program:
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb86dd0000000015000000000000bbff02000000000000000000000000000186009078000000000000000000000000000aa78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af180200010000000500000000260004001818fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829ad62d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e98280409de1657275f716a2bf2915d1783e8eb4f7b0d1170f0ec4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978001d06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d0000005d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f0032107ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca8374000000000000000000000000000000000000145e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c0305d5170000dce9674a36da018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65f81ed00"/950], 0x0) (async)
r0 = socket(0x10, 0x2, 0x0) (async)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8008, &(0x7f0000000100)=ANY=[@ANYRES64=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='rdma.current\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000008c0), 0xfecc) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0xfecc)
getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, &(0x7f0000000000)=""/168, &(0x7f00000000c0)=0xa8) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0xe, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000080000001918641500000061108e00000000009500000000000000"], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) (async)
write(r0, &(0x7f0000000100)="1c0000001a049b8a140000003b9b30e6b3dc7c64d5524a1f009d2c03ecd95b02c09df0a6daab4eda8be056c8a5ad87ed6eab1c93bffd992116b867f9bfff0fefb7a47791d59f773ed217f9252765b01d", 0x50)

[  135.921496][ T5312] Bluetooth: hci0: command tx timeout
[  136.013113][ T5334] loop0: detected capacity change from 0 to 64
[  136.077624][ T5334] ------------[ cut here ]------------
[  136.081155][ T5334] !buffer_uptodate(bh)
[  136.081168][ T5334] WARNING: fs/buffer.c:1183 at mark_buffer_dirty+0x299/0x3f0, CPU#0: syz.0.0/5334
[  136.089881][ T5334] Modules linked in:
[  136.092273][ T5334] CPU: 0 UID: 0 PID: 5334 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  136.098947][ T5334] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  136.103507][ T5334] RIP: 0010:mark_buffer_dirty+0x299/0x3f0
[  136.105957][ T5334] Code: 4c 89 f7 e8 09 d7 da ff 49 8b 3e be 40 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 84 7f fb ff e8 5f f9 70 ff eb 8c e8 58 f9 70 ff 90 <0f> 0b 90 e9 a5 fd ff ff e8 4a f9 70 ff 90 0f 0b 90 e9 cf fd ff ff
[  136.114291][ T5334] RSP: 0018:ffffc9000835f608 EFLAGS: 00010293
[  136.117013][ T5334] RAX: ffffffff82538d98 RBX: ffff888031d5fae0 RCX: ffff888000a024c0
[  136.120545][ T5334] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  136.123983][ T5334] RBP: ffff888033100001 R08: ffff888031d5fae7 R09: 1ffff110063abf5c
[  136.127719][ T5334] R10: dffffc0000000000 R11: ffffed10063abf5d R12: ffff888055cde000
[  136.131114][ T5334] R13: ffff88801c8e8740 R14: ffff888031d5fae0 R15: 0000000000000010
[  136.134721][ T5334] FS:  00007f387eaf26c0(0000) GS:ffff88808ccea000(0000) knlGS:0000000000000000
[  136.138733][ T5334] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  136.141681][ T5334] CR2: 0000200000001000 CR3: 0000000011a18000 CR4: 0000000000352ef0
[  136.145392][ T5334] Call Trace:
[  136.147022][ T5334]  <TASK>
[  136.148403][ T5334]  bfs_get_block+0x5da/0xae0
[  136.150514][ T5334]  __block_write_begin_int+0x6c6/0x1910
