./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor860280403 <...> Warning: Permanently added '10.128.10.34' (ED25519) to the list of known hosts. execve("./syz-executor860280403", ["./syz-executor860280403"], 0x7ffe2f030050 /* 10 vars */) = 0 brk(NULL) = 0x555557757000 brk(0x555557757e00) = 0x555557757e00 arch_prctl(ARCH_SET_FS, 0x555557757480) = 0 set_tid_address(0x555557757750) = 5819