program: syz_read_part_table(0x5e3, &(0x7f0000001100)="$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") r0 = fanotify_init(0x0, 0x0) ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000140)={0x0, 0x1, 0x0, "1c13ebdaf2f20d55806b26b1d750185fd75a206da058e85b2197edb1439b1cc2"}) writev(r0, &(0x7f0000000280)=[{&(0x7f0000000140)="be", 0x8}], 0x2) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="04010000160001000000000000000000fe8000000000000000000000000000bb640101010000000000000000000000004e2100"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fe8800000000000000000000000000010000000033000000ffffffff0000000000000000000000000000000000000000008b780000010000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000a005eccffe07a130200ac0000000000000005000000050000000c0015005c0735"], 0x104}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r2 = syz_usb_connect(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0) ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000080)=0xb309) syz_usb_ep_write$ath9k_ep2(r2, 0x83, 0x8, &(0x7f0000000080)=ANY=[]) r3 = syz_open_dev$evdev(&(0x7f0000000880), 0x200000000000002, 0x862b01) write$char_usb(r3, &(0x7f0000000040)="e2", 0x2250) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r6, 0xc008ae88, &(0x7f0000000200)={0x1, 0x0, [{0xda0, 0x0, 0x5}]}) sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)="5c00000014006b05c84e21000ab16d6e230675f811000000440002005817d30461bc24eeb556a7ef59510525ba56dcd79a36c23d3b9844e1571a86ea1698fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) r7 = socket$phonet_pipe(0x23, 0x5, 0x2) fcntl$setstatus(r7, 0x4, 0x800) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r8, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r9 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_int(r9, 0x11e, 0x1, &(0x7f0000000080)=0x5, 0x4) connect$phonet_pipe(r7, &(0x7f0000000040)={0x23, 0x4, 0x0, 0xff}, 0x10) r10 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2a) ioctl$LOOP_SET_BLOCK_SIZE(r10, 0x4c09, 0x8000) mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='jfs\x00', 0x1800000, 0x0) [ 85.985427][ T5344] loop0: detected capacity change from 0 to 2048 [ 86.043802][ T5311] loop0: p2 p3 < > p4 < p5 > [ 86.045955][ T5311] loop0: partition table partially beyond EOD, truncated [ 86.052417][ T5311] loop0: p3 start 4225 is beyond EOD, truncated [ 86.084235][ T5344] loop0: p2 p3 < > p4 < p5 > [ 86.086372][ T5344] loop0: partition table partially beyond EOD, truncated [ 86.094742][ T5344] loop0: p3 start 4225 is beyond EOD, truncated [ 86.171449][ T5317] Bluetooth: hci0: command tx timeout [ 86.371932][ T786] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 86.521527][ T786] usb 5-1: Using ep0 maxpacket: 8 [ 86.527116][ T786] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 86.530853][ T786] usb 5-1: config 179 has no interface number 0 [ 86.534252][ T786] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 86.538885][ T786] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 86.543936][ T786] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 86.548781][ T786] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 86.555143][ T786] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 86.561038][ T786] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 86.565292][ T786] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.578878][ T5344] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 86.804219][ T5339] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:179.65/input/input5 [ 87.020416][ T5344] netlink: 'syz.0.0': attribute type 2 has an invalid length. [ 87.064084][ T5344] ------------[ cut here ]------------ [ 87.066355][ T5344] kernel BUG at fs/buffer.c:1582! [ 87.068454][ T5344] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 87.071142][ T5344] CPU: 0 UID: 0 PID: 5344 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 87.075133][ T5344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.079653][ T5344] RIP: 0010:folio_set_bh+0x1dc/0x1e0 [ 87.082125][ T5344] Code: 4c 89 e2 e8 a6 8f 7b 02 e9 42 ff ff ff e8 dc 0f 74 ff 48 89 df 48 