syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1330]
Subsystems
🐞 Fixed [7148]
🐞 Invalid [18900]
Missing Backports [220]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

WARNING in btrfs_remove_chunk

Status: upstream: reported C repro on 2022/11/30 08:16
Subsystems: btrfs
[Documentation on labels]
Reported-by: syzbot+e8582cc16881ec70a430@syzkaller.appspotmail.com
First crash: 1288d, last: 3d09h
Cause bisection: failed (error log, bisect log)
  
Fix bisection: the issue occurs on the latest tested release (bisect log)
  
✨ AI Jobs (3)
ID Workflow Result Correct Bug Created Started Finished Revision Error
c12bdc9e-0346-4179-a930-d92a9c1d3b25 assessment-security 💥 WARNING in btrfs_remove_chunk 2026/06/09 19:02 2026/06/09 19:02 2026/06/09 19:27 c36c07f6c1f2230a36374cbd22235f635e8f9284 failed to run ["make" "KERNELVERSION=syzkaller" "KERNELRELEASE=syzkaller" "LOCALVERSION=-syzkaller" "-j" "32" "ARCH=x86_64" "CC=ccache clang" "LD=ld.lld" "O=/app/workdir/cache/build/112e76af935a73c9ebaf37723f402bb5e51988b1" "-s" "bzImage" "compile_commands.json"]: exit status 2 Root cause: drivers/nvme/target/fc.c:151:2: warning: 'counted_by' should not be applied to an array with element of unknown size because 'struct nvmet_fc_fcp_iod' is a struct type with a flexible array member. This will be an error in a future compiler version [-Wbounds-safety-counted-by-elt-type-unknown-size] ld.lld: error: undefined symbol: wcslen * * Restart config... * * * General architecture-dependent options * Kprobes (KPROBES) [N/y/?] n Optimize very unlikely/likely branches (JUMP_LABEL) [Y/n/?] y Static key selftest (STATIC_KEYS_SELFTEST) [N/y/?] n Static call selftest (STATIC_CALL_SELFTEST) [N/y/?] n Enable seccomp to safely execute untrusted bytecode (SECCOMP) [Y/n/?] y Show seccomp filter cache status in /proc/pid/seccomp_cache (SECCOMP_CACHE_DEBUG) [N/y/?] n Link Time Optimization (LTO) > 1. None (LTO_NONE) choice[1]: 1 Use Clang's Control Flow Integrity (CFI) (CFI_CLANG) [N/y/?] (NEW) Error in reading or end of file. Number of bits to use for ASLR of mmap base address (ARCH_MMAP_RND_BITS) [28] 28 Number of bits to use for ASLR of mmap base address for compatible applications (ARCH_MMAP_RND_COMPAT_BITS) [8] 8 MMU page size > 1. 4KiB pages (PAGE_SIZE_4KB) choice[1]: 1 Provide system calls for 32-bit time_t (COMPAT_32BIT_TIME) [Y/n/?] y Use a virtually-mapped stack (VMAP_STACK) [Y/n/?] y Support for randomizing kernel stack offset on syscall entry (RANDOMIZE_KSTACK_OFFSET) [Y/n/?] y Default state of kernel stack offset randomization (RANDOMIZE_KSTACK_OFFSET_DEFAULT) [N/y/?] n Locking event counts collection (LOCK_EVENT_COUNTS) [N/y/?] n * * Kernel hardening options * Randomize layout of sensitive kernel structures > 1. Disable structure layout randomization (RANDSTRUCT_NONE) 2. Fully randomize structure layout (RANDSTRUCT_FULL) (NEW) choice[1-2?]: Error in reading or end of file. * * Compile-time checks and compiler options * Debug information 1. Disable debug information (DEBUG_INFO_NONE) 2. Rely on the toolchain's implicit default DWARF version (DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT) > 3. Generate DWARF Version 4 debuginfo (DEBUG_INFO_DWARF4) 4. Generate DWARF Version 5 debuginfo (DEBUG_INFO_DWARF5) choice[1-4?]: 3 Reduce debugging information (DEBUG_INFO_REDUCED) [N/y/?] n Compressed Debug information > 1. Don't compress debug information (DEBUG_INFO_COMPRESSED_NONE) 2. Compress debugging information with zlib (DEBUG_INFO_COMPRESSED_ZLIB) 3. Compress debugging information with zstd (DEBUG_INFO_COMPRESSED_ZSTD) (NEW) choice[1-3?]: Error in reading or end of file. Produce split debuginfo in .dwo files (DEBUG_INFO_SPLIT) [N/y/?] n Generate BTF type information (DEBUG_INFO_BTF) [N/y/?] n Provide GDB scripts for kernel debugging (GDB_SCRIPTS) [N/y/?] n Warn for stack frames larger than (FRAME_WARN) [2048] 2048 Strip assembler-generated symbols during link (STRIP_ASM_SYMS) [N/y/?] n Install uapi headers to usr/include (HEADERS_INSTALL) [N/y/?] n Make section mismatch errors non-fatal (SECTION_MISMATCH_WARN_ONLY) [Y/n/?] y Force all function address 64B aligned (DEBUG_FORCE_FUNCTION_ALIGN_64B) [N/y/?] n Generate vmlinux.map file when linking (VMLINUX_MAP) [N/y/?] n Force weak per-cpu definitions (DEBUG_FORCE_WEAK_PER_CPU) [N/y/?] n In file included from /app/workdir/cache/src/b9c77d40d7c731148ccf99ff7ba2dba6b7488898/io_uring/io_uring.c:96: In file included from /app/workdir/cache/src/b9c77d40d7c731148ccf99ff7ba2dba6b7488898/io_uring/napi.h:8: In file included from /app/workdir/cache/src/b9c77d40d7c731148ccf99ff7ba2dba6b7488898/include/net/busy_poll.h:18: /app/workdir/cache/src/b9c77d40d7c731148ccf99ff7ba2dba6b7488898/include/net/ip.h:472:14: warning: default initialization of an object of type 'typeof (rt->dst.expires)' (aka 'const unsigned long') leaves the object uninitialized [-Wdefault-const-init-var-unsafe] 472 |
e45feef8-96b0-4a16-9459-03be5851302e assessment-security 💥 WARNING in btrfs_remove_chunk 2026/06/02 17:53 2026/06/02 17:53 2026/06/02 18:24 62fe15281f5011cd203d8845b8767b10e7443aa5 failed to run ["make" "KERNELVERSION=syzkaller" "KERNELRELEASE=syzkaller" "LOCALVERSION=-syzkaller" "-j" "32" "ARCH=x86_64" "CC=ccache clang" "LD=ld.lld" "O=/app/workdir/cache/build/112e76af935a73c9ebaf37723f402bb5e51988b1" "-s" "bzImage" "compile_commands.json"]: exit status 2 Root cause: drivers/nvme/target/fc.c:151:2: warning: 'counted_by' should not be applied to an array with element of unknown size because 'struct nvmet_fc_fcp_iod' is a struct type with a flexible array member. This will be an error in a future compiler version [-Wbounds-safety-counted-by-elt-type-unknown-size] ld.lld: error: undefined symbol: wcslen * * Restart config... * * * General architecture-dependent options * Kprobes (KPROBES) [N/y/?] n Optimize very unlikely/likely branches (JUMP_LABEL) [Y/n/?] y Static key selftest (STATIC_KEYS_SELFTEST) [N/y/?] n Static call selftest (STATIC_CALL_SELFTEST) [N/y/?] n Enable seccomp to safely execute untrusted bytecode (SECCOMP) [Y/n/?] y Show seccomp filter cache status in /proc/pid/seccomp_cache (SECCOMP_CACHE_DEBUG) [N/y/?] n Link Time Optimization (LTO) > 1. None (LTO_NONE) choice[1]: 1 Use Clang's Control Flow Integrity (CFI) (CFI_CLANG) [N/y/?] (NEW) Error in reading or end of file. Number of bits to use for ASLR of mmap base address (ARCH_MMAP_RND_BITS) [28] 28 Number of bits to use for ASLR of mmap base address for compatible applications (ARCH_MMAP_RND_COMPAT_BITS) [8] 8 MMU page size > 1. 4KiB pages (PAGE_SIZE_4KB) choice[1]: 1 Provide system calls for 32-bit time_t (COMPAT_32BIT_TIME) [Y/n/?] y Use a virtually-mapped stack (VMAP_STACK) [Y/n/?] y Support for randomizing kernel stack offset on syscall entry (RANDOMIZE_KSTACK_OFFSET) [Y/n/?] y Default state of kernel stack offset randomization (RANDOMIZE_KSTACK_OFFSET_DEFAULT) [N/y/?] n Locking event counts collection (LOCK_EVENT_COUNTS) [N/y/?] n * * Kernel hardening options * Randomize layout of sensitive kernel structures > 1. Disable structure layout randomization (RANDSTRUCT_NONE) 2. Fully randomize structure layout (RANDSTRUCT_FULL) (NEW) choice[1-2?]: Error in reading or end of file. * * Compile-time checks and compiler options * Debug information 1. Disable debug information (DEBUG_INFO_NONE) 2. Rely on the toolchain's implicit default DWARF version (DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT) > 3. Generate DWARF Version 4 debuginfo (DEBUG_INFO_DWARF4) 4. Generate DWARF Version 5 debuginfo (DEBUG_INFO_DWARF5) choice[1-4?]: 3 Reduce debugging information (DEBUG_INFO_REDUCED) [N/y/?] n Compressed Debug information > 1. Don't compress debug information (DEBUG_INFO_COMPRESSED_NONE) 2. Compress debugging information with zlib (DEBUG_INFO_COMPRESSED_ZLIB) 3. Compress debugging information with zstd (DEBUG_INFO_COMPRESSED_ZSTD) (NEW) choice[1-3?]: Error in reading or end of file. Produce split debuginfo in .dwo files (DEBUG_INFO_SPLIT) [N/y/?] n Generate BTF type information (DEBUG_INFO_BTF) [N/y/?] n Provide GDB scripts for kernel debugging (GDB_SCRIPTS) [N/y/?] n Warn for stack frames larger than (FRAME_WARN) [2048] 2048 Strip assembler-generated symbols during link (STRIP_ASM_SYMS) [N/y/?] n Install uapi headers to usr/include (HEADERS_INSTALL) [N/y/?] n Make section mismatch errors non-fatal (SECTION_MISMATCH_WARN_ONLY) [Y/n/?] y Force all function address 64B aligned (DEBUG_FORCE_FUNCTION_ALIGN_64B) [N/y/?] n Generate vmlinux.map file when linking (VMLINUX_MAP) [N/y/?] n Force weak per-cpu definitions (DEBUG_FORCE_WEAK_PER_CPU) [N/y/?] n In file included from /app/workdir/cache/src/b9c77d40d7c731148ccf99ff7ba2dba6b7488898/net/socket.c:108: In file included from /app/workdir/cache/src/b9c77d40d7c731148ccf99ff7ba2dba6b7488898/include/net/busy_poll.h:18: /app/workdir/cache/src/b9c77d40d7c731148ccf99ff7ba2dba6b7488898/include/net/ip.h:472:14: warning: default initialization of an object of type 'typeof (rt->dst.expires)' (aka 'const unsigned long') leaves the object uninitialized [-Wdefault-const-init-var-unsafe] 472 | if (mtu && time_before(jiffies, rt->dst.expires)) | ^ /app/wor
c0d431ed-cf65-4c86-ad91-5b03ce7da1e6 assessment-security 💥 WARNING in btrfs_remove_chunk 2026/05/26 08:21 2026/05/26 08:21 2026/05/26 08:50 c69befb30ac10e158cc9d1557b508ee3f0eca1de failed to run ["make" "KERNELVERSION=syzkaller" "KERNELRELEASE=syzkaller" "LOCALVERSION=-syzkaller" "-j" "32" "ARCH=x86_64" "CC=ccache clang" "LD=ld.lld" "O=/app/workdir/cache/build/112e76af935a73c9ebaf37723f402bb5e51988b1" "-s" "bzImage" "compile_commands.json"]: exit status 2 Root cause: drivers/nvme/target/fc.c:151:2: warning: 'counted_by' should not be applied to an array with element of unknown size because 'struct nvmet_fc_fcp_iod' is a struct type with a flexible array member. This will be an error in a future compiler version [-Wbounds-safety-counted-by-elt-type-unknown-size] ld.lld: error: undefined symbol: wcslen * * Restart config... * * * General architecture-dependent options * Kprobes (KPROBES) [N/y/?] n Optimize very unlikely/likely branches (JUMP_LABEL) [Y/n/?] y Static key selftest (STATIC_KEYS_SELFTEST) [N/y/?] n Static call selftest (STATIC_CALL_SELFTEST) [N/y/?] n Enable seccomp to safely execute untrusted bytecode (SECCOMP) [Y/n/?] y Show seccomp filter cache status in /proc/pid/seccomp_cache (SECCOMP_CACHE_DEBUG) [N/y/?] n Link Time Optimization (LTO) > 1. None (LTO_NONE) choice[1]: 1 Use Clang's Control Flow Integrity (CFI) (CFI_CLANG) [N/y/?] (NEW) Error in reading or end of file. Number of bits to use for ASLR of mmap base address (ARCH_MMAP_RND_BITS) [28] 28 Number of bits to use for ASLR of mmap base address for compatible applications (ARCH_MMAP_RND_COMPAT_BITS) [8] 8 MMU page size > 1. 4KiB pages (PAGE_SIZE_4KB) choice[1]: 1 Provide system calls for 32-bit time_t (COMPAT_32BIT_TIME) [Y/n/?] y Use a virtually-mapped stack (VMAP_STACK) [Y/n/?] y Support for randomizing kernel stack offset on syscall entry (RANDOMIZE_KSTACK_OFFSET) [Y/n/?] y Default state of kernel stack offset randomization (RANDOMIZE_KSTACK_OFFSET_DEFAULT) [N/y/?] n Locking event counts collection (LOCK_EVENT_COUNTS) [N/y/?] n * * Kernel hardening options * Randomize layout of sensitive kernel structures > 1. Disable structure layout randomization (RANDSTRUCT_NONE) 2. Fully randomize structure layout (RANDSTRUCT_FULL) (NEW) choice[1-2?]: Error in reading or end of file. * * Compile-time checks and compiler options * Debug information 1. Disable debug information (DEBUG_INFO_NONE) 2. Rely on the toolchain's implicit default DWARF version (DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT) > 3. Generate DWARF Version 4 debuginfo (DEBUG_INFO_DWARF4) 4. Generate DWARF Version 5 debuginfo (DEBUG_INFO_DWARF5) choice[1-4?]: 3 Reduce