./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1631044789 <...> Warning: Permanently added '10.128.1.34' (ED25519) to the list of known hosts. execve("./syz-executor1631044789", ["./syz-executor1631044789"], 0x7ffcc9822230 /* 10 vars */) = 0 brk(NULL) = 0x55558d3f8000 brk(0x55558d3f8d00) = 0x55558d3f8d00 arch_prctl(ARCH_SET_FS, 0x55558d3f8380) = 0 set_tid_address(0x55558d3f8650) = 5829 set_robust_list(0x55558d3f8660, 24) = 0 rseq(0x55558d3f8ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1631044789", 4096) = 28 getrandom("\xe8\x73\xf6\xc3\xe6\xe5\x33\x42", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558d3f8d00 brk(0x55558d419d00) = 0x55558d419d00 brk(0x55558d41a000) = 0x55558d41a000 mprotect(0x7f2bdf55c000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558d3f8650) = 5830 ./strace-static-x86_64: Process 5830 attached [pid 5830] set_robust_list(0x55558d3f8660, 24) = 0 [pid 5830] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5830] setpgid(0, 0) = 0 [pid 5830] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5830] write(3, "1000", 4) = 4 [pid 5830] close(3) = 0 executing program [pid 5830] write(1, "executing program\n", 18) = 18 [pid 5830] memfd_create("syzkaller", 0) = 3 [pid 5830] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2bd7000000 [pid 5830] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5830] munmap(0x7f2bd7000000, 138412032) = 0 [pid 5830] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5830] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5830] close(3) = 0 [pid 5830] close(4) = 0 [pid 5830] mkdir("./file0", 0777) = 0 [ 88.552885][ T5830] loop0: detected capacity change from 0 to 32768 [ 88.655461][ T5830] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names [ 88.655461][ T5830] allowing incompatible features above 0.0: (unknown version) [ 88.678445][ T5830] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 88.686726][ T5830] bcachefs (loop0): Version upgrade required: [ 88.686726][ T5830] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 88.686726][ T5830] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 88.686726][ T5830] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 88.765311][ T5830] bcachefs (loop0): bcachefs (loop0): error validating btree node at btree alloc level 0/0 [ 88.765330][ T5830] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 88.765342][ T5830] node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing [ 88.807199][ T5830] bcachefs (loop0): btree_node_read_work: rewriting btree node at due to error [ 88.807199][ T5830] btree=alloc level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 88.837170][ T5830] bcachefs (loop0): accounting_read... done [ 88.844055][ T5830] bcachefs (loop0): alloc_read... done [ 88.849995][ T5830] bcachefs (loop0): snapshots_read... done [ 88.856061][ T5830] bcachefs (loop0): check_allocations... [ 88.860756][ T5830] bcachefs (loop0): bucket 0:26 data type btree ptr gen 0 missing in alloc btree [ 88.860774][ T5830] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing [ 88.893788][ T5830] bcachefs (loop0): bucket 0:38 data type btree ptr gen 0 missing in alloc btree [ 88.893802][ T5830] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 88.920034][ T5830] bcachefs (loop0): bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 88.920048][ T5830] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 88.946789][ T5830] bcachefs (loop0): bucket 0:35 data type btree ptr gen 0 missing in alloc btree [ 88.946804][ T5830] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 88.974443][ T5830] bcachefs (loop0): bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 88.974458][ T5830] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 89.000321][ T5830] bcachefs (loop0): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.010317][ T5830] bcachefs (loop0): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.022472][ T5830] bcachefs (loop0): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.032501][ T5830] bcachefs (loop0): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.043986][ T5830] bcachefs (loop0): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.053959][ T5830] bcachefs (loop0): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.065354][ T5830] bcachefs (loop0): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.075295][ T5830] bcachefs (loop0): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.086929][ T5830] bcachefs (loop0): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.096865][ T5830] bcachefs (loop0): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.108246][ T5830] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.118182][ T5830] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.129737][ T5830] bcachefs (loop0): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.139720][ T5830] bcachefs (loop0): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.151059][ T5830] bcachefs (loop0): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.160980][ T5830] bcachefs (loop0): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 89.172129][ T5830] bcachefs (loop0): bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing [ 89.182487][ T5830] bcachefs (loop0): bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 89.194304][ T5830] bcachefs (loop0): bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.204557][ T5830] bcachefs (loop0): bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.216068][ T5830] bcachefs (loop0): bucket 0:17 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.226113][ T5830] bcachefs (loop0): bucket 0:17 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.237498][ T5830] bcachefs (loop0): bucket 0:18 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.247557][ T5830] bcachefs (loop0): bucket 0:18 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.259096][ T5830] bcachefs (loop0): bucket 0:19 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.269150][ T5830] bcachefs (loop0): bucket 0:19 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.280595][ T5830] bcachefs (loop0): bucket 0:20 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.290655][ T5830] bcachefs (loop0): bucket 0:20 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.302121][ T5830] bcachefs (loop0): bucket 0:21 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.312151][ T5830] bcachefs (loop0): bucket 0:21 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.323660][ T5830] bcachefs (loop0): bucket 0:22 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.333704][ T5830] bcachefs (loop0): bucket 0:22 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.345171][ T5830] bcachefs (loop0): bucket 0:23 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.355234][ T5830] bcachefs (loop0): bucket 0:23 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.366879][ T5830] bcachefs (loop0): bucket 0:24 gen 0 has wrong data_type: got free, should be journal, fixing [ 89.377493][ T5830] bcachefs (loop0): bucket 0:24 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 89.389554][ T5830] bcachefs (loop0): bucket 0:26 gen 0 has wrong data_type: got free, should be btree, fixing [ 89.399960][ T5830] bcachefs (loop0): bucket 