program: rt_sigaction(0xd, &(0x7f0000000040)={&(0x7f0000000380)="c441f96ec866400fe2dec441a16dfb46c7045300101000f00fc01e66410f6f150400000052c4637bf02640f5c4b93c10", 0xdc000006, 0x0, {[0x5]}}, 0x0, 0x8, &(0x7f0000000000)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x66) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0xfffffff6, @mcast1, 0x2}, 0x1c) r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d) r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$IOCTL_VMCI_SET_NOTIFY(r5, 0x7cb, 0x0) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x3000080, &(0x7f0000000280)=ANY=[], 0x1, 0x2e0, &(0x7f0000000880)="$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") openat(0xffffffffffffff9c, 0x0, 0x48942, 0x0) r6 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r6, 0x4c09, 0x8000) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) r7 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x20, 0x0) mkdirat(r7, &(0x7f0000000440)='./bus\x00', 0x41) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0) r8 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r8, 0x7, 0x0, 0x0, 0x0) ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000)) ioctl$sock_netrom_SIOCADDRT(r2, 0x890b, &(0x7f0000000280)={0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bpq0, 0xffff, 'syz0\x00', @default, 0xfffffdba, 0x2, [@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x40d, 0x4, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_ARPTABLES={0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) [ 69.442493][ T4660] Bluetooth: hci0: command tx timeout [ 69.491777][ T5315] loop0: detected capacity change from 0 to 64 [ 69.589892][ T5299] Buffer I/O error on dev loop0, logical block 0, async page read [ 69.593171][ T5299] Buffer I/O error on dev loop0, logical block 1, async page read [ 69.596487][ T5299] Buffer I/O error on dev loop0, logical block 0, async page read [ 69.604741][ T42] Buffer I/O error on dev loop0, logical block 8, lost async page write [ 69.608538][ T42] Buffer I/O error on dev loop0, logical block 9, lost async page write [ 69.612032][ T42] Buffer I/O error on dev loop0, logical block 10, lost async page write [ 69.615195][ T42] Buffer I/O error on dev loop0, logical block 11, lost async page write [ 69.619672][ T5299] Buffer I/O error on dev loop0, logical block 1, async page read [ 69.624254][ T5299] Buffer I/O error on dev loop0, logical block 0, async page read [ 69.628167][ T42] Buffer I/O error on dev loop0, logical block 16, lost async page write [ 69.637893][ T5315] getblk(): invalid block size 512 requested [ 69.640547][ T5315] logical block size: 32768 [ 69.642573][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) [ 69.642589][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.642597][ T5315] Call Trace: [ 69.642603][ T5315] [ 69.642608][ T5315] dump_stack_lvl+0x189/0x250 [ 69.642726][ T5315] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.642742][ T5315] ? __pfx__printk+0x10/0x10 [ 69.642757][ T5315] ? fs_reclaim_acquire+0x7d/0x100 [ 69.642794][ T5315] bdev_getblk+0x59e/0x670 [ 69.642809][ T5315] ? __pfx_wake_up_bit+0x10/0x10 [ 69.642826][ T5315] __bread_gfp+0x89/0x3c0 [ 69.642841][ T5315] hfs_mdb_commit+0xc0a/0x1160 [ 69.642863][ T5315] hfs_sync_fs+0x15/0x20 [ 69.642876][ T5315] sync_filesystem+0xeb/0x230 [ 69.642892][ T5315] hfs_reconfigure+0x66/0x270 [ 69.642906][ T5315] reconfigure_super+0x224/0x890 [ 69.642922][ T5315] path_mount+0xd18/0xfe0 [ 69.642935][ T5315] ? user_path_at+0x44/0x60 [ 69.642952][ T5315] __se_sys_mount+0x317/0x410 [ 69.642970][ T5315] ? __pfx___se_sys_mount+0x10/0x10 [ 69.642985][ T5315] ? do_syscall_64+0xba/0x210 [ 69.643029][ T5315] ? __x64_sys_mount+0x20/0xc0 [ 69.643044][ T5315] do_syscall_64+0xf6/0x210 [ 69.643057][ T5315] ? clear_bhb_loop+0x45/0xa0 [ 69.643072][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.643108][ T5315] RIP: 0033:0x7f8e9598e969 [ 69.643122][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.643131][ T5315] RSP: 002b:00007f8e967ec038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 69.643145][ T5315] RAX: ffffffffffffffda RBX: 00007f8e95bb5fa0 RCX: 00007f8e9598e969 [ 69.643153][ T5315] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000000 [ 69.643160][ T5315] RBP: 00007f8e95a10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 69.643168][ T5315] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000000 [ 69.643174][ T5315] R13: 0000000000000000 R14: 00007f8e95bb5fa0 R15: 00007fffd8d3a0c8 [ 69.643191][ T5315] [ 69.643195][ T5315] hfs: unable to read volume bitmap [ 69.740503][ T5316] overlay: filesystem on ./bus not supported [ 69.749632][ T5315] ------------[ cut here ]------------ [ 69.751896][ T5315] WARNING: CPU: 0 PID: 5315 at fs/buffer.c:1186 mark_buffer_dirty+0x2a9/0x410 [ 69.756503][ T5315] Modules linked in: [ 69.758762][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) [ 69.763681][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.768816][ T5315] RIP: 0010:mark_buffer_dirty+0x2a9/0x410 [ 69.771919][ T5315] Code: 4c 89 f7 e8 79 0d de ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 c4 34 fc ff e8 cf 18 7c ff eb 8c e8 c8 18 7c ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ba 18 7c ff 90 0f 0b 90 e9 bf fd ff ff [ 69.780650][ T5315] RSP: 0018:ffffc9000d51fbd0 EFLAGS: 00010283 [ 69.783335][ T5315] RAX: ffffffff8243b788 RBX: ffff8880438e9828 RCX: 0000000000100000 [ 69.786666][ T5315] RDX: ffffc9000df9a000 RSI: 00000000000100c6 RDI: 00000000000100c7 [ 69.790325][ T5315] RBP: 1ffff11006793801 R08: ffff8880438e982f R09: 1ffff1100871d305 [ 69.793751][ T5315] R10: dffffc0000000000 R11: ffffed100871d306 R12: dffffc0000000000 [ 69.797212][ T5315] R13: ffff888033c9c638 R14: ffff888052c0945b R15: ffff888052c09400 [ 69.800763][ T5315] FS: 00007f8e967ec6c0(0000) GS:ffff88808d6cc000(0000) knlGS:0000000000000000 [ 69.804558][ T5315] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.807229][ T5315] CR2: 0000200000001000 CR3: 0000000042bd3000 CR4: 0000000000352ef0 [ 69.810313][ T5315] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.813362][ T5315] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.816358][ T5315] Call Trace: [ 69.817821][ T5315] [ 69.819119][ T5315] hfs_mdb_commit+0x489/0x1160 [ 69.821098][ T5315] hfs_sync_fs+0x15/0x20 [ 69.822989][ T5315] sync_filesystem+0x1cc/0x230 [ 69.825051][ T5315] hfs_reconfigure+0x66/0x270 [ 69.827021][ T5315] reconfigure_super+0x224/0x890 [ 69.829520][ T5315] path_mount+0xd18/0xfe0 [ 69.831371][ T5315] ? user_path_at+0x44/0x60 [ 69.833289][ T5315] __se_sys_mount+0x317/0x410 [ 69.835224][ T5315] ? __pfx___se_sys_mount+0x10/0x10 [ 69.837530][ T5315] ? do_syscall_64+0xba/0x210 [ 69.839553][ T5315] ? __x64_sys_mount+0x20/0xc0 [ 69.841580][ T5315] do_syscall_64+0xf6/0x210 [ 69.843485][ T5315] ? clear_bhb_loop+0x45/0xa0 [ 69.845517][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.848070][ T5315] RIP: 0033:0x7f8e9598e969 [ 69.849962][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.858399][ T5315] RSP: 002b:00007f8e967ec038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 69.862024][ T5315] RAX: ffffffffffffffda RBX: 00007f8e95bb5fa0 RCX: 00007f8e9598e969 [ 69.865286][ T5315] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000000 [ 69.868931][ T5315] RBP: 00007f8e95a10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 69.872137][ T5315] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000000 [ 69.875439][ T5315] R13: 0000000000000000 R14: 00007f8e95bb5fa0 R15: 00007fffd8d3a0c8 [ 69.878887][ T5315] [ 69.880286][ T5315] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 69.883392][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) [ 69.888455][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.893046][ T5315] Call Trace: [ 69.894506][ T5315] [ 69.895796][ T5315] dump_stack_lvl+0x99/0x250 [ 69.897679][ T5315] ? __asan_memcpy+0x40/0x70 [ 69.899737][ T5315] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.901908][ T5315] ? __pfx__printk+0x10/0x10 [ 69.903896][ T5315] panic+0x2db/0x790 [ 69.905584][ T5315] ? __pfx_panic+0x10/0x10 [ 69.907448][ T5315] __warn+0x31b/0x4b0 [ 69.909125][ T5315] ? mark_buffer_dirty+0x2a9/0x410 [ 69.911449][ T5315] ? mark_buffer_dirty+0x2a9/0x410 [ 69.913610][ T5315] report_bug+0x2be/0x4f0 [ 69.915500][ T5315] ? mark_buffer_dirty+0x2a9/0x410 [ 69.917874][ T5315] ? mark_buffer_dirty+0x2a9/0x410 [ 69.920005][ T5315] ? mark_buffer_dirty+0x2ab/0x410 [ 69.922278][ T5315] handle_bug+0x84/0x160 [ 69.924048][ T5315] exc_invalid_op+0x1a/0x50 [ 69.925824][ T5315] asm_exc_invalid_op+0x1a/0x20 [ 69.927902][ T5315] RIP: 0010:mark_buffer_dirty+0x2a9/0x410 [ 69.930214][ T5315] Code: 4c 89 f7 e8 79 0d de ff 49 8b 3e be 20 00 00 00 5b 41 5c 41 5e 41 5f 5d e9 c4 34 fc ff e8 cf 18 7c ff eb 8c e8 c8 18 7c ff 90 <0f> 0b 90 e9 95 fd ff ff e8 ba 18 7c ff 90 0f 0b 90 e9 bf fd ff ff [ 69.937969][ T5315] RSP: 0018:ffffc9000d51fbd0 EFLAGS: 00010283 [ 69.940562][ T5315] RAX: ffffffff8243b788 RBX: ffff8880438e9828 RCX: 0000000000100000 [ 69.944263][ T5315] RDX: ffffc9000df9a000 RSI: 00000000000100c6 RDI: 00000000000100c7 [ 69.947769][ T5315] RBP: 1ffff11006793801 R08: ffff8880438e982f R09: 1ffff1100871d305 [ 69.951124][ T5315] R10: dffffc0000000000 R11: ffffed100871d306 R12: dffffc0000000000 [ 69.954486][ T5315] R13: ffff888033c9c638 R14: ffff888052c0945b R15: ffff888052c09400 [ 69.957926][ T5315] ? mark_buffer_dirty+0x2a8/0x410 [ 69.960184][ T5315] hfs_mdb_commit+0x489/0x1160 [ 69.962524][ T5315] hfs_sync_fs+0x15/0x20 [ 69.964499][ T5315] sync_filesystem+0x1cc/0x230 [ 69.966780][ T5315] hfs_reconfigure+0x66/0x270 [ 69.969076][ T5315] reconfigure_super+0x224/0x890 [ 69.971416][ T5315] path_mount+0xd18/0xfe0 [ 69.973089][ T5315] ? user_path_at+0x44/0x60 [ 69.974989][ T5315] __se_sys_mount+0x317/0x410 [ 69.977004][ T5315] ? __pfx___se_sys_mount+0x10/0x10 [ 69.979323][ T5315] ? do_syscall_64+0xba/0x210 [ 69.981387][ T5315] ? __x64_sys_mount+0x20/0xc0 [ 69.983327][ T5315] do_syscall_64+0xf6/0x210 [ 69.985103][ T5315] ? clear_bhb_loop+0x45/0xa0 [ 69.986924][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.989561][ T5315] RIP: 0033:0x7f8e9598e969 [ 69.991569][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.999814][ T5315] RSP: 002b:00007f8e967ec038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 70.003380][ T5315] RAX: ffffffffffffffda RBX: 00007f8e95bb5fa0 RCX: 00007f8e9598e969 [ 70.006739][ T5315] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000000 [ 70.010040][ T5315] RBP: 00007f8e95a10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 70.013488][ T5315] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000000 [ 70.016538][ T5315] R13: 0000000000000000 R14: 00007f8e95bb5fa0 R15: 00007fffd8d3a0c8 [ 70.019785][ T5315] [ 70.021552][ T5315] Kernel Offset: disabled [ 70.023480][ T5315] Rebooting in 86400 seconds..