program:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8008, &(0x7f0000000100)=ANY=[@ANYRES64=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0xeaff)
write$uinput_user_dev(r1, &(0x7f0000000400)={'syz0\x00', {0x7, 0x5, 0x6, 0x8}, 0x1d, [0x2, 0xc95a, 0x6, 0x9, 0x7f, 0x401, 0x4, 0x7f, 0x0, 0xfffffff9, 0xfffffff2, 0x5f, 0xa, 0x3, 0xffff2d3b, 0x1dd2, 0x5, 0x7, 0x0, 0x80000000, 0x4, 0x7, 0x80000001, 0x3c5b, 0x3, 0x24, 0xffffffff, 0xfffffffe, 0x1f461e2c, 0x2, 0xe661, 0x2, 0x9, 0x5, 0x7fff, 0x4c74, 0x23, 0x4, 0x7, 0xa, 0x7f, 0x71, 0x7, 0x8, 0x3, 0x0, 0x5, 0x40, 0x91, 0x6, 0xfffffff9, 0x3, 0xb, 0x4, 0x8, 0x0, 0x80, 0x0, 0xa, 0x6, 0x8, 0xfffffff9, 0x3, 0x40], [0x10000007, 0xc, 0x12f, 0x8000, 0x10, 0x8, 0x129432e2, 0xf, 0xf9, 0x3, 0x2bf, 0x6c9, 0x9, 0xfffffffe, 0x3, 0x7691, 0xe4, 0x5, 0x80, 0xe, 0x312, 0x8000, 0xea4, 0xa, 0x4, 0x4000, 0x8000, 0xb, 0x401, 0x39f, 0x6, 0xfffffffd, 0x100, 0x1005, 0x2, 0x5f31, 0x3, 0x0, 0x5, 0x8, 0x9, 0x4, 0x7fff, 0x8, 0x9, 0x3ff, 0x5, 0x0, 0x1, 0x8000, 0x6, 0x2, 0x7f, 0x9, 0x5, 0x8, 0x8, 0x1, 0x7, 0xb, 0x9, 0x48c92690, 0x6, 0xff], [0x7, 0x6, 0x4, 0x64e, 0xfffffdfe, 0x80010002, 0x8d2, 0x9, 0x2, 0x7eff, 0x0, 0x5, 0xb, 0x0, 0x4000005, 0x5, 0x0, 0x1ef, 0x5, 0x7f, 0x86, 0x8001, 0x10000009, 0x3e7, 0x80000b, 0x5, 0x2, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x5, 0x3b, 0x200, 0x200, 0x7, 0x3, 0xfffffffe, 0x15, 0x0, 0x60000000, 0x6, 0x53cf697b, 0x5, 0x6, 0x54fe12d0, 0x0, 0x200, 0xffffffff, 0x400002, 0xfffffff9, 0x0, 0x6, 0x5, 0x0, 0x6, 0x3e, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x800], [0x2, 0xbb2f, 0x0, 0x7, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x401, 0x7, 0x3, 0x800, 0x10000, 0x6, 0x7fff, 0x8ffff, 0x5, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x5, 0xffffffff, 0x7fff7ffe, 0x5, 0x8, 0xc8, 0x3, 0x3, 0x6, 0x0, 0x8, 0x100, 0x4, 0x7fff, 0x2, 0x9, 0x6, 0x100, 0x10000, 0x5, 0x184d99e8, 0x2b91, 0xa1f, 0x7d, 0x9, 0x1, 0x6c1b, 0x0, 0x4, 0x28, 0xb1c, 0x4c400000, 0x200, 0xff, 0xfff]}, 0x45c)
write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000bc0)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x11}}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xe7c)

[   68.040847][ T4672] Bluetooth: hci0: command tx timeout
[   68.058937][ T5324] loop0: detected capacity change from 0 to 64
[   68.135990][ T5324] ------------[ cut here ]------------
[   68.139038][ T5324] WARNING: CPU: 0 PID: 5324 at fs/buffer.c:1183 mark_buffer_dirty+0x2a9/0x410
[   68.143839][ T5324] Modules linked in:
[   68.145568][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   68.149311][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.153967][ T5324] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   68.156275][ T5324] Code: 4c 89 f7 e8 69 08 dd ff 49 8b 3e be 40 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 14 ea fb ff e8 cf bc 75 ff eb 8c e8 c8 bc 75 ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ba bc 75 ff 90 0f 0b 90 e9 bf fd ff ff
[   68.163848][ T5324] RSP: 0018:ffffc9000d447608 EFLAGS: 00010283
[   68.166094][ T5324] RAX: ffffffff824a5698 RBX: ffff888041f1ce80 RCX: 0000000000100000
[   68.169811][ T5324] RDX: ffffc9000e352000 RSI: 000000000000046d RDI: 000000000000046e
[   68.173391][ T5324] RBP: ffff888011428001 R08: ffff888041f1ce87 R09: 1ffff110083e39d0
[   68.176805][ T5324] R10: dffffc0000000000 R11: ffffed10083e39d1 R12: ffff88804bd0e000
[   68.180430][ T5324] R13: ffff888032054910 R14: ffff888041f1ce80 R15: 000000000000000c
[   68.183862][ T5324] FS:  00007f00019f56c0(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000
[   68.187203][ T5324] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.189787][ T5324] CR2: 00007fb6feb909c0 CR3: 0000000042030000 CR4: 0000000000352ef0
[   68.192786][ T5324] Call Trace:
[   68.194015][ T5324]  <TASK>
