program:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8008, &(0x7f0000000100)=ANY=[@ANYRES64=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000300)={0x0, {}, 0x0, {}, 0x20007, 0x0, 0x200000, 0xd, "22536af39b7c7cb7435b0a43852dbc3a9ada34cc97af10fd4fcca15748328c53096c2f359e9ba743d30b59c491a7b3e74d938981061383374a1d79471a2d2dfe", "0410b1617b6217917d72322c0c5aa9263626c0240010f9db74161ccff2c5cf5e", [0x3, 0x800]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x108)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000b80)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000bc0)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x11}}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r3, &(0x7f0000000140)='2', 0xfdef, 0xe7c)

[   75.789189][ T5334] Bluetooth: hci0: command tx timeout
[   75.876454][ T5354] loop0: detected capacity change from 0 to 64
[   75.920647][ T5354] loop0: detected capacity change from 64 to 0
[   75.927347][   T43] I/O error, dev loop0, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   75.932256][ T1039] I/O error, dev loop0, sector 9 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   75.937940][ T1039] I/O error, dev loop0, sector 10 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   75.958240][ T5354] ------------[ cut here ]------------
[   75.960997][ T5354] WARNING: CPU: 0 PID: 5354 at fs/buffer.c:1183 mark_buffer_dirty+0x2a9/0x410
[   75.968541][ T5354] Modules linked in:
[   75.971285][ T5354] CPU: 0 UID: 0 PID: 5354 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.975046][ T5354] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.979758][ T5354] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   75.982282][ T5354] Code: 4c 89 f7 e8 f9 48 dd ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 d4 02 fc ff e8 df 4c 78 ff eb 8c e8 d8 4c 78 ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ca 4c 78 ff 90 0f 0b 90 e9 bf fd ff ff
[   75.990635][ T5354] RSP: 0018:ffffc9000d477608 EFLAGS: 00010287
[   75.993207][ T5354] RAX: ffffffff82477068 RBX: ffff8880444af0e8 RCX: 0000000000100000
[   75.996612][ T5354] RDX: ffffc9000ddda000 RSI: 0000000000000504 RDI: 0000000000000505
[   76.001148][ T5354] RBP: ffff888033776001 R08: ffff8880444af0ef R09: 1ffff11008895e1d
[   76.004552][ T5354] R10: dffffc0000000000 R11: ffffed1008895e1e R12: ffff88804d179800
[   76.008061][ T5354] R13: ffff8880444ae488 R14: ffff8880444af0e8 R15: 000000000000000a
[   76.011820][ T5354] FS:  00007fb1ed5016c0(0000) GS:ffff88808d007000(0000) knlGS:0000000000000000
[   76.015917][ T5354] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.018930][ T5354] CR2: 00007f0236d909c0 CR3: 000000004366f000 CR4: 0000000000352ef0
[   76.023445][ T5354] Call Trace:
[   76.025370][ T5354]  <TASK>
[   76.026959][ T5354]  bfs_get_block+0x5da/0xae0
[   76.029716][ T5354]  __block_write_begin_int+0x6b2/0x1900
[   76.032169][ T5354]  ? __pfx_bfs_get_block+0x10/0x10
[   76.034519][ T5354]  ? __pfx___block_write_begin_int+0x10/0x10
[   76.037121][ T5354]  ? __filemap_get_folio+0x79f/0xaf0
[   76.039530][ T5354]  ? __pfx_bfs_get_block+0x10/0x10
[   76.041761][ T5354]  block_write_begin+0x8a/0x120
[   76.043886][ T5354]  ? bfs_write_begin+0x1e/0xd0
[   76.045813][ T5354]  bfs_write_begin+0x35/0xd0
[   76.047609][ T5354]  generic_perform_write+0x2c2/0x900
[   76.049824][ T5354]  ? __pfx_generic_perform_write+0x10/0x10
[   76.052171][ T5354]  ? file_update_time+0x2da/0x490
[   76.054287][ T5354]  ? __generic_file_write_iter+0xf9/0x230