debugging information (DEBUG_INFO_REDUCED) [N/y/?] n Compressed Debug information > 1. Don't compress debug information (DEBUG_INFO_COMPRESSED_NONE) 2. Compress debugging information with zlib (DEBUG_INFO_COMPRESSED_ZLIB) 3. Compress debugging information with zstd (DEBUG_INFO_COMPRESSED_ZSTD) (NEW) choice[1-3?]: Error in reading or end of file. Produce split debuginfo in .dwo files (DEBUG_INFO_SPLIT) [N/y/?] n Generate BTF type information (DEBUG_INFO_BTF) [N/y/?] n Provide GDB scripts for kernel debugging (GDB_SCRIPTS) [N/y/?] n Warn for stack frames larger than (FRAME_WARN) [2048] 2048 Strip assembler-generated symbols during link (STRIP_ASM_SYMS) [N/y/?] n Install uapi headers to usr/include (HEADERS_INSTALL) [N/y/?] n Make section mismatch errors non-fatal (SECTION_MISMATCH_WARN_ONLY) [Y/n/?] y Force all function address 64B aligned (DEBUG_FORCE_FUNCTION_ALIGN_64B) [N/y/?] n Generate vmlinux.map file when linking (VMLINUX_MAP) [N/y/?] n Force weak per-cpu definitions (DEBUG_FORCE_WEAK_PER_CPU) [N/y/?] n In file included from /app/workdir/cache/src/35407f2727174c5a4fae1b926969a1db881907aa/io_uring/io_uring.c:96: In file included from /app/workdir/cache/src/35407f2727174c5a4fae1b926969a1db881907aa/io_uring/napi.h:8: In file included from /app/workdir/cache/src/35407f2727174c5a4fae1b926969a1db881907aa/include/net/busy_poll.h:18: /app/workdir/cache/src/35407f2727174c5a4fae1b926969a1db881907aa/include/net/ip.h:472:14: warning: default initialization of an object of type 'typeof (rt->dst.expires)' (aka 'const unsigned long') leaves the object uninitialized [-Wdefault-const-init-var-unsafe] 472 |
Discussions (36)
Title Replies (including bot) Last reply
[syzbot] Monthly btrfs report (Jun 2026) 0 (1) 2026/06/03 04:32
[syzbot] Monthly btrfs report (May 2026) 0 (1) 2026/05/02 20:32
[syzbot] Monthly btrfs report (Apr 2026) 0 (1) 2026/04/01 13:14
[syzbot] Monthly btrfs report (Mar 2026) 0 (1) 2026/03/03 08:06
[syzbot] Monthly btrfs report (Jan 2026) 0 (1) 2026/01/29 09:07
[syzbot] Monthly btrfs report (Dec 2025) 0 (1) 2025/12/29 10:21
[syzbot] Monthly btrfs report (Oct 2025) 0 (1) 2025/10/27 12:50
[syzbot] Monthly btrfs report (Sep 2025) 0 (1) 2025/09/26 05:14
[syzbot] Monthly btrfs report (Aug 2025) 0 (1) 2025/08/26 07:13
[syzbot] Monthly btrfs report (Jul 2025) 0 (1) 2025/07/25 12:39
Re: WARNING in btrfs_remove_chunk 1 (1) 2025/07/11 07:44
[syzbot] Monthly btrfs report (Jun 2025) 0 (1) 2025/06/24 07:33
[syzbot] Monthly btrfs report (May 2025) 0 (1) 2025/05/24 10:05
[syzbot] Monthly btrfs report (Mar 2025) 0 (1) 2025/03/22 18:47
[syzbot] Monthly btrfs report (Feb 2025) 0 (1) 2025/02/19 12:35
[syzbot] Monthly btrfs report (Jan 2025) 0 (1) 2025/01/20 08:14
[syzbot] Monthly btrfs report (Dec 2024) 0 (1) 2024/12/19 18:39
[syzbot] Monthly btrfs report (Nov 2024) 0 (1) 2024/11/18 10:39
[syzbot] Monthly btrfs report (Oct 2024) 0 (1) 2024/10/17 07:41
[syzbot] Monthly btrfs report (Sep 2024) 0 (1) 2024/09/16 12:27
[syzbot] Monthly btrfs report (Aug 2024) 0 (1) 2024/08/16 09:47
[syzbot] Monthly btrfs report (Jul 2024) 0 (1) 2024/07/15 14:03
[syzbot] Monthly btrfs report (Jun 2024) 0 (1) 2024/06/14 08:14
[syzbot] Monthly btrfs report (May 2024) 0 (1) 2024/05/13 21:13
[syzbot] Monthly btrfs report (Mar 2024) 0 (1) 2024/03/12 09:29
[syzbot] Monthly btrfs report (Feb 2024) 2 (3) 2024/02/12 12:15
[syzbot] Monthly btrfs report (Jan 2024) 0 (1) 2024/01/10 09:16
[syzbot] Monthly btrfs report (Dec 2023) 0 (1) 2023/12/06 10:05
[syzbot] Monthly btrfs report (Nov 2023) 0 (1) 2023/11/05 13:07
[syzbot] Monthly btrfs report (Aug 2023) 0 (1) 2023/08/30 09:53
[syzbot] Monthly btrfs report (Jul 2023) 0 (1) 2023/07/30 13:15
[syzbot] Monthly btrfs report (Jun 2023) 0 (1) 2023/06/29 10:14
[syzbot] Monthly btrfs report (May 2023) 0 (1) 2023/05/30 08:21
[syzbot] Monthly btrfs report (Apr 2023) 0 (1) 2023/04/27 10:13
[syzbot] [btrfs] Monthly Report 1 (2) 2023/03/27 13:42
