attempt to access beyond end of device loop0: rw=0, want=8073606, limit=128 Buffer I/O error on dev loop0, logical block 8073605, async page read XFS (loop2): Superblock has unknown read-only compatible features (0x8) enabled. XFS (loop2): Attempted to mount read-only compatible filesystem read-write. BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9602, name: syz-executor.0 2 locks held by syz-executor.0/9602: REISERFS (device loop1): Using r5 hash to sort names #0: (&iint->mutex){+.+.}, at: [] process_measurement+0x270/0xb20 security/integrity/ima/ima_main.c:225 #1: (pointers_lock){.+.+} REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. , at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9602 Comm: syz-executor.0 Not tainted 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 XFS (loop2): Filesystem can only be safely mounted read only. ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 XFS (loop2): SB validate failed with error -22. block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 read_pages mm/readahead.c:131 [inline] __do_page_cache_readahead+0x69b/0x940 mm/readahead.c:199 ra_submit mm/internal.h:66 [inline] ondemand_readahead.isra.0+0x514/0xb60 mm/readahead.c:486 page_cache_sync_readahead mm/readahead.c:518 [inline] page_cache_sync_readahead+0xa6/0xf0 mm/readahead.c:503 generic_file_buffered_read mm/filemap.c:2003 [inline] generic_file_read_iter+0xfbc/0x21c0 mm/filemap.c:2273 call_read_iter include/linux/fs.h:1774 [inline] new_sync_read fs/read_write.c:401 [inline] __vfs_read+0x449/0x620 fs/read_write.c:413 integrity_kernel_read+0x11b/0x1b0 security/integrity/iint.c:199 ima_calc_file_hash_tfm security/integrity/ima/ima_crypto.c:381 [inline] ima_calc_file_shash security/integrity/ima/ima_crypto.c:410 [inline] ima_calc_file_hash+0x3ee/0x780 security/integrity/ima/ima_crypto.c:467 ima_collect_measurement+0x39d/0x430 security/integrity/ima/ima_api.c:227 process_measurement+0x78b/0xb20 security/integrity/ima/ima_main.c:264 do_last fs/namei.c:3435 [inline] path_openat+0x10ad/0x2970 fs/namei.c:3571 do_filp_open+0x179/0x3c0 fs/namei.c:3605 do_sys_open+0x296/0x410 fs/open.c:1081 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f004776f0d9 RSP: 002b:00007f0045ce1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 RAX: ffffffffffffffda RBX: 00007f004788ef80 RCX: 00007f004776f0d9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 RBP: 00007f00477caae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc5c94adef R14: 00007f0045ce1300 R15: 0000000000022000 audit: type=1804 audit(1671376067.088:7): pid=9658 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir2055048990/syzkaller.3586Pt/2/file0/bus" dev="loop1" ino=5 res=1 BTRFS info (device loop5): using free space tree BTRFS error (device loop5): cannot mount because of unsupported optional features (0x800) overlayfs: fs on 'file0' does not support file handles, falling back to index=off. BTRFS error (device loop5): open_ctree failed REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal REISERFS (device loop1): using ordered data mode reiserfs: using flush barriers REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 audit: type=1804 audit(1671376067.538:8): pid=9625 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.5" name="/root/syzkaller-testdir2907220606/syzkaller.5DGmNy/1/bus" dev="sda1" ino=13888 res=1 REISERFS (device loop1): checking transaction log (loop1) REISERFS (device loop1): Using r5 hash to sort names REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. audit: type=1804 audit(1671376067.898:9): pid=9690 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir65103107/syzkaller.dabUyr/3/bus/file0" dev="sda1" ino=13888 res=1 F2FS-fs (loop3): invalid crc value BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9602, name: syz-executor.0 2 locks held by syz-executor.0/9602: #0: (&iint->mutex){+.+.}, at: [] process_measurement+0x270/0xb20 security/integrity/ima/ima_main.c:225 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 0 PID: 9602 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 read_pages mm/readahead.c:131 [inline] __do_page_cache_readahead+0x69b/0x940 mm/readahead.c:199 ra_submit mm/internal.h:66 [inline] ondemand_readahead.isra.0+0x514/0xb60 mm/readahead.c:486 page_cache_sync_readahead mm/readahead.c:518 [inline] page_cache_sync_readahead+0xa6/0xf0 mm/readahead.c:503 generic_file_buffered_read mm/filemap.c:2003 [inline] generic_file_read_iter+0xfbc/0x21c0 mm/filemap.c:2273 call_read_iter include/linux/fs.h:1774 [inline] new_sync_read fs/read_write.c:401 [inline] __vfs_read+0x449/0x620 fs/read_write.c:413 integrity_kernel_read+0x11b/0x1b0 security/integrity/iint.c:199 ima_calc_file_hash_tfm security/integrity/ima/ima_crypto.c:381 [inline] ima_calc_file_shash