./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1325232964
<...>
forked to background, child pid 4658
no interfaces have a carrier
[ 53.303632][ T4659] 8021q: adding VLAN 0 to HW filter on device bond0
[ 53.317883][ T4659] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
Warning: Permanently added '10.128.0.252' (ECDSA) to the list of known hosts.
execve("./syz-executor1325232964", ["./syz-executor1325232964"], 0x7fff1a0490d0 /* 10 vars */) = 0
brk(NULL) = 0x555556764000
brk(0x555556764c40) = 0x555556764c40
arch_prctl(ARCH_SET_FS, 0x555556764300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1325232964", 4096) = 28
brk(0x555556785c40) = 0x555556785c40
brk(0x555556786000) = 0x555556786000
mprotect(0x7fc2cfba3000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
getpid() = 5083
mkdir("./syzkaller.3FjBqw", 0700) = 0
chmod("./syzkaller.3FjBqw", 0777) = 0
chdir("./syzkaller.3FjBqw") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555567645d0) = 5084
./strace-static-x86_64: Process 5084 attached
[pid 5084] chdir("./0") = 0
[pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5084] setpgid(0, 0) = 0
[pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5084] write(3, "1000", 4) = 4
[pid 5084] close(3) = 0
[pid 5084] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5084] memfd_create("syzkaller", 0) = 3
[pid 5084] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fc2c76e2000
syzkaller login: [ 83.016657][ T5084] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5084 'syz-executor132'
[pid 5084] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5084] munmap(0x7fc2c76e2000, 16777216) = 0
[pid 5084] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5084] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5084] close(3) = 0
[pid 5084] mkdir("./bus", 0777) = 0
[ 83.261435][ T5084] loop0: detected capacity change from 0 to 32768
[ 83.278329][ T5084] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz-executor132 (5084)
[ 83.304991][ T5084] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 83.314109][ T5084] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 83.325405][ T5084] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 83.336416][ T5084] BTRFS info (device loop0): force clearing of disk cache
[ 83.343662][ T5084] BTRFS info (device loop0): force zlib compression, level 3
[ 83.351088][ T5084] BTRFS info (device loop0): using free space tree
[ 83.379934][ T5084] BTRFS info (device loop0): enabling ssd optimizations
[ 83.387128][ T5084] BTRFS info (device loop0): auto enabling async discard
[ 83.396892][ T5084] BTRFS info (device loop0): clearing free space tree
[ 83.404959][ T5084] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 83.414856][ T5084] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[pid 5084] mount("/dev/loop0", "./bus", "btrfs", MS_DIRSYNC, "user_subvol_rm_allowed,noinode_cache,inode_cache,clear_cache,compress-force,noacl,treelog,") = 0
[pid 5084] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid 5084] chdir("./bus") = 0
[pid 5084] ioctl(4, LOOP_CLR_FD) = 0
[pid 5084] close(4) = 0
[pid 5084] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5084] write(4, "19", 2) = 2
[pid 5084] open("./file0", O_WRONLY|O_LARGEFILE|O_NOFOLLOW|O_TMPFILE, 000) = 5
[pid 5084] exit_group(0) = ?
[pid 5084] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5084, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=45 /* 0.45 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 83.445522][ T5084] BTRFS info (device loop0): creating free space tree
[ 83.454615][ T5084] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 83.464407][ T5084] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556765620 /* 4 entries */, 32768) = 104
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
umount2("./0/bus", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/bus", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./0/bus", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555676d660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555676d660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/bus") = 0
getdents64(3, 0x555556765620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555567645d0) = 5115
./strace-static-x86_64: Process 5115 attached
[pid 5115] chdir("./1") = 0
[pid 5115] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5115] setpgid(0, 0) = 0
[pid 5115] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5115] write(3, "1000", 4) = 4
[pid 5115] close(3) = 0
[pid 5115] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5115] memfd_create("syzkaller", 0) = 3
[pid 5115] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fc2c76e2000
[pid 5115] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5115] munmap(0x7fc2c76e2000, 16777216) = 0
[pid 5115] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5115] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5115] close(3) = 0
[pid 5115] mkdir("./bus", 0777) = 0
[ 84.042732][ T5115] loop0: detected capacity change from 0 to 32768
[ 84.054386][ T5115] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz-executor132 (5115)
[ 84.071071][ T5115] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 84.079944][ T5115] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 84.090857][ T5115] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 84.101774][ T5115] BTRFS info (device loop0): force clearing of disk cache
[ 84.109094][ T5115] BTRFS info (device loop0): force zlib compression, level 3
[ 84.116592][ T5115] BTRFS info (device loop0): using free space tree
[ 84.139215][ T5115] BTRFS info (device loop0): enabling ssd optimizations
[ 84.146332][ T5115] BTRFS info (device loop0): auto enabling async discard
[ 84.155125][ T5115] BTRFS info (device loop0): clearing free space tree
[ 84.162341][ T5115] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 84.172082][ T5115] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[pid 5115] mount("/dev/loop0", "./bus", "btrfs", MS_DIRSYNC, "user_subvol_rm_allowed,noinode_cache,inode_cache,clear_cache,compress-force,noacl,treelog,") = 0
[pid 5115] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid 5115] chdir("./bus") = 0
[pid 5115] ioctl(4, LOOP_CLR_FD) = 0
[pid 5115] close(4) = 0
[pid 5115] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5115] write(4, "19", 2) = 2
[ 84.188445][ T5115] BTRFS info (device loop0): creating free space tree
[ 84.196802][ T5115] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 84.207108][ T5115] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 84.229797][ T5115] FAULT_INJECTION: forcing a failure.
