./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor90053236
<...>
Warning: Permanently added '10.128.0.25' (ECDSA) to the list of known hosts.
execve("./syz-executor90053236", ["./syz-executor90053236"], 0x7ffcbbcabc50 /* 10 vars */) = 0
brk(NULL) = 0x5555555dc000
brk(0x5555555dcc40) = 0x5555555dcc40
arch_prctl(ARCH_SET_FS, 0x5555555dc300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor90053236", 4096) = 26
brk(0x5555555fdc40) = 0x5555555fdc40
brk(0x5555555fe000) = 0x5555555fe000
mprotect(0x7f944b85c000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
getpid() = 5068
mkdir("./syzkaller.V0rnqr", 0700) = 0
chmod("./syzkaller.V0rnqr", 0777) = 0
chdir("./syzkaller.V0rnqr") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555dc5d0) = 5069
./strace-static-x86_64: Process 5069 attached
[pid 5069] chdir("./0") = 0
[pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5069] setpgid(0, 0) = 0
[pid 5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5069] write(3, "1000", 4) = 4
[pid 5069] close(3) = 0
[pid 5069] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5069] memfd_create("syzkaller", 0) = 3
[pid 5069] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f944339b000
syzkaller login: [ 50.109774][ T5069] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5069 'syz-executor900'
[pid 5069] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5069] munmap(0x7f944339b000, 16777216) = 0
[pid 5069] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5069] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5069] close(3) = 0
[pid 5069] mkdir("./file0", 0777) = 0
[ 50.263287][ T5069] loop0: detected capacity change from 0 to 32768
[ 50.277015][ T5069] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor900 (5069)
[ 50.296614][ T5069] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 50.305395][ T5069] BTRFS info (device loop0): using free space tree
[pid 5069] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5069] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5069] chdir("./file0") = 0
[pid 5069] ioctl(4, LOOP_CLR_FD) = 0
[pid 5069] close(4) = 0
[pid 5069] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[ 50.324727][ T5069] BTRFS info (device loop0): enabling ssd optimizations
[ 50.332043][ T5069] BTRFS info (device loop0): auto enabling async discard
[pid 5069] ioctl(4, BTRFS_IOC_QUOTA_CTL, {cmd=BTRFS_QUOTA_CTL_ENABLE}) = 0
[pid 5069] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5069] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5069] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5069] write(6, "9", 1) = 1
[ 50.428765][ T5069] FAULT_INJECTION: forcing a failure.
[ 50.428765][ T5069] name failslab, interval 1, probability 0, space 0, times 1
[ 50.430733][ T46] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[ 50.457892][ T5069] CPU: 0 PID: 5069 Comm: syz-executor900 Not tainted 6.3.0-rc4-syzkaller-00051-g8bb95a1662f8 #0
[ 50.468357][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 50.478438][ T5069] Call Trace:
[ 50.481767][ T5069] <TASK>
[ 50.484724][ T5069] dump_stack_lvl+0x1e7/0x2d0
[ 50.494228][ T5069] ? nf_tcp_handle_invalid+0x650/0x650
[ 50.499697][ T5069] ? panic+0x770/0x770
[ 50.503770][ T5069] ? __might_sleep+0xc0/0xc0
[ 50.508362][ T5069] should_fail_ex+0x3aa/0x4e0
[ 50.513061][ T5069] should_failslab+0x9/0x20
[ 50.517776][ T5069] slab_pre_alloc_hook+0x59/0x2b0
[ 50.522827][ T5069] kmem_cache_alloc+0x52/0x2e0
[ 50.527771][ T5069] ? alloc_extent_map+0x21/0x130
[ 50.532804][ T5069] alloc_extent_map+0x21/0x130
[ 50.537585][ T5069] cow_file_range+0x5cc/0xfe0
[ 50.542271][ T5069] ? run_delalloc_zoned+0x590/0x590
[ 50.547474][ T5069] ? find_lock_delalloc_range+0x7af/0x9a0
[ 50.554244][ T5069] btrfs_run_delalloc_range+0xe9b/0x11d0
