
[   85.463781][ T5319] Buffer I/O error on device loop0, logical block 45
[   85.467136][ T5319] Buffer I/O error on device loop0, logical block 46
[   85.471051][ T5319] Buffer I/O error on device loop0, logical block 47
[   85.481412][   T88] EXT4-fs error (device loop0): ext4_dirty_inode:6639: inode #15: comm kworker/u4:5: mark_inode_dirty error
[   85.492464][   T88] EXT4-fs error (device loop0): ext4_do_update_inode:5742: inode #15: comm kworker/u4:5: corrupted inode contents
[   85.498600][   T88] EXT4-fs error (device loop0): ext4_dirty_inode:6639: inode #15: comm kworker/u4:5: mark_inode_dirty error
[   85.604672][ T5319] EXT4-fs error (device loop0): ext4_do_update_inode:5742: inode #15: comm syz.0.0: corrupted inode contents
[   85.610359][ T5319] EXT4-fs error (device loop0): ext4_dirty_inode:6639: inode #15: comm syz.0.0: mark_inode_dirty error
[   85.617433][ T5319] ------------[ cut here ]------------
[   85.619961][ T5319] kernel BUG at fs/ext4/mballoc.c:4780!
[   85.622429][ T5319] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[   85.625463][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.629875][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.634442][ T5319] RIP: 0010:ext4_mb_use_inode_pa+0x6bf/0x720
[   85.637192][ T5319] Code: e8 36 be a3 ff 48 ba 00 00 00 00 00 fc ff df e9 d7 fa ff ff e8 92 95 34 ff 90 0f 0b e8 8a 95 34 ff 90 0f 0b e8 82 95 34 ff 90 <0f> 0b e8 7a 95 34 ff 90 0f 0b 48 8b 0c 24 48 83 c1 54 80 e1 07 80
[   85.646056][ T5319] RSP: 0018:ffffc90005fbe6a0 EFLAGS: 00010287
[   85.648733][ T5319] RAX: ffffffff8291abbe RBX: 00000000ffffffc6 RCX: 0000000000100000
[   85.652483][ T5319] RDX: ffffc90020802000 RSI: 0000000000011ab3 RDI: 0000000000011ab4
[   85.656350][ T5319] RBP: 1ffff110087c54b5 R08: ffff888043e2eefb R09: 1ffff110087c5ddf
[   85.659810][ T5319] R10: dffffc0000000000 R11: ffffed10087c5de0 R12: 0000000000000000
[   85.663184][ T5319] R13: 0000000000000058 R14: 1ffff110087c5de2 R15: ffff888043e2ef10
[   85.667091][ T5319] FS:  00007fa1eceda6c0(0000) GS:ffff88808c821000(0000) knlGS:0000000000000000
[   85.671029][ T5319] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.673725][ T5319] CR2: 00007f50ed9093a0 CR3: 00000000129fb000 CR4: 0000000000352ef0
[   85.677359][ T5319] Call Trace:
[   85.679190][ T5319]  <TASK>
[   85.680707][ T5319]  ext4_mb_use_preallocated+0x638/0x13e0
[   85.683260][ T5319]  ext4_mb_new_blocks+0x5a0/0x4530
[   85.685448][ T5319]  ? do_raw_spin_unlock+0x4d/0x210
[   85.687731][ T5319]  ? _raw_spin_unlock+0x28/0x50
[   85.690044][ T5319]  ? __pfx_ext4_new_meta_blocks+0x10/0x10
[   85.692830][ T5319]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[   85.695379][ T5319]  ? ext4_block_to_path+0x382/0x700
[   85.697512][ T5319]  ext4_ind_map_blocks+0xe96/0x22a0
[   85.699755][ T5319]  ? __pfx_ext4_ind_map_blocks+0x10/0x10
