./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2291934576 <...> Warning: Permanently added '10.128.1.60' (ED25519) to the list of known hosts. execve("./syz-executor2291934576", ["./syz-executor2291934576"], 0x7ffc69708980 /* 10 vars */) = 0 brk(NULL) = 0x55556fb05000 brk(0x55556fb05d00) = 0x55556fb05d00 arch_prctl(ARCH_SET_FS, 0x55556fb05380) = 0 set_tid_address(0x55556fb05650) = 5825 set_robust_list(0x55556fb05660, 24) = 0 rseq(0x55556fb05ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2291934576", 4096) = 28 getrandom("\x02\x9f\x19\x13\xfc\x7e\x7e\x11", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55556fb05d00 brk(0x55556fb26d00) = 0x55556fb26d00 brk(0x55556fb27000) = 0x55556fb27000 mprotect(0x7f6a70cda000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5827 attached [pid 5827] set_robust_list(0x55556fb05660, 24 [pid 5825] <... clone resumed>, child_tidptr=0x55556fb05650) = 5827 [pid 5827] <... set_robust_list resumed>) = 0 [pid 5827] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5827] setpgid(0, 0) = 0 [pid 5827] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5827] write(3, "1000", 4) = 4 [pid 5827] close(3) = 0 executing program [pid 5827] write(1, "executing program\n", 18) = 18 [pid 5827] memfd_create("syzkaller", 0) = 3 [pid 5827] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6a68800000 [pid 5827] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5827] munmap(0x7f6a68800000, 138412032) = 0 [pid 5827] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5827] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5827] close(3) = 0 [pid 5827] close(4) = 0 [pid 5827] mkdir("./file1", 0777) = 0 [ 89.760423][ T5827] loop0: detected capacity change from 0 to 32768 [ 89.847720][ T5827] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names [ 89.847720][ T5827] allowing incompatible features above 0.0: (unknown version) [ 89.847720][ T5827] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 89.884417][ T5827] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 89.892981][ T5827] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 89.901298][ T5827] bcachefs (loop0): Version upgrade required: [ 89.901298][ T5827] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 89.901298][ T5827] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 89.901298][ T5827] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 89.995007][ T5827] bcachefs (loop0): accounting_read... done [ 90.002710][ T5827] bcachefs (loop0): alloc_read... done [ 90.009375][ T5827] bcachefs (loop0): snapshots_read... done [ 90.016961][ T5827] bcachefs (loop0): check_allocations... [ 90.020675][ T5827] bcachefs (loop0): bucket 0:26 data type btree ptr gen 0 missing in alloc btree [ 90.020700][ T5827] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing [ 90.053974][ T5827] bcachefs (loop0): bucket 0:38 data type btree ptr gen 0 missing in alloc btree [ 90.053989][ T5827] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 90.080169][ T5827] bcachefs (loop0): bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 90.080183][ T5827] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 90.106553][ T5827] bcachefs (loop0): bucket 0:35 data type btree ptr gen 0 missing in alloc btree [ 90.106568][ T5827] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 90.134782][ T5827] bcachefs (loop0): bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 90.134797][ T5827] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 90.160420][ T5827] bcachefs (loop0): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.170675][ T5827] bcachefs (loop0): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 90.182568][ T5827] bcachefs (loop0): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.192762][ T5827] bcachefs (loop0): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 90.204217][ T5827] bcachefs (loop0): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.214201][ T5827] bcachefs (loop0): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 90.225912][ T5827] bcachefs (loop0): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.235903][ T5827] bcachefs (loop0): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 90.247320][ T5827] bcachefs (loop0): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.257342][ T5827] bcachefs (loop0): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 90.268707][ T5827] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.278693][ T5827] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 90.290081][ T5827] bcachefs (loop0): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.300182][ T5827] bcachefs (loop0): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 90.311549][ T5827] bcachefs (loop0): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 90.321553][ T5827] bcachefs (loop0): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 90.332778][ T5827] bcachefs (loop0): bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing [ 90.343202][ T5827] bcachefs (loop0): bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 90.355079][ T5827] bcachefs (loop0): bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing [ 90.365617][ T5827] bcachefs (loop0): bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 90.377561][ T5827] bcachefs (loop0): bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing [ 90.377573][ T5827] Ratelimiting new instances of previous error [ 90.394701][ T5827] bcachefs (loop0): bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 90.394714][ T5827] Ratelimiting new instances of previous error [ 90.423016][ T5827] done [ 90.428381][ T5827] bcachefs (loop0): going read-write [ 90.455723][ T5836] ODEBUG: object ffffc900043ffb90 is on stack ffffc900043f8000, but NOT annotated. [ 90.456060][ T5836] [ 90.456067][ T5836] ====================================================== [ 90.456075][ T5836] WARNING: possible circular locking dependency detected [ 90.456094][ T5836] 6.15.0-syzkaller-12426-ge271ed52b344 #0 Not tainted [ 90.456105][ T5836] ------------------------------------------------------ [ 90.456112][ T5836] bch-copygc/loop/5836 is trying to acquire lock: [ 90.456121][ T5836] ffffffff8e133280 (console_owner){....}-{0:0}, at: console_flush_all+0x13a/0xc40 [ 90.456168][ T5836] [ 90.456168][ T5836] but task is already holding lock: [ 90.456175][ T5836] ffffffff99cf37c0 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0x85/0x3c0 [ 90.456249][ T5836] [ 90.456249][ T5836] which lock already depends on the new lock. [ 90.456249][ T5836] [ 90.456256][ T5836] [ 90.456256][ T5836] the existing dependency chain (in reverse order) is: [ 90.456263][ T5836] [ 90.456263][ T5836] -> #4 (&obj_hash[i].lock){-.-.