security/integrity/ima/ima_crypto.c:410 [inline] ima_calc_file_hash+0x3ee/0x780 security/integrity/ima/ima_crypto.c:467 ima_collect_measurement+0x39d/0x430 security/integrity/ima/ima_api.c:227 process_measurement+0x78b/0xb20 security/integrity/ima/ima_main.c:264 do_last fs/namei.c:3435 [inline] path_openat+0x10ad/0x2970 fs/namei.c:3571 do_filp_open+0x179/0x3c0 fs/namei.c:3605 do_sys_open+0x296/0x410 fs/open.c:1081 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f004776f0d9 RSP: 002b:00007f0045ce1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 RAX: ffffffffffffffda RBX: 00007f004788ef80 RCX: 00007f004776f0d9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 RBP: 00007f00477caae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc5c94adef R14: 00007f0045ce1300 R15: 0000000000022000 audit: type=1804 audit(1671376068.258:10): pid=9695 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir2055048990/syzkaller.3586Pt/3/file0/bus" dev="loop1" ino=5 res=1 attempt to access beyond end of device loop0: rw=0, want=3245519, limit=128 F2FS-fs (loop3): Found nat_bits in checkpoint Buffer I/O error on dev loop0, logical block 3245518, async page read attempt to access beyond end of device loop0: rw=0, want=8769404, limit=128 Buffer I/O error on dev loop0, logical block 8769403, async page read attempt to access beyond end of device loop0: rw=0, want=3245513, limit=128 attempt to access beyond end of device F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 loop0: rw=0, want=8767868, limit=128 attempt to access beyond end of device loop0: rw=0, want=13269810, limit=128 attempt to access beyond end of device BTRFS info (device loop5): using free space tree audit: type=1800 audit(1671376068.618:11): pid=9643 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="loop3" ino=10 res=0 BTRFS error (device loop5): cannot mount because of unsupported optional features (0x800) loop0: rw=0, want=8073606, limit=128 attempt to access beyond end of device loop0: rw=0, want=3245516, limit=128 attempt to access beyond end of device BTRFS error (device loop5): open_ctree failed loop0: rw=0, want=8768636, limit=128 attempt to access beyond end of device loop0: rw=0, want=13466418, limit=128 attempt to access beyond end of device loop0: rw=0, want=8073606, limit=128 EXT4-fs (loop1): Ignoring removed nobh option EXT4-fs: Warning: mounting with data=journal disables delayed allocation and O_DIRECT support! EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) EXT4-fs (loop1): Unsupported blocksize for fs encryption BTRFS info (device loop5): using free space tree BTRFS error (device loop5): cannot mount because of unsupported optional features (0x800) BTRFS error (device loop5): open_ctree failed kauditd_printk_skb: 5 callbacks suppressed audit: type=1804 audit(1671376070.228:17): pid=9758 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.5" name="/root/syzkaller-testdir2907220606/syzkaller.5DGmNy/3/bus" dev="sda1" ino=13901 res=1 XFS (loop0): Mounting V4 Filesystem XFS (loop0): Ending clean mount audit: type=1804 audit(1671376070.548:18): pid=9750 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir2929343335/syzkaller.SLBKtb/10/file0/bus/file0" dev="loop0" ino=42 res=1 XFS (loop0): Unmounting Filesystem F2FS-fs (loop2): Found nat_bits in checkpoint F2FS-fs (loop3): invalid crc value gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" gfs2: fsid=syz:syz: Now mounting FS... F2FS-fs (loop3): Found nat_bits in checkpoint gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents gfs2: fsid=syz:syz.0: jid=0, already locked for use gfs2: fsid=syz:syz.0: jid=0: Looking at journal... gfs2: fsid=syz:syz.0: jid=0: Done F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b gfs2: fsid=syz:syz.0: jid=1: Trying to acquire journal lock... gfs2: fsid=syz:syz.0: jid=1: Looking at journal... gfs2: fsid=syz:syz.0: jid=1: Done gfs2: fsid=syz:syz.0: first mount done, others may mount F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 audit: type=1800 audit(1671376071.249:19): pid=9754 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.1" name=".pending_reads" dev="loop1" ino=8761 res=0 audit: type=1800 audit(1671376071.319:20): pid=9782 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="loop3" ino=10 res=0 audit: type=1800 audit(1671376071.399:21): pid=9782 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="loop3" ino=10 res=0 audit: type=1800 audit(1671376071.479:22): pid=9782 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="loop3" ino=10 res=0 ------------[ cut here ]------------ WARNING: CPU: 1 PID: 8023 at include/linux/backing-dev.h:335 inode_to_wb include/linux/backing-dev.h:335 [inline] WARNING: CPU: 1 PID: 8023 at include/linux/backing-dev.h:335 account_page_dirtied+0x8df/0xbb0 mm/page-writeback.c:2437