kworker/u4:1: attempt to access beyond end of device
loop0: rw=14337, sector=18754, nr_sectors = 2 limit=16383
Buffer I/O error on dev loop0, logical block 9377, lost async page write
kworker/u4:1: attempt to access beyond end of device
loop0: rw=14337, sector=18886, nr_sectors = 2 limit=16383
Buffer I/O error on dev loop0, logical block 9443, lost async page write
gfs2: fsid=syz:syz.0: dirty_inode: glock -5
gfs2: fsid=syz:syz.0: G:  s:EX n:2/24a1 f:yfaqo t:EX d:EX/0 a:0 v:0 r:2 m:20 p:2
gfs2: fsid=syz:syz.0:  H: s:EX f:aH e:0 p:5325 [syz.0.0] vfs_rename+0xb34/0xe80 fs/namei.c:5216
Oops: general protection fault, probably for non-canonical address 0xf0f75a169facd724: 0000 [#1] SMP KASAN NOPTI
KASAN: maybe wild-memory-access in range [0x87baf0b4fd66b920-0x87baf0b4fd66b927]
CPU: 0 UID: 0 PID: 13 Comm: kworker/u4:1 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
Workqueue: writeback wb_workfn (flush-7:0)
RIP: 0010:pid_is_meaningful fs/gfs2/glock.c:1470 [inline]
RIP: 0010:dump_holder fs/gfs2/glock.c:2278 [inline]
RIP: 0010:gfs2_dump_glock+0xfbb/0x1bc0 fs/gfs2/glock.c:2398
Code: a0 75 b1 8b be 65 03 00 00 48 c7 c2 e0 75 b1 8b e8 ca b2 a0 fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 28 0f b7 1b 89
RSP: 0018:ffffc900001f6da0 EFLAGS: 00010a06
RAX: dffffc0000000000 RBX: 87baf0b4fd66b920 RCX: ffff88801ab20000
RDX: 0000000000000000 RSI: ffffffff8bbf1740 RDI: ffffffff8bbf1700
RBP: ffffc900001f7090 R08: 0000000000000000 R09: ffffffff83fcc9cb
R10: dffffc0000000000 R11: fffffbfff1ef9e8f R12: ffffffff83fcc9cb
R13: 87baf0b4fd66b900 R14: 10f75e169facd724 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff88808d733000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffeafd01f90 CR3: 0000000051216000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 gfs2_dirty_inode+0x58e/0x600 fs/gfs2/super.c:500
 __mark_inode_dirty+0x2ec/0xe10 fs/fs-writeback.c:2566
 mark_inode_dirty_sync include/linux/fs.h:2619 [inline]
 gfs2_write_inode+0x2d6/0x3e0 fs/gfs2/super.c:457
 write_inode fs/fs-writeback.c:1564 [inline]
 __writeback_single_inode+0x6f1/0xff0 fs/fs-writeback.c:1784
 writeback_sb_inodes+0x6c7/0x1010 fs/fs-writeback.c:2015
 __writeback_inodes_wb+0x111/0x240 fs/fs-writeback.c:2086
 wb_writeback+0x44f/0xaf0 fs/fs-writeback.c:2197
 wb_check_start_all fs/fs-writeback.c:2323 [inline]
 wb_do_writeback fs/fs-writeback.c:2349 [inline]
 wb_workfn+0x90b/0xef0 fs/fs-writeback.c:2382
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
 kthread+0x711/0x8a0 kernel/kthread.c:463
 ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:pid_is_meaningful fs/gfs2/glock.c:1470 [inline]
RIP: 0010:dump_holder fs/gfs2/glock.c:2278 [inline]
RIP: 0010:gfs2_dump_glock+0xfbb/0x1bc0 fs/gfs2/glock.c:2398
Code: a0 75 b1 8b be 65 03 00 00 48 c7 c2 e0 75 b1 8b e8 ca b2 a0 fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 28 0f b7 1b 89
RSP: 0018:ffffc900001f6da0 EFLAGS: 00010a06
RAX: dffffc0000000000 RBX: 87baf0b4fd66b920 RCX: ffff88801ab20000
RDX: 0000000000000000 RSI: ffffffff8bbf1740 RDI: ffffffff8bbf1700
RBP: ffffc900001f7090 R08: 0000000000000000 R09: ffffffff83fcc9cb
R10: dffffc0000000000 R11: fffffbfff1ef9e8f R12: ffffffff83fcc9cb
R13: 87baf0b4fd66b900 R14: 10f75e169facd724 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff88808d733000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffeafd01f90 CR3: 000000001151b000 CR4: 0000000000352ef0
----------------
Code disassembly (best guess):
   0:	a0 75 b1 8b be 65 03 	movabs 0x365be8bb175,%al
   7:	00 00
   9:	48 c7 c2 e0 75 b1 8b 	mov    $0xffffffff8bb175e0,%rdx
  10:	e8 ca b2 a0 fd       	call   0xfda0b2df
  15:	49 8d 5d 20          	lea    0x20(%r13),%rbx
  19:	49 89 de             	mov    %rbx,%r14
  1c:	49 c1 ee 03          	shr    $0x3,%r14
  20:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  27:	fc ff df
* 2a:	41 0f b6 04 06       	movzbl (%r14,%rax,1),%eax <-- trapping instruction
  2f:	84 c0                	test   %al,%al
  31:	0f 85 28 06 00 00    	jne    0x65f
  37:	48 89 5c 24 28       	mov    %rbx,0x28(%rsp)
  3c:	0f b7 1b             	movzwl (%rbx),%ebx
  3f:	89                   	.byte 0x89