program: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xe) sendto$inet(r0, &(0x7f0000000300)="ab", 0x1, 0x0, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10) recvfrom$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$SIOCGSTAMPNS(r0, 0x80108906, &(0x7f0000000000)={0x0, 0x0}) syz_mount_image$bcachefs(&(0x7f00000058c0), &(0x7f0000000300)='./file0\x00', 0x800000, &(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB="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", @ANYRES16=0x0, @ANYRESOCT=r0, @ANYRES32=r1, @ANYBLOB="563a3d2cd5d6950e3092da5b217154cecc0f1fc7ca8be55e9bd4f93e452e85e594d5058c2ab0cb560e9fdbf5df017ecbf18b5e54fd2d8cd4eca041878ab7a638a98b9b22e06c5cc90e5adba48ed907bf6146396644a50bc216e24874d7374cb9dfb02e87ac"], 0x1, 0x59a1, &(0x7f0000005900)="$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") r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x4, 0x1a402) ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {0x4}, 0x9, 0x80, &(0x7f0000000040)={0x3, 0x30, 0x0, 0x1, 0xfff7}, 0x8, 0x8, 0x9, 0x0, 0x2, 0xa, &(0x7f0000000080)="642408bd2bac89f864507fcedd880a161685f2e149ec330ed4434b60a88274210e9b86685693f5d994f4966efd604faf54d703b2885957264d4fe64b0214c22f91e3cfcf09e8c68d65662e9edc9055b951b310ea43f3190e316b99f49620e56d8191e9e3a2e5cc2ea8744e8ca92da8d0b02bd78da45e392fd0fedbcb152b1cc106f0891f40911ca4f3b57db7cedb623517568c2354f3f409486c3f29b92586ece0f2e02c6222fd7b518d8f620f6d30b4f889c5ed3763e3df375548997f6f74df"}) [ 86.306369][ T5361] loop0: detected capacity change from 0 to 32768 [ 86.312467][ T5340] Bluetooth: hci0: command tx timeout [ 86.736822][ T5361] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,data_checksum=none,compression=lz4,fix_errors=no,nojournal_transaction_names [ 86.736840][ T5361] allowing incompatible features above 0.0: (unknown version) [ 86.736847][ T5361] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 86.760635][ T5361] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 86.764493][ T5361] bcachefs (loop0): invalid journal entry, version=1.7: mi_btree_bitmap type=data_usage in superblock: invalid journal entry usage: bad size, fixing [ 86.772258][ T5361] bcachefs (loop0): invalid bkey in superblock btree=dirents level=0: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 86.772270][ T5361] invalid key type for btree dirents (btree_ptr_v2), deleting [ 86.782950][ T5361] bcachefs (loop0): invalid bkey in superblock btree=snapshots level=0: u64s 11 type btree_ptr_v2 18446742987082825727:U64_MAX:U32_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 86.782967][ T5361] invalid key type for btree snapshots (btree_ptr_v2), deleting [ 86.796892][ T5361] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 86.800014][ T5361] bcachefs (loop0): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive [ 86.800014][ T5361] running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes [ 86.882159][ T5361] bcachefs (loop0): invalid bkey in btree_node btree=alloc level=0: u64s 11 type alloc_v4 0:16:0 len 0 ver 0: [ 86.882187][ T5361] gen 0 oldest_gen 0 data_type sb [ 86.882194][ T5361] journal_seq_nonempty 1 [ 86.882200][ T5361] journal_seq_empty 1769481 [ 86.882205][ T5361] need_discard 1 [ 86.882211][ T5361] need_inc_gen 1 [ 86.882217][ T5361] dirty_sectors 256 [ 86.882223][ T5361] stripe_sectors 17 [ 86.882228][ T5361] cached_sectors 0 [ 86.882235][ T5361] stripe 0 [ 86.882241][ T5361] stripe_redundancy 0 [ 86.882247][ T5361] io_time[READ] 1 [ 86.882253][ T5361] io_time[WRITE] 1 [ 86.882259][ T5361] fragmentation 0 [ 86.882265][ T5361] bp_start 6 [ 86.882270][ T5361] [ 86.882274][ T5361] bad val size (22 > 6), deleting [ 86.927497][ T5361] bcachefs (loop0): btree node read error at btree freespace level 0/0 [ 86.927531][ T5361] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0 [ 86.927541][ T5361] loop0 node offset 8/32: btree node data missing: expected 32 sectors, found 8 [ 86.927549][ T5361] loop0 btree validate error [ 86.927555][ T5361] repair success (rewriting node) [ 86.952804][ T5361] bcachefs (loop0): accounting_read... done [ 86.956582][ T5361] bcachefs (loop0): alloc_read... done [ 86.959974][ T5361] bcachefs (loop0): snapshots_read... done [ 86.963057][ T5361] bcachefs (loop0): check_allocations... [ 86.965435][ T5361] bcachefs (loop0): btree ptr not marked in member info btree allocated bitmap [ 86.965468][ T5361] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing [ 86.985024][ T5361] bcachefs (loop0): btree ptr not marked in member info btree allocated bitmap [ 86.985040][ T5361] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 86.997140][ T5361] bcachefs (loop0): btree ptr not marked in member info btree allocated bitmap [ 86.997155][ T5361] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 87.014742][ T5361] bcachefs (loop0): btree ptr not marked in member info btree allocated bitmap [ 87.014758][ T5361] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 87.027884][ T5361] bcachefs (loop0): bucket 0:0 gen 0 has wrong data_type: got free, should be sb, fixing [ 87.033339][ T5361] bcachefs (loop0): bucket 0:0 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 87.039714][ T5361] bcachefs (loop0): bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing [ 87.044021][ T5361] bcachefs (loop0): bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 87.050398][ T5361] bcachefs (loop0): bucket 0:32 gen 0 has wrong data_type: got btree, should be need_discard, fixing [ 87.054774][ T5361] bcachefs (loop0): bucket 0:32 gen 0 data type need_discard has wrong dirty_sectors: got 256, should be 0, fixing [ 87.060797][ T5361] bcachefs (loop0): bucket 0:32 gen 0 data type need_discard has wrong cached_sectors: got 117440512, should be 0, fixing [ 87.066544][ T5361] bcachefs (loop0): bucket 0:41 gen 0 has wrong data_type: got btree, should be need_discard, fixing [ 87.072297][ T5361] bcachefs (loop0): bucket 0:41 gen 0 data type need_discard has wrong dirty_sectors: got 256, should be 0, fixing [ 87.081632][ T5361] done [ 87.086785][ T5361] bcachefs (loop0): going read-write [ 87.099146][ T5361] bcachefs (loop0): journal_replay... [ 87.117235][ T70] bcachefs (loop0): bucket incorrectly unset in freespace btree [ 87.117262][ T70] u64s 5 type deleted 0:30:0 len 0 ver 0, , continuing [ 87.160230][ T70] bcachefs (loop0): bucket incorrectly unset in freespace btree [ 87.160246][ T70] u64s 5 type deleted 0:36:0 len 0 ver 0, , continuing [ 87.175860][ T70] bcachefs (loop0): bucket incorrectly unset in freespace btree [ 87.175884][ T70] u64s 5 type deleted 0:40:0 len 0 ver 0, , continuing [ 87.185930][ T70] bcachefs (loop0): bucket incorrectly unset in freespace btree [ 87.185946][ T70] u64s 5 type deleted 0:44:0 len 0 ver 0, , continuing [ 87.199119][ T70] bcachefs (loop0): bucket incorrectly unset in freespace btree [ 87.199134][ T70] u64s 5 type deleted 0:39:0 len 0 ver 0, , continuing [ 87.233791][ T70] bcachefs (loop0): bucket incorrectly unset in freespace btree [ 87.233806][ T70] u64s 5 type deleted 0:49:0 len 0 ver 0, , continuing [ 87.256191][ T5361] done [ 87.257965][ T5361] bcachefs (loop0): check_extents_to_backpointers... [ 87.260800][ T5361] bcachefs (loop0): scanning for missing backpointers in 2/128 buckets [ 87.267764][ T5361] done [ 87.270802][ T5361] bcachefs (loop0): check_inodes... [ 87.273260][ T5361] bcachefs (loop0): key in missing snapshot running recovery pass check_snapshots (23), currently at check_inodes (28) - rewinding [ 87.273285][ T5361] running recovery pass check_subvols (24), currently at check_inodes (28) - rewinding [ 87.273294][ T5361] inodes u64s 16 type inode_v3 0:4096:U32_MAX len 0 ver 0: [ 87.273302][ T5361] mode=40755 [ 87.273308][ T5361] flags=(16300000) [ 87.273314][ T5361] journal_seq=4 [ 87.273320][ T5361] hash_seed=28e4f092a4fc58ee [ 87.273327][ T5361] hash_type=siphash [ 87.273333][ T5361] bi_size=0 [ 87.273339][ T5361] bi_sectors=0 [ 87.273346][ T5361] bi_version=0 [ 87.273352][ T5361] bi_atime=200535484 [ 87.273359][ T5361] bi_ctime=2780562352 [ 87.273365][ T5361] bi_mtime=2780562352 [ 87.273373][ T5361] bi_otime=200535484 [ 87.273380][ T5361] bi_uid=0 [ 87.273386][ T5361] bi_gid=0 [ 87.273393][ T5361] bi_nlink=2 [ 87.273399][ T5361] bi_generation=0 [ 87.273405][ T5361] bi_dev=0 [ 87.273411][ T5361] bi_data_checksum=0 [ 87.273418][ T5361] bi_compression=0 [ 87.273424][ T5361] bi_project=0 [ 87.273430][ T5361] bi_background_compression=0 [ 87.273435][ T5361] bi_data_replicas=0 [ 87.273441][ T5361] bi_promote_target=0 [ 87.273447][ T5361] bi_foreground_target=0 [ 87.273453][ T5361] bi_background_target=0 [ 87.273458][ T5361] bi_erasure_code=0 [ 87.273464][ T5361] bi_fields_set=0 [ 87.273470][ T5361] bi_dir=0 [ 87.273475][ T5361] bi_dir_offset=0 [ 87.273481][ T5361] bi_subvol=1 [ 87.273486][ T5361] bi_parent_subvol=0 [ 87.273492][ T5361] bi_nocow=0 [ 87.273497][ T5361] bi_depth=0 [ 87.273503][ T5361] bi_inodes_32bit=0 [ 87.273509][ T5361] bi_casefold=0, continuing [ 87.361879][ T5361] bcachefs (loop0): check_inode(): error restart_recovery [ 87.364749][ T5361] bcachefs (loop0): bch2_check_inodes(): error restart_recovery [ 87.368260][ T5361] bcachefs (loop0): check_snapshots... done [ 87.371778][ T5361] bcachefs (loop0): check_subvols... [ 87.371996][ T5361] bcachefs (loop0): running recovery pass reconstruct_snapshots (21), currently at check_subvols (24) - rewinding [ 87.396604][ T5361] bcachefs (loop0): bch2_check_subvols(): error restart_recovery [ 87.404616][ T5361] bcachefs (loop0): reconstruct_snapshots... [ 87.405487][ T5361] bcachefs (loop0): snapshot node 4294905343 from tree 4294905343 missing, recreating [ 87.488967][ T5361] ------------[ cut here ]------------ [ 87.491566][ T5361] WARNING: CPU: 0 PID: 5361 at fs/bcachefs/btree_iter.c:3194 __bch2_trans_kmalloc+0x50f/0x9d0 [ 87.495610][ T5361] Modules linked in: [ 87.497187][ T5361] CPU: 0 UID: 0 PID: 5361 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 87.501091][ T5361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.505515][ T5361] RIP: 0010:__bch2_trans_kmalloc+0x50f/0x9d0 [ 87.508411][ T5361] Code: 00 28 00 00 e8 d2 5b 35 00 48 c7 c0 75 f7 ff ff 48 83 c4 48 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 42 a7 94 fd 90 <0f> 0b 90 e9 d3 fb ff ff e8 34 a7 94 fd 90 0f 0b 90 e9 dc fd ff ff [ 87.516634][ T5361] RSP: 0018:ffffc9000d3ce290 EFLAGS: 00010246 [ 87.519444][ T5361] RAX: ffffffff842b15fe RBX: ffff888052088000 RCX: 0000000000100000 [ 87.522722][ T5361] RDX: ffffc9000dd8a000 RSI: 00000000000fffff RDI: 0000000000100000 [ 87.525921][ T5361] RBP: 0000000000020000 R08: ffffc9000d3ce690 R09: 0000000000000001 [ 87.529256][ T5361] R10: ffffc9000d3ce5a0 R11: fffff52001a79c81 R12: dffffc0000000000 [ 87.533345][ T5361] R13: ffff888052088030 R14: 1ffff1100a411000 R15: 0000000000000011 [ 87.536687][ T5361] FS: 00007ff7b5ec66c0(0000) GS:ffff88808d009000(0000) knlGS:0000000000000000 [ 87.540498][ T5361] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 87.543280][ T5361] CR2: 000055a770c9b168 CR3: 0000000011d89000 CR4: 0000000000352ef0 [ 87.546517][ T5361] Call Trace: [ 87.547941][ T5361] [ 87.549342][ T5361] ? trace_contention_end+0x39/0x120 [ 87.551661][ T5361] bch2_alloc_sectors_start_trans+0x1d59/0x1e80 [ 87.554284][ T5361] ? bch2_btree_reserve_get+0x4ef/0x1810 [ 87.556559][ T5361] ? bch2_alloc_sectors_start_trans+0x73/0x1e80 [ 87.558993][ T5361] ? __mutex_unlock_slowpath+0x1a1/0x740 [ 87.561256][ T5361] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 87.563710][ T5361] ? bch2_btree_node_mem_alloc+0xcdf/0x1820 [ 87.566064][ T5361] ? rcu_is_watching+0x15/0xb0 [ 87.567965][ T5361] bch2_btree_reserve_get+0x641/0x1810 [ 87.570141][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.572131][ T5361] ? __pfx_bch2_btree_reserve_get+0x10/0x10 [ 87.574985][ T5361] ? rcu_is_watching+0x15/0xb0 [ 87.577007][ T5361] ? six_unlock_ip+0x302/0x430 [ 87.579237][ T5361] ? bch2_trans_unlock+0x491/0x580 [ 87.581462][ T5361] bch2_btree_update_start+0x18ff/0x1de0 [ 87.583904][ T5361] ? bch2_btree_split_leaf+0x14b/0x8e0 [ 87.586237][ T5361] ? __pfx_bch2_btree_update_start+0x10/0x10 [ 87.588840][ T5361] ? __pfx_bch2_btree_path_peek_slot+0x10/0x10 [ 87.591475][ T5361] ? bch2_btree_path_peek_slot+0x8b6/0xfe0 [ 87.593857][ T5361] ? __asan_memcpy+0x40/0x70 [ 87.595829][ T5361] bch2_btree_split_leaf+0x14b/0x8e0 [ 87.597919][ T5361] bch2_trans_commit_error+0x1b7/0x1130 [ 87.600359][ T5361] ? bch2_btree_node_prep_for_write+0x318/0x650 [ 87.603202][ T5361] ? bch2_reconstruct_snapshots+0x1ae6/0x2170 [ 87.605872][ T5361] ? six_unlock_ip+0x302/0x430 [ 87.608061][ T5361] ? __pfx_bch2_trans_commit_error+0x10/0x10 [ 87.611149][ T5361] ? bch2_trans_unlock_updates_write+0xc22/0xd50 [ 87.613852][ T5361] __bch2_trans_commit+0x1bb5/0x8870 [ 87.616129][ T5361] ? bch2_reconstruct_snapshots+0x1ae6/0x2170 [ 87.619535][ T5361] ? bch2_trans_iter_exit+0x18e/0x2f0 [ 87.621852][ T5361] ? __pfx___bch2_trans_commit+0x10/0x10 [ 87.624296][ T5361] ? bch2_btree_insert_trans+0x1db/0x330 [ 87.626747][ T5361] ? __pfx_bch2_btree_insert_trans+0x10/0x10 [ 87.629455][ T5361] ? bch2_btree_insert_trans+0x18a/0x330 [ 87.631907][ T5361] bch2_reconstruct_snapshots+0x1ae6/0x2170 [ 87.634524][ T5361] ? bch2_reconstruct_snapshots+0xf60/0x2170 [ 87.637149][ T5361] ? __pfx_bch2_reconstruct_snapshots+0x10/0x10 [ 87.640089][ T5361] ? vprintk_emit+0x63e/0x7a0 [ 87.642157][ T5361] ? bch2_reconstruct_snapshots+0xf79/0x2170 [ 87.644818][ T5361] ? do_raw_spin_lock+0x121/0x290 [ 87.647019][ T5361] ? __bch2_print+0x176/0x220 [ 87.649179][ T5361] ? bch2_reconstruct_snapshots+0x1eb/0x2170 [ 87.651786][ T5361] ? lockdep_hardirqs_on+0x9c/0x150 [ 87.654068][ T5361] __bch2_run_recovery_passes+0x3ba/0x1060 [ 87.656560][ T5361] bch2_run_recovery_passes+0x184/0x210 [ 87.659114][ T5361] bch2_fs_recovery+0x2690/0x3a50 [ 87.661350][ T5361] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 87.663699][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.665792][ T5361] ? __mutex_trylock_common+0x153/0x260 [ 87.668192][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.670506][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.672599][ T5361] ? bch2_fs_start+0xa0f/0xda0 [ 87.674678][ T5361] ? up_write+0x1c4/0x420 [ 87.676431][ T5361] ? bch2_fs_start+0x5e7/0xda0 [ 87.678317][ T5361] bch2_fs_start+0xaaf/0xda0 [ 87.680461][ T5361] ? bch2_fs_start+0x5e7/0xda0 [ 87.682568][ T5361] ? __pfx_bch2_fs_start+0x10/0x10 [ 87.684773][ T5361] ? sget+0x267/0x620 [ 87.686623][ T5361] bch2_fs_get_tree+0xb39/0x1520 [ 87.688976][ T5361] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 87.691337][ T5361] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 87.693791][ T5361] vfs_get_tree+0x92/0x2b0 [ 87.695800][ T5361] do_new_mount+0x2a2/0x9e0 [ 87.697776][ T5361] ? ns_capable+0x8a/0xf0 [ 87.700916][ T5361] ? __pfx_do_new_mount+0x10/0x10 [ 87.702997][ T5361] ? path_mount+0x61c/0xfe0 [ 87.704846][ T5361] ? user_path_at+0x44/0x60 [ 87.706724][ T5361] __se_sys_mount+0x317/0x410 [ 87.708770][ T5361] ? __pfx___se_sys_mount+0x10/0x10 [ 87.711027][ T5361] ? do_syscall_64+0xbe/0x3b0 [ 87.713533][ T5361] ? __x64_sys_mount+0x20/0xc0 [ 87.715719][ T5361] do_syscall_64+0xfa/0x3b0 [ 87.717732][ T5361] ? lockdep_hardirqs_on+0x9c/0x150 [ 87.720328][ T5361] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.723022][ T5361] ? clear_bhb_loop+0x60/0xb0 [ 87.725044][ T5361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.727691][ T5361] RIP: 0033:0x7ff7b4f903ca [ 87.729775][ T5361] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.738260][ T5361] RSP: 002b:00007ff7b5ec5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 87.742085][ T5361] RAX: ffffffffffffffda RBX: 00007ff7b5ec5ef0 RCX: 00007ff7b4f903ca [ 87.745170][ T5361] RDX: 00002000000058c0 RSI: 0000200000000300 RDI: 00007ff7b5ec5eb0 [ 87.748742][ T5361] RBP: 00002000000058c0 R08: 00007ff7b5ec5ef0 R09: 0000000000800000 [ 87.752216][ T5361] R10: 0000000000800000 R11: 0000000000000246 R12: 0000200000000300 [ 87.755743][ T5361] R13: 00007ff7b5ec5eb0 R14: 00000000000059a1 R15: 00002000000003c0 [ 87.759248][ T5361] [ 87.760452][ T5361] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 87.763351][ T5361] CPU: 0 UID: 0 PID: 5361 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 87.767315][ T5361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.772003][ T5361] Call Trace: [ 87.773505][ T5361] [ 87.774884][ T5361] dump_stack_lvl+0x99/0x250 [ 87.776941][ T5361] ? __asan_memcpy+0x40/0x70 [ 87.779019][ T5361] ? __pfx_dump_stack_lvl+0x10/0x10 [ 87.781336][ T5361] ? __pfx__printk+0x10/0x10 [ 87.783309][ T5361] vpanic+0x281/0x750 [ 87.785020][ T5361] ? __pfx__printk+0x10/0x10 [ 87.787004][ T5361] ? __pfx_vpanic+0x10/0x10 [ 87.788994][ T5361] ? is_bpf_text_address+0x292/0x2b0 [ 87.791349][ T5361] panic+0xb9/0xc0 [ 87.792980][ T5361] ? __pfx_panic+0x10/0x10 [ 87.795000][ T5361] __warn+0x31b/0x4b0 [ 87.796733][ T5361] ? __bch2_trans_kmalloc+0x50f/0x9d0 [ 87.799066][ T5361] ? __bch2_trans_kmalloc+0x50f/0x9d0 [ 87.801447][ T5361] report_bug+0x2be/0x4f0 [ 87.803392][ T5361] ? __bch2_trans_kmalloc+0x50f/0x9d0 [ 87.805662][ T5361] ? __bch2_trans_kmalloc+0x50f/0x9d0 [ 87.808092][ T5361] ? __bch2_trans_kmalloc+0x511/0x9d0 [ 87.810524][ T5361] handle_bug+0x84/0x160 [ 87.812408][ T5361] exc_invalid_op+0x1a/0x50 [ 87.814445][ T5361] asm_exc_invalid_op+0x1a/0x20 [ 87.816563][ T5361] RIP: 0010:__bch2_trans_kmalloc+0x50f/0x9d0 [ 87.819244][ T5361] Code: 