[  263.145188][ T8328] FAULT_INJECTION: forcing a failure.
[  263.145188][ T8328] name failslab, interval 1, probability 0, space 0, times 0
[  263.157346][ T8328] CPU: 0 UID: 0 PID: 8328 Comm: syz.0.158 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  263.157376][ T8328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.157383][ T8328] Call Trace:
[  263.157388][ T8328]  <TASK>
[  263.157393][ T8328]  dump_stack_lvl+0x189/0x250
[  263.157413][ T8328]  ? __pfx____ratelimit+0x10/0x10
[  263.157427][ T8328]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.157440][ T8328]  ? __pfx__printk+0x10/0x10
[  263.157455][ T8328]  ? __pfx___might_resched+0x10/0x10
[  263.157467][ T8328]  ? lock_acquire+0x5f/0x360
[  263.157483][ T8328]  should_fail_ex+0x414/0x560
[  263.157498][ T8328]  should_failslab+0xa8/0x100
[  263.157512][ T8328]  kmem_cache_alloc_noprof+0x73/0x3c0
[  263.157525][ T8328]  ? __btrfs_run_delayed_refs+0x1350/0x4130
[  263.157542][ T8328]  __btrfs_run_delayed_refs+0x1350/0x4130
[  263.157558][ T8328]  ? __kernel_text_address+0xd/0x40
[  263.157582][ T8328]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  263.157598][ T8328]  ? is_bpf_text_address+0x26/0x2b0
[  263.157615][ T8328]  ? kernel_text_address+0xa5/0xe0
[  263.157630][ T8328]  ? __kernel_text_address+0xd/0x40
[  263.157644][ T8328]  ? unwind_get_return_address+0x4d/0x90
[  263.157655][ T8328]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  263.157669][ T8328]  ? arch_stack_walk+0xfc/0x150
[  263.157685][ T8328]  ? stack_trace_save+0x9c/0xe0
[  263.157698][ T8328]  ? btrfs_commit_transaction+0x161/0x3950
[  263.157711][ T8328]  ? rcu_is_watching+0x15/0xb0
[  263.157722][ T8328]  ? lock_acquire+0x5f/0x360
[  263.157739][ T8328]  btrfs_run_delayed_refs+0xe6/0x3b0
[  263.157755][ T8328]  btrfs_commit_transaction+0x269/0x3950
[  263.157768][ T8328]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.157780][ T8328]  ? btrfs_commit_transaction+0x161/0x3950
[  263.157796][ T8328]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  263.157808][ T8328]  ? lock_acquire+0x5f/0x360
[  263.157823][ T8328]  ? do_raw_spin_unlock+0x4d/0x240
[  263.157835][ T8328]  ? join_transaction+0x41b/0xd70
[  263.157849][ T8328]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  263.157865][ T8328]  ? start_transaction+0x439/0x1620
[  263.157878][ T8328]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  263.157894][ T8328]  ? btrfs_record_root_in_trans+0x124/0x180
[  263.157907][ T8328]  create_snapshot+0x6bc/0xba0
[  263.157924][ T8328]  btrfs_mksubvol+0x545/0x6d0
[  263.157941][ T8328]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  263.157955][ T8328]  ? __fget_files+0x3a0/0x420
[  263.157970][ T8328]  btrfs_mksnapshot+0xab/0xf0
[  263.158020][ T8328]  __btrfs_ioctl_snap_create+0x520/0x730
[  263.158037][ T8328]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  263.158052][ T8328]  ? rep_movs_alternative+0x4a/0x90
[  263.158062][ T8328]  ? _copy_from_user+0x94/0xb0
[  263.158070][ T8328]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  263.158079][ T8328]  ? __fget_files+0x3a0/0x420
[  263.158089][ T8328]  btrfs_ioctl+0xa62/0xd00
[  263.158100][ T8328]  ? __pfx_btrfs_ioctl+0x10/0x10
[  263.158111][ T8328]  __se_sys_ioctl+0xf9/0x170
[  263.158123][ T8328]  do_syscall_64+0xfa/0x3b0
[  263.158139][ T8328]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.158149][ T8328]  ? clear_bhb_loop+0x60/0xb0
[  263.158161][ T8328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.158171][ T8328] RIP: 0033:0x7f000a18ebe9
[  263.158183][ T8328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.158193][ T8328] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  263.158209][ T8328] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  263.158217][ T8328] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  263.158225][ T8328] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  263.158238][ T8328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.158245][ T8328] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  263.158256][ T8328]  </TASK>
[  263.158279][ T8328] BTRFS error (device loop0): failed to run delayed ref for logical 8531968 num_bytes 4096 type 176 action 1 ref_mod 1: -12
[  263.344187][ T8328] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  263.347662][ T8328] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  263.352599][ T8311] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  263.356558][ T8311] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  263.561642][ T8331] loop0: detected capacity change from 0 to 32768
[  263.583175][ T8331] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.159 (8331)
[  263.605285][ T8331] _btrfs_printk: 3 callbacks suppressed
[  263.605306][ T8331] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  263.619943][ T8331] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  263.643092][ T8331] BTRFS info (device loop0): rebuilding free space tree
[  263.659997][ T8331] BTRFS info (device loop0): disabling free space tree
[  263.663734][ T8331] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  263.679835][ T8331] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  263.700292][ T8331] BTRFS info (device loop0): balance: start -d -m
[  263.704883][ T8331] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  263.725406][ T8331] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  263.744505][ T8348] FAULT_INJECTION: forcing a failure.
[  263.744505][ T8348] name failslab, interval 1, probability 0, space 0, times 0
[  263.752436][ T8348] CPU: 0 UID: 0 PID: 8348 Comm: syz.0.159 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  263.752456][ T8348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.752464][ T8348] Call Trace:
[  263.752469][ T8348]  <TASK>
[  263.752474][ T8348]  dump_stack_lvl+0x189/0x250
[  263.752493][ T8348]  ? __pfx____ratelimit+0x10/0x10
[  263.752508][ T8348]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.752520][ T8348]  ? __pfx__printk+0x10/0x10
[  263.752536][ T8348]  ? __pfx___might_resched+0x10/0x10
[  263.752547][ T8348]  ? lock_acquire+0x5f/0x360
[  263.752562][ T8348]  should_fail_ex+0x414/0x560
[  263.752576][ T8348]  should_failslab+0xa8/0x100
[  263.752591][ T8348]  kmem_cache_alloc_noprof+0x73/0x3c0
[  263.752604][ T8348]  ? __btrfs_run_delayed_refs+0x1350/0x4130
[  263.752621][ T8348]  __btrfs_run_delayed_refs+0x1350/0x4130
[  263.752637][ T8348]  ? __kernel_text_address+0xd/0x40
[  263.752659][ T8348]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  263.752674][ T8348]  ? is_bpf_text_address+0x26/0x2b0
[  263.752693][ T8348]  ? kernel_text_address+0xa5/0xe0
[  263.752706][ T8348]  ? __kernel_text_address+0xd/0x40
[  263.752720][ T8348]  ? unwind_get_return_address+0x4d/0x90
[  263.752733][ T8348]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  263.752745][ T8348]  ? arch_stack_walk+0xfc/0x150
[  263.752760][ T8348]  ? stack_trace_save+0x9c/0xe0
[  263.752772][ T8348]  ? btrfs_commit_transaction+0x161/0x3950
[  263.752785][ T8348]  ? rcu_is_watching+0x15/0xb0
[  263.752796][ T8348]  ? lock_acquire+0x5f/0x360
[  263.752811][ T8348]  btrfs_run_delayed_refs+0xe6/0x3b0
[  263.752826][ T8348]  btrfs_commit_transaction+0x269/0x3950
[  263.752838][ T8348]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.752850][ T8348]  ? btrfs_commit_transaction+0x161/0x3950
[  263.752867][ T8348]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  263.752880][ T8348]  ? lock_acquire+0x5f/0x360
[  263.752896][ T8348]  ? do_raw_spin_unlock+0x4d/0x240
[  263.752909][ T8348]  ? join_transaction+0x41b/0xd70
[  263.752924][ T8348]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  263.752941][ T8348]  ? start_transaction+0x439/0x1620
[  263.752955][ T8348]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  263.752972][ T8348]  ? btrfs_record_root_in_trans+0x124/0x180
[  263.752985][ T8348]  create_snapshot+0x6bc/0xba0
[  263.753003][ T8348]  btrfs_mksubvol+0x545/0x6d0
[  263.753015][ T8348]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  263.753025][ T8348]  ? __fget_files+0x3a0/0x420
[  263.753036][ T8348]  btrfs_mksnapshot+0xab/0xf0
[  263.753046][ T8348]  __btrfs_ioctl_snap_create+0x520/0x730
[  263.753056][ T8348]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  263.753066][ T8348]  ? rep_movs_alternative+0x4a/0x90
[  263.753074][ T8348]  ? _copy_from_user+0x94/0xb0
[  263.753081][ T8348]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  263.753091][ T8348]  ? __fget_files+0x3a0/0x420
[  263.753100][ T8348]  btrfs_ioctl+0xa62/0xd00
[  263.753107][ T8348]  ? __pfx_btrfs_ioctl+0x10/0x10
[  263.753115][ T8348]  __se_sys_ioctl+0xf9/0x170
[  263.753122][ T8348]  do_syscall_64+0xfa/0x3b0
[  263.753135][ T8348]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.753144][ T8348]  ? clear_bhb_loop+0x60/0xb0
[  263.753156][ T8348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.753166][ T8348] RIP: 0033:0x7f000a18ebe9
[  263.753178][ T8348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.753189][ T8348] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  263.753203][ T8348] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  263.753212][ T8348] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  263.753219][ T8348] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  263.753225][ T8348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.753232][ T8348] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  263.753243][ T8348]  </TASK>
[  263.753262][ T8348] BTRFS error (device loop0): failed to run delayed ref for logical 8531968 num_bytes 4096 type 176 action 1 ref_mod 1: -12
[  263.946932][ T8348] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  263.952783][ T8348] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  263.957633][ T8348] BTRFS info (device loop0 state EA): forced readonly
[  263.961420][ T8331] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  263.965506][ T8331] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  263.972914][ T8331] BTRFS info (device loop0 state EA): balance: ended with status: -5
[  263.983689][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  264.208135][ T8351] loop0: detected capacity change from 0 to 32768
[  264.222504][ T8351] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.160 (8351)
[  264.242610][ T8351] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  264.247599][ T8351] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  264.283902][ T8351] BTRFS info (device loop0): rebuilding free space tree
[  264.301747][ T8351] BTRFS info (device loop0): disabling free space tree
[  264.305293][ T8351] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  264.319724][ T8351] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  264.340313][ T8351] BTRFS info (device loop0): balance: start -d -m
[  264.349834][ T8351] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  264.365962][ T8351] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  264.384457][ T8368] FAULT_INJECTION: forcing a failure.
[  264.384457][ T8368] name failslab, interval 1, probability 0, space 0, times 0
[  264.394209][ T8368] CPU: 0 UID: 0 PID: 8368 Comm: syz.0.160 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  264.394233][ T8368] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.394242][ T8368] Call Trace:
[  264.394248][ T8368]  <TASK>
[  264.394254][ T8368]  dump_stack_lvl+0x189/0x250
[  264.394275][ T8368]  ? __pfx____ratelimit+0x10/0x10
[  264.394291][ T8368]  ? __pfx_dump_stack_lvl+0x10/0x10
[  264.394305][ T8368]  ? __pfx__printk+0x10/0x10
[  264.394322][ T8368]  ? __pfx___might_resched+0x10/0x10
[  264.394334][ T8368]  ? lock_acquire+0x5f/0x360
[  264.394354][ T8368]  should_fail_ex+0x414/0x560
[  264.394371][ T8368]  should_failslab+0xa8/0x100
[  264.394388][ T8368]  kmem_cache_alloc_noprof+0x73/0x3c0
[  264.394403][ T8368]  ? __btrfs_free_extent+0x2f9/0x4250
[  264.394416][ T8368]  ? btrfs_delayed_ref_lock+0x88/0x2b0
[  264.394437][ T8368]  __btrfs_free_extent+0x2f9/0x4250
[  264.394451][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394465][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394477][ T8368]  ? lock_release+0x4b/0x3e0
[  264.394495][ T8368]  ? __pfx___btrfs_free_extent+0x10/0x10
[  264.394508][ T8368]  ? do_raw_read_unlock+0x3d/0x80
[  264.394525][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394550][ T8368]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  264.394580][ T8368]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  264.394598][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394611][ T8368]  ? trace_sched_exit_tp+0x36/0x110
[  264.394627][ T8368]  ? __schedule+0x17ae/0x4cc0
[  264.394644][ T8368]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  264.394663][ T8368]  ? do_raw_spin_lock+0x121/0x290
[  264.394678][ T8368]  ? do_raw_spin_lock+0x121/0x290
[  264.394694][ T8368]  ? btrfs_commit_transaction+0x161/0x3950
[  264.394709][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394721][ T8368]  ? lock_acquire+0x5f/0x360
[  264.394738][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394751][ T8368]  btrfs_run_delayed_refs+0xe6/0x3b0
[  264.394771][ T8368]  btrfs_commit_transaction+0x269/0x3950
[  264.394788][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394800][ T8368]  ? btrfs_commit_transaction+0x161/0x3950
[  264.394816][ T8368]  ? rcu_is_watching+0x15/0xb0
[  264.394828][ T8368]  ? lock_release+0x4b/0x3e0
[  264.394847][ T8368]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  264.394865][ T8368]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  264.394880][ T8368]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  264.394898][ T8368]  ? record_root_in_trans+0x113/0x370
[  264.394915][ T8368]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  264.394936][ T8368]  ? start_transaction+0x439/0x1620
[  264.394951][ T8368]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  264.394971][ T8368]  ? btrfs_record_root_in_trans+0x124/0x180
[  264.394987][ T8368]  create_snapshot+0x6bc/0xba0
[  264.395008][ T8368]  btrfs_mksubvol+0x545/0x6d0
[  264.395029][ T8368]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  264.395047][ T8368]  ? __fget_files+0x3a0/0x420
[  264.395065][ T8368]  btrfs_mksnapshot+0xab/0xf0
[  264.395084][ T8368]  __btrfs_ioctl_snap_create+0x520/0x730
[  264.395104][ T8368]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  264.395122][ T8368]  ? rep_movs_alternative+0x4a/0x90
[  264.395136][ T8368]  ? _copy_from_user+0x94/0xb0
[  264.395150][ T8368]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  264.395166][ T8368]  ? __fget_files+0x3a0/0x420
[  264.395184][ T8368]  btrfs_ioctl+0xa62/0xd00
[  264.395199][ T8368]  ? __pfx_btrfs_ioctl+0x10/0x10
[  264.395213][ T8368]  __se_sys_ioctl+0xf9/0x170
[  264.395226][ T8368]  do_syscall_64+0xfa/0x3b0
[  264.395243][ T8368]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.395256][ T8368]  ? clear_bhb_loop+0x60/0xb0
[  264.395270][ T8368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.395283][ T8368] RIP: 0033:0x7f000a18ebe9
[  264.395296][ T8368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.395308][ T8368] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  264.395325][ T8368] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  264.395335][ T8368] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  264.395345][ T8368] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  264.395354][ T8368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  264.395363][ T8368] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  264.395377][ T8368]  </TASK>
[  264.395387][ T8368] BTRFS error (device loop0): failed to run delayed ref for logical 8519680 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  264.616760][ T8368] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  264.620882][ T8368] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  264.626634][ T8368] BTRFS info (device loop0 state EA): forced readonly
[  264.630428][ T8351] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  264.634721][ T8351] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  264.642165][ T8351] BTRFS info (device loop0 state EA): balance: ended with status: -5
[  264.653100][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
2025/08/18 16:24:43 executed programs: 146
[  264.842329][ T8371] loop0: detected capacity change from 0 to 32768
[  264.851143][ T8371] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.161 (8371)
[  264.869732][ T8371] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  264.880376][ T8371] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  264.910419][ T8371] BTRFS info (device loop0): rebuilding free space tree
[  264.922174][ T8371] BTRFS info (device loop0): disabling free space tree
[  264.925048][ T8371] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  264.941115][ T8371] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  264.961195][ T8371] BTRFS info (device loop0): balance: start -d -m
[  264.965772][ T8371] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  264.991087][ T8371] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  265.011444][ T8388] FAULT_INJECTION: forcing a failure.