[ 50.560018][ T5069] ? mark_lock+0x9a/0x340
[ 50.564372][ T5069] writepage_delalloc+0x261/0x590
[ 50.569417][ T5069] ? end_bio_extent_buffer_writepage+0x880/0x880
[ 50.575748][ T5069] ? rcu_lock_release+0x5/0x30
[ 50.580510][ T5069] ? __lock_acquire+0x1f80/0x1f80
[ 50.585663][ T5069] ? set_page_extent_mapped+0x154/0x1b0
[ 50.591409][ T5069] __extent_writepage+0x850/0x16d0
[ 50.596560][ T5069] ? extent_write_locked_range+0xdc0/0xdc0
[ 50.602421][ T5069] ? folio_wait_writeback+0x1b2/0x1f0
[ 50.607858][ T5069] extent_writepages+0xc31/0x1930
[ 50.612901][ T5069] ? __extent_writepage+0x16d0/0x16d0
[ 50.618286][ T5069] ? __lock_acquire+0x125b/0x1f80
[ 50.623319][ T5069] ? acls_after_inode_item+0x5f0/0x5f0
[ 50.628803][ T5069] do_writepages+0x3a6/0x670
[ 50.633410][ T5069] ? folio_nr_pages+0x1c0/0x1c0
[ 50.638264][ T5069] ? __lock_acquire+0x1f80/0x1f80
[ 50.643298][ T5069] ? do_raw_spin_lock+0x14d/0x3a0
[ 50.648334][ T5069] ? do_raw_spin_unlock+0x13b/0x8b0
[ 50.653546][ T5069] ? wbc_attach_and_unlock_inode+0x351/0x560
[ 50.659636][ T5069] filemap_fdatawrite_wbc+0x125/0x180
[ 50.665009][ T5069] filemap_fdatawrite_range+0x16e/0x1e0
[ 50.670555][ T5069] ? filemap_fdatawrite+0x1b0/0x1b0
[ 50.675761][ T5069] ? __might_sleep+0xc0/0xc0
[ 50.680356][ T5069] ? __down_write_common+0x161/0x200
[ 50.685648][ T5069] ? stack_trace_save+0x1c0/0x1c0
[ 50.690672][ T5069] btrfs_fdatawrite_range+0x4f/0x110
[ 50.695982][ T5069] btrfs_wait_ordered_range+0x59/0x260
[ 50.701447][ T5069] btrfs_fallocate+0x474/0x1fa0
[ 50.706317][ T5069] ? btrfs_file_open+0xf0/0xf0
[ 50.711174][ T5069] ? read_lock_is_recursive+0x20/0x20
[ 50.716550][ T5069] ? rcu_read_lock_any_held+0xb7/0x160
[ 50.722015][ T5069] ? rcu_read_lock_bh_held+0x120/0x120
[ 50.727475][ T5069] ? __lock_acquire+0x1f80/0x1f80
[ 50.732526][ T5069] vfs_fallocate+0x54b/0x6b0
[ 50.737146][ T5069] do_vfs_ioctl+0x22aa/0x2b10
[ 50.741831][ T5069] ? __x64_compat_sys_ioctl+0x90/0x90
[ 50.747224][ T5069] ? __lock_acquire+0x1f80/0x1f80
[ 50.752345][ T5069] ? lockdep_hardirqs_on+0x98/0x140
[ 50.757553][ T5069] ? tomoyo_path_number_perm+0x663/0x840
[ 50.763194][ T5069] ? tomoyo_path_number_perm+0x6e4/0x840
[ 50.768844][ T5069] ? smack_log+0x123/0x540
[ 50.773260][ T5069] ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 50.778723][ T5069] ? smk_access+0x4b0/0x4b0
[ 50.783227][ T5069] ? _raw_spin_lock_irqsave+0x120/0x120
[ 50.788772][ T5069] ? smk_access+0x477/0x4b0
[ 50.793288][ T5069] ? smk_tskacc+0x2ff/0x360
[ 50.797795][ T5069] ? smack_file_ioctl+0x295/0x390
[ 50.802906][ T5069] ? smack_file_alloc_security+0xe0/0xe0
[ 50.808537][ T5069] ? do_notify_parent+0xf50/0xf50
[ 50.813583][ T5069] ? print_irqtrace_events+0x220/0x220
[ 50.819126][ T5069] ? bpf_lsm_file_ioctl+0x9/0x10
[ 50.824069][ T5069] ? security_file_ioctl+0x81/0xa0
[ 50.829180][ T5069] __se_sys_ioctl+0x81/0x160
[ 50.833778][ T5069] do_syscall_64+0x41/0xc0
[ 50.838476][ T5069] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 50.844377][ T5069] RIP: 0033:0x7f944b7e8ac9
[ 50.848831][ T5069] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 50.868436][ T5069] RSP: 002b:00007ffc039b2948 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 50.876849][ T5069] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f944b7e8ac9
[ 50.884845][ T5069] RDX: 0000000020000100 RSI: 0000000040305829 RDI: 0000000000000005
[ 50.892825][ T5069] RBP: 00007ffc039b2970 R08: 0000000000000001 R09: 00007ffc039b2980
[ 50.900793][ T5069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 50.908769][ T5069] R13: 00007ffc039b29b0 R14: 00007ffc039b2990 R15: 0000000000000000
[ 50.916762][ T5069] </TASK>
[pid 5069] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0x20000100) = -1 EIO (Input/output error)
[pid 5069] exit_group(0) = ?
