Warning: Permanently added '[localhost]:26537' (ED25519) to the list of known hosts.
2025/08/02 23:26:23 ignoring optional flag "sandboxArg"="0"
2025/08/02 23:26:25 parsed 1 programs
syzkaller login: [   90.529532][ T5352] cgroup: Unknown subsys name 'net'
[   90.601009][ T5352] cgroup: Unknown subsys name 'cpuset'
[   90.608909][ T5352] cgroup: Unknown subsys name 'rlimit'
[   91.838995][   T55] cfg80211: failed to load regulatory.db
[   92.363194][ T5352] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   96.282353][ T5366] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   96.988098][ T1086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.991735][ T1086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.030617][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.035418][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.107663][   T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   99.112356][   T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   99.117078][   T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   99.121208][   T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   99.125055][   T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   99.767115][ T5419] chnl_net:caif_netlink_parms(): no params data found
[   99.835303][ T5419] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.839207][ T5419] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.842354][ T5419] bridge_slave_0: entered allmulticast mode
[   99.846388][ T5419] bridge_slave_0: entered promiscuous mode
[   99.852230][ T5419] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.856559][ T5419] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.859640][ T5419] bridge_slave_1: entered allmulticast mode
[   99.864140][ T5419] bridge_slave_1: entered promiscuous mode
[   99.892160][ T5419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.899934][ T5419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.925097][ T5419] team0: Port device team_slave_0 added
[   99.929083][ T5419] team0: Port device team_slave_1 added
[   99.951634][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.955639][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.968688][ T5419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.976411][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.979348][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.991110][ T5419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.034483][ T5419] hsr_slave_0: entered promiscuous mode
[  100.038017][ T5419] hsr_slave_1: entered promiscuous mode
[  100.202116][ T5419] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  100.212052][ T5419] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  100.220479][ T5419] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  100.228106][ T5419] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  100.336091][ T5419] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.357059][ T5419] 8021q: adding VLAN 0 to HW filter on device team0
[  100.369215][ T1086] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.373180][ T1086] bridge0: port 1(bridge_slave_0) entered forwarding state
[  100.389772][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.393093][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  100.589268][ T5419] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.631520][ T5419] veth0_vlan: entered promiscuous mode
[  100.642170][ T5419] veth1_vlan: entered promiscuous mode
[  100.676239][ T5419] veth0_macvtap: entered promiscuous mode
[  100.683553][ T5419] veth1_macvtap: entered promiscuous mode
[  100.701929][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.716065][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.728665][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.750453][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.758307][ T3091] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.762289][ T3091] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.879520][ T5419] syz-executor (5419) used greatest stack depth: 20152 bytes left
[  100.919287][ T1086] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.971501][ T1086] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.003768][ T1086] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.044822][ T1086] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/08/02 23:26:39 executed programs: 0
[  102.587685][ T4706] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.592226][ T4706] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.597358][ T4706] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.601615][ T4706] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.606909][ T4706] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  102.797506][ T5461] chnl_net:caif_netlink_parms(): no params data found
[  102.870526][ T5461] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.876561][ T5461] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.879953][ T5461] bridge_slave_0: entered allmulticast mode
[  102.885278][ T5461] bridge_slave_0: entered promiscuous mode
[  102.890995][ T5461] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.895504][ T5461] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.899037][ T5461] bridge_slave_1: entered allmulticast mode
[  102.906081][ T5461] bridge_slave_1: entered promiscuous mode
