------------[ cut here ]------------ kernel BUG at fs/buffer.c:3054! invalid opcode: 0000 [#1] PREEMPT SMP KASAN kobject: 'loop4' (000000006c5c317b): kobject_uevent_env CPU: 1 PID: 642 Comm: syz-executor.0 Not tainted 4.19.76 #0 kobject: 'loop4' (000000006c5c317b): fill_kobj_path: path = '/devices/virtual/block/loop4' Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:submit_bh_wbc+0x61d/0x790 fs/buffer.c:3054 Code: 45 d0 48 8d 43 10 48 89 45 c0 e9 1b fc ff ff e8 99 eb b1 ff f0 80 63 01 f7 e9 1f fb ff ff e8 8a eb b1 ff 0f 0b e8 83 eb b1 ff <0f> 0b e8 7c eb b1 ff 0f 0b e8 75 eb b1 ff 0f 0b e8 6e eb b1 ff 0f RSP: 0000:ffff888050e97960 EFLAGS: 00010212 RAX: 0000000000040000 RBX: ffff88804a3c99d8 RCX: ffffc90005e5f000 RDX: 0000000000004c81 RSI: ffffffff81b9776d RDI: 0000000000000001 RBP: ffff888050e979a8 R08: ffff88804c55a080 R09: ffffed1009479348 R10: ffffed1009479347 R11: ffff88804a3c9a3b R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 00007fda5446d700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f87259fea20 CR3: 00000000a80f5000 CR4: 00000000001406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: submit_bh fs/buffer.c:3101 [inline] __bread_slow fs/buffer.c:1176 [inline] __bread_gfp+0x13d/0x300 fs/buffer.c:1358 sb_bread_unmovable include/linux/buffer_head.h:313 [inline] ext4_fill_super+0x5c1/0xc830 fs/ext4/super.c:3641 mount_bdev+0x304/0x3c0 fs/super.c:1158 ext4_mount+0x35/0x40 fs/ext4/super.c:5936 mount_fs+0xa8/0x31f fs/super.c:1261 vfs_kern_mount.part.0+0x6f/0x410 fs/namespace.c:961 vfs_kern_mount fs/namespace.c:951 [inline] do_new_mount fs/namespace.c:2469 [inline] do_mount+0x53e/0x2bc0 fs/namespace.c:2799 ksys_mount+0xdb/0x150 fs/namespace.c:3015 __do_sys_mount fs/namespace.c:3029 [inline] __se_sys_mount fs/namespace.c:3026 [inline] __x64_sys_mount+0xbe/0x150 fs/namespace.c:3026 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x45c4aa Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 8d fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 8d fb ff c3 66 0f 1f 84 00 00 00 00 00 RSP: 002b:00007fda5446ca88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fda5446cb40 RCX: 000000000045c4aa RDX: 00007fda5446cae0 RSI: 0000000020000000 RDI: 00007fda5446cb00 RBP: 0000000000000004 R08: 00007fda5446cb40 R09: 00007fda5446cae0 R10: 0000000000000005 R11: 0000000000000206 R12: 0000000000000003 R13: 00000000004c8dfa R14: 00000000004e0260 R15: 00000000ffffffff Modules linked in: ---[ end trace 7eb8e26f290df524 ]--- RIP: 0010:submit_bh_wbc+0x61d/0x790 fs/buffer.c:3054 kobject: 'loop1' (000000004e4c36fb): kobject_uevent_env kobject: 'loop1' (000000004e4c36fb): fill_kobj_path: path = '/devices/virtual/block/loop1' Code: 45 d0 48 8d 43 10 48 89 45 c0 e9 1b fc ff ff e8 99 eb b1 ff f0 80 63 01 f7 e9 1f fb ff ff e8 8a eb b1 ff 0f 0b e8 83 eb b1 ff <0f> 0b e8 7c eb b1 ff 0f 0b e8 75 eb b1 ff 0f 0b e8 6e eb b1 ff 0f EXT4-fs (loop4): inodes count not valid: 786560 vs 128 EXT4-fs (loop1): inodes count not valid: 276352 vs 128 RSP: 0000:ffff888050e97960 EFLAGS: 00010212 kobject: 'loop4' (000000006c5c317b): kobject_uevent_env kobject: 'loop4' (000000006c5c317b): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop1' (000000004e4c36fb): kobject_uevent_env kobject: 'loop1' (000000004e4c36fb): fill_kobj_path: path = '/devices/virtual/block/loop1' kobject: 'loop1' (000000004e4c36fb): kobject_uevent_env kobject: 'loop1' (000000004e4c36fb): fill_kobj_path: path = '/devices/virtual/block/loop1' kobject: 'loop4' (000000006c5c317b): kobject_uevent_env kobject: 'loop4' (000000006c5c317b): fill_kobj_path: path = '/devices/virtual/block/loop4' EXT4-fs (loop4): inodes count not valid: 1049728 vs 128 kobject: 'loop4' (000000006c5c317b): kobject_uevent_env kobject: 'loop4' (000000006c5c317b): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop1' (000000004e4c36fb): kobject_uevent_env kobject: 'loop1' (000000004e4c36fb): fill_kobj_path: path = '/devices/virtual/block/loop1' RAX: 0000000000040000 RBX: ffff88804a3c99d8 RCX: ffffc90005e5f000 RDX: 0000000000004c81 RSI: ffffffff81b9776d RDI: 0000000000000001 EXT4-fs (loop1): inodes count not valid: 276608 vs 128 RBP: ffff888050e979a8 R08: ffff88804c55a080 R09: ffffed1009479348 R10: ffffed1009479347 R11: ffff88804a3c9a3b R12: 0000000000000000 kobject: 'loop1' (000000004e4c36fb): kobject_uevent_env R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 kobject: 'loop1' (000000004e4c36fb): fill_kobj_path: path = '/devices/virtual/block/loop1' FS: 00007fda5446d700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 kobject: 'loop4' (000000006c5c317b): kobject_uevent_env CR2: 00007f851b99d6f0 CR3: 00000000a80f5000 CR4: 00000000001406e0 kobject: 'loop4' (000000006c5c317b): fill_kobj_path: path = '/devices/virtual/block/loop4' DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400