Warning: Permanently added '[localhost]:33178' (ED25519) to the list of known hosts.
2025/10/17 15:58:52 parsed 1 programs
syzkaller login: [   83.742326][ T5316] cgroup: Unknown subsys name 'net'
[   83.813014][ T5316] cgroup: Unknown subsys name 'cpuset'
[   83.818365][ T5316] cgroup: Unknown subsys name 'rlimit'
[   85.395191][ T5316] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   89.923564][ T5331] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   90.763752][ T5342] chnl_net:caif_netlink_parms(): no params data found
[   90.903713][ T5342] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.907274][ T5342] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.910851][ T5342] bridge_slave_0: entered allmulticast mode
[   90.921413][ T5342] bridge_slave_0: entered promiscuous mode
[   90.930644][ T5342] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.933643][ T5342] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.936677][ T5342] bridge_slave_1: entered allmulticast mode
[   90.950703][ T5342] bridge_slave_1: entered promiscuous mode
[   91.001798][ T5342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.008178][ T5342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.061270][ T5342] team0: Port device team_slave_0 added
[   91.080353][ T5342] team0: Port device team_slave_1 added
[   91.123598][ T5342] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.126670][ T5342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.149306][ T5342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.169834][ T5342] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.172976][ T5342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.199287][ T5342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.264524][ T5342] hsr_slave_0: entered promiscuous mode
[   91.267618][ T5342] hsr_slave_1: entered promiscuous mode
[   91.482152][ T5342] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   91.491299][ T5342] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   91.498209][ T5342] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   91.505413][ T5342] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   91.583011][ T5342] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.597819][ T5342] 8021q: adding VLAN 0 to HW filter on device team0
[   91.606161][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.609145][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.651109][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.654149][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.891691][   T10] cfg80211: failed to load regulatory.db
[   91.945343][ T5342] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.012027][ T5342] veth0_vlan: entered promiscuous mode
[   92.033000][ T5342] veth1_vlan: entered promiscuous mode
[   92.063777][ T5342] veth0_macvtap: entered promiscuous mode
[   92.071101][ T5342] veth1_macvtap: entered promiscuous mode
[   92.087986][ T5342] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.098046][ T5342] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.114131][   T43] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.118287][   T43] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.131816][   T43] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.135626][   T43] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.305682][ T5342] syz-executor (5342) used greatest stack depth: 19464 bytes left
[   92.322871][ T1038] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.370430][ T1038] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.423245][ T1038] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.468479][ T1038] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.620836][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   92.624995][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   92.628493][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   92.632705][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   92.636005][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   94.760426][ T1038] bridge_slave_1: left allmulticast mode
[   94.763019][ T1038] bridge_slave_1: left promiscuous mode
[   94.765951][ T1038] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.810935][ T1038] bridge_slave_0: left allmulticast mode
[   94.813416][ T1038] bridge_slave_0: left promiscuous mode
[   94.816539][ T1038] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.691064][ T1038] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   95.696502][ T1038] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   95.701351][ T1038] bond0 (unregistering): Released all slaves
[   95.835503][ T1038] hsr_slave_0: left promiscuous mode
[   95.850408][ T1038] hsr_slave_1: left promiscuous mode
[   95.865479][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   95.868697][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_0
[   95.889322][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.892618][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_1
[   96.006707][ T1038] veth1_macvtap: left promiscuous mode
[   96.014937][ T1038] veth0_macvtap: left promiscuous mode
[   96.017425][ T1038] veth1_vlan: left promiscuous mode
[   96.032261][ T1038] veth0_vlan: left promiscuous mode
[   96.491277][ T1038] team0 (unregistering): Port device team_slave_1 removed
[   96.512870][ T1038] team0 (unregistering): Port device team_slave_0 removed
[   96.962208][   T43] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.965599][   T43] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.059631][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.062849][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/17 15:59:12 executed programs: 0
[  100.898209][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.902496][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.905970][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.910085][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.913970][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  101.136010][ T5460] chnl_net:caif_netlink_parms(): no params data found