[  102.934472][ T5461] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  102.941498][ T5461] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  102.973902][ T5461] team0: Port device team_slave_0 added
[  102.979730][ T5461] team0: Port device team_slave_1 added
[  103.005096][ T5461] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.008039][ T5461] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.019410][ T5461] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.027214][ T5461] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.030464][ T5461] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.041838][ T5461] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.079017][ T5461] hsr_slave_0: entered promiscuous mode
[  103.084655][ T5461] hsr_slave_1: entered promiscuous mode
[  103.087841][ T5461] debugfs: 'hsr0' already exists in 'hsr'
[  103.090239][ T5461] Cannot create hsr debugfs directory
[  103.585503][ T1086] bridge_slave_1: left allmulticast mode
[  103.588000][ T1086] bridge_slave_1: left promiscuous mode
[  103.592008][ T1086] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.611334][ T1086] bridge_slave_0: left allmulticast mode
[  103.624184][ T1086] bridge_slave_0: left promiscuous mode
[  103.627246][ T1086] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.062971][ T1086] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  104.069806][ T1086] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  104.077592][ T1086] bond0 (unregistering): Released all slaves
[  104.190035][ T1086] hsr_slave_0: left promiscuous mode
[  104.197301][ T1086] hsr_slave_1: left promiscuous mode
[  104.200304][ T1086] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.204604][ T1086] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.208596][ T1086] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.211895][ T1086] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.226259][ T1086] veth1_macvtap: left promiscuous mode
[  104.228901][ T1086] veth0_macvtap: left promiscuous mode
[  104.231567][ T1086] veth1_vlan: left promiscuous mode
[  104.235508][ T1086] veth0_vlan: left promiscuous mode
[  104.544763][ T1086] team0 (unregistering): Port device team_slave_1 removed
[  104.566887][ T1086] team0 (unregistering): Port device team_slave_0 removed
[  104.636362][ T4706] Bluetooth: hci0: command tx timeout
[  105.151039][ T5461] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.166077][ T5461] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  105.466274][ T5461] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  105.471599][ T5461] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  105.718039][ T5461] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.751362][ T5461] 8021q: adding VLAN 0 to HW filter on device team0
[  105.764189][ T1086] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.767530][ T1086] bridge0: port 1(bridge_slave_0) entered forwarding state
[  105.778633][ T1086] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.783748][ T1086] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.970068][ T5461] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.011351][ T5461] veth0_vlan: entered promiscuous mode
[  106.023824][ T5461] veth1_vlan: entered promiscuous mode
[  106.054096][ T5461] veth0_macvtap: entered promiscuous mode
[  106.059646][ T5461] veth1_macvtap: entered promiscuous mode
[  106.077061][ T5461] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.088105][ T5461] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.098331][ T1086] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.104807][ T1086] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.115094][ T1086] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.129167][ T1086] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.183939][ T1086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.187417][ T1086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.220821][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.225202][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.471051][ T5492] loop0: detected capacity change from 0 to 32768
[  106.491195][ T5492] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.17 (5492)
[  106.535722][ T5492] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  106.540603][ T5492] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  106.617466][ T5492] BTRFS info (device loop0): rebuilding free space tree
[  106.657061][ T5492] BTRFS info (device loop0): disabling free space tree
[  106.667389][ T5492] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  106.671889][ T5492] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  106.713710][ T4706] Bluetooth: hci0: command tx timeout
[  106.788415][ T5461] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  107.217438][ T5509] loop0: detected capacity change from 0 to 32768
[  107.229787][ T5509] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.18 (5509)
[  107.251811][ T5509] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  107.261733][ T5509] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  107.315997][ T5509] BTRFS info (device loop0): rebuilding free space tree
[  107.336083][ T5509] BTRFS info (device loop0): disabling free space tree
[  107.339035][ T5509] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  107.357137][ T5509] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  107.386055][ T5509] FAULT_INJECTION: forcing a failure.