[ 84.229797][ T5115] name failslab, interval 1, probability 0, space 0, times 1
[ 84.244073][ T5115] CPU: 0 PID: 5115 Comm: syz-executor132 Not tainted 6.2.0-next-20230227-syzkaller #0
[ 84.253685][ T5115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023
[ 84.263776][ T5115] Call Trace:
[ 84.267077][ T5115] <TASK>
[ 84.270037][ T5115] dump_stack_lvl+0x136/0x150
[ 84.274782][ T5115] should_fail_ex+0x4a3/0x5b0
[ 84.279498][ T5115] ? btrfs_add_delayed_tree_ref+0x23f/0x10c0
[ 84.285518][ T5115] should_failslab+0x9/0x20
[ 84.290057][ T5115] kmem_cache_alloc+0x5a/0x320
[ 84.294876][ T5115] btrfs_add_delayed_tree_ref+0x23f/0x10c0
[ 84.300743][ T5115] ? btrfs_delete_ref_head+0x2c0/0x2c0
[ 84.306239][ T5115] ? rcu_read_lock_sched_held+0x3e/0x70
[ 84.311930][ T5115] ? trace_kmem_cache_alloc+0xb1/0x110
[ 84.317866][ T5115] ? kmem_cache_alloc+0x1c5/0x320
[ 84.322944][ T5115] btrfs_alloc_tree_block+0xe3c/0x1490
[ 84.328457][ T5115] ? btrfs_alloc_logged_file_extent+0x600/0x600
[ 84.334753][ T5115] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 84.340808][ T5115] __btrfs_cow_block+0x3b2/0x1690
[ 84.345978][ T5115] ? update_ref_for_cow+0xb50/0xb50
[ 84.351207][ T5115] ? btrfs_qgroup_add_swapped_blocks+0x980/0x980
[ 84.357610][ T5115] btrfs_cow_block+0x2fa/0x980
[ 84.362420][ T5115] btrfs_search_slot+0x11c7/0x2e10
[ 84.367609][ T5115] ? split_leaf+0x13e0/0x13e0
[ 84.372316][ T5115] ? find_held_lock+0x2d/0x110
[ 84.377136][ T5115] ? btrfs_create_new_inode+0x704/0x2b10
[ 84.382823][ T5115] ? lock_downgrade+0x690/0x690
[ 84.387742][ T5115] ? do_raw_spin_lock+0x124/0x2b0
[ 84.392806][ T5115] ? spin_bug+0x1c0/0x1c0
[ 84.397177][ T5115] btrfs_insert_empty_items+0xbd/0x1c0
[ 84.402675][ T5115] ? do_raw_spin_unlock+0x175/0x230
[ 84.407926][ T5115] btrfs_create_new_inode+0x7cb/0x2b10
[ 84.413462][ T5115] ? btrfs_link+0x7f0/0x7f0
[ 84.418014][ T5115] ? record_root_in_trans+0x2f7/0x3e0
[ 84.423433][ T5115] ? start_transaction+0x2aa/0x1450
[ 84.428681][ T5115] btrfs_tmpfile+0x2db/0x420
[ 84.433316][ T5115] ? btrfs_create_new_inode+0x2b10/0x2b10
[ 84.439123][ T5115] ? do_raw_spin_unlock+0x175/0x230
[ 84.444363][ T5115] ? _raw_spin_unlock+0x28/0x40
[ 84.449259][ T5115] ? d_alloc+0x1c0/0x240
[ 84.453544][ T5115] vfs_tmpfile+0x393/0x5d0
[ 84.458098][ T5115] path_openat+0x16ed/0x2750
[ 84.462752][ T5115] ? __lock_acquire+0x18bc/0x5d40
[ 84.467810][ T5115] ? path_lookupat+0x840/0x840
[ 84.472613][ T5115] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 84.478645][ T5115] do_filp_open+0x1ba/0x410
[ 84.483190][ T5115] ? may_open_dev+0xf0/0xf0
[ 84.487825][ T5115] ? find_held_lock+0x2d/0x110
[ 84.492691][ T5115] ? do_raw_spin_lock+0x124/0x2b0
[ 84.497782][ T5115] ? spin_bug+0x1c0/0x1c0
[ 84.502175][ T5115] ? _raw_spin_unlock+0x28/0x40
[ 84.507068][ T5115] ? alloc_fd+0x2e4/0x750
[ 84.511447][ T5115] do_sys_openat2+0x16d/0x4c0
[ 84.516168][ T5115] ? build_open_flags+0x6f0/0x6f0
[ 84.521227][ T5115] ? ptrace_notify+0xfe/0x140
[ 84.525951][ T5115] __x64_sys_open+0x11d/0x1c0