[  101.201860][ T5460] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.205171][ T5460] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.208406][ T5460] bridge_slave_0: entered allmulticast mode
[  101.213026][ T5460] bridge_slave_0: entered promiscuous mode
[  101.217665][ T5460] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.221354][ T5460] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.224451][ T5460] bridge_slave_1: entered allmulticast mode
[  101.228060][ T5460] bridge_slave_1: entered promiscuous mode
[  101.249240][ T5460] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.255292][ T5460] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.277231][ T5460] team0: Port device team_slave_0 added
[  101.281761][ T5460] team0: Port device team_slave_1 added
[  101.302179][ T5460] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.305229][ T5460] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  101.316377][ T5460] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.322814][ T5460] batman_adv: batadv0: Adding interface: batadv_slave_1
[  101.325828][ T5460] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  101.337311][ T5460] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  101.371182][ T5460] hsr_slave_0: entered promiscuous mode
[  101.374406][ T5460] hsr_slave_1: entered promiscuous mode
[  101.820046][ T5460] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  101.841194][ T5460] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  101.847265][ T5460] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  101.861972][ T5460] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  101.909989][ T5460] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.913336][ T5460] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.917175][ T5460] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.920230][ T5460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.061384][ T5460] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.083119][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.086845][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.114220][ T5460] 8021q: adding VLAN 0 to HW filter on device team0
[  102.124250][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.127300][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.155945][ T1038] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.159139][ T1038] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.226903][ T5460] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  102.501775][ T5460] 8021q: adding VLAN 0 to HW filter on device batadv0
[  102.572518][ T5460] veth0_vlan: entered promiscuous mode
[  102.593176][ T5460] veth1_vlan: entered promiscuous mode
[  102.644939][ T5460] veth0_macvtap: entered promiscuous mode
[  102.661060][ T5460] veth1_macvtap: entered promiscuous mode
[  102.703354][ T5460] batman_adv: batadv0: Interface activated: batadv_slave_0
[  102.720445][ T5460] batman_adv: batadv0: Interface activated: batadv_slave_1
[  102.733664][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.737539][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.749991][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.753955][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.862398][   T43] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.865477][   T43] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.914614][   T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.918700][   T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.008183][ T4672] Bluetooth: hci0: command tx timeout
[  103.426402][ T5503] loop0: detected capacity change from 0 to 32768
[  103.453618][ T5503] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.17 (5503)
[  103.510294][ T5503] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  103.514545][ T5503] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  103.764002][ T5503] BTRFS info (device loop0): enabling ssd optimizations
[  103.766655][ T5503] BTRFS info (device loop0): turning on async discard
[  103.792645][ T5503] BTRFS info (device loop0): enabling free space tree
[  104.032579][ T5460] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  104.824606][ T5533] loop0: detected capacity change from 0 to 32768
[  104.845477][ T5533] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.18 (5533)
[  104.888467][ T5533] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  104.902648][ T5533] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  104.944115][ T5533] BTRFS info (device loop0): enabling ssd optimizations
[  104.946921][ T5533] BTRFS info (device loop0): turning on async discard
[  104.959052][ T5533] BTRFS info (device loop0): enabling free space tree
[  105.009921][ T5460] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  105.078980][ T4672] Bluetooth: hci0: command tx timeout
[  105.400603][ T5557] loop0: detected capacity change from 0 to 32768
[  105.411782][ T5557] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.19 (5557)
[  105.435465][ T5557] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  105.444856][ T5557] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  105.484849][ T5557] BTRFS info (device loop0): enabling ssd optimizations
[  105.487918][ T5557] BTRFS info (device loop0): turning on async discard
[  105.499814][ T5557] BTRFS info (device loop0): enabling free space tree
[  105.551999][ T5460] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  106.022871][ T5574] loop0: detected capacity change from 0 to 32768
[  106.042849][ T5574] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.20 (5574)
[  106.087075][ T5574] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  106.103234][ T5574] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  106.170201][ T5574] BTRFS info (device loop0): enabling ssd optimizations
[  106.172834][ T5574] BTRFS info (device loop0): turning on async discard
[  106.180784][ T5574] BTRFS info (device loop0): enabling free space tree
[  106.194972][ T5574] FAULT_INJECTION: forcing a failure.