[  136.153098][ T5334]  ? __pfx_bfs_get_block+0x10/0x10
[  136.155568][ T5334]  ? __pfx___block_write_begin_int+0x10/0x10
[  136.158161][ T5334]  ? __pfx_bfs_get_block+0x10/0x10
[  136.160554][ T5334]  block_write_begin+0x8d/0x120
[  136.162763][ T5334]  ? bfs_write_begin+0x1e/0xd0
[  136.165052][ T5334]  bfs_write_begin+0x35/0xd0
[  136.167130][ T5334]  generic_perform_write+0x2e2/0x8f0
[  136.169609][ T5334]  ? __pfx_generic_perform_write+0x10/0x10
[  136.172239][ T5334]  ? file_update_time_flags+0x2cb/0x4d0
[  136.174888][ T5334]  ? __generic_file_write_iter+0xf9/0x230
[  136.177468][ T5334]  ? generic_file_write_iter+0x136/0x680
[  136.180035][ T5334]  generic_file_write_iter+0x14a/0x680
[  136.182544][ T5334]  ? add_lock_to_list+0xc7/0x100
[  136.186350][ T5334]  ? __pfx_generic_file_write_iter+0x10/0x10
[  136.189048][ T5334]  ? lockdep_unlock+0x5d/0xd0
[  136.191130][ T5334]  ? __lock_acquire+0x146e/0x2cf0
[  136.193401][ T5334]  ? __pfx_aa_file_perm+0x10/0x10
[  136.196196][ T5334]  ? vfs_write+0x227/0xb90
[  136.198220][ T5334]  ? vfs_write+0x227/0xb90
[  136.200266][ T5334]  vfs_write+0x61d/0xb90
[  136.202102][ T5334]  ? __pfx_vfs_write+0x10/0x10
[  136.204316][ T5334]  ? __fget_files+0x2a/0x420
[  136.206517][ T5334]  ksys_write+0x150/0x270
[  136.208544][ T5334]  ? __pfx_ksys_write+0x10/0x10
[  136.210776][ T5334]  do_syscall_64+0xe2/0xf80
[  136.212967][ T5334]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.215835][ T5334]  ? trace_irq_disable+0x37/0x100
[  136.218085][ T5334]  ? clear_bhb_loop+0x60/0xb0
[  136.220190][ T5334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.223013][ T5334] RIP: 0033:0x7f387db9aeb9
[  136.225696][ T5334] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  136.233851][ T5334] RSP: 002b:00007f387eaf2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  136.237700][ T5334] RAX: ffffffffffffffda RBX: 00007f387de15fa0 RCX: 00007f387db9aeb9
[  136.241336][ T5334] RDX: 000000000000fecc RSI: 00002000000008c0 RDI: 0000000000000005
[  136.244976][ T5334] RBP: 00007f387dc08c1f R08: 0000000000000000 R09: 0000000000000000
[  136.248561][ T5334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.252003][ T5334] R13: 00007f387de16038 R14: 00007f387de15fa0 R15: 00007ffebb8fcee8
[  136.255541][ T5334]  </TASK>
[  136.256950][ T5334] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  136.260029][ T5334] CPU: 0 UID: 0 PID: 5334 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  136.263930][ T5334] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  136.268391][ T5334] Call Trace:
[  136.269812][ T5334]  <TASK>
[  136.271116][ T5334]  vpanic+0x1e0/0x670
[  136.272944][ T5334]  panic+0xc5/0xd0
[  136.274602][ T5334]  ? __pfx_panic+0x10/0x10
[  136.276673][ T5334]  __warn+0x315/0x4a0
[  136.278397][ T5334]  ? mark_buffer_dirty+0x299/0x3f0
[  136.280656][ T5334]  ? mark_buffer_dirty+0x299/0x3f0
[  136.282860][ T5334]  __report_bug+0x29a/0x540
[  136.284941][ T5334]  ? filemap_get_entry+0xca/0x320
[  136.287250][ T5334]  ? mark_buffer_dirty+0x299/0x3f0
[  136.289611][ T5334]  ? __pfx___report_bug+0x10/0x10
[  136.291923][ T5334]  ? __pfx_folio_mark_accessed+0x10/0x10
[  136.294376][ T5334]  ? rcu_is_watching+0x15/0xb0
[  136.296507][ T5334]  ? mark_buffer_dirty+0x299/0x3f0
[  136.298742][ T5334]  report_bug+0x16a/0x220
[  136.300668][ T5334]  ? mark_buffer_dirty+0x299/0x3f0
[  136.302806][ T5334]  ? mark_buffer_dirty+0x29b/0x3f0
[  136.304918][ T5334]  handle_bug+0x98/0x200
