./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor968527491 <...> Warning: Permanently added '10.128.1.141' (ED25519) to the list of known hosts. execve("./syz-executor968527491", ["./syz-executor968527491"], 0x7fffbc6ab160 /* 10 vars */) = 0 brk(NULL) = 0x5555643d1000 brk(0x5555643d1d00) = 0x5555643d1d00 arch_prctl(ARCH_SET_FS, 0x5555643d1380) = 0 set_tid_address(0x5555643d1650) = 5840 set_robust_list(0x5555643d1660, 24) = 0 rseq(0x5555643d1ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor968527491", 4096) = 27 getrandom("\xc6\xe0\x99\x13\xdb\x4f\xe9\x18", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555643d1d00 brk(0x5555643f2d00) = 0x5555643f2d00 brk(0x5555643f3000) = 0x5555643f3000 mprotect(0x7f9a562cf000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5841 attached [pid 5841] set_robust_list(0x5555643d1660, 24 [pid 5840] <... clone resumed>, child_tidptr=0x5555643d1650) = 5841 [pid 5841] <... set_robust_list resumed>) = 0 [pid 5841] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5841] setpgid(0, 0) = 0 [pid 5841] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5841] write(3, "1000", 4) = 4 [pid 5841] close(3) = 0 [pid 5841] write(1, "executing program\n", 18executing program ) = 18 [pid 5841] memfd_create("syzkaller", 0) = 3 [pid 5841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f9a4de00000 [pid 5841] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5841] munmap(0x7f9a4de00000, 138412032) = 0 [pid 5841] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5841] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5841] close(3) = 0 [pid 5841] close(4) = 0 [pid 5841] mkdir("./file0", 0777) = 0 [ 168.695459][ T5841] loop0: detected capacity change from 0 to 32768 [ 168.772576][ T5841] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names [ 168.787928][ T5841] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 168.796041][ T5841] bcachefs (loop0): Version upgrade required: [ 168.796041][ T5841] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 168.796041][ T5841] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size [ 168.796041][ T5841] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 168.874903][ T5841] bcachefs (loop0): error validating btree node at btree alloc level 0/0 [ 168.874923][ T5841] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 168.874934][ T5841] node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing [ 168.914513][ T5841] bcachefs (loop0): btree_node_read_work: rewriting btree node at due to error [ 168.914513][ T5841] btree=alloc level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 168.943575][ T5841] bcachefs (loop0): accounting_read... done [ 168.950623][ T5841] bcachefs (loop0): alloc_read... done [ 168.956292][ T5841] bcachefs (loop0): stripes_read... done [ 168.962163][ T5841] bcachefs (loop0): snapshots_read... done [ 168.968432][ T5841] bcachefs (loop0): check_allocations... [ 168.971511][ T5841] bucket 0:26 data type btree ptr gen 0 missing in alloc btree [ 168.971530][ T5841] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing [ 169.002879][ T5841] bucket 0:38 data type btree ptr gen 0 missing in alloc btree [ 169.002893][ T5841] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 169.027818][ T5841] bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 169.027834][ T5841] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 169.053482][ T5841] bucket 0:35 data type btree ptr gen 0 missing in alloc btree [ 169.053498][ T5841] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 169.079934][ T5841] bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 169.079949][ T5841] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 169.103865][ T5841] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.112283][ T5841] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.123016][ T5841] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.131542][ T5841] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.141367][ T5841] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.149752][ T5841] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.159568][ T5841] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.167928][ T5841] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.177672][ T5841] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.185938][ T5841] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.195740][ T5841] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.204076][ T5841] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.213953][ T5841] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.222420][ T5841] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.232643][ T5841] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.241117][ T5841] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 169.250838][ T5841] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing [ 169.259630][ T5841] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 169.269899][ T5841] bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.278364][ T5841] bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.288631][ T5841] bucket 0:17 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.297682][ T5841] bucket 0:17 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.307527][ T5841] bucket 0:18 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.315972][ T5841] bucket 0:18 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.325991][ T5841] bucket 0:19 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.334458][ T5841] bucket 0:19 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.344524][ T5841] bucket 0:20 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.352987][ T5841] bucket 0:20 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.362806][ T5841] bucket 0:21 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.371280][ T5841] bucket 0:21 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.381207][ T5841] bucket 0:22 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.389702][ T5841] bucket 0:22 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.399774][ T5841] bucket 0:23 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.408232][ T5841] bucket 0:23 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.418152][ T5841] bucket 0:24 gen 0 has wrong data_type: got free, should be journal, fixing [ 169.427054][ T5841] bucket 0:24 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 169.437335][ T5841] bucket 0:26 gen 0 has wrong data_type: got free, should be btree, fixing [ 169.446064][ T5841] bucket 0:26 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 169.456307][ T5841] bucket 0:29 gen 0 has wrong data_type: got free, should be btree, fixing [ 169.464971][ T5841] bucket 0:29 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 169.475179][ T5841] bucket 0:32 gen 0 has wrong data_type: got sb, should be btree, fixing [ 169.483883][ T5841] bucket 0:35 gen 0 has wrong data_type: got free, should be btree, fixing [ 169.492636][ T5841] bucket 0:35 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 169.502740][ T5841] bucket 0:38 gen 0 has wrong data_type: got free, should be btree, fixing [ 169.511473][ T5841] bucket 0:38 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 169.521756][ T5841] bucket 0:41 gen 0 has wrong data_type: got free, should be btree, fixing [ 169.530509][ T5841] bucket 0:41 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing [ 169.541221][ T5841] bucket 0:120 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.549796][ T5841] bucket 0:120 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.559709][ T5841] bucket 0:121 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.568277][ T5841] bucket 0:121 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.578216][ T5841] bucket 0:122 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.586662][ T5841] bucket 0:122 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.596663][ T5841] bucket 0:123 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.605173][ T5841] bucket 0:123 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.615195][ T5841] bucket 0:124 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.623703][ T5841] bucket 0:124 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.633694][ T5841] bucket 0:125 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.642260][ T5841] bucket 0:125 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.652274][ T5841] bucket 0:126 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.660804][ T5841] bucket 0:126 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.670805][ T5841] bucket 0:127 gen 0 has wrong data_type: got free, should be sb, fixing [ 169.679331][ T5841] bucket 0:127 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 169.690848][ T5841] done [ 169.695162][ T5841] bcachefs (loop0): going read-write [ 169.702937][ T5841] bcachefs (loop0): journal_replay... done [ 169.741018][ T5841] bcachefs (loop0): check_alloc_info... [ 169.742060][ T5841] hole in alloc btree missing in freespace btree [ 169.742079][ T5841] device 0 buckets 10-16, fixing [ 169.762885][ T5841] done [ 169.768164][ T5841] bcachefs (loop0): check_lrus... done [ 169.774665][ T5841] bcachefs (loop0): check_btree_backpointers... done [ 169.784146][ T5841] bcachefs (loop0): check_backpointers_to_extents... done [ 169.794717][ T5841] bcachefs (loop0): check_extents_to_backpointers... [ 169.795543][ T5841] bcachefs (loop0): scanning for missing backpointers in 5/128 buckets [ 169.811227][ T5841] done [ 169.816232][ T5841] bcachefs (loop0): check_alloc_to_lru_refs... done [ 169.824608][ T5841] bcachefs (loop0): bucket_gens_init... done [ 169.837922][ T5841] bcachefs (loop0): check_snapshot_trees... done [ 169.845363][ T5841] bcachefs (loop0): check_snapshots... [ 169.845663][ T5841] snapshot points to missing/incorrect tree: [ 169.845675][ T5841] u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: is_subvol 1 deleted 0 parent 0 children 0 0 subvol 1 tree 0, fixing [ 169.872998][ T5841] snapshot points to missing/incorrect tree: [ 169.873020][ T5841] u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: is_subvol 1 deleted 0 parent 0 children 0 0 subvol 1 tree 0, fixing [ 169.899505][ T5841] done [ 169.905132][ T5841] bcachefs (loop0): check_subvols... done [ 169.912588][ T5841] bcachefs (loop0): check_subvol_children... done [ 169.921076][ T5841] bcachefs (loop0): delete_dead_snapshots... done [ 169.928696][ T5841] bcachefs (loop0): check_inodes... done [ 169.935813][ T5841] bcachefs (loop0): check_extents... done [ 169.943156][ T5841] bcachefs (loop0): check_indirect_extents... done [ 169.950829][ T5841] bcachefs (loop0): check_dirents... done [ 169.960077][ T5841] bcachefs (loop0): check_xattrs... done [ 169.967269][ T5841] bcachefs (loop0): check_root... done [ 169.973889][ T5841] bcachefs (loop0): check_unreachable_inodes... done [ 169.982808][ T5841] bcachefs (loop0): check_subvolume_structure... done [ 169.990655][ T5841] bcachefs (loop0): check_directory_structure... done [ 169.999672][ T5841] bcachefs (loop0): check_nlinks... [ 170.000121][ T5841] inode 536870914 type reg has wrong i_nlink (2780562353, should be 1), fixing [ 170.014507][ T5841] done [ 170.019188][ T5841] bcachefs (loop0): resume_logged_ops... done [ 170.025311][ T5841] bcachefs (loop0): delete_dead_inodes... done [ 170.032032][ T5841] bcachefs (loop0): set_fs_needs_rebalance... done [pid 5841] mount("/dev/loop0", "./file0", "bcachefs", MS_I_VERSION, "" [pid 5840] kill(-5841, SIGKILL) = 0 [pid 5840] kill(5841, SIGKILL) = 0 [pid 5840] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5840] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5840] getdents64(3, 0x5555643d26f0 /* 2 entries */, 32768) = 48 [pid 5840] getdents64(3, 0x5555643d26f0 /* 0 entries */, 32768) = 0 [pid 5840] close(3) = 0 [ 180.707622][ T5841] bcachefs (loop0): Journal stuck? Waited for 10 seconds... [ 180.707622][ T5841] flags: replay_done,running,space_low [ 180.707622][ T5841] dirty journal entries: 0/32768 [ 180.707622][ T5841] seq: 25 [ 180.707622][ T5841] seq_ondisk: 25 [ 180.707622][ T5841] last_seq: 26 [ 180.707622][ T5841] last_seq_ondisk: 25 [ 180.707622][ T5841] flushed_seq_ondisk: 25 [ 180.707622][ T5841] watermark: reclaim [ 180.707622][ T5841] each entry reserved: 321 [ 180.707622][ T5841] nr flush writes: 15 [ 180.707622][ T5841] nr noflush writes: 0 [ 180.707622][ T5841] average write size: 1.97 KiB [ 180.707622][ T5841] nr direct reclaim: 0 [ 180.707622][ T5841] nr background reclaim: 2 [ 180.707622][ T5841] reclaim kicked: 0 [ 180.707622][ T5841] reclaim runs in: 0 ms [ 180.707622][ T5841] blocked: 0 [ 180.707622][ T5841] current entry sectors: 128 [ 180.707622][ T5841] current entry error: ok [ 