[pid 5069] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5069, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=25 /* 0.25 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555dd620 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
[ 51.068740][ T5068] BTRFS warning (device loop0): qgroup 0/5 has unreleased space, type 1 rsv 4096
[ 51.078339][ T5068] BTRFS error (device loop0): qgroup reserved space leaked
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555e5660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555e5660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x5555555dd620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555dc5d0) = 5096
./strace-static-x86_64: Process 5096 attached
[pid 5096] chdir("./1") = 0
[pid 5096] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5096] setpgid(0, 0) = 0
[pid 5096] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5096] write(3, "1000", 4) = 4
[pid 5096] close(3) = 0
[pid 5096] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5096] memfd_create("syzkaller", 0) = 3
[pid 5096] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f944339b000
[pid 5096] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5096] munmap(0x7f944339b000, 16777216) = 0
[pid 5096] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5096] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5096] close(3) = 0
[pid 5096] mkdir("./file0", 0777) = 0
[ 51.373183][ T5096] loop0: detected capacity change from 0 to 32768
[ 51.383171][ T5096] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor900 (5096)
[ 51.401662][ T5096] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 51.410509][ T5096] BTRFS info (device loop0): using free space tree
[pid 5096] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5096] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5096] chdir("./file0") = 0
[pid 5096] ioctl(4, LOOP_CLR_FD) = 0
[pid 5096] close(4) = 0
[pid 5096] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5096] ioctl(4, BTRFS_IOC_QUOTA_CTL, {cmd=BTRFS_QUOTA_CTL_ENABLE}) = 0
[ 51.430589][ T5096] BTRFS info (device loop0): enabling ssd optimizations
[ 51.437839][ T5096] BTRFS info (device loop0): auto enabling async discard
[pid 5096] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5096] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5096] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5096] write(6, "9", 1) = 1
[ 51.499256][ T5096] FAULT_INJECTION: forcing a failure.
[ 51.499256][ T5096] name failslab, interval 1, probability 0, space 0, times 0
[ 51.516966][ T46] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[ 51.527423][ T5096] CPU: 1 PID: 5096 Comm: syz-executor900 Not tainted 6.3.0-rc4-syzkaller-00051-g8bb95a1662f8 #0
[ 51.537928][ T5096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 51.548014][ T5096] Call Trace:
[ 51.551326][ T5096] <TASK>
[ 51.554346][ T5096] dump_stack_lvl+0x1e7/0x2d0
[ 51.559073][ T5096] ? nf_tcp_handle_invalid+0x650/0x650
[ 51.564578][ T5096] ? panic+0x770/0x770
[ 51.568694][ T5096] ? __might_sleep+0xc0/0xc0
[ 51.573325][ T5096] should_fail_ex+0x3aa/0x4e0
[ 51.578046][ T5096] should_failslab+0x9/0x20
[ 51.582581][ T5096] slab_pre_alloc_hook+0x59/0x2b0
[ 51.587644][ T5096] kmem_cache_alloc+0x52/0x2e0
[ 51.592451][ T5096] ? alloc_extent_state+0x25/0x2e0
[ 51.597606][ T5096] alloc_extent_state+0x25/0x2e0
[ 51.602576][ T5096] __set_extent_bit+0x1a0/0x1ab0
[ 51.607883][ T5096] lock_extent+0x10a/0x280
