program: r0 = syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x818001, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x21, 0x59ba, &(0x7f0000000540)="$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") ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000005f00)={0x0, 0x4, {0x0, @usage=0xb, 0x0, 0x2, 0x3ff, 0x7, 0xffffffff8befbb7d, 0x56c, 0x443, @usage=0x60000000000, 0x1, 0x3, [0x1, 0xf602, 0xc1a, 0x2e47, 0xffffffffffff843d, 0x2]}, {0xb1a, @struct={0xf, 0xb6}, 0x0, 0x10000, 0x8, 0x6, 0xe350, 0xb4, 0x48a, @struct={0x0, 0x5a33}, 0xfd, 0xe, [0x7, 0x7, 0x0, 0x1ff, 0x3, 0x3]}, {0xfffffffffffffffd, @usage=0x2, 0x0, 0x5, 0x2, 0x7, 0x3ff, 0xff, 0x409, @usage=0x4, 0x2, 0x2, [0x4, 0xfffffffffffffffc, 0x404, 0x1, 0x1, 0x5]}, {0x7, 0x4, 0x24000000000}}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000006300)={0x0, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000006700)={0x0, 0x97, 0x1, [0x7fff, 0x40, 0x892, 0x0, 0x1], [0xa, 0x2, 0x3, 0x40000000000000, 0x0, 0x9, 0x3918, 0x7, 0x8, 0x7, 0xfffffffffffffffe, 0x5, 0x7, 0x0, 0x4, 0x0, 0xfd7, 0x7, 0x7fff, 0x5, 0x6, 0x800, 0x400000000000, 0x3ff, 0x800, 0x1835, 0xf26, 0x7ff, 0x6, 0x8, 0x4, 0x99, 0x5, 0x5, 0x4, 0x9, 0x1, 0xffffffffffffffff, 0x7fff, 0xffffffffffffffff, 0x1, 0x9, 0x1, 0x5, 0x7c7e00000, 0x8000, 0x3, 0x1fffe0000000000, 0x100000000, 0x5, 0x388752a1, 0xffffffff00000000, 0xef, 0x81, 0x100000001, 0x1, 0x88ee, 0x2, 0x0, 0x6, 0x4, 0xa, 0xc0, 0x0, 0x5, 0x6, 0x5a2, 0x0, 0x3000000000000000, 0x4b9ad224, 0x0, 0xf, 0x7, 0x46, 0x80, 0x8, 0x0, 0x2, 0x6f, 0x6, 0x4, 0xe58, 0x3, 0xdb25, 0xd53, 0xee1, 0xe, 0x43, 0x4, 0x6, 0x5, 0x401, 0x4, 0x3, 0x7fff, 0x0, 0x100, 0x1, 0x0, 0xe6a, 0x3f2, 0x80, 0x6, 0x8000000000000001, 0x1, 0x0, 0x6, 0x7ff, 0x4, 0x1, 0xfffffffffffffffc, 0xf56, 0x5, 0x1, 0x7, 0x81, 0x1, 0x7, 0x7fffffffffffffff, 0x1, 0x8]}) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000006b40)={0x1c, 0x2, {0x9, @usage=0xae03, r1, 0x22, 0x3, 0x797, 0x6d9, 0x7, 0x80, @usage=0x8, 0x8, 0x8, [0x9c23, 0x7, 0x0, 0xb, 0xffffffffffff0000, 0x6]}, {0x7, @struct={0xfff, 0x1000}, r2, 0x0, 0x5, 0x60, 0x4, 0x1ff, 0x2, @struct={0x6, 0x2}, 0xa, 0x9, [0x15, 0x1, 0x1, 0x3, 0x3, 0x6]}, {0x3, @usage=0x80, r3, 0x1, 0x7ff, 0x7, 0x3, 0x4abe, 0x401, @usage=0x8, 0x0, 0x8, [0x2, 0x1ff, 0x6, 0x2, 0x40, 0xd46]}, {0xce6, 0x5, 0x7fff}}) [ 75.395313][ T5316] Bluetooth: hci0: command tx timeout [ 76.157668][ T5336] loop0: detected capacity change from 0 to 32768 [ 76.362058][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.365502][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.525671][ T5336] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,grpquota,prjquota,nochanges,nojournal_transaction_names,noexcl,read_only [ 76.525694][ T5336] allowing incompatible features above 0.0: (unknown version) [ 76.525702][ T5336] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 76.690760][ T5336] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 76.714049][ T5336] bcachefs (loop0): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing [ 76.728948][ T5336] bcachefs (loop0): invalid bkey in superblock btree=xattrs level=1: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 0 crc: c_size 1 size 1 offset 0 nonce 0 csum none 12010b:c0004000b compress none [ 76.728972][ T5336] has non