[  107.386055][ T5509] name failslab, interval 1, probability 0, space 0, times 0
[  107.399486][ T5509] CPU: 0 UID: 0 PID: 5509 Comm: syz.0.18 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[  107.399505][ T5509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.399512][ T5509] Call Trace:
[  107.399518][ T5509]  <TASK>
[  107.399523][ T5509]  dump_stack_lvl+0x189/0x250
[  107.399623][ T5509]  ? __pfx____ratelimit+0x10/0x10
[  107.400451][ T5509]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.400463][ T5509]  ? __pfx__printk+0x10/0x10
[  107.400477][ T5509]  ? __pfx___might_resched+0x10/0x10
[  107.400517][ T5509]  ? fs_reclaim_acquire+0x7d/0x100
[  107.400534][ T5509]  should_fail_ex+0x414/0x560
[  107.400552][ T5509]  should_failslab+0xa8/0x100
[  107.400565][ T5509]  kmem_cache_alloc_noprof+0x73/0x3c0
[  107.400574][ T5509]  ? add_delayed_ref+0x139/0x1d80
[  107.400590][ T5509]  add_delayed_ref+0x139/0x1d80
[  107.400601][ T5509]  ? do_raw_spin_unlock+0x4d/0x240
[  107.400635][ T5509]  btrfs_alloc_tree_block+0xd42/0x1290
[  107.400664][ T5509]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  107.400684][ T5509]  ? __pfx_folio_mark_accessed+0x10/0x10
[  107.400699][ T5509]  ? read_extent_buffer+0x120/0x5e0
[  107.400714][ T5509]  btrfs_force_cow_block+0x578/0x2460
[  107.400740][ T5509]  ? btrfs_qgroup_trace_subtree_after_cow+0x1cd/0x930
[  107.400754][ T5509]  ? btrfs_tree_lock_nested+0x31/0x230
[  107.400770][ T5509]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  107.400781][ T5509]  ? read_block_for_search+0x4f6/0xa90
[  107.400796][ T5509]  ? down_write_nested+0x169/0x200
[  107.400812][ T5509]  btrfs_cow_block+0x40a/0x9a0
[  107.400840][ T5509]  btrfs_search_slot+0xd11/0x2b90
[  107.400874][ T5509]  ? __pfx_btrfs_search_slot+0x10/0x10
[  107.400888][ T5509]  ? __mutex_trylock_common+0x153/0x260
[  107.400907][ T5509]  btrfs_lookup_inode+0xc1/0x460
[  107.400953][ T5509]  ? __pfx_btrfs_lookup_inode+0x10/0x10
[  107.400964][ T5509]  ? __mutex_lock+0x335/0x1360
[  107.400981][ T5509]  ? __btrfs_commit_inode_delayed_items+0x1bd3/0x1e20
[  107.400997][ T5509]  __btrfs_update_delayed_inode+0x167/0xf00
[  107.401008][ T5509]  ? arch_stack_walk+0xfc/0x150
[  107.401024][ T5509]  ? __pfx___mutex_lock+0x10/0x10
[  107.401035][ T5509]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  107.401047][ T5509]  ? __pfx___btrfs_update_delayed_inode+0x10/0x10
[  107.401060][ T5509]  ? stack_trace_save+0x9c/0xe0
[  107.401076][ T5509]  ? btrfs_record_root_in_trans+0x124/0x180
[  107.401097][ T5509]  __btrfs_commit_inode_delayed_items+0x1cbb/0x1e20
[  107.401113][ T5509]  ? kasan_save_track+0x3e/0x80
[  107.401124][ T5509]  ? __kasan_slab_alloc+0x6c/0x80
[  107.401135][ T5509]  ? kmem_cache_alloc_noprof+0x1c1/0x3c0
[  107.401148][ T5509]  ? btrfs_mksnapshot+0xab/0xf0
[  107.401191][ T5509]  ? __se_sys_ioctl+0xf9/0x170
[  107.401212][ T5509]  ? __pfx___btrfs_commit_inode_delayed_items+0x10/0x10
[  107.401235][ T5509]  ? __lock_acquire+0xab9/0xd20
[  107.401258][ T5509]  ? do_raw_spin_lock+0x121/0x290
[  107.401280][ T5509]  ? do_raw_spin_unlock+0x4d/0x240
[  107.401297][ T5509]  __btrfs_run_delayed_items+0x212/0x540
[  107.401320][ T5509]  btrfs_commit_transaction+0x865/0x3950
[  107.401335][ T5509]  ? btrfs_commit_transaction+0x161/0x3950
[  107.401367][ T5509]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  107.401378][ T5509]  ? join_transaction+0x41b/0xd70