00 28 00 00 e8 d2 5b 35 00 48 c7 c0 75 f7 ff ff 48 83 c4 48 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 42 a7 94 fd 90 <0f> 0b 90 e9 d3 fb ff ff e8 34 a7 94 fd 90 0f 0b 90 e9 dc fd ff ff [ 87.827473][ T5361] RSP: 0018:ffffc9000d3ce290 EFLAGS: 00010246 [ 87.830162][ T5361] RAX: ffffffff842b15fe RBX: ffff888052088000 RCX: 0000000000100000 [ 87.833365][ T5361] RDX: ffffc9000dd8a000 RSI: 00000000000fffff RDI: 0000000000100000 [ 87.836542][ T5361] RBP: 0000000000020000 R08: ffffc9000d3ce690 R09: 0000000000000001 [ 87.839597][ T5361] R10: ffffc9000d3ce5a0 R11: fffff52001a79c81 R12: dffffc0000000000 [ 87.842699][ T5361] R13: ffff888052088030 R14: 1ffff1100a411000 R15: 0000000000000011 [ 87.845847][ T5361] ? __bch2_trans_kmalloc+0x50e/0x9d0 [ 87.847833][ T5361] ? trace_contention_end+0x39/0x120 [ 87.849851][ T5361] bch2_alloc_sectors_start_trans+0x1d59/0x1e80 [ 87.852545][ T5361] ? bch2_btree_reserve_get+0x4ef/0x1810 [ 87.854945][ T5361] ? bch2_alloc_sectors_start_trans+0x73/0x1e80 [ 87.857561][ T5361] ? __mutex_unlock_slowpath+0x1a1/0x740 [ 87.859975][ T5361] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 87.862640][ T5361] ? bch2_btree_node_mem_alloc+0xcdf/0x1820 [ 87.865258][ T5361] ? rcu_is_watching+0x15/0xb0 [ 87.867358][ T5361] bch2_btree_reserve_get+0x641/0x1810 [ 87.869835][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.872012][ T5361] ? __pfx_bch2_btree_reserve_get+0x10/0x10 [ 87.874613][ T5361] ? rcu_is_watching+0x15/0xb0 [ 87.876564][ T5361] ? six_unlock_ip+0x302/0x430 [ 87.878571][ T5361] ? bch2_trans_unlock+0x491/0x580 [ 87.880855][ T5361] bch2_btree_update_start+0x18ff/0x1de0 [ 87.883301][ T5361] ? bch2_btree_split_leaf+0x14b/0x8e0 [ 87.885676][ T5361] ? __pfx_bch2_btree_update_start+0x10/0x10 [ 87.888368][ T5361] ? __pfx_bch2_btree_path_peek_slot+0x10/0x10 [ 87.891118][ T5361] ? bch2_btree_path_peek_slot+0x8b6/0xfe0 [ 87.893704][ T5361] ? __asan_memcpy+0x40/0x70 [ 87.895801][ T5361] bch2_btree_split_leaf+0x14b/0x8e0 [ 87.898154][ T5361] bch2_trans_commit_error+0x1b7/0x1130 [ 87.900560][ T5361] ? bch2_btree_node_prep_for_write+0x318/0x650 [ 87.903378][ T5361] ? bch2_reconstruct_snapshots+0x1ae6/0x2170 [ 87.906060][ T5361] ? six_unlock_ip+0x302/0x430 [ 87.908226][ T5361] ? __pfx_bch2_trans_commit_error+0x10/0x10 [ 87.910930][ T5361] ? bch2_trans_unlock_updates_write+0xc22/0xd50 [ 87.913670][ T5361] __bch2_trans_commit+0x1bb5/0x8870 [ 87.916138][ T5361] ? bch2_reconstruct_snapshots+0x1ae6/0x2170 [ 87.918780][ T5361] ? bch2_trans_iter_exit+0x18e/0x2f0 [ 87.921098][ T5361] ? __pfx___bch2_trans_commit+0x10/0x10 [ 87.923496][ T5361] ? bch2_btree_insert_trans+0x1db/0x330 [ 87.925803][ T5361] ? __pfx_bch2_btree_insert_trans+0x10/0x10 [ 87.928519][ T5361] ? bch2_btree_insert_trans+0x18a/0x330 [ 87.930990][ T5361] bch2_reconstruct_snapshots+0x1ae6/0x2170 [ 87.933601][ T5361] ? bch2_reconstruct_snapshots+0xf60/0x2170 [ 87.936338][ T5361] ? __pfx_bch2_reconstruct_snapshots+0x10/0x10 [ 87.939054][ T5361] ? vprintk_emit+0x63e/0x7a0 [ 87.941101][ T5361] ? bch2_reconstruct_snapshots+0xf79/0x2170 [ 87.945403][ T5361] ? do_raw_spin_lock+0x121/0x290 [ 87.947706][ T5361] ? __bch2_print+0x176/0x220 [ 87.949729][ T5361] ? bch2_reconstruct_snapshots+0x1eb/0x2170 [ 87.952489][ T5361] ? lockdep_hardirqs_on+0x9c/0x150 [ 87.954881][ T5361] __bch2_run_recovery_passes+0x3ba/0x1060 [ 87.957341][ T5361] bch2_run_recovery_passes+0x184/0x210 [ 87.959515][ T5361] bch2_fs_recovery+0x2690/0x3a50 [ 87.961641][ T5361] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 87.963847][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.965893][ T5361] ? __mutex_trylock_common+0x153/0x260 [ 87.968208][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.970242][ T5361] ? __lock_acquire+0xab9/0xd20 [ 87.972255][ T5361] ? bch2_fs_start+0xa0f/0xda0 [ 87.974380][ T5361] ? up_write+0x1c4/0x420 [ 87.976170][ T5361] ? bch2_fs_start+0x5e7/0xda0 [ 87.978063][ T5361] bch2_fs_start+0xaaf/0xda0 [ 87.980029][ T5361] ? bch2_fs_start+0x5e7/0xda0 [ 87.982078][ T5361] ? __pfx_bch2_fs_start+0x10/0x10 [ 87.984107][ T5361] ? sget+0x267/0x620 [ 87.985699][ T5361] bch2_fs_get_tree+0xb39/0x1520 [ 87.987784][ T5361] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 87.990010][ T5361] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 87.992403][ T5361] vfs_get_tree+0x92/0x2b0 [ 87.994257][ T5361] do_new_mount+0x2a2/0x9e0 [ 87.996161][ T5361] ? ns_capable+0x8a/0xf0 [ 87.997991][ T5361] ? __pfx_do_new_mount+0x10/0x10 [ 88.000021][ T5361] ? path_mount+0x61c/0xfe0 [ 88.002010][ T5361] ? user_path_at+0x44/0x60 [ 88.003973][ T5361] __se_sys_mount+0x317/0x410 [ 88.006238][ T5361] ? __pfx___se_sys_mount+0x10/0x10 [ 88.008608][ T5361] ? do_syscall_64+0xbe/0x3b0 [ 88.010428][ T5361] ? __x64_sys_mount+0x20/0xc0 [ 88.012212][ T5361] do_syscall_64+0xfa/0x3b0 [ 88.014240][ T5361] ? lockdep_hardirqs_on+0x9c/0x150 [ 88.016605][ T5361] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.019588][ T5361] ? clear_bhb_loop+0x60/0xb0 [ 88.021745][ T5361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.024374][ T5361] RIP: 0033:0x7ff7b4f903ca [ 88.026445][ T5361] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.034787][ T5361] RSP: 002b:00007ff7b5ec5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 88.038303][ T5361] RAX: ffffffffffffffda RBX: 00007ff7b5ec5ef0 RCX: 00007ff7b4f903ca [ 88.041591][ T5361] RDX: 00002000000058c0 RSI: 0000200000000300 RDI: 00007ff7b5ec5eb0 [ 88.045009][ T5361] RBP: 00002000000058c0 R08: 00007ff7b5ec5ef0 R09: 0000000000800000 [ 88.048408][ T5361] R10: 0000000000800000 R11: 0000000000000246 R12: 0000200000000300 [ 88.052027][ T5361] R13: 00007ff7b5ec5eb0 R14: 00000000000059a1 R15: 00002000000003c0 [ 88.055462][ T5361] [ 88.057027][ T5361] Kernel Offset: disabled [ 88.058771][ T5361] Rebooting in 86400 seconds..