[   76.056620][ T5354]  ? generic_file_write_iter+0x103/0x550
[   76.059066][ T5354]  generic_file_write_iter+0x117/0x550
[   76.061489][ T5354]  ? __pfx_generic_file_write_iter+0x10/0x10
[   76.064380][ T5354]  ? __pfx___futex_wait+0x10/0x10
[   76.066605][ T5354]  ? __pfx_aa_file_perm+0x10/0x10
[   76.068938][ T5354]  ? __lock_acquire+0xab9/0xd20
[   76.071136][ T5354]  ? rcu_read_lock_any_held+0xb3/0x120
[   76.073574][ T5354]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   76.076110][ T5354]  vfs_write+0x5c9/0xb30
[   76.078462][ T5354]  ? __pfx_generic_file_write_iter+0x10/0x10
[   76.081405][ T5354]  ? __pfx_vfs_write+0x10/0x10
[   76.083502][ T5354]  ? __fget_files+0x2a/0x420
[   76.085453][ T5354]  __x64_sys_pwrite64+0x193/0x220
[   76.087476][ T5354]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[   76.089819][ T5354]  ? rcu_is_watching+0x15/0xb0
[   76.092002][ T5354]  ? do_syscall_64+0xbe/0x3b0
[   76.093764][ T5354]  do_syscall_64+0xfa/0x3b0
[   76.095663][ T5354]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.097555][ T5354]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.099802][ T5354]  ? clear_bhb_loop+0x60/0xb0
[   76.101843][ T5354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.104329][ T5354] RIP: 0033:0x7fb1ec58eec9
[   76.106167][ T5354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.114457][ T5354] RSP: 002b:00007fb1ed501038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   76.117969][ T5354] RAX: ffffffffffffffda RBX: 00007fb1ec7e5fa0 RCX: 00007fb1ec58eec9
[   76.121700][ T5354] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000008
[   76.125507][ T5354] RBP: 00007fb1ec611f91 R08: 0000000000000000 R09: 0000000000000000
[   76.129326][ T5354] R10: 0000000000000e7c R11: 0000000000000246 R12: 0000000000000000
[   76.132906][ T5354] R13: 00007fb1ec7e6038 R14: 00007fb1ec7e5fa0 R15: 00007ffd71679ed8
[   76.136338][ T5354]  </TASK>
[   76.137683][ T5354] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   76.140933][ T5354] CPU: 0 UID: 0 PID: 5354 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   76.144983][ T5354] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.149746][ T5354] Call Trace:
[   76.151252][ T5354]  <TASK>
[   76.152606][ T5354]  dump_stack_lvl+0x99/0x250
[   76.154628][ T5354]  ? __asan_memcpy+0x40/0x70
[   76.156630][ T5354]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.159046][ T5354]  ? __pfx__printk+0x10/0x10
[   76.161094][ T5354]  vpanic+0x281/0x750
[   76.162862][ T5354]  ? __pfx__printk+0x10/0x10
[   76.164931][ T5354]  ? __pfx_vpanic+0x10/0x10
[   76.166908][ T5354]  ? is_bpf_text_address+0x26/0x2b0
[   76.169168][ T5354]  panic+0xb9/0xc0
[   76.170962][ T5354]  ? __pfx_panic+0x10/0x10
[   76.172918][ T5354]  __warn+0x31b/0x4b0
[   76.174689][ T5354]  ? mark_buffer_dirty+0x2a9/0x410
[   76.176920][ T5354]  ? mark_buffer_dirty+0x2a9/0x410
[   76.179184][ T5354]  report_bug+0x2be/0x4f0
[   76.181154][ T5354]  ? mark_buffer_dirty+0x2a9/0x410
[   76.183426][ T5354]  ? mark_buffer_dirty+0x2a9/0x410
[   76.185823][ T5354]  ? mark_buffer_dirty+0x2ab/0x410
[   76.188129][ T5354]  handle_bug+0x84/0x160
[   76.189997][ T5354]  exc_invalid_op+0x1a/0x50
[   76.191873][ T5354]  asm_exc_invalid_op+0x1a/0x20
[   76.193960][ T5354] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   76.196434][ T5354] Code: 4c 89 f7 e8 f9 48 dd ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 d4 02 fc ff e8 df 4c 78 ff eb 8c e8 d8 4c 78 ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ca 4c 78 ff 90 0f 0b 90 e9 bf fd ff ff
