program:
syz_mount_image$bfs(&(0x7f00000001c0), &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4, &(0x7f0000000600)=ANY=[], 0x8, 0xad, &(0x7f0000000040)="$eJzs0btpA0EUBdC7H/xJ7ALcg3tw6twVbOjQkY3BjlSGOlArKmE7ULCpkhHLrkChEAhJcA7MzA3mwYW33q5e8pSUv6SUUu6SPGbKX98/nx/v490kyTJt7jPZv9y4ej4P486fp7x5y+L/4E8//HZ9la4fyuyChQEAgJPVeZ1TdfxQm6Q5VyMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA67ILAAD//1vZIlc=")
munmap(&(0x7f000045e000/0x1000)=nil, 0x1000)
mremap(&(0x7f00006e7000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000ffa000/0x4000)=nil)
munmap(&(0x7f0000a88000/0x1000)=nil, 0x1000) (async)
munmap(&(0x7f0000a88000/0x1000)=nil, 0x1000)
prctl$PR_GET_CHILD_SUBREAPER(0x25)
munmap(&(0x7f0000694000/0x3000)=nil, 0x3000)
mremap(&(0x7f0000dde000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000968000/0x3000)=nil)
mremap(&(0x7f0000b89000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000bdf000/0x1000)=nil)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) (async)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)

[   84.726603][ T4672] Bluetooth: hci0: command tx timeout
[   84.777619][ T5330] loop0: detected capacity change from 0 to 64
[   84.856732][ T5336] ------------[ cut here ]------------
[   84.859029][ T5336] WARNING: CPU: 0 PID: 5336 at fs/buffer.c:1183 mark_buffer_dirty+0x2a9/0x410
[   84.862615][ T5336] Modules linked in:
[   84.864574][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   84.868322][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.872769][ T5336] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   84.875418][ T5336] Code: 4c 89 f7 e8 69 08 dd ff 49 8b 3e be 40 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 14 ea fb ff e8 ff bc 75 ff eb 8c e8 f8 bc 75 ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ea bc 75 ff 90 0f 0b 90 e9 bf fd ff ff
[   84.883690][ T5336] RSP: 0018:ffffc9000d4764c8 EFLAGS: 00010293
[   84.886396][ T5336] RAX: ffffffff824a5658 RBX: ffff888042ed0828 RCX: ffff888000258000
[   84.889642][ T5336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[   84.892867][ T5336] RBP: ffff888035e62001 R08: ffff888042ed082f R09: 1ffff110085da105
[   84.897946][ T5336] R10: dffffc0000000000 R11: ffffed10085da106 R12: ffff88804c17da00
[   84.901672][ T5336] R13: ffff888042ed0488 R14: ffff888042ed0828 R15: 000000000000000a
[   84.905099][ T5336] FS:  00007f94add926c0(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000
[   84.908869][ T5336] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   84.911734][ T5336] CR2: 00007ffcef71af04 CR3: 0000000052510000 CR4: 0000000000352ef0
[   84.915283][ T5336] Call Trace:
[   84.916804][ T5336]  <TASK>
[   84.918118][ T5336]  bfs_get_block+0x5da/0xae0
[   84.920157][ T5336]  __block_write_begin_int+0x6b5/0x1900
[   84.922610][ T5336]  ? filemap_get_entry+0xad/0x2f0
[   84.925025][ T5336]  ? __pfx_bfs_get_block+0x10/0x10
[   84.927228][ T5336]  ? __pfx___block_write_begin_int+0x10/0x10
[   84.929754][ T5336]  ? __filemap_get_folio+0x79f/0xaf0
[   84.931991][ T5336]  ? __pfx_bfs_get_block+0x10/0x10
[   84.934456][ T5336]  block_write_begin+0x8a/0x120