[  106.194972][ T5574] name failslab, interval 1, probability 0, space 0, times 0
[  106.209816][ T5574] CPU: 0 UID: 0 PID: 5574 Comm: syz.0.20 Not tainted syzkaller #0 PREEMPT(full) 
[  106.209829][ T5574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.209834][ T5574] Call Trace:
[  106.209837][ T5574]  <TASK>
[  106.209843][ T5574]  dump_stack_lvl+0x189/0x250
[  106.209930][ T5574]  ? __pfx____ratelimit+0x10/0x10
[  106.209976][ T5574]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.209987][ T5574]  ? __pfx__printk+0x10/0x10
[  106.210011][ T5574]  ? __pfx___might_resched+0x10/0x10
[  106.210030][ T5574]  should_fail_ex+0x414/0x560
[  106.210078][ T5574]  should_failslab+0xa8/0x100
[  106.210091][ T5574]  kmem_cache_alloc_noprof+0x74/0x6e0
[  106.210129][ T5574]  ? set_extent_bit+0x1cb5/0x21a0
[  106.210140][ T5574]  ? add_delayed_ref+0x11a/0x1d80
[  106.210156][ T5574]  add_delayed_ref+0x11a/0x1d80
[  106.210178][ T5574]  ? __pfx_set_extent_bit+0x10/0x10
[  106.210201][ T5574]  btrfs_alloc_tree_block+0xcf8/0x1220
[  106.210228][ T5574]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  106.210249][ T5574]  ? read_extent_buffer+0x120/0x5e0
[  106.210265][ T5574]  btrfs_copy_root+0x4a2/0x1080
[  106.210291][ T5574]  ? __pfx_btrfs_copy_root+0x10/0x10
[  106.210314][ T5574]  create_pending_snapshot+0xc43/0x3280
[  106.210345][ T5574]  ? __pfx_create_pending_snapshot+0x10/0x10
[  106.210354][ T5574]  ? rcu_is_watching+0x15/0xb0
[  106.210371][ T5574]  ? trace_contention_end+0x39/0x120
[  106.210387][ T5574]  ? __mutex_lock+0x335/0x1350
[  106.210397][ T5574]  ? register_lock_class+0x51/0x320
[  106.210409][ T5574]  ? __lock_acquire+0xab9/0xd20
[  106.210417][ T5574]  ? btrfs_commit_transaction+0xedd/0x3950
[  106.210439][ T5574]  create_pending_snapshots+0x17c/0x1c0
[  106.210454][ T5574]  btrfs_commit_transaction+0xeea/0x3950
[  106.210486][ T5574]  ? btrfs_commit_transaction+0x161/0x3950
[  106.210510][ T5574]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  106.210522][ T5574]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  106.210533][ T5574]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  106.210543][ T5574]  ? do_raw_spin_unlock+0x4d/0x240
[  106.210559][ T5574]  ? record_root_in_trans+0x2ba/0x350
[  106.210579][ T5574]  ? btrfs_qgroup_convert_reserved_meta+0xe5/0xce0
[  106.210594][ T5574]  ? start_transaction+0x439/0x1620
[  106.210613][ T5574]  ? __pfx_btrfs_qgroup_convert_reserved_meta+0x10/0x10
[  106.210628][ T5574]  ? btrfs_record_root_in_trans+0x124/0x180
[  106.210646][ T5574]  create_snapshot+0x6bc/0xba0
[  106.210667][ T5574]  btrfs_mksubvol+0x545/0x6d0
[  106.210685][ T5574]  ? __pfx_btrfs_mksubvol+0x10/0x10
[  106.210700][ T5574]  ? mnt_get_write_access+0x213/0x280
[  106.210716][ T5574]  btrfs_mksnapshot+0xab/0xf0
[  106.210732][ T5574]  __btrfs_ioctl_snap_create+0x520/0x730
[  106.210749][ T5574]  ? __pfx___btrfs_ioctl_snap_create+0x10/0x10
[  106.210761][ T5574]  ? rep_movs_alternative+0x4a/0x90
[  106.210776][ T5574]  ? _copy_from_user+0x94/0xb0
[  106.210791][ T5574]  btrfs_ioctl_snap_create_v2+0x1f8/0x3b0
[  106.210808][ T5574]  ? ksys_write+0x1e1/0x250
[  106.210827][ T5574]  btrfs_ioctl+0xa62/0xd00
[  106.210842][ T5574]  ? __pfx_btrfs_ioctl+0x10/0x10
[  106.210856][ T5574]  __se_sys_ioctl+0xfc/0x170
[  106.210873][ T5574]  do_syscall_64+0xfa/0xfa0
[  106.210883][ T5574]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.210899][ T5574]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.210909][ T5574]  ? clear_bhb_loop+0x60/0xb0
[  106.210920][ T5574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.210926][ T5574] RIP: 0033:0x7fecc518efc9
