------------[ cut here ]------------
kernel BUG at ./include/linux/pagemap.h:1398!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 1 UID: 0 PID: 9732 Comm: syz.1.667 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
RIP: 0010:__readahead_folio include/linux/pagemap.h:1398 [inline]
RIP: 0010:readahead_folio include/linux/pagemap.h:1424 [inline]
RIP: 0010:mpage_readahead+0x637/0x650 fs/mpage.c:367
Code: c6 20 f6 99 8b e8 09 45 e1 fe 90 0f 0b e8 81 f4 78 ff 4c 89 ef 48 c7 c6 80 f6 99 8b e8 f2 44 e1 fe 90 0f 0b e8 6a f4 78 ff 90 <0f> 0b e8 62 f4 78 ff 90 0f 0b 66 66 66 66 66 66 2e 0f 1f 84 00 00
RSP: 0018:ffffc90011c37560 EFLAGS: 00010293
RAX: ffffffff8246b726 RBX: 0000000000000001 RCX: ffff88802d9ada00
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
RBP: ffffc90011c37750 R08: ffffea00016f0e07 R09: 1ffffd40002de1c0
R10: dffffc0000000000 R11: fffff940002de1c1 R12: dffffc0000000000
R13: ffffc90011c379c8 R14: 0000000000000004 R15: ffffc90011c379e0
FS:  00007fd5e77cd6c0(0000) GS:ffff888125d1b000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000015038 CR3: 000000004dced000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 read_pages+0x17a/0x580 mm/readahead.c:160
 page_cache_ra_unbounded+0x346/0x7b0 mm/readahead.c:264
 do_sync_mmap_readahead+0x3aa/0x7a0 mm/filemap.c:3252
 filemap_fault+0x62c/0x1200 mm/filemap.c:3445
 __do_fault+0x138/0x390 mm/memory.c:5152
 do_read_fault mm/memory.c:5573 [inline]
 do_fault mm/memory.c:5707 [inline]
 do_pte_missing mm/memory.c:4234 [inline]
 handle_pte_fault mm/memory.c:6052 [inline]
 __handle_mm_fault+0x3611/0x5440 mm/memory.c:6195
 handle_mm_fault+0x40a/0x8e0 mm/memory.c:6364
 do_user_addr_fault+0xa81/0x1390 arch/x86/mm/fault.c:1336
 handle_page_fault arch/x86/mm/fault.c:1476 [inline]
 exc_page_fault+0x76/0xf0 arch/x86/mm/fault.c:1532
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623
RIP: 0033:0x7fd5e69675b9
Code: 84 00 00 00 00 00 66 2e 0f 1f 84 00 00 00 00 00 90 89 f8 48 89 fa c5 f9 ef c0 25 ff 0f 00 00 3d e0 0f 00 00 0f 87 37 01 00 00 <c5> fd 74 0f c5 fd d7 c1 85 c0 74 5b f3 0f bc c0 c5 f8 77 c3 0f 1f
RSP: 002b:00007fd5e77cc7c8 EFLAGS: 00010283
RAX: 0000000000000200 RBX: 00007fd5e77ccd30 RCX: 00007fd5e6b78120
RDX: 0000200000000200 RSI: 00007fd5e6a11b31 RDI: 0000200000000200
RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
R10: 00000000ffffffff R11: 0000000000000000 R12: 0000000000000073
R13: 00007fd5e77cceb0 R14: 0000200000000200 R15: 0000000000000000
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:__readahead_folio include/linux/pagemap.h:1398 [inline]
RIP: 0010:readahead_folio include/linux/pagemap.h:1424 [inline]
RIP: 0010:mpage_readahead+0x637/0x650 fs/mpage.c:367
Code: c6 20 f6 99 8b e8 09 45 e1 fe 90 0f 0b e8 81 f4 78 ff 4c 89 ef 48 c7 c6 80 f6 99 8b e8 f2 44 e1 fe 90 0f 0b e8 6a f4 78 ff 90 <0f> 0b e8 62 f4 78 ff 90 0f 0b 66 66 66 66 66 66 2e 0f 1f 84 00 00
RSP: 0018:ffffc90011c37560 EFLAGS: 00010293
RAX: ffffffff8246b726 RBX: 0000000000000001 RCX: ffff88802d9ada00
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
RBP: ffffc90011c37750 R08: ffffea00016f0e07 R09: 1ffffd40002de1c0
R10: dffffc0000000000 R11: fffff940002de1c1 R12: dffffc0000000000
R13: ffffc90011c379c8 R14: 0000000000000004 R15: ffffc90011c379e0
FS:  00007fd5e77cd6c0(0000) GS:ffff888125d1b000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000110c41bd94 CR3: 000000004dced000 CR4: 0000000000350ef0