180.707622][ T5841] current entry: closed [ 180.707622][ T5841] unwritten entries: [ 180.707622][ T5841] last buf closed [ 180.707622][ T5841] space: [ 180.707622][ T5841] discarded 128:128 [ 180.707622][ T5841] clean ondisk 128:128 [ 180.707622][ T5841] clean 128:128 [ 180.707622][ T5841] total 256:512 [ 180.707622][ T5841] dev 0: [ 180.707622][ T5841] durability 1: [ 180.707622][ T5841] nr 2 [ 180.707622][ T5841] bucket size 256 [ 180.707622][ T5841] available 0:128 [ 180.707622][ T5841] discard_idx [ 430.296876][ T31] INFO: task syz-executor968:5841 blocked for more than 143 seconds. [ 430.465245][ T31] Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0 [ 430.472937][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.481697][ T31] task:syz-executor968 state:D stack:9232 pid:5841 tgid:5841 ppid:5840 task_flags:0x400140 flags:0x00004006 [ 430.493684][ T31] Call Trace: [ 430.497049][ T31] [ 430.500020][ T31] __schedule+0x18bc/0x4c40 [ 430.504739][ T31] ? __pfx___schedule+0x10/0x10 [ 430.509727][ T31] ? __pfx_lock_release+0x10/0x10 [ 430.514801][ T31] ? schedule+0x90/0x320 [ 430.519169][ T31] schedule+0x14b/0x320 [ 430.523352][ T31] __closure_sync+0x259/0x2f0 [ 430.528100][ T31] ? __closure_sync+0x149/0x2f0 [ 430.532994][ T31] ? __pfx___closure_sync+0x10/0x10 [ 430.538315][ T31] ? closure_wait+0xa4/0xf0 [ 430.542860][ T31] bch2_journal_res_get_slowpath+0x96f/0xb60 [ 430.548934][ T31] ? __pfx_bch2_journal_res_get_slowpath+0x10/0x10 [ 430.555472][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 430.560862][ T31] ? __pfx_lock_release+0x10/0x10 [ 430.565940][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 430.571318][ T31] ? closure_sync_fn+0x47/0x1e0 [ 430.576220][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 430.581621][ T31] ? __pfx_journal_res_get_fast+0x10/0x10 [ 430.587420][ T31] ? closure_put_after_sub+0x1b0/0x330 [ 430.592909][ T31] bch2_journal_res_get+0x12d/0x1c0 [ 430.598231][ T31] __bch2_journal_meta+0x8d/0x290 [ 430.603298][ T31] ? __pfx___bch2_journal_meta+0x10/0x10 [ 430.609017][ T31] bch2_journal_meta+0x110/0x820 [ 430.614015][ T31] bch2_fs_recovery+0x2ade/0x3de0 [ 430.619177][ T31] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 430.624624][ T31] ? __pfx_lock_release+0x10/0x10 [ 430.629733][ T31] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 430.635407][ T31] ? __pfx_lock_release+0x10/0x10 [ 430.640573][ T31] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 430.646234][ T31] ? bch2_get_next_online_dev+0x4b9/0x4f0 [ 430.652008][ T31] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 430.657714][ T31] ? llist_reverse_order+0x72/0x90 [ 430.662829][ T31] bch2_fs_start+0x37c/0x610 [ 430.667536][ T31] bch2_fs_get_tree+0xdb7/0x17a0 [ 430.672521][ T31] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 430.678009][ T31] ? vfs_parse_monolithic_sep+0x423/0x460 [ 430.683754][ T31] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 430.689435][ T31] ? vfs_parse_fs_string+0x190/0x230 [ 430.694741][ T31] ? rcu_is_watching+0x15/0xb0 [ 430.699587][ T31] ? cap_capable+0x139/0x450 [ 430.704205][ T31] ? safesetid_security_capable+0xb2/0x1d0 [ 430.710073][ T31] vfs_get_tree+0x90/0x2b0 [ 430.714522][ T31] do_new_mount+0x2be/0xb40 [ 430.719108][ T31] ? __pfx_do_new_mount+0x10/0x10 [ 430.724171][ T31] __se_sys_mount+0x2d6/0x3c0 [ 430.728915][ T31] ? __pfx___se_sys_mount+0x10/0x10 [ 430.734155][ T31] ? do_syscall_64+0x100/0x230 [ 430.739051][ T31] ? __x64_sys_mount+0x20/0xc0 [ 430.743932][ T31] do_syscall_64+0xf3/0x230 [ 430.748521][ T31] ? clear_bhb_loop+0x35/0x90 [ 430.753240][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.759241][ T31] RIP: 0033:0x7f9a56257e2a [ 430.763688][ T31] RSP: 002b:00007ffc27bc0198 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 430.772183][ T31] RAX: ffffffffffffffda RBX: 00007ffc27bc01b0 RCX: 00007f9a56257e2a [ 430.780247][ T31] RDX: 00002000000000c0 RSI: 0000200000000000 RDI: 00007ffc27bc01b0 [ 430.788264][ T31] RBP: 0000200000000000 R08: 00007ffc27bc01f0 R09: 00000000000058fd [ 430.796433][ T31] R10: 0000000000800000 R11: 0000000000000282 R12: 00002000000000c0 [ 430.804476][ T31] R13: 00007ffc27bc01f0 R14: 0000000000000003 R15: 0000000000800000 [ 430.812498][ T31] [ 430.815533][ T31] [ 430.815533][ T31] Showing all locks held in the system: [ 430.823356][ T31] 1 lock held by khungtaskd/31: [ 430.828272][ T31] #0: ffffffff8eb393e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0 [ 430.838255][ T31] 2 locks held by getty/5579: [ 430.842949][ T31] #0: ffff888035c9a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 430.852758][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x616/0x1770 [ 430.862959][ T31] 1 lock held by syz-executor968/5841: [ 430.868461][ T31] #0: ffff888073680278 (&c->state_lock){+.