0:26 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 89.411688][ T5830] bcachefs (loop0): bucket 0:29 gen 0 has wrong data_type: got free, should be btree, fixing [ 89.421992][ T5830] bcachefs (loop0): bucket 0:29 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 89.433705][ T5830] bcachefs (loop0): bucket 0:32 gen 0 has wrong data_type: got sb, should be btree, fixing [ 89.444017][ T5830] bcachefs (loop0): bucket 0:35 gen 0 has wrong data_type: got free, should be btree, fixing [ 89.454346][ T5830] bcachefs (loop0): bucket 0:35 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 89.466046][ T5830] bcachefs (loop0): bucket 0:38 gen 0 has wrong data_type: got free, should be btree, fixing [ 89.476434][ T5830] bcachefs (loop0): bucket 0:38 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 89.488148][ T5830] bcachefs (loop0): bucket 0:41 gen 0 has wrong data_type: got free, should be btree, fixing [ 89.498439][ T5830] bcachefs (loop0): bucket 0:41 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 89.510752][ T5830] bcachefs (loop0): bucket 0:120 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.520953][ T5830] bcachefs (loop0): bucket 0:120 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.532537][ T5830] bcachefs (loop0): bucket 0:121 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.542702][ T5830] bcachefs (loop0): bucket 0:121 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.554303][ T5830] bcachefs (loop0): bucket 0:122 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.564456][ T5830] bcachefs (loop0): bucket 0:122 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.576006][ T5830] bcachefs (loop0): bucket 0:123 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.586125][ T5830] bcachefs (loop0): bucket 0:123 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.597654][ T5830] bcachefs (loop0): bucket 0:124 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.607890][ T5830] bcachefs (loop0): bucket 0:124 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.619449][ T5830] bcachefs (loop0): bucket 0:125 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.629584][ T5830] bcachefs (loop0): bucket 0:125 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.641125][ T5830] bcachefs (loop0): bucket 0:126 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.651321][ T5830] bcachefs (loop0): bucket 0:126 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.662868][ T5830] bcachefs (loop0): bucket 0:127 gen 0 has wrong data_type: got free, should be sb, fixing [ 89.673044][ T5830] bcachefs (loop0): bucket 0:127 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 89.686603][ T5830] done [ 89.692062][ T5830] bcachefs (loop0): going read-write [ 89.700400][ T5830] bcachefs (loop0): journal_replay... done [ 89.737629][ T5830] bcachefs (loop0): check_alloc_info... [ 89.739010][ T5830] bcachefs (loop0): hole in alloc btree missing in freespace btree [ 89.739027][ T5830] device 0 buckets 10-16, fixing [ 89.763596][ T5830] done [ 89.768168][ T5830] bcachefs (loop0): check_lrus... done [ 89.775827][ T5830] bcachefs (loop0): check_btree_backpointers... done [ 89.783931][ T5830] bcachefs (loop0): check_backpointers_to_extents... done [ 89.794377][ T5830] bcachefs (loop0): check_extents_to_backpointers... [ 89.795513][ T5830] bcachefs (loop0): scanning for missing backpointers in 5/128 buckets [ 89.811919][ T5830] done [ 89.816356][ T5830] bcachefs (loop0): check_alloc_to_lru_refs... done [ 89.824963][ T5830] bcachefs (loop0): bucket_gens_init... done [ 89.837792][ T5830] bcachefs (loop0): check_snapshot_trees... done [ 89.845890][ T5830] bcachefs (loop0): check_snapshots... [ 89.846420][ T5830] bcachefs (loop0): snapshot points to missing/incorrect tree: [ 89.846433][ T5830] u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: is_subvol 1 deleted 0 parent 0 children 0 0 subvol 1 tree 0, fixing [ 89.875507][ T5830] bcachefs (loop0): snapshot points to missing/incorrect tree: [ 89.875524][ T5830] u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: is_subvol 1 deleted 0 parent 0 children 0 0 subvol 1 tree 0, fixing [ 89.904314][ T5830] done [ 89.909382][ T5830] bcachefs (loop0): check_subvols... done [ 89.917152][ T5830] bcachefs (loop0): check_subvol_children... done [ 89.924738][ T5830] bcachefs (loop0): delete_dead_snapshots... done [ 89.932658][ T5830] bcachefs (loop0): check_inodes... done [ 89.941056][ T5830] bcachefs (loop0): check_extents... done [ 89.948567][ T5830] bcachefs (loop0): check_indirect_extents... done [ 89.956127][ T5830] bcachefs (loop0): check_dirents... done [ 89.965319][ T5830] bcachefs (loop0): check_xattrs... done [ 89.972516][ T5830] bcachefs (loop0): check_root... done [ 89.979286][ T5830] bcachefs (loop0): check_unreachable_inodes... done [ 89.987517][ T5830] bcachefs (loop0): check_subvolume_structure... done [ 89.995498][ T5830] bcachefs (loop0): check_directory_structure... done [ 90.003996][ T5830] bcachefs (loop0): check_nlinks... [ 90.004599][ T5830] bcachefs (loop0): inode 536870914 type reg has wrong i_nlink (2780562353, should be 1), fixing [ 90.020702][ T5830] done [ 90.025369][ T5830] bcachefs (loop0): resume_logged_ops... done [ 90.031559][ T5830] bcachefs (loop0): delete_dead_inodes... done [ 90.038264][ T5830] bcachefs (loop0): set_fs_needs_rebalance... [ 91.841502][ T9] cfg80211: failed to load regulatory.db [pid 5830] mount("/dev/loop0", "./file0", "bcachefs", MS_I_VERSION, "" [pid 5829] kill(-5830, SIGKILL) = 0 [pid 5829] kill(5830, SIGKILL) = 0 [pid 5829] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5829] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5829] getdents64(3, 0x55558d3f96f0 /* 2 entries */, 32768) = 48 [pid 5829] getdents64(3, 0x55558d3f96f0 /* 0 entries */, 32768) = 0 [pid 5829] close(3) = 0 [ 100.170254][ T5830] flags: replay_done,running,space_low [ 100.170276][ T5830] dirty journal entries: 0/32768 [ 100.170284][ T5830] seq: 26 [ 100.170291][ T5830] seq_ondisk: 26 [ 100.170298][ T5830] last_seq: 27 [ 100.170305][ T5830] last_seq_ondisk: 26 [ 100.170312][ T5830] flushed_seq_ondisk: 26 [ 100.170319][ T5830] watermark: reclaim [ 100.170326][ T5830] each entry reserved: 321 [ 100.170333][ T5830] nr flush writes: 16 [ 100.170340][ T5830] nr noflush writes: 0 [ 100.170347][ T5830] average write size: 1.93 KiB [ 100.170354][ T5830] free buf: 65536 [ 100.170361][ T5830] nr direct reclaim: 2 [ 100.170368][ T5830] nr background reclaim: 13 [ 100.170375][ T5830] reclaim kicked: 0 [ 100.170382][ T5830] reclaim runs in: 0 ms [ 100.170389][ T5830] blocked: 0 [ 100.170396][ T5830] current entry sectors: 120 [ 100.170403][ T5830] current entry error: (No error) [ 100.170410][ T5830] current entry: closed [ 100.170417][ T5830] unwritten entries: [ 100.170424][ T5830] last buf closed [ 100.170430][ T5830] space: [ 100.170436][ T5830] discarded 120:120 [ 100.170443][ T5830] clean ondisk 120:120 [ 100.170451][ T5830] clean 120:120 [ 100.170458][ T5830] total 256:512 [ 100.170465][ T5830] dev 0: [ 100.170471][ T5830] durability 1: [ 100.170477][ T5830] nr 2 [ 100.170484][ T5830] bucket size 256 [ 100.170491][ T5830] available 0:120 [ 100.170498][ T5830] discard_idx 0 [ 100.170505][ T5830] dirty_ondisk 