[   84.936473][ T5336]  ? bfs_write_begin+0x1e/0xd0
[   84.938579][ T5336]  bfs_write_begin+0x35/0xd0
[   84.940638][ T5336]  generic_perform_write+0x2c5/0x900
[   84.942813][ T5336]  ? __pfx_generic_perform_write+0x10/0x10
[   84.945381][ T5336]  ? file_update_time+0x2da/0x490
[   84.947514][ T5336]  ? __generic_file_write_iter+0xf9/0x230
[   84.949848][ T5336]  ? generic_file_write_iter+0x103/0x550
[   84.952453][ T5336]  generic_file_write_iter+0x117/0x550
[   84.955165][ T5336]  ? __pfx_generic_file_write_iter+0x10/0x10
[   84.957912][ T5336]  ? __lock_acquire+0xab9/0xd20
[   84.960002][ T5336]  ? do_raw_spin_lock+0x121/0x290
[   84.962375][ T5336]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   84.965084][ T5336]  ? lockdep_hardirqs_on+0x9c/0x150
[   84.967376][ T5336]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   84.969794][ T5336]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   84.972784][ T5336]  ? __pfx_generic_file_write_iter+0x10/0x10
[   84.975688][ T5336]  __kernel_write_iter+0x428/0x910
[   84.977847][ T5336]  ? __pfx_generic_file_write_iter+0x10/0x10
[   84.980290][ T5336]  ? __pfx___kernel_write_iter+0x10/0x10
[   84.982785][ T5336]  ? __kasan_kmalloc+0x93/0xb0
[   84.984971][ T5336]  ? __asan_memset+0x22/0x50
[   84.986976][ T5336]  ? iov_iter_kvec+0xb8/0x180
[   84.988969][ T5336]  __kernel_write+0xef/0x150
[   84.990995][ T5336]  ? __pfx___kernel_write+0x10/0x10
[   84.993385][ T5336]  __dump_emit+0x206/0x310
[   84.995688][ T5336]  ? __pfx___dump_emit+0x10/0x10
[   84.997888][ T5336]  ? __kmalloc_cache_noprof+0x3d5/0x6f0
[   85.000675][ T5336]  ? elf_core_dump+0x2243/0x3960
[   85.002878][ T5336]  ? dump_emit+0xa6/0xe0
[   85.004760][ T5336]  ? elf_core_dump+0x2cd0/0x3960
[   85.006886][ T5336]  elf_core_dump+0x2d05/0x3960
[   85.008889][ T5336]  ? __pfx_elf_core_dump+0x10/0x10
[   85.011029][ T5336]  ? kasan_save_track+0x4f/0x80
[   85.013070][ T5336]  ? kasan_save_track+0x3e/0x80
[   85.015298][ T5336]  ? __kasan_kmalloc+0x93/0xb0
[   85.017363][ T5336]  ? __kvmalloc_node_noprof+0x5cd/0x910
[   85.020057][ T5336]  ? coredump_write+0x343/0x1900
[   85.022706][ T5336]  ? vfs_coredump+0x1db5/0x2a60
[   85.025419][ T5336]  ? get_signal+0x1108/0x1340
[   85.028033][ T5336]  ? arch_do_signal_or_restart+0xa0/0x790
[   85.031095][ T5336]  ? exit_to_user_mode_loop+0x72/0x130
[   85.034127][ T5336]  ? ret_from_fork+0x53f/0x870
[   85.036348][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.038576][ T5336]  ? up_write+0x1c4/0x420
[   85.040547][ T5336]  coredump_write+0x116c/0x1900
[   85.042738][ T5336]  ? __pfx_coredump_write+0x10/0x10
[   85.045145][ T5336]  ? kfree+0x4d/0x6d0
[   85.046857][ T5336]  ? unshare_files+0xa9/0x140
[   85.048701][ T5336]  vfs_coredump+0x1db5/0x2a60
[   85.050720][ T5336]  ? rep_stos_alternative+0xf/0x80
[   85.052815][ T5336]  ? __pfx_vfs_coredump+0x10/0x10
[   85.055186][ T5336]  ? __pfx_fixup_exception+0x10/0x10
[   85.057404][ T5336]  ? __lock_acquire+0xab9/0xd20
[   85.059598][ T5336]  ? __lock_acquire+0xab9/0xd20