[   85.702577][ T5319]  ? kasan_save_track+0x4f/0x80
[   85.705458][ T5319]  ? file_write_and_wait_range+0x36e/0x440
[   85.708144][ T5319]  ? mmb_fsync_noflush+0x73/0x1d0
[   85.710302][ T5319]  ? down_write+0x16d/0x200
[   85.712244][ T5319]  ext4_map_create_blocks+0xbb/0x530
[   85.714508][ T5319]  ? ext4_fc_track_inode+0xf3/0x3f0
[   85.717061][ T5319]  ext4_map_blocks+0x7e4/0x1240
[   85.719589][ T5319]  ? __pfx_ext4_map_blocks+0x10/0x10
[   85.722027][ T5319]  ? __ext4_journal_ensure_credits+0x30/0x450
[   85.724584][ T5319]  ext4_do_writepages+0x19e3/0x47a0
[   85.726866][ T5319]  ? __pfx_ext4_do_writepages+0x10/0x10
[   85.729466][ T5319]  ? rcu_is_watching+0x15/0xb0
[   85.732100][ T5319]  ? trace_irq_enable+0x3b/0x140
[   85.734559][ T5319]  ? trace_irq_enable+0x3b/0x140
[   85.736718][ T5319]  ? debug_object_free+0x29c/0x340
[   85.739096][ T5319]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[   85.741736][ T5319]  ? do_raw_spin_lock+0x12b/0x2f0
[   85.744252][ T5319]  ? ext4_writepages+0x205/0x3b0
[   85.746789][ T5319]  ? rcu_is_watching+0x15/0xb0
[   85.749013][ T5319]  ? lock_acquire+0x5f/0x350
[   85.751097][ T5319]  ? preempt_count_add+0x91/0x190
[   85.753440][ T5319]  ext4_writepages+0x241/0x3b0
[   85.755703][ T5319]  ? __pfx_ext4_writepages+0x10/0x10
[   85.758357][ T5319]  ? rcu_is_watching+0x15/0xb0
[   85.760673][ T5319]  ? rcu_is_watching+0x15/0xb0
[   85.762811][ T5319]  ? __pfx_ext4_writepages+0x10/0x10
[   85.765320][ T5319]  do_writepages+0x338/0x560
[   85.767572][ T5319]  ? rcu_is_watching+0x15/0xb0
[   85.769768][ T5319]  ? do_raw_spin_unlock+0x4d/0x210
[   85.771861][ T5319]  file_write_and_wait_range+0x36e/0x440
[   85.774180][ T5319]  ? trace_irq_enable+0x3b/0x140
[   85.776320][ T5319]  ? __pfx_file_write_and_wait_range+0x10/0x10
[   85.779264][ T5319]  ? __folio_put+0x4b3/0x590
[   85.781623][ T5319]  ? __pfx_ext4_write_begin+0x10/0x10
[   85.784128][ T5319]  mmb_fsync_noflush+0x73/0x1d0
[   85.786316][ T5319]  ext4_sync_file+0x41a/0xd00
[   85.788614][ T5319]  ? __pfx_ext4_sync_file+0x10/0x10
[   85.791396][ T5319]  ? __pfx_generic_perform_write+0x10/0x10
[   85.794349][ T5319]  ? sync_lazytime+0x5a/0x4c0
[   85.796488][ T5319]  ext4_buffered_write_iter+0x2c7/0x370
[   85.798968][ T5319]  ext4_file_write_iter+0x947/0x1c70
[   85.801523][ T5319]  ? futex_unqueue+0x22/0x240
[   85.803995][ T5319]  ? futex_unqueue+0x211/0x240
[   85.806310][ T5319]  ? __futex_wait+0x1e1/0x400
[   85.808341][ T5319]  ? __futex_wait+0x358/0x400
[   85.810410][ T5319]  ? __pfx_aa_file_perm+0x10/0x10
[   85.812989][ T5319]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   85.815975][ T5319]  ? __pfx___futex_wait+0x10/0x10
[   85.818268][ T5319]  do_iter_readv_writev+0x612/0x8c0
[   85.820494][ T5319]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   85.823007][ T5319]  ? preempt_count_add+0x91/0x190