[   76.203889][ T5354] RSP: 0018:ffffc9000d477608 EFLAGS: 00010287
[   76.206698][ T5354] RAX: ffffffff82477068 RBX: ffff8880444af0e8 RCX: 0000000000100000
[   76.210157][ T5354] RDX: ffffc9000ddda000 RSI: 0000000000000504 RDI: 0000000000000505
[   76.213567][ T5354] RBP: ffff888033776001 R08: ffff8880444af0ef R09: 1ffff11008895e1d
[   76.216969][ T5354] R10: dffffc0000000000 R11: ffffed1008895e1e R12: ffff88804d179800
[   76.220340][ T5354] R13: ffff8880444ae488 R14: ffff8880444af0e8 R15: 000000000000000a
[   76.223745][ T5354]  ? mark_buffer_dirty+0x2a8/0x410
[   76.226052][ T5354]  ? mark_buffer_dirty+0x2a8/0x410
[   76.229099][ T5354]  bfs_get_block+0x5da/0xae0
[   76.231176][ T5354]  __block_write_begin_int+0x6b2/0x1900
[   76.233681][ T5354]  ? __pfx_bfs_get_block+0x10/0x10
[   76.235970][ T5354]  ? __pfx___block_write_begin_int+0x10/0x10
[   76.238683][ T5354]  ? __filemap_get_folio+0x79f/0xaf0
[   76.240979][ T5354]  ? __pfx_bfs_get_block+0x10/0x10
[   76.243034][ T5354]  block_write_begin+0x8a/0x120
[   76.245029][ T5354]  ? bfs_write_begin+0x1e/0xd0
[   76.246981][ T5354]  bfs_write_begin+0x35/0xd0
[   76.248881][ T5354]  generic_perform_write+0x2c2/0x900
[   76.251042][ T5354]  ? __pfx_generic_perform_write+0x10/0x10
[   76.253375][ T5354]  ? file_update_time+0x2da/0x490
[   76.255334][ T5354]  ? __generic_file_write_iter+0xf9/0x230
[   76.257754][ T5354]  ? generic_file_write_iter+0x103/0x550
[   76.260337][ T5354]  generic_file_write_iter+0x117/0x550
[   76.262756][ T5354]  ? __pfx_generic_file_write_iter+0x10/0x10
[   76.265395][ T5354]  ? __pfx___futex_wait+0x10/0x10
[   76.267628][ T5354]  ? __pfx_aa_file_perm+0x10/0x10
[   76.270168][ T5354]  ? __lock_acquire+0xab9/0xd20
[   76.272432][ T5354]  ? rcu_read_lock_any_held+0xb3/0x120
[   76.274861][ T5354]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   76.277562][ T5354]  vfs_write+0x5c9/0xb30
[   76.279418][ T5354]  ? __pfx_generic_file_write_iter+0x10/0x10
[   76.281881][ T5354]  ? __pfx_vfs_write+0x10/0x10
[   76.283960][ T5354]  ? __fget_files+0x2a/0x420
[   76.285941][ T5354]  __x64_sys_pwrite64+0x193/0x220
[   76.288180][ T5354]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[   76.290608][ T5354]  ? rcu_is_watching+0x15/0xb0
[   76.292700][ T5354]  ? do_syscall_64+0xbe/0x3b0
[   76.294748][ T5354]  do_syscall_64+0xfa/0x3b0
[   76.296773][ T5354]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.299001][ T5354]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.301587][ T5354]  ? clear_bhb_loop+0x60/0xb0
[   76.303991][ T5354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.306666][ T5354] RIP: 0033:0x7fb1ec58eec9
[   76.308645][ T5354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.316949][ T5354] RSP: 002b:00007fb1ed501038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   76.320470][ T5354] RAX: ffffffffffffffda RBX: 00007fb1ec7e5fa0 RCX: 00007fb1ec58eec9
[   76.323721][ T5354] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000008
[   76.326951][ T5354] RBP: 00007fb1ec611f91 R08: 0000000000000000 R09: 0000000000000000
[   76.330166][ T5354] R10: 0000000000000e7c R11: 0000000000000246 R12: 0000000000000000
[   76.333349][ T5354] R13: 00007fb1ec7e6038 R14: 00007fb1ec7e5fa0 R15: 00007ffd71679ed8
[   76.336583][ T5354]  </TASK>
[   76.338137][ T5354] Kernel Offset: disabled
[   76.339976][ T5354] Rebooting in 86400 seconds..