[  136.306576][ T5334]  exc_invalid_op+0x1a/0x50
[  136.308417][ T5334]  asm_exc_invalid_op+0x1a/0x20
[  136.310469][ T5334] RIP: 0010:mark_buffer_dirty+0x299/0x3f0
[  136.313017][ T5334] Code: 4c 89 f7 e8 09 d7 da ff 49 8b 3e be 40 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 84 7f fb ff e8 5f f9 70 ff eb 8c e8 58 f9 70 ff 90 <0f> 0b 90 e9 a5 fd ff ff e8 4a f9 70 ff 90 0f 0b 90 e9 cf fd ff ff
[  136.321153][ T5334] RSP: 0018:ffffc9000835f608 EFLAGS: 00010293
[  136.323817][ T5334] RAX: ffffffff82538d98 RBX: ffff888031d5fae0 RCX: ffff888000a024c0
[  136.327263][ T5334] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  136.330667][ T5334] RBP: ffff888033100001 R08: ffff888031d5fae7 R09: 1ffff110063abf5c
[  136.334071][ T5334] R10: dffffc0000000000 R11: ffffed10063abf5d R12: ffff888055cde000
[  136.337352][ T5334] R13: ffff88801c8e8740 R14: ffff888031d5fae0 R15: 0000000000000010
[  136.340661][ T5334]  ? mark_buffer_dirty+0x298/0x3f0
[  136.342905][ T5334]  ? mark_buffer_dirty+0x298/0x3f0
[  136.345182][ T5334]  bfs_get_block+0x5da/0xae0
[  136.347262][ T5334]  __block_write_begin_int+0x6c6/0x1910
[  136.349616][ T5334]  ? __pfx_bfs_get_block+0x10/0x10
[  136.351839][ T5334]  ? __pfx___block_write_begin_int+0x10/0x10
[  136.354505][ T5334]  ? __pfx_bfs_get_block+0x10/0x10
[  136.356839][ T5334]  block_write_begin+0x8d/0x120
[  136.359049][ T5334]  ? bfs_write_begin+0x1e/0xd0
[  136.361193][ T5334]  bfs_write_begin+0x35/0xd0
[  136.363293][ T5334]  generic_perform_write+0x2e2/0x8f0
[  136.365553][ T5334]  ? __pfx_generic_perform_write+0x10/0x10
[  136.368178][ T5334]  ? file_update_time_flags+0x2cb/0x4d0
[  136.370620][ T5334]  ? __generic_file_write_iter+0xf9/0x230
[  136.373076][ T5334]  ? generic_file_write_iter+0x136/0x680
[  136.375506][ T5334]  generic_file_write_iter+0x14a/0x680
[  136.377937][ T5334]  ? add_lock_to_list+0xc7/0x100
[  136.380219][ T5334]  ? __pfx_generic_file_write_iter+0x10/0x10
[  136.382755][ T5334]  ? lockdep_unlock+0x5d/0xd0
[  136.384780][ T5334]  ? __lock_acquire+0x146e/0x2cf0
[  136.387062][ T5334]  ? __pfx_aa_file_perm+0x10/0x10
[  136.389199][ T5334]  ? vfs_write+0x227/0xb90
[  136.391018][ T5334]  ? vfs_write+0x227/0xb90
[  136.392813][ T5334]  vfs_write+0x61d/0xb90
[  136.394501][ T5334]  ? __pfx_vfs_write+0x10/0x10
[  136.396570][ T5334]  ? __fget_files+0x2a/0x420
[  136.398552][ T5334]  ksys_write+0x150/0x270
[  136.400434][ T5334]  ? __pfx_ksys_write+0x10/0x10
[  136.402588][ T5334]  do_syscall_64+0xe2/0xf80
[  136.404494][ T5334]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.407250][ T5334]  ? trace_irq_disable+0x37/0x100
[  136.409562][ T5334]  ? clear_bhb_loop+0x60/0xb0
[  136.411784][ T5334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.414417][ T5334] RIP: 0033:0x7f387db9aeb9
[  136.416489][ T5334] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  136.424934][ T5334] RSP: 002b:00007f387eaf2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  136.428872][ T5334] RAX: ffffffffffffffda RBX: 00007f387de15fa0 RCX: 00007f387db9aeb9
[  136.432432][ T5334] RDX: 000000000000fecc RSI: 00002000000008c0 RDI: 0000000000000005
[  136.435686][ T5334] RBP: 00007f387dc08c1f R08: 0000000000000000 R09: 0000000000000000
[  136.438862][ T5334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.442114][ T5334] R13: 00007f387de16038 R14: 00007f387de15fa0 R15: 00007ffebb8fcee8
[  136.445400][ T5334]  </TASK>
[  136.447057][ T5334] Kernel Offset: disabled
[  136.448867][ T5334] Rebooting in 86400 seconds..