[  107.401396][ T5509]  ? do_raw_spin_unlock+0x4d/0x240
[  107.401407][ T5509]  ? join_transaction+0x41b/0xd70
[  107.401430][ T5509]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  107.401444][ T5509]  ? start_transaction+0x439/0x1620
[  107.401466][ T5509]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  107.401483][ T5509]  ? btrfs_record_root_in_trans+0x124/0x180
[  107.401504][ T5509]  create_snapshot+0x6bc/0xba0
[  107.401528][ T5509]  btrfs_mksubvol+0x545/0x6d0
[  107.401551][ T5509]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  107.401567][ T5509]  ? mnt_get_write_access+0x223/0x2a0
[  107.401587][ T5509]  btrfs_mksnapshot+0xab/0xf0
[  107.401605][ T5509]  __btrfs_ioctl_snap_create+0x520/0x730
[  107.401623][ T5509]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  107.401639][ T5509]  ? rep_movs_alternative+0x4a/0x90
[  107.401654][ T5509]  ? _copy_from_user+0x94/0xb0
[  107.401670][ T5509]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  107.401689][ T5509]  btrfs_ioctl+0xa62/0xd00
[  107.401701][ T5509]  ? __pfx_btrfs_ioctl+0x10/0x10
[  107.401712][ T5509]  __se_sys_ioctl+0xf9/0x170
[  107.401726][ T5509]  do_syscall_64+0xfa/0x3b0
[  107.401736][ T5509]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.401752][ T5509]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.401763][ T5509]  ? clear_bhb_loop+0x60/0xb0
[  107.401777][ T5509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.401788][ T5509] RIP: 0033:0x7fb62538eb69
[  107.401800][ T5509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.401809][ T5509] RSP: 002b:00007ffe0ea05f38 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.401823][ T5509] RAX: ffffffffffffffda RBX: 00007fb6255b5fa0 RCX: 00007fb62538eb69
[  107.401831][ T5509] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  107.401838][ T5509] RBP: 00007ffe0ea05f90 R08: 0000000000000000 R09: 0000000000000000
[  107.401844][ T5509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  107.401851][ T5509] R13: 00007fb6255b5fa0 R14: 00007fb6255b5fa0 R15: 0000000000000003
[  107.401873][ T5509]  </TASK>
[  107.402264][ T5509] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  107.710309][ T5509] BTRFS: error (device loop0 state A) in __btrfs_update_delayed_inode:1015: errno=-12 Out of memory
[  107.716687][ T5509] BTRFS info (device loop0 state EA): forced readonly
[  107.719940][ T5509] BTRFS: error (device loop0 state EA) in __btrfs_run_delayed_items:1151: errno=-12 Out of memory
[  107.730521][ T5509] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  107.736261][ T5509] BTRFS: error (device loop0 state EA) in cleanup_transaction:2023: errno=-12 Out of memory
[  107.746712][ T5461] BTRFS info (device loop0 state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  107.767852][ T5461] ------------[ cut here ]------------
[  107.770527][ T5461] WARNING: CPU: 0 PID: 5461 at fs/btrfs/space-info.h:265 btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  107.776608][ T5461] Modules linked in:
[  107.780283][ T5461] CPU: 0 UID: 0 PID: 5461 Comm: syz-executor Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[  107.785708][ T5461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.790157][ T5461] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  107.793602][ T5461] Code: 00 00 74 08 4c 89 ff e8 24 65 39 fe 4d 8b 27 4c 89 e7 48 8b 6c 24 18 48 89 ee e8 c1 95 d4 fd 49 39 ec 73 1c e8 57 93 d4 fd 90 <0f> 0b 90 31 db 43 80 7c 35 00 00 0f 85 2e ff ff ff e9 31 ff ff ff