[ 84.530660][ T5115] ? do_sys_open+0x150/0x150
[ 84.535304][ T5115] ? _raw_spin_unlock_irq+0x2e/0x50
[ 84.540646][ T5115] ? ptrace_notify+0xfe/0x140
[ 84.545378][ T5115] do_syscall_64+0x39/0xb0
[ 84.549845][ T5115] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 84.555783][ T5115] RIP: 0033:0x7fc2cfb2fa69
[ 84.560233][ T5115] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 84.580134][ T5115] RSP: 002b:00007fff77c373d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 84.588687][ T5115] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fc2cfb2fa69
[ 84.596701][ T5115] RDX: 0000000000000000 RSI: 0000000000438001 RDI: 0000000020000000
[ 84.604703][ T5115] RBP: 00007fff77c37400 R08: 0000000000000002 R09: 00007fff77c37410
[ 84.612703][ T5115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 84.620701][ T5115] R13: 00007fff77c37440 R14: 00007fff77c37420 R15: 0000000000000001
[ 84.628723][ T5115] </TASK>
[pid 5115] open("./file0", O_WRONLY|O_LARGEFILE|O_NOFOLLOW|O_TMPFILE, 000) = -1 ENOMEM (Cannot allocate memory)
[pid 5115] exit_group(0) = ?
[pid 5115] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5115, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=39 /* 0.39 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556765620 /* 4 entries */, 32768) = 104
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./1/binderfs") = 0
[ 84.647003][ T5115] BTRFS: error (device loop0: state A) in btrfs_create_new_inode:6329: errno=-12 Out of memory
[ 84.658387][ T5115] BTRFS info (device loop0: state EA): forced readonly
[ 84.733431][ T5083] ------------[ cut here ]------------
[ 84.739190][ T5083] WARNING: CPU: 0 PID: 5083 at fs/btrfs/space-info.h:199 btrfs_block_rsv_release+0x6cd/0x8a0
[ 84.749995][ T5083] Modules linked in:
[ 84.753997][ T5083] CPU: 0 PID: 5083 Comm: syz-executor132 Not tainted 6.2.0-next-20230227-syzkaller #0
[ 84.763659][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023
[ 84.773832][ T5083] RIP: 0010:btrfs_block_rsv_release+0x6cd/0x8a0
[ 84.780156][ T5083] Code: 3c 02 00 0f 85 da 01 00 00 48 8b 04 24 48 89 de 4c 8b 68 60 4c 89 ef e8 61 fb f2 fd 49 39 dd 0f 83 78 ff ff ff e8 63 ff f2 fd <0f> 0b 45 31 ed e9 71 ff ff ff e8 54 ff f2 fd 48 8b 04 24 be ff ff
[ 84.800008][ T5083] RSP: 0018:ffffc90003defab8 EFLAGS: 00010293
[ 84.806209][ T5083] RAX: 0000000000000000 RBX: 00000000000e0000 RCX: 0000000000000000
[ 84.814342][ T5083] RDX: ffff88807e95d7c0 RSI: ffffffff8391a64d RDI: 0000000000000006
[ 84.822430][ T5083] RBP: ffff88802abb8000 R08: 0000000000000006 R09: 00000000000df000
[ 84.830472][ T5083] R10: 00000000000e0000 R11: 0000000000000000 R12: 00000000000e0000
[ 84.838601][ T5083] R13: 00000000000df000 R14: 00000000000e0000 R15: 0000000000000000
[ 84.846705][ T5083] FS: 0000555556764300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 84.855780][ T5083] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 84.862482][ T5083] CR2: 00007fff77c35ba8 CR3: 000000002acec000 CR4: 00000000003506f0
