[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.207' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 31.292784] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 [ 31.308680] BTRFS info (device loop0): enabling inode map caching [ 31.315060] BTRFS warning (device loop0): excessive commit interval 622039222 [ 31.323407] BTRFS info (device loop0): force zlib compression [ 31.329696] BTRFS info (device loop0): using free space tree [ 31.335485] BTRFS info (device loop0): has skinny extents [ 31.380657] ------------[ cut here ]------------ [ 31.385522] WARNING: CPU: 0 PID: 7962 at fs/btrfs/qgroup.c:3095 btrfs_qgroup_free_meta+0x3db/0x4d0 [ 31.394600] Kernel panic - not syncing: panic_on_warn set ... [ 31.394600] [ 31.397091] BTRFS error (device loop0): fail to start transaction for status update: -28 [ 31.401941] CPU: 0 PID: 7962 Comm: syz-executor342 Not tainted 4.14.302-syzkaller #0 [ 31.401948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 31.427371] Call Trace: [ 31.429938] dump_stack+0x1b2/0x281 [ 31.433539] panic+0x1f9/0x42d [ 31.436704] ? add_taint.cold+0x16/0x16 [ 31.440651] ? btrfs_qgroup_free_meta+0x3db/0x4d0 [ 31.445471] ? btrfs_qgroup_free_meta+0x3db/0x4d0 [ 31.450292] __warn.cold+0x20/0x44 [ 31.453806] ? ist_end_non_atomic+0x10/0x10 [ 31.458104] ? btrfs_qgroup_free_meta+0x3db/0x4d0 [ 31.462929] report_bug+0x208/0x250 [ 31.466533] do_error_trap+0x195/0x2d0 [ 31.470394] ? math_error+0x2d0/0x2d0 [ 31.474168] ? lock_downgrade+0x740/0x740 [ 31.478290] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 31.483104] invalid_op+0x1b/0x40 [ 31.486529] RIP: 0010:btrfs_qgroup_free_meta+0x3db/0x4d0 [ 31.491949] RSP: 0000:ffff8880988ef670 EFLAGS: 00010297 [ 31.497285] RAX: ffff888097472500 RBX: ffff8880b36d8380 RCX: 0000000000003000 [ 31.504526] RDX: 0000000000000000 RSI: 0000000000003000 RDI: ffff8880b36d8ca0 [ 31.511767] RBP: 0000000000003000 R08: ffffffff8b9d7748 R09: 0000000000000003 [ 31.519009] R10: 0000000000000000 R11: ffff888097472500 R12: ffff888095819d00 [ 31.526251] R13: 0000000000000005 R14: ffff8880b36d88d8 R15: 0000000000080000 [ 31.533506] btrfs_subvolume_reserve_metadata+0x1e6/0x2f0 [ 31.539019] create_subvol+0x28a/0x1930 [ 31.542970] ? btrfs_ioctl_set_fslabel+0x300/0x300 [ 31.547876] ? btrfs_free_path+0x45/0x60 [ 31.551920] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 31.557354] ? btrfs_free_path+0x45/0x60 [ 31.561396] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 31.566412] ? kmem_cache_free+0x23a/0x2b0 [ 31.570658] btrfs_mksubvol+0xcb3/0x1000 [ 31.574698] ? create_subvol+0x1930/0x1930 [ 31.578909] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 31.584339] ? preempt_count_add+0xaf/0x170 [ 31.588633] ? __mnt_want_write+0x1da/0x270 [ 31.592935] btrfs_ioctl_snap_create_transid+0x28a/0x420 [ 31.598360] btrfs_ioctl_snap_create_v2+0x22f/0x340 [ 31.603364] ? btrfs_ioctl_snap_create+0x150/0x150 [ 31.608266] btrfs_ioctl+0x1806/0x5b20 [ 31.612130] ? check_preemption_disabled+0x35/0x240 [ 31.617122] ? btrfs_ioctl_get_supported_features+0x40/0x40 [ 31.622804] ? kasan_slab_free+0xc3/0x1a0 [ 31.626931] ? kmem_cache_free+0x7c/0x2b0 [ 31.631053] ? putname+0xcd/0x110 [ 31.634478] ? do_sys_open+0x203/0x410 [ 31.638338] ? do_syscall_64+0x1d5/0x640 [ 31.642371] ? entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 31.647705] ? path_lookupat+0x780/0x780 [ 31.651740] ? debug_check_no_obj_freed+0x2c0/0x680 [ 31.656728] ? lock_acquire+0x170/0x3f0 [ 31.660675] ? lock_downgrade+0x740/0x740 [ 31.664796] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 31.669869] ? debug_check_no_obj_freed+0x2c0/0x680 [ 31.674857] ? btrfs_ioctl_get_supported_features+0x40/0x40 [ 31.680540] do_vfs_ioctl+0x75a/0xff0 [ 31.684332] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 31.689768] ? ioctl_preallocate+0x1a0/0x1a0 [ 31.694156] ? kmem_cache_free+0x23a/0x2b0 [ 31.698365] ? putname+0xcd/0x110 [ 31.701793] ? do_sys_open+0x208/0x410 [ 31.705653] ? filp_open+0x60/0x60 [ 31.709168] ? security_file_ioctl+0x83/0xb0 [ 31.713550] SyS_ioctl+0x7f/0xb0 [ 31.716889] ? do_vfs_ioctl+0xff0/0xff0 [ 31.720837] do_syscall_64+0x1d5/0x640 [ 31.724703] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 31.729868] RIP: 0033:0x7f82bd4f25f9 [ 31.733553] RSP: 002b:00007ffef54dacb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 31.741234] RAX: ffffffffffffffda RBX: 00007ffef54dacc8 RCX: 00007f82bd4f25f9 [ 31.748485] RDX: 0000000020000a80 RSI: 0000000050009418 RDI: 0000000000000004 [ 31.755754] RBP: 00007ffef54dacc0 R08: 6c616b7a79732f2e R09: 6c616b7a79732f2e [ 31.762995] R10: 6c616b7a79732f2e R11: 0000000000000246 R12: 0000000000000000 [ 31.770247] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 31.777801] Kernel Offset: disabled [ 31.781452] Rebooting in 86400 seconds..