[  107.801814][ T5461] RSP: 0018:ffffc900022cfa10 EFLAGS: 00010293
[  107.805240][ T5461] RAX: ffffffff83eb1b49 RBX: fffffffffff00000 RCX: ffff8880333a8000
[  107.808593][ T5461] RDX: 0000000000000000 RSI: 0000000000100000 RDI: 00000000000ff000
[  107.812031][ T5461] RBP: 0000000000100000 R08: ffffffff8fa34537 R09: 1ffffffff1f468a6
[  107.815769][ T5461] R10: dffffc0000000000 R11: fffffbfff1f468a7 R12: 00000000000ff000
[  107.819181][ T5461] R13: 1ffff11008b9a210 R14: dffffc0000000000 R15: ffff888045cd1080
[  107.822928][ T5461] FS:  000055558327b500(0000) GS:ffff88808d21f000(0000) knlGS:0000000000000000
[  107.826766][ T5461] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.829964][ T5461] CR2: 00005555832965c8 CR3: 00000000396ec000 CR4: 0000000000352ef0
[  107.834233][ T5461] Call Trace:
[  107.835703][ T5461]  <TASK>
[  107.836966][ T5461]  btrfs_block_rsv_release+0x4b3/0x5e0
[  107.839350][ T5461]  btrfs_release_global_block_rsv+0x33/0x270
[  107.842029][ T5461]  btrfs_free_block_groups+0xc2c/0xf40
[  107.844565][ T5461]  close_ctree+0x7bc/0x1380
[  107.846748][ T5461]  ? do_raw_spin_unlock+0x4d/0x240
[  107.848953][ T5461]  ? btrfs_put_super+0x48/0x1b0
[  107.850998][ T5461]  ? __pfx__btrfs_printk+0x10/0x10
[  107.853283][ T5461]  ? __pfx_close_ctree+0x10/0x10
[  107.855445][ T5461]  ? btrfs_put_super+0x48/0x1b0
[  107.857523][ T5461]  ? btrfs_put_super+0x48/0x1b0
[  107.859615][ T5461]  ? __pfx_btrfs_put_super+0x10/0x10
[  107.862073][ T5461]  generic_shutdown_super+0x132/0x2c0
[  107.864548][ T5461]  kill_anon_super+0x3b/0x70
[  107.866635][ T5461]  btrfs_kill_super+0x41/0x50
[  107.868712][ T5461]  deactivate_locked_super+0xbc/0x130
[  107.871200][ T5461]  cleanup_mnt+0x425/0x4c0
[  107.873260][ T5461]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.875524][ T5461]  task_work_run+0x1d1/0x260
[  107.877655][ T5461]  ? __pfx_task_work_run+0x10/0x10
[  107.879974][ T5461]  ? __x64_sys_umount+0x122/0x160
[  107.882622][ T5461]  ? exit_to_user_mode_loop+0x40/0x110
[  107.885059][ T5461]  exit_to_user_mode_loop+0xec/0x110
[  107.887395][ T5461]  do_syscall_64+0x2bd/0x3b0
[  107.889475][ T5461]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.891837][ T5461]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.894856][ T5461]  ? clear_bhb_loop+0x60/0xb0
[  107.896962][ T5461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.899751][ T5461] RIP: 0033:0x7fb62538fe97
[  107.901781][ T5461] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  107.910484][ T5461] RSP: 002b:00007ffe0ea05118 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  107.914641][ T5461] RAX: 0000000000000000 RBX: 00007fb625411bdd RCX: 00007fb62538fe97
[  107.918117][ T5461] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe0ea051d0
[  107.921732][ T5461] RBP: 00007ffe0ea051d0 R08: 0000000000000000 R09: 0000000000000000
[  107.925361][ T5461] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe0ea06260
[  107.928826][ T5461] R13: 00007fb625411bdd R14: 000000000001a2da R15: 00007ffe0ea062a0
[  107.932284][ T5461]  </TASK>
[  107.933794][ T5461] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  107.937058][ T5461] CPU: 0 UID: 0 PID: 5461 Comm: syz-executor Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[  107.942553][ T5461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.947235][ T5461] Call Trace:
[  107.948711][ T5461]  <TASK>
[  107.949977][ T5461]  dump_stack_lvl+0x99/0x250
[  107.951992][ T5461]  ? __asan_memcpy+0x40/0x70
[  107.953840][ T5461]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.955760][ T5461]  ? __pfx__printk+0x10/0x10
[  107.957573][ T5461]  vpanic+0x27a/0x730
[  107.959157][ T5461]  ? __pfx__printk+0x10/0x10
[  107.961148][ T5461]  ? __pfx_vpanic+0x10/0x10
[  107.963013][ T5461]  ? is_bpf_text_address+0x292/0x2b0
[  107.965258][ T5461]  panic+0xb9/0xc0
[  107.966892][ T5461]  ? __pfx_panic+0x10/0x10
[  107.968855][ T5461]  __warn+0x31b/0x4b0
[  107.970649][ T5461]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  107.973655][ T5461]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  107.976562][ T5461]  report_bug+0x2be/0x4f0
[  107.978451][ T5461]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  107.981405][ T5461]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  107.984325][ T5461]  ? btrfs_space_info_update_bytes_may_use+0x35c/0x640
[  107.987345][ T5461]  handle_bug+0x84/0x160
[  107.989163][ T5461]  exc_invalid_op+0x1a/0x50
[  107.991722][ T5461]  asm_exc_invalid_op+0x1a/0x20
[  107.994562][ T5461] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  107.998066][ T5461] Code: 00 00 74 08 4c 89 ff e8 24 65 39 fe 4d 8b 27 4c 89 e7 48 8b 6c 24 18 48 89 ee e8 c1 95 d4 fd 49 39 ec 73 1c e8 57 93 d4 fd 90 <0f> 0b 90 31 db 43 80 7c 35 00 00 0f 85 2e ff ff ff e9 31 ff ff ff
[  108.006238][ T5461] RSP: 0018:ffffc900022cfa10 EFLAGS: 00010293
[  108.008943][ T5461] RAX: ffffffff83eb1b49 RBX: fffffffffff00000 RCX: ffff8880333a8000
[  108.012277][ T5461] RDX: 0000000000000000 RSI: 0000000000100000 RDI: 00000000000ff000
[  108.015518][ T5461] RBP: 0000000000100000 R08: ffffffff8fa34537 R09: 1ffffffff1f468a6
[  108.018964][ T5461] R10: dffffc0000000000 R11: fffffbfff1f468a7 R12: 00000000000ff000
[  108.022706][ T5461] R13: 1ffff11008b9a210 R14: dffffc0000000000 R15: ffff888045cd1080
[  108.026179][ T5461]  ? btrfs_space_info_update_bytes_may_use+0x359/0x640
[  108.028990][ T5461]  btrfs_block_rsv_release+0x4b3/0x5e0
[  108.031387][ T5461]  btrfs_release_global_block_rsv+0x33/0x270
[  108.033924][ T5461]  btrfs_free_block_groups+0xc2c/0xf40
[  108.036287][ T5461]  close_ctree+0x7bc/0x1380
[  108.038256][ T5461]  ? do_raw_spin_unlock+0x4d/0x240
[  108.040659][ T5461]  ? btrfs_put_super+0x48/0x1b0
[  108.042965][ T5461]  ? __pfx__btrfs_printk+0x10/0x10
[  108.045404][ T5461]  ? __pfx_close_ctree+0x10/0x10
[  108.047522][ T5461]  ? btrfs_put_super+0x48/0x1b0
[  108.049620][ T5461]  ? btrfs_put_super+0x48/0x1b0
[  108.051754][ T5461]  ? __pfx_btrfs_put_super+0x10/0x10
[  108.054048][ T5461]  generic_shutdown_super+0x132/0x2c0
[  108.056253][ T5461]  kill_anon_super+0x3b/0x70
[  108.058178][ T5461]  btrfs_kill_super+0x41/0x50
[  108.060247][ T5461]  deactivate_locked_super+0xbc/0x130
[  108.062780][ T5461]  cleanup_mnt+0x425/0x4c0
[  108.065124][ T5461]  ? lockdep_hardirqs_on+0x9c/0x150
[  108.067906][ T5461]  task_work_run+0x1d1/0x260
[  108.070101][ T5461]  ? __pfx_task_work_run+0x10/0x10
[  108.072411][ T5461]  ? __x64_sys_umount+0x122/0x160
[  108.074615][ T5461]  ? exit_to_user_mode_loop+0x40/0x110
[  108.077006][ T5461]  exit_to_user_mode_loop+0xec/0x110
[  108.079361][ T5461]  do_syscall_64+0x2bd/0x3b0
[  108.081528][ T5461]  ? lockdep_hardirqs_on+0x9c/0x150
[  108.083887][ T5461]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.086620][ T5461]  ? clear_bhb_loop+0x60/0xb0