[syzbot] WARNING in btrfs_remove_chunk 0 (1) 2022/11/30 08:16
Similar bugs (4)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-5.15 WARNING in btrfs_remove_chunk missing-backport origin:upstream -1 C inconclusive 117 7d17h 1181d 0/3 upstream: reported C repro on 2023/03/17 14:37
linux-6.6 WARNING in btrfs_remove_chunk origin:upstream -1 C error 6 151d 271d 0/2 upstream: reported C repro on 2025/09/12 10:19
linux-6.1 WARNING in btrfs_remove_chunk (2) origin:upstream -1 C error 69 12d 903d 0/3 upstream: reported C repro on 2023/12/20 03:26
linux-6.1 WARNING in btrfs_remove_chunk origin:lts-only -1 C done 10 1077d 1167d 3/3 fixed on 2023/09/19 11:51
Last patch testing requests (10)
Created Duration User Patch Repo Result
2026/05/13 22:30 21m retest repro upstream report log
2026/05/13 22:30 44m retest repro upstream report log
2026/04/13 22:34 25m retest repro git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci error
2026/04/13 22:34 1h39m retest repro git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci error
2026/03/04 20:13 12m retest repro upstream report log
2026/03/04 20:13 13m retest repro upstream report log
2025/11/18 11:37 13m retest repro upstream report log
2025/11/18 11:37 13m retest repro upstream report log
2025/11/04 07:45 29m retest repro git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci OK log
2025/11/04 07:45 22m retest repro git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci report log

Sample crash report:
BTRFS critical (device loop2): entry offset 1048576, bytes 4194304, bitmap no
------------[ cut here ]------------
BTRFS: Transaction aborted (error -28)
WARNING: CPU: 0 PID: 7953 at fs/btrfs/volumes.c:3285 btrfs_remove_chunk+0x1b24/0x1b30 fs/btrfs/volumes.c:3285
Modules linked in:
CPU: 0 PID: 7953 Comm: syz-executor343 Not tainted 6.9.0-syzkaller-01768-ga5131c3fdf26 #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:btrfs_remove_chunk+0x1b24/0x1b30 fs/btrfs/volumes.c:3285
Code: 0b 90 90 e9 15 fd ff ff 4c 89 f7 e8 b6 53 51 fe e9 8d fd ff ff e8 3c 08 f6 fd 90 48 c7 c7 20 82 77 8b 89 de e8 9d 51 b8 fd 90 <0f> 0b 90 90 e9 86 fd ff ff 0f 1f 00 90 90 90 90 90 90 90 90 90 90
RSP: 0018:ffffc9000fc9f810 EFLAGS: 00010286
RAX: 0000000000000000 RBX: ffffffffffffffe4 RCX: ffffffff81504339
RDX: ffff88801d642440 RSI: ffffffff81504346 RDI: 0000000000000001
RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000006 R12: 0000000000000000
R13: ffff8880211aac60 R14: ffff8880303d2500 R15: ffff8880303d24fc
FS:  00007fe03a3de6c0(0000) GS:ffff88806b200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fe03a47c1b8 CR3: 0000000022e08000 CR4: 0000000000350ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 btrfs_relocate_chunk+0x2ba/0x450 fs/btrfs/volumes.c:3415
 __btrfs_balance fs/btrfs/volumes.c:4154 [inline]
 btrfs_balance+0x2102/0x3f00 fs/btrfs/volumes.c:4531
 btrfs_ioctl_balance fs/btrfs/ioctl.c:3675 [inline]
 btrfs_ioctl+0x12e3/0x5990 fs/btrfs/ioctl.c:4742
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:904 [inline]
 __se_sys_ioctl fs/ioctl.c:890 [inline]
 __x64_sys_ioctl+0x193/0x220 fs/ioctl.c:890
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcf/0x260 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fe03a42fd79
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 1b 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fe03a3de218 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007fe03a4b66c8 RCX: 00007fe03a42fd79
RDX: 0000000020001200 RSI: 00000000c4009420 RDI: 0000000000000004
RBP: 00007fe03a4b66c0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe03a48272c
R13: 0030656c69662f2e R14: 64696c6f76627573 R15: 0000000100004000
 </TASK>

Crashes (461):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/05/14 07:30 upstream a5131c3fdf26 fdb4c10c .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] [mounted in repro] ci-qemu-upstream WARNING in btrfs_remove_chunk