0 (seq 26) [ 100.170512][ T5830] dirty_idx 0 (seq 26) [ 100.170519][ T5830] cur_idx 0 (seq 26) [ 100.170527][ T5830] replicas want 1 need 1 [ 286.401381][ T31] INFO: task syz-executor163:5830 blocked for more than 143 seconds. [ 286.409698][ T31] Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 [ 286.417362][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.426087][ T31] task:syz-executor163 state:D stack:11888 pid:5830 tgid:5830 ppid:5829 task_flags:0x400140 flags:0x00004006 [ 286.438128][ T31] Call Trace: [ 286.441444][ T31] [ 286.444372][ T31] __schedule+0x1b33/0x51f0 [ 286.448904][ T31] ? __journal_res_get+0x2395/0x2830 [ 286.454276][ T31] ? kasan_save_track+0x3f/0x80 [ 286.459153][ T31] ? vfs_get_tree+0x90/0x2b0 [ 286.463803][ T31] ? schedule+0x163/0x360 [ 286.468160][ T31] ? __pfx___schedule+0x10/0x10 [ 286.473069][ T31] ? schedule+0x90/0x360 [ 286.477328][ T31] ? schedule+0x90/0x360 [ 286.481625][ T31] schedule+0x163/0x360 [ 286.485812][ T31] ? __closure_sync+0x143/0x2a0 [ 286.490702][ T31] __closure_sync+0x1c0/0x2a0 [ 286.495421][ T31] ? __pfx___closure_sync+0x10/0x10 [ 286.500671][ T31] ? closure_wait+0xa4/0xf0 [ 286.505190][ T31] bch2_journal_res_get_slowpath+0xac3/0xc40 [ 286.511228][ T31] ? __pfx_bch2_journal_res_get_slowpath+0x10/0x10 [ 286.517754][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 286.523100][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 286.528409][ T31] ? lock_release+0x4e/0x3e0 [ 286.533046][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 286.538348][ T31] ? bch2_trans_unlock+0x3c1/0x490 [ 286.543520][ T31] bch2_trans_commit_error+0xf9f/0x1480 [ 286.549125][ T31] ? six_unlock_ip+0x2f8/0x440 [ 286.553958][ T31] ? __pfx_bch2_trans_commit_error+0x10/0x10 [ 286.559998][ T31] ? bch2_trans_verify_locks+0x33c/0x3c0 [ 286.565663][ T31] __bch2_trans_commit+0x8886/0x9da0 [ 286.571095][ T31] ? bch2_set_rebalance_needs_scan+0x99/0x3a0 [ 286.577191][ T31] ? __pfx___bch2_trans_commit+0x10/0x10 [ 286.582899][ T31] ? __bch2_trans_kmalloc+0x48a/0xb50 [ 286.588324][ T31] ? bch2_set_rebalance_needs_scan_trans+0x685/0xa90 [ 286.595055][ T31] ? __pfx_bch2_set_rebalance_needs_scan_trans+0x10/0x10 [ 286.602123][ T31] ? __pfx_bch2_trans_begin+0x10/0x10 [ 286.607514][ T31] ? bch2_set_rebalance_needs_scan_trans+0x1c2/0xa90 [ 286.614237][ T31] bch2_set_rebalance_needs_scan+0x99/0x3a0 [ 286.620181][ T31] bch2_run_recovery_pass+0xf0/0x1e0 [ 286.625499][ T31] bch2_run_recovery_passes+0x2ad/0xa90 [ 286.631116][ T31] bch2_fs_recovery+0x292a/0x3e20 [ 286.636178][ T31] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 286.641630][ T31] ? __lock_acquire+0xad5/0xd80 [ 286.646550][ T31] ? __lock_acquire+0xad5/0xd80 [ 286.651478][ T31] ? bch2_fs_start+0x279/0x620 [ 286.656283][ T31] ? up_write+0x1ab/0x590 [ 286.660647][ T31] ? bch2_get_next_online_dev+0x4ab/0x4e0 [ 286.666397][ T31] ? bch2_get_next_online_dev+0x2e/0x4e0 [ 286.672068][ T31] ? __pfx_up_write+0x10/0x10 [ 286.676760][ T31] ? llist_reverse_order+0x72/0x90 [ 286.681947][ T31] bch2_fs_start+0x310/0x620 [ 286.686561][ T31] bch2_fs_get_tree+0x113e/0x18f0 [ 286.691661][ T31] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 286.697082][ T31] ? vfs_parse_monolithic_sep+0x427/0x460 [ 286.702871][ T31] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 286.708533][ T31] ? rcu_is_watching+0x15/0xb0 [ 286.713380][ T31] ? cap_capable+0x139/0x450 [ 286.717991][ T31] ? safesetid_security_capable+0xb2/0x1d0 [ 286.723855][ T31] vfs_get_tree+0x90/0x2b0 [ 286.728313][ T31] do_new_mount+0x2cf/0xb70 [ 286.732875][ T31] ? __pfx_do_new_mount+0x10/0x10 [ 286.737936][ T31] __se_sys_mount+0x38c/0x400 [ 286.742675][ T31] ? __pfx___se_sys_mount+0x10/0x10 [ 286.747920][ T31] ? __x64_sys_mount+0x20/0xc0 [ 286.752740][ T31] do_syscall_64+0xf3/0x210 [ 286.757266][ T31] ? clear_bhb_loop+0x45/0xa0 [ 286.761997][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.767911][ T31] RIP: 0033:0x7f2bdf4e4e6a [ 286.772381][ T31] RSP: 002b:00007ffc6f127f38 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 286.780886][ T31] RAX: ffffffffffffffda RBX: 00007ffc6f127f50 RCX: 00007f2bdf4e4e6a [ 286.788874][ T31] RDX: 00002000000000c0 RSI: 0000200000000000 RDI: 00007ffc6f127f50 [ 286.796890][ T31] RBP: 0000200000000000 R08: 00007ffc6f127f90 R09: 000000000000591a [ 286.804901][ T31] R10: 0000000000800000 R11: 0000000000000282 R12: 00002000000000c0 [ 286.812935][ T31] R13: 00007ffc6f127f90 R14: 0000000000000003 R15: 0000000000800000 [ 286.821004][ T31] [ 286.824122][ T31] [ 286.824122][ T31] Showing all locks held in the system: [ 286.831884][ T31] 1 lock held by khungtaskd/31: [ 286.836756][ T31] #0: ffffffff8ed3df20 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x30/0x180 [ 286.846739][ T31] 2 locks held by getty/5586: [ 286.851477][ T31] #0: ffff8880305630a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 286.861297][ T31] #1: ffffc900036db2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x5bb/0x1700 [ 286.871583][ T31] 1 lock held by syz-executor163/5830: [ 286.877086][ T31] #0: ffff888059cde0e0 (&type->s_umount_key#42/1){+.+.}-{4:4}, at: alloc_super+0x221/0x9d0 [ 286.887272][ T31] [ 286.889641][ T31] ============================================= [ 286.889641][ T31] [ 286.898060][ T31] NMI backtrace for cpu 1 [ 286.898078][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 PREEMPT(full) [ 286.898095][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 286.898103][ T31] Call Trace: [ 286.898110][ T31] [ 286.898116][ T31] dump_stack_lvl+0x241/0x360 [ 286.898142][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 286.898180][ T31] ? __pfx__printk+0x10/0x10 [ 286.898208][ T31] nmi_cpu_backtrace+0x4ab/0x4e0 [ 286.898234][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 286.898253][ T31] ? _printk+0xd5/0x120 [ 286.898270][ T31] ? touch_all_softlockup_watchdogs+0x4a/0xf0 [ 286.898291][ T31] ? __wake_up_klogd+0xcc/0x110 [ 286.898309][ T31] ? __pfx__printk+0x10/0x10 [ 286.898328][ T31] ? debug_show_all_locks+0x30/0x180 [ 286.898349][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 286.898372][ T31] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 286.898396][ T31] watchdog+0x1058/0x10a0 [ 286.898415][ T31] ? watchdog+0x1ea/0x10a0 [ 286.898436][ T31] ? __pfx_watchdog+0x10/0x10 [ 286.898453][ T31] kthread+0x7b7/0x940 [ 286.898471][ T31] ? __pfx_watchdog+0x10/0x10 [ 286.898489][ T31] ? __pfx_kthread+0x10/0x10 [ 286.898503][ T31] ? __pfx_kthread+0x10/0x10 [ 286.898518][ T31] ? __pfx_kthread+0x10/0x10 [ 286.898533][ T31] ? __pfx_kthread+0x10/0x10 [ 286.898548][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.898568][ T31] ? lockdep_hardirqs_on+0x9d/0x150 [ 286.898582][ T31] ? __pfx_kthread+0x10/0x10 [ 286.898598][ T31] ret_from_fork+0x4b/0x80 [ 286.898610][ T31] ? __pfx_kthread+0x10/0x10 [ 286.898625][ T31] ret_from_fork_asm+0x1a/0x30 [ 286.898659][ T31] [ 286.898664][ T31] Sending NMI from CPU 1 to CPUs 0: [ 287.070397][ C0] NMI backtrace for cpu 0 [ 287.070415][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 PREEMPT(full) [ 287.070435][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 287.070446][ C0] RIP: 0010:pv_native_safe_halt+0x13/0x20 [ 287.070478][ C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 