EXT4-fs error (device loop5): ext4_mb_generate_buddy:757: group 0, block bitmap and bg descriptor inconsistent: 50 vs 25 free clusters
EXT4-fs error (device loop1): ext4_mb_generate_buddy:757: group 0, block bitmap and bg descriptor inconsistent: 50 vs 25 free clusters
==================================================================
BUG: KASAN: out-of-bounds in memmove include/linux/string.h:391 [inline]
BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x1863/0x3860 fs/ext4/xattr.c:1732
Read of size 18446744073709551600 at addr ffff88809951f0d4 by task syz-executor.1/10974

CPU: 1 PID: 10974 Comm: syz-executor.1 Not tainted 4.14.232-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x14b/0x1e7 lib/dump_stack.c:58
 print_address_description.cold.6+0x9/0x1ca mm/kasan/report.c:252
 kasan_report_error mm/kasan/report.c:351 [inline]
 kasan_report mm/kasan/report.c:409 [inline]
 kasan_report.cold.7+0x11a/0x2d3 mm/kasan/report.c:393
 check_memory_region_inline mm/kasan/kasan.c:260 [inline]
 check_memory_region+0x13c/0x1b0 mm/kasan/kasan.c:267
 memmove+0x23/0x50 mm/kasan/kasan.c:293
 memmove include/linux/string.h:391 [inline]
 ext4_xattr_set_entry+0x1863/0x3860 fs/ext4/xattr.c:1732
 ext4_xattr_ibody_inline_set+0x70/0x290 fs/ext4/xattr.c:2221
 ext4_destroy_inline_data_nolock+0x1b6/0x460 fs/ext4/inline.c:440
 ext4_convert_inline_data_nolock+0x12a/0xb70 fs/ext4/inline.c:1213
 ext4_convert_inline_data+0x296/0x3b0 fs/ext4/inline.c:2001
 ext4_fallocate+0xdd/0x19f0 fs/ext4/extents.c:4964
 vfs_fallocate+0x2ba/0x770 fs/open.c:319
 SYSC_fallocate fs/open.c:342 [inline]
 SyS_fallocate+0x3f/0x60 fs/open.c:336
 do_syscall_64+0x1c7/0x5b0 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x466459
RSP: 002b:00007fae0ecc3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
RAX: ffffffffffffffda RBX: 000000000056c008 RCX: 0000000000466459
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
RBP: 00000000004bf9fb R08: 0000000000000000 R09: 0000000000000000
R10: 000000000000bb89 R11: 0000000000000246 R12: 000000000056c008
R13: 00007ffcd1856f7f R14: 00007fae0ecc3300 R15: 0000000000022000

The buggy address belongs to the page:
page:ffffea00026547c0 count:2 mapcount:0 mapping:ffff8880b1950528 index:0x8
flags: 0xfff0000001107c(referenced|uptodate|dirty|lru|active|private|mappedtodisk)
raw: 00fff0000001107c ffff8880b1950528 0000000000000008 00000002ffffffff
raw: ffffea00027fa220 ffffea0002ce6a60 ffff88808ab4bd20 ffff8880b5fd6a00
page dumped because: kasan: bad access detected
page->mem_cgroup:ffff8880b5fd6a00

Memory state around the buggy address:
 ffff88809951ef80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
 ffff88809951f000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
>ffff88809951f080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
                                                 ^
 ffff88809951f100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 ffff88809951f180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
==================================================================