2024/04/14 00:24 upstream fa4022cb7361 c8349e48 .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] [mounted in repro] ci-qemu-upstream WARNING in btrfs_remove_chunk
2025/09/20 09:32 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 506ba4ea4cf5 67c37560 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (clean fs)] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/08/12 11:18 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 8f5ae30d69d7 c06e8995 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (clean fs)] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2024/01/15 20:49 upstream 052d534373b7 2a7bcc7f .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kasan-gce-selinux-root WARNING in btrfs_remove_chunk
2023/06/15 17:15 upstream b6dad5178cea 90d4044e .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs WARNING in btrfs_remove_chunk
2023/03/31 04:29 upstream 8bb95a1662f8 f325deb0 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs WARNING in btrfs_remove_chunk
2022/11/30 01:43 upstream ca57f02295f1 579a3740 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs WARNING in btrfs_remove_chunk
2023/01/18 21:42 linux-next f3381a7baf5c 42660d9e .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-linux-next-kasan-gce-root WARNING in btrfs_remove_chunk
2023/03/31 03:51 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 59caa87f9dfb f325deb0 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/10/20 12:23 upstream 211ddde0823f 1c8c8cd8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in btrfs_remove_chunk
2025/10/09 10:10 upstream cd5a0afbdf80 7e2882b3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs WARNING in btrfs_remove_chunk
2025/09/11 03:47 upstream 7aac71907bde fdeaa69b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-badwrites-root WARNING in btrfs_remove_chunk
2024/06/21 17:45 upstream 50736169ecc8 dac2aa43 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in btrfs_remove_chunk
2023/11/26 20:30 upstream 090472ed9c92 5b429f39 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root WARNING in btrfs_remove_chunk
2023/10/08 09:18 upstream b9ddbb0cde2a 5e837c76 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kasan-gce-selinux-root WARNING in btrfs_remove_chunk
2026/06/07 13:29 upstream 8e65320d91cd cc095639 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/06/02 01:23 upstream e43ffb69e043 1095583b .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/05/17 01:01 upstream 6916d5703ddf de5aae85 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/04/20 03:36 upstream bea8d77e45a8 303e2802 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/04/17 10:06 upstream 3cd8b194bf34 de0a551d .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/03/30 18:27 upstream 7aaa8047eafd aa4af680 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/03/18 00:54 upstream f0caa1d49cc0 c8810548 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/03/15 01:28 upstream 69237f8c1f69 ee8d34d6 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/03/14 06:31 upstream 1c9982b49613 ee8d34d6 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/03/11 18:18 upstream b29fb8829bff 2d88ab01 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/03/06 09:17 upstream 5ee8dbf54602 31e9c887 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/02/17 23:59 upstream d295082ea672 f4288eed .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/02/11 16:49 upstream 192c0159402e 75707236 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/02/07 21:45 upstream e7aa57247700 4c131dc4 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/01/31 04:52 upstream 283073725700 c75a2f6e .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/01/25 08:08 upstream 5dbeeb268b63 40acda8a .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/01/23 07:07 upstream c072629f05d7 82c9c083 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/01/20 23:49 upstream c03e9c42ae8f 2494e18d .