c7 c6 80 8a 7a 8b e8 0d 0f db fe 90 0f 0b e8 c5 0f 74 ff 90 <0f> 0b 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f [ 87.090449][ T5344] RSP: 0018:ffffc9000e45f8e0 EFLAGS: 00010287 [ 87.093161][ T5344] RAX: ffffffff824cf79b RBX: ffffea000155c340 RCX: 0000000000100000 [ 87.096755][ T5344] RDX: ffffc9002112a000 RSI: 0000000000000e17 RDI: 0000000000000e18 [ 87.100777][ T5344] RBP: dffffc0000000000 R08: ffffea000155c347 R09: 1ffffd40002ab868 [ 87.105070][ T5344] R10: dffffc0000000000 R11: fffff940002ab869 R12: 0000000000000000 [ 87.108689][ T5344] R13: 0000000000001000 R14: ffff888031d923a0 R15: 0000000000001000 [ 87.112390][ T5344] FS: 00007fcadd1646c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000 [ 87.116376][ T5344] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 87.119273][ T5344] CR2: 000055868e684108 CR3: 0000000000d37000 CR4: 0000000000352ef0 [ 87.123472][ T5344] Call Trace: [ 87.125364][ T5344] [ 87.126881][ T5344] folio_alloc_buffers+0x3a0/0x640 [ 87.129195][ T5344] bdev_getblk+0x2cc/0x6e0 [ 87.131196][ T5344] __bread_gfp+0x89/0x3b0 [ 87.133216][ T5344] readSuper+0xdb/0x270 [ 87.135084][ T5344] chkSuper+0x5d/0xe00 [ 87.136944][ T5344] ? do_raw_spin_unlock+0x4d/0x240 [ 87.139410][ T5344] jfs_mount+0x4b/0x870 [ 87.141299][ T5344] jfs_fill_super+0x6bc/0xd80 [ 87.143373][ T5344] get_tree_bdev_flags+0x40e/0x4d0 [ 87.145710][ T5344] ? __pfx_jfs_fill_super+0x10/0x10 [ 87.147938][ T5344] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 87.150578][ T5344] vfs_get_tree+0x92/0x2a0 [ 87.152703][ T5344] do_new_mount+0x302/0xa10 [ 87.154807][ T5344] ? apparmor_capable+0x137/0x1a0 [ 87.157199][ T5344] ? __pfx_do_new_mount+0x10/0x10 [ 87.159432][ T5344] ? ns_capable+0x8a/0xf0 [ 87.161300][ T5344] ? kmem_cache_free+0x197/0x620 [ 87.163630][ T5344] __se_sys_mount+0x313/0x410 [ 87.165738][ T5344] ? __pfx___se_sys_mount+0x10/0x10 [ 87.168040][ T5344] ? __x64_sys_mount+0x20/0xc0 [ 87.170184][ T5344] do_syscall_64+0xec/0xf80 [ 87.172284][ T5344] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.174862][ T5344] ? clear_bhb_loop+0x60/0xb0 [ 87.176834][ T5344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.179460][ T5344] RIP: 0033:0x7fcadc38f7c9 [ 87.181458][ T5344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.189758][ T5344] RSP: 002b:00007fcadd164038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 87.193416][ T5344] RAX: ffffffffffffffda RBX: 00007fcadc5e5fa0 RCX: 00007fcadc38f7c9 [ 87.196846][ T5344] RDX: 0000200000000040 RSI: 00002000000002c0 RDI: 0000200000000000 [ 87.200232][ T5344] RBP: 00007fcadc413f91 R08: 0000000000000000 R09: 0000000000000000 [ 87.203664][ T5344] R10: 0000000001800000 R11: 0000000000000246 R12: 0000000000000000 [ 87.207243][ T5344] R13: 00007fcadc5e6038 R14: 00007fcadc5e5fa0 R15: 00007ffe2e3db2b8 [ 87.210844][ T5344] [ 87.212397][ T5344] Modules linked in: [ 87.214703][ T5344] ---[ end trace 0000000000000000 ]--- [ 87.223796][ T5344] RIP: 0010:folio_set_bh+0x1dc/0x1e0 [ 87.226903][ T5344] Code: 4c 89 e2 e8 a6 8f 7b 02 e9 42 ff ff ff e8 dc 0f 74 ff 48 89 df 48 c7 c6 80 8a 7a 8b e8 0d 0f db fe 90 0f 0b e8 c5 0f 74 ff 90 <0f> 0b 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f [ 87.237011][ T5344] RSP: 0018:ffffc9000e45f8e0 EFLAGS: 00010287 [ 87.240374][ T5344] RAX: ffffffff824cf79b RBX: ffffea000155c340 RCX: 0000000000100000 [ 87.244570][ T5344] RDX: ffffc9002112a000 RSI: 0000000000000e17 RDI: 0000000000000e18 [ 87.248277][ T5344] RBP: dffffc0000000000 R08: ffffea000155c347 R09: 1ffffd40002ab868 [ 87.252314][ T5344] R10: dffffc0000000000 R11: fffff940002ab869 R12: 0000000000000000 [ 87.255813][ T5344] R13: 0000000000001000 R14: ffff888031d923a0 R15: 0000000000001000 [ 87.259240][ T5344] FS: 00007fcadd1646c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000 [ 87.263504][ T5344] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 87.266294][ T5344] CR2: 000055868e684108 CR3: 0000000000d37000 CR4: 0000000000352ef0 [ 87.269538][ T5344] Kernel panic - not syncing: Fatal exception [ 87.272512][ T5344] Kernel Offset: disabled [ 87.274379][ T5344] Rebooting in 86400 seconds..