DUID 00:04:6d:ca:d3:d4:76:e5:48:e7:d9:66:92:48:7e:5c:97:0d
forked to background, child pid 4656
[ 12.616322][ T4657] 8021q: adding VLAN 0 to HW filter on device bond0
[ 12.621844][ T4657] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
syzkaller login: [ 70.040666][ T2491] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.91' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 296.639367][ T5013] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5013 'syz-executor154'
[ 296.982286][ T5016] loop2: detected capacity change from 0 to 32768
[ 296.990097][ T5012] loop0: detected capacity change from 0 to 32768
[ 297.007623][ T5024] loop5: detected capacity change from 0 to 32768
[ 297.009436][ T5015] loop3: detected capacity change from 0 to 32768
[ 297.015765][ T5012] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz-executor154 (5012)
[ 297.026752][ T5021] loop6: detected capacity change from 0 to 32768
[ 297.036672][ T5022] loop7: detected capacity change from 0 to 32768
[ 297.047114][ T5016] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz-executor154 (5016)
[ 297.047815][ T5013] loop1: detected capacity change from 0 to 32768
[ 297.059451][ T5012] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 297.067121][ T5023] loop4: detected capacity change from 0 to 32768
[ 297.073324][ T5024] BTRFS warning: duplicate device /dev/loop5 devid 1 generation 8 scanned by syz-executor154 (5024)
[ 297.080907][ T5012] BTRFS info (device loop0): doing ref verification
[ 297.091090][ T5022] BTRFS warning: duplicate device /dev/loop7 devid 1 generation 8 scanned by syz-executor154 (5022)
[ 297.096819][ T5012] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 297.107989][ T5021] BTRFS warning: duplicate device /dev/loop6 devid 1 generation 8 scanned by syz-executor154 (5021)
[ 297.118267][ T5012] BTRFS info (device loop0): force zlib compression, level 3
[ 297.118288][ T5012] BTRFS info (device loop0): allowing degraded mounts
[ 297.129425][ T5023] BTRFS warning: duplicate device /dev/loop4 devid 1 generation 8 scanned by syz-executor154 (5023)
[ 297.136421][ T5012] BTRFS info (device loop0): using free space tree
[ 297.154271][ T5013] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by syz-executor154 (5013)
[ 297.188254][ T5015] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz-executor154 (5015)
[ 297.301408][ T5012] BTRFS info (device loop0): auto enabling async discard
[ 297.324764][ T5012] FAULT_INJECTION: forcing a failure.
[ 297.324764][ T5012] name failslab, interval 1, probability 0, space 0, times 1
[ 297.337480][ T5012] CPU: 0 PID: 5012 Comm: syz-executor154 Not tainted 6.4.0-rc5-syzkaller-00002-gf8dba31b0a82 #0
[ 297.347904][ T5012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 297.357965][ T5012] Call Trace:
[ 297.361253][ T5012]
[ 297.364181][ T5012] dump_stack_lvl+0x72/0xa0
[ 297.368712][ T5012] should_fail_ex+0x13e/0x140
[ 297.373397][ T5012] should_failslab+0x9/0x20
[ 297.377918][ T5012] __kmem_cache_alloc_node+0x43/0x300
[ 297.383313][ T5012] kmalloc_trace+0x24/0x90
[ 297.387737][ T5012] add_block_entry+0x35/0x320
[ 297.392417][ T5012] btrfs_ref_tree_mod+0x5d8/0xb50
[ 297.397468][ T5012] btrfs_alloc_tree_block+0x636/0x860
[ 297.402854][ T5012] __btrfs_cow_block+0x18e/0x8e0
[ 297.407806][ T5012] btrfs_cow_block+0x163/0x2c0
[ 297.412579][ T5012] btrfs_search_slot+0x9f8/0x1560
[ 297.417614][ T5012] ? start_transaction+0x15e/0x9d0
[ 297.422737][ T5012] btrfs_insert_empty_items+0x42/0xc0