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/01/16 12:24 upstream 54e82e93ca93 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/01/14 08:30 upstream 54e82e93ca93 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2026/01/10 21:22 upstream 54e82e93ca93 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/12/30 07:17 upstream 8640b74557fc d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/12/27 18:02 upstream c53f467229a7 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/12/25 06:15 upstream ccd1cdca5cd4 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/12/18 12:20 upstream ea1013c15392 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/12/07 13:31 upstream c06c303832ec d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/12/06 14:04 upstream 416f99c3b16f d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/11/30 07:25 upstream 6bda50f4333f d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/10/20 16:23 upstream 211ddde0823f d422939c .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/10/20 12:43 upstream 211ddde0823f 1c8c8cd8 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/10/20 10:34 upstream 211ddde0823f 1c8c8cd8 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/09/25 08:46 upstream 4ea5af085908 0abd0691 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2025/09/24 07:46 upstream cec1e6e5d1ab 0abd0691 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in btrfs_remove_chunk
2024/06/07 14:26 upstream 8a92980606e3 c2e07261 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream WARNING in btrfs_remove_chunk
2024/06/18 06:06 upstream 2ccbdf43d5e7 c2e07261 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 WARNING in btrfs_remove_chunk
2022/11/29 23:47 upstream ca57f02295f1 579a3740 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs WARNING in btrfs_remove_chunk
2026/06/01 00:11 linux-next f7af91adc230 6b4a8443 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root WARNING in btrfs_remove_chunk
2026/02/18 19:43 linux-next 50f68cc7be0a 77d4d919 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root WARNING in btrfs_remove_chunk
2023/05/24 10:57 linux-next 715abedee4cd 4bce1a3e .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-linux-next-kasan-gce-root WARNING in btrfs_remove_chunk
2025/10/12 04:14 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bf45a62baffc ff1712fe .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/10/10 08:19 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bf45a62baffc ff1712fe .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/10/07 17:53 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bf45a62baffc 8ef35d49 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/09/26 09:50 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 35aa5763e111 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/09/26 07:11 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 35aa5763e111 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/09/26 04:18 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 35aa5763e111 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/09/24 18:25 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 0f3be52b8e37 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/09/23 18:54 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci b785b0878b01 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2025/09/23 13:13 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci b5db4add5e77 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2023/01/26 04:08 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 2e84eedb182e 9dfcf09c .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
2022/11/30 18:02 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci cdb931b58ff5 4c2a66e8 .config console log report syz [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-gce-arm64 WARNING in btrfs_remove_chunk
* Struck through repros no longer work on HEAD.