------------[ cut here ]------------
kernel BUG at fs/buffer.c:3060!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 0 PID: 11080 Comm: syz-executor0 Not tainted 4.9.112-g9e79039 #7
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff880192d93000 task.stack: ffff88019cdc8000
RIP: 0010:[<ffffffff81627cb4>]  [<ffffffff81627cb4>] submit_bh_wbc.isra.46+0x3e4/0x590 fs/buffer.c:3060
RSP: 0018:ffff88019cdcf6d8  EFLAGS: 00010216
RAX: 0000000000040000 RBX: ffff8801d625c0a8 RCX: ffffc900008a9000
RDX: 000000000001f34c RSI: ffffffff81627cb4 RDI: 0000000000000000
RBP: ffff88019cdcf718 R08: ffff880192d938e8 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000058
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
FS:  00007f46390f9700(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000000044f940 CR3: 00000001c8f04000 CR4: 00000000001606f0
DR0: 00000000200001c0 DR1: 00000000200001c0 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
Stack:
 ffff88019cdcf718 ffffffff811bb695 ffff8801d9c178c0 ffff8801d625c0a8
 0000000000000058 0000000000000200 0000000000000008 ffff88019341a200
 ffff88019cdcf748 ffffffff81628da9 ffff88019341a200 ffff88019341a218
Call Trace:
 [<ffffffff81628da9>] submit_bh fs/buffer.c:3114 [inline]
 [<ffffffff81628da9>] __bread_slow fs/buffer.c:1228 [inline]
 [<ffffffff81628da9>] __bread_gfp+0xf9/0x270 fs/buffer.c:1423
 [<ffffffff818b78b8>] sb_bread include/linux/buffer_head.h:300 [inline]
 [<ffffffff818b78b8>] fat__get_entry+0x4c8/0x8f0 fs/fat/dir.c:100
 [<ffffffff818ba541>] fat_get_entry fs/fat/dir.c:128 [inline]
 [<ffffffff818ba541>] fat_get_short_entry+0x131/0x2a0 fs/fat/dir.c:876
 [<ffffffff818c24a7>] fat_subdirs+0xc7/0x190 fs/fat/dir.c:942
 [<ffffffff818d27b9>] fat_read_root fs/fat/inode.c:1402 [inline]
 [<ffffffff818d27b9>] fat_fill_super+0x1cf9/0x3550 fs/fat/inode.c:1832
 [<ffffffff818d9571>] vfat_fill_super+0x31/0x40 fs/fat/namei_vfat.c:1070
 [<ffffffff8157c527>] mount_bdev+0x2c7/0x390 fs/super.c:1100
 [<ffffffff818d9534>] vfat_mount+0x34/0x40 fs/fat/namei_vfat.c:1077
 [<ffffffff8157e2ac>] mount_fs+0x28c/0x370 fs/super.c:1206
 [<ffffffff815dda71>] vfs_kern_mount.part.29+0xd1/0x3d0 fs/namespace.c:991
 [<ffffffff815e5399>] vfs_kern_mount fs/namespace.c:973 [inline]
 [<ffffffff815e5399>] do_new_mount fs/namespace.c:2513 [inline]
 [<ffffffff815e5399>] do_mount+0x3c9/0x2740 fs/namespace.c:2835
 [<ffffffff815e80ee>] SYSC_mount fs/namespace.c:3051 [inline]
 [<ffffffff815e80ee>] SyS_mount+0xfe/0x110 fs/namespace.c:3028
 [<ffffffff81006316>] do_syscall_64+0x1a6/0x490 arch/x86/entry/common.c:282
 [<ffffffff839f9f53>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
Code: c3 e8 e1 6d d3 ff 41 83 fe 01 0f 85 f0 fc ff ff e8 d2 6d d3 ff f0 80 63 01 f7 e9 e1 fc ff ff e8 c3 6d d3 ff 0f 0b e8 bc 6d d3 ff <0f> 0b e8 b5 6d d3 ff 0f 0b e8 ae 6d d3 ff 0f 0b e8 a7 6d d3 ff 
RIP  [<ffffffff81627cb4>] submit_bh_wbc.isra.46+0x3e4/0x590 fs/buffer.c:3060
 RSP <ffff88019cdcf6d8>
---[ end trace c87fc3cc8768aca1 ]---