[   68.195154][ T5324]  bfs_get_block+0x5da/0xae0
[   68.196990][ T5324]  __block_write_begin_int+0x6b5/0x1900
[   68.199291][ T5324]  ? filemap_get_entry+0xad/0x2f0
[   68.201282][ T5324]  ? __pfx_bfs_get_block+0x10/0x10
[   68.203368][ T5324]  ? __pfx___block_write_begin_int+0x10/0x10
[   68.205954][ T5324]  ? __filemap_get_folio+0x79f/0xaf0
[   68.208168][ T5324]  ? capable+0x89/0xe0
[   68.209936][ T5324]  ? __pfx_bfs_get_block+0x10/0x10
[   68.212152][ T5324]  block_write_begin+0x8a/0x120
[   68.214285][ T5324]  ? bfs_write_begin+0x1e/0xd0
[   68.216218][ T5324]  bfs_write_begin+0x35/0xd0
[   68.218163][ T5324]  generic_perform_write+0x2c5/0x900
[   68.220547][ T5324]  ? __pfx_generic_perform_write+0x10/0x10
[   68.222725][ T5324]  ? file_update_time+0x2da/0x490
[   68.224852][ T5324]  ? __generic_file_write_iter+0xf9/0x230
[   68.227376][ T5324]  ? generic_file_write_iter+0x103/0x550
[   68.229858][ T5324]  generic_file_write_iter+0x117/0x550
[   68.232187][ T5324]  ? __pfx_generic_file_write_iter+0x10/0x10
[   68.234779][ T5324]  ? __pfx___futex_wait+0x10/0x10
[   68.236900][ T5324]  ? __pfx_aa_file_perm+0x10/0x10
[   68.239038][ T5324]  ? __lock_acquire+0xab9/0xd20
[   68.241343][ T5324]  ? rcu_read_lock_any_held+0xb3/0x120
[   68.243670][ T5324]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   68.246223][ T5324]  vfs_write+0x5c9/0xb30
[   68.248125][ T5324]  ? __pfx_generic_file_write_iter+0x10/0x10
[   68.250936][ T5324]  ? __pfx_vfs_write+0x10/0x10
[   68.253051][ T5324]  ? __fget_files+0x2a/0x420
[   68.255437][ T5324]  __x64_sys_pwrite64+0x193/0x220
[   68.258103][ T5324]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[   68.261204][ T5324]  ? do_syscall_64+0xbe/0xfa0
[   68.263765][ T5324]  do_syscall_64+0xfa/0xfa0
[   68.266199][ T5324]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.269373][ T5324]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.272151][ T5324]  ? clear_bhb_loop+0x60/0xb0
[   68.274210][ T5324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.277080][ T5324] RIP: 0033:0x7f000558f749
[   68.279479][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.288370][ T5324] RSP: 002b:00007f00019f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   68.292146][ T5324] RAX: ffffffffffffffda RBX: 00007f00057e5fa0 RCX: 00007f000558f749
[   68.295719][ T5324] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000006
[   68.299497][ T5324] RBP: 00007f0005613f91 R08: 0000000000000000 R09: 0000000000000000
[   68.303583][ T5324] R10: 0000000000000e7c R11: 0000000000000246 R12: 0000000000000000
[   68.307099][ T5324] R13: 00007f00057e6038 R14: 00007f00057e5fa0 R15: 00007ffdd9676188
[   68.310691][ T5324]  </TASK>
[   68.312028][ T5324] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   68.314980][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   68.318801][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.323577][ T5324] Call Trace:
[   68.325094][ T5324]  <TASK>
[   68.326339][ T5324]  dump_stack_lvl+0x99/0x250
[   68.328047][ T5324]  ? __asan_memcpy+0x40/0x70
[   68.329889][ T5324]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.332077][ T5324]  ? __pfx__printk+0x10/0x10
[   68.334161][ T5324]  vpanic+0x237/0x6d0
[   68.335895][ T5324]  ? __pfx_vpanic+0x10/0x10
[   68.337695][ T5324]  panic+0xb9/0xc0
[   68.339160][ T5324]  ? __pfx_panic+0x10/0x10
[   68.341243][ T5324]  __warn+0x31b/0x4b0
[   68.343027][ T5324]  ? mark_buffer_dirty+0x2a9/0x410
[   68.345263][ T5324]  ? mark_buffer_dirty+0x2a9/0x410
[   68.347441][ T5324]  report_bug+0x2be/0x4f0
[   68.349357][ T5324]  ? mark_buffer_dirty+0x2a9/0x410
[   68.351452][ T5324]  ? mark_buffer_dirty+0x2a9/0x410
[   68.353577][ T5324]  ? mark_buffer_dirty+0x2ab/0x410
[   68.355813][ T5324]  handle_bug+0x84/0x160
[   68.357498][ T5324]  exc_invalid_op+0x1a/0x50
