./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3856979130
<...>
[ 101.452402][ T9] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.204' (ED25519) to the list of known hosts.
execve("./syz-executor3856979130", ["./syz-executor3856979130"], 0x7ffec2bfa3c0 /* 10 vars */) = 0
brk(NULL) = 0x55558138e000
brk(0x55558138ed00) = 0x55558138ed00
arch_prctl(ARCH_SET_FS, 0x55558138e380) = 0
set_tid_address(0x55558138e650) = 5837
set_robust_list(0x55558138e660, 24) = 0
rseq(0x55558138eca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3856979130", 4096) = 28
getrandom("\x45\x59\x6e\x37\xa5\x1d\xcc\x2f", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x55558138ed00
brk(0x5555813afd00) = 0x5555813afd00
brk(0x5555813b0000) = 0x5555813b0000
mprotect(0x7f4cef20a000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5838 attached
, child_tidptr=0x55558138e650) = 5838
[pid 5838] set_robust_list(0x55558138e660, 24) = 0
[pid 5838] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5838] setpgid(0, 0) = 0
[pid 5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5838] write(3, "1000", 4) = 4
[pid 5838] close(3) = 0
[pid 5838] write(1, "executing program\n", 18executing program
) = 18
[pid 5838] memfd_create("syzkaller", 0) = 3
[pid 5838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4ce6c00000
[pid 5838] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5838] munmap(0x7f4ce6c00000, 138412032) = 0
[pid 5838] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5838] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5838] close(3) = 0
[pid 5838] close(4) = 0
[pid 5838] mkdir("./file0", 0777) = 0
[ 106.864204][ T5838] loop0: detected capacity change from 0 to 32768
[ 106.951350][ T5838] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[ 106.951350][ T5838] allowing incompatible features above 0.0: (unknown version)
[ 106.951350][ T5838] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[ 106.993685][ T5838] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[ 107.002109][ T5838] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[ 107.010357][ T5838] bcachefs (loop0): Version upgrade required:
[ 107.010357][ T5838] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[ 107.010357][ T5838] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[ 107.010357][ T5838] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[ 107.086663][ T5838] bcachefs (loop0): dropping and reconstructing all alloc info
[ 107.112422][ T5838] bcachefs (loop0): accounting_read... done
[ 107.120540][ T5838] bcachefs (loop0): alloc_read... done
[ 107.127293][ T5838] bcachefs (loop0): snapshots_read... done
[ 107.134618][ T5838] bcachefs (loop0): check_allocations... done
[ 107.165051][ T5838] bcachefs (loop0): going read-write
[ 107.195473][ T5849] ODEBUG: object ffffc90003edfa98 is on stack ffffc90003ed8000, but NOT annotated.
[ 107.195851][ T5849]
[ 107.195860][ T5849] ======================================================
[ 107.195873][ T5849] WARNING: possible circular locking dependency detected
[ 107.195886][ T5849] 6.16.0-rc1-syzkaller-00003-gf09079bd04a9 #0 Not tainted
[ 107.195905][ T5849] ------------------------------------------------------
[ 107.195917][ T5849] bch-copygc/loop/5849 is trying to acquire lock:
[ 107.195932][ T5849] ffffffff8e4d1dc0 (console_owner){....}-{0:0}, at: console_lock_spinning_enable+0x9f/0xd0
[ 107.195999][ T5849]
[ 107.195999][ T5849] but task is already holding lock:
[ 107.196006][ T5849] ffffffff9afe9da0 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0xec/0x3d0
[ 107.196065][ T5849]
[ 107.196065][ T5849] which lock already depends on the new lock.