ptr field, deleting [ 76.834502][ T5336] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 76.874862][ T5336] bcachefs (loop0): Version upgrade from 1.3: rebalance_work to 1.7: mi_btree_bitmap incomplete [ 76.874862][ T5336] Doing compatible version upgrade from 1.3: rebalance_work to 1.28: inode_has_case_insensitive [ 76.874862][ T5336] running recovery passes: check_allocations,check_extents_to_backpointers,check_subvols,check_inodes,check_dirents [ 76.992973][ T5336] bcachefs (loop0): error reading btree root btree=inodes level=0: btree_node_read_error, fixing [ 77.024678][ T5336] bcachefs (loop0): btree node read error at btree snapshots level 0/0 [ 77.024726][ T5336] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 251 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 77.024743][ T5336] loop0 node offset 16/251: btree node data missing: expected 251 sectors, found 16 [ 77.024753][ T5336] repair success (rewriting node) [ 77.116274][ T5336] bcachefs (loop0): check_topology... [ 77.116394][ T5336] bcachefs (loop0): btree root inodes unreadable, must recover from scan [ 77.137663][ T5336] bcachefs (loop0): running recovery pass scan_for_btree_nodes (1), currently at check_topology (2) - rewinding [ 77.158502][ T5336] bcachefs (loop0): bch2_check_root(): error restart_recovery [ 77.179506][ T5336] bcachefs (loop0): scan_for_btree_nodes... [ 77.187750][ T5342] bcachefs (loop0): invalid bkey in btree_node btree=inodes level=0: u64s 17 type inode_v3 0:4097:U32_MAX len 0 ver 0: (unpack error) [ 77.187781][ T5342] invalid variable length fields, deleting [ 77.264137][ T5336] bcachefs (loop0): btree node scan found 6 nodes after overwrites [ 77.269262][ T5336] done [ 77.272346][ T5336] bcachefs (loop0): check_topology... [ 77.272448][ T5336] bcachefs (loop0): btree root inodes unreadable, must recover from scan [ 77.298453][ T5336] bcachefs (loop0): no nodes found for btree inodes, continuing [ 77.304406][ T5336] done [ 77.321786][ T5336] bcachefs (loop0): accounting_read... done [ 77.326292][ T5336] bcachefs (loop0): alloc_read... done [ 77.329622][ T5336] bcachefs (loop0): snapshots_read... done [ 77.334882][ T5336] bcachefs (loop0): check_allocations... [ 77.338072][ T5336] bcachefs (loop0): bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 77.338103][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 77.398107][ T5336] bcachefs (loop0): bucket 0:32 data type btree ptr gen 0 missing in alloc btree [ 77.398124][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 251 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0, fixing [ 77.427667][ T5316] Bluetooth: hci0: command tx timeout [ 77.443719][ T5336] bcachefs (loop0): bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 77.443736][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 77.457688][ T5336] bcachefs (loop0): bucket 0:42 data type btree ptr gen 0 missing in alloc btree [ 77.457705][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1db8f60c84bb244c written 8 min_key POS_MIN durability: 1 ptr: 0:42:0 gen 0, fixing [ 77.515009][ T5336] bcachefs (loop0): bucket 0:0 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.539583][ T5336] bcachefs (loop0): bucket 0:0 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.546525][ T5336] bcachefs (loop0): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.568960][ T5336] bcachefs (loop0): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.576008][ T5336] bcachefs (loop0): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.596469][ T5336] bcachefs (loop0): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.625398][ T5336] bcachefs (loop0): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.670337][ T5336] bcachefs (loop0): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.677381][ T5336] bcachefs (loop0): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.696384][ T5336] bcachefs (loop0): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.717756][ T5336] bcachefs (loop0): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.724079][ T5336] bcachefs (loop0): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.747735][ T5336] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.780140][ T5336] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.801004][ T5336] bcachefs (loop0): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.828254][ T5336] bcachefs (loop0): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.853984][ T5336] bcachefs (loop0): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.859525][ T5336] bcachefs (loop0): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 77.889596][ T5336] bcachefs (loop0): bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.922853][ T5336] bcachefs (loop0): bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.952612][ T5336] bcachefs (loop0): bucket 0:17 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.952628][ T5336] Ratelimiting new instances of previous error [ 77.973550][ T5336] bcachefs (loop0): bucket 0:17 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.973567][ T5336] Ratelimiting new instances of previous error [ 78.024190][ T5336] done [ 78.028488][ T5336] bcachefs (loop0): going read-write [ 78.141955][ T5336] bcachefs (loop0): journal_replay... done [ 78.311458][ T5336] bcachefs (loop0): check_lrus... done [ 78.318382][ T5336] bcachefs (loop0): check_backpointers_to_extents... done [ 78.327470][ T5336] bcachefs (loop0): check_extents_to_backpointers... [ 78.328399][ T5336] bcachefs (loop0): scanning for missing backpointers in 3/128 buckets [ 78.357203][ T5336] done [ 78.372267][ T5336] bcachefs (loop0): check_subvols... done [ 78.379711][ T5336] bcachefs (loop0): check_inodes... done [ 78.425204][ T5336] bcachefs (loop0): check_dirents... [ 78.463800][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 19438346596068217 [ 78.463829][ T5336] u64s 7 type dirent 4096:189491840996961599:U32_MAX len 0 ver 0: file0 -> 4098 type dir, fixing [ 78.538338][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 657237898353193763 [ 78.538351][ T5336] u64s 7 type dirent 4096:1896155912177158345:U32_MAX len 0 ver 0: file3 -> 536870913 type reg, fixing [ 78.617705][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 7396360476335112520 [ 78.617721][ T5336] u64s 7 type dirent 4096:2695648408715017799:U32_MAX len 0 ver 0: file2 -> 536870913 type reg, fixing [ 78.655721][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 2879744785237502847 [ 78.655739][ T5336] u64s 7 type dirent 4096:4330382808765833931:U32_MAX len 