[ 51.612308][ T5096] ? try_lock_extent+0x1a0/0x1a0
[ 51.617266][ T5096] ? find_lock_delalloc_range+0x9a0/0x9a0
[ 51.623031][ T5096] find_lock_delalloc_range+0x4c9/0x9a0
[ 51.628633][ T5096] ? __extent_writepage_io+0xea0/0xea0
[ 51.634315][ T5096] ? mark_lock+0x9a/0x340
[ 51.638669][ T5096] writepage_delalloc+0x1f1/0x590
[ 51.643718][ T5096] ? end_bio_extent_buffer_writepage+0x880/0x880
[ 51.650145][ T5096] ? rcu_lock_release+0x5/0x30
[ 51.655353][ T5096] ? __lock_acquire+0x1f80/0x1f80
[ 51.660495][ T5096] ? set_page_extent_mapped+0x154/0x1b0
[ 51.666160][ T5096] __extent_writepage+0x850/0x16d0
[ 51.671312][ T5096] ? extent_write_locked_range+0xdc0/0xdc0
[ 51.677188][ T5096] ? folio_wait_writeback+0x1b2/0x1f0
[ 51.682601][ T5096] extent_writepages+0xc31/0x1930
[ 51.687664][ T5096] ? __extent_writepage+0x16d0/0x16d0
[ 51.693043][ T5096] ? validate_chain+0x119/0x58e0
[ 51.698015][ T5096] ? __lock_acquire+0x125b/0x1f80
[ 51.703095][ T5096] ? acls_after_inode_item+0x5f0/0x5f0
[ 51.708565][ T5096] do_writepages+0x3a6/0x670
[ 51.713170][ T5096] ? folio_nr_pages+0x1c0/0x1c0
[ 51.718037][ T5096] ? __lock_acquire+0x1f80/0x1f80
[ 51.723069][ T5096] ? do_raw_spin_lock+0x14d/0x3a0
[ 51.728138][ T5096] ? do_raw_spin_unlock+0x13b/0x8b0
[ 51.733370][ T5096] ? wbc_attach_and_unlock_inode+0x351/0x560
[ 51.739377][ T5096] filemap_fdatawrite_wbc+0x125/0x180
[ 51.744751][ T5096] filemap_fdatawrite_range+0x16e/0x1e0
[ 51.750300][ T5096] ? filemap_fdatawrite+0x1b0/0x1b0
[ 51.755520][ T5096] ? __might_sleep+0xc0/0xc0
[ 51.760166][ T5096] ? __down_write_common+0x161/0x200
[ 51.765455][ T5096] ? stack_trace_save+0x1c0/0x1c0
[ 51.770500][ T5096] btrfs_fdatawrite_range+0x4f/0x110
[ 51.775814][ T5096] btrfs_wait_ordered_range+0x59/0x260
[ 51.781293][ T5096] btrfs_fallocate+0x474/0x1fa0
[ 51.786176][ T5096] ? btrfs_file_open+0xf0/0xf0
[ 51.790962][ T5096] ? read_lock_is_recursive+0x20/0x20
[ 51.796361][ T5096] ? rcu_read_lock_any_held+0xb7/0x160
[ 51.801824][ T5096] ? rcu_read_lock_bh_held+0x120/0x120
[ 51.807289][ T5096] ? __lock_acquire+0x1f80/0x1f80
[ 51.812318][ T5096] vfs_fallocate+0x54b/0x6b0
[ 51.816973][ T5096] do_vfs_ioctl+0x22aa/0x2b10
[ 51.821673][ T5096] ? __x64_compat_sys_ioctl+0x90/0x90
[ 51.827055][ T5096] ? __lock_acquire+0x1f80/0x1f80
[ 51.832137][ T5096] ? lockdep_hardirqs_on+0x98/0x140
[ 51.837362][ T5096] ? tomoyo_path_number_perm+0x663/0x840
[ 51.843020][ T5096] ? tomoyo_path_number_perm+0x6e4/0x840
[ 51.848680][ T5096] ? smack_log+0x123/0x540
[ 51.853133][ T5096] ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 51.858596][ T5096] ? smk_access+0x4b0/0x4b0
[ 51.863123][ T5096] ? _raw_spin_lock_irqsave+0x120/0x120
[ 51.868710][ T5096] ? smk_access+0x477/0x4b0
[ 51.873238][ T5096] ? smk_tskacc+0x2ff/0x360
[ 51.877764][ T5096] ? smack_file_ioctl+0x295/0x390
[ 51.882797][ T5096] ? smack_file_alloc_security+0xe0/0xe0
[ 51.888460][ T5096] ? do_notify_parent+0xf50/0xf50
[ 51.893503][ T5096] ? print_irqtrace_events+0x220/0x220
[ 51.898961][ T5096] ? bpf_lsm_file_ioctl+0x9/0x10
[ 51.903997][ T5096] ? security_file_ioctl+0x81/0xa0
[ 51.909150][ T5096] __se_sys_ioctl+0x81/0x160
[ 51.913857][ T5096] do_syscall_64+0x41/0xc0
[ 51.918292][ T5096] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 51.924214][ T5096] RIP: 0033:0x7f944b7e8ac9
[ 51.928678][ T5096] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[pid 5096] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0x20000100) = 0
[pid 5096] exit_group(0) = ?
