program:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x4, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc018aa06, &(0x7f0000000100)={{&(0x7f0000790000/0x1000)=nil, 0x1000}, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x8, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="b4000000000000006111050000000000c40000fb000000009500000000000000c5b40692e6c04259d6ce3876ece31835d68eac7d78cc9bb519cbac2c"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x40f00, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x3000080, &(0x7f0000000280)=ANY=[], 0x1, 0x2e0, &(0x7f0000000880)="$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")
r2 = openat(0xffffffffffffff9c, 0x0, 0x48942, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r3, 0x4c09, 0x8000)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r5 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000180)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x0, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06864ce, &(0x7f0000000200)={r6, 0x0, 0x8, 0x8, 0x2, [0x0, 0x0, <r7=>0x0], [0x2, 0xf, 0x5, 0x5], [0x83, 0x2, 0xfffffffd, 0x101], [0x6, 0x463, 0x1, 0x6]})
r8 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
r9 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
r10 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000040)=[<r11=>0x0], 0x0, 0x0, 0x0, 0x1})
r12 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r9, 0xc06864a1, &(0x7f00000002c0)={0x0, 0x0, r11, <r13=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r12, 0xc06864ce, &(0x7f0000000080)={r13, 0x0, 0x0, 0x0, 0x0, [<r14=>0x0]})
ioctl$DRM_IOCTL_MODE_ADDFB2(r8, 0xc06864b8, &(0x7f0000002c80)={0x0, 0x101, 0xa, 0x30315559, 0x3, [r14], [], [0x0, 0x0, 0x10], [0x4000000000000]})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000280)={0x0, 0x2, 0x0, 0x68, 0x652fe77a073fbde7, [0x0, 0x0, <r15=>0x0], [0x618, 0x65, 0x2, 0x2], [0xfffff549, 0xff, 0x39, 0x7], [0x1, 0x23, 0x1000, 0xffffffff00000001]})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000300)={0x0, 0x6, 0x6, 0xccb3, 0x0, [<r16=>0x0], [0x48, 0x1, 0x8, 0x8], [0xfffff801, 0x9, 0x1ff, 0x7], [0x6, 0x3, 0xde1, 0x2]})
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000400)={0x6, 0xda, 0x7f, 0x9})
ioctl$DRM_IOCTL_MODE_ADDFB2(r2, 0xc06864b8, &(0x7f0000000380)={r6, 0x5, 0x8, 0x3, 0x0, [r7, r14, r15, r16], [0x9, 0xfffffffb, 0x8, 0x7cb], [0x6, 0x9, 0x7, 0x1000], [0x2, 0x8, 0xc000000, 0xe7]})

[   76.145068][ T4657] Bluetooth: hci0: command tx timeout
[   76.222404][ T5310] loop0: detected capacity change from 0 to 64
[   76.266619][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[   76.269311][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[   76.336900][ T1082] Buffer I/O error on dev loop0, logical block 8, lost async page write
[   76.340555][ T1082] Buffer I/O error on dev loop0, logical block 9, lost async page write
[   76.344270][ T1082] Buffer I/O error on dev loop0, logical block 10, lost async page write
[   76.350817][ T1082] Buffer I/O error on dev loop0, logical block 11, lost async page write
[   76.354317][ T1082] Buffer I/O error on dev loop0, logical block 16, lost async page write
[   76.359041][ T1082] Buffer I/O error on dev loop0, logical block 17, lost async page write
[   76.363248][ T1082] Buffer I/O error on dev loop0, logical block 18, lost async page write
[   76.368600][ T1082] Buffer I/O error on dev loop0, logical block 19, lost async page write
[   76.373586][ T5310] Buffer I/O error on dev loop0, logical block 62, lost sync page write
[   76.380062][ T5310] getblk(): invalid block size 512 requested
[   76.382894][ T5310] logical block size: 32768
[   76.390049][ T5310] CPU: 0 UID: 0 PID: 5310 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00256-g95d3481af6dc #0 PREEMPT(full) 
[   76.390081][ T5310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.390088][ T5310] Call Trace:
[   76.390093][ T5310]  <TASK>
[   76.390098][ T5310]  dump_stack_lvl+0x189/0x250
[   76.390203][ T5310]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.390220][ T5310]  ? __pfx__printk+0x10/0x10
[   76.390234][ T5310]  ? fs_reclaim_acquire+0x7d/0x100
[   76.390301][ T5310]  bdev_getblk+0x59e/0x670