[ 84.870496][ T5083] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 84.878552][ T5083] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 84.886623][ T5083] Call Trace:
[ 84.889924][ T5083] <TASK>
[ 84.892946][ T5083] btrfs_release_global_block_rsv+0x26/0x2e0
[ 84.898988][ T5083] btrfs_free_block_groups+0x958/0x11d0
[ 84.904716][ T5083] ? free_root_pointers+0x6fe/0x980
[ 84.909998][ T5083] close_ctree+0x566/0xdc0
[ 84.914531][ T5083] ? btrfs_cleanup_transaction.isra.0+0x1030/0x1030
[ 84.921205][ T5083] ? collect_domain_accesses+0x910/0x910
[ 84.926964][ T5083] ? __fsnotify_vfsmount_delete+0x20/0x20
[ 84.932850][ T5083] ? dispose_list+0x1e0/0x1e0
[ 84.937668][ T5083] ? btrfs_freeze+0xe0/0xe0
[ 84.942323][ T5083] generic_shutdown_super+0x158/0x480
[ 84.947859][ T5083] kill_anon_super+0x3a/0x60
[ 84.952572][ T5083] btrfs_kill_super+0x3c/0x50
[ 84.957330][ T5083] deactivate_locked_super+0x98/0x160
[ 84.962814][ T5083] deactivate_super+0xb1/0xd0
[ 84.967557][ T5083] cleanup_mnt+0x2ae/0x3d0
[ 84.972093][ T5083] task_work_run+0x16f/0x270
[ 84.976767][ T5083] ? task_work_cancel+0x30/0x30
[ 84.981671][ T5083] ? __x64_sys_umount+0x118/0x190
[ 84.986841][ T5083] ptrace_notify+0x118/0x140
[ 84.991505][ T5083] syscall_exit_to_user_mode_prepare+0x129/0x290
[ 84.997995][ T5083] syscall_exit_to_user_mode+0xd/0x50
[ 85.003479][ T5083] do_syscall_64+0x46/0xb0
[ 85.007957][ T5083] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 85.013929][ T5083] RIP: 0033:0x7fc2cfb30e07
[ 85.018385][ T5083] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 85.038086][ T5083] RSP: 002b:00007fff77c362e8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[ 85.046585][ T5083] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fc2cfb30e07
[ 85.054686][ T5083] RDX: 00007fff77c363a7 RSI: 000000000000000a RDI: 00007fff77c363a0
[ 85.062840][ T5083] RBP: 00007fff77c363a0 R08: 00000000ffffffff R09: 00007fff77c36180
[ 85.071541][ T5083] R10: 0000555556765683 R11: 0000000000000206 R12: 00007fff77c37420
[ 85.079640][ T5083] R13: 00005555567655f0 R14: 00007fff77c36310 R15: 0000000000000002
[ 85.087726][ T5083] </TASK>
[ 85.090762][ T5083] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 85.098054][ T5083] CPU: 0 PID: 5083 Comm: syz-executor132 Not tainted 6.2.0-next-20230227-syzkaller #0
[ 85.107623][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023
[ 85.117778][ T5083] Call Trace:
[ 85.121079][ T5083] <TASK>
[ 85.124032][ T5083] dump_stack_lvl+0xd9/0x150
[ 85.128656][ T5083] panic+0x61b/0x6c0
[ 85.132576][ T5083] ? panic_smp_self_stop+0x90/0x90
[ 85.137726][ T5083] ? show_trace_log_lvl+0x285/0x390
[ 85.143007][ T5083] ? btrfs_block_rsv_release+0x6cd/0x8a0
[ 85.148685][ T5083] check_panic_on_warn+0xb1/0xc0
[ 85.153662][ T5083] __warn+0xf2/0x4f0
[ 85.157600][ T5083] ? btrfs_block_rsv_release+0x6cd/0x8a0
[ 85.163273][ T5083] report_bug+0x2da/0x500
[ 85.167651][ T5083] handle_bug+0x3c/0x70
[ 85.171844][ T5083] exc_invalid_op+0x18/0x50