[pid 5096] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5096, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555dd620 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./1/binderfs") = 0
[ 51.948305][ T5096] RSP: 002b:00007ffc039b2948 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 51.956720][ T5096] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f944b7e8ac9
[ 51.964967][ T5096] RDX: 0000000020000100 RSI: 0000000040305829 RDI: 0000000000000005
[ 51.972941][ T5096] RBP: 00007ffc039b2970 R08: 0000000000000001 R09: 00007ffc039b2980
[ 51.980943][ T5096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 51.988929][ T5096] R13: 00007ffc039b29b0 R14: 00007ffc039b2990 R15: 0000000000000001
[ 51.996955][ T5096] </TASK>
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555e5660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555e5660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x5555555dd620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555dc5d0) = 5115
./strace-static-x86_64: Process 5115 attached
[pid 5115] chdir("./2") = 0
[pid 5115] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5115] setpgid(0, 0) = 0
[pid 5115] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5115] write(3, "1000", 4) = 4
[pid 5115] close(3) = 0
[pid 5115] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5115] memfd_create("syzkaller", 0) = 3
[pid 5115] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f944339b000
[pid 5115] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5115] munmap(0x7f944339b000, 16777216) = 0
[pid 5115] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5115] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5115] close(3) = 0
[pid 5115] mkdir("./file0", 0777) = 0
[ 52.291922][ T5115] loop0: detected capacity change from 0 to 32768
[ 52.302655][ T5115] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor900 (5115)
[ 52.318897][ T5115] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 52.327748][ T5115] BTRFS info (device loop0): using free space tree
[pid 5115] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5115] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5115] chdir("./file0") = 0
[pid 5115] ioctl(4, LOOP_CLR_FD) = 0
[pid 5115] close(4) = 0
[pid 5115] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[ 52.344775][ T5115] BTRFS info (device loop0): enabling ssd optimizations
[ 52.351894][ T5115] BTRFS info (device loop0): auto enabling async discard
[pid 5115] ioctl(4, BTRFS_IOC_QUOTA_CTL, {cmd=BTRFS_QUOTA_CTL_ENABLE}) = 0
[pid 5115] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5115] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5115] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5115] write(6, "9", 1) = 1
[ 52.419384][ T9] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[ 52.431515][ T5115] FAULT_INJECTION: forcing a failure.
[ 52.431515][ T5115] name failslab, interval 1, probability 0, space 0, times 0
[ 52.444712][ T5115] CPU: 0 PID: 5115 Comm: syz-executor900 Not tainted 6.3.0-rc4-syzkaller-00051-g8bb95a1662f8 #0
[ 52.455144][ T5115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 52.465240][ T5115] Call Trace:
[ 52.468543][ T5115] <TASK>
[ 52.471502][ T5115] dump_stack_lvl+0x1e7/0x2d0
[ 52.476220][ T5115] ? filemap_fdatawrite_range+0x16e/0x1e0
[ 52.481980][ T5115] ? nf_tcp_handle_invalid+0x650/0x650
[ 52.487483][ T5115] ? panic+0x770/0x770
[ 52.491591][ T5115] ? __lock_acquire+0x125b/0x1f80
[ 52.496681][ T5115] should_fail_ex+0x3aa/0x4e0
[ 52.501405][ T5115] should_failslab+0x9/0x20
[ 52.505945][ T5115] slab_pre_alloc_hook+0x59/0x2b0
[ 52.511012][ T5115] ? ulist_add_merge+0x14c/0x470
[ 52.515977][ T5115] __kmem_cache_alloc_node+0x4b/0x290
[ 52.521398][ T5115] ? ulist_add_merge+0x14c/0x470
[ 52.526377][ T5115] kmalloc_trace+0x2a/0xe0
[ 52.530878][ T5115] ulist_add_merge+0x14c/0x470
[ 52.535701][ T5115] clear_state_bit+0x148/0x330
[ 52.540593][ T5115] __clear_extent_bit+0x523/0xb20
[ 52.545686][ T5115] clear_record_extent_bits+0x52/0x80
[ 52.551099][ T5115] __btrfs_qgroup_release_data+0x4a4/0xa60
[ 52.556974][ T5115] ? btrfs_qgroup_free_data+0x40/0x40
[ 52.562411][ T5115] btrfs_add_ordered_extent+0xe2/0xc20