[   85.825556][ T5319]  vfs_writev+0x343/0x990
[   85.827859][ T5319]  ? __pfx_vfs_writev+0x10/0x10
[   85.830175][ T5319]  ? lock_release+0x4b/0x3c0
[   85.832245][ T5319]  ? __fget_files+0x3a2/0x420
[   85.834380][ T5319]  ? __fget_files+0x2a/0x420
[   85.836407][ T5319]  __se_sys_pwritev2+0x177/0x2a0
[   85.838824][ T5319]  ? __pfx___se_sys_pwritev2+0x10/0x10
[   85.841525][ T5319]  ? rcu_is_watching+0x15/0xb0
[   85.843689][ T5319]  ? __x64_sys_pwritev2+0x20/0xc0
[   85.845937][ T5319]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.848715][ T5319]  do_syscall_64+0x174/0x580
[   85.851088][ T5319]  ? trace_irq_disable+0x3b/0x140
[   85.853800][ T5319]  ? clear_bhb_loop+0x40/0x90
[   85.856054][ T5319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.858628][ T5319] RIP: 0033:0x7fa1ebf9ce59
[   85.860548][ T5319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   85.869553][ T5319] RSP: 002b:00007fa1eced9fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   85.873255][ T5319] RAX: ffffffffffffffda RBX: 00007fa1ec215fa0 RCX: 00007fa1ebf9ce59
[   85.876999][ T5319] RDX: 0000000000000001 RSI: 0000200000000cc0 RDI: 0000000000000006
[   85.881079][ T5319] RBP: 00007fa1ec032e6f R08: 000000000000000c R09: 0000000000000004
[   85.884628][ T5319] R10: 0000000000000fff R11: 0000000000000246 R12: 0000000000000000
[   85.888413][ T5319] R13: 00007fa1ec216038 R14: 00007fa1ec215fa0 R15: 00007ffd90de1088
[   85.892393][ T5319]  </TASK>
[   85.893814][ T5319] Modules linked in:
[   85.896697][ T5319] ---[ end trace 0000000000000000 ]---
[   85.900047][ T5319] RIP: 0010:ext4_mb_use_inode_pa+0x6bf/0x720
[   85.903281][ T5319] Code: e8 36 be a3 ff 48 ba 00 00 00 00 00 fc ff df e9 d7 fa ff ff e8 92 95 34 ff 90 0f 0b e8 8a 95 34 ff 90 0f 0b e8 82 95 34 ff 90 <0f> 0b e8 7a 95 34 ff 90 0f 0b 48 8b 0c 24 48 83 c1 54 80 e1 07 80
[   85.912157][ T5319] RSP: 0018:ffffc90005fbe6a0 EFLAGS: 00010287
[   85.915600][ T5319] RAX: ffffffff8291abbe RBX: 00000000ffffffc6 RCX: 0000000000100000
[   85.919029][ T5319] RDX: ffffc90020802000 RSI: 0000000000011ab3 RDI: 0000000000011ab4
[   85.922330][ T5319] RBP: 1ffff110087c54b5 R08: ffff888043e2eefb R09: 1ffff110087c5ddf
[   85.926503][ T5319] R10: dffffc0000000000 R11: ffffed10087c5de0 R12: 0000000000000000
[   85.930442][ T5319] R13: 0000000000000058 R14: 1ffff110087c5de2 R15: ffff888043e2ef10
[   85.933886][ T5319] FS:  00007fa1eceda6c0(0000) GS:ffff88808c821000(0000) knlGS:0000000000000000
[   85.937798][ T5319] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.941183][ T5319] CR2: 00007f50ed9093a0 CR3: 00000000129fb000 CR4: 0000000000352ef0
[   85.945157][ T5319] Kernel panic - not syncing: Fatal exception
[   85.948240][ T5319] Kernel Offset: disabled
[   85.950342][ T5319] Rebooting in 86400 seconds..