[ 297.428117][ T5012] insert_balance_item.isra.0+0xc8/0x3b0
[ 297.433760][ T5012] ? unwind_get_return_address+0x1a/0x30
[ 297.439422][ T5012] ? _raw_spin_unlock_irqrestore+0x13/0x30
[ 297.445247][ T5012] ? __stack_depot_save+0x23b/0x460
[ 297.450464][ T5012] btrfs_balance+0x8ae/0x2030
[ 297.455160][ T5012] ? _raw_spin_lock_irqsave+0x35/0x40
[ 297.460557][ T5012] ? __kmem_cache_alloc_node+0x136/0x300
[ 297.466211][ T5012] btrfs_ioctl+0x2ff1/0x3430
[ 297.470819][ T5012] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 297.476736][ T5012] ? do_vfs_ioctl+0xa0/0xc70
[ 297.481343][ T5012] ? do_sys_openat2+0x55/0x260
[ 297.486121][ T5012] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 297.492561][ T5012] ? __x64_sys_ioctl+0x100/0x140
[ 297.497512][ T5012] __x64_sys_ioctl+0x100/0x140
[ 297.502291][ T5012] do_syscall_64+0x39/0xb0
[ 297.506720][ T5012] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 297.512625][ T5012] RIP: 0033:0x7fe0a5f80a79
[ 297.517042][ T5012] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 01 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 297.536658][ T5012] RSP: 002b:00007ffdc85edbe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 297.545077][ T5012] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe0a5f80a79
[ 297.553049][ T5012] RDX: 00000000200003c0 RSI: 00000000c4009420 RDI: 0000000000000004
[ 297.561024][ T5012] RBP: 00007ffdc85edc10 R08: 0000000000000002 R09: 00007ffdc85edc20
[ 297.569001][ T5012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 297.576971][ T5012] R13: 431bde82d7b634db R14: 00007ffdc85edc70 R15: 00007ffdc85edc50
[ 297.584947][ T5012]
[ 297.589290][ T5012] BTRFS info (device loop0): balance: start
[ 297.595385][ T5012] BTRFS info (device loop0): balance: ended with status: 0
[ 297.605378][ T5012] BTRFS error (device loop0: state M): unrecognized mount option 'g-%xý ёC!dy:b㥒Bݲh+L/_:ϰpI[QPҿ;(X2\+V2NIFAM.IJZu|ok
[ 353.992005][ T5193] dump_stack_lvl+0x72/0xa0
[ 353.996526][ T5193] should_fail_ex+0x13e/0x140
[ 354.001322][ T5193] should_failslab+0x9/0x20
[ 354.005829][ T5193] __kmem_cache_alloc_node+0x43/0x300
[ 354.011216][ T5193] kmalloc_trace+0x24/0x90
[ 354.015644][ T5193] add_block_entry+0x35/0x320
[ 354.020326][ T5193] btrfs_ref_tree_mod+0x5d8/0xb50
[ 354.025362][ T5193] btrfs_alloc_tree_block+0x636/0x860
[ 354.030746][ T5193] __btrfs_cow_block+0x18e/0x8e0
[ 354.035690][ T5193] btrfs_cow_block+0x163/0x2c0
[ 354.040462][ T5193] btrfs_search_slot+0x9f8/0x1560
[ 354.045510][ T5193] ? start_transaction+0x15e/0x9d0
[ 354.050716][ T5193] btrfs_insert_empty_items+0x42/0xc0
[ 354.056101][ T5193] insert_balance_item.isra.0+0xc8/0x3b0
[ 354.061737][ T5193] ? unwind_get_return_address+0x1a/0x30
[ 354.067386][ T5193] ? __stack_depot_save+0x39/0x460
[ 354.072505][ T5193] btrfs_balance+0x8ae/0x2030
[ 354.077184][ T5193] ? kmem_cache_alloc+0x147/0x320
[ 354.082218][ T5193] ? __kmem_cache_alloc_node+0x136/0x300
[ 354.087866][ T5193] btrfs_ioctl+0x2ff1/0x3430
[ 354.092465][ T5193] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 354.098368][ T5193] ? do_vfs_ioctl+0xa0/0xc70
[ 354.102974][ T5193] ? do_sys_openat2+0x55/0x260
[ 354.107755][ T5193] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 354.114179][ T5193] ? __x64_sys_ioctl+0x100/0x140
[ 354.119126][ T5193] __x64_sys_ioctl+0x100/0x140
[ 354.123904][ T5193] do_syscall_64+0x39/0xb0
[ 354.128324][ T5193] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 354.134220][ T5193] RIP: 0033:0x7fe0a5f80a79