[ 52.567923][ T5115] ? btrfs_replace_extent_map_range+0x134/0x170
[ 52.574216][ T5115] cow_file_range+0x764/0xfe0
[ 52.578929][ T5115] ? run_delalloc_zoned+0x590/0x590
[ 52.584148][ T5115] ? find_lock_delalloc_range+0x7af/0x9a0
[ 52.589893][ T5115] btrfs_run_delalloc_range+0xe9b/0x11d0
[ 52.595566][ T5115] ? mark_lock+0x9a/0x340
[ 52.599934][ T5115] writepage_delalloc+0x261/0x590
[ 52.605007][ T5115] ? end_bio_extent_buffer_writepage+0x880/0x880
[ 52.611338][ T5115] ? rcu_lock_release+0x5/0x30
[ 52.616102][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 52.621150][ T5115] ? set_page_extent_mapped+0x154/0x1b0
[ 52.626699][ T5115] __extent_writepage+0x850/0x16d0
[ 52.631834][ T5115] ? extent_write_locked_range+0xdc0/0xdc0
[ 52.637776][ T5115] ? folio_wait_writeback+0x1b2/0x1f0
[ 52.643162][ T5115] extent_writepages+0xc31/0x1930
[ 52.648220][ T5115] ? __extent_writepage+0x16d0/0x16d0
[ 52.653633][ T5115] ? validate_chain+0x119/0x58e0
[ 52.658594][ T5115] ? __lock_acquire+0x125b/0x1f80
[ 52.663632][ T5115] ? acls_after_inode_item+0x5f0/0x5f0
[ 52.669092][ T5115] do_writepages+0x3a6/0x670
[ 52.673686][ T5115] ? folio_nr_pages+0x1c0/0x1c0
[ 52.678561][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 52.683602][ T5115] ? do_raw_spin_lock+0x14d/0x3a0
[ 52.688643][ T5115] ? do_raw_spin_unlock+0x13b/0x8b0
[ 52.693850][ T5115] ? wbc_attach_and_unlock_inode+0x351/0x560
[ 52.699927][ T5115] filemap_fdatawrite_wbc+0x125/0x180
[ 52.705301][ T5115] filemap_fdatawrite_range+0x16e/0x1e0
[ 52.710871][ T5115] ? filemap_fdatawrite+0x1b0/0x1b0
[ 52.716266][ T5115] ? __might_sleep+0xc0/0xc0
[ 52.720852][ T5115] ? __down_write_common+0x161/0x200
[ 52.726152][ T5115] ? stack_trace_save+0x1c0/0x1c0
[ 52.731199][ T5115] btrfs_fdatawrite_range+0x4f/0x110
[ 52.736520][ T5115] btrfs_wait_ordered_range+0x59/0x260
[ 52.741984][ T5115] btrfs_fallocate+0x474/0x1fa0
[ 52.746849][ T5115] ? btrfs_file_open+0xf0/0xf0
[ 52.751628][ T5115] ? read_lock_is_recursive+0x20/0x20
[ 52.757003][ T5115] ? rcu_read_lock_any_held+0xb7/0x160
[ 52.762463][ T5115] ? rcu_read_lock_bh_held+0x120/0x120
[ 52.768022][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 52.773051][ T5115] vfs_fallocate+0x54b/0x6b0
[ 52.777645][ T5115] do_vfs_ioctl+0x22aa/0x2b10
[ 52.782370][ T5115] ? __x64_compat_sys_ioctl+0x90/0x90
[ 52.787772][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 52.792813][ T5115] ? lockdep_hardirqs_on+0x98/0x140
[ 52.798058][ T5115] ? tomoyo_path_number_perm+0x663/0x840
[ 52.803703][ T5115] ? tomoyo_path_number_perm+0x6e4/0x840
[ 52.809365][ T5115] ? smack_log+0x123/0x540
[ 52.813888][ T5115] ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 52.819611][ T5115] ? smk_access+0x4b0/0x4b0
[ 52.824135][ T5115] ? _raw_spin_lock_irqsave+0x120/0x120
[ 52.829709][ T5115] ? smk_access+0x477/0x4b0
[ 52.834598][ T5115] ? smk_tskacc+0x2ff/0x360
[ 52.839117][ T5115] ? smack_file_ioctl+0x295/0x390
[ 52.844147][ T5115] ? smack_file_alloc_security+0xe0/0xe0
[ 52.849785][ T5115] ? do_notify_parent+0xf50/0xf50
[ 52.854851][ T5115] ? print_irqtrace_events+0x220/0x220
[ 52.860322][ T5115] ? bpf_lsm_file_ioctl+0x9/0x10
[ 52.865267][ T5115] ? security_file_ioctl+0x81/0xa0
[ 52.870384][ T5115] __se_sys_ioctl+0x81/0x160
[ 52.874992][ T5115] do_syscall_64+0x41/0xc0
[ 52.879482][ T5115] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 52.885404][ T5115] RIP: 0033:0x7f944b7e8ac9
[ 52.889817][ T5115] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 52.909423][ T5115] RSP: 002b:00007ffc039b2948 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 52.917864][ T5115] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f944b7e8ac9
[ 52.925843][ T5115] RDX: 0000000020000100 RSI: 0000000040305829 RDI: 0000000000000005
[ 52.933834][ T5115] RBP: 00007ffc039b2970 R08: 0000000000000001 R09: 00007ffc039b2980
[ 52.941809][ T5115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 52.949789][ T5115] R13: 00007ffc039b29b0 R14: 00007ffc039b2990 R15: 0000000000000002
[ 52.957788][ T5115] </TASK>
[ 52.961153][ T5115] ------------[ cut here ]------------
[ 52.966678][ T5115] kernel BUG at fs/btrfs/extent-io-tree.c:515!