[  106.210935][ T5574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.210941][ T5574] RSP: 002b:00007ffcc8c55948 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  106.210949][ T5574] RAX: ffffffffffffffda RBX: 00007fecc53e5fa0 RCX: 00007fecc518efc9
[  106.210954][ T5574] RDX: 0000200000002480 RSI: 0000000050009417 RDI: 0000000000000004
[  106.210959][ T5574] RBP: 00007ffcc8c559a0 R08: 0000000000000000 R09: 0000000000000000
[  106.210963][ T5574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  106.210967][ T5574] R13: 00007fecc53e5fa0 R14: 00007fecc53e5fa0 R15: 0000000000000003
[  106.210979][ T5574]  </TASK>
[  106.212006][ T5574] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  106.500337][ T5574] BTRFS: error (device loop0 state A) in create_pending_snapshot:1800: errno=-12 Out of memory
[  106.504646][ T5574] BTRFS info (device loop0 state EA): forced readonly
[  106.507621][ T5574] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  106.525710][ T5574] BTRFS: error (device loop0 state EA) in cleanup_transaction:2020: errno=-12 Out of memory
[  106.551222][ T5460] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  106.576572][ T5460] ------------[ cut here ]------------
[  106.579353][ T5460] WARNING: CPU: 0 PID: 5460 at fs/btrfs/space-info.h:265 btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  106.584076][ T5460] Modules linked in:
[  106.586239][ T5460] CPU: 0 UID: 0 PID: 5460 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  106.591005][ T5460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.594780][ T5460] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  106.597508][ T5460] Code: 00 00 74 08 4c 89 ff e8 c4 13 35 fe 4d 8b 27 4c 89 e7 48 8b 6c 24 18 48 89 ee e8 31 dc cd fd 49 39 ec 73 1c e8 c7 d9 cd fd 90 <0f> 0b 90 31 db 43 80 7c 35 00 00 0f 85 2e ff ff ff e9 31 ff ff ff
[  106.605561][ T5460] RSP: 0018:ffffc90002157a10 EFLAGS: 00010293
[  106.608086][ T5460] RAX: ffffffff83f279c9 RBX: ffffffffffea0000 RCX: ffff88800039c900
[  106.611724][ T5460] RDX: 0000000000000000 RSI: 0000000000160000 RDI: 000000000015f000
[  106.614682][ T5460] RBP: 0000000000160000 R08: ffffffff8f9e3e77 R09: 1ffffffff1f3c7ce
[  106.617331][ T5460] R10: dffffc0000000000 R11: fffffbfff1f3c7cf R12: 000000000015f000
[  106.620181][ T5460] R13: 1ffff110066caf10 R14: dffffc0000000000 R15: ffff888033657880
[  106.622834][ T5460] FS:  00005555867f5500(0000) GS:ffff88808d300000(0000) knlGS:0000000000000000
[  106.626450][ T5460] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  106.629393][ T5460] CR2: 000055737b02c5f8 CR3: 000000004206c000 CR4: 0000000000352ef0
[  106.632794][ T5460] Call Trace:
[  106.634289][ T5460]  <TASK>
[  106.635611][ T5460]  btrfs_block_rsv_release+0x4b3/0x5e0
[  106.638039][ T5460]  btrfs_release_global_block_rsv+0x33/0x270
[  106.640724][ T5460]  btrfs_free_block_groups+0xc2c/0xf40
[  106.642983][ T5460]  close_ctree+0x7bc/0x1380
[  106.644928][ T5460]  ? rcu_is_watching+0x15/0xb0
[  106.646870][ T5460]  ? __pfx_close_ctree+0x10/0x10
[  106.649190][ T5460]  ? rcu_read_unlock_special+0x3a2/0x4b0
[  106.651609][ T5460]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  106.654071][ T5460]  ? __rcu_read_unlock+0x84/0xe0
[  106.656119][ T5460]  ? btrfs_put_super+0x48/0x1b0
[  106.658585][ T5460]  ? __pfx_btrfs_put_super+0x10/0x10
[  106.661250][ T5460]  generic_shutdown_super+0x135/0x2c0
[  106.663581][ T5460]  kill_anon_super+0x3b/0x70
[  106.665581][ T5460]  btrfs_kill_super+0x41/0x50
[  106.667502][ T5460]  deactivate_locked_super+0xbc/0x130
[  106.669858][ T5460]  cleanup_mnt+0x425/0x4c0
[  106.671787][ T5460]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.673925][ T5460]  task_work_run+0x1d4/0x260
[  106.675897][ T5460]  ? __pfx_task_work_run+0x10/0x10
[  106.678126][ T5460]  ? __x64_sys_umount+0x122/0x160
[  106.680345][ T5460]  ? exit_to_user_mode_loop+0x40/0x130