[  265.011444][ T8388] name failslab, interval 1, probability 0, space 0, times 0
[  265.016897][ T8388] CPU: 0 UID: 0 PID: 8388 Comm: syz.0.161 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  265.016918][ T8388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  265.016927][ T8388] Call Trace:
[  265.016933][ T8388]  <TASK>
[  265.016939][ T8388]  dump_stack_lvl+0x189/0x250
[  265.016958][ T8388]  ? __pfx____ratelimit+0x10/0x10
[  265.016994][ T8388]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.017006][ T8388]  ? __pfx__printk+0x10/0x10
[  265.017021][ T8388]  ? btrfs_search_slot+0x264e/0x2b90
[  265.017036][ T8388]  ? __pfx___might_resched+0x10/0x10
[  265.017049][ T8388]  ? lock_acquire+0x5f/0x360
[  265.017066][ T8388]  should_fail_ex+0x414/0x560
[  265.017080][ T8388]  should_failslab+0xa8/0x100
[  265.017095][ T8388]  kmem_cache_alloc_noprof+0x73/0x3c0
[  265.017110][ T8388]  ? alloc_extent_state+0x22/0x2f0
[  265.017126][ T8388]  alloc_extent_state+0x22/0x2f0
[  265.017142][ T8388]  set_extent_bit+0x270/0x21a0
[  265.017162][ T8388]  ? block_group_cache_tree_search+0x37/0x290
[  265.017174][ T8388]  ? rcu_is_watching+0x15/0xb0
[  265.017188][ T8388]  ? __pfx_set_extent_bit+0x10/0x10
[  265.017200][ T8388]  ? rcu_is_watching+0x15/0xb0
[  265.017208][ T8388]  btrfs_set_extent_bit+0x38/0x50
[  265.017224][ T8388]  btrfs_update_block_group+0x6e5/0xad0
[  265.017245][ T8388]  __btrfs_free_extent+0x16a0/0x4250
[  265.017262][ T8388]  ? __pfx___btrfs_free_extent+0x10/0x10
[  265.017279][ T8388]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  265.017298][ T8388]  ? __kernel_text_address+0xd/0x40
[  265.017318][ T8388]  ? rcu_is_watching+0x15/0xb0
[  265.017341][ T8388]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  265.017358][ T8388]  ? is_bpf_text_address+0x26/0x2b0
[  265.017377][ T8388]  ? kernel_text_address+0xa5/0xe0
[  265.017393][ T8388]  ? __kernel_text_address+0xd/0x40
[  265.017409][ T8388]  ? unwind_get_return_address+0x4d/0x90
[  265.017422][ T8388]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  265.017437][ T8388]  ? arch_stack_walk+0xfc/0x150
[  265.017455][ T8388]  ? stack_trace_save+0x9c/0xe0
[  265.017468][ T8388]  ? btrfs_commit_transaction+0x161/0x3950
[  265.017482][ T8388]  ? rcu_is_watching+0x15/0xb0
[  265.017493][ T8388]  ? lock_acquire+0x5f/0x360
[  265.017510][ T8388]  btrfs_run_delayed_refs+0xe6/0x3b0
[  265.017528][ T8388]  btrfs_commit_transaction+0x269/0x3950
[  265.017542][ T8388]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.017554][ T8388]  ? btrfs_commit_transaction+0x161/0x3950
[  265.017576][ T8388]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  265.017590][ T8388]  ? lock_acquire+0x5f/0x360
[  265.017607][ T8388]  ? do_raw_spin_unlock+0x4d/0x240
[  265.017621][ T8388]  ? join_transaction+0x41b/0xd70
[  265.017639][ T8388]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  265.017656][ T8388]  ? start_transaction+0x439/0x1620
[  265.017670][ T8388]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  265.017687][ T8388]  ? btrfs_record_root_in_trans+0x124/0x180
[  265.017701][ T8388]  create_snapshot+0x6bc/0xba0
[  265.017720][ T8388]  btrfs_mksubvol+0x545/0x6d0
[  265.017738][ T8388]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  265.017755][ T8388]  ? __fget_files+0x3a0/0x420
[  265.017771][ T8388]  btrfs_mksnapshot+0xab/0xf0
[  265.017788][ T8388]  __btrfs_ioctl_snap_create+0x520/0x730
[  265.017804][ T8388]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  265.017823][ T8388]  ? rep_movs_alternative+0x4a/0x90
[  265.017836][ T8388]  ? _copy_from_user+0x94/0xb0
[  265.017849][ T8388]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  265.017863][ T8388]  ? __fget_files+0x3a0/0x420
[  265.017877][ T8388]  btrfs_ioctl+0xa62/0xd00
[  265.017890][ T8388]  ? __pfx_btrfs_ioctl+0x10/0x10
[  265.017901][ T8388]  __se_sys_ioctl+0xf9/0x170
[  265.017915][ T8388]  do_syscall_64+0xfa/0x3b0
[  265.017931][ T8388]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.017943][ T8388]  ? clear_bhb_loop+0x60/0xb0
[  265.017956][ T8388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.018000][ T8388] RIP: 0033:0x7f000a18ebe9
[  265.018014][ T8388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.018025][ T8388] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  265.018040][ T8388] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  265.018049][ T8388] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  265.018056][ T8388] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  265.018064][ T8388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  265.018071][ T8388] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  265.018083][ T8388]  </TASK>
[  265.248372][ T8371] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  265.266346][ T8371] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  265.280306][ T8371] BTRFS info (device loop0): balance: ended with status: 0
[  265.291145][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  265.503664][ T8391] loop0: detected capacity change from 0 to 32768
[  265.511778][ T8391] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.162 (8391)
[  265.533880][ T8391] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  265.549207][ T8391] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  265.590137][ T8391] BTRFS info (device loop0): rebuilding free space tree
[  265.601621][ T8391] BTRFS info (device loop0): disabling free space tree
[  265.609562][ T8391] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  265.619524][ T8391] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  265.640939][ T8391] BTRFS info (device loop0): balance: start -d -m
[  265.645227][ T8391] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  265.665615][ T8391] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  265.684674][ T8408] FAULT_INJECTION: forcing a failure.
[  265.684674][ T8408] name failslab, interval 1, probability 0, space 0, times 0
[  265.691280][ T8408] CPU: 0 UID: 0 PID: 8408 Comm: syz.0.162 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  265.691301][ T8408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  265.691309][ T8408] Call Trace:
[  265.691313][ T8408]  <TASK>
[  265.691318][ T8408]  dump_stack_lvl+0x189/0x250
[  265.691338][ T8408]  ? __pfx____ratelimit+0x10/0x10
[  265.691354][ T8408]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.691366][ T8408]  ? __pfx__printk+0x10/0x10
[  265.691381][ T8408]  ? __pfx___might_resched+0x10/0x10
[  265.691391][ T8408]  ? lock_acquire+0x5f/0x360
[  265.691407][ T8408]  should_fail_ex+0x414/0x560
[  265.691422][ T8408]  should_failslab+0xa8/0x100
[  265.691436][ T8408]  kmem_cache_alloc_noprof+0x73/0x3c0
[  265.691450][ T8408]  ? __btrfs_run_delayed_refs+0x1350/0x4130
[  265.691466][ T8408]  __btrfs_run_delayed_refs+0x1350/0x4130
[  265.691491][ T8408]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  265.691508][ T8408]  ? rcu_is_watching+0x15/0xb0
[  265.691518][ T8408]  ? trace_contention_end+0x39/0x120
[  265.691530][ T8408]  ? rcu_is_watching+0x15/0xb0
[  265.691541][ T8408]  ? lock_release+0x4b/0x3e0
[  265.691554][ T8408]  ? btrfs_try_granting_tickets+0xab4/0xb80
[  265.691571][ T8408]  ? rcu_needs_cpu+0x50/0xb0
[  265.691582][ T8408]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  265.691606][ T8408]  btrfs_run_delayed_refs+0xe6/0x3b0
[  265.691621][ T8408]  btrfs_start_dirty_block_groups+0xd3d/0x10a0
[  265.691642][ T8408]  ? __pfx_btrfs_start_dirty_block_groups+0x10/0x10
[  265.691658][ T8408]  ? kasan_save_track+0x4f/0x80
[  265.691669][ T8408]  ? btrfs_trans_release_metadata+0x22d/0x330
[  265.691684][ T8408]  btrfs_commit_transaction+0x674/0x3950
[  265.691699][ T8408]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.691711][ T8408]  ? btrfs_commit_transaction+0x161/0x3950
[  265.691730][ T8408]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  265.691743][ T8408]  ? lock_acquire+0x5f/0x360
[  265.691760][ T8408]  ? do_raw_spin_unlock+0x4d/0x240
[  265.691774][ T8408]  ? join_transaction+0x41b/0xd70
[  265.691791][ T8408]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  265.691809][ T8408]  ? start_transaction+0x439/0x1620
[  265.691822][ T8408]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  265.691839][ T8408]  ? btrfs_record_root_in_trans+0x124/0x180
[  265.691851][ T8408]  create_snapshot+0x6bc/0xba0
[  265.691869][ T8408]  btrfs_mksubvol+0x545/0x6d0
[  265.691886][ T8408]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  265.691902][ T8408]  ? __fget_files+0x3a0/0x420
[  265.691917][ T8408]  btrfs_mksnapshot+0xab/0xf0
[  265.691933][ T8408]  __btrfs_ioctl_snap_create+0x520/0x730
[  265.691951][ T8408]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  265.691967][ T8408]  ? rep_movs_alternative+0x4a/0x90
[  265.691979][ T8408]  ? _copy_from_user+0x94/0xb0
[  265.691992][ T8408]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  265.692006][ T8408]  ? __fget_files+0x3a0/0x420
[  265.692021][ T8408]  btrfs_ioctl+0xa62/0xd00
[  265.692033][ T8408]  ? __pfx_btrfs_ioctl+0x10/0x10
[  265.692046][ T8408]  __se_sys_ioctl+0xf9/0x170
[  265.692059][ T8408]  do_syscall_64+0xfa/0x3b0
[  265.692075][ T8408]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.692085][ T8408]  ? clear_bhb_loop+0x60/0xb0
[  265.692098][ T8408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.692108][ T8408] RIP: 0033:0x7f000a18ebe9
[  265.692121][ T8408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.692133][ T8408] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  265.692148][ T8408] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  265.692160][ T8408] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  265.692169][ T8408] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  265.692177][ T8408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  265.692184][ T8408] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  265.692196][ T8408]  </TASK>
[  265.692220][ T8408] BTRFS error (device loop0): failed to run delayed ref for logical 8548352 num_bytes 4096 type 176 action 1 ref_mod 1: -12
[  265.879581][ T8408] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  265.883255][ T8408] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  265.887909][ T8408] BTRFS info (device loop0 state EA): forced readonly
[  265.892022][ T8391] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  265.896860][ T8391] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  265.903852][ T8391] BTRFS info (device loop0 state EA): balance: ended with status: -5
[  265.913854][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  266.147615][ T8411] loop0: detected capacity change from 0 to 32768
[  266.156004][ T8411] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.163 (8411)
[  266.174543][ T8411] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  266.178949][ T8411] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  266.234351][ T8411] BTRFS info (device loop0): rebuilding free space tree
[  266.250807][ T8411] BTRFS info (device loop0): disabling free space tree
[  266.254190][ T8411] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  266.257815][ T8411] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  266.280205][ T8411] BTRFS info (device loop0): balance: start -d -m
[  266.290477][ T8411] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  266.304864][ T8411] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  266.324207][ T8411] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  266.330220][ T8428] FAULT_INJECTION: forcing a failure.
[  266.330220][ T8428] name failslab, interval 1, probability 0, space 0, times 0
[  266.336701][ T8428] CPU: 0 UID: 0 PID: 8428 Comm: syz.0.163 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  266.336723][ T8428] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  266.336731][ T8428] Call Trace:
[  266.336736][ T8428]  <TASK>
[  266.336742][ T8428]  dump_stack_lvl+0x189/0x250
[  266.336761][ T8428]  ? __pfx____ratelimit+0x10/0x10
[  266.336777][ T8428]  ? __pfx_dump_stack_lvl+0x10/0x10
[  266.336786][ T8428]  ? __pfx__printk+0x10/0x10
[  266.336797][ T8428]  ? __pfx___might_resched+0x10/0x10
[  266.336805][ T8428]  ? lock_acquire+0x5f/0x360
[  266.336816][ T8428]  should_fail_ex+0x414/0x560
[  266.336827][ T8428]  should_failslab+0xa8/0x100
[  266.336838][ T8428]  kmem_cache_alloc_noprof+0x73/0x3c0
[  266.336847][ T8428]  ? __btrfs_free_extent+0x2f9/0x4250
[  266.336857][ T8428]  ? btrfs_delayed_ref_lock+0x88/0x2b0
[  266.336875][ T8428]  __btrfs_free_extent+0x2f9/0x4250
[  266.336887][ T8428]  ? rcu_is_watching+0x15/0xb0
[  266.336900][ T8428]  ? rcu_is_watching+0x15/0xb0
[  266.336923][ T8428]  ? lock_release+0x4b/0x3e0
[  266.336939][ T8428]  ? __pfx___btrfs_free_extent+0x10/0x10
[  266.336949][ T8428]  ? do_raw_read_unlock+0x3d/0x80
[  266.336959][ T8428]  ? rcu_is_watching+0x15/0xb0
[  266.336967][ T8428]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  266.336981][ T8428]  ? rcu_is_watching+0x15/0xb0
[  266.336989][ T8428]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  266.336999][ T8428]  ? is_bpf_text_address+0x292/0x2b0
[  266.337010][ T8428]  ? is_bpf_text_address+0x26/0x2b0
[  266.337020][ T8428]  ? kernel_text_address+0xa5/0xe0
[  266.337031][ T8428]  ? __kernel_text_address+0xd/0x40
[  266.337044][ T8428]  ? unwind_get_return_address+0x4d/0x90
[  266.337056][ T8428]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  266.337068][ T8428]  ? arch_stack_walk+0xfc/0x150
[  266.337085][ T8428]  ? stack_trace_save+0x9c/0xe0
[  266.337098][ T8428]  ? btrfs_commit_transaction+0x161/0x3950
[  266.337111][ T8428]  ? rcu_is_watching+0x15/0xb0
[  266.337122][ T8428]  ? lock_acquire+0x5f/0x360
[  266.337138][ T8428]  btrfs_run_delayed_refs+0xe6/0x3b0
[  266.337153][ T8428]  btrfs_commit_transaction+0x269/0x3950
[  266.337167][ T8428]  ? rcu_is_watching+0x15/0xb0
[  266.337174][ T8428]  ? btrfs_commit_transaction+0x161/0x3950
[  266.337186][ T8428]  ? trace_contention_end+0x39/0x120
[  266.337198][ T8428]  ? rcu_is_watching+0x15/0xb0
[  266.337207][ T8428]  ? lock_release+0x4b/0x3e0
[  266.337224][ T8428]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  266.337239][ T8428]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  266.337251][ T8428]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  266.337265][ T8428]  ? do_raw_spin_unlock+0x4d/0x240
[  266.337280][ T8428]  ? record_root_in_trans+0x2d8/0x370
[  266.337294][ T8428]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  266.337310][ T8428]  ? start_transaction+0x439/0x1620
[  266.337325][ T8428]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  266.337348][ T8428]  ? btrfs_record_root_in_trans+0x124/0x180
[  266.337361][ T8428]  create_snapshot+0x6bc/0xba0
[  266.337377][ T8428]  btrfs_mksubvol+0x545/0x6d0
[  266.337394][ T8428]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  266.337409][ T8428]  ? __fget_files+0x3a0/0x420
[  266.337422][ T8428]  btrfs_mksnapshot+0xab/0xf0
[  266.337438][ T8428]  __btrfs_ioctl_snap_create+0x520/0x730
[  266.337455][ T8428]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  266.337470][ T8428]  ? rep_movs_alternative+0x4a/0x90
[  266.337482][ T8428]  ? _copy_from_user+0x94/0xb0
[  266.337493][ T8428]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  266.337502][ T8428]  ? __fget_files+0x3a0/0x420
[  266.337511][ T8428]  btrfs_ioctl+0xa62/0xd00
[  266.337519][ T8428]  ? __pfx_btrfs_ioctl+0x10/0x10
[  266.337527][ T8428]  __se_sys_ioctl+0xf9/0x170
[  266.337535][ T8428]  do_syscall_64+0xfa/0x3b0
[  266.337545][ T8428]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.337552][ T8428]  ? clear_bhb_loop+0x60/0xb0
[  266.337561][ T8428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.337571][ T8428] RIP: 0033:0x7f000a18ebe9
[  266.337582][ T8428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.337591][ T8428] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  266.337609][ T8428] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  266.337618][ T8428] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  266.337626][ T8428] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  266.337633][ T8428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  266.337640][ T8428] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  266.337653][ T8428]  </TASK>
[  266.337662][ T8428] BTRFS error (device loop0): failed to run delayed ref for logical 8556544 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  266.564133][ T8428] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  266.567808][ T8428] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  266.574236][ T8428] BTRFS info (device loop0 state EA): forced readonly
[  266.578525][ T8411] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  266.583154][ T8411] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  266.588356][ T8411] BTRFS info (device loop0 state EA): balance: ended with status: -12
[  266.597418][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  266.824119][ T8431] loop0: detected capacity change from 0 to 32768
[  266.837562][ T8431] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.164 (8431)
[  266.857428][ T8431] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  266.869748][ T8431] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  266.892790][ T8431] BTRFS info (device loop0): rebuilding free space tree
[  266.912493][ T8431] BTRFS info (device loop0): disabling free space tree
[  266.915602][ T8431] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  266.929558][ T8431] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  266.945444][ T8431] BTRFS info (device loop0): balance: start -d -m
[  266.961185][ T8431] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  266.980653][ T8431] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  266.992499][ T8448] FAULT_INJECTION: forcing a failure.