[   76.390318][ T5310]  ? __pfx_wake_up_bit+0x10/0x10
[   76.390337][ T5310]  __bread_gfp+0x89/0x3c0
[   76.390351][ T5310]  hfs_mdb_commit+0xc0a/0x1160
[   76.390372][ T5310]  hfs_sync_fs+0x15/0x20
[   76.390384][ T5310]  sync_filesystem+0xeb/0x230
[   76.390400][ T5310]  hfs_reconfigure+0x66/0x270
[   76.390414][ T5310]  reconfigure_super+0x224/0x890
[   76.390431][ T5310]  vfs_fsconfig_locked+0x171/0x320
[   76.390449][ T5310]  __se_sys_fsconfig+0x78e/0x8d0
[   76.390466][ T5310]  ? __pfx___se_sys_fsconfig+0x10/0x10
[   76.390487][ T5310]  ? do_syscall_64+0xba/0x210
[   76.390528][ T5310]  ? __x64_sys_fsconfig+0x20/0xc0
[   76.390544][ T5310]  do_syscall_64+0xf6/0x210
[   76.390555][ T5310]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   76.390565][ T5310]  ? clear_bhb_loop+0x45/0xa0
[   76.390578][ T5310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.390588][ T5310] RIP: 0033:0x7f8f8718e969
[   76.390598][ T5310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.390607][ T5310] RSP: 002b:00007f8f835f5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[   76.390619][ T5310] RAX: ffffffffffffffda RBX: 00007f8f873b5fa0 RCX: 00007f8f8718e969
[   76.390627][ T5310] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[   76.390633][ T5310] RBP: 00007f8f87210ab1 R08: 0000000000000000 R09: 0000000000000000
[   76.390640][ T5310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.390646][ T5310] R13: 0000000000000000 R14: 00007f8f873b5fa0 R15: 00007ffee301d448
[   76.390663][ T5310]  </TASK>
[   76.390709][ T5310] hfs: unable to read volume bitmap
[   76.491450][ T5310] Buffer I/O error on dev loop0, logical block 2, lost async page write
[   76.502564][ T5310] ------------[ cut here ]------------
[   76.505450][ T5310] WARNING: CPU: 0 PID: 5310 at fs/buffer.c:1186 mark_buffer_dirty+0x2a9/0x410
[   76.509265][ T5310] Modules linked in:
[   76.514538][ T5310] CPU: 0 UID: 0 PID: 5310 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00256-g95d3481af6dc #0 PREEMPT(full) 
[   76.519808][ T5310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.524476][ T5310] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   76.527222][ T5310] Code: 4c 89 f7 e8 79 0d de ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 c4 34 fc ff e8 8f 18 7c ff eb 8c e8 88 18 7c ff 90 <0f> 0b 90 e9 95 fd ff ff e8 7a 18 7c ff 90 0f 0b 90 e9 bf fd ff ff
[   76.535648][ T5310] RSP: 0018:ffffc9000d2d7be8 EFLAGS: 00010287
[   76.538346][ T5310] RAX: ffffffff8243a7c8 RBX: ffff8880427cd2b8 RCX: 0000000000100000
[   76.541681][ T5310] RDX: ffffc9000dce2000 RSI: 000000000001102a RDI: 000000000001102b
[   76.545047][ T5310] RBP: 1ffff1100a488401 R08: ffff8880427cd2bf R09: 1ffff110084f9a57
[   76.548421][ T5310] R10: dffffc0000000000 R11: ffffed10084f9a58 R12: dffffc0000000000
[   76.551568][ T5310] R13: ffff888052442638 R14: ffff88804c77445b R15: ffff88804c774400
[   76.555099][ T5310] FS:  00007f8f835f56c0(0000) GS:ffff88808d6cb000(0000) knlGS:0000000000000000
[   76.558941][ T5310] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.561822][ T5310] CR2: 0000200000002c80 CR3: 0000000042000000 CR4: 0000000000352ef0
[   76.568073][ T5310] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   76.571464][ T5310] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   76.574995][ T5310] Call Trace:
[   76.576609][ T5310]  <TASK>
[   76.577928][ T5310]  hfs_mdb_commit+0x489/0x1160
[   76.579976][ T5310]  hfs_sync_fs+0x15/0x20
[   76.581995][ T5310]  sync_filesystem+0x1cc/0x230
[   76.584229][ T5310]  hfs_reconfigure+0x66/0x270
[   76.586518][ T5310]  reconfigure_super+0x224/0x890
[   76.588762][ T5310]  vfs_fsconfig_locked+0x171/0x320
[   76.591049][ T5310]  __se_sys_fsconfig+0x78e/0x8d0
[   76.593198][ T5310]  ? __pfx___se_sys_fsconfig+0x10/0x10
[   76.595692][ T5310]  ? do_syscall_64+0xba/0x210
[   76.597696][ T5310]  ? __x64_sys_fsconfig+0x20/0xc0
[   76.599684][ T5310]  do_syscall_64+0xf6/0x210
[   76.602334][ T5310]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   76.605310][ T5310]  ? clear_bhb_loop+0x45/0xa0
[   76.607460][ T5310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.610129][ T5310] RIP: 0033:0x7f8f8718e969