[ 354.138627][ T5193] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 01 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 354.158238][ T5193] RSP: 002b:00007ffdc85edbe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 354.166654][ T5193] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe0a5f80a79
[ 354.174624][ T5193] RDX: 00000000200003c0 RSI: 00000000c4009420 RDI: 0000000000000004
[ 354.182592][ T5193] RBP: 00007ffdc85edc10 R08: 0000000000000002 R09: 00007ffdc85edc20
[ 354.190559][ T5193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 354.198531][ T5193] R13: 431bde82d7b634db R14: 00007ffdc85edc70 R15: 00007ffdc85edc50
[ 354.206505][ T5193]
[ 354.213073][ T5193] BTRFS info (device loop6): balance: start
[ 354.219135][ T5193] BTRFS info (device loop6): balance: ended with status: 0
[ 354.229062][ T5193] BTRFS error (device loop6: state M): unrecognized mount option 'g-%xý ёC!dy:b㥒Bݲh+L/_:ϰpI[QPҿ;(X2\+V2NIFAM.IJZu|ok] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51500 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 19.050s)
hex dump (first 32 bytes):
00 30 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .0P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51480 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 19.050s)
hex dump (first 32 bytes):
00 60 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .`P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51580 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 20.200s)
hex dump (first 32 bytes):
00 10 10 00 00 00 00 00 00 10 00 00 00 00 00 00 ................
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51500 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 20.200s)
hex dump (first 32 bytes):
00 30 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .0P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51480 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 20.200s)
hex dump (first 32 bytes):
00 60 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .`P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51580 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 22.400s)
hex dump (first 32 bytes):
00 10 10 00 00 00 00 00 00 10 00 00 00 00 00 00 ................
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51500 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 22.400s)
hex dump (first 32 bytes):
00 30 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .0P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51480 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 22.400s)
hex dump (first 32 bytes):
00 60 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .`P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51580 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 22.440s)
hex dump (first 32 bytes):
00 10 10 00 00 00 00 00 00 10 00 00 00 00 00 00 ................
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51500 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 22.440s)
hex dump (first 32 bytes):
00 30 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .0P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
BUG: memory leak
unreferenced object 0xffff888109b51480 (size 96):
comm "syz-executor154", pid 5193, jiffies 4294972644 (age 22.440s)
hex dump (first 32 bytes):
00 60 50 00 00 00 00 00 00 10 00 00 00 00 00 00 .`P.............
01 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 ................