[  266.992499][ T8448] name failslab, interval 1, probability 0, space 0, times 0
[  266.998311][ T8448] CPU: 0 UID: 0 PID: 8448 Comm: syz.0.164 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  266.998335][ T8448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  266.998344][ T8448] Call Trace:
[  266.998354][ T8448]  <TASK>
[  266.998362][ T8448]  dump_stack_lvl+0x189/0x250
[  266.998411][ T8448]  ? __pfx____ratelimit+0x10/0x10
[  266.998436][ T8448]  ? __pfx_dump_stack_lvl+0x10/0x10
[  266.998451][ T8448]  ? __pfx__printk+0x10/0x10
[  266.998468][ T8448]  ? btrfs_search_slot+0x264e/0x2b90
[  266.998492][ T8448]  ? __pfx___might_resched+0x10/0x10
[  266.998507][ T8448]  ? lock_acquire+0x5f/0x360
[  266.998523][ T8448]  should_fail_ex+0x414/0x560
[  266.998536][ T8448]  should_failslab+0xa8/0x100
[  266.998552][ T8448]  kmem_cache_alloc_noprof+0x73/0x3c0
[  266.998576][ T8448]  ? alloc_extent_state+0x22/0x2f0
[  266.998595][ T8448]  alloc_extent_state+0x22/0x2f0
[  266.998612][ T8448]  set_extent_bit+0x270/0x21a0
[  266.998632][ T8448]  ? block_group_cache_tree_search+0x37/0x290
[  266.998644][ T8448]  ? rcu_is_watching+0x15/0xb0
[  266.998657][ T8448]  ? __pfx_set_extent_bit+0x10/0x10
[  266.998674][ T8448]  ? rcu_is_watching+0x15/0xb0
[  266.998688][ T8448]  btrfs_set_extent_bit+0x38/0x50
[  266.998705][ T8448]  btrfs_update_block_group+0x6e5/0xad0
[  266.998725][ T8448]  __btrfs_free_extent+0x16a0/0x4250
[  266.998743][ T8448]  ? __pfx___btrfs_free_extent+0x10/0x10
[  266.998758][ T8448]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  266.998803][ T8448]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  266.998824][ T8448]  ? rcu_is_watching+0x15/0xb0
[  266.998837][ T8448]  ? trace_sched_exit_tp+0x36/0x110
[  266.998857][ T8448]  ? __schedule+0x17ae/0x4cc0
[  266.998878][ T8448]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  266.998899][ T8448]  ? do_raw_spin_lock+0x121/0x290
[  266.998913][ T8448]  ? do_raw_spin_lock+0x121/0x290
[  266.998925][ T8448]  ? btrfs_commit_transaction+0x161/0x3950
[  266.998939][ T8448]  ? rcu_is_watching+0x15/0xb0
[  266.998950][ T8448]  ? lock_acquire+0x5f/0x360
[  266.999004][ T8448]  ? rcu_is_watching+0x15/0xb0
[  266.999020][ T8448]  btrfs_run_delayed_refs+0xe6/0x3b0
[  266.999042][ T8448]  btrfs_commit_transaction+0x269/0x3950
[  266.999062][ T8448]  ? rcu_is_watching+0x15/0xb0
[  266.999075][ T8448]  ? btrfs_commit_transaction+0x161/0x3950
[  266.999095][ T8448]  ? rcu_is_watching+0x15/0xb0
[  266.999109][ T8448]  ? lock_release+0x4b/0x3e0
[  266.999131][ T8448]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  266.999153][ T8448]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  266.999172][ T8448]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  266.999193][ T8448]  ? record_root_in_trans+0x113/0x370
[  266.999211][ T8448]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  266.999235][ T8448]  ? start_transaction+0x439/0x1620
[  266.999253][ T8448]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  266.999275][ T8448]  ? btrfs_record_root_in_trans+0x124/0x180
[  266.999294][ T8448]  create_snapshot+0x6bc/0xba0
[  266.999319][ T8448]  btrfs_mksubvol+0x545/0x6d0
[  266.999342][ T8448]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  266.999363][ T8448]  ? __fget_files+0x3a0/0x420
[  266.999383][ T8448]  btrfs_mksnapshot+0xab/0xf0
[  266.999406][ T8448]  __btrfs_ioctl_snap_create+0x520/0x730
[  266.999427][ T8448]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  266.999449][ T8448]  ? rep_movs_alternative+0x4a/0x90
[  266.999466][ T8448]  ? _copy_from_user+0x94/0xb0
[  266.999481][ T8448]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  266.999500][ T8448]  ? __fget_files+0x3a0/0x420
[  266.999521][ T8448]  btrfs_ioctl+0xa62/0xd00
[  266.999547][ T8448]  ? __pfx_btrfs_ioctl+0x10/0x10
[  266.999567][ T8448]  __se_sys_ioctl+0xf9/0x170
[  266.999578][ T8448]  do_syscall_64+0xfa/0x3b0
[  266.999593][ T8448]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.999603][ T8448]  ? clear_bhb_loop+0x60/0xb0
[  266.999614][ T8448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.999624][ T8448] RIP: 0033:0x7f000a18ebe9
[  266.999637][ T8448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.999645][ T8448] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  266.999658][ T8448] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  266.999666][ T8448] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  266.999673][ T8448] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  266.999680][ T8448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  266.999686][ T8448] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  266.999696][ T8448]  </TASK>
[  267.236038][ T8431] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  267.255696][ T8431] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  267.268527][ T8431] BTRFS info (device loop0): balance: ended with status: 0
[  267.279479][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  267.498788][ T8451] loop0: detected capacity change from 0 to 32768
[  267.510261][ T8451] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.165 (8451)
[  267.544557][ T8451] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  267.560398][ T8451] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  267.584719][ T8451] BTRFS info (device loop0): rebuilding free space tree
[  267.608329][ T8451] BTRFS info (device loop0): disabling free space tree
[  267.611547][ T8451] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  267.615875][ T8451] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  267.645912][ T8451] BTRFS info (device loop0): balance: start -d -m
[  267.659284][ T8451] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  267.672840][ T8451] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  267.692597][ T8451] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  267.697883][ T8468] FAULT_INJECTION: forcing a failure.
[  267.697883][ T8468] name failslab, interval 1, probability 0, space 0, times 0
[  267.704151][ T8468] CPU: 0 UID: 0 PID: 8468 Comm: syz.0.165 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  267.704171][ T8468] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.704180][ T8468] Call Trace:
[  267.704185][ T8468]  <TASK>
[  267.704191][ T8468]  dump_stack_lvl+0x189/0x250
[  267.704210][ T8468]  ? __pfx____ratelimit+0x10/0x10
[  267.704235][ T8468]  ? __pfx_dump_stack_lvl+0x10/0x10
[  267.704248][ T8468]  ? __pfx__printk+0x10/0x10
[  267.704265][ T8468]  ? __pfx___might_resched+0x10/0x10
[  267.704276][ T8468]  ? lock_acquire+0x5f/0x360
[  267.704294][ T8468]  should_fail_ex+0x414/0x560
[  267.704308][ T8468]  should_failslab+0xa8/0x100
[  267.704323][ T8468]  kmem_cache_alloc_noprof+0x73/0x3c0
[  267.704337][ T8468]  ? __btrfs_free_extent+0x2f9/0x4250
[  267.704348][ T8468]  ? btrfs_delayed_ref_lock+0x88/0x2b0
[  267.704365][ T8468]  __btrfs_free_extent+0x2f9/0x4250
[  267.704376][ T8468]  ? rcu_is_watching+0x15/0xb0
[  267.704388][ T8468]  ? rcu_is_watching+0x15/0xb0
[  267.704399][ T8468]  ? lock_release+0x4b/0x3e0
[  267.704415][ T8468]  ? __pfx___btrfs_free_extent+0x10/0x10
[  267.704427][ T8468]  ? do_raw_read_unlock+0x3d/0x80
[  267.704442][ T8468]  ? rcu_is_watching+0x15/0xb0
[  267.704455][ T8468]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  267.704473][ T8468]  ? lock_release+0x4b/0x3e0
[  267.704492][ T8468]  ? rcu_is_watching+0x15/0xb0
[  267.704506][ T8468]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  267.704523][ T8468]  ? is_bpf_text_address+0x292/0x2b0
[  267.704540][ T8468]  ? is_bpf_text_address+0x26/0x2b0
[  267.704556][ T8468]  ? kernel_text_address+0xa5/0xe0
[  267.704573][ T8468]  ? __kernel_text_address+0xd/0x40
[  267.704588][ T8468]  ? unwind_get_return_address+0x4d/0x90
[  267.704602][ T8468]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  267.704616][ T8468]  ? arch_stack_walk+0xfc/0x150
[  267.704631][ T8468]  ? stack_trace_save+0x9c/0xe0
[  267.704645][ T8468]  ? btrfs_commit_transaction+0x161/0x3950
[  267.704659][ T8468]  ? rcu_is_watching+0x15/0xb0
[  267.704670][ T8468]  ? lock_acquire+0x5f/0x360
[  267.704685][ T8468]  btrfs_run_delayed_refs+0xe6/0x3b0
[  267.704701][ T8468]  btrfs_commit_transaction+0x269/0x3950
[  267.704716][ T8468]  ? rcu_is_watching+0x15/0xb0
[  267.704727][ T8468]  ? btrfs_commit_transaction+0x161/0x3950
[  267.704739][ T8468]  ? trace_contention_end+0x39/0x120
[  267.704753][ T8468]  ? rcu_is_watching+0x15/0xb0
[  267.704764][ T8468]  ? lock_release+0x4b/0x3e0
[  267.704781][ T8468]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  267.704797][ T8468]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  267.704811][ T8468]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  267.704825][ T8468]  ? do_raw_spin_unlock+0x4d/0x240
[  267.704839][ T8468]  ? record_root_in_trans+0x2d8/0x370
[  267.704854][ T8468]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  267.704873][ T8468]  ? start_transaction+0x439/0x1620
[  267.704887][ T8468]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  267.704904][ T8468]  ? btrfs_record_root_in_trans+0x124/0x180
[  267.704918][ T8468]  create_snapshot+0x6bc/0xba0
[  267.704937][ T8468]  btrfs_mksubvol+0x545/0x6d0
[  267.704954][ T8468]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  267.704969][ T8468]  ? __fget_files+0x3a0/0x420
[  267.704984][ T8468]  btrfs_mksnapshot+0xab/0xf0
[  267.704999][ T8468]  __btrfs_ioctl_snap_create+0x520/0x730
[  267.705015][ T8468]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  267.705032][ T8468]  ? rep_movs_alternative+0x4a/0x90
[  267.705044][ T8468]  ? _copy_from_user+0x94/0xb0
[  267.705055][ T8468]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  267.705068][ T8468]  ? __fget_files+0x3a0/0x420
[  267.705083][ T8468]  btrfs_ioctl+0xa62/0xd00
[  267.705095][ T8468]  ? __pfx_btrfs_ioctl+0x10/0x10
[  267.705107][ T8468]  __se_sys_ioctl+0xf9/0x170
[  267.705120][ T8468]  do_syscall_64+0xfa/0x3b0
[  267.705135][ T8468]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.705146][ T8468]  ? clear_bhb_loop+0x60/0xb0
[  267.705159][ T8468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.705170][ T8468] RIP: 0033:0x7f000a18ebe9
[  267.705182][ T8468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.705192][ T8468] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  267.705214][ T8468] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  267.705223][ T8468] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  267.705253][ T8468] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  267.705261][ T8468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  267.705268][ T8468] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  267.705280][ T8468]  </TASK>
[  267.705289][ T8468] BTRFS error (device loop0): failed to run delayed ref for logical 8548352 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  267.928043][ T8468] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  267.931423][ T8468] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  267.935213][ T8468] BTRFS info (device loop0 state EA): forced readonly
[  267.938490][ T8451] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  267.943667][ T8451] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  267.950011][ T8451] BTRFS info (device loop0 state EA): balance: ended with status: -12
[  267.958436][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  268.169996][ T8471] loop0: detected capacity change from 0 to 32768
[  268.180316][ T8471] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.166 (8471)
[  268.196611][ T8471] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  268.209581][ T8471] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  268.238339][ T8471] BTRFS info (device loop0): rebuilding free space tree
[  268.260102][ T8471] BTRFS info (device loop0): disabling free space tree
[  268.263283][ T8471] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  268.267233][ T8471] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  268.294537][ T8471] BTRFS info (device loop0): balance: start -d -m
[  268.303070][ T8471] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  268.322959][ T8471] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  268.344748][ T8488] FAULT_INJECTION: forcing a failure.
[  268.344748][ T8488] name failslab, interval 1, probability 0, space 0, times 0
[  268.354807][ T8488] CPU: 0 UID: 0 PID: 8488 Comm: syz.0.166 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  268.354828][ T8488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  268.354836][ T8488] Call Trace:
[  268.354840][ T8488]  <TASK>
[  268.354845][ T8488]  dump_stack_lvl+0x189/0x250
[  268.354859][ T8488]  ? __pfx____ratelimit+0x10/0x10
[  268.354871][ T8488]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.354883][ T8488]  ? __pfx__printk+0x10/0x10
[  268.354900][ T8488]  ? __pfx___might_resched+0x10/0x10
[  268.354911][ T8488]  ? lock_acquire+0x5f/0x360
[  268.354927][ T8488]  should_fail_ex+0x414/0x560
[  268.354942][ T8488]  should_failslab+0xa8/0x100
[  268.354957][ T8488]  kmem_cache_alloc_noprof+0x73/0x3c0
[  268.354970][ T8488]  ? __btrfs_run_delayed_refs+0x1350/0x4130
[  268.354988][ T8488]  __btrfs_run_delayed_refs+0x1350/0x4130
[  268.355004][ T8488]  ? __kernel_text_address+0xd/0x40
[  268.355027][ T8488]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  268.355043][ T8488]  ? is_bpf_text_address+0x26/0x2b0
[  268.355061][ T8488]  ? kernel_text_address+0xa5/0xe0
[  268.355076][ T8488]  ? __kernel_text_address+0xd/0x40
[  268.355089][ T8488]  ? unwind_get_return_address+0x4d/0x90
[  268.355102][ T8488]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  268.355120][ T8488]  ? arch_stack_walk+0xfc/0x150
[  268.355136][ T8488]  ? stack_trace_save+0x9c/0xe0
[  268.355148][ T8488]  ? btrfs_commit_transaction+0x161/0x3950
[  268.355163][ T8488]  ? rcu_is_watching+0x15/0xb0
[  268.355174][ T8488]  ? lock_acquire+0x5f/0x360
[  268.355192][ T8488]  btrfs_run_delayed_refs+0xe6/0x3b0
[  268.355208][ T8488]  btrfs_commit_transaction+0x269/0x3950
[  268.355220][ T8488]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.355231][ T8488]  ? btrfs_commit_transaction+0x161/0x3950
[  268.355250][ T8488]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  268.355272][ T8488]  ? lock_acquire+0x5f/0x360
[  268.355288][ T8488]  ? do_raw_spin_unlock+0x4d/0x240
[  268.355301][ T8488]  ? join_transaction+0x41b/0xd70
[  268.355317][ T8488]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  268.355334][ T8488]  ? start_transaction+0x439/0x1620
[  268.355347][ T8488]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  268.355365][ T8488]  ? btrfs_record_root_in_trans+0x124/0x180
[  268.355378][ T8488]  create_snapshot+0x6bc/0xba0
[  268.355395][ T8488]  btrfs_mksubvol+0x545/0x6d0
[  268.355412][ T8488]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  268.355427][ T8488]  ? __fget_files+0x3a0/0x420
[  268.355442][ T8488]  btrfs_mksnapshot+0xab/0xf0
[  268.355457][ T8488]  __btrfs_ioctl_snap_create+0x520/0x730
[  268.355473][ T8488]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  268.355489][ T8488]  ? rep_movs_alternative+0x4a/0x90
[  268.355500][ T8488]  ? _copy_from_user+0x94/0xb0
[  268.355512][ T8488]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  268.355526][ T8488]  ? __fget_files+0x3a0/0x420
[  268.355539][ T8488]  btrfs_ioctl+0xa62/0xd00
[  268.355552][ T8488]  ? __pfx_btrfs_ioctl+0x10/0x10
[  268.355564][ T8488]  __se_sys_ioctl+0xf9/0x170
[  268.355576][ T8488]  do_syscall_64+0xfa/0x3b0
[  268.355590][ T8488]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.355600][ T8488]  ? clear_bhb_loop+0x60/0xb0
[  268.355613][ T8488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.355623][ T8488] RIP: 0033:0x7f000a18ebe9
[  268.355634][ T8488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.355645][ T8488] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  268.355659][ T8488] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  268.355667][ T8488] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  268.355675][ T8488] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  268.355682][ T8488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  268.355689][ T8488] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  268.355701][ T8488]  </TASK>
[  268.355720][ T8488] BTRFS error (device loop0): failed to run delayed ref for logical 8531968 num_bytes 4096 type 176 action 1 ref_mod 1: -12
[  268.550349][ T8488] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  268.554638][ T8488] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  268.560373][ T8488] BTRFS info (device loop0 state EA): forced readonly
[  268.563775][ T8471] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  268.568068][ T8471] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  268.574533][ T8471] BTRFS info (device loop0 state EA): balance: ended with status: -5
[  268.584697][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  268.790874][ T8491] loop0: detected capacity change from 0 to 32768
[  268.804096][ T8491] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.167 (8491)
[  268.823440][ T8491] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  268.828025][ T8491] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  268.859994][ T8491] BTRFS info (device loop0): rebuilding free space tree
[  268.873029][ T8491] BTRFS info (device loop0): disabling free space tree
[  268.876171][ T8491] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  268.890715][ T8491] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  268.913733][ T8491] BTRFS info (device loop0): balance: start -d -m
[  268.929417][ T8491] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  268.941359][ T8491] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  268.963246][ T8508] FAULT_INJECTION: forcing a failure.