53 6e 20 00 f3 0f 1e fa fb f4 cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 [ 287.070492][ C0] RSP: 0018:ffffffff8ea07d60 EFLAGS: 000002c6 [ 287.070508][ C0] RAX: 0b6394481663ef00 RBX: ffffffff8197267e RCX: ffffffff8c27c89c [ 287.070521][ C0] RDX: 0000000000000001 RSI: ffffffff8e635648 RDI: ffffffff8ca0e280 [ 287.070533][ C0] RBP: ffffffff8ea07eb8 R08: ffff8880b8632b5b R09: 1ffff110170c656b [ 287.070545][ C0] R10: dffffc0000000000 R11: ffffed10170c656c R12: 1ffffffff1d40fc6 [ 287.070557][ C0] R13: 1ffffffff1d52cb0 R14: 0000000000000000 R15: dffffc0000000000 [ 287.070569][ C0] FS: 0000000000000000(0000) GS:ffff888124fcf000(0000) knlGS:0000000000000000 [ 287.070583][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.070594][ C0] CR2: 000055c02c477600 CR3: 000000000eb38000 CR4: 00000000003526f0 [ 287.070608][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.070618][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.070628][ C0] Call Trace: [ 287.070636][ C0] [ 287.070642][ C0] default_idle+0x13/0x20 [ 287.070661][ C0] default_idle_call+0x74/0xb0 [ 287.070680][ C0] do_idle+0x22e/0x5d0 [ 287.070705][ C0] ? __pfx___schedule+0x10/0x10 [ 287.070732][ C0] ? __pfx_do_idle+0x10/0x10 [ 287.070757][ C0] ? lockdep_hardirqs_on+0x9d/0x150 [ 287.070773][ C0] ? _raw_spin_unlock_irqrestore+0xde/0x140 [ 287.070798][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 287.070825][ C0] ? rest_init+0x31/0x300 [ 287.070844][ C0] ? rest_init+0x31/0x300 [ 287.070863][ C0] cpu_startup_entry+0x42/0x60 [ 287.070887][ C0] rest_init+0x2dc/0x300 [ 287.070907][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 287.070925][ C0] start_kernel+0x484/0x510 [ 287.070950][ C0] x86_64_start_reservations+0x2a/0x30 [ 287.070966][ C0] x86_64_start_kernel+0x66/0x70 [ 287.070981][ C0] common_startup_64+0x13e/0x147 [ 287.071022][ C0] [ 287.071384][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 287.071402][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 PREEMPT(full) [ 287.071430][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 287.071443][ T31] Call Trace: [ 287.071453][ T31] [ 287.071462][ T31] dump_stack_lvl+0x241/0x360 [ 287.071497][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.071527][ T31] ? __pfx__printk+0x10/0x10 [ 287.071562][ T31] ? vscnprintf+0x5d/0x90 [ 287.071595][ T31] panic+0x349/0x880 [ 287.071624][ T31] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.071655][ T31] ? __pfx_panic+0x10/0x10 [ 287.071688][ T31] ? irq_work_queue+0xd1/0x150 [ 287.071716][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.071758][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.071791][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.071821][ T31] ? nmi_trigger_cpumask_backtrace+0x251/0x320 [ 287.071856][ T31] watchdog+0x1097/0x10a0 [ 287.071884][ T31] ? watchdog+0x1ea/0x10a0 [ 287.071917][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.071943][ T31] kthread+0x7b7/0x940 [ 287.071969][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.071996][ T31] ? __pfx_kthread+0x10/0x10 [ 287.072017][ T31] ? __pfx_kthread+0x10/0x10 [ 287.072039][ T31] ? __pfx_kthread+0x10/0x10 [ 287.072062][ T31] ? __pfx_kthread+0x10/0x10 [ 287.072084][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.072113][ T31] ? lockdep_hardirqs_on+0x9d/0x150 [ 287.072134][ T31] ? __pfx_kthread+0x10/0x10 [ 287.072159][ T31] ret_from_fork+0x4b/0x80 [ 287.072178][ T31] ? __pfx_kthread+0x10/0x10 [ 287.072202][ T31] ret_from_fork_asm+0x1a/0x30 [ 287.072249][ T31] [ 287.468521][ T31] Kernel Offset: disabled [ 287.472844][ T31] Rebooting in 86400 seconds..