backtrace:
[] kmalloc_trace+0x24/0x90
[] add_block_entry+0x4e/0x320
[] add_tree_block+0x9e/0x220
[] btrfs_build_ref_tree+0x535/0x7c0
[] open_ctree+0x12d1/0x2360
[] btrfs_mount_root+0x583/0x710
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] vfs_kern_mount.part.0+0xd1/0x120
[] vfs_kern_mount+0x40/0x60
[] btrfs_mount+0x19d/0x620
[] legacy_get_tree+0x2f/0x90
[] vfs_get_tree+0x2c/0x110
[] path_mount+0xc53/0x10f0
[] __x64_sys_mount+0x192/0x1e0
[] do_syscall_64+0x39/0xb0
executing program
[ 378.771451][ T5216] loop3: detected capacity change from 0 to 32768
[ 378.778525][ T5216] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz-executor154 (5216)
[ 378.792505][ T5216] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[ 378.801270][ T5216] BTRFS info (device loop3): doing ref verification
[ 378.807904][ T5216] BTRFS warning (device loop3): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 378.818718][ T5216] BTRFS info (device loop3): force zlib compression, level 3
[ 378.826154][ T5216] BTRFS info (device loop3): allowing degraded mounts
[ 378.832993][ T5216] BTRFS info (device loop3): using free space tree
[ 378.842559][ T5216] BTRFS info (device loop3): auto enabling async discard
[ 378.850863][ T5216] FAULT_INJECTION: forcing a failure.
[ 378.850863][ T5216] name failslab, interval 1, probability 0, space 0, times 0
[ 378.863537][ T5216] CPU: 1 PID: 5216 Comm: syz-executor154 Not tainted 6.4.0-rc5-syzkaller-00002-gf8dba31b0a82 #0
[ 378.873949][ T5216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 378.884007][ T5216] Call Trace:
[ 378.887283][ T5216]
[ 378.890211][ T5216] dump_stack_lvl+0x72/0xa0
[ 378.894726][ T5216] should_fail_ex+0x13e/0x140
[ 378.899416][ T5216] should_failslab+0x9/0x20
[ 378.903924][ T5216] __kmem_cache_alloc_node+0x43/0x300
[ 378.909308][ T5216] kmalloc_trace+0x24/0x90
[ 378.913737][ T5216] add_block_entry+0x35/0x320
[ 378.918429][ T5216] btrfs_ref_tree_mod+0x5d8/0xb50
[ 378.923464][ T5216] btrfs_alloc_tree_block+0x636/0x860
[ 378.928857][ T5216] __btrfs_cow_block+0x18e/0x8e0
[ 378.933817][ T5216] btrfs_cow_block+0x163/0x2c0
[ 378.938598][ T5216] btrfs_search_slot+0x9f8/0x1560
[ 378.943632][ T5216] ? start_transaction+0x15e/0x9d0
[ 378.948750][ T5216] btrfs_insert_empty_items+0x42/0xc0
[ 378.954129][ T5216] insert_balance_item.isra.0+0xc8/0x3b0
[ 378.959772][ T5216] ? unwind_get_return_address+0x1a/0x30
[ 378.965421][ T5216] ? __stack_depot_save+0x39/0x460
[ 378.970547][ T5216] btrfs_balance+0x8ae/0x2030
[ 378.975233][ T5216] ? kmem_cache_alloc+0x147/0x320
[ 378.980275][ T5216] ? __kmem_cache_alloc_node+0x136/0x300
[ 378.985925][ T5216] btrfs_ioctl+0x2ff1/0x3430
[ 378.990535][ T5216] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 378.996457][ T5216] ? do_vfs_ioctl+0xa0/0xc70
[ 379.001070][ T5216] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 379.007500][ T5216] ? __x64_sys_ioctl+0x100/0x140
[ 379.012453][ T5216] __x64_sys_ioctl+0x100/0x140
[ 379.017242][ T5216] do_syscall_64+0x39/0xb0
[ 379.021678][ T5216] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 379.027591][ T5216] RIP: 0033:0x7fe0a5f80a79
[ 379.032010][ T5216] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 01 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 379.051628][ T5216] RSP: 002b:00007ffdc85edbe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 379.060051][ T5216] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe0a5f80a79
