------------[ cut here ]------------
kernel BUG at ./include/linux/pagemap.h:1426!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 22630 Comm: syz.7.2601 Tainted: G             L      syzkaller #0 PREEMPT(full) 
Tainted: [L]=SOFTLOCKUP
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:__readahead_folio include/linux/pagemap.h:1426 [inline]
RIP: 0010:readahead_folio include/linux/pagemap.h:1452 [inline]
RIP: 0010:mpage_readahead+0x4ad/0x5a0 fs/mpage.c:367
Code: 5e 41 5f c3 cc cc cc cc e8 10 27 6d ff 48 89 ef e8 88 cf aa ff e9 54 fe ff ff 4c 8b 6c 24 18 e9 43 ff ff ff e8 f4 26 6d ff 90 <0f> 0b e8 ec 26 6d ff 48 c7 c6 40 65 a1 8b 48 89 ef e8 bd f7 b7 ff
RSP: 0000:ffffc90005def6d0 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffffc90005defb38 RCX: ffffffff8251b944
RDX: ffff8880663c4980 RSI: ffffffff8251bccc RDI: 0000000000000004
RBP: 0000000000000004 R08: 0000000000000004 R09: 0000000000000004
R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000
R13: fffff52000bbdf6b R14: 0000000000000001 R15: 1ffff92000bbdf6b
FS:  0000555568312500(0000) GS:ffff8880d68fd000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000000140 CR3: 000000002c632000 CR4: 0000000000352ef0
DR0: 0000000000800003 DR1: 00000000000001f5 DR2: 0000000000000483
DR3: 0000000000000007 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 read_pages+0x1c4/0xc70 mm/readahead.c:163
 page_cache_ra_unbounded+0x66c/0x9e0 mm/readahead.c:269
 do_page_cache_ra mm/readahead.c:332 [inline]
 page_cache_sync_ra+0xa88/0xbc0 mm/readahead.c:611
 do_sync_mmap_readahead mm/filemap.c:3329 [inline]
 filemap_fault+0x2384/0x29d0 mm/filemap.c:3549
 __do_fault+0x10d/0x490 mm/memory.c:5320
 do_shared_fault mm/memory.c:5819 [inline]
 do_fault+0x302/0x1ad0 mm/memory.c:5893
 do_pte_missing mm/memory.c:4401 [inline]
 handle_pte_fault mm/memory.c:6273 [inline]
 __handle_mm_fault+0x1919/0x2bb0 mm/memory.c:6411
 handle_mm_fault+0x3fe/0xad0 mm/memory.c:6580
 do_user_addr_fault+0x60c/0x1370 arch/x86/mm/fault.c:1336
 handle_page_fault arch/x86/mm/fault.c:1476 [inline]
 exc_page_fault+0x64/0xc0 arch/x86/mm/fault.c:1532
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:618
RIP: 0033:0x7fee73655543
Code: 48 85 c0 74 1b 48 83 f8 01 0f 85 3b 03 00 00 0f b7 44 24 18 66 c1 c0 08 0f b7 c0 48 89 44 24 18 48 8b 44 24 10 0f b7 54 24 18 <66> 89 10 e9 82 fe ff ff 48 83 3c 24 08 0f 85 a1 02 00 00 48 8b 44
RSP: 002b:00007ffe5c5c52a0 EFLAGS: 00010246
RAX: 0000200000000140 RBX: 0000000000000002 RCX: 0000000000000000
RDX: 0000000000000024 RSI: 0000000000000000 RDI: 00005555683123c8
RBP: 00007ffe5c5c53a8 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 00007fee739e618c
R13: 00007fee739e6180 R14: fffffffffffffffe R15: 00007ffe5c5c53f0
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:__readahead_folio include/linux/pagemap.h:1426 [inline]
RIP: 0010:readahead_folio include/linux/pagemap.h:1452 [inline]
RIP: 0010:mpage_readahead+0x4ad/0x5a0 fs/mpage.c:367
Code: 5e 41 5f c3 cc cc cc cc e8 10 27 6d ff 48 89 ef e8 88 cf aa ff e9 54 fe ff ff 4c 8b 6c 24 18 e9 43 ff ff ff e8 f4 26 6d ff 90 <0f> 0b e8 ec 26 6d ff 48 c7 c6 40 65 a1 8b 48 89 ef e8 bd f7 b7 ff
RSP: 0000:ffffc90005def6d0 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffffc90005defb38 RCX: ffffffff8251b944
RDX: ffff8880663c4980 RSI: ffffffff8251bccc RDI: 0000000000000004
RBP: 0000000000000004 R08: 0000000000000004 R09: 0000000000000004
R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000
R13: fffff52000bbdf6b R14: 0000000000000001 R15: 1ffff92000bbdf6b
FS:  0000555568312500(0000) GS:ffff8880d69fd000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000558ecd83ead0 CR3: 000000002c632000 CR4: 0000000000352ef0
DR0: 0000000000800003 DR1: 00000000000001f5 DR2: 0000000000000483
DR3: 0000000000000007 DR6: 00000000ffff0ff0 DR7: 0000000000000400