[  106.682655][ T5460]  exit_to_user_mode_loop+0xe9/0x130
[  106.684962][ T5460]  do_syscall_64+0x2bd/0xfa0
[  106.686982][ T5460]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.689214][ T5460]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.691763][ T5460]  ? clear_bhb_loop+0x60/0xb0
[  106.693728][ T5460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.696306][ T5460] RIP: 0033:0x7fecc51902f7
[  106.698392][ T5460] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  106.707113][ T5460] RSP: 002b:00007ffcc8c54b28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  106.710735][ T5460] RAX: 0000000000000000 RBX: 00007fecc5211d7d RCX: 00007fecc51902f7
[  106.713809][ T5460] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcc8c54be0
[  106.717141][ T5460] RBP: 00007ffcc8c54be0 R08: 0000000000000000 R09: 0000000000000000
[  106.720564][ T5460] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcc8c55c70
[  106.723882][ T5460] R13: 00007fecc5211d7d R14: 0000000000019f89 R15: 00007ffcc8c55cb0
[  106.727286][ T5460]  </TASK>
[  106.728644][ T5460] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  106.731747][ T5460] CPU: 0 UID: 0 PID: 5460 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  106.735690][ T5460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.740204][ T5460] Call Trace:
[  106.741635][ T5460]  <TASK>
[  106.743014][ T5460]  dump_stack_lvl+0x99/0x250
[  106.745048][ T5460]  ? __asan_memcpy+0x40/0x70
[  106.746982][ T5460]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.749143][ T5460]  ? __pfx__printk+0x10/0x10
[  106.751222][ T5460]  vpanic+0x237/0x6d0
[  106.752924][ T5460]  ? __pfx_vpanic+0x10/0x10
[  106.754783][ T5460]  panic+0xb9/0xc0
[  106.756285][ T5460]  ? __pfx_panic+0x10/0x10
[  106.758284][ T5460]  __warn+0x31b/0x4b0
[  106.760073][ T5460]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  106.762842][ T5460]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  106.765564][ T5460]  report_bug+0x2be/0x4f0
[  106.767495][ T5460]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  106.770447][ T5460]  ? btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  106.773237][ T5460]  ? btrfs_space_info_update_bytes_may_use+0x35c/0x640
[  106.776255][ T5460]  handle_bug+0x84/0x160
[  106.777878][ T5460]  exc_invalid_op+0x1a/0x50
[  106.779865][ T5460]  asm_exc_invalid_op+0x1a/0x20
[  106.781930][ T5460] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x35a/0x640
[  106.785174][ T5460] Code: 00 00 74 08 4c 89 ff e8 c4 13 35 fe 4d 8b 27 4c 89 e7 48 8b 6c 24 18 48 89 ee e8 31 dc cd fd 49 39 ec 73 1c e8 c7 d9 cd fd 90 <0f> 0b 90 31 db 43 80 7c 35 00 00 0f 85 2e ff ff ff e9 31 ff ff ff
[  106.793302][ T5460] RSP: 0018:ffffc90002157a10 EFLAGS: 00010293
[  106.796094][ T5460] RAX: ffffffff83f279c9 RBX: ffffffffffea0000 RCX: ffff88800039c900
[  106.799754][ T5460] RDX: 0000000000000000 RSI: 0000000000160000 RDI: 000000000015f000
[  106.804023][ T5460] RBP: 0000000000160000 R08: ffffffff8f9e3e77 R09: 1ffffffff1f3c7ce
[  106.807860][ T5460] R10: dffffc0000000000 R11: fffffbfff1f3c7cf R12: 000000000015f000
[  106.812321][ T5460] R13: 1ffff110066caf10 R14: dffffc0000000000 R15: ffff888033657880
[  106.816596][ T5460]  ? btrfs_space_info_update_bytes_may_use+0x359/0x640
[  106.819679][ T5460]  btrfs_block_rsv_release+0x4b3/0x5e0
[  106.822277][ T5460]  btrfs_release_global_block_rsv+0x33/0x270
[  106.824779][ T5460]  btrfs_free_block_groups+0xc2c/0xf40
[  106.827134][ T5460]  close_ctree+0x7bc/0x1380
[  106.829124][ T5460]  ? rcu_is_watching+0x15/0xb0
[  106.831195][ T5460]  ? __pfx_close_ctree+0x10/0x10
[  106.833373][ T5460]  ? rcu_read_unlock_special+0x3a2/0x4b0
[  106.835901][ T5460]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  106.838533][ T5460]  ? __rcu_read_unlock+0x84/0xe0