[ 379.068029][ T5216] RDX: 00000000200003c0 RSI: 00000000c4009420 RDI: 0000000000000004
[ 379.076008][ T5216] RBP: 00007ffdc85edc10 R08: 0000000000000002 R09: 00007ffdc85edc20
[ 379.083987][ T5216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 379.091959][ T5216] R13: 431bde82d7b634db R14: 00007ffdc85edc70 R15: 00007ffdc85edc50
[ 379.099935][ T5216]
[ 379.105306][ T5216] BTRFS info (device loop3): balance: start
[ 379.111403][ T5216] BTRFS info (device loop3): balance: ended with status: 0
[ 379.125887][ T5216] BTRFS error (device loop3: state M): unrecognized mount option 'g-%xý ёC!dy:b㥒Bݲh+L/_:ϰpI[QPҿ;(X2\+V2NIFAM.IJZu|ok
[ 380.329909][ T5235] dump_stack_lvl+0x72/0xa0
[ 380.334428][ T5235] should_fail_ex+0x13e/0x140
[ 380.339123][ T5235] should_failslab+0x9/0x20
[ 380.343641][ T5235] __kmem_cache_alloc_node+0x43/0x300
[ 380.349036][ T5235] kmalloc_trace+0x24/0x90
[ 380.353470][ T5235] add_block_entry+0x35/0x320
[ 380.358152][ T5235] btrfs_ref_tree_mod+0x5d8/0xb50
[ 380.363185][ T5235] btrfs_alloc_tree_block+0x636/0x860
[ 380.368574][ T5235] __btrfs_cow_block+0x18e/0x8e0
[ 380.373518][ T5235] btrfs_cow_block+0x163/0x2c0
[ 380.378286][ T5235] btrfs_search_slot+0x9f8/0x1560
[ 380.383325][ T5235] ? start_transaction+0x15e/0x9d0
[ 380.388439][ T5235] btrfs_insert_empty_items+0x42/0xc0
[ 380.393815][ T5235] insert_balance_item.isra.0+0xc8/0x3b0
[ 380.399447][ T5235] ? unwind_get_return_address+0x1a/0x30
[ 380.405089][ T5235] ? __stack_depot_save+0x39/0x460
[ 380.410202][ T5235] btrfs_balance+0x8ae/0x2030
[ 380.414883][ T5235] ? kmem_cache_alloc+0x147/0x320
[ 380.419914][ T5235] ? __kmem_cache_alloc_node+0x136/0x300
[ 380.425551][ T5235] btrfs_ioctl+0x2ff1/0x3430
[ 380.430149][ T5235] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 380.436049][ T5235] ? do_vfs_ioctl+0xa0/0xc70
[ 380.440647][ T5235] ? do_sys_openat2+0x55/0x260
[ 380.445423][ T5235] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 380.451842][ T5235] ? __x64_sys_ioctl+0x100/0x140
[ 380.456783][ T5235] __x64_sys_ioctl+0x100/0x140
[ 380.461554][ T5235] do_syscall_64+0x39/0xb0
[ 380.465983][ T5235] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 380.471879][ T5235] RIP: 0033:0x7fe0a5f80a79
[ 380.476284][ T5235] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 01 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 380.495888][ T5235] RSP: 002b:00007ffdc85edbe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 380.504297][ T5235] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe0a5f80a79
[ 380.512272][ T5235] RDX: 00000000200003c0 RSI: 00000000c4009420 RDI: 0000000000000004
[ 380.520240][ T5235] RBP: 00007ffdc85edc10 R08: 0000000000000002 R09: 00007ffdc85edc20
[ 380.528214][ T5235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 380.536179][ T5235] R13: 431bde82d7b634db R14: 00007ffdc85edc70 R15: 00007ffdc85edc50
[ 380.544151][ T5235]
[ 380.554236][ T5235] BTRFS info (device loop5): balance: start
[ 380.560317][ T5235] BTRFS info (device loop5): balance: ended with status: 0
[ 380.572481][ T5235] BTRFS error (device loop5: state M): unrecognized mount option 'g-%xý ёC!dy:b㥒Bݲh+L/_:ϰpI[QPҿ;(X2\+V2NIFAM.IJZu|ok