[  268.963246][ T8508] name failslab, interval 1, probability 0, space 0, times 0
[  268.968699][ T8508] CPU: 0 UID: 0 PID: 8508 Comm: syz.0.167 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  268.968719][ T8508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  268.968728][ T8508] Call Trace:
[  268.968737][ T8508]  <TASK>
[  268.968745][ T8508]  dump_stack_lvl+0x189/0x250
[  268.968767][ T8508]  ? __pfx____ratelimit+0x10/0x10
[  268.968783][ T8508]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.968797][ T8508]  ? __pfx__printk+0x10/0x10
[  268.968813][ T8508]  ? __pfx___might_resched+0x10/0x10
[  268.968824][ T8508]  ? lock_acquire+0x5f/0x360
[  268.968840][ T8508]  should_fail_ex+0x414/0x560
[  268.968853][ T8508]  should_failslab+0xa8/0x100
[  268.968870][ T8508]  kmem_cache_alloc_noprof+0x73/0x3c0
[  268.968883][ T8508]  ? __btrfs_free_extent+0x2f9/0x4250
[  268.968895][ T8508]  ? btrfs_delayed_ref_lock+0x88/0x2b0
[  268.968913][ T8508]  __btrfs_free_extent+0x2f9/0x4250
[  268.968926][ T8508]  ? rcu_is_watching+0x15/0xb0
[  268.968939][ T8508]  ? rcu_is_watching+0x15/0xb0
[  268.968949][ T8508]  ? lock_release+0x4b/0x3e0
[  268.968987][ T8508]  ? __pfx___btrfs_free_extent+0x10/0x10
[  268.968998][ T8508]  ? do_raw_read_unlock+0x3d/0x80
[  268.969011][ T8508]  ? rcu_is_watching+0x15/0xb0
[  268.969023][ T8508]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  268.969041][ T8508]  ? __kernel_text_address+0xd/0x40
[  268.969062][ T8508]  ? rcu_is_watching+0x15/0xb0
[  268.969077][ T8508]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  268.969092][ T8508]  ? is_bpf_text_address+0x292/0x2b0
[  268.969108][ T8508]  ? is_bpf_text_address+0x26/0x2b0
[  268.969125][ T8508]  ? kernel_text_address+0xa5/0xe0
[  268.969208][ T8508]  ? __kernel_text_address+0xd/0x40
[  268.969223][ T8508]  ? unwind_get_return_address+0x4d/0x90
[  268.969240][ T8508]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  268.969253][ T8508]  ? arch_stack_walk+0xfc/0x150
[  268.969271][ T8508]  ? stack_trace_save+0x9c/0xe0
[  268.969284][ T8508]  ? btrfs_commit_transaction+0x161/0x3950
[  268.969298][ T8508]  ? rcu_is_watching+0x15/0xb0
[  268.969309][ T8508]  ? lock_acquire+0x5f/0x360
[  268.969331][ T8508]  btrfs_run_delayed_refs+0xe6/0x3b0
[  268.969352][ T8508]  btrfs_commit_transaction+0x269/0x3950
[  268.969370][ T8508]  ? rcu_is_watching+0x15/0xb0
[  268.969380][ T8508]  ? btrfs_commit_transaction+0x161/0x3950
[  268.969393][ T8508]  ? trace_contention_end+0x39/0x120
[  268.969406][ T8508]  ? rcu_is_watching+0x15/0xb0
[  268.969416][ T8508]  ? lock_release+0x4b/0x3e0
[  268.969430][ T8508]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  268.969446][ T8508]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  268.969460][ T8508]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  268.969474][ T8508]  ? do_raw_spin_unlock+0x4d/0x240
[  268.969488][ T8508]  ? record_root_in_trans+0x2d8/0x370
[  268.969501][ T8508]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  268.969518][ T8508]  ? start_transaction+0x439/0x1620
[  268.969531][ T8508]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  268.969547][ T8508]  ? btrfs_record_root_in_trans+0x124/0x180
[  268.969560][ T8508]  create_snapshot+0x6bc/0xba0
[  268.969578][ T8508]  btrfs_mksubvol+0x545/0x6d0
[  268.969594][ T8508]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  268.969613][ T8508]  ? __fget_files+0x3a0/0x420
[  268.969629][ T8508]  btrfs_mksnapshot+0xab/0xf0
[  268.969645][ T8508]  __btrfs_ioctl_snap_create+0x520/0x730
[  268.969662][ T8508]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  268.969675][ T8508]  ? rep_movs_alternative+0x4a/0x90
[  268.969686][ T8508]  ? _copy_from_user+0x94/0xb0
[  268.969697][ T8508]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  268.969710][ T8508]  ? __fget_files+0x3a0/0x420
[  268.969724][ T8508]  btrfs_ioctl+0xa62/0xd00
[  268.969736][ T8508]  ? __pfx_btrfs_ioctl+0x10/0x10
[  268.969748][ T8508]  __se_sys_ioctl+0xf9/0x170
[  268.969761][ T8508]  do_syscall_64+0xfa/0x3b0
[  268.969777][ T8508]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.969788][ T8508]  ? clear_bhb_loop+0x60/0xb0
[  268.969800][ T8508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.969811][ T8508] RIP: 0033:0x7f000a18ebe9
[  268.969824][ T8508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.969835][ T8508] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  268.969849][ T8508] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  268.969858][ T8508] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  268.969866][ T8508] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  268.969872][ T8508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  268.969878][ T8508] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  268.969889][ T8508]  </TASK>
[  269.200643][ T8491] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  269.205681][ T8508] BTRFS error (device loop0): failed to run delayed ref for logical 8589312 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  269.213724][ T8508] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  269.217522][ T8508] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2161: errno=-12 Out of memory
[  269.222643][ T8508] BTRFS info (device loop0 state EA): forced readonly
[  269.225843][ T8491] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  269.230901][ T8491] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  269.236110][ T8491] BTRFS info (device loop0 state EA): balance: ended with status: -12
[  269.244591][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  269.469825][ T8511] loop0: detected capacity change from 0 to 32768
[  269.482304][ T8511] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.168 (8511)
[  269.512553][ T8511] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  269.530662][ T8511] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  269.551895][ T8511] BTRFS info (device loop0): rebuilding free space tree
[  269.558415][ T8511] BTRFS info (device loop0): disabling free space tree
[  269.570526][ T8511] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  269.574892][ T8511] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  269.600422][ T8511] BTRFS info (device loop0): balance: start -d -m
[  269.608108][ T8511] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  269.633220][ T8511] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  269.646607][ T8528] FAULT_INJECTION: forcing a failure.
[  269.646607][ T8528] name failslab, interval 1, probability 0, space 0, times 0
[  269.659549][ T8528] CPU: 0 UID: 0 PID: 8528 Comm: syz.0.168 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  269.659576][ T8528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  269.659588][ T8528] Call Trace:
[  269.659594][ T8528]  <TASK>
[  269.659601][ T8528]  dump_stack_lvl+0x189/0x250
[  269.659624][ T8528]  ? __pfx____ratelimit+0x10/0x10
[  269.659645][ T8528]  ? __pfx_dump_stack_lvl+0x10/0x10
[  269.659662][ T8528]  ? __pfx__printk+0x10/0x10
[  269.659683][ T8528]  ? fs_reclaim_acquire+0x7d/0x100
[  269.659703][ T8528]  ? rcu_is_watching+0x15/0xb0
[  269.659718][ T8528]  ? __pfx___might_resched+0x10/0x10
[  269.659732][ T8528]  ? lock_acquire+0x5f/0x360
[  269.659754][ T8528]  should_fail_ex+0x414/0x560
[  269.659773][ T8528]  should_failslab+0xa8/0x100
[  269.659794][ T8528]  __kmalloc_cache_noprof+0x70/0x3d0
[  269.659811][ T8528]  ? btrfs_ref_tree_mod+0x24e/0x1ab0
[  269.659831][ T8528]  btrfs_ref_tree_mod+0x24e/0x1ab0
[  269.659853][ T8528]  btrfs_inc_extent_ref+0x12d/0x1f0
[  269.659877][ T8528]  __btrfs_mod_ref+0x498/0x8e0
[  269.659900][ T8528]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  269.659921][ T8528]  ? __write_extent_buffer+0x200/0x6c0
[  269.659937][ T8528]  ? copy_extent_buffer_full+0x36e/0x530
[  269.659960][ T8528]  ? __write_extent_buffer+0x277/0x6c0
[  269.659974][ T8528]  ? btrfs_copy_root+0x7e5/0x1090
[  269.659990][ T8528]  btrfs_copy_root+0x918/0x1090
[  269.660009][ T8528]  ? __pfx_btrfs_copy_root+0x10/0x10
[  269.660026][ T8528]  ? __kasan_kmalloc+0x93/0xb0
[  269.660043][ T8528]  ? create_reloc_root+0xee/0xc20
[  269.660062][ T8528]  create_reloc_root+0x215/0xc20
[  269.660081][ T8528]  ? __pfx_create_reloc_root+0x10/0x10
[  269.660101][ T8528]  ? trace_contention_end+0x39/0x120
[  269.660115][ T8528]  ? __mutex_lock+0x335/0x1350
[  269.660138][ T8528]  btrfs_init_reloc_root+0x2ec/0x4c0
[  269.660158][ T8528]  record_root_in_trans+0x2c8/0x370
[  269.660175][ T8528]  btrfs_record_root_in_trans+0x15c/0x180
[  269.660190][ T8528]  start_transaction+0x3a4/0x1620
[  269.660224][ T8528]  create_snapshot+0x52b/0xba0
[  269.660247][ T8528]  btrfs_mksubvol+0x545/0x6d0
[  269.660268][ T8528]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  269.660286][ T8528]  ? __fget_files+0x3a0/0x420
[  269.660305][ T8528]  btrfs_mksnapshot+0xab/0xf0
[  269.660324][ T8528]  __btrfs_ioctl_snap_create+0x520/0x730
[  269.660344][ T8528]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  269.660364][ T8528]  ? rep_movs_alternative+0x4a/0x90
[  269.660379][ T8528]  ? _copy_from_user+0x94/0xb0
[  269.660393][ T8528]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  269.660410][ T8528]  ? __fget_files+0x3a0/0x420
[  269.660427][ T8528]  btrfs_ioctl+0xa62/0xd00
[  269.660441][ T8528]  ? __pfx_btrfs_ioctl+0x10/0x10
[  269.660454][ T8528]  __se_sys_ioctl+0xf9/0x170
[  269.660467][ T8528]  do_syscall_64+0xfa/0x3b0
[  269.660484][ T8528]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.660496][ T8528]  ? clear_bhb_loop+0x60/0xb0
[  269.660511][ T8528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.660525][ T8528] RIP: 0033:0x7f000a18ebe9
[  269.660537][ T8528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.660549][ T8528] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  269.660690][ T8528] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  269.660700][ T8528] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  269.660708][ T8528] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  269.660716][ T8528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  269.660724][ T8528] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  269.660738][ T8528]  </TASK>
[  269.864823][ T8511] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  269.882485][ T8511] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  269.894984][ T8511] BTRFS info (device loop0): balance: ended with status: 0
[  269.907292][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
2025/08/18 16:24:48 executed programs: 154
[  270.126857][ T8531] loop0: detected capacity change from 0 to 32768
[  270.137608][ T8531] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.169 (8531)
[  270.158252][ T8531] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  270.168444][ T8531] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  270.205552][ T8531] BTRFS info (device loop0): rebuilding free space tree
[  270.224087][ T8531] BTRFS info (device loop0): disabling free space tree
[  270.227106][ T8531] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  270.239676][ T8531] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  270.263036][ T8531] BTRFS info (device loop0): balance: start -d -m
[  270.267475][ T8531] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  270.284948][ T8531] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  270.305814][ T8531] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  270.314341][ T8548] FAULT_INJECTION: forcing a failure.
[  270.314341][ T8548] name failslab, interval 1, probability 0, space 0, times 0
[  270.321273][ T8548] CPU: 0 UID: 0 PID: 8548 Comm: syz.0.169 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  270.321294][ T8548] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  270.321302][ T8548] Call Trace:
[  270.321307][ T8548]  <TASK>
[  270.321312][ T8548]  dump_stack_lvl+0x189/0x250
[  270.321456][ T8548]  ? __pfx____ratelimit+0x10/0x10
[  270.321501][ T8548]  ? __pfx_dump_stack_lvl+0x10/0x10
[  270.321513][ T8548]  ? __pfx__printk+0x10/0x10
[  270.321529][ T8548]  ? __pfx___might_resched+0x10/0x10
[  270.321570][ T8548]  ? lock_acquire+0x5f/0x360
[  270.321587][ T8548]  should_fail_ex+0x414/0x560
[  270.321601][ T8548]  should_failslab+0xa8/0x100
[  270.321615][ T8548]  kmem_cache_alloc_noprof+0x73/0x3c0
[  270.321628][ T8548]  ? add_delayed_ref+0x11a/0x1d80
[  270.321645][ T8548]  add_delayed_ref+0x11a/0x1d80
[  270.321661][ T8548]  ? do_raw_spin_unlock+0x4d/0x240
[  270.321678][ T8548]  ? __pfx_btrfs_get_64+0x10/0x10
[  270.321690][ T8548]  btrfs_inc_extent_ref+0x10c/0x1f0
[  270.321707][ T8548]  __btrfs_mod_ref+0x498/0x8e0
[  270.321723][ T8548]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  270.321738][ T8548]  ? __write_extent_buffer+0x200/0x6c0
[  270.321748][ T8548]  ? copy_extent_buffer_full+0x36e/0x530
[  270.321765][ T8548]  ? __write_extent_buffer+0x277/0x6c0
[  270.321774][ T8548]  ? btrfs_copy_root+0x7e5/0x1090
[  270.321788][ T8548]  btrfs_copy_root+0x918/0x1090
[  270.321825][ T8548]  ? __pfx_btrfs_copy_root+0x10/0x10
[  270.321837][ T8548]  ? __kasan_kmalloc+0x93/0xb0
[  270.321850][ T8548]  ? create_reloc_root+0xee/0xc20
[  270.321866][ T8548]  create_reloc_root+0x215/0xc20
[  270.321882][ T8548]  ? __pfx_create_reloc_root+0x10/0x10
[  270.321898][ T8548]  ? trace_contention_end+0x39/0x120
[  270.321910][ T8548]  ? __mutex_lock+0x335/0x1350
[  270.321956][ T8548]  btrfs_init_reloc_root+0x2ec/0x4c0
[  270.321974][ T8548]  record_root_in_trans+0x2c8/0x370
[  270.321988][ T8548]  btrfs_record_root_in_trans+0x15c/0x180
[  270.322001][ T8548]  start_transaction+0x3a4/0x1620
[  270.322016][ T8548]  create_snapshot+0x52b/0xba0
[  270.322034][ T8548]  btrfs_mksubvol+0x545/0x6d0
[  270.322049][ T8548]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  270.322065][ T8548]  ? __fget_files+0x3a0/0x420
[  270.322079][ T8548]  btrfs_mksnapshot+0xab/0xf0
[  270.322095][ T8548]  __btrfs_ioctl_snap_create+0x520/0x730
[  270.322110][ T8548]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  270.322125][ T8548]  ? rep_movs_alternative+0x4a/0x90
[  270.322137][ T8548]  ? _copy_from_user+0x94/0xb0
[  270.322148][ T8548]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  270.322161][ T8548]  ? __fget_files+0x3a0/0x420
[  270.322175][ T8548]  btrfs_ioctl+0xa62/0xd00
[  270.322187][ T8548]  ? __pfx_btrfs_ioctl+0x10/0x10
[  270.322199][ T8548]  __se_sys_ioctl+0xf9/0x170
[  270.322211][ T8548]  do_syscall_64+0xfa/0x3b0
[  270.322226][ T8548]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.322237][ T8548]  ? clear_bhb_loop+0x60/0xb0
[  270.322249][ T8548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.322266][ T8548] RIP: 0033:0x7f000a18ebe9
[  270.322277][ T8548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.322287][ T8548] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  270.322301][ T8548] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  270.322310][ T8548] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  270.322317][ T8548] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  270.322324][ T8548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  270.322331][ T8548] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  270.322343][ T8548]  </TASK>
[  270.322462][ T8548] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  270.499959][ T8548] BTRFS: error (device loop0 state A) in btrfs_copy_root:297: errno=-12 Out of memory
[  270.505042][ T8548] BTRFS info (device loop0 state EA): forced readonly
[  270.509826][ T8531] BTRFS info (device loop0 state EA): balance: ended with status: -30
[  270.518907][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  270.741905][ T8551] loop0: detected capacity change from 0 to 32768
[  270.755878][ T8551] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.170 (8551)
[  270.782649][ T8551] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  270.787320][ T8551] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  270.823372][ T8551] BTRFS info (device loop0): rebuilding free space tree
[  270.835640][ T8551] BTRFS info (device loop0): disabling free space tree
[  270.838858][ T8551] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  270.859286][ T8551] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  270.880570][ T8551] BTRFS info (device loop0): balance: start -d -m
[  270.885683][ T8551] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  270.904978][ T8551] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  270.931759][ T8568] FAULT_INJECTION: forcing a failure.
