program: syz_read_part_table(0x5e2, &(0x7f0000000b00)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='&\x00\x00\x00\a'], 0x50) write(r0, &(0x7f0000000000)='W', 0x1) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r1, &(0x7f0000000000), 0xd) r2 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x8000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000061124000000000009500000700000000ae1b3ed987cf2c31df19e3f92940ad053547536eaa4aa3495afd20bfdd03db8f0e"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x80) io_uring_setup(0x49b0, &(0x7f0000000180)={0x0, 0x349a, 0x100, 0x1, 0x20c}) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e61, 0xff, @remote, 0x6}, 0x1c) syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0c93b8e4717119ff1861c9c947a1d6276b816840d7fd4c2d7e00c5475ab127b13ab49331d7efd0c4a264fbdeaab7cd"], 0x0, 0x1a1, &(0x7f00000002c0)="$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") ioctl$sock_inet6_tcp_SIOCOUTQNSD(r3, 0x894b, &(0x7f0000000140)) mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='omfs\x00', 0xc000, 0x0) syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) [ 87.972402][ T44] Bluetooth: hci0: command tx timeout [ 88.220130][ T5327] loop0: detected capacity change from 0 to 2048 [ 88.268337][ T5327] loop0: p2 p3 < > p4 < p5 > [ 88.277462][ T5327] loop0: partition table partially beyond EOD, truncated [ 88.295313][ T5327] loop0: p3 start 4284289 is beyond EOD, truncated [ 88.322098][ T5327] Bluetooth: MGMT ver 1.23 [ 88.351199][ T5336] Buffer I/O error on dev loop0, logical block 0, async page read [ 88.361037][ T5336] Buffer I/O error on dev loop0, logical block 0, async page read [ 88.370887][ T5336] Buffer I/O error on dev loop0, logical block 0, async page read [ 88.374537][ T5336] Buffer I/O error on dev loop0, logical block 0, async page read [ 88.381606][ T5336] Buffer I/O error on dev loop0, logical block 0, async page read [ 88.429110][ T5336] Buffer I/O error on dev loop0p2, logical block 0, async page read [ 88.466209][ T5337] Buffer I/O error on dev loop0p4, logical block 0, async page read [ 88.483344][ T5338] Buffer I/O error on dev loop0p5, logical block 0, async page read [ 88.488110][ T5337] Buffer I/O error on dev loop0p4, logical block 0, async page read [ 88.503568][ T5339] ------------[ cut here ]------------ [ 88.505877][ T5339] kernel BUG at fs/buffer.c:1479! [ 88.514700][ T5337] Buffer I/O error on dev loop0p4, logical block 0, async page read [ 88.528795][ T5339] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 88.531578][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 88.535325][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 88.539445][ T5339] RIP: 0010:folio_set_bh+0x1dc/0x1e0 [ 88.541688][ T5339] Code: 4c 89 e2 e8 f6 5a 98 02 e9 42 ff ff ff e8 cc 6f 6d ff 48 89 df 48 c7 c6 00 28 df 8b e8 7d b6 cf fe 90 0f 0b e8 b5 6f 6d ff 90 <0f> 0b 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f [ 88.549537][ T5339] RSP: 0018:ffffc9000e7279b0 EFLAGS: 00010283 [ 88.552037][ T5339] RAX: ffffffff8258575b RBX: ffffea0001543dc0 RCX: 0000000000100000 [ 88.555324][ T5339] RDX: ffffc90020802000 RSI: 0000000000000d7b RDI: 0000000000000d7c [ 88.558564][ T5339] RBP: dffffc0000000000 R08: ffffea0001543dc7 R09: 1ffffd40002a87b8 [ 88.561807][ T5339] R10: dffffc0000000000 R11: fffff940002a87b9 R12: 0000000000000000 [ 88.565029][ T5339] R13: 0000000000001000 R14: ffff888046ea50e8 R15: 0000000000001000 [ 88.568230][ T5339] FS: 00007efedbec86c0(0000) GS:ffff88808c894000(0000) knlGS:0000000000000000 [ 88.571718][ T5339] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 88.574336][ T5339] CR2: 0000556bd8f3a108 CR3: 0000000012256000 CR4: 0000000000352ef0 [ 88.577541][ T5339] Call Trace: [ 88.579219][ T5339] [ 88.580522][ T5339] folio_alloc_buffers+0x228/0x640 [ 88.582729][ T5339] bdev_getblk+0x2cb/0x6e0 [ 88.584654][ T5339] __bread_gfp+0x89/0x3b0 [ 88.586497][ T5339] omfs_fill_super+0x30d/0x1590 [ 88.588681][ T5339] ? sb_set_blocksize+0x10c/0x240 [ 88.591035][ T5339] ? setup_bdev_super+0x4c1/0x5b0 [ 88.593266][ T5339] get_tree_bdev_flags+0x431/0x4f0 [ 88.595554][ T5339] ? __pfx_omfs_fill_super+0x10/0x10 [ 88.597901][ T5339] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 88.600385][ T5339] vfs_get_tree+0x92/0x2a0 [ 88.602320][ T5339] do_new_mount+0x341/0xd30 [ 88.604254][ T5339] ? apparmor_capable+0x126/0x170 [ 88.606482][ T5339] ? __pfx_do_new_mount+0x10/0x10 [ 88.608758][ T5339] ? ns_capable+0x89/0xe0 [ 88.610634][ T5339] ? user_path_at+0xd4/0x160 [ 88.612706][ T5339] __se_sys_mount+0x31d/0x420 [ 88.614794][ T5339] ? __pfx___se_sys_mount+0x10/0x10 [ 88.617063][ T5339] ? __x64_sys_mount+0x20/0xc0 [ 88.619238][ T5339] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.621879][ T5339] do_syscall_64+0x174/0x580 [ 88.623993][ T5339] ? trace_irq_disable+0x3b/0x140 [ 88.626105][ T5339] ? clear_bhb_loop+0x40/0x90 [ 88.628246][ T5339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.630851][ T5339] RIP: 0033:0x7efedaf9ce59 [ 88.632807][ T5339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 88.640916][ T5339] RSP: 002b:00007efedbec7fe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 88.644361][ T5339] RAX: ffffffffffffffda RBX: 00007efedb216180 RCX: 00007efedaf9ce59 [ 88.647794][ T5339] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 0000200000000040 [ 88.651264][ T5339] RBP: 00007efedb032d6f R08: 0000000000000000 R09: 0000000000000000 [ 88.654721][ T5339] R10: 000000000000c000 R11: 0000000000000246 R12: 0000000000000000 [ 88.658046][ T5339] R13: 00007efedb216218 R14: 00007efedb216180 R15: 00007fff604232c8 [ 88.661363][ T5339] [ 88.662750][ T5339] Modules linked in: [ 88.665369][ T5339] ---[ end trace 0000000000000000 ]--- [ 88.695271][ T5339] RIP: 0010:folio_set_bh+0x1dc/0x1e0 [ 88.697742][ T5339] Code: 4c 89 e2 e8 f6 5a 98 02 e9 42 ff ff ff e8 cc 6f 6d ff 48 89 df 48 c7 c6 00 28 df 8b e8 7d b6 cf fe 90 0f 0b e8 b5 6f 6d ff 90 <0f> 0b 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f [ 88.707026][ T5339] RSP: 0018:ffffc9000e7279b0 EFLAGS: 00010283 [ 88.709990][ T5339] RAX: ffffffff8258575b RBX: ffffea0001543dc0 RCX: 0000000000100000 [ 88.713906][ T5339] RDX: ffffc90020802000 RSI: 0000000000000d7b RDI: 0000000000000d7c [ 88.717844][ T5339] RBP: dffffc0000000000 R08: ffffea0001543dc7 R09: 1ffffd40002a87b8 [ 88.721552][ T5339] R10: dffffc0000000000 R11: fffff940002a87b9 R12: 0000000000000000 [ 88.725280][ T5339] R13: 0000000000001000 R14: ffff888046ea50e8 R15: 0000000000001000 [ 88.728856][ T5339] FS: 00007efedbec86c0(0000) GS:ffff88808c894000(0000) knlGS:0000000000000000 [ 88.733045][ T5339] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 88.736071][ T5339] CR2: 0000556bd8e6c3b8 CR3: 0000000012256000 CR4: 0000000000352ef0 [ 88.739662][ T5339] Kernel panic - not syncing: Fatal exception [ 88.742684][ T5339] Kernel Offset: disabled [ 88.744465][ T5339] Rebooting in 86400 seconds..