[ 107.196065][ T5849]
[ 107.196073][ T5849]
[ 107.196073][ T5849] the existing dependency chain (in reverse order) is:
[ 107.196082][ T5849]
[ 107.196082][ T5849] -> #4 (&obj_hash[i].lock){-.-.}-{2:2}:
[ 107.196116][ T5849] _raw_spin_lock_irqsave+0x3a/0x60
[ 107.196165][ T5849] debug_object_activate+0x14c/0x4c0
[ 107.196193][ T5849] insert_work+0x2e/0x230
[ 107.196215][ T5849] __queue_work+0x97e/0x10f0
[ 107.196239][ T5849] queue_work_on+0x15f/0x1f0
[ 107.196265][ T5849] start_poll_synchronize_rcu_expedited+0x113/0x190
[ 107.196306][ T5849] rcu_init+0xe95/0x1630
[ 107.196346][ T5849] start_kernel+0x1df/0x4d0
[ 107.196378][ T5849] x86_64_start_reservations+0x18/0x30
[ 107.196412][ T5849] x86_64_start_kernel+0x130/0x190
[ 107.196451][ T5849] common_startup_64+0x13e/0x148
[ 107.196500][ T5849]
[ 107.196500][ T5849] -> #3 (&pool->lock){-.-.}-{2:2}:
[ 107.196534][ T5849] _raw_spin_lock+0x2e/0x40
[ 107.196569][ T5849] __queue_work+0x26b/0x10f0
[ 107.196593][ T5849] queue_work_on+0x15f/0x1f0
[ 107.196617][ T5849] rpm_suspend+0xeba/0x11d0
[ 107.196657][ T5849] rpm_idle+0x5b4/0x730
[ 107.196695][ T5849] __pm_runtime_idle+0xba/0x1a0
[ 107.196735][ T5849] __device_attach+0x37e/0x4b0
[ 107.196775][ T5849] bus_probe_device+0x17f/0x1c0
[ 107.196810][ T5849] device_add+0x1148/0x1a70
[ 107.196835][ T5849] serial_base_port_add+0x357/0x4b0
[ 107.196863][ T5849] serial_core_register_port+0x13c/0x2570
[ 107.196890][ T5849] serial8250_register_8250_port+0x159b/0x23c0
[ 107.196926][ T5849] serial_pnp_probe+0x431/0x910
[ 107.196960][ T5849] pnp_device_probe+0x2a8/0x4d0
[ 107.196988][ T5849] really_probe+0x241/0xa90
[ 107.197025][ T5849] __driver_probe_device+0x1de/0x440
[ 107.197066][ T5849] driver_probe_device+0x4c/0x1b0
[ 107.197105][ T5849] __driver_attach+0x283/0x580
[ 107.197145][ T5849] bus_for_each_dev+0x13e/0x1d0
[ 107.197175][ T5849] bus_add_driver+0x2e9/0x690
[ 107.197209][ T5849] driver_register+0x15c/0x4b0
[ 107.197232][ T5849] serial8250_init+0xc9/0x1e0
[ 107.197266][ T5849] do_one_initcall+0x123/0x6e0
[ 107.197291][ T5849] kernel_init_freeable+0x5c2/0x900
[ 107.197325][ T5849] kernel_init+0x1c/0x2b0
[ 107.197355][ T5849] ret_from_fork+0x5d7/0x6f0
[ 107.197392][ T5849] ret_from_fork_asm+0x1a/0x30
[ 107.197418][ T5849]
[ 107.197418][ T5849] -> #2 (&dev->power.lock){-...}-{3:3}:
[ 107.197461][ T5849] _raw_spin_lock_irqsave+0x3a/0x60
[ 107.197498][ T5849] __pm_runtime_resume+0xa9/0x170
[ 107.197539][ T5849] __uart_start+0x1b0/0x4c0
[ 107.197572][ T5849] uart_write+0x218/0xb30
[ 107.197593][ T5849] n_tty_write+0x412/0x1160
[ 107.197621][ T5849] file_tty_write.constprop.0+0x504/0x9b0
[ 107.197664][ T5849] redirected_tty_write+0xd4/0x150
[ 107.197706][ T5849] vfs_write+0x6c7/0x1150
[ 107.197731][ T5849] ksys_write+0x12a/0x250
[ 107.197757][ T5849] do_syscall_64+0xcd/0x4c0
[ 107.197780][ T5849] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.197807][ T5849]
[ 107.197807][ T5849] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 107.197840][ T5849] _raw_spin_lock_irqsave+0x3a/0x60
[ 107.197877][ T5849] serial8250_console_write+0x181/0x1890
[ 107.197908][ T5849] console_flush_all+0x801/0xc60
[ 107.197937][ T5849] console_unlock+0xd8/0x210
[ 107.197965][ T5849] vprintk_emit+0x418/0x6d0
[ 107.197995][ T5849] _printk+0xc7/0x100
[ 107.198034][ T5849] register_console+0xc2d/0x11b0
[ 107.198070][ T5849] univ8250_console_init+0x5f/0x90
[ 107.198102][ T5849] console_init+0x14f/0x680
[ 107.198135][ T5849] start_kernel+0x29f/0x4d0
[ 107.198166][ T5849] x86_64_start_reservations+0x18/0x30
[ 107.198200][ T5849] x86_64_start_kernel+0x130/0x190
[ 107.198234][ T5849] common_startup_64+0x13e/0x148
[ 107.198276][ T5849]
[ 107.198276][ T5849] -> #0 (console_owner){....}-{0:0}:
[ 107.198309][ T5849] __lock_acquire+0x126f/0x1c90
[ 107.198349][ T5849] lock_acquire+0x179/0x350
[ 107.198388][ T5849] console_lock_spinning_enable+0xb0/0xd0
[ 107.198417][ T5849] console_flush_all+0x7aa/0xc60
[ 107.198449][ T5849] console_unlock+0xd8/0x210
[ 107.198477][ T5849] vprintk_emit+0x418/0x6d0
[ 107.198507][ T5849] _printk+0xc7/0x100
[ 107.198546][ T5849] lookup_object_or_alloc.part.0+0x3d7/0x590
[ 107.198575][ T5849] __debug_object_init+0x2a9/0x3d0
[ 107.198602][ T5849] __init_work+0x4c/0x60
[ 107.198638][ T5849] rhashtable_init_noprof+0x49f/0x7e0
[ 107.198676][ T5849] bch2_copygc_thread+0xf6/0xdd0
[ 107.198712][ T5849] kthread+0x3c5/0x780
[ 107.198752][ T5849] ret_from_fork+0x5d7/0x6f0
[ 107.198788][ T5849] ret_from_fork_asm+0x1a/0x30
[ 107.198814][ T5849]
[ 107.198814][ T5849] other info that might help us debug this:
[ 107.198814][ T5849]
[ 107.198822][ T5849] Chain exists of:
[ 107.198822][ T5849] console_owner --> &pool->lock --> &obj_hash[i].lock
[ 107.198822][ T5849]
[ 107.198861][ T5849] Possible unsafe locking scenario:
[ 107.198861][ T5849]
[ 107.198868][ T5849] CPU0 CPU1
[ 107.198875][ T5849] ---- ----
[ 107.198882][ T5849] lock(&obj_hash[i].lock);
[ 107.198899][ T5849] lock(&pool->lock);
[ 107.198917][ T5849] lock(&obj_hash[i].lock);
[ 107.198935][ T5849] lock(console_owner);
[ 107.198951][ T5849]
[ 107.198951][ T5849] *** DEADLOCK ***
[ 107.198951][ T5849]
[ 107.198958][ T5849] 3 locks held by bch-copygc/loop/5849:
[ 107.198973][ T5849] #0: ffffffff9afe9da0 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0xec/0x3d0
[ 107.199038][ T5849] #1: ffffffff8e5b2200 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100
[ 107.199121][ T5849] #2: ffffffff8e5b2270 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60
[ 107.199186][ T5849]
[ 107.199186][ T5849] stack backtrace:
[ 107.199197][ T5849] CPU: 0 UID: 0 PID: 5849 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00003-gf09079bd04a9 #0 PREEMPT(full)
[ 107.199231][ T5849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 107.199246][ T5849] Call Trace:
[ 107.199255][ T5849]
[ 107.199264][ T5849] dump_stack_lvl+0x116/0x1f0
[ 107.199310][ T5849] print_circular_bug+0x275/0x350
[ 107.199351][ T5849] check_noncircular+0x14c/0x170
[ 107.199396][ T5849] __lock_acquire+0x126f/0x1c90
[ 107.199452][ T5849] lock_acquire+0x179/0x350
[ 107.199493][ T5849] ? console_lock_spinning_enable+0x9f/0xd0
[ 107.199526][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.199562][ T5849] console_lock_spinning_enable+0xb0/0xd0
[ 107.199593][ T5849] ? console_lock_spinning_enable+0x9f/0xd0
[ 107.199624][ T5849] console_flush_all+0x7aa/0xc60
[ 107.199661][ T5849] ? __pfx_console_flush_all+0x10/0x10
[ 107.199698][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.199731][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.199764][ T5849] ? is_printk_cpu_sync_owner+0x32/0x40
[ 107.199803][ T5849] console_unlock+0xd8/0x210
[ 107.199833][ T5849] ? __pfx_console_unlock+0x10/0x10
[ 107.199863][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.199895][ T5849] ? do_raw_spin_unlock+0x100/0x230
[ 107.199925][ T5849] ? _printk+0xc7/0x100
[ 107.199966][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.199998][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200033][ T5849] vprintk_emit+0x418/0x6d0
[ 107.200066][ T5849] ? __pfx_vprintk_emit+0x10/0x10
[ 107.200101][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200136][ T5849] _printk+0xc7/0x100
[ 107.200177][ T5849] ? __pfx__printk+0x10/0x10
[ 107.200221][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200254][ T5849] ? do_raw_spin_lock+0x12c/0x2b0
[ 107.200282][ T5849] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 107.200313][ T5849] lookup_object_or_alloc.part.0+0x3d7/0x590
[ 107.200348][ T5849] __debug_object_init+0x2a9/0x3d0
[ 107.200382][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200416][ T5849] ? __pfx___debug_object_init+0x10/0x10
[ 107.200458][ T5849] __init_work+0x4c/0x60
[ 107.200499][ T5849] rhashtable_init_noprof+0x49f/0x7e0
[ 107.200539][ T5849] ? __lock_acquire+0xb8a/0x1c90
[ 107.200583][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 107.200626][ T5849] bch2_copygc_thread+0xf6/0xdd0
[ 107.200663][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200698][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 107.200735][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200771][ T5849] ? do_raw_spin_lock+0x12c/0x2b0
[ 107.200811][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200845][ T5849] ? __pfx_rhashtable_jhash2+0x10/0x10
[ 107.200903][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.200940][ T5849] ? rcu_is_watching+0x12/0xc0
[ 107.200977][ T5849] ? finish_task_switch.isra.0+0x221/0xc10
[ 107.201011][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.201044][ T5849] ? lockdep_hardirqs_on+0x7c/0x110
[ 107.201088][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.201125][ T5849] ? finish_task_switch.isra.0+0x221/0xc10
[ 107.201181][ T5849] ? rcu_is_watching+0x12/0xc0
[ 107.201213][ T5849] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 107.201254][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.201287][ T5849] ? lockdep_hardirqs_on+0x7c/0x110
[ 107.201332][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.201365][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.201398][ T5849] ? __kthread_parkme+0x19e/0x250
[ 107.201442][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 107.201482][ T5849] kthread+0x3c5/0x780
[ 107.201526][ T5849] ? __pfx_kthread+0x10/0x10
[ 107.201571][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 107.201604][ T5849] ? rcu_is_watching+0x12/0xc0
[ 107.201639][ T5849] ? __pfx_kthread+0x10/0x10
[ 107.201686][ T5849] ret_from_fork+0x5d7/0x6f0
[ 107.201730][ T5849] ? __pfx_kthread+0x10/0x10
[ 107.201793][ T5849] ret_from_fork_asm+0x1a/0x30
[ 107.201842][ T5849]
[ 107.203579][ T5838] bcachefs (loop0): done starting filesystem
[ 107.212090][ T5849] ------------[ cut here ]------------
[ 108.250165][ T5849] WARNING: CPU: 0 PID: 5849 at lib/debugobjects.c:655 lookup_object_or_alloc.part.0+0x2b1/0x590
[ 108.260724][ T5849] Modules linked in:
[ 108.264665][ T5849] CPU: 0 UID: 0 PID: 5849 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00003-gf09079bd04a9 #0 PREEMPT(full)
[ 108.277118][ T5849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 108.287187][ T5849] RIP: 0010:lookup_object_or_alloc.part.0+0x2b1/0x590
[ 108.293988][ T5849] Code: 0e 48 8d 7d 20 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 58 02 00 00 48 8b 55 20 4c 89 e6 48 c7 c7 60 67 15 8c e8 a0 ea bb fc 90 <0f> 0b 90 48 83 c4 18 48 89 d8 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d1
[ 108.314069][ T5849] RSP: 0018:ffffc90003edf7b0 EFLAGS: 00010086
[ 108.320167][ T5849] RAX: 0000000000000050 RBX: ffff888054a6f1f8 RCX: ffffffff819b01d9
[ 108.328156][ T5849] RDX: 0000000000000000 RSI: ffffffff819b8066 RDI: 0000000000000005
[ 108.336139][ T5849] RBP: ffff8880354d8000 R08: 0000000000000005 R09: 0000000000000000
[ 108.344124][ T5849] R10: 0000000080000001 R11: 0000000000002c00 R12: ffffc90003edfa98
[ 108.352111][ T5849] R13: ffff8880354d8000 R14: 0000000000000000 R15: 0000000000000000
[ 108.360102][ T5849] FS: 0000000000000000(0000) GS:ffff88812475b000(0000) knlGS:0000000000000000
[ 108.369059][ T5849] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 108.375662][ T5849] CR2: 0000563990f23f60 CR3: 000000000e382000 CR4: 0000000000350ef0
[ 108.383649][ T5849] Call Trace:
[ 108.386938][ T5849]
[ 108.389876][ T5849] __debug_object_init+0x2a9/0x3d0
[ 108.395026][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.400724][ T5849] ? __pfx___debug_object_init+0x10/0x10
[ 108.406396][ T5849] __init_work+0x4c/0x60
[ 108.410681][ T5849] rhashtable_init_noprof+0x49f/0x7e0
[ 108.416100][ T5849] ? __lock_acquire+0xb8a/0x1c90
[ 108.421082][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 108.426666][ T5849] bch2_copygc_thread+0xf6/0xdd0
[ 108.431635][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.437302][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 108.442910][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.448567][ T5849] ? do_raw_spin_lock+0x12c/0x2b0
[ 108.453620][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.459284][ T5849] ? __pfx_rhashtable_jhash2+0x10/0x10
[ 108.464799][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.470459][ T5849] ? rcu_is_watching+0x12/0xc0
[ 108.475253][ T5849] ? finish_task_switch.isra.0+0x221/0xc10
[ 108.481086][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.486743][ T5849] ? lockdep_hardirqs_on+0x7c/0x110
[ 108.491983][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.497642][ T5849] ? finish_task_switch.isra.0+0x221/0xc10
[ 108.503515][ T5849] ? rcu_is_watching+0x12/0xc0
[ 108.508306][ T5849] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 108.514143][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.519802][ T5849] ? lockdep_hardirqs_on+0x7c/0x110
[ 108.525038][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.530698][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.536358][ T5849] ? __kthread_parkme+0x19e/0x250
[ 108.541420][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 108.546998][ T5849] kthread+0x3c5/0x780
[ 108.551103][ T5849] ? __pfx_kthread+0x10/0x10
[ 108.555734][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.561395][ T5849] ? rcu_is_watching+0x12/0xc0
[ 108.566187][ T5849] ? __pfx_kthread+0x10/0x10
[ 108.570817][ T5849] ret_from_fork+0x5d7/0x6f0
[ 108.575450][ T5849] ? __pfx_kthread+0x10/0x10
[ 108.580081][ T5849] ret_from_fork_asm+0x1a/0x30
[ 108.584869][ T5849]
[ 108.587891][ T5849] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 108.595182][ T5849] CPU: 0 UID: 0 PID: 5849 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00003-gf09079bd04a9 #0 PREEMPT(full)
[ 108.607617][ T5849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 108.617685][ T5849] Call Trace:
[ 108.620972][ T5849]
[ 108.623907][ T5849] dump_stack_lvl+0x3d/0x1f0
[ 108.628540][ T5849] panic+0x71c/0x800
[ 108.632478][ T5849] ? __pfx_panic+0x10/0x10
[ 108.636934][ T5849] ? show_trace_log_lvl+0x29b/0x3e0
[ 108.642171][ T5849] ? check_panic_on_warn+0x1f/0xb0
[ 108.647325][ T5849] ? lookup_object_or_alloc.part.0+0x2b1/0x590
[ 108.653503][ T5849] check_panic_on_warn+0xab/0xb0
[ 108.658484][ T5849] __warn+0xf6/0x3c0
[ 108.662420][ T5849] ? lookup_object_or_alloc.part.0+0x2b1/0x590
[ 108.668609][ T5849] report_bug+0x3c3/0x580
[ 108.673008][ T5849] ? lookup_object_or_alloc.part.0+0x2b1/0x590
[ 108.679188][ T5849] handle_bug+0x184/0x210
[ 108.683742][ T5849] exc_invalid_op+0x17/0x50
[ 108.688266][ T5849] asm_exc_invalid_op+0x1a/0x20
[ 108.693166][ T5849] RIP: 0010:lookup_object_or_alloc.part.0+0x2b1/0x590
[ 108.699984][ T5849] Code: 0e 48 8d 7d 20 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 58 02 00 00 48 8b 55 20 4c 89 e6 48 c7 c7 60 67 15 8c e8 a0 ea bb fc 90 <0f> 0b 90 48 83 c4 18 48 89 d8 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d1
[ 108.719627][ T5849] RSP: 0018:ffffc90003edf7b0 EFLAGS: 00010086
[ 108.725720][ T5849] RAX: 0000000000000050 RBX: ffff888054a6f1f8 RCX: ffffffff819b01d9
[ 108.733713][ T5849] RDX: 0000000000000000 RSI: ffffffff819b8066 RDI: 0000000000000005
[ 108.741697][ T5849] RBP: ffff8880354d8000 R08: 0000000000000005 R09: 0000000000000000
[ 108.749705][ T5849] R10: 0000000080000001 R11: 0000000000002c00 R12: ffffc90003edfa98
[ 108.757687][ T5849] R13: ffff8880354d8000 R14: 0000000000000000 R15: 0000000000000000
[ 108.765683][ T5849] ? __wake_up_klogd.part.0+0x99/0xf0
[ 108.771086][ T5849] ? vprintk_emit+0x1e6/0x6d0
[ 108.775798][ T5849] __debug_object_init+0x2a9/0x3d0
[ 108.780929][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.786677][ T5849] ? __pfx___debug_object_init+0x10/0x10
[ 108.792342][ T5849] __init_work+0x4c/0x60
[ 108.796621][ T5849] rhashtable_init_noprof+0x49f/0x7e0
[ 108.802025][ T5849] ? __lock_acquire+0xb8a/0x1c90
[ 108.807004][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 108.812584][ T5849] bch2_copygc_thread+0xf6/0xdd0
[ 108.817553][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.823220][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 108.828804][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.834468][ T5849] ? do_raw_spin_lock+0x12c/0x2b0
[ 108.839519][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.845177][ T5849] ? __pfx_rhashtable_jhash2+0x10/0x10
[ 108.850694][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.856370][ T5849] ? rcu_is_watching+0x12/0xc0
[ 108.861167][ T5849] ? finish_task_switch.isra.0+0x221/0xc10
[ 108.867000][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.872746][ T5849] ? lockdep_hardirqs_on+0x7c/0x110
[ 108.878249][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.883909][ T5849] ? finish_task_switch.isra.0+0x221/0xc10
[ 108.889772][ T5849] ? rcu_is_watching+0x12/0xc0
[ 108.894560][ T5849] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 108.900490][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.906152][ T5849] ? lockdep_hardirqs_on+0x7c/0x110
[ 108.911392][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.917433][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.923094][ T5849] ? __kthread_parkme+0x19e/0x250
[ 108.928374][ T5849] ? __pfx_bch2_copygc_thread+0x10/0x10
[ 108.933977][ T5849] kthread+0x3c5/0x780
[ 108.938124][ T5849] ? __pfx_kthread+0x10/0x10
[ 108.942784][ T5849] ? srso_alias_return_thunk+0x5/0xfbef5
[ 108.948456][ T5849] ? rcu_is_watching+0x12/0xc0
[ 108.953264][ T5849] ? __pfx_kthread+0x10/0x10
[ 108.957908][ T5849] ret_from_fork+0x5d7/0x6f0
[ 108.962536][ T5849] ? __pfx_kthread+0x10/0x10
[ 108.967172][ T5849] ret_from_fork_asm+0x1a/0x30
[ 108.971967][ T5849]
[ 108.975114][ T5849] Kernel Offset: disabled
[ 108.979477][ T5849] Rebooting in 86400 seconds..