[  270.931759][ T8568] name failslab, interval 1, probability 0, space 0, times 0
[  270.938151][ T8568] CPU: 0 UID: 0 PID: 8568 Comm: syz.0.170 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  270.938173][ T8568] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  270.938184][ T8568] Call Trace:
[  270.938190][ T8568]  <TASK>
[  270.938196][ T8568]  dump_stack_lvl+0x189/0x250
[  270.938218][ T8568]  ? __pfx____ratelimit+0x10/0x10
[  270.938235][ T8568]  ? __pfx_dump_stack_lvl+0x10/0x10
[  270.938249][ T8568]  ? __pfx__printk+0x10/0x10
[  270.938263][ T8568]  ? fs_reclaim_acquire+0x7d/0x100
[  270.938275][ T8568]  ? rcu_is_watching+0x15/0xb0
[  270.938284][ T8568]  ? __pfx___might_resched+0x10/0x10
[  270.938302][ T8568]  ? lock_acquire+0x5f/0x360
[  270.938322][ T8568]  should_fail_ex+0x414/0x560
[  270.938338][ T8568]  should_failslab+0xa8/0x100
[  270.938354][ T8568]  __kmalloc_cache_noprof+0x70/0x3d0
[  270.938368][ T8568]  ? btrfs_ref_tree_mod+0x24e/0x1ab0
[  270.938386][ T8568]  btrfs_ref_tree_mod+0x24e/0x1ab0
[  270.938410][ T8568]  btrfs_inc_extent_ref+0x12d/0x1f0
[  270.938430][ T8568]  __btrfs_mod_ref+0x498/0x8e0
[  270.938456][ T8568]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  270.938473][ T8568]  ? __write_extent_buffer+0x200/0x6c0
[  270.938483][ T8568]  ? copy_extent_buffer_full+0x36e/0x530
[  270.938503][ T8568]  ? __write_extent_buffer+0x277/0x6c0
[  270.938514][ T8568]  ? btrfs_copy_root+0x7e5/0x1090
[  270.938529][ T8568]  btrfs_copy_root+0x949/0x1090
[  270.938544][ T8568]  ? __pfx_btrfs_copy_root+0x10/0x10
[  270.938555][ T8568]  ? btrfs_cow_block+0x2e0/0x9a0
[  270.938570][ T8568]  create_pending_snapshot+0xa76/0x3280
[  270.938593][ T8568]  ? __pfx_create_pending_snapshot+0x10/0x10
[  270.938608][ T8568]  ? rcu_is_watching+0x15/0xb0
[  270.938618][ T8568]  ? trace_contention_end+0x39/0x120
[  270.938631][ T8568]  ? __mutex_lock+0x335/0x1350
[  270.938651][ T8568]  ? btrfs_commit_transaction+0xedd/0x3950
[  270.938668][ T8568]  ? btrfs_commit_transaction+0x161/0x3950
[  270.938681][ T8568]  ? rcu_is_watching+0x15/0xb0
[  270.938693][ T8568]  create_pending_snapshots+0x17c/0x1c0
[  270.938711][ T8568]  btrfs_commit_transaction+0xeea/0x3950
[  270.938725][ T8568]  ? btrfs_commit_transaction+0x161/0x3950
[  270.938742][ T8568]  ? lock_release+0x4b/0x3e0
[  270.938760][ T8568]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  270.938777][ T8568]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  270.938792][ T8568]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  270.938808][ T8568]  ? do_raw_spin_unlock+0x4d/0x240
[  270.938823][ T8568]  ? record_root_in_trans+0x2d8/0x370
[  270.938838][ T8568]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  270.938857][ T8568]  ? start_transaction+0x439/0x1620
[  270.938872][ T8568]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  270.938892][ T8568]  ? btrfs_record_root_in_trans+0x124/0x180
[  270.938903][ T8568]  create_snapshot+0x6bc/0xba0
[  270.938921][ T8568]  btrfs_mksubvol+0x545/0x6d0
[  270.938947][ T8568]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  270.938995][ T8568]  ? __fget_files+0x3a0/0x420
[  270.939013][ T8568]  btrfs_mksnapshot+0xab/0xf0
[  270.939031][ T8568]  __btrfs_ioctl_snap_create+0x520/0x730
[  270.939052][ T8568]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  270.939070][ T8568]  ? rep_movs_alternative+0x4a/0x90
[  270.939082][ T8568]  ? _copy_from_user+0x94/0xb0
[  270.939096][ T8568]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  270.939111][ T8568]  ? __fget_files+0x3a0/0x420
[  270.939127][ T8568]  btrfs_ioctl+0xa62/0xd00
[  270.939141][ T8568]  ? __pfx_btrfs_ioctl+0x10/0x10
[  270.939160][ T8568]  __se_sys_ioctl+0xf9/0x170
[  270.939173][ T8568]  do_syscall_64+0xfa/0x3b0
[  270.939189][ T8568]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.939202][ T8568]  ? clear_bhb_loop+0x60/0xb0
[  270.939215][ T8568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.939227][ T8568] RIP: 0033:0x7f000a18ebe9
[  270.939240][ T8568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.939250][ T8568] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  270.939265][ T8568] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  270.939274][ T8568] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  270.939283][ T8568] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  270.939297][ T8568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  270.939305][ T8568] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  270.939319][ T8568]  </TASK>
[  271.164374][ T8551] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  271.181328][ T8551] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  271.191879][ T8551] BTRFS info (device loop0): balance: ended with status: 0
[  271.204055][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  271.408167][ T8571] loop0: detected capacity change from 0 to 32768
[  271.417830][ T8571] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.171 (8571)
[  271.436717][ T8571] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  271.450120][ T8571] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  271.474033][ T8571] BTRFS info (device loop0): rebuilding free space tree
[  271.485872][ T8571] BTRFS info (device loop0): disabling free space tree
[  271.499368][ T8571] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  271.504466][ T8571] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  271.528327][ T8571] BTRFS info (device loop0): balance: start -d -m
[  271.537257][ T8571] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  271.563205][ T8571] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  271.578328][ T8588] FAULT_INJECTION: forcing a failure.
[  271.578328][ T8588] name failslab, interval 1, probability 0, space 0, times 0
[  271.591005][ T8588] CPU: 0 UID: 0 PID: 8588 Comm: syz.0.171 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  271.591032][ T8588] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  271.591039][ T8588] Call Trace:
[  271.591043][ T8588]  <TASK>
[  271.591048][ T8588]  dump_stack_lvl+0x189/0x250
[  271.591070][ T8588]  ? __pfx____ratelimit+0x10/0x10
[  271.591088][ T8588]  ? __pfx_dump_stack_lvl+0x10/0x10
[  271.591102][ T8588]  ? __pfx__printk+0x10/0x10
[  271.591121][ T8588]  ? fs_reclaim_acquire+0x7d/0x100
[  271.591139][ T8588]  ? rcu_is_watching+0x15/0xb0
[  271.591149][ T8588]  ? __pfx___might_resched+0x10/0x10
[  271.591158][ T8588]  ? lock_acquire+0x5f/0x360
[  271.591172][ T8588]  should_fail_ex+0x414/0x560
[  271.591188][ T8588]  should_failslab+0xa8/0x100
[  271.591205][ T8588]  __kmalloc_cache_noprof+0x70/0x3d0
[  271.591248][ T8588]  ? btrfs_ref_tree_mod+0x24e/0x1ab0
[  271.591267][ T8588]  btrfs_ref_tree_mod+0x24e/0x1ab0
[  271.591289][ T8588]  btrfs_inc_extent_ref+0x12d/0x1f0
[  271.591310][ T8588]  __btrfs_mod_ref+0x498/0x8e0
[  271.591336][ T8588]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  271.591354][ T8588]  ? __write_extent_buffer+0x200/0x6c0
[  271.591367][ T8588]  ? copy_extent_buffer_full+0x36e/0x530
[  271.591390][ T8588]  ? __write_extent_buffer+0x277/0x6c0
[  271.591402][ T8588]  ? btrfs_copy_root+0x7e5/0x1090
[  271.591417][ T8588]  btrfs_copy_root+0x918/0x1090
[  271.591433][ T8588]  ? __pfx_btrfs_copy_root+0x10/0x10
[  271.591447][ T8588]  ? __kasan_kmalloc+0x93/0xb0
[  271.591464][ T8588]  ? create_reloc_root+0xee/0xc20
[  271.591487][ T8588]  create_reloc_root+0x215/0xc20
[  271.591507][ T8588]  ? __pfx_create_reloc_root+0x10/0x10
[  271.591526][ T8588]  ? trace_contention_end+0x39/0x120
[  271.591541][ T8588]  ? __mutex_lock+0x335/0x1350
[  271.591572][ T8588]  btrfs_init_reloc_root+0x2ec/0x4c0
[  271.591592][ T8588]  record_root_in_trans+0x2c8/0x370
[  271.591611][ T8588]  btrfs_record_root_in_trans+0x15c/0x180
[  271.591626][ T8588]  start_transaction+0x3a4/0x1620
[  271.591646][ T8588]  create_snapshot+0x52b/0xba0
[  271.591668][ T8588]  btrfs_mksubvol+0x545/0x6d0
[  271.591688][ T8588]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  271.591706][ T8588]  ? __fget_files+0x3a0/0x420
[  271.591725][ T8588]  btrfs_mksnapshot+0xab/0xf0
[  271.591745][ T8588]  __btrfs_ioctl_snap_create+0x520/0x730
[  271.591765][ T8588]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  271.591785][ T8588]  ? rep_movs_alternative+0x4a/0x90
[  271.591800][ T8588]  ? _copy_from_user+0x94/0xb0
[  271.591814][ T8588]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  271.591831][ T8588]  ? __fget_files+0x3a0/0x420
[  271.591848][ T8588]  btrfs_ioctl+0xa62/0xd00
[  271.591863][ T8588]  ? __pfx_btrfs_ioctl+0x10/0x10
[  271.591878][ T8588]  __se_sys_ioctl+0xf9/0x170
[  271.591891][ T8588]  do_syscall_64+0xfa/0x3b0
[  271.591910][ T8588]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.591924][ T8588]  ? clear_bhb_loop+0x60/0xb0
[  271.591939][ T8588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.591953][ T8588] RIP: 0033:0x7f000a18ebe9
[  271.591968][ T8588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.591982][ T8588] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  271.592000][ T8588] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  271.592011][ T8588] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  271.592020][ T8588] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  271.592027][ T8588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  271.592036][ T8588] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  271.592049][ T8588]  </TASK>
[  271.815872][ T8571] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  271.833943][ T8571] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  271.846409][ T8571] BTRFS info (device loop0): balance: ended with status: 0
[  271.855866][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  272.076713][ T8591] loop0: detected capacity change from 0 to 32768
[  272.088588][ T8591] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.172 (8591)
[  272.111094][ T8591] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  272.129520][ T8591] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  272.154078][ T8591] BTRFS info (device loop0): rebuilding free space tree
[  272.169967][ T8591] BTRFS info (device loop0): disabling free space tree
[  272.173412][ T8591] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  272.189819][ T8591] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  272.215101][ T8591] BTRFS info (device loop0): balance: start -d -m
[  272.222213][ T8591] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  272.242961][ T8591] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  272.267849][ T8608] FAULT_INJECTION: forcing a failure.