[   76.612207][ T5310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.623080][ T5310] RSP: 002b:00007f8f835f5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[   76.626973][ T5310] RAX: ffffffffffffffda RBX: 00007f8f873b5fa0 RCX: 00007f8f8718e969
[   76.630619][ T5310] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[   76.633843][ T5310] RBP: 00007f8f87210ab1 R08: 0000000000000000 R09: 0000000000000000
[   76.637359][ T5310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.640743][ T5310] R13: 0000000000000000 R14: 00007f8f873b5fa0 R15: 00007ffee301d448
[   76.644347][ T5310]  </TASK>
[   76.645967][ T5310] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   76.649035][ T5310] CPU: 0 UID: 0 PID: 5310 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00256-g95d3481af6dc #0 PREEMPT(full) 
[   76.654090][ T5310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.658159][ T5310] Call Trace:
[   76.659427][ T5310]  <TASK>
[   76.660595][ T5310]  dump_stack_lvl+0x99/0x250
[   76.662312][ T5310]  ? __asan_memcpy+0x40/0x70
[   76.664165][ T5310]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.666205][ T5310]  ? __pfx__printk+0x10/0x10
[   76.667963][ T5310]  panic+0x2db/0x790
[   76.669346][ T5310]  ? __pfx_panic+0x10/0x10
[   76.671238][ T5310]  ? show_trace_log_lvl+0x4fb/0x550
[   76.673822][ T5310]  __warn+0x31b/0x4b0
[   76.675536][ T5310]  ? mark_buffer_dirty+0x2a9/0x410
[   76.677825][ T5310]  ? mark_buffer_dirty+0x2a9/0x410
[   76.680041][ T5310]  report_bug+0x2be/0x4f0
[   76.682027][ T5310]  ? mark_buffer_dirty+0x2a9/0x410
[   76.684313][ T5310]  ? mark_buffer_dirty+0x2a9/0x410
[   76.686563][ T5310]  ? mark_buffer_dirty+0x2ab/0x410
[   76.688530][ T5310]  handle_bug+0x84/0x160
[   76.690472][ T5310]  exc_invalid_op+0x1a/0x50
[   76.692476][ T5310]  asm_exc_invalid_op+0x1a/0x20
[   76.694539][ T5310] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   76.696911][ T5310] Code: 4c 89 f7 e8 79 0d de ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 c4 34 fc ff e8 8f 18 7c ff eb 8c e8 88 18 7c ff 90 <0f> 0b 90 e9 95 fd ff ff e8 7a 18 7c ff 90 0f 0b 90 e9 bf fd ff ff
[   76.705001][ T5310] RSP: 0018:ffffc9000d2d7be8 EFLAGS: 00010287
[   76.707575][ T5310] RAX: ffffffff8243a7c8 RBX: ffff8880427cd2b8 RCX: 0000000000100000
[   76.710679][ T5310] RDX: ffffc9000dce2000 RSI: 000000000001102a RDI: 000000000001102b
[   76.713583][ T5310] RBP: 1ffff1100a488401 R08: ffff8880427cd2bf R09: 1ffff110084f9a57
[   76.716803][ T5310] R10: dffffc0000000000 R11: ffffed10084f9a58 R12: dffffc0000000000
[   76.720227][ T5310] R13: ffff888052442638 R14: ffff88804c77445b R15: ffff88804c774400
[   76.723812][ T5310]  ? mark_buffer_dirty+0x2a8/0x410
[   76.726164][ T5310]  ? mark_buffer_dirty+0x2a8/0x410
[   76.728430][ T5310]  hfs_mdb_commit+0x489/0x1160
[   76.730632][ T5310]  hfs_sync_fs+0x15/0x20
[   76.732400][ T5310]  sync_filesystem+0x1cc/0x230
[   76.734360][ T5310]  hfs_reconfigure+0x66/0x270
[   76.736234][ T5310]  reconfigure_super+0x224/0x890
[   76.738360][ T5310]  vfs_fsconfig_locked+0x171/0x320
[   76.740714][ T5310]  __se_sys_fsconfig+0x78e/0x8d0
[   76.742970][ T5310]  ? __pfx___se_sys_fsconfig+0x10/0x10
[   76.745345][ T5310]  ? do_syscall_64+0xba/0x210
[   76.747438][ T5310]  ? __x64_sys_fsconfig+0x20/0xc0
[   76.749668][ T5310]  do_syscall_64+0xf6/0x210
[   76.751651][ T5310]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   76.754279][ T5310]  ? clear_bhb_loop+0x45/0xa0
[   76.756275][ T5310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.758858][ T5310] RIP: 0033:0x7f8f8718e969
[   76.760803][ T5310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.769064][ T5310] RSP: 002b:00007f8f835f5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[   76.772759][ T5310] RAX: ffffffffffffffda RBX: 00007f8f873b5fa0 RCX: 00007f8f8718e969
[   76.776091][ T5310] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[   76.779424][ T5310] RBP: 00007f8f87210ab1 R08: 0000000000000000 R09: 0000000000000000
[   76.783005][ T5310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.786458][ T5310] R13: 0000000000000000 R14: 00007f8f873b5fa0 R15: 00007ffee301d448
[   76.790103][ T5310]  </TASK>
[   76.791877][ T5310] Kernel Offset: disabled
[   76.793939][ T5310] Rebooting in 86400 seconds..