[ 52.972861][ T5115] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 52.978947][ T5115] CPU: 0 PID: 5115 Comm: syz-executor900 Not tainted 6.3.0-rc4-syzkaller-00051-g8bb95a1662f8 #0
[ 52.989345][ T5115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 52.999417][ T5115] RIP: 0010:clear_state_bit+0x328/0x330
[ 53.004962][ T5115] Code: 34 fe e9 9a fd ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c7 fe ff ff 4c 89 ef e8 02 a7 34 fe e9 ba fe ff ff e8 68 f0 de fd <0f> 0b 66 0f 1f 44 00 00 f3 0f 1e fa 55 48 89 e5 41 57 41 56 41 55
[ 53.024592][ T5115] RSP: 0018:ffffc90003ebe970 EFLAGS: 00010293
[ 53.031436][ T5115] RAX: ffffffff83ab6288 RBX: 00000000fffffff4 RCX: ffff888023f7d7c0
[ 53.039404][ T5115] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[ 53.047369][ T5115] RBP: 0000000000000000 R08: ffffffff83ab60b3 R09: fffffbfff1a02bab
[ 53.055390][ T5115] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888017eb5900
[ 53.063390][ T5115] R13: ffffc90003ebeb78 R14: 0000000000000800 R15: dffffc0000000000
[ 53.071369][ T5115] FS: 00005555555dc300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 53.080313][ T5115] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 53.086888][ T5115] CR2: 0000000020010000 CR3: 000000001c873000 CR4: 00000000003506f0
[ 53.094944][ T5115] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 53.102937][ T5115] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 53.110914][ T5115] Call Trace:
[ 53.114206][ T5115] <TASK>
[ 53.117135][ T5115] __clear_extent_bit+0x523/0xb20
[ 53.122185][ T5115] clear_record_extent_bits+0x52/0x80
[ 53.127571][ T5115] __btrfs_qgroup_release_data+0x4a4/0xa60
[ 53.133567][ T5115] ? btrfs_qgroup_free_data+0x40/0x40
[ 53.138955][ T5115] btrfs_add_ordered_extent+0xe2/0xc20
[ 53.144420][ T5115] ? btrfs_replace_extent_map_range+0x134/0x170
[ 53.150659][ T5115] cow_file_range+0x764/0xfe0
[ 53.155332][ T5115] ? run_delalloc_zoned+0x590/0x590
[ 53.160523][ T5115] ? find_lock_delalloc_range+0x7af/0x9a0
[ 53.166251][ T5115] btrfs_run_delalloc_range+0xe9b/0x11d0
[ 53.171904][ T5115] ? mark_lock+0x9a/0x340
[ 53.176224][ T5115] writepage_delalloc+0x261/0x590
[ 53.181268][ T5115] ? end_bio_extent_buffer_writepage+0x880/0x880
[ 53.187621][ T5115] ? rcu_lock_release+0x5/0x30
[ 53.192374][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 53.197391][ T5115] ? set_page_extent_mapped+0x154/0x1b0
[ 53.202933][ T5115] __extent_writepage+0x850/0x16d0
[ 53.208047][ T5115] ? extent_write_locked_range+0xdc0/0xdc0
[ 53.213864][ T5115] ? folio_wait_writeback+0x1b2/0x1f0
[ 53.219246][ T5115] extent_writepages+0xc31/0x1930
[ 53.224302][ T5115] ? __extent_writepage+0x16d0/0x16d0
[ 53.229781][ T5115] ? validate_chain+0x119/0x58e0
[ 53.234719][ T5115] ? __lock_acquire+0x125b/0x1f80
[ 53.239759][ T5115] ? acls_after_inode_item+0x5f0/0x5f0
[ 53.245223][ T5115] do_writepages+0x3a6/0x670
[ 53.249929][ T5115] ? folio_nr_pages+0x1c0/0x1c0
[ 53.254777][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 53.259809][ T5115] ? do_raw_spin_lock+0x14d/0x3a0
[ 53.264844][ T5115] ? do_raw_spin_unlock+0x13b/0x8b0
[ 53.270139][ T5115] ? wbc_attach_and_unlock_inode+0x351/0x560
[ 53.276165][ T5115] filemap_fdatawrite_wbc+0x125/0x180
[ 53.281553][ T5115] filemap_fdatawrite_range+0x16e/0x1e0
[ 53.287125][ T5115] ? filemap_fdatawrite+0x1b0/0x1b0
[ 53.292330][ T5115] ? __might_sleep+0xc0/0xc0
[ 53.296927][ T5115] ? __down_write_common+0x161/0x200
[ 53.302229][ T5115] ? stack_trace_save+0x1c0/0x1c0
[ 53.307293][ T5115] btrfs_fdatawrite_range+0x4f/0x110
[ 53.312601][ T5115] btrfs_wait_ordered_range+0x59/0x260