[  272.267849][ T8608] name failslab, interval 1, probability 0, space 0, times 0
[  272.275635][ T8608] CPU: 0 UID: 0 PID: 8608 Comm: syz.0.172 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  272.275652][ T8608] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.275658][ T8608] Call Trace:
[  272.275664][ T8608]  <TASK>
[  272.275670][ T8608]  dump_stack_lvl+0x189/0x250
[  272.275690][ T8608]  ? __pfx____ratelimit+0x10/0x10
[  272.275708][ T8608]  ? __pfx_dump_stack_lvl+0x10/0x10
[  272.275722][ T8608]  ? __pfx__printk+0x10/0x10
[  272.275739][ T8608]  ? __pfx___might_resched+0x10/0x10
[  272.275750][ T8608]  ? lock_acquire+0x5f/0x360
[  272.275768][ T8608]  should_fail_ex+0x414/0x560
[  272.275783][ T8608]  should_failslab+0xa8/0x100
[  272.275800][ T8608]  kmem_cache_alloc_noprof+0x73/0x3c0
[  272.275814][ T8608]  ? add_delayed_ref+0x139/0x1d80
[  272.275834][ T8608]  add_delayed_ref+0x139/0x1d80
[  272.275850][ T8608]  ? do_raw_spin_unlock+0x4d/0x240
[  272.275867][ T8608]  ? __pfx_btrfs_get_64+0x10/0x10
[  272.275880][ T8608]  btrfs_inc_extent_ref+0x10c/0x1f0
[  272.275898][ T8608]  __btrfs_mod_ref+0x498/0x8e0
[  272.275918][ T8608]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  272.275935][ T8608]  ? __write_extent_buffer+0x200/0x6c0
[  272.275945][ T8608]  ? copy_extent_buffer_full+0x36e/0x530
[  272.275963][ T8608]  ? __write_extent_buffer+0x277/0x6c0
[  272.275973][ T8608]  ? btrfs_copy_root+0x7e5/0x1090
[  272.275986][ T8608]  btrfs_copy_root+0x949/0x1090
[  272.276000][ T8608]  ? __pfx_btrfs_copy_root+0x10/0x10
[  272.276012][ T8608]  ? btrfs_cow_block+0x2e0/0x9a0
[  272.276026][ T8608]  create_pending_snapshot+0xa76/0x3280
[  272.276046][ T8608]  ? __pfx_create_pending_snapshot+0x10/0x10
[  272.276060][ T8608]  ? rcu_is_watching+0x15/0xb0
[  272.276072][ T8608]  ? trace_contention_end+0x39/0x120
[  272.276085][ T8608]  ? __mutex_lock+0x335/0x1350
[  272.276104][ T8608]  ? btrfs_commit_transaction+0xedd/0x3950
[  272.276120][ T8608]  ? btrfs_commit_transaction+0x161/0x3950
[  272.276133][ T8608]  ? rcu_is_watching+0x15/0xb0
[  272.276145][ T8608]  create_pending_snapshots+0x17c/0x1c0
[  272.276161][ T8608]  btrfs_commit_transaction+0xeea/0x3950
[  272.276176][ T8608]  ? btrfs_commit_transaction+0x161/0x3950
[  272.276191][ T8608]  ? lock_release+0x4b/0x3e0
[  272.276209][ T8608]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  272.276225][ T8608]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  272.276239][ T8608]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  272.276255][ T8608]  ? do_raw_spin_unlock+0x4d/0x240
[  272.276270][ T8608]  ? record_root_in_trans+0x2d8/0x370
[  272.276299][ T8608]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  272.276319][ T8608]  ? start_transaction+0x439/0x1620
[  272.276332][ T8608]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  272.276350][ T8608]  ? btrfs_record_root_in_trans+0x124/0x180
[  272.276363][ T8608]  create_snapshot+0x6bc/0xba0
[  272.276383][ T8608]  btrfs_mksubvol+0x545/0x6d0
[  272.276400][ T8608]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  272.276416][ T8608]  ? __fget_files+0x3a0/0x420
[  272.276432][ T8608]  btrfs_mksnapshot+0xab/0xf0
[  272.276449][ T8608]  __btrfs_ioctl_snap_create+0x520/0x730
[  272.276468][ T8608]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  272.276484][ T8608]  ? rep_movs_alternative+0x4a/0x90
[  272.276497][ T8608]  ? _copy_from_user+0x94/0xb0
[  272.276509][ T8608]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  272.276524][ T8608]  ? __fget_files+0x3a0/0x420
[  272.276540][ T8608]  btrfs_ioctl+0xa62/0xd00
[  272.276554][ T8608]  ? __pfx_btrfs_ioctl+0x10/0x10
[  272.276566][ T8608]  __se_sys_ioctl+0xf9/0x170
[  272.276579][ T8608]  do_syscall_64+0xfa/0x3b0
[  272.276596][ T8608]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.276607][ T8608]  ? clear_bhb_loop+0x60/0xb0
[  272.276619][ T8608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.276632][ T8608] RIP: 0033:0x7f000a18ebe9
[  272.276645][ T8608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.276656][ T8608] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  272.276671][ T8608] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  272.276679][ T8608] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  272.276687][ T8608] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  272.276694][ T8608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  272.276701][ T8608] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  272.276712][ T8608]  </TASK>
[  272.276774][ T8608] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  272.505098][ T8608] BTRFS: error (device loop0 state A) in btrfs_copy_root:301: errno=-12 Out of memory
[  272.510896][ T8608] BTRFS info (device loop0 state EA): forced readonly
[  272.514788][ T8608] BTRFS: error (device loop0 state EA) in create_pending_snapshot:1804: errno=-12 Out of memory
[  272.520462][ T8608] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  272.526065][ T8608] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  272.532351][ T8591] BTRFS info (device loop0 state EA): balance: ended with status: -5
[  272.542692][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  272.758950][ T8611] loop0: detected capacity change from 0 to 32768
[  272.771269][ T8611] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.173 (8611)
[  272.791235][ T8611] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  272.803163][ T8611] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  272.843408][ T8611] BTRFS info (device loop0): rebuilding free space tree
[  272.857330][ T8611] BTRFS info (device loop0): disabling free space tree
[  272.860768][ T8611] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  272.864860][ T8611] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  272.890534][ T8611] BTRFS info (device loop0): balance: start -d -m
[  272.899974][ T8611] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  272.915700][ T8611] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  272.936938][ T8611] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  272.938202][ T8628] FAULT_INJECTION: forcing a failure.
[  272.938202][ T8628] name failslab, interval 1, probability 0, space 0, times 0
[  272.951253][ T8628] CPU: 0 UID: 0 PID: 8628 Comm: syz.0.173 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  272.951274][ T8628] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.951282][ T8628] Call Trace:
[  272.951287][ T8628]  <TASK>
[  272.951293][ T8628]  dump_stack_lvl+0x189/0x250
[  272.951340][ T8628]  ? __pfx____ratelimit+0x10/0x10
[  272.951362][ T8628]  ? __pfx_dump_stack_lvl+0x10/0x10
[  272.951375][ T8628]  ? __pfx__printk+0x10/0x10
[  272.951390][ T8628]  ? btrfs_search_slot+0x264e/0x2b90
[  272.951412][ T8628]  ? __pfx___might_resched+0x10/0x10
[  272.951424][ T8628]  ? lock_acquire+0x5f/0x360
[  272.951441][ T8628]  should_fail_ex+0x414/0x560
[  272.951454][ T8628]  should_failslab+0xa8/0x100
[  272.951470][ T8628]  kmem_cache_alloc_noprof+0x73/0x3c0
[  272.951484][ T8628]  ? alloc_extent_state+0x22/0x2f0
[  272.951500][ T8628]  alloc_extent_state+0x22/0x2f0
[  272.951515][ T8628]  set_extent_bit+0x270/0x21a0
[  272.951530][ T8628]  ? block_group_cache_tree_search+0x37/0x290
[  272.951540][ T8628]  ? rcu_is_watching+0x15/0xb0
[  272.951549][ T8628]  ? __pfx_set_extent_bit+0x10/0x10
[  272.951559][ T8628]  ? rcu_is_watching+0x15/0xb0
[  272.951568][ T8628]  btrfs_set_extent_bit+0x38/0x50
[  272.951583][ T8628]  btrfs_update_block_group+0x6e5/0xad0
[  272.951600][ T8628]  __btrfs_free_extent+0x16a0/0x4250
[  272.951617][ T8628]  ? __pfx___btrfs_free_extent+0x10/0x10
[  272.951633][ T8628]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  272.951650][ T8628]  ? __kernel_text_address+0xd/0x40
[  272.951670][ T8628]  ? rcu_is_watching+0x15/0xb0
[  272.951684][ T8628]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  272.951701][ T8628]  ? is_bpf_text_address+0x292/0x2b0
[  272.951718][ T8628]  ? is_bpf_text_address+0x26/0x2b0
[  272.951735][ T8628]  ? kernel_text_address+0xa5/0xe0
[  272.951750][ T8628]  ? __kernel_text_address+0xd/0x40
[  272.951765][ T8628]  ? unwind_get_return_address+0x4d/0x90
[  272.951778][ T8628]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  272.951792][ T8628]  ? arch_stack_walk+0xfc/0x150
[  272.951809][ T8628]  ? stack_trace_save+0x9c/0xe0
[  272.951822][ T8628]  ? btrfs_commit_transaction+0x161/0x3950
[  272.951836][ T8628]  ? rcu_is_watching+0x15/0xb0
[  272.951847][ T8628]  ? lock_acquire+0x5f/0x360
[  272.951864][ T8628]  btrfs_run_delayed_refs+0xe6/0x3b0
[  272.951879][ T8628]  btrfs_commit_transaction+0x269/0x3950
[  272.951893][ T8628]  ? rcu_is_watching+0x15/0xb0
[  272.951904][ T8628]  ? btrfs_commit_transaction+0x161/0x3950
[  272.951917][ T8628]  ? trace_contention_end+0x39/0x120
[  272.951929][ T8628]  ? rcu_is_watching+0x15/0xb0
[  272.951939][ T8628]  ? lock_release+0x4b/0x3e0
[  272.951956][ T8628]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  272.951973][ T8628]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  272.951987][ T8628]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  272.952002][ T8628]  ? do_raw_spin_unlock+0x4d/0x240
[  272.952017][ T8628]  ? record_root_in_trans+0x2d8/0x370
[  272.952032][ T8628]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  272.952051][ T8628]  ? start_transaction+0x439/0x1620
[  272.952065][ T8628]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  272.952084][ T8628]  ? btrfs_record_root_in_trans+0x124/0x180
[  272.952098][ T8628]  create_snapshot+0x6bc/0xba0
[  272.952116][ T8628]  btrfs_mksubvol+0x545/0x6d0
[  272.952133][ T8628]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  272.952150][ T8628]  ? __fget_files+0x3a0/0x420
[  272.952165][ T8628]  btrfs_mksnapshot+0xab/0xf0
[  272.952181][ T8628]  __btrfs_ioctl_snap_create+0x520/0x730
[  272.952199][ T8628]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  272.952215][ T8628]  ? rep_movs_alternative+0x4a/0x90
[  272.952230][ T8628]  ? _copy_from_user+0x94/0xb0
[  272.952251][ T8628]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  272.952266][ T8628]  ? __fget_files+0x3a0/0x420
[  272.952281][ T8628]  btrfs_ioctl+0xa62/0xd00
[  272.952294][ T8628]  ? __pfx_btrfs_ioctl+0x10/0x10
[  272.952306][ T8628]  __se_sys_ioctl+0xf9/0x170
[  272.952318][ T8628]  do_syscall_64+0xfa/0x3b0
[  272.952334][ T8628]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.952346][ T8628]  ? clear_bhb_loop+0x60/0xb0
[  272.952358][ T8628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.952371][ T8628] RIP: 0033:0x7f000a18ebe9
[  272.952384][ T8628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.952395][ T8628] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  272.952408][ T8628] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  272.952417][ T8628] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  272.952425][ T8628] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  272.952433][ T8628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  272.952441][ T8628] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  272.952452][ T8628]  </TASK>
[  273.206216][ T8611] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  273.221138][ T8611] BTRFS info (device loop0): balance: ended with status: 0
[  273.233130][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  273.458838][ T8630] loop0: detected capacity change from 0 to 32768
[  273.471430][ T8630] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.174 (8630)
[  273.494067][ T8630] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  273.510681][ T8630] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  273.539881][ T8630] BTRFS info (device loop0): rebuilding free space tree
[  273.551129][ T8630] BTRFS info (device loop0): disabling free space tree
[  273.554321][ T8630] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  273.569478][ T8630] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  273.592828][ T8630] BTRFS info (device loop0): balance: start -d -m
[  273.597542][ T8630] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  273.616502][ T8630] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  273.634728][ T8630] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  273.642090][ T8647] FAULT_INJECTION: forcing a failure.
[  273.642090][ T8647] name failslab, interval 1, probability 0, space 0, times 0
[  273.648374][ T8647] CPU: 0 UID: 0 PID: 8647 Comm: syz.0.174 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  273.648388][ T8647] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.648394][ T8647] Call Trace:
[  273.648397][ T8647]  <TASK>
[  273.648401][ T8647]  dump_stack_lvl+0x189/0x250
[  273.648416][ T8647]  ? __pfx____ratelimit+0x10/0x10
[  273.648427][ T8647]  ? __pfx_dump_stack_lvl+0x10/0x10
[  273.648435][ T8647]  ? __pfx__printk+0x10/0x10
[  273.648446][ T8647]  ? fs_reclaim_acquire+0x7d/0x100
[  273.648457][ T8647]  ? rcu_is_watching+0x15/0xb0
[  273.648465][ T8647]  ? __pfx___might_resched+0x10/0x10
[  273.648473][ T8647]  ? lock_acquire+0x5f/0x360
[  273.648484][ T8647]  should_fail_ex+0x414/0x560
[  273.648494][ T8647]  should_failslab+0xa8/0x100
[  273.648504][ T8647]  __kmalloc_cache_noprof+0x70/0x3d0
[  273.648517][ T8647]  ? btrfs_ref_tree_mod+0x24e/0x1ab0
[  273.648538][ T8647]  btrfs_ref_tree_mod+0x24e/0x1ab0
[  273.648554][ T8647]  btrfs_inc_extent_ref+0x12d/0x1f0
[  273.648572][ T8647]  __btrfs_mod_ref+0x498/0x8e0
[  273.648589][ T8647]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  273.648605][ T8647]  ? __write_extent_buffer+0x200/0x6c0
[  273.648616][ T8647]  ? copy_extent_buffer_full+0x36e/0x530
[  273.648635][ T8647]  ? __write_extent_buffer+0x277/0x6c0
[  273.648643][ T8647]  ? btrfs_copy_root+0x7e5/0x1090
[  273.648652][ T8647]  btrfs_copy_root+0x918/0x1090
[  273.648661][ T8647]  ? __pfx_btrfs_copy_root+0x10/0x10
[  273.648669][ T8647]  ? __kasan_kmalloc+0x93/0xb0
[  273.648682][ T8647]  ? create_reloc_root+0xee/0xc20
[  273.648700][ T8647]  create_reloc_root+0x215/0xc20
[  273.648718][ T8647]  ? __pfx_create_reloc_root+0x10/0x10
[  273.648731][ T8647]  ? trace_contention_end+0x39/0x120
[  273.648743][ T8647]  ? __mutex_lock+0x335/0x1350
[  273.648763][ T8647]  btrfs_init_reloc_root+0x2ec/0x4c0
[  273.648782][ T8647]  record_root_in_trans+0x2c8/0x370
[  273.648796][ T8647]  btrfs_record_root_in_trans+0x15c/0x180
[  273.648810][ T8647]  start_transaction+0x3a4/0x1620
[  273.648827][ T8647]  create_snapshot+0x52b/0xba0
[  273.648842][ T8647]  btrfs_mksubvol+0x545/0x6d0
[  273.648858][ T8647]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  273.648874][ T8647]  ? __fget_files+0x3a0/0x420
[  273.648890][ T8647]  btrfs_mksnapshot+0xab/0xf0
[  273.648907][ T8647]  __btrfs_ioctl_snap_create+0x520/0x730
[  273.648925][ T8647]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  273.648941][ T8647]  ? rep_movs_alternative+0x4a/0x90
[  273.648980][ T8647]  ? _copy_from_user+0x94/0xb0
[  273.648994][ T8647]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  273.649011][ T8647]  ? __fget_files+0x3a0/0x420
[  273.649029][ T8647]  btrfs_ioctl+0xa62/0xd00
[  273.649043][ T8647]  ? __pfx_btrfs_ioctl+0x10/0x10
[  273.649058][ T8647]  __se_sys_ioctl+0xf9/0x170
[  273.649072][ T8647]  do_syscall_64+0xfa/0x3b0
[  273.649089][ T8647]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.649103][ T8647]  ? clear_bhb_loop+0x60/0xb0
[  273.649116][ T8647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.649129][ T8647] RIP: 0033:0x7f000a18ebe9
[  273.649142][ T8647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.649156][ T8647] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  273.649172][ T8647] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  273.649181][ T8647] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  273.649188][ T8647] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  273.649197][ T8647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.649205][ T8647] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  273.649218][ T8647]  </TASK>
[  273.846820][ T8630] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  273.858569][ T8630] BTRFS info (device loop0): balance: ended with status: 0
[  273.872810][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  274.101830][ T8650] loop0: detected capacity change from 0 to 32768
[  274.109295][ T8650] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.175 (8650)
[  274.128745][ T8650] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  274.139645][ T8650] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  274.173986][ T8650] BTRFS info (device loop0): rebuilding free space tree
[  274.190397][ T8650] BTRFS info (device loop0): disabling free space tree
[  274.193604][ T8650] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  274.197747][ T8650] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  274.230260][ T8650] BTRFS info (device loop0): balance: start -d -m
[  274.235490][ T8650] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  274.263831][ T8650] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  274.280679][ T8667] FAULT_INJECTION: forcing a failure.
