program: syz_read_part_table(0x5e2, &(0x7f0000000b00)="$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") r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000400)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r0, 0x54a3) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x5422) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) r1 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0) r2 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000940)=0x200000000) write$vhost_msg_v2(r2, &(0x7f0000000980)={0x2, 0x0, {0x0, 0x4b, 0x0, 0x0, 0x2}}, 0x48) write$vhost_msg_v2(r2, &(0x7f0000001f00)={0x2, 0x0, {&(0x7f00000004c0)=""/110, 0x6e, 0x0, 0x2, 0x2}}, 0x48) write$vhost_msg_v2(r2, &(0x7f00000003c0)={0x2, 0x0, {&(0x7f00000002c0)=""/119, 0x77, 0x0, 0x3, 0x3}}, 0x48) ioctl$LOOP_SET_BLOCK_SIZE(r1, 0x4c09, 0x8000) flock(r1, 0x7) syz_open_dev$radio(&(0x7f0000000040), 0x3, 0x2) mount(&(0x7f0000000080)=@filename='./file1\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='hpfs\x00', 0x808400, 0x0) r3 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x247, &(0x7f00000007c0)="$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") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40e8662e, &(0x7f0000000000)={0x9, 0x100000000}) ioctl$LOOP_SET_CAPACITY(r1, 0x4c07) [ 85.166368][ T5284] Bluetooth: hci0: command tx timeout [ 85.259243][ T5321] loop0: detected capacity change from 0 to 2048 [ 85.308758][ T5321] loop0: p2 p3 < > p4 < p5 > [ 85.311083][ T5321] loop0: partition table partially beyond EOD, truncated [ 85.319505][ T5321] loop0: p3 start 4284289 is beyond EOD, truncated [ 85.374966][ T5278] Buffer I/O error on dev loop0, logical block 0, async page read [ 85.396740][ T5321] hpfs: block size(32768) > page size(4096) not supported by filesystem [ 85.402242][ T5278] Buffer I/O error on dev loop0, logical block 0, async page read [ 85.418947][ T5278] Buffer I/O error on dev loop0, logical block 0, async page read [ 85.426132][ T5278] Buffer I/O error on dev loop0, logical block 0, async page read [ 85.430184][ T5321] ------------[ cut here ]------------ [ 85.433266][ T5321] kernel BUG at fs/buffer.c:1479! [ 85.436366][ T5278] Buffer I/O error on dev loop0, logical block 0, async page read [ 85.456708][ T5321] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 85.459469][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 85.463454][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 85.467617][ T5321] RIP: 0010:folio_set_bh+0x1dc/0x1e0 [ 85.469885][ T5321] Code: 4c 89 e2 e8 b6 71 98 02 e9 42 ff ff ff e8 3c 80 6d ff 48 89 df 48 c7 c6 00 28 df 8b e8 6d bd cf fe 90 0f 0b e8 25 80 6d ff 90 <0f> 0b 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f [ 85.477384][ T5321] RSP: 0018:ffffc9000fa3f7f0 EFLAGS: 00010287 [ 85.479995][ T5321] RAX: ffffffff8258511b RBX: ffffea0000391e00 RCX: 0000000000100000 [ 85.483338][ T5321] RDX: ffffc9000f0c2000 RSI: 0000000000001afe RDI: 0000000000001aff [ 85.487190][ T5321] RBP: dffffc0000000000 R08: ffffea0000391e07 R09: 1ffffd40000723c0 [ 85.490507][ T5321] R10: dffffc0000000000 R11: fffff940000723c1 R12: 0000000000000003 [ 85.493738][ T5321] R13: 0000000000008000 R14: ffff888047cbcbc8 R15: 0000000000008000 [ 85.497056][ T5321] FS: 00007f4b5b1016c0(0000) GS:ffff88808c881000(0000) knlGS:0000000000000000 [ 85.500848][ T5321] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.503727][ T5321] CR2: 00007ffe74fe6ed8 CR3: 00000000348e6000 CR4: 0000000000352ef0 [ 85.507092][ T5321] Call Trace: [ 85.508571][ T5321] [ 85.509876][ T5321] folio_alloc_buffers+0x228/0x640 [ 85.512104][ T5321] bdev_getblk+0x2cb/0x6e0 [ 85.514111][ T5321] __bread_gfp+0x89/0x3b0 [ 85.516032][ T5321] hpfs_map_sector+0x125/0x380 [ 85.518143][ T5321] hpfs_fill_super+0x24c/0x1fa0 [ 85.520456][ T5321] ? _printk+0xdd/0x130 [ 85.522204][ T5321] ? preempt_schedule_common+0x82/0xd0 [ 85.524791][ T5321] ? __pfx_hpfs_fill_super+0x10/0x10 [ 85.527107][ T5321] ? _raw_spin_unlock_irqrestore+0x74/0x80 [ 85.529540][ T5321] ? sb_set_blocksize+0x1ff/0x240 [ 85.531769][ T5321] ? setup_bdev_super+0x4c1/0x5b0 [ 85.533891][ T5321] get_tree_bdev_flags+0x431/0x4f0 [ 85.536103][ T5321] ? __pfx_hpfs_fill_super+0x10/0x10 [ 85.538320][ T5321] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 85.540824][ T5321] vfs_get_tree+0x92/0x2a0 [ 85.542681][ T5321] do_new_mount+0x341/0xd30 [ 85.544533][ T5321] ? apparmor_capable+0x126/0x170 [ 85.546554][ T5321] ? __pfx_do_new_mount+0x10/0x10 [ 85.548619][ T5321] ? ns_capable+0x89/0xe0 [ 85.550530][ T5321] ? user_path_at+0xd4/0x160 [ 85.552537][ T5321] __se_sys_mount+0x31d/0x420 [ 85.554580][ T5321] ? __pfx___se_sys_mount+0x10/0x10 [ 85.556879][ T5321] ? __x64_sys_mount+0x20/0xc0 [ 85.558892][ T5321] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.561217][ T5321] do_syscall_64+0x15f/0xf80 [ 85.563226][ T5321] ? trace_irq_disable+0x3b/0x140 [ 85.565372][ T5321] ? clear_bhb_loop+0x40/0x90 [ 85.567336][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.569767][ T5321] RIP: 0033:0x7f4b5a19cdd9 [ 85.571584][ T5321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 85.579499][ T5321] RSP: 002b:00007f4b5b100fe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 85.583113][ T5321] RAX: ffffffffffffffda RBX: 00007f4b5a415fa0 RCX: 00007f4b5a19cdd9 [ 85.586442][ T5321] RDX: 0000200000000000 RSI: 00002000000000c0 RDI: 0000200000000080 [ 85.589779][ T5321] RBP: 00007f4b5a232d69 R08: 0000000000000000 R09: 0000000000000000 [ 85.593174][ T5321] R10: 0000000000808400 R11: 0000000000000246 R12: 0000000000000000 [ 85.596360][ T5321] R13: 00007f4b5a416038 R14: 00007f4b5a415fa0 R15: 00007ffcccc18f58 [ 85.599656][ T5321] [ 85.600813][ T5321] Modules linked in: [ 85.602835][ T5321] ---[ end trace 0000000000000000 ]--- [ 85.611559][ T5282] Buffer I/O error on dev loop0p5, logical block 0, async page read [ 85.616500][ T5278] Buffer I/O error on dev loop0p2, logical block 0, async page read [ 85.634118][ T5321] RIP: 0010:folio_set_bh+0x1dc/0x1e0 [ 85.637386][ T5321] Code: 4c 89 e2 e8 b6 71 98 02 e9 42 ff ff ff e8 3c 80 6d ff 48 89 df 48 c7 c6 00 28 df 8b e8 6d bd cf fe 90 0f 0b e8 25 80 6d ff 90 <0f> 0b 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f [ 85.647324][ T5321] RSP: 0018:ffffc9000fa3f7f0 EFLAGS: 00010287 [ 85.650678][ T5321] RAX: ffffffff8258511b RBX: ffffea0000391e00 RCX: 0000000000100000 [ 85.654146][ T5321] RDX: ffffc9000f0c2000 RSI: 0000000000001afe RDI: 0000000000001aff [ 85.657862][ T5321] RBP: dffffc0000000000 R08: ffffea0000391e07 R09: 1ffffd40000723c0 [ 85.661315][ T5321] R10: dffffc0000000000 R11: fffff940000723c1 R12: 0000000000000003 [ 85.664850][ T5321] R13: 0000000000008000 R14: ffff888047cbcbc8 R15: 0000000000008000 [ 85.668240][ T5321] FS: 00007f4b5b1016c0(0000) GS:ffff88808c881000(0000) knlGS:0000000000000000 [ 85.673003][ T5321] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.694958][ T5321] CR2: 00007fcb3491e090 CR3: 00000000348e6000 CR4: 0000000000352ef0 [ 85.698374][ T5321] Kernel panic - not syncing: Fatal exception [ 85.701328][ T5321] Kernel Offset: disabled [ 85.703105][ T5321] Rebooting in 86400 seconds..