[  106.840954][ T5460]  ? btrfs_put_super+0x48/0x1b0
[  106.843011][ T5460]  ? __pfx_btrfs_put_super+0x10/0x10
[  106.845290][ T5460]  generic_shutdown_super+0x135/0x2c0
[  106.847725][ T5460]  kill_anon_super+0x3b/0x70
[  106.850173][ T5460]  btrfs_kill_super+0x41/0x50
[  106.852401][ T5460]  deactivate_locked_super+0xbc/0x130
[  106.854681][ T5460]  cleanup_mnt+0x425/0x4c0
[  106.856672][ T5460]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.859067][ T5460]  task_work_run+0x1d4/0x260
[  106.860921][ T5460]  ? __pfx_task_work_run+0x10/0x10
[  106.863300][ T5460]  ? __x64_sys_umount+0x122/0x160
[  106.865730][ T5460]  ? exit_to_user_mode_loop+0x40/0x130
[  106.868459][ T5460]  exit_to_user_mode_loop+0xe9/0x130
[  106.871305][ T5460]  do_syscall_64+0x2bd/0xfa0
[  106.873802][ T5460]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.876111][ T5460]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.878737][ T5460]  ? clear_bhb_loop+0x60/0xb0
[  106.880773][ T5460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.883337][ T5460] RIP: 0033:0x7fecc51902f7
[  106.885189][ T5460] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  106.892317][ T5460] RSP: 002b:00007ffcc8c54b28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  106.895631][ T5460] RAX: 0000000000000000 RBX: 00007fecc5211d7d RCX: 00007fecc51902f7
[  106.898930][ T5460] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcc8c54be0
[  106.902064][ T5460] RBP: 00007ffcc8c54be0 R08: 0000000000000000 R09: 0000000000000000
[  106.905681][ T5460] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcc8c55c70
[  106.908981][ T5460] R13: 00007fecc5211d7d R14: 0000000000019f89 R15: 00007ffcc8c55cb0
[  106.912095][ T5460]  </TASK>
[  106.913574][ T5460] Kernel Offset: disabled
[  106.915238][ T5460] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:59:18  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000031 RBX=0000000000000031 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900021571b0
R8 =ffff888033b98237 R9 =1ffff11006773046 R10=dffffc0000000000 R11=ffffffff851e0ad0
R12=dffffc0000000000 R13=ffffffff99a148e4 R14=ffffffff99d283e0 R15=0000000000000000
RIP=ffffffff851e0b4c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555867f5500 ffffffff 00c00000
GS =0000 ffff88808d300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055737b02c5f8 CR3=000000004206c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002000080 Opmask01=0000000004101011 Opmask02=00000000103fffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 92b26d9bf5c2d405 59805aac2d4b8b4a
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f6be9cff1ac64321 9d42006b6a4e6204
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 19da65fdc59532b8 a1f9a522458f683b
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bf46e36a5be5f7aa a6785e4661317fd3
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000980
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000047 0000948e2fa210cc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004700000000 0000004700000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000002f9b8943 0000929d2f9152a2
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000962b2fab8685 000000470000b091
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 27e0cee90d54ec3e a1f576e8501efb0b
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 32cb824c13a88fe4 3e8196900a502059
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 333164626e2f6b63 6f6c622f6c617574 7269762f73656369 7665642f7379732f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055737b02b570 0000000000000211 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c636e69206c6c69 7720746920746168 74206f73202c6472 74696e6920656874
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000