[  274.280679][ T8667] name failslab, interval 1, probability 0, space 0, times 0
[  274.286407][ T8667] CPU: 0 UID: 0 PID: 8667 Comm: syz.0.175 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  274.286427][ T8667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.286435][ T8667] Call Trace:
[  274.286443][ T8667]  <TASK>
[  274.286449][ T8667]  dump_stack_lvl+0x189/0x250
[  274.286468][ T8667]  ? __pfx____ratelimit+0x10/0x10
[  274.286484][ T8667]  ? __pfx_dump_stack_lvl+0x10/0x10
[  274.286504][ T8667]  ? __pfx__printk+0x10/0x10
[  274.286520][ T8667]  ? fs_reclaim_acquire+0x7d/0x100
[  274.286537][ T8667]  ? rcu_is_watching+0x15/0xb0
[  274.286549][ T8667]  ? __pfx___might_resched+0x10/0x10
[  274.286561][ T8667]  ? lock_acquire+0x5f/0x360
[  274.286579][ T8667]  should_fail_ex+0x414/0x560
[  274.286594][ T8667]  should_failslab+0xa8/0x100
[  274.286609][ T8667]  __kmalloc_cache_noprof+0x70/0x3d0
[  274.286624][ T8667]  ? btrfs_ref_tree_mod+0x24e/0x1ab0
[  274.286639][ T8667]  btrfs_ref_tree_mod+0x24e/0x1ab0
[  274.286658][ T8667]  btrfs_inc_extent_ref+0x12d/0x1f0
[  274.286677][ T8667]  __btrfs_mod_ref+0x498/0x8e0
[  274.286696][ T8667]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  274.286713][ T8667]  ? __write_extent_buffer+0x200/0x6c0
[  274.286724][ T8667]  ? copy_extent_buffer_full+0x36e/0x530
[  274.286748][ T8667]  ? __write_extent_buffer+0x277/0x6c0
[  274.286759][ T8667]  ? btrfs_copy_root+0x7e5/0x1090
[  274.286773][ T8667]  btrfs_copy_root+0x918/0x1090
[  274.286788][ T8667]  ? __pfx_btrfs_copy_root+0x10/0x10
[  274.286801][ T8667]  ? __kasan_kmalloc+0x93/0xb0
[  274.286815][ T8667]  ? create_reloc_root+0xee/0xc20
[  274.286834][ T8667]  create_reloc_root+0x215/0xc20
[  274.286852][ T8667]  ? __pfx_create_reloc_root+0x10/0x10
[  274.286868][ T8667]  ? trace_contention_end+0x39/0x120
[  274.286881][ T8667]  ? __mutex_lock+0x335/0x1350
[  274.286902][ T8667]  btrfs_init_reloc_root+0x2ec/0x4c0
[  274.286921][ T8667]  record_root_in_trans+0x2c8/0x370
[  274.286937][ T8667]  btrfs_record_root_in_trans+0x15c/0x180
[  274.286951][ T8667]  start_transaction+0x3a4/0x1620
[  274.286969][ T8667]  create_snapshot+0x52b/0xba0
[  274.286988][ T8667]  btrfs_mksubvol+0x545/0x6d0
[  274.287005][ T8667]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  274.287022][ T8667]  ? __fget_files+0x3a0/0x420
[  274.287039][ T8667]  btrfs_mksnapshot+0xab/0xf0
[  274.287056][ T8667]  __btrfs_ioctl_snap_create+0x520/0x730
[  274.287074][ T8667]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  274.287091][ T8667]  ? rep_movs_alternative+0x4a/0x90
[  274.287104][ T8667]  ? _copy_from_user+0x94/0xb0
[  274.287116][ T8667]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  274.287131][ T8667]  ? __fget_files+0x3a0/0x420
[  274.287147][ T8667]  btrfs_ioctl+0xa62/0xd00
[  274.287160][ T8667]  ? __pfx_btrfs_ioctl+0x10/0x10
[  274.287173][ T8667]  __se_sys_ioctl+0xf9/0x170
[  274.287185][ T8667]  do_syscall_64+0xfa/0x3b0
[  274.287203][ T8667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.287214][ T8667]  ? clear_bhb_loop+0x60/0xb0
[  274.287227][ T8667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.287240][ T8667] RIP: 0033:0x7f000a18ebe9
[  274.287251][ T8667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.287262][ T8667] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.287277][ T8667] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  274.287287][ T8667] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  274.287295][ T8667] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  274.287303][ T8667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  274.287311][ T8667] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  274.287325][ T8667]  </TASK>
[  274.483343][ T8650] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  274.500274][ T8650] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  274.513677][ T8650] BTRFS info (device loop0): balance: ended with status: 0
[  274.526012][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  274.733509][ T8670] loop0: detected capacity change from 0 to 32768
[  274.740739][ T8670] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.176 (8670)
[  274.761018][ T8670] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  274.775030][ T8670] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  274.803704][ T8670] BTRFS info (device loop0): rebuilding free space tree
[  274.818266][ T8670] BTRFS info (device loop0): disabling free space tree
[  274.821937][ T8670] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  274.825991][ T8670] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  274.855024][ T8670] BTRFS info (device loop0): balance: start -d -m
[  274.869664][ T8670] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  274.884884][ T8670] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  274.904412][ T8687] FAULT_INJECTION: forcing a failure.
[  274.904412][ T8687] name failslab, interval 1, probability 0, space 0, times 0
[  274.919876][ T8687] CPU: 0 UID: 0 PID: 8687 Comm: syz.0.176 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  274.919893][ T8687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.919900][ T8687] Call Trace:
[  274.919905][ T8687]  <TASK>
[  274.919910][ T8687]  dump_stack_lvl+0x189/0x250
[  274.919931][ T8687]  ? __pfx____ratelimit+0x10/0x10
[  274.919945][ T8687]  ? __pfx_dump_stack_lvl+0x10/0x10
[  274.919958][ T8687]  ? __pfx__printk+0x10/0x10
[  274.919973][ T8687]  ? btrfs_search_slot+0x264e/0x2b90
[  274.919988][ T8687]  ? __pfx___might_resched+0x10/0x10
[  274.919999][ T8687]  ? lock_acquire+0x5f/0x360
[  274.920015][ T8687]  should_fail_ex+0x414/0x560
[  274.920030][ T8687]  should_failslab+0xa8/0x100
[  274.920044][ T8687]  kmem_cache_alloc_noprof+0x73/0x3c0
[  274.920058][ T8687]  ? alloc_extent_state+0x22/0x2f0
[  274.920075][ T8687]  alloc_extent_state+0x22/0x2f0
[  274.920089][ T8687]  set_extent_bit+0x270/0x21a0
[  274.920105][ T8687]  ? block_group_cache_tree_search+0x37/0x290
[  274.920117][ T8687]  ? rcu_is_watching+0x15/0xb0
[  274.920129][ T8687]  ? __pfx_set_extent_bit+0x10/0x10
[  274.920143][ T8687]  ? rcu_is_watching+0x15/0xb0
[  274.920154][ T8687]  btrfs_set_extent_bit+0x38/0x50
[  274.920168][ T8687]  btrfs_update_block_group+0x6e5/0xad0
[  274.920184][ T8687]  __btrfs_free_extent+0x16a0/0x4250
[  274.920199][ T8687]  ? __pfx___btrfs_free_extent+0x10/0x10
[  274.920214][ T8687]  __btrfs_run_delayed_refs+0xe7f/0x4130
[  274.920239][ T8687]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  274.920251][ T8687]  ? rcu_is_watching+0x15/0xb0
[  274.920261][ T8687]  ? trace_sched_exit_tp+0x36/0x110
[  274.920274][ T8687]  ? __schedule+0x17ae/0x4cc0
[  274.920288][ T8687]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  274.920303][ T8687]  ? do_raw_spin_lock+0x121/0x290
[  274.920316][ T8687]  ? do_raw_spin_lock+0x121/0x290
[  274.920329][ T8687]  ? btrfs_commit_transaction+0x161/0x3950
[  274.920339][ T8687]  ? rcu_is_watching+0x15/0xb0
[  274.920349][ T8687]  ? lock_acquire+0x5f/0x360
[  274.920363][ T8687]  ? rcu_is_watching+0x15/0xb0
[  274.920374][ T8687]  btrfs_run_delayed_refs+0xe6/0x3b0
[  274.920389][ T8687]  btrfs_commit_transaction+0x269/0x3950
[  274.920402][ T8687]  ? rcu_is_watching+0x15/0xb0
[  274.920422][ T8687]  ? btrfs_commit_transaction+0x161/0x3950
[  274.920436][ T8687]  ? rcu_is_watching+0x15/0xb0
[  274.920451][ T8687]  ? lock_release+0x4b/0x3e0
[  274.920462][ T8687]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  274.920483][ T8687]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  274.920497][ T8687]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  274.920513][ T8687]  ? record_root_in_trans+0x113/0x370
[  274.920528][ T8687]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  274.920543][ T8687]  ? start_transaction+0x439/0x1620
[  274.920555][ T8687]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  274.920571][ T8687]  ? btrfs_record_root_in_trans+0x124/0x180
[  274.920584][ T8687]  create_snapshot+0x6bc/0xba0
[  274.920602][ T8687]  btrfs_mksubvol+0x545/0x6d0
[  274.920619][ T8687]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  274.920634][ T8687]  ? __fget_files+0x3a0/0x420
[  274.920648][ T8687]  btrfs_mksnapshot+0xab/0xf0
[  274.920663][ T8687]  __btrfs_ioctl_snap_create+0x520/0x730
[  274.920680][ T8687]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  274.920696][ T8687]  ? rep_movs_alternative+0x4a/0x90
[  274.920708][ T8687]  ? _copy_from_user+0x94/0xb0
[  274.920719][ T8687]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  274.920732][ T8687]  ? __fget_files+0x3a0/0x420
[  274.920746][ T8687]  btrfs_ioctl+0xa62/0xd00
[  274.920758][ T8687]  ? __pfx_btrfs_ioctl+0x10/0x10
[  274.920769][ T8687]  __se_sys_ioctl+0xf9/0x170
[  274.920781][ T8687]  do_syscall_64+0xfa/0x3b0
[  274.920795][ T8687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.920806][ T8687]  ? clear_bhb_loop+0x60/0xb0
[  274.920819][ T8687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.920830][ T8687] RIP: 0033:0x7f000a18ebe9
[  274.920842][ T8687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.920852][ T8687] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.920865][ T8687] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  274.920873][ T8687] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  274.920880][ T8687] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  274.920889][ T8687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  274.920895][ T8687] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  274.920907][ T8687]  </TASK>
[  275.145093][ T8670] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  275.163072][ T8670] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  275.175401][ T8670] BTRFS info (device loop0): balance: ended with status: 0
[  275.186949][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
2025/08/18 16:24:53 executed programs: 162
[  275.410745][ T8689] loop0: detected capacity change from 0 to 32768
[  275.421367][ T8689] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.177 (8689)
[  275.445789][ T8689] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  275.460535][ T8689] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  275.482788][ T8689] BTRFS info (device loop0): rebuilding free space tree
[  275.496821][ T8689] BTRFS info (device loop0): disabling free space tree
[  275.505128][ T8689] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  275.515438][ T8689] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  275.537994][ T8689] BTRFS info (device loop0): balance: start -d -m
[  275.546785][ T8689] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  275.567675][ T8689] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  275.587917][ T8706] FAULT_INJECTION: forcing a failure.
[  275.587917][ T8706] name failslab, interval 1, probability 0, space 0, times 0
[  275.597759][ T8706] CPU: 0 UID: 0 PID: 8706 Comm: syz.0.177 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  275.597779][ T8706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  275.597787][ T8706] Call Trace:
[  275.597792][ T8706]  <TASK>
[  275.597797][ T8706]  dump_stack_lvl+0x189/0x250
[  275.597817][ T8706]  ? __pfx____ratelimit+0x10/0x10
[  275.597833][ T8706]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.597845][ T8706]  ? __pfx__printk+0x10/0x10
[  275.597861][ T8706]  ? fs_reclaim_acquire+0x7d/0x100
[  275.597911][ T8706]  ? rcu_is_watching+0x15/0xb0
[  275.597923][ T8706]  ? __pfx___might_resched+0x10/0x10
[  275.597933][ T8706]  ? lock_acquire+0x5f/0x360
[  275.597948][ T8706]  should_fail_ex+0x414/0x560
[  275.597962][ T8706]  should_failslab+0xa8/0x100
[  275.597976][ T8706]  __kmalloc_cache_noprof+0x70/0x3d0
[  275.597988][ T8706]  ? btrfs_ref_tree_mod+0x24e/0x1ab0
[  275.598002][ T8706]  btrfs_ref_tree_mod+0x24e/0x1ab0
[  275.598018][ T8706]  btrfs_inc_extent_ref+0x12d/0x1f0
[  275.598034][ T8706]  __btrfs_mod_ref+0x498/0x8e0
[  275.598051][ T8706]  ? __pfx___btrfs_mod_ref+0x10/0x10
[  275.598065][ T8706]  ? __write_extent_buffer+0x200/0x6c0
[  275.598076][ T8706]  ? copy_extent_buffer_full+0x36e/0x530
[  275.598093][ T8706]  ? __write_extent_buffer+0x277/0x6c0
[  275.598102][ T8706]  ? btrfs_copy_root+0x7e5/0x1090
[  275.598116][ T8706]  btrfs_copy_root+0x918/0x1090
[  275.598129][ T8706]  ? __pfx_btrfs_copy_root+0x10/0x10
[  275.598139][ T8706]  ? __kasan_kmalloc+0x93/0xb0
[  275.598153][ T8706]  ? create_reloc_root+0xee/0xc20
[  275.598170][ T8706]  create_reloc_root+0x215/0xc20
[  275.598187][ T8706]  ? __pfx_create_reloc_root+0x10/0x10
[  275.598202][ T8706]  ? trace_contention_end+0x39/0x120
[  275.598214][ T8706]  ? __mutex_lock+0x335/0x1350
[  275.598233][ T8706]  btrfs_init_reloc_root+0x2ec/0x4c0
[  275.598250][ T8706]  record_root_in_trans+0x2c8/0x370
[  275.598272][ T8706]  btrfs_record_root_in_trans+0x15c/0x180
[  275.598286][ T8706]  start_transaction+0x3a4/0x1620
[  275.598301][ T8706]  create_snapshot+0x52b/0xba0
[  275.598315][ T8706]  btrfs_mksubvol+0x545/0x6d0
[  275.598330][ T8706]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  275.598344][ T8706]  ? __fget_files+0x3a0/0x420
[  275.598359][ T8706]  btrfs_mksnapshot+0xab/0xf0
[  275.598375][ T8706]  __btrfs_ioctl_snap_create+0x520/0x730
[  275.598392][ T8706]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  275.598408][ T8706]  ? rep_movs_alternative+0x4a/0x90
[  275.598419][ T8706]  ? _copy_from_user+0x94/0xb0
[  275.598429][ T8706]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  275.598442][ T8706]  ? __fget_files+0x3a0/0x420
[  275.598456][ T8706]  btrfs_ioctl+0xa62/0xd00
[  275.598468][ T8706]  ? __pfx_btrfs_ioctl+0x10/0x10
[  275.598480][ T8706]  __se_sys_ioctl+0xf9/0x170
[  275.598491][ T8706]  do_syscall_64+0xfa/0x3b0
[  275.598506][ T8706]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.598516][ T8706]  ? clear_bhb_loop+0x60/0xb0
[  275.598529][ T8706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.598540][ T8706] RIP: 0033:0x7f000a18ebe9
[  275.598551][ T8706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.598562][ T8706] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  275.598576][ T8706] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  275.598585][ T8706] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  275.598592][ T8706] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  275.598599][ T8706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.598606][ T8706] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  275.598619][ T8706]  </TASK>
[  275.803169][ T8689] BTRFS info (device loop0): found 8 extents, stage: move data extents
[  275.817755][ T8689] BTRFS info (device loop0): found 1 extents, stage: update data pointers
[  275.828470][ T8689] BTRFS info (device loop0): balance: ended with status: 0
[  275.840554][ T5468] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  276.041830][ T8709] loop0: detected capacity change from 0 to 32768
[  276.052489][ T8709] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.178 (8709)
[  276.068569][ T8709] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  276.084040][ T8709] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  276.118489][ T8709] BTRFS info (device loop0): rebuilding free space tree
[  276.131215][ T8709] BTRFS info (device loop0): disabling free space tree
[  276.134868][ T8709] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  276.150221][ T8709] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  276.174687][ T8709] BTRFS info (device loop0): balance: start -d -m
[  276.190136][ T8709] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  276.200452][ T8709] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata
[  276.224549][ T8726] FAULT_INJECTION: forcing a failure.
