Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.45' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 32.717343] VFS: Found a V7 FS (block size = 512) on device loop0 [ 32.734609] attempt to access beyond end of device [ 32.741087] loop0: rw=0, want=9698052, limit=112 [ 32.746390] Buffer I/O error on dev loop0, logical block 9698051, async page read [ 32.757528] attempt to access beyond end of device [ 32.762714] loop0: rw=0, want=565370, limit=112 [ 32.767384] Buffer I/O error on dev loop0, logical block 565369, async page read [ 32.775322] attempt to access beyond end of device [ 32.781021] loop0: rw=0, want=10282938, limit=112 [ 32.785866] Buffer I/O error on dev loop0, logical block 10282937, async page read [ 32.793738] attempt to access beyond end of device [ 32.798761] loop0: rw=0, want=7284998, limit=112 [ 32.803513] Buffer I/O error on dev loop0, logical block 7284997, async page read [ 32.811227] attempt to access beyond end of device [ 32.816152] loop0: rw=0, want=3984204, limit=112 [ 32.821014] Buffer I/O error on dev loop0, logical block 3984203, async page read [ 32.828746] attempt to access beyond end of device [ 32.833663] loop0: rw=0, want=6992027, limit=112 [ 32.838489] Buffer I/O error on dev loop0, logical block 6992026, async page read [ 32.846237] attempt to access beyond end of device [ 32.851243] loop0: rw=0, want=6756799, limit=112 [ 32.856000] Buffer I/O error on dev loop0, logical block 6756798, async page read [ 32.863737] attempt to access beyond end of device [ 32.868743] loop0: rw=0, want=575895, limit=112 [ 32.873405] Buffer I/O error on dev loop0, logical block 575894, async page read [ 32.881240] BUG: sleeping function called from invalid context at fs/buffer.c:1319 [ 32.889123] in_atomic(): 1, irqs_disabled(): 0, pid: 8077, name: syz-executor116 [ 32.896658] 2 locks held by syz-executor116/8077: [ 32.901575] #0: 000000005b77337e (&type->i_mutex_dir_key#7){.+.+}, at: walk_component+0x798/0xda0 [ 32.910790] #1: 000000002a33c643 (pointers_lock){.+.+}, at: get_block+0x171/0x1510 [ 32.918659] Preemption disabled at: [ 32.918666] [<0000000000000000>] (null) [ 32.927099] CPU: 1 PID: 8077 Comm: syz-executor116 Not tainted 4.19.211-syzkaller #0 [ 32.934960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 32.944289] Call Trace: [ 32.946861] dump_stack+0x1fc/0x2ef [ 32.950470] ___might_sleep.cold+0x235/0x250 [ 32.954860] __bread_gfp+0x3f/0x300 [ 32.958470] get_branch+0x2cd/0x640 [ 32.962078] get_block+0x194/0x1510 [ 32.965690] ? block_to_path.isra.0+0x440/0x440 [ 32.970349] ? create_page_buffers+0x212/0x350 [ 32.974912] ? alloc_page_buffers+0x2da/0x5c0 [ 32.979390] ? create_empty_buffers+0x4e7/0x760 [ 32.984040] ? do_raw_spin_unlock+0x171/0x230 [ 32.988516] ? _raw_spin_unlock+0x29/0x40 [ 32.992641] ? create_page_buffers+0x190/0x350 [ 32.997203] block_read_full_page+0x288/0xd10 [ 33.001680] ? block_to_path.isra.0+0x440/0x440 [ 33.006334] ? __bread_gfp+0x300/0x300 [ 33.010204] ? add_to_page_cache_locked+0x40/0x40 [ 33.015032] do_read_cache_page+0x533/0x1170 [ 33.019421] ? sysv_bmap+0x30/0x30 [ 33.022947] sysv_find_entry+0x21a/0x6f0 [ 33.027079] sysv_inode_by_name+0x6d/0x3d0 [ 33.031294] ? sysv_dotdot+0x150/0x150 [ 33.035164] ? __lockdep_init_map+0x100/0x5a0 [ 33.039644] sysv_lookup+0x7c/0x100 [ 33.043340] __lookup_slow+0x246/0x4a0 [ 33.047211] ? follow_dotdot_rcu+0x1040/0x1040 [ 33.051778] ? lookup_fast+0x4e9/0x1080 [ 33.055735] ? walk_component+0x798/0xda0 [ 33.059865] walk_component+0x7ac/0xda0 [ 33.063821] ? lookup_fast+0x1080/0x1080 [ 33.067863] ? walk_component+0xda0/0xda0 [ 33.071993] path_lookupat+0x1ff/0x8d0 [ 33.075976] ? path_mountpoint+0xac0/0xac0 [ 33.080202] ? trace_hardirqs_off+0x64/0x200 [ 33.084591] filename_lookup+0x1ac/0x5a0 [ 33.088634] ? filename_parentat+0x590/0x590 [ 33.093036] ? __phys_addr_symbol+0x2c/0x70 [ 33.097336] ? __check_object_size+0x17b/0x3e0 [ 33.101902] ? getname_flags+0x25b/0x590 [ 33.105957] do_mount+0x147/0x2f50 [ 33.109477] ? kfree+0x110/0x210 [ 33.112827] ? task_work_run+0x11c/0x1c0 [ 33.118940] ? copy_mount_string+0x40/0x40 [ 33.123159] ? __close_fd+0x128/0x200 [ 33.126943] ? lock_downgrade+0x720/0x720 [ 33.131070] ? lock_acquire+0x170/0x3c0 [ 33.135024] ? dnotify_flush+0x75/0x2d0 [ 33.138980] ? copy_mount_options+0x26f/0x380 [ 33.143469] ksys_mount+0xcf/0x130 [ 33.146988] __x64_sys_mount+0xba/0x150 [ 33.151027] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 33.155600] do_syscall_64+0xf9/0x620 [ 33.159381] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.164552] RIP: 0033:0x7fce8d200049 [ 33.168249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 33.187129] RSP: 002b:00007ffe7ab6dc98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 33.194814] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007fce8d200049 [ 33.202061] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000000 [ 33.209308] RBP: 00007fce8d1bf620 R08: 0000000000000000 R09: 0000000000000000 [ 33.216553] R10: 000000000200200