[   85.061620][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.063887][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.066308][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.068561][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.070658][ T5336]  ? unwind_next_frame+0x19ae/0x2390
[   85.072926][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.075292][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.077595][ T5336]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.080561][ T5336]  ? arch_stack_walk+0x11c/0x150
[   85.083145][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.085916][ T5336]  ? stack_trace_save+0x9c/0xe0
[   85.088522][ T5336]  ? stack_depot_save_flags+0x40/0x860
[   85.091478][ T5336]  ? kasan_save_track+0x4f/0x80
[   85.093627][ T5336]  ? kasan_save_track+0x3e/0x80
[   85.095682][ T5336]  ? __kasan_save_free_info+0x46/0x50
[   85.097826][ T5336]  ? __kasan_slab_free+0x5c/0x80
[   85.099998][ T5336]  ? kmem_cache_free+0x19b/0x690
[   85.102526][ T5336]  ? get_signal+0xa4b/0x1340
[   85.104902][ T5336]  ? arch_do_signal_or_restart+0xa0/0x790
[   85.107661][ T5336]  ? exit_to_user_mode_loop+0x72/0x130
[   85.110133][ T5336]  ? ret_from_fork+0x53f/0x870
[   85.112315][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.114643][ T5336]  ? _raw_spin_unlock_irq+0x23/0x50
[   85.116820][ T5336]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.119150][ T5336]  get_signal+0x1108/0x1340
[   85.121245][ T5336]  arch_do_signal_or_restart+0xa0/0x790
[   85.123566][ T5336]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   85.126369][ T5336]  ? exit_to_user_mode_loop+0x40/0x130
[   85.128490][ T5336]  exit_to_user_mode_loop+0x72/0x130
[   85.130452][ T5336]  ret_from_fork+0x53f/0x870
[   85.132344][ T5336]  ? __pfx_ret_from_fork+0x10/0x10
[   85.134816][ T5336]  ret_from_fork_asm+0x1a/0x30
[   85.136911][ T5336]  </TASK>
[   85.138212][ T5336] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.141005][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.144553][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.148973][ T5336] Call Trace:
[   85.150412][ T5336]  <TASK>
[   85.151689][ T5336]  dump_stack_lvl+0x99/0x250
[   85.153579][ T5336]  ? __asan_memcpy+0x40/0x70
[   85.155460][ T5336]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.157645][ T5336]  ? __pfx__printk+0x10/0x10
[   85.160155][ T5336]  vpanic+0x237/0x6d0
[   85.162417][ T5336]  ? __pfx_vpanic+0x10/0x10
[   85.164879][ T5336]  panic+0xb9/0xc0
[   85.166675][ T5336]  ? __pfx_panic+0x10/0x10
[   85.168511][ T5336]  __warn+0x31b/0x4b0
[   85.170089][ T5336]  ? mark_buffer_dirty+0x2a9/0x410
[   85.172215][ T5336]  ? mark_buffer_dirty+0x2a9/0x410
[   85.174294][ T5336]  report_bug+0x2be/0x4f0
[   85.176038][ T5336]  ? mark_buffer_dirty+0x2a9/0x410
[   85.178119][ T5336]  ? mark_buffer_dirty+0x2a9/0x410
[   85.180038][ T5336]  ? mark_buffer_dirty+0x2ab/0x410
[   85.181983][ T5336]  handle_bug+0x84/0x160
[   85.183654][ T5336]  exc_invalid_op+0x1a/0x50
[   85.185446][ T5336]  asm_exc_invalid_op+0x1a/0x20
[   85.187321][ T5336] RIP: 0010:mark_buffer_dirty+0x2a9/0x410