[ 85.176391][ T5083] asm_exc_invalid_op+0x1a/0x20
[ 85.181275][ T5083] RIP: 0010:btrfs_block_rsv_release+0x6cd/0x8a0
[ 85.187577][ T5083] Code: 3c 02 00 0f 85 da 01 00 00 48 8b 04 24 48 89 de 4c 8b 68 60 4c 89 ef e8 61 fb f2 fd 49 39 dd 0f 83 78 ff ff ff e8 63 ff f2 fd <0f> 0b 45 31 ed e9 71 ff ff ff e8 54 ff f2 fd 48 8b 04 24 be ff ff
[ 85.207315][ T5083] RSP: 0018:ffffc90003defab8 EFLAGS: 00010293
[ 85.213506][ T5083] RAX: 0000000000000000 RBX: 00000000000e0000 RCX: 0000000000000000
[ 85.222227][ T5083] RDX: ffff88807e95d7c0 RSI: ffffffff8391a64d RDI: 0000000000000006
[ 85.230227][ T5083] RBP: ffff88802abb8000 R08: 0000000000000006 R09: 00000000000df000
[ 85.238395][ T5083] R10: 00000000000e0000 R11: 0000000000000000 R12: 00000000000e0000
[ 85.246411][ T5083] R13: 00000000000df000 R14: 00000000000e0000 R15: 0000000000000000
[ 85.254534][ T5083] ? btrfs_block_rsv_release+0x6cd/0x8a0
[ 85.260485][ T5083] ? btrfs_block_rsv_release+0x6cd/0x8a0
[ 85.266610][ T5083] btrfs_release_global_block_rsv+0x26/0x2e0
[ 85.272829][ T5083] btrfs_free_block_groups+0x958/0x11d0
[ 85.278429][ T5083] ? free_root_pointers+0x6fe/0x980
[ 85.283690][ T5083] close_ctree+0x566/0xdc0
[ 85.288206][ T5083] ? btrfs_cleanup_transaction.isra.0+0x1030/0x1030
[ 85.294923][ T5083] ? collect_domain_accesses+0x910/0x910
[ 85.300593][ T5083] ? __fsnotify_vfsmount_delete+0x20/0x20
[ 85.306367][ T5083] ? dispose_list+0x1e0/0x1e0
[ 85.311273][ T5083] ? btrfs_freeze+0xe0/0xe0
[ 85.315829][ T5083] generic_shutdown_super+0x158/0x480
[ 85.321260][ T5083] kill_anon_super+0x3a/0x60
[ 85.326077][ T5083] btrfs_kill_super+0x3c/0x50
[ 85.330851][ T5083] deactivate_locked_super+0x98/0x160
[ 85.336288][ T5083] deactivate_super+0xb1/0xd0
[ 85.341215][ T5083] cleanup_mnt+0x2ae/0x3d0
[ 85.345683][ T5083] task_work_run+0x16f/0x270
[ 85.350338][ T5083] ? task_work_cancel+0x30/0x30
[ 85.355241][ T5083] ? __x64_sys_umount+0x118/0x190
[ 85.360331][ T5083] ptrace_notify+0x118/0x140
[ 85.365053][ T5083] syscall_exit_to_user_mode_prepare+0x129/0x290
[ 85.371434][ T5083] syscall_exit_to_user_mode+0xd/0x50
[ 85.376948][ T5083] do_syscall_64+0x46/0xb0
[ 85.381425][ T5083] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 85.387352][ T5083] RIP: 0033:0x7fc2cfb30e07
[ 85.391794][ T5083] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 85.412155][ T5083] RSP: 002b:00007fff77c362e8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[ 85.420611][ T5083] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fc2cfb30e07
[ 85.428615][ T5083] RDX: 00007fff77c363a7 RSI: 000000000000000a RDI: 00007fff77c363a0
[ 85.436615][ T5083] RBP: 00007fff77c363a0 R08: 00000000ffffffff R09: 00007fff77c36180
[ 85.444617][ T5083] R10: 0000555556765683 R11: 0000000000000206 R12: 00007fff77c37420
[ 85.452708][ T5083] R13: 00005555567655f0 R14: 00007fff77c36310 R15: 0000000000000002
[ 85.460745][ T5083] </TASK>
[ 85.464003][ T5083] Kernel Offset: disabled
[ 85.468548][ T5083] Rebooting in 86400 seconds..