0 ver 0: file1 -> 536870912 type reg, fixing [ 78.685384][ T5336] bcachefs (loop0): dirent points to missing inode: [ 78.685397][ T5336] u64s 7 type dirent 4096:7396360476335112520:U32_MAX len 0 ver 0: file2 -> 536870913 type reg, fixing [ 78.750989][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 2592592065116016981 [ 78.751010][ T5336] u64s 8 type dirent 4096:8130059955150870709:U32_MAX len 0 ver 0: lost+found -> 4097 type dir, fixing [ 78.836936][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 1729092027248890119 [ 78.836953][ T5336] u64s 8 type dirent 4096:9097378837824744618:U32_MAX len 0 ver 0: file.cold -> 536870914 type reg, fixing [ 78.952803][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 100939643486814201 [ 78.952822][ T5336] u64s 7 type dirent 4098:5675548428000973578:U32_MAX len 0 ver 0: file1 -> 4100 type lnk, fixing [ 78.985612][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 7239715554018698398 [ 78.985628][ T5336] u64s 7 type dirent 4098:8977922886548783724:U32_MAX len 0 ver 0: file0 -> 4099 type reg, fixing [ 79.048614][ T5336] bcachefs (loop0): check_dirents requires second pass [ 79.064371][ T5336] bcachefs (loop0): directory with missing backpointer [ 79.064387][ T5336] u64s 7 type dirent 4096:19438346596068217:U32_MAX len 0 ver 0: file0 -> 4098 type dir [ 79.064395][ T5336] inum: 4098:4294967295 [ 79.064401][ T5336] mode=40600 [ 79.064407][ T5336] flags=(4300000) [ 79.064413][ T5336] journal_seq=16 [ 79.064420][ T5336] hash_seed=75afe6c215b17190 [ 79.064426][ T5336] hash_type=siphash [ 79.064432][ T5336] bi_size=0 [ 79.064438][ T5336] bi_sectors=0 [ 79.064444][ T5336] bi_version=0 [ 79.064450][ T5336] bi_atime=36907453147880098 [ 79.064457][ T5336] bi_ctime=36907453147880098 [ 79.064463][ T5336] bi_mtime=36907453147880098 [ 79.064469][ T5336] bi_otime=36907453147880098 [ 79.064476][ T5336] bi_uid=0 [ 79.064481][ T5336] bi_gid=0 [ 79.064488][ T5336] bi_nlink=0 [ 79.064494][ T5336] bi_generation=0 [ 79.064500][ T5336] bi_dev=0 [ 79.064506][ T5336] bi_data_checksum=0 [ 79.064511][ T5336] bi_compression=0 [ 79.064518][ T5336] bi_project=0 [ 79.064523][ T5336] bi_background_compression=0 [ 79.064572][ T5336] bi_data_replicas=0 [ 79.064578][ T5336] bi_promote_target=0 [ 79.064584][ T5336] bi_foreground_target=0 [ 79.064590][ T5336] bi_background_target=0 [ 79.064594][ T5336] bi_erasure_code=0 [ 79.064599][ T5336] bi_fields_set=0 [ 79.064604][ T5336] bi_dir=0 [ 79.064609][ T5336] bi_dir_offset=0 [ 79.064615][ T5336] bi_subvol=0 [ 79.064620][ T5336] bi_parent_subvol=0 [ 79.064625][ T5336] bi_nocow=0 [ 79.064629][ T5336] bi_depth=0 [ 79.064634][ T5336] bi_inodes_32bit=0 [ 79.064639][ T5336] bi_casefold=0, fixing [ 79.320233][ T5336] bcachefs (loop0): dirent points to missing inode: [ 79.320248][ T5336] u64s 7 type dirent 4096:657237898353193763:U32_MAX len 0 ver 0: file3 -> 536870913 type reg, fixing [ 79.339263][ T5336] bcachefs (loop0): dirent points to missing inode: [ 79.339278][ T5336] u64s 8 type dirent 4096:1729092027248890119:U32_MAX len 0 ver 0: file.cold -> 536870914 type reg, fixing [ 79.364111][ T5336] bcachefs (loop0): dirent points to missing inode: [ 79.364127][ T5336] u64s 8 type dirent 4096:2592592065116016981:U32_MAX len 0 ver 0: lost+found -> 4097 type