[   85.189322][ T5336] Code: 4c 89 f7 e8 69 08 dd ff 49 8b 3e be 40 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 14 ea fb ff e8 ff bc 75 ff eb 8c e8 f8 bc 75 ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ea bc 75 ff 90 0f 0b 90 e9 bf fd ff ff
[   85.196826][ T5336] RSP: 0018:ffffc9000d4764c8 EFLAGS: 00010293
[   85.199391][ T5336] RAX: ffffffff824a5658 RBX: ffff888042ed0828 RCX: ffff888000258000
[   85.202719][ T5336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[   85.206054][ T5336] RBP: ffff888035e62001 R08: ffff888042ed082f R09: 1ffff110085da105
[   85.209019][ T5336] R10: dffffc0000000000 R11: ffffed10085da106 R12: ffff88804c17da00
[   85.212223][ T5336] R13: ffff888042ed0488 R14: ffff888042ed0828 R15: 000000000000000a
[   85.215728][ T5336]  ? mark_buffer_dirty+0x2a8/0x410
[   85.217872][ T5336]  ? mark_buffer_dirty+0x2a8/0x410
[   85.219928][ T5336]  bfs_get_block+0x5da/0xae0
[   85.221647][ T5336]  __block_write_begin_int+0x6b5/0x1900
[   85.223692][ T5336]  ? filemap_get_entry+0xad/0x2f0
[   85.225555][ T5336]  ? __pfx_bfs_get_block+0x10/0x10
[   85.227598][ T5336]  ? __pfx___block_write_begin_int+0x10/0x10
[   85.230084][ T5336]  ? __filemap_get_folio+0x79f/0xaf0
[   85.232112][ T5336]  ? __pfx_bfs_get_block+0x10/0x10
[   85.234161][ T5336]  block_write_begin+0x8a/0x120
[   85.236242][ T5336]  ? bfs_write_begin+0x1e/0xd0
[   85.238564][ T5336]  bfs_write_begin+0x35/0xd0
[   85.240578][ T5336]  generic_perform_write+0x2c5/0x900
[   85.242755][ T5336]  ? __pfx_generic_perform_write+0x10/0x10
[   85.245182][ T5336]  ? file_update_time+0x2da/0x490
[   85.247310][ T5336]  ? __generic_file_write_iter+0xf9/0x230
[   85.249647][ T5336]  ? generic_file_write_iter+0x103/0x550
[   85.251719][ T5336]  generic_file_write_iter+0x117/0x550
[   85.253692][ T5336]  ? __pfx_generic_file_write_iter+0x10/0x10
[   85.256286][ T5336]  ? __lock_acquire+0xab9/0xd20
[   85.258294][ T5336]  ? do_raw_spin_lock+0x121/0x290
[   85.260502][ T5336]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   85.263080][ T5336]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.265323][ T5336]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   85.267887][ T5336]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   85.270634][ T5336]  ? __pfx_generic_file_write_iter+0x10/0x10
[   85.273221][ T5336]  __kernel_write_iter+0x428/0x910
[   85.275477][ T5336]  ? __pfx_generic_file_write_iter+0x10/0x10
[   85.278037][ T5336]  ? __pfx___kernel_write_iter+0x10/0x10
[   85.280470][ T5336]  ? __kasan_kmalloc+0x93/0xb0
[   85.282558][ T5336]  ? __asan_memset+0x22/0x50
[   85.284555][ T5336]  ? iov_iter_kvec+0xb8/0x180
[   85.286651][ T5336]  __kernel_write+0xef/0x150
[   85.288642][ T5336]  ? __pfx___kernel_write+0x10/0x10
[   85.290903][ T5336]  __dump_emit+0x206/0x310
[   85.292861][ T5336]  ? __pfx___dump_emit+0x10/0x10
[   85.295009][ T5336]  ? __kmalloc_cache_noprof+0x3d5/0x6f0
[   85.297332][ T5336]  ? elf_core_dump+0x2243/0x3960
[   85.299478][ T5336]  ? dump_emit+0xa6/0xe0
[   85.301188][ T5336]  ? elf_core_dump+0x2cd0/0x3960
[   85.303154][ T5336]  elf_core_dump+0x2d05/0x3960
[   85.305102][ T5336]  ? __pfx_elf_core_dump+0x10/0x10
[   85.307138][ T5336]  ? kasan_save_track+0x4f/0x80
