SLUB: Unable to allocate memory on CPU 0 (of node 0) on node -1, gfp=0xcc0(GFP_KERNEL) cache: kmalloc-256, object size: 256, buffer size: 512, default order: 0, min order: 0 node 0: slabs: 43, objs: 344, free: 0 node 1: slabs: 676, objs: 5408, free: 2 SLUB: Unable to allocate memory on CPU 0 (of node 0) on node -1, gfp=0xcc0(GFP_KERNEL) cache: kmalloc-256, object size: 256, buffer size: 512, default order: 0, min order: 0 node 0: slabs: 43, objs: 344, free: 0 node 1: slabs: 690, objs: 5520, free: 2 bcachefs (loop0): error allocating memory for key cache key, btree inodes u64s 32 ================================================================== BUG: KASAN: null-ptr-deref in bkey_reassemble fs/bcachefs/bkey.h:505 [inline] BUG: KASAN: null-ptr-deref in btree_key_cache_create fs/bcachefs/btree_key_cache.c:270 [inline] BUG: KASAN: null-ptr-deref in btree_key_cache_fill+0x7c4/0x3010 fs/bcachefs/btree_key_cache.c:344 Write of size 40 at addr 0000000000000000 by task syz.0.0/5347 CPU: 0 UID: 0 PID: 5347 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 Call Trace: dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120 kasan_report+0x118/0x150 mm/kasan/report.c:634 check_region_inline mm/kasan/generic.c:-1 [inline] kasan_check_range+0x2b0/0x2c0 mm/kasan/generic.c:189 __asan_memcpy+0x40/0x70 mm/kasan/shadow.c:106 bkey_reassemble fs/bcachefs/bkey.h:505 [inline] btree_key_cache_create fs/bcachefs/btree_key_cache.c:270 [inline] btree_key_cache_fill+0x7c4/0x3010 fs/bcachefs/btree_key_cache.c:344 bch2_btree_path_traverse_cached+0xc5d/0x10d0 fs/bcachefs/btree_key_cache.c:399 bch2_btree_path_traverse_one+0x372/0x21d0 fs/bcachefs/btree_iter.c:1179 bch2_btree_path_traverse fs/bcachefs/btree_iter.h:250 [inline] bch2_btree_iter_peek_slot+0x74e/0x1fa0 fs/bcachefs/btree_iter.c:2781 __bch2_bkey_get_iter fs/bcachefs/btree_iter.h:632 [inline] bch2_bkey_get_iter fs/bcachefs/btree_iter.h:646 [inline] __bch2_inode_peek+0x133/0x370 fs/bcachefs/inode.c:348 bch2_inode_peek fs/bcachefs/inode.h:136 [inline] bch2_inode_find_by_inum_trans fs/bcachefs/inode.c:411 [inline] bch2_inode_find_by_inum+0xef/0x240 fs/bcachefs/inode.c:420 bchfs_truncate+0x3a8/0xc20 fs/bcachefs/fs-io.c:458 notify_change+0xb33/0xe40 fs/attr.c:552 do_truncate+0x1a4/0x220 fs/open.c:68 do_coredump+0x2ad3/0x3440 fs/coredump.c:790 get_signal+0x1109/0x1340 kernel/signal.c:3019 arch_do_signal_or_restart+0x9a/0x750 arch/x86/kernel/signal.c:337 exit_to_user_mode_loop+0x75/0x110 kernel/entry/common.c:111 exit_to_user_mode_prepare include/linux/entry-common.h:330 [inline] syscall_exit_to_user_mode_work include/linux/entry-common.h:414 [inline] syscall_exit_to_user_mode include/linux/entry-common.h:449 [inline] ret_from_fork+0x47f/0x770 arch/x86/kernel/process.c:157 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 ==================================================================