dir, fixing [ 79.387317][ T5336] bcachefs (loop0): dirent points to missing inode: [ 79.387329][ T5336] u64s 7 type dirent 4096:2879744785237502847:U32_MAX len 0 ver 0: file1 -> 536870912 type reg, fixing [ 79.410554][ T5336] bcachefs (loop0): fsck counted subdirectories wrong for inum 4096:4294967295: got 2 should be 1 [ 79.430123][ T5336] bcachefs (loop0): directory with wrong i_nlink: got 0, should be 1 [ 79.430139][ T5336] (disconnected), fixing [ 79.444661][ T5336] bcachefs (loop0): dirent points to missing inode: [ 79.444676][ T5336] u64s 7 type dirent 4098:100939643486814201:U32_MAX len 0 ver 0: file1 -> 4100 type lnk, fixing [ 79.489354][ T5336] ================================================================== [ 79.511675][ T5336] BUG: KASAN: use-after-free in bch2_check_dirents+0x1fac/0x33f0 [ 79.520944][ T5336] Read of size 1 at addr ffff888054980198 by task syz.0.0/5336 [ 79.532064][ T5336] [ 79.540402][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 79.540421][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.540428][ T5336] Call Trace: [ 79.540435][ T5336] [ 79.540442][ T5336] dump_stack_lvl+0x189/0x250 [ 79.540461][ T5336] ? __virt_addr_valid+0x1c8/0x5c0 [ 79.540475][ T5336] ? rcu_is_watching+0x15/0xb0 [ 79.540487][ T5336] ? __kasan_check_byte+0x12/0x40 [ 79.540500][ T5336] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.540512][ T5336] ? rcu_is_watching+0x15/0xb0 [ 79.540548][ T5336] ? lock_release+0x4b/0x3e0 [ 79.540563][ T5336] ? __virt_addr_valid+0x1c8/0x5c0 [ 79.540575][ T5336] ? __virt_addr_valid+0x4a5/0x5c0 [ 79.540587][ T5336] print_report+0xd2/0x2b0 [ 79.540597][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 79.540609][ T5336] kasan_report+0x118/0x150 [ 79.540622][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 79.540639][ T5336] bch2_check_dirents+0x1fac/0x33f0 [ 79.540652][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 79.540664][ T5336] ? desc_read+0x1b8/0x3f0 [ 79.540677][ T5336] ? prb_first_seq+0xfd/0x1a0 [ 79.540686][ T5336] ? __pfx_bch2_check_dirents+0x10/0x10 [ 79.540696][ T5336] ? __pfx_prb_first_seq+0x10/0x10 [ 79.540708][ T5336] ? desc_read+0x1b8/0x3f0 [ 79.540718][ T5336] ? this_cpu_in_panic+0x4f/0x80 [ 79.540729][ T5336] ? _prb_read_valid+0xa07/0xa90 [ 79.540740][ T5336] ? console_flush_all+0x13a/0xc40 [ 79.540753][ T5336] ? up+0xde/0x150 [ 79.540827][ T5336] ? __console_unlock+0x14c/0x1a0 [ 79.540840][ T5336] ? __pfx___console_unlock+0x10/0x10 [ 79.540854][ T5336] ? prb_read_valid+0x3c/0x60 [ 79.540865][ T5336] ? console_unlock+0x21b/0x270 [ 79.540876][ T5336] ? __pfx_console_unlock+0x10/0x10 [ 79.540888][ T5336] ? vprintk_emit+0x63e/0x7a0 [ 79.540903][ T5336] ? __bch2_print+0x176/0x220 [ 79.540917][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 79.540929][ T5336] ? _raw_spin_unlock_irq+0x23/0x50 [ 79.540943][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 79.540958][ T5336] __bch2_run_recovery_passes+0x395/0x1010 [ 79.540979][ T5336] bch2_run_recovery_passes+0x184/0x210 [ 79.540990][ T5336] bch2_fs_recovery+0x2690/0x3a50 [ 79.541000][ T5336] ? check_noncircular+0xe0/0x160 [ 79.541013][ T5336] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 79.541026][ T5336] ? __lock_acquire+0xab9/0xd20 [ 79.541037][ T5336] ? __lock_acquire+0xab9/0xd20 [ 79.541048][ T5336] ? __lock_acquire+0xab9/0xd20 [ 79.541063][ T5336] ? bch2_fs_start+0x9fe/0xd90 [ 79.541075][ T5336] ? up_write+0x1c4/0x420 [ 79.541089][ T5336] ? bch2_fs_start+0x5c4/0xd90 [ 79.541101][ T5336] bch2_fs_start+0xa99/0xd90 [ 79.541121][ T5336] ? bch2_fs_start+0x5c4/0xd90 [ 79.541133][ T5336] ? __pfx_bch2_fs_start+0x10/0x10 [ 79.541155][ T5336] ? sget+0x267/0x620 [ 79.541167][ T5336] bch2_fs_get_tree+0xafc/0x14f0 [ 79.541187][ T5336] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 79.541203][ T5336] ? aa_get_newest_label+0xf7/0x5d0 [ 79.541218][ T5336] ? vfs_parse_monolithic_sep+0x2df/0x310 [ 79.541236][ T5336] ? apparmor_capable+0x137/0x1b0 [ 79.541249][ T5336] vfs_get_tree+0x92/0x2b0 [ 79.541262][ T5336] do_new_mount+0x24a/0xa40 [ 79.541278][ T5336] __se_sys_mount+0x317/0x410 [ 79.541292][ T5336] ? __pfx___se_sys_mount+0x10/0x10 [ 79.541306][ T5336] ? do_syscall_64+0xbe/0x3b0 [ 79.541316][ T5336] ? __x64_sys_mount+0x20/0xc0 [ 79.541329][ T5336] do_syscall_64+0xfa/0x3b0 [ 79.541339][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 79.541352][ T5336] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.541363][ T5336] ? clear_bhb_loop+0x60/0xb0 [ 79.541375][ T5336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.541385][ T5336] RIP: 0033:0x7ff56df900ca [ 79.541397][ T5336] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 79.541406][ T5336] RSP: 002b:00007ff56ee57e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 79.541419][ T5336] RAX: ffffffffffffffda RBX: 00007ff56ee57ef0 RCX: 00007ff56df900ca [ 79.541427][ T5336] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 00007ff56ee57eb0 [ 79.541434][ T5336] RBP: 00002000000000c0 R08: 00007ff56ee57ef0 R09: 0000000000818001 [ 79.541441][ T5336] R10: 0000000000818001 R11: 0000000000000246 R12: 0000200000000080 [ 79.541448][ T5336] R13: 00007ff56ee57eb0 R14: 00000000000059ba R15: 0000200000000100 [ 79.541458][ T5336] [ 79.541462][ T5336] [ 80.097739][ T5336] The buggy address belongs to the physical page: [ 80.111734][ T5336] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54980 [ 80.116006][ T5336] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 80.129621][ T5336] page_type: f0(buddy) [ 80.132265][ T5336] raw: 04fff00000000000 ffff88805ffd6f08 ffff88805ffd6f08 0000000000000000 [ 80.137041][ T5336] raw: 0000000000000000 0000000000000005 00000000f0000000 0000000000000000 [ 80.161372][ T5336] page dumped because: kasan: bad access detected [ 80.164573][ T5336] page_owner tracks the page as freed [ 80.167424][ T5336] page last allocated via order 5, migratetype Unmovable, gfp_mask 0x42800(GFP_NOWAIT|__GFP_COMP), pid 5351, tgid 5351 (bch-reclaim/loo), ts 79062975733, free_ts 79489246809 [ 80.192918][ T5336] post_alloc_hook+0x240/0x2a0 [ 80.195294][ T5336] get_page_from_freelist+0x21e4/0x22c0 [ 80.199814][ T5336] __alloc_frozen_pages_noprof+0x181/0x370 [ 80.206597][ T5336] __alloc_pages_noprof+0xa/0x30 [ 80.209008][ T5336] ___kmalloc_large_node+0x85/0x210 [ 80.219360][ T5336] __kmalloc_large_node_noprof+0x18/0x90 [ 80.249737][ T5336] __kvmalloc_node_noprof+0x6d/0x5f0 [ 80.260071][ T5336] btree_node_sort+0x666/0x1760 [ 80.262273][ T5336] bch2_btree_post_write_cleanup+0x11f/0xad0 [ 80.264818][ T5336] bch2_btree_node_write_trans+0x17b/0x760 [ 80.279705][ T5336] __btree_node_flush+0x323/0x430 [ 80.282422][ T5336] bch2_btree_node_flush1+0x2a/0x40 [ 80.285544][ T5336] journal_flush_pins+0x8e0/0xe90 [ 80.308737][ T5336] __bch2_journal_reclaim+0x8e9/0xea0 [ 80.311399][ T5336] bch2_journal_reclaim_thread+0x177/0x4f0 [ 80.315288][ T5336] kthread+0x70e/0x8a0 [ 80.318567][ T5336] page last free pid 5336 tgid 5335 stack trace: [ 80.337641][ T5336] __free_pages_ok+0xa44/0xc20 [ 80.341259][ T5336] __folio_put+0x21b/0x2c0 [ 80.357788][ T5336] free_large_kmalloc+0x145/0x200 [ 80.360476][ T5336] btree_node_sort+0x117f/0x1760 [ 80.362972][ T5336] bch2_btree_post_write_cleanup+0x11f/0xad0 [ 80.365739][ T5336] bch2_btree_node_prep_for_write+0x337/0x650 [ 80.368678][ T5336] bch2_trans_lock_write+0x669/0xba0 [ 80.395209][ T5336] __bch2_trans_commit+0x2773/0x8870 [ 80.398006][ T5336] bch2_check_dirents+0x1c5c/0x33f0 [ 80.400486][ T5336] __bch2_run_recovery_passes+0x395/0x1010 [ 80.403528][ T5336] bch2_run_recovery_passes+0x184/0x210 [ 80.406371][ T5336] bch2_fs_recovery+0x2690/0x3a50 [ 80.409001][ T5336] bch2_fs_start+0xa99/0xd90 [ 80.411333][ T5336] bch2_fs_get_tree+0xafc/0x14f0 [ 80.413736][ T5336] vfs_get_tree+0x92/0x2b0 [ 80.415927][ T5336] do_new_mount+0x24a/0xa40 [ 80.418210][ T5336] [ 80.419408][ T5336] Memory state around the buggy address: [ 80.422619][ T5336] ffff888054980080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 80.427430][ T5336] ffff888054980100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 80.443055][ T5336] >ffff888054980180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 80.447730][ T5336] ^ [ 80.450468][ T5336] ffff888054980200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 80.463215][ T5336] ffff888054980280: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 80.468806][ T5336] ================================================================== [ 80.510773][ T4685] Bluetooth: hci0: command tx timeout [ 80.656410][ T5336] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 80.671543][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 80.680445][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 80.686950][ T5336] Call Trace: [ 80.689092][ T5336] [ 80.690956][ T5336] dump_stack_lvl+0x99/0x250 [ 80.694790][ T5336] ? __asan_memcpy+0x40/0x70 [ 80.699260][ T5336] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.703100][ T5336] ? __pfx__printk+0x10/0x10 [ 80.708678][ T5336] panic+0x2db/0x790 [ 80.714039][ T5336] ? __pfx_panic+0x10/0x10 [ 80.718099][ T5336] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 80.731655][ T5336] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 80.735959][ T5336] ? print_memory_metadata+0x314/0x400 [ 80.760094][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 80.763398][ T5336] check_panic_on_warn+0x89/0xb0 [ 80.765967][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 80.779665][ T5336] end_report+0x78/0x160 [ 80.783417][ T5336] kasan_report+0x129/0x150 [ 80.792906][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 80.825761][ T5336] bch2_check_dirents+0x1fac/0x33f0 [ 80.828815][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 80.839057][ T5336] ? desc_read+0x1b8/0x3f0 [ 80.844022][ T5336] ? prb_first_seq+0xfd/0x1a0 [ 80.855635][ T5336] ? __pfx_bch2_check_dirents+0x10/0x10 [ 80.859804][ T5336] ? __pfx_prb_first_seq+0x10/0x10 [ 80.863087][ T5336] ? desc_read+0x1b8/0x3f0 [ 80.865444][ T5336] ? this_cpu_in_panic+0x4f/0x80 [ 80.868392][ T5336] ? _prb_read_valid+0xa07/0xa90 [ 80.886010][ T5336] ? console_flush_all+0x13a/0xc40 [ 80.889251][ T5336] ? up+0xde/0x150 [ 80.907274][ T5336] ? __console_unlock+0x14c/0x1a0 [ 80.910346][ T5336] ? __pfx___console_unlock+0x10/0x10 [ 80.912700][ T5336] ? prb_read_valid+0x3c/0x60 [ 80.914772][ T5336] ? console_unlock+0x21b/0x270 [ 80.917197][ T5336] ? __pfx_console_unlock+0x10/0x10 [ 80.919468][ T5336] ? vprintk_emit+0x63e/0x7a0 [ 80.921675][ T5336] ? __bch2_print+0x176/0x220 [ 80.923893][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 80.926510][ T5336] ? _raw_spin_unlock_irq+0x23/0x50 [ 80.928968][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.933100][ T5336] __bch2_run_recovery_passes+0x395/0x1010 [ 80.935736][ T5336] bch2_run_recovery_passes+0x184/0x210 [ 80.939277][ T5336] bch2_fs_recovery+0x2690/0x3a50 [ 80.941998][ T5336] ? check_noncircular+0xe0/0x160 [ 80.954664][ T5336] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 80.959179][ T5336] ? __lock_acquire+0xab9/0xd20 [ 80.965725][ T5336] ? __lock_acquire+0xab9/0xd20 [ 80.973588][ T5336] ? __lock_acquire+0xab9/0xd20 [ 80.975853][ T5336] ? bch2_fs_start+0x9fe/0xd90 [ 80.978007][ T5336] ? up_write+0x1c4/0x420 [ 80.980064][ T5336] ? bch2_fs_start+0x5c4/0xd90 [ 80.982190][ T5336] bch2_fs_start+0xa99/0xd90 [ 81.000585][ T5336] ? bch2_fs_start+0x5c4/0xd90 [ 81.003166][ T5336] ? __pfx_bch2_fs_start+0x10/0x10 [ 81.005498][ T5336] ? sget+0x267/0x620 [ 81.007394][ T5336] bch2_fs_get_tree+0xafc/0x14f0 [ 81.026091][ T5336] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 81.033233][ T5336] ? aa_get_newest_label+0xf7/0x5d0 [ 81.035655][ T5336] ? vfs_parse_monolithic_sep+0x2df/0x310 [ 81.038216][ T5336] ? apparmor_capable+0x137/0x1b0 [ 81.046103][ T5336] vfs_get_tree+0x92/0x2b0 [ 81.054088][ T5336] do_new_mount+0x24a/0xa40 [ 81.056241][ T5336] __se_sys_mount+0x317/0x410 [ 81.068966][ T5336] ? __pfx___se_sys_mount+0x10/0x10 [ 81.076760][ T5336] ? do_syscall_64+0xbe/0x3b0 [ 81.081302][ T5336] ? __x64_sys_mount+0x20/0xc0 [ 81.084468][ T5336] do_syscall_64+0xfa/0x3b0 [ 81.088951][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 81.094555][ T5336] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.103540][ T5336] ? clear_bhb_loop+0x60/0xb0 [ 81.107763][ T5336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.113532][ T5336] RIP: 0033:0x7ff56df900ca [ 81.118789][ T5336] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 81.136419][ T5336] RSP: 002b:00007ff56ee57e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 81.145283][ T5336] RAX: ffffffffffffffda RBX: 00007ff56ee57ef0 RCX: 00007ff56df900ca [ 81.154266][ T5336] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 00007ff56ee57eb0 [ 81.160902][ T5336] RBP: 00002000000000c0 R08: 00007ff56ee57ef0 R09: 0000000000818001 [ 81.166673][ T5336] R10: 0000000000818001 R11: 0000000000000246 R12: 0000200000000080 [ 81.180359][ T5336] R13: 00007ff56ee57eb0 R14: 00000000000059ba R15: 0000200000000100 [ 81.189754][ T5336] [ 81.191902][ T5336] Kernel Offset: disabled [ 81.194456][ T5336] Rebooting in 86400 seconds..