[   85.309049][ T5336]  ? kasan_save_track+0x3e/0x80
[   85.310991][ T5336]  ? __kasan_kmalloc+0x93/0xb0
[   85.312848][ T5336]  ? __kvmalloc_node_noprof+0x5cd/0x910
[   85.314924][ T5336]  ? coredump_write+0x343/0x1900
[   85.316876][ T5336]  ? vfs_coredump+0x1db5/0x2a60
[   85.319196][ T5336]  ? get_signal+0x1108/0x1340
[   85.321097][ T5336]  ? arch_do_signal_or_restart+0xa0/0x790
[   85.323474][ T5336]  ? exit_to_user_mode_loop+0x72/0x130
[   85.326000][ T5336]  ? ret_from_fork+0x53f/0x870
[   85.328072][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.330274][ T5336]  ? up_write+0x1c4/0x420
[   85.332130][ T5336]  coredump_write+0x116c/0x1900
[   85.334218][ T5336]  ? __pfx_coredump_write+0x10/0x10
[   85.336328][ T5336]  ? kfree+0x4d/0x6d0
[   85.337901][ T5336]  ? unshare_files+0xa9/0x140
[   85.339973][ T5336]  vfs_coredump+0x1db5/0x2a60
[   85.341926][ T5336]  ? rep_stos_alternative+0xf/0x80
[   85.343981][ T5336]  ? __pfx_vfs_coredump+0x10/0x10
[   85.346122][ T5336]  ? __pfx_fixup_exception+0x10/0x10
[   85.348363][ T5336]  ? __lock_acquire+0xab9/0xd20
[   85.350381][ T5336]  ? __lock_acquire+0xab9/0xd20
[   85.352506][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.354667][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.356801][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.358978][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.361283][ T5336]  ? unwind_next_frame+0x19ae/0x2390
[   85.363678][ T5336]  ? unwind_next_frame+0xa5/0x2390
[   85.365940][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.368175][ T5336]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.370959][ T5336]  ? arch_stack_walk+0x11c/0x150
[   85.373150][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.375342][ T5336]  ? stack_trace_save+0x9c/0xe0
[   85.377462][ T5336]  ? stack_depot_save_flags+0x40/0x860
[   85.379857][ T5336]  ? kasan_save_track+0x4f/0x80
[   85.382093][ T5336]  ? kasan_save_track+0x3e/0x80
[   85.384308][ T5336]  ? __kasan_save_free_info+0x46/0x50
[   85.386852][ T5336]  ? __kasan_slab_free+0x5c/0x80
[   85.389103][ T5336]  ? kmem_cache_free+0x19b/0x690
[   85.391329][ T5336]  ? get_signal+0xa4b/0x1340
[   85.393325][ T5336]  ? arch_do_signal_or_restart+0xa0/0x790
[   85.395794][ T5336]  ? exit_to_user_mode_loop+0x72/0x130
[   85.398276][ T5336]  ? ret_from_fork+0x53f/0x870
[   85.400499][ T5336]  ? ret_from_fork_asm+0x1a/0x30
[   85.402737][ T5336]  ? _raw_spin_unlock_irq+0x23/0x50
[   85.405013][ T5336]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.407390][ T5336]  get_signal+0x1108/0x1340
[   85.409402][ T5336]  arch_do_signal_or_restart+0xa0/0x790
[   85.411860][ T5336]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   85.414519][ T5336]  ? exit_to_user_mode_loop+0x40/0x130
[   85.416865][ T5336]  exit_to_user_mode_loop+0x72/0x130
[   85.419180][ T5336]  ret_from_fork+0x53f/0x870
[   85.421185][ T5336]  ? __pfx_ret_from_fork+0x10/0x10
[   85.423439][ T5336]  ret_from_fork_asm+0x1a/0x30
[   85.425640][ T5336]  </TASK>
[   85.427401][ T5336] Kernel Offset: disabled
[   85.429285][ T5336] Rebooting in 86400 seconds..