[ 53.318061][ T5115] btrfs_fallocate+0x474/0x1fa0
[ 53.322915][ T5115] ? btrfs_file_open+0xf0/0xf0
[ 53.327679][ T5115] ? read_lock_is_recursive+0x20/0x20
[ 53.333047][ T5115] ? rcu_read_lock_any_held+0xb7/0x160
[ 53.338598][ T5115] ? rcu_read_lock_bh_held+0x120/0x120
[ 53.344057][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 53.349082][ T5115] vfs_fallocate+0x54b/0x6b0
[ 53.353673][ T5115] do_vfs_ioctl+0x22aa/0x2b10
[ 53.358374][ T5115] ? __x64_compat_sys_ioctl+0x90/0x90
[ 53.363794][ T5115] ? __lock_acquire+0x1f80/0x1f80
[ 53.368810][ T5115] ? lockdep_hardirqs_on+0x98/0x140
[ 53.374011][ T5115] ? tomoyo_path_number_perm+0x663/0x840
[ 53.379653][ T5115] ? tomoyo_path_number_perm+0x6e4/0x840
[ 53.385276][ T5115] ? smack_log+0x123/0x540
[ 53.389685][ T5115] ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 53.395133][ T5115] ? smk_access+0x4b0/0x4b0
[ 53.399628][ T5115] ? _raw_spin_lock_irqsave+0x120/0x120
[ 53.405163][ T5115] ? smk_access+0x477/0x4b0
[ 53.409685][ T5115] ? smk_tskacc+0x2ff/0x360
[ 53.414195][ T5115] ? smack_file_ioctl+0x295/0x390
[ 53.419227][ T5115] ? smack_file_alloc_security+0xe0/0xe0
[ 53.425228][ T5115] ? do_notify_parent+0xf50/0xf50
[ 53.430261][ T5115] ? print_irqtrace_events+0x220/0x220
[ 53.435893][ T5115] ? bpf_lsm_file_ioctl+0x9/0x10
[ 53.440848][ T5115] ? security_file_ioctl+0x81/0xa0
[ 53.445964][ T5115] __se_sys_ioctl+0x81/0x160
[ 53.450577][ T5115] do_syscall_64+0x41/0xc0
[ 53.455005][ T5115] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 53.460920][ T5115] RIP: 0033:0x7f944b7e8ac9
[ 53.465349][ T5115] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 53.484944][ T5115] RSP: 002b:00007ffc039b2948 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 53.493350][ T5115] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f944b7e8ac9
[ 53.501315][ T5115] RDX: 0000000020000100 RSI: 0000000040305829 RDI: 0000000000000005
[ 53.509301][ T5115] RBP: 00007ffc039b2970 R08: 0000000000000001 R09: 00007ffc039b2980
[ 53.517557][ T5115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 53.525533][ T5115] R13: 00007ffc039b29b0 R14: 00007ffc039b2990 R15: 0000000000000002
[ 53.533522][ T5115] </TASK>
[ 53.536538][ T5115] Modules linked in:
[ 53.540514][ T5115] ---[ end trace 0000000000000000 ]---
[ 53.546008][ T5115] RIP: 0010:clear_state_bit+0x328/0x330
[ 53.551571][ T5115] Code: 34 fe e9 9a fd ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c7 fe ff ff 4c 89 ef e8 02 a7 34 fe e9 ba fe ff ff e8 68 f0 de fd <0f> 0b 66 0f 1f 44 00 00 f3 0f 1e fa 55 48 89 e5 41 57 41 56 41 55
[ 53.575734][ T5115] RSP: 0018:ffffc90003ebe970 EFLAGS: 00010293
[ 53.581841][ T5115] RAX: ffffffff83ab6288 RBX: 00000000fffffff4 RCX: ffff888023f7d7c0
[ 53.589851][ T5115] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[ 53.597852][ T5115] RBP: 0000000000000000 R08: ffffffff83ab60b3 R09: fffffbfff1a02bab
[ 53.605815][ T5115] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888017eb5900
[ 53.613880][ T5115] R13: ffffc90003ebeb78 R14: 0000000000000800 R15: dffffc0000000000
[ 53.621986][ T5115] FS: 00005555555dc300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 53.630968][ T5115] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 53.637775][ T5115] CR2: 0000000020010000 CR3: 000000001c873000 CR4: 00000000003506f0
[ 53.645757][ T5115] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 53.653866][ T5115] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 53.661910][ T5115] Kernel panic - not syncing: Fatal exception
[ 53.668127][ T5115] Kernel Offset: disabled
[ 53.672450][ T5115] Rebooting in 86400 seconds..