+.}-{4:4}, at: bch2_fs_start+0x45/0x610 [ 430.877951][ T31] [ 430.880291][ T31] ============================================= [ 430.880291][ T31] [ 430.888750][ T31] NMI backtrace for cpu 1 [ 430.888763][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0 [ 430.888783][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 430.888795][ T31] Call Trace: [ 430.888802][ T31] [ 430.888810][ T31] dump_stack_lvl+0x241/0x360 [ 430.888837][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 430.888856][ T31] ? __pfx__printk+0x10/0x10 [ 430.888891][ T31] nmi_cpu_backtrace+0x49c/0x4d0 [ 430.888998][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 430.889018][ T31] ? _printk+0xd5/0x120 [ 430.889041][ T31] ? __pfx__printk+0x10/0x10 [ 430.889066][ T31] ? __wake_up_klogd+0xcc/0x110 [ 430.889090][ T31] ? __pfx__printk+0x10/0x10 [ 430.889118][ T31] ? __rcu_read_unlock+0xa1/0x110 [ 430.889153][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 430.889176][ T31] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 430.889198][ T31] watchdog+0x1058/0x10a0 [ 430.889220][ T31] ? watchdog+0x1ea/0x10a0 [ 430.889243][ T31] ? __pfx_watchdog+0x10/0x10 [ 430.889263][ T31] kthread+0x7a9/0x920 [ 430.889283][ T31] ? __pfx_kthread+0x10/0x10 [ 430.889305][ T31] ? __pfx_watchdog+0x10/0x10 [ 430.889325][ T31] ? __pfx_kthread+0x10/0x10 [ 430.889344][ T31] ? __pfx_kthread+0x10/0x10 [ 430.889367][ T31] ? __pfx_kthread+0x10/0x10 [ 430.889386][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.889406][ T31] ? lockdep_hardirqs_on+0x99/0x150 [ 430.889427][ T31] ? __pfx_kthread+0x10/0x10 [ 430.889448][ T31] ret_from_fork+0x4b/0x80 [ 430.889466][ T31] ? __pfx_kthread+0x10/0x10 [ 430.889486][ T31] ret_from_fork_asm+0x1a/0x30 [ 430.889513][ T31] [ 430.889522][ T31] Sending NMI from CPU 1 to CPUs 0: [ 431.058409][ C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x21/0x30 [ 431.059402][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 431.059417][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0 [ 431.059438][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 431.059449][ T31] Call Trace: [ 431.059457][ T31] [ 431.059466][ T31] dump_stack_lvl+0x241/0x360 [ 431.059488][ T31] ? __pfx_vprintk_emit+0x10/0x10 [ 431.059508][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 431.059526][ T31] ? __pfx__printk+0x10/0x10 [ 431.059549][ T31] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 431.059579][ T31] ? vscnprintf+0x5d/0x90 [ 431.059603][ T31] panic+0x349/0x880 [ 431.059630][ T31] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 431.059653][ T31] ? __pfx_panic+0x10/0x10 [ 431.059682][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 431.059705][ T31] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 431.059726][ T31] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 431.059749][ T31] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 431.059774][ T31] watchdog+0x1097/0x10a0 [ 431.059800][ T31] ? watchdog+0x1ea/0x10a0 [ 431.059827][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.059851][ T31] kthread+0x7a9/0x920 [ 431.059875][ T31] ? __pfx_kthread+0x10/0x10 [ 431.059900][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.059924][ T31] ? __pfx_kthread+0x10/0x10 [ 431.059946][ T31] ? __pfx_kthread+0x10/0x10 [ 431.059973][ T31] ? __pfx_kthread+0x10/0x10 [ 431.059995][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 431.060016][ T31] ? lockdep_hardirqs_on+0x99/0x150 [ 431.060039][ T31] ? __pfx_kthread+0x10/0x10 [ 431.060064][ T31] ret_from_fork+0x4b/0x80 [ 431.060084][ T31] ? __pfx_kthread+0x10/0x10 [ 431.060108][ T31] ret_from_fork_asm+0x1a/0x30 [ 431.060148][ T31] [ 431.240575][ T31] Kernel Offset: disabled [ 431.244897][ T31] Rebooting in 86400 seconds..