./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4148689292 <...> Warning: Permanently added '10.128.0.16' (ECDSA) to the list of known hosts. execve("./syz-executor4148689292", ["./syz-executor4148689292"], 0x7ffdab1bda80 /* 10 vars */) = 0 brk(NULL) = 0x555556b29000 brk(0x555556b29c40) = 0x555556b29c40 arch_prctl(ARCH_SET_FS, 0x555556b29300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor4148689292", 4096) = 28 brk(0x555556b4ac40) = 0x555556b4ac40 brk(0x555556b4b000) = 0x555556b4b000 mprotect(0x7f3349052000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3340b94000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 munmap(0x7f3340b94000, 16777216) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 [ 51.634857][ T5073] loop0: detected capacity change from 0 to 32768 [ 51.646155][ T5073] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor414 (5073) [ 51.667198][ T5073] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 51.676047][ T5073] BTRFS info (device loop0): enabling ssd optimizations [ 51.683021][ T5073] BTRFS info (device loop0): using spread ssd allocation scheme [ 51.690744][ T5073] BTRFS warning (device loop0): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 51.701396][ T5073] BTRFS info (device loop0): trying to use backup root at mount time [ 51.709490][ T5073] BTRFS info (device loop0): turning on sync discard [ 51.716221][ T5073] BTRFS info (device loop0): setting nodatasum [ 51.722382][ T5073] BTRFS info (device loop0): setting datasum [ 51.728421][ T5073] BTRFS info (device loop0): using free space tree [ 51.744617][ T9] BTRFS warning (device loop0): checksum verify failed on logical 5341184 mirror 1 wanted 0xebbfe3e60c56c89ab38f06d7137729181e58e53867989d1e8dd3def0e72a57de found 0x6c870fe30afed947dcc4d9d910c5b222ad2b52783b0edeb866a5ca0f796c2cea level 0 [ 51.767860][ T5073] BTRFS error (device loop0): failed to load root free space [ 51.776106][ T1221] BTRFS warning (device loop0): checksum verify failed on logical 5316608 mirror 1 wanted 0x7d760c12e004a6c3586e5b1067641fb408159584fdbf71f071f40e27f3098915 found 0x3e46367750b5f825280d9ed8eec54328df9a52e1ccfb14b7ccb5791e93c42a4a level 0 [ 51.799131][ T5073] BTRFS error (device loop0): failed to load root extent [ 51.806675][ T5073] BTRFS warning (device loop0): couldn't read tree root [ 51.814459][ T5073] assertion failed: !tmp, in fs/btrfs/disk-io.c:1175 [ 51.821288][ T5073] ------------[ cut here ]------------ [ 51.826816][ T5073] kernel BUG at fs/btrfs/messages.c:259! [ 51.832583][ T5073] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 51.838636][ T5073] CPU: 0 PID: 5073 Comm: syz-executor414 Not tainted 6.1.0-syzkaller-11674-g84e57d292203 #0 [ 51.848676][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 51.858985][ T5073] RIP: 0010:btrfs_assertfail+0x16/0x20 [ 51.864446][ T5073] Code: 8b e8 7e d5 00 00 e8 d9 6a 01 00 66 0f 1f 84 00 00 00 00 00 89 d1 48 89 f2 48 89 fe 48 c7 c7 80 22 3c 8b 31 c0 e8 2a 66 ff ff <0f> 0b 0f 1f 84 00 00 00 00 00 53 48 89 fb e8 27 4e eb f6 48 89 df [ 51.884035][ T5073] RSP: 0018:ffffc90003cff430 EFLAGS: 00010246 [ 51.890087][ T5073] RAX: 0000000000000032 RBX: 0000000000000000 RCX: 5f6997cac0f58000 [ 51.898045][ T5073] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 51.906002][ T5073] RBP: ffff88802a9e40a0 R08: ffffffff816f274d R09: fffff5200079fe3d [ 51.914137][ T5073] R10: fffff5200079fe3d R11: 1ffff9200079fe3c R12: ffff888079e56000 [ 51.922097][ T5073] R13: ffff888079e561f7 R14: dffffc0000000000 R15: ffff888149d58000 [ 51.930052][ T5073] FS: 0000555556b29300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 51.938966][ T5073] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 51.945547][ T5073] CR2: 00007f85185786a8 CR3: 0000000021830000 CR4: 00000000003506f0 [ 51.954737][ T5073] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 51.962706][ T5073] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 51.970666][ T5073] Call Trace: [ 51.973937][ T5073] [ 51.976857][ T5073] btrfs_global_root_insert+0x1ae/0x1c0 [ 51.982394][ T5073] load_global_roots_objectid+0x482/0x8c0 [ 51.988105][ T5073] ? folio_detach_private+0x3c0/0x3c0 [ 51.993466][ T5073] ? trace_kmem_cache_alloc+0x30/0xe0 [ 51.998821][ T5073] ? kmem_cache_alloc+0x20a/0x350 [ 52.003832][ T5073] ? init_tree_roots+0xa0b/0x1ee0 [ 52.008843][ T5073] init_tree_roots+0xa2a/0x1ee0 [ 52.013684][ T5073] ? open_ctree+0x2ea0/0x2ea0 [ 52.018345][ T5073] ? free_fs_devices+0x2c0/0x2c0 [ 52.023270][ T5073] ? memcpy+0x3c/0x60 [ 52.027239][ T5073] ? read_extent_buffer+0x228/0x2e0 [ 52.032425][ T5073] open_ctree+0x1ab8/0x2ea0 [ 52.036921][ T5073] ? btrfs_ctree_exit+0x20/0x20 [ 52.041754][ T5073] ? vscnprintf+0x80/0x80 [ 52.046098][ T5073] btrfs_fill_super+0x1c6/0x2d0 [ 52.050943][ T5073] btrfs_mount_root+0x885/0x9a0 [ 52.055783][ T5073] ? btrfs_control_open+0x40/0x40 [ 52.060791][ T5073] ? trace_kfree+0x30/0xe0 [ 52.065191][ T5073] ? kfree+0x16/0xe0 [ 52.069073][ T5073] ? vfs_parse_fs_string+0x1ca/0x280 [ 52.074343][ T5073] ? legacy_init_fs_context+0x4d/0xb0 [ 52.079706][ T5073] ? vfs_parse_fs_param+0x410/0x410 [ 52.084889][ T5073] legacy_get_tree+0xea/0x180 [ 52.089551][ T5073] ? btrfs_control_open+0x40/0x40 [ 52.094563][ T5073] vfs_get_tree+0x88/0x270 [ 52.098963][ T5073] vfs_kern_mount+0xc9/0x160 [ 52.103546][ T5073] btrfs_mount+0x3d3/0xbc0 [ 52.107951][ T5073] ? btrfs_clear_sb_rdonly+0x70/0x70 [ 52.113220][ T5073] ? rcu_read_lock_sched_held+0x87/0x110 [ 52.118839][ T5073] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 52.124822][ T5073] ? aa_get_newest_label+0xf4/0x640 [ 52.130006][ T5073] ? vfs_parse_fs_string+0x1ca/0x280 [ 52.135273][ T5073] ? trace_kfree+0x30/0xe0 [ 52.139675][ T5073] ? vfs_parse_fs_string+0x1ca/0x280 [ 52.144950][ T5073] legacy_get_tree+0xea/0x180 [ 52.149611][ T5073] ? btrfs_clear_sb_rdonly+0x70/0x70 [ 52.154885][ T5073] vfs_get_tree+0x88/0x270 [ 52.159285][ T5073] do_new_mount+0x289/0xad0 [ 52.163775][ T5073] ? do_move_mount_old+0x150/0x150 [ 52.168904][ T5073] ? user_path_at_empty+0x149/0x1a0 [ 52.174091][ T5073] __se_sys_mount+0x2d3/0x3c0 [ 52.178753][ T5073] ? __x64_sys_mount+0xc0/0xc0 [ 52.183501][ T5073] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 52.189466][ T5073] ? __x64_sys_mount+0x1c/0xc0 [ 52.194215][ T5073] do_syscall_64+0x3d/0xb0 [ 52.198623][ T5073] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 52.204504][ T5073] RIP: 0033:0x7f3348fe1c4a [ 52.208908][ T5073] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 52.228670][ T5073] RSP: 002b:00007ffffbfa7798 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 52.237068][ T5073] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f3348fe1c4a [ 52.245023][ T5073] RDX: 00000000200055c0 RSI: 0000000020005600 RDI: 00007ffffbfa77b0 [ 52.252982][ T5073] RBP: 00007ffffbfa77b0 R08: 00007ffffbfa77f0 R09: 00000000000055bc [ 52.260935][ T5073] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000004 [ 52.268888][ T5073] R13: 0000555556b292c0 R14: 0000000000000000 R15: 00007ffffbfa77f0 [ 52.276850][ T5073] [ 52.279850][ T5073] Modules linked in: [ 52.284107][ T5073] ---[ end trace 0000000000000000 ]--- [ 52.289567][ T5073] RIP: 0010:btrfs_assertfail+0x16/0x20 [ 52.295059][ T5073] Code: 8b e8 7e d5 00 00 e8 d9 6a 01 00 66 0f 1f 84 00 00 00 00 00 89 d1 48 89 f2 48 89 fe 48 c7 c7 80 22 3c 8b 31 c0 e8 2a 66 ff ff <0f> 0b 0f 1f 84 00 00 00 00 00 53 48 89 fb e8 27 4e eb f6 48 89 df [ 52.314777][ T5073] RSP: 0018:ffffc90003cff430 EFLAGS: 00010246 [ 52.320919][ T5073] RAX: 0000000000000032 RBX: 0000000000000000 RCX: 5f6997cac0f58000 [ 52.328921][ T5073] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 52.336907][ T5073] RBP: ffff88802a9e40a0 R08: ffffffff816f274d R09: fffff5200079fe3d [ 52.344884][ T5073] R10: fffff5200079fe3d R11: 1ffff9200079fe3c R12: ffff888079e56000 [ 52.352882][ T5073] R13: ffff888079e561f7 R14: dffffc0000000000 R15: ffff888149d58000 [ 52.360933][ T5073] FS: 0000555556b29300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 52.369875][ T5073] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 52.376477][ T5073] CR2: 00005565aaa89960 CR3: 0000000021830000 CR4: 00000000003506e0 [ 52.384465][ T5073] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 52.392439][ T5073] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 52.400586][ T5073] Kernel panic - not syncing: Fatal exception [ 52.406826][ T5073] Kernel Offset: disabled [ 52.411139][ T5073] Rebooting in 86400 seconds..