[  276.224549][ T8726] name failslab, interval 1, probability 0, space 0, times 0
[  276.232359][ T8726] CPU: 0 UID: 0 PID: 8726 Comm: syz.0.178 Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  276.232379][ T8726] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.232387][ T8726] Call Trace:
[  276.232392][ T8726]  <TASK>
[  276.232397][ T8726]  dump_stack_lvl+0x189/0x250
[  276.232441][ T8726]  ? __pfx____ratelimit+0x10/0x10
[  276.232462][ T8726]  ? __pfx_dump_stack_lvl+0x10/0x10
[  276.232474][ T8726]  ? __pfx__printk+0x10/0x10
[  276.232489][ T8726]  ? __pfx___might_resched+0x10/0x10
[  276.232506][ T8726]  ? lock_acquire+0x5f/0x360
[  276.232519][ T8726]  should_fail_ex+0x414/0x560
[  276.232533][ T8726]  should_failslab+0xa8/0x100
[  276.232548][ T8726]  kmem_cache_alloc_noprof+0x73/0x3c0
[  276.232561][ T8726]  ? add_delayed_ref+0x139/0x1d80
[  276.232579][ T8726]  add_delayed_ref+0x139/0x1d80
[  276.232593][ T8726]  ? do_raw_spin_unlock+0x4d/0x240
[  276.232613][ T8726]  btrfs_alloc_tree_block+0xd42/0x1290
[  276.232621][ T8726]  ? rcu_is_watching+0x15/0xb0
[  276.232635][ T8726]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  276.232646][ T8726]  ? btrfs_tree_lock_nested+0x31/0x230
[  276.232654][ T8726]  ? rcu_is_watching+0x15/0xb0
[  276.232667][ T8726]  ? lock_acquire+0x5f/0x360
[  276.232680][ T8726]  ? rcu_is_watching+0x15/0xb0
[  276.232690][ T8726]  ? read_extent_buffer+0x120/0x5e0
[  276.232709][ T8726]  btrfs_copy_root+0x4a2/0x1090
[  276.232725][ T8726]  ? __pfx_btrfs_copy_root+0x10/0x10
[  276.232735][ T8726]  ? btrfs_cow_block+0x2e0/0x9a0
[  276.232751][ T8726]  create_pending_snapshot+0xa76/0x3280
[  276.232772][ T8726]  ? __pfx_create_pending_snapshot+0x10/0x10
[  276.232785][ T8726]  ? rcu_is_watching+0x15/0xb0
[  276.232798][ T8726]  ? trace_contention_end+0x39/0x120
[  276.232810][ T8726]  ? __mutex_lock+0x335/0x1350
[  276.232824][ T8726]  ? rcu_is_watching+0x15/0xb0
[  276.232835][ T8726]  ? rcu_is_watching+0x15/0xb0
[  276.232845][ T8726]  ? btrfs_commit_transaction+0xedd/0x3950
[  276.232859][ T8726]  ? btrfs_commit_transaction+0x161/0x3950
[  276.232872][ T8726]  ? rcu_is_watching+0x15/0xb0
[  276.232883][ T8726]  create_pending_snapshots+0x17c/0x1c0
[  276.232898][ T8726]  btrfs_commit_transaction+0xeea/0x3950
[  276.232911][ T8726]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.232923][ T8726]  ? btrfs_commit_transaction+0x161/0x3950
[  276.232941][ T8726]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  276.232954][ T8726]  ? lock_acquire+0x5f/0x360
[  276.232970][ T8726]  ? do_raw_spin_unlock+0x4d/0x240
[  276.232982][ T8726]  ? join_transaction+0x41b/0xd70
[  276.232998][ T8726]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  276.233014][ T8726]  ? start_transaction+0x439/0x1620
[  276.233027][ T8726]  ? __pfx_autoremove_wake_function+0x10/0x10
[  276.233040][ T8726]  ? btrfs_record_root_in_trans+0x124/0x180
[  276.233053][ T8726]  create_snapshot+0x6bc/0xba0
[  276.233071][ T8726]  btrfs_mksubvol+0x545/0x6d0
[  276.233087][ T8726]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  276.233102][ T8726]  ? __fget_files+0x3a0/0x420
[  276.233117][ T8726]  btrfs_mksnapshot+0xab/0xf0
[  276.233132][ T8726]  __btrfs_ioctl_snap_create+0x520/0x730
[  276.233148][ T8726]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  276.233163][ T8726]  ? rep_movs_alternative+0x4a/0x90
[  276.233175][ T8726]  ? _copy_from_user+0x94/0xb0
[  276.233186][ T8726]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  276.233198][ T8726]  ? __fget_files+0x3a0/0x420
[  276.233212][ T8726]  btrfs_ioctl+0xa62/0xd00
[  276.233231][ T8726]  ? __pfx_btrfs_ioctl+0x10/0x10
[  276.233242][ T8726]  __se_sys_ioctl+0xf9/0x170
[  276.233253][ T8726]  do_syscall_64+0xfa/0x3b0
[  276.233268][ T8726]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.233278][ T8726]  ? clear_bhb_loop+0x60/0xb0
[  276.233290][ T8726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.233300][ T8726] RIP: 0033:0x7f000a18ebe9
[  276.233317][ T8726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.233327][ T8726] RSP: 002b:00007f00097fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  276.233340][ T8726] RAX: ffffffffffffffda RBX: 00007f000a3b6090 RCX: 00007f000a18ebe9
[  276.233348][ T8726] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  276.233355][ T8726] RBP: 00007f00097fe090 R08: 0000000000000000 R09: 0000000000000000
[  276.233363][ T8726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  276.233370][ T8726] R13: 00007f000a3b6128 R14: 00007f000a3b6090 R15: 00007ffd4c2db208
[  276.233382][ T8726]  </TASK>
[  276.233420][ T8726] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  276.440309][ T8726] BTRFS: error (device loop0 state A) in create_pending_snapshot:1804: errno=-12 Out of memory
[  276.445137][ T8726] BTRFS info (device loop0 state EA): forced readonly
[  276.448840][ T8726] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  276.454641][ T8726] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  276.460574][ T8709] BTRFS info (device loop0 state EA): balance: ended with status: -5
[  276.470374][ T5468] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  276.479332][ T5468] ------------[ cut here ]------------
[  276.481736][ T5468] WARNING: CPU: 0 PID: 5468 at fs/btrfs/space-info.h:265 btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  276.486842][ T5468] Modules linked in:
[  276.488781][ T5468] CPU: 0 UID: 0 PID: 5468 Comm: syz-executor Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  276.495342][ T5468] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.500141][ T5468] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  276.503599][ T5468] Code: 00 00 74 08 4c 89 ff e8 34 bf 38 fe 4d 8b 27 4c 89 e7 48 8b 6c 24 18 48 89 ee e8 a1 d9 d3 fd 49 39 ec 73 1c e8 37 d7 d3 fd 90 <0f> 0b 90 31 db 43 80 7c 35 00 00 0f 85 2e ff ff ff e9 31 ff ff ff
[  276.512816][ T5468] RSP: 0018:ffffc9000ca57a10 EFLAGS: 00010293
[  276.515231][ T5468] RAX: ffffffff83ebe2f9 RBX: fffffffffff12000 RCX: ffff888034e80000
[  276.519150][ T5468] RDX: 0000000000000000 RSI: 00000000000ee000 RDI: 00000000000ed000
[  276.523143][ T5468] RBP: 00000000000ee000 R08: ffffffff8fa3a237 R09: 1ffffffff1f47446
[  276.526795][ T5468] R10: dffffc0000000000 R11: fffffbfff1f47447 R12: 00000000000ed000
[  276.530110][ T5468] R13: 1ffff1100ae32a10 R14: dffffc0000000000 R15: ffff888057195080
[  276.533488][ T5468] FS:  00005555555fd500(0000) GS:ffff88808d210000(0000) knlGS:0000000000000000
[  276.537260][ T5468] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  276.540920][ T5468] CR2: 00007ffd4c2d9ce8 CR3: 0000000044425000 CR4: 0000000000352ef0
[  276.544927][ T5468] Call Trace:
[  276.546504][ T5468]  <TASK>
[  276.547840][ T5468]  btrfs_block_rsv_release+0x4b3/0x5e0
[  276.550289][ T5468]  ? btrfs_free_block_groups+0xb6b/0xf40
[  276.552664][ T5468]  btrfs_release_global_block_rsv+0x33/0x270
[  276.555402][ T5468]  btrfs_free_block_groups+0xc2c/0xf40
[  276.557800][ T5468]  close_ctree+0x7bc/0x1380
[  276.560030][ T5468]  ? do_raw_spin_unlock+0x4d/0x240
[  276.562333][ T5468]  ? __pfx__btrfs_printk+0x10/0x10
[  276.564415][ T5468]  ? hook_sb_delete+0xa95/0xbd0
[  276.566774][ T5468]  ? __pfx_close_ctree+0x10/0x10
[  276.570155][ T5468]  ? btrfs_put_super+0x48/0x1b0
[  276.572389][ T5468]  ? rcu_is_watching+0x15/0xb0
[  276.574678][ T5468]  ? rcu_is_watching+0x15/0xb0
[  276.577092][ T5468]  ? lock_release+0x4b/0x3e0
[  276.579603][ T5468]  ? btrfs_put_super+0x48/0x1b0
[  276.581724][ T5468]  ? __pfx_btrfs_put_super+0x10/0x10
[  276.584022][ T5468]  generic_shutdown_super+0x132/0x2c0
[  276.586613][ T5468]  kill_anon_super+0x3b/0x70
[  276.588805][ T5468]  btrfs_kill_super+0x41/0x50
[  276.591031][ T5468]  deactivate_locked_super+0xbc/0x130
[  276.593166][ T5468]  cleanup_mnt+0x425/0x4c0
[  276.595030][ T5468]  task_work_run+0x1d4/0x260
[  276.596817][ T5468]  ? __pfx_task_work_run+0x10/0x10
[  276.599122][ T5468]  ? __x64_sys_umount+0x122/0x160
[  276.601815][ T5468]  ? __pfx___x64_sys_umount+0x10/0x10
[  276.604990][ T5468]  ? rcu_is_watching+0x15/0xb0
[  276.607712][ T5468]  exit_to_user_mode_loop+0xec/0x110
[  276.610324][ T5468]  do_syscall_64+0x2bd/0x3b0
[  276.612686][ T5468]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.615706][ T5468]  ? clear_bhb_loop+0x60/0xb0
[  276.617848][ T5468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.620645][ T5468] RIP: 0033:0x7f000a18ff17
[  276.622375][ T5468] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  276.630747][ T5468] RSP: 002b:00007ffd4c2da498 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  276.635235][ T5468] RAX: 0000000000000000 RBX: 00007f000a211c05 RCX: 00007f000a18ff17
[  276.638711][ T5468] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd4c2da550
[  276.641985][ T5468] RBP: 00007ffd4c2da550 R08: 0000000000000000 R09: 0000000000000000
[  276.645637][ T5468] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd4c2db5e0
[  276.649637][ T5468] R13: 00007f000a211c05 R14: 0000000000043733 R15: 00007ffd4c2db620
[  276.653461][ T5468]  </TASK>
[  276.654831][ T5468] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  276.657603][ T5468] CPU: 0 UID: 0 PID: 5468 Comm: syz-executor Not tainted 6.17.0-rc2-syzkaller #0 PREEMPT(full) 
[  276.661547][ T5468] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.666078][ T5468] Call Trace:
[  276.667517][ T5468]  <TASK>
[  276.668819][ T5468]  dump_stack_lvl+0x99/0x250
[  276.670947][ T5468]  ? __asan_memcpy+0x40/0x70
[  276.673090][ T5468]  ? __pfx_dump_stack_lvl+0x10/0x10
[  276.675743][ T5468]  ? __pfx__printk+0x10/0x10
[  276.678129][ T5468]  vpanic+0x281/0x750
[  276.679871][ T5468]  ? __pfx__printk+0x10/0x10
[  276.681825][ T5468]  ? __pfx_vpanic+0x10/0x10
[  276.684083][ T5468]  ? is_bpf_text_address+0x292/0x2b0
[  276.686378][ T5468]  panic+0xb9/0xc0
[  276.688039][ T5468]  ? __pfx_panic+0x10/0x10
[  276.690079][ T5468]  __warn+0x31b/0x4b0
[  276.691810][ T5468]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  276.695077][ T5468]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  276.698434][ T5468]  report_bug+0x2be/0x4f0
[  276.700387][ T5468]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  276.703451][ T5468]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  276.706280][ T5468]  ? btrfs_space_info_update_bytes_may_use+0x35c/0x640
[  276.709242][ T5468]  handle_bug+0x84/0x160
[  276.711021][ T5468]  exc_invalid_op+0x1a/0x50
[  276.713215][ T5468]  asm_exc_invalid_op+0x1a/0x20
[  276.719218][ T5468] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  276.722660][ T5468] Code: 00 00 74 08 4c 89 ff e8 34 bf 38 fe 4d 8b 27 4c 89 e7 48 8b 6c 24 18 48 89 ee e8 a1 d9 d3 fd 49 39 ec 73 1c e8 37 d7 d3 fd 90 <0f> 0b 90 31 db 43 80 7c 35 00 00 0f 85 2e ff ff ff e9 31 ff ff ff
[  276.731065][ T5468] RSP: 0018:ffffc9000ca57a10 EFLAGS: 00010293
[  276.734059][ T5468] RAX: ffffffff83ebe2f9 RBX: fffffffffff12000 RCX: ffff888034e80000
[  276.738647][ T5468] RDX: 0000000000000000 RSI: 00000000000ee000 RDI: 00000000000ed000
[  276.741796][ T5468] RBP: 00000000000ee000 R08: ffffffff8fa3a237 R09: 1ffffffff1f47446
[  276.744835][ T5468] R10: dffffc0000000000 R11: fffffbfff1f47447 R12: 00000000000ed000
[  276.748253][ T5468] R13: 1ffff1100ae32a10 R14: dffffc0000000000 R15: ffff888057195080
[  276.751307][ T5468]  ? btrfs_space_info_update_bytes_may_use+0x359/0x640
[  276.754104][ T5468]  btrfs_block_rsv_release+0x4b3/0x5e0
[  276.756438][ T5468]  ? btrfs_free_block_groups+0xb6b/0xf40
[  276.758637][ T5468]  btrfs_release_global_block_rsv+0x33/0x270
[  276.761317][ T5468]  btrfs_free_block_groups+0xc2c/0xf40
[  276.763919][ T5468]  close_ctree+0x7bc/0x1380
[  276.765749][ T5468]  ? do_raw_spin_unlock+0x4d/0x240
[  276.767965][ T5468]  ? __pfx__btrfs_printk+0x10/0x10
[  276.769855][ T5468]  ? hook_sb_delete+0xa95/0xbd0
[  276.771932][ T5468]  ? __pfx_close_ctree+0x10/0x10
[  276.773944][ T5468]  ? btrfs_put_super+0x48/0x1b0
[  276.776034][ T5468]  ? rcu_is_watching+0x15/0xb0
[  276.778442][ T5468]  ? rcu_is_watching+0x15/0xb0
[  276.780663][ T5468]  ? lock_release+0x4b/0x3e0
[  276.782610][ T5468]  ? btrfs_put_super+0x48/0x1b0
[  276.784703][ T5468]  ? __pfx_btrfs_put_super+0x10/0x10
[  276.786909][ T5468]  generic_shutdown_super+0x132/0x2c0
[  276.789081][ T5468]  kill_anon_super+0x3b/0x70
[  276.791101][ T5468]  btrfs_kill_super+0x41/0x50
[  276.793242][ T5468]  deactivate_locked_super+0xbc/0x130
[  276.796358][ T5468]  cleanup_mnt+0x425/0x4c0
[  276.798919][ T5468]  task_work_run+0x1d4/0x260
[  276.800894][ T5468]  ? __pfx_task_work_run+0x10/0x10
[  276.803042][ T5468]  ? __x64_sys_umount+0x122/0x160
[  276.805388][ T5468]  ? __pfx___x64_sys_umount+0x10/0x10
[  276.807784][ T5468]  ? rcu_is_watching+0x15/0xb0
[  276.809956][ T5468]  exit_to_user_mode_loop+0xec/0x110
[  276.812458][ T5468]  do_syscall_64+0x2bd/0x3b0
[  276.814807][ T5468]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.817553][ T5468]  ? clear_bhb_loop+0x60/0xb0
[  276.819528][ T5468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.822017][ T5468] RIP: 0033:0x7f000a18ff17
[  276.823952][ T5468] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  276.832421][ T5468] RSP: 002b:00007ffd4c2da498 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  276.836437][ T5468] RAX: 0000000000000000 RBX: 00007f000a211c05 RCX: 00007f000a18ff17
[  276.839913][ T5468] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd4c2da550
[  276.843100][ T5468] RBP: 00007ffd4c2da550 R08: 0000000000000000 R09: 0000000000000000
[  276.846589][ T5468] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd4c2db5e0
[  276.849803][ T5468] R13: 00007f000a211c05 R14: 0000000000043733 R15: 00007ffd4c2db620
[  276.852990][ T5468]  </TASK>
[  276.854894][ T5468] Kernel Offset: disabled
[  276.856858][ T5468] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:24:55  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000030 RBX=0000000000000030 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc9000ca571b0
R8 =ffff888033dc0237 R9 =1ffff110067b8046 R10=dffffc0000000000 R11=ffffffff85509cc0
R12=dffffc0000000000 R13=ffffffff99b058dd R14=ffffffff99dfa7e0 R15=0000000000000000
RIP=ffffffff85509d3c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555555fd500 ffffffff 00c00000
GS =0000 ffff88808d210000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffd4c2d9ce8 CR3=0000000044425000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000020081 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e1e17503f9a66a8 5ec6af16c9b24ed4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 324cb1a912dec545 20e771a4e4f19eaf
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ef3928e1e884c1f3 c0727eb6151997f7
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e05f538070c93b76 b30adade171a8990
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000007c00
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000b600000000 18ed708d00003e6e
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000b6 00000000000000b6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000b600005a6f 18e712c300012eea
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 18f389b800007255 0000000018df8523
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0e184d1c3f140590 1a1900fb51252429
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4db0fc60afd31838 6fdf069ed62305a7
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000