[   68.359444][ T5324]  asm_exc_invalid_op+0x1a/0x20
[   68.361392][ T5324] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   68.363832][ T5324] Code: 4c 89 f7 e8 69 08 dd ff 49 8b 3e be 40 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 14 ea fb ff e8 cf bc 75 ff eb 8c e8 c8 bc 75 ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ba bc 75 ff 90 0f 0b 90 e9 bf fd ff ff
[   68.370920][ T5324] RSP: 0018:ffffc9000d447608 EFLAGS: 00010283
[   68.373356][ T5324] RAX: ffffffff824a5698 RBX: ffff888041f1ce80 RCX: 0000000000100000
[   68.376401][ T5324] RDX: ffffc9000e352000 RSI: 000000000000046d RDI: 000000000000046e
[   68.379334][ T5324] RBP: ffff888011428001 R08: ffff888041f1ce87 R09: 1ffff110083e39d0
[   68.382497][ T5324] R10: dffffc0000000000 R11: ffffed10083e39d1 R12: ffff88804bd0e000
[   68.385593][ T5324] R13: ffff888032054910 R14: ffff888041f1ce80 R15: 000000000000000c
[   68.388900][ T5324]  ? mark_buffer_dirty+0x2a8/0x410
[   68.391193][ T5324]  ? mark_buffer_dirty+0x2a8/0x410
[   68.393079][ T5324]  bfs_get_block+0x5da/0xae0
[   68.394793][ T5324]  __block_write_begin_int+0x6b5/0x1900
[   68.396736][ T5324]  ? filemap_get_entry+0xad/0x2f0
[   68.398492][ T5324]  ? __pfx_bfs_get_block+0x10/0x10
[   68.400427][ T5324]  ? __pfx___block_write_begin_int+0x10/0x10
[   68.402354][ T5324]  ? __filemap_get_folio+0x79f/0xaf0
[   68.403982][ T5324]  ? capable+0x89/0xe0
[   68.405268][ T5324]  ? __pfx_bfs_get_block+0x10/0x10
[   68.406856][ T5324]  block_write_begin+0x8a/0x120
[   68.408362][ T5324]  ? bfs_write_begin+0x1e/0xd0
[   68.409888][ T5324]  bfs_write_begin+0x35/0xd0
[   68.411348][ T5324]  generic_perform_write+0x2c5/0x900
[   68.412988][ T5324]  ? __pfx_generic_perform_write+0x10/0x10
[   68.414794][ T5324]  ? file_update_time+0x2da/0x490
[   68.416528][ T5324]  ? __generic_file_write_iter+0xf9/0x230
[   68.418514][ T5324]  ? generic_file_write_iter+0x103/0x550
[   68.420555][ T5324]  generic_file_write_iter+0x117/0x550
[   68.422633][ T5324]  ? __pfx_generic_file_write_iter+0x10/0x10
[   68.425152][ T5324]  ? __pfx___futex_wait+0x10/0x10
[   68.427372][ T5324]  ? __pfx_aa_file_perm+0x10/0x10
[   68.429655][ T5324]  ? __lock_acquire+0xab9/0xd20
[   68.431830][ T5324]  ? rcu_read_lock_any_held+0xb3/0x120
[   68.434121][ T5324]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   68.436632][ T5324]  vfs_write+0x5c9/0xb30
[   68.438509][ T5324]  ? __pfx_generic_file_write_iter+0x10/0x10
[   68.441005][ T5324]  ? __pfx_vfs_write+0x10/0x10
[   68.443072][ T5324]  ? __fget_files+0x2a/0x420
[   68.444932][ T5324]  __x64_sys_pwrite64+0x193/0x220
[   68.447137][ T5324]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[   68.449473][ T5324]  ? do_syscall_64+0xbe/0xfa0
[   68.451529][ T5324]  do_syscall_64+0xfa/0xfa0
[   68.453239][ T5324]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.455181][ T5324]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.457659][ T5324]  ? clear_bhb_loop+0x60/0xb0
[   68.459733][ T5324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.462269][ T5324] RIP: 0033:0x7f000558f749
[   68.464256][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.471130][ T5324] RSP: 002b:00007f00019f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   68.473865][ T5324] RAX: ffffffffffffffda RBX: 00007f00057e5fa0 RCX: 00007f000558f749
[   68.476436][ T5324] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000006
[   68.479218][ T5324] RBP: 00007f0005613f91 R08: 0000000000000000 R09: 0000000000000000
[   68.482515][ T5324] R10: 0000000000000e7c R11: 0000000000000246 R12: 0000000000000000
[   68.485987][ T5324] R13: 00007f00057e6038 R14: 00007f00057e5fa0 R15: 00007ffdd9676188
[   68.489535][ T5324]  </TASK>
[   68.491333][ T5324] Kernel Offset: disabled
[   68.493300][ T5324] Rebooting in 86400 seconds..