[  108.088962][ T5461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.092010][ T5461] RIP: 0033:0x7fb62538fe97
[  108.094415][ T5461] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  108.104156][ T5461] RSP: 002b:00007ffe0ea05118 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  108.107785][ T5461] RAX: 0000000000000000 RBX: 00007fb625411bdd RCX: 00007fb62538fe97
[  108.111375][ T5461] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe0ea051d0
[  108.114833][ T5461] RBP: 00007ffe0ea051d0 R08: 0000000000000000 R09: 0000000000000000
[  108.118244][ T5461] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe0ea06260
[  108.121849][ T5461] R13: 00007fb625411bdd R14: 000000000001a2da R15: 00007ffe0ea062a0
[  108.126288][ T5461]  </TASK>
[  108.128366][ T5461] Kernel Offset: disabled
[  108.130321][ T5461] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:26:45  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900022cf170
R8 =ffff888033e38237 R9 =1ffff110067c7046 R10=dffffc0000000000 R11=ffffffff854ec100
R12=dffffc0000000000 R13=ffffffff99af6906 R14=ffffffff99dfb840 R15=0000000000000000
RIP=ffffffff854ec17c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055558327b500 ffffffff 00c00000
GS =0000 ffff88808d21f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005555832965c8 CR3=00000000396ec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000000001 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=000000003fffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 37e18f0ebf12848b 23f064aafb03efc5
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c36b06ab3b6ffce7 a2319a4a209afafb
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c4d5a2df722314d8 f77bf42cb1b2f72b
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fa58f9427303ef1e 40c479a419d7951e
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002740
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000048 0000adf5045a26b1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000004800000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000045158b2 0000a06d0446a26a
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000b11c04647735 000000480000c799
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 38d742c5beb1bced 69dd797b204d9ef9
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2eab052a23b6df8c 6b978b3357bce074
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65645f6e75725f73 667274625f5f206e 6920294145206574 6174732030706f00
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6564556475725573 6672746255552064 6320234145206574 6174732030706500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 36316465206d6574 737973656c696620 666f20746e756f6d 6e75207473616c20
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3834203130203938 2034362038642037 6620666620666620 6666203861203163
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2037632038342033 6320313020333720 6666206666203066 203130206433203e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 38343c2035302066 3020383020343220 6334206238206334 2038632039382064
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3420326320393820 6434206163203938 2038342036642039 3820383420376620
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e656d676172 66206562206c6c69 7720656361667265 746e692073696874
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000