}-{2:2}: [ 90.456289][ T5836] lock_acquire+0x120/0x360 [ 90.456313][ T5836] _raw_spin_lock_irqsave+0xa7/0xf0 [ 90.456338][ T5836] debug_object_activate+0xbb/0x420 [ 90.456357][ T5836] insert_work+0x35/0x330 [ 90.456380][ T5836] __queue_work+0xcfc/0xfe0 [ 90.456406][ T5836] queue_work_on+0x181/0x270 [ 90.456431][ T5836] start_poll_synchronize_rcu_expedited+0xfc/0x140 [ 90.456453][ T5836] rcu_init+0x108/0x160 [ 90.456473][ T5836] start_kernel+0x1fb/0x500 [ 90.456488][ T5836] x86_64_start_reservations+0x24/0x30 [ 90.456511][ T5836] x86_64_start_kernel+0x143/0x1c0 [ 90.456532][ T5836] common_startup_64+0x13e/0x147 [ 90.456549][ T5836] [ 90.456549][ T5836] -> #3 (&pool->lock){-.-.}-{2:2}: [ 90.456574][ T5836] lock_acquire+0x120/0x360 [ 90.456596][ T5836] _raw_spin_lock+0x2e/0x40 [ 90.456612][ T5836] __queue_work+0x7b0/0xfe0 [ 90.456637][ T5836] queue_work_on+0x181/0x270 [ 90.456663][ T5836] rpm_suspend+0xe54/0x1720 [ 90.456682][ T5836] __pm_runtime_idle+0x12f/0x1a0 [ 90.456698][ T5836] __device_attach+0x342/0x400 [ 90.456717][ T5836] bus_probe_device+0x185/0x260 [ 90.456743][ T5836] device_add+0x7b6/0xb50 [ 90.456759][ T5836] serial_base_port_add+0x2f2/0x430 [ 90.456779][ T5836] serial_core_register_port+0x367/0x2700 [ 90.456806][ T5836] serial8250_register_8250_port+0x16dc/0x2050 [ 90.456832][ T5836] serial_pnp_probe+0x527/0x790 [ 90.456858][ T5836] pnp_device_probe+0x308/0x4c0 [ 90.456885][ T5836] really_probe+0x26d/0x9a0 [ 90.456906][ T5836] __driver_probe_device+0x18c/0x2f0 [ 90.456925][ T5836] driver_probe_device+0x4f/0x430 [ 90.456945][ T5836] __driver_attach+0x452/0x700 [ 90.456964][ T5836] bus_for_each_dev+0x233/0x2b0 [ 90.456988][ T5836] bus_add_driver+0x345/0x640 [ 90.457013][ T5836] driver_register+0x23a/0x320 [ 90.457035][ T5836] serial8250_init+0xc2/0x1c0 [ 90.457053][ T5836] do_one_initcall+0x233/0x820 [ 90.457068][ T5836] do_initcall_level+0x137/0x1f0 [ 90.457085][ T5836] do_initcalls+0x69/0xd0 [ 90.457100][ T5836] kernel_init_freeable+0x3d9/0x570 [ 90.457116][ T5836] kernel_init+0x1d/0x1d0 [ 90.457130][ T5836] ret_from_fork+0x3f9/0x770 [ 90.457151][ T5836] ret_from_fork_asm+0x1a/0x30 [ 90.457167][ T5836] [ 90.457167][ T5836] -> #2 (&dev->power.lock){-.-.}-{3:3}: [ 90.457194][ T5836] lock_acquire+0x120/0x360 [ 90.457227][ T5836] _raw_spin_lock_irqsave+0xa7/0xf0 [ 90.457246][ T5836] __pm_runtime_resume+0x10f/0x180 [ 90.457264][ T5836] __uart_start+0x171/0x440 [ 90.457278][ T5836] uart_write+0x278/0xa40 [ 90.457293][ T5836] n_tty_write+0xd35/0x11d0 [ 90.457314][ T5836] file_tty_write+0x503/0x990 [ 90.457328][ T5836] vfs_write+0x54b/0xa90 [ 90.457346][ T5836] ksys_write+0x145/0x250 [ 90.457365][ T5836] do_syscall_64+0xfa/0x3b0 [ 90.457388][ T5836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.457405][ T5836] [ 90.457405][ T5836] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 90.457431][ T5836] lock_acquire+0x120/0x360 [ 90.457453][ T5836] _raw_spin_lock_irqsave+0xa7/0xf0 [ 90.457472][ T5836] serial8250_console_write+0x17e/0x1ba0 [ 90.457499][ T5836] console_flush_all+0x728/0xc40 [ 90.457517][ T5836] console_unlock+0xc4/0x270 [ 90.457543][ T5836] vprintk_emit+0x5b7/0x7a0 [ 90.457557][ T5836] _printk+0xcf/0x120 [ 90.457572][ T5836] register_console+0xa8b/0xf90 [ 90.457589][ T5836] univ8250_console_init+0x52/0x90 [ 90.457607][ T5836] console_init+0x1a1/0x670 [ 90.457626][ T5836] start_kernel+0x2cc/0x500 [ 90.457641][ T5836] x86_64_start_reservations+0x24/0x30 [ 90.457663][ T5836] x86_64_start_kernel+0x143/0x1c0 [ 90.457683][ T5836] common_startup_64+0x13e/0x147 [ 90.457700][ T5836] [ 90.457700][ T5836] -> #0 (console_owner){....}-{0:0}: [ 90.457725][ T5836] validate_chain+0xb9b/0x2140 [ 90.457752][ T5836] __lock_acquire+0xab9/0xd20 [ 90.457774][ T5836] lock_acquire+0x120/0x360 [ 90.457795][ T5836] console_flush_all+0x6d2/0xc40 [ 90.457812][ T5836] console_unlock+0xc4/0x270 [ 90.457837][ T5836] vprintk_emit+0x5b7/0x7a0 [ 90.457851][ T5836] _printk+0xcf/0x120 [ 90.457865][ T5836] __debug_object_init+0x2c8/0x3c0 [ 90.457883][ T5836] rhashtable_init_noprof+0x7c0/0xbb0 [ 90.457910][ T5836] bch2_copygc_thread+0x116/0xdc0 [ 90.457930][ T5836] kthread+0x70e/0x8a0 [ 90.457947][ T5836] ret_from_fork+0x3f9/0x770 [ 90.457967][ T5836] ret_from_fork_asm+0x1a/0x30 [ 90.457983][ T5836] [ 90.457983][ T5836] other info that might help us debug this: [ 90.457983][ T5836] [ 90.457989][ T5836] Chain exists of: [ 90.457989][ T5836] console_owner --> &pool->lock --> &obj_hash[i].lock [ 90.457989][ T5836] [ 90.458020][ T5836] Possible unsafe locking scenario: [ 90.458020][ T5836] [ 90.458025][ T5836] CPU0 CPU1 [ 90.458032][ T5836] ---- ---- [ 90.458037][ T5836] lock(&obj_hash[i].lock); [ 90.458051][ T5836] lock(&pool->lock); [ 90.458064][ T5836] lock(&obj_hash[i].lock); [ 90.458078][ T5836] lock(console_owner); [ 90.458091][ T5836] [ 90.458091][ T5836] *** DEADLOCK *** [ 90.458091][ T5836] [ 90.458101][ T5836] 3 locks held by bch-copygc/loop/5836: [ 90.458112][ T5836] #0: ffffffff99cf37c0 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0x85/0x3c0 [ 90.458159][ T5836] #1: ffffffff8e1332e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120 [ 90.458200][ T5836] #2: ffffffff8e01abb0 (console_srcu){....}-{0:0}, at: console_flush_all+0x13a/0xc40 [ 90.458257][ T5836] [ 90.458257][ T5836] stack backtrace: [ 90.458274][ T5836] CPU: 1 UID: 0 PID: 5836 Comm: bch-copygc/loop Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(full) [ 90.458296][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 90.458312][ T5836] Call Trace: [ 90.458323][ T5836] [ 90.458332][ T5836] dump_stack_lvl+0x189/0x250 [ 90.458366][ T5836] ? __pfx_dump_stack_lvl+0x10/0x10 [ 90.458393][ T5836] ? __pfx__printk+0x10/0x10 [ 90.458411][ T5836] ? print_lock_name+0xde/0x100 [ 90.458442][ T5836] print_circular_bug+0x2ee/0x310 [ 90.458462][ T5836] check_noncircular+0x134/0x160 [ 90.458496][ T5836] validate_chain+0xb9b/0x2140 [ 90.458534][ T5836] __lock_acquire+0xab9/0xd20 [ 90.458562][ T5836] ? console_flush_all+0x13a/0xc40 [ 90.458580][ T5836] lock_acquire+0x120/0x360 [ 90.458604][ T5836] ? console_flush_all+0x13a/0xc40 [ 90.458627][ T5836] ? do_raw_spin_unlock+0x122/0x240 [ 90.458647][ T5836] ? console_flush_all+0x13a/0xc40 [ 90.458667][ T5836] console_flush_all+0x6d2/0xc40 [ 90.458686][ T5836] ? console_flush_all+0x13a/0xc40 [ 90.458707][ T5836] ? console_flush_all+0x13a/0xc40 [ 90.458729][ T5836] ? __pfx_console_flush_all+0x10/0x10 [ 90.458753][ T5836] ? is_printk_cpu_sync_owner+0x32/0x40 [ 90.458778][ T5836] console_unlock+0xc4/0x270 [ 90.458796][ T5827] bcachefs (loop0): journal_replay... [ 90.458807][ T5836] ? __pfx_console_unlock+0x10/0x10 [ 90.458833][ T5836] ? is_printk_cpu_sync_owner+0x32/0x40 [ 90.458852][ T5836] vprintk_emit+0x5b7/0x7a0 [ 90.458866][ T5836] ? __pfx_vprintk_emit+0x10/0x10 [ 90.458888][ T5836] ? __lock_acquire+0xab9/0xd20 [ 90.458910][ T5836] ? do_raw_spin_lock+0x121/0x290 [ 90.458928][ T5836] _printk+0xcf/0x120 [ 90.458943][ T5836] ? __pfx__printk+0x10/0x10 [ 90.458961][ T5836] __debug_object_init+0x2c8/0x3c0 [ 90.458979][ T5836] ? rhashtable_init_noprof+0x4ee/0xbb0 [ 90.459004][ T5836] rhashtable_init_noprof+0x7c0/0xbb0 [ 90.459029][ T5836] bch2_copygc_thread+0x116/0xdc0 [ 90.459054][ T5836] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 90.459099][ T5836] ? finish_task_switch+0x266/0x950 [ 90.459116][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 90.459140][ T5836] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 90.459174][ T5836] ? __kthread_parkme+0x7b/0x200 [ 90.459195][ T5836] ? __kthread_parkme+0x1a1/0x200 [ 90.459227][ T5836] kthread+0x70e/0x8a0 [ 90.459242][ T5836] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 90.459258][ T5836] ? __pfx_kthread+0x10/0x10 [ 90.459272][ T5836] ? _raw_spin_unlock_irq+0x23/0x50 [ 90.459288][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 90.459322][ T5836] ? __pfx_kthread+0x10/0x10 [ 90.459337][ T5836] ret_from_fork+0x3f9/0x770 [ 90.459358][ T5836] ? __pfx_ret_from_fork+0x10/0x10 [ 90.459379][ T5836] ? __switch_to_asm+0x39/0x70 [ 90.459393][ T5836] ? __switch_to_asm+0x33/0x70 [ 90.459406][ T5836] ? __pfx_kthread+0x10/0x10 [ 90.459421][ T5836] ret_from_fork_asm+0x1a/0x30 [ 90.459440][ T5836] [ 90.469437][ T5836] ------------[ cut here ]------------ [ 90.511084][ T5827] done [ 90.514673][ T5836] WARNING: CPU: 1 PID: 5836 at lib/debugobjects.c:655 __debug_object_init+0x2c9/0x3c0 [ 90.525206][ T5827] bcachefs (loop0): check_alloc_info... [ 90.531678][ T5836] Modules linked in: [ 90.531708][ T5836] CPU: 1 UID: 0 PID: 5836 Comm: bch-copygc/loop Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(full) [ 90.531734][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 90.547991][ T5827] done [ 90.551146][ T5836] RIP: 0010:__debug_object_init+0x2c9/0x3c0 [ 90.551175][ T5836] Code: cc cc cc 41 ff c7 44 89 3d c4 13 17 15 48 c7 c1 00 b8 e1 8b 48 c7 c7 60 b8 e1 8b 84 c0 48 0f 45 f9 48 89 de e8 b8 53 67 fc 90 <0f> 0b 90 e9 c0 fe ff ff e8 3a 1c 00 00 8b 05 dc 85 cb 09 3b 05 da [ 90.551199][ T5836] RSP: 0018:ffffc900043ff6e0 EFLAGS: 00010046 [ 90.551217][ T5836] RAX: 0000000000000050 RBX: ffffc900043ffb90 RCX: d2ff8a7e3ee87f00 [ 91.491017][ T5836] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000000 [ 91.498998][ T5836] RBP: ffff888035580020 R08: ffff8880b8724293 R09: 1ffff110170e4852 [ 91.506979][ T5836] R10: dffffc0000000000 R11: ffffed10170e4853 R12: 0000000000000040 [ 91.514956][ T5836] R13: ffff888032028738 R14: dffffc0000000000 R15: 0000000000000001 [ 91.522933][ T5836] FS: 0000000000000000(0000) GS:ffff888125d89000(0000) knlGS:0000000000000000 [ 91.531867][ T5836] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 91.538451][ T5836] CR2: 00007fc465557000 CR3: 000000007677a000 CR4: 00000000003526f0 [ 91.546431][ T5836] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 91.554407][ T5836] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 91.562384][ T5836] Call Trace: [ 91.565666][ T5836] [ 91.568608][ T5836] ? rhashtable_init_noprof+0x4ee/0xbb0 [ 91.574179][ T5836] rhashtable_init_noprof+0x7c0/0xbb0 [ 91.579567][ T5836] bch2_copygc_thread+0x116/0xdc0 [ 91.584605][ T5836] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 91.590174][ T5836] ? finish_task_switch+0x266/0x950 [ 91.595384][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.600599][ T5836] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 91.606101][ T5836] ? __kthread_parkme+0x7b/0x200 [ 91.611053][ T5836] ? __kthread_parkme+0x1a1/0x200 [ 91.616104][ T5836] kthread+0x70e/0x8a0 [ 91.620185][ T5836] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 91.625741][ T5836] ? __pfx_kthread+0x10/0x10 [ 91.630338][ T5836] ? _raw_spin_unlock_irq+0x23/0x50 [ 91.635551][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.640761][ T5836] ? __pfx_kthread+0x10/0x10 [ 91.645362][ T5836] ret_from_fork+0x3f9/0x770 [ 91.649964][ T5836] ? __pfx_ret_from_fork+0x10/0x10 [ 91.655115][ T5836] ? __switch_to_asm+0x39/0x70 [ 91.659883][ T5836] ? __switch_to_asm+0x33/0x70 [ 91.664655][ T5836] ? __pfx_kthread+0x10/0x10 [ 91.669256][ T5836] ret_from_fork_asm+0x1a/0x30 [ 91.674033][ T5836] [ 91.677063][ T5836] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 91.684361][ T5836] CPU: 1 UID: 0 PID: 5836 Comm: bch-copygc/loop Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(full) [ 91.696427][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 91.706489][ T5836] Call Trace: [ 91.709776][ T5836] [ 91.712714][ T5836] dump_stack_lvl+0x99/0x250 [ 91.717320][ T5836] ? __asan_memcpy+0x40/0x70 [ 91.721917][ T5836] ? __pfx_dump_stack_lvl+0x10/0x10 [ 91.727132][ T5836] ? __pfx__printk+0x10/0x10 [ 91.731734][ T5836] panic+0x2db/0x790 [ 91.735645][ T5836] ? __pfx_panic+0x10/0x10 [ 91.740084][ T5836] ? show_trace_log_lvl+0x4fb/0x550 [ 91.745296][ T5836] ? ret_from_fork_asm+0x1a/0x30 [ 91.750240][ T5836] __warn+0x31b/0x4b0 [ 91.754234][ T5836] ? __debug_object_init+0x2c9/0x3c0 [ 91.759524][ T5836] ? __debug_object_init+0x2c9/0x3c0 [ 91.764817][ T5836] report_bug+0x2be/0x4f0 [ 91.769175][ T5836] ? __debug_object_init+0x2c9/0x3c0 [ 91.774465][ T5836] ? __debug_object_init+0x2c9/0x3c0 [ 91.779750][ T5836] ? __debug_object_init+0x2cb/0x3c0 [ 91.785043][ T5836] handle_bug+0x84/0x160 [ 91.789304][ T5836] exc_invalid_op+0x1a/0x50 [ 91.793836][ T5836] asm_exc_invalid_op+0x1a/0x20 [ 91.798700][ T5836] RIP: 0010:__debug_object_init+0x2c9/0x3c0 [ 91.804621][ T5836] Code: cc cc cc 41 ff c7 44 89 3d c4 13 17 15 48 c7 c1 00 b8 e1 8b 48 c7 c7 60 b8 e1 8b 84 c0 48 0f 45 f9 48 89 de e8 b8 53 67 fc 90 <0f> 0b 90 e9 c0 fe ff ff e8 3a 1c 00 00 8b 05 dc 85 cb 09 3b 05 da [ 91.824235][ T5836] RSP: 0018:ffffc900043ff6e0 EFLAGS: 00010046 [ 91.830308][ T5836] RAX: 0000000000000050 RBX: ffffc900043ffb90 RCX: d2ff8a7e3ee87f00 [ 91.838289][ T5836] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000000 [ 91.846268][ T5836] RBP: ffff888035580020 R08: ffff8880b8724293 R09: 1ffff110170e4852 [ 91.854254][ T5836] R10: dffffc0000000000 R11: ffffed10170e4853 R12: 0000000000000040 [ 91.862229][ T5836] R13: ffff888032028738 R14: dffffc0000000000 R15: 0000000000000001 [ 91.870216][ T5836] ? rhashtable_init_noprof+0x4ee/0xbb0 [ 91.875781][ T5836] rhashtable_init_noprof+0x7c0/0xbb0 [ 91.881173][ T5836] bch2_copygc_thread+0x116/0xdc0 [ 91.886214][ T5836] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 91.891784][ T5836] ? finish_task_switch+0x266/0x950 [ 91.896996][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.902212][ T5836] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 91.907696][ T5836] ? __kthread_parkme+0x7b/0x200 [ 91.912646][ T5836] ? __kthread_parkme+0x1a1/0x200 [ 91.917684][ T5836] kthread+0x70e/0x8a0 [ 91.921755][ T5836] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 91.927313][ T5836] ? __pfx_kthread+0x10/0x10 [ 91.932011][ T5836] ? _raw_spin_unlock_irq+0x23/0x50 [ 91.937223][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.942449][ T5836] ? __pfx_kthread+0x10/0x10 [ 91.947052][ T5836] ret_from_fork+0x3f9/0x770 [ 91.951658][ T5836] ? __pfx_ret_from_fork+0x10/0x10 [ 91.956779][ T5836] ? __switch_to_asm+0x39/0x70 [ 91.961553][ T5836] ? __switch_to_asm+0x33/0x70 [ 91.966325][ T5836] ? __pfx_kthread+0x10/0x10 [ 91.970927][ T5836] ret_from_fork_asm+0x1a/0x30 [ 91.975703][ T5836] [ 91.979073][ T5836] Kernel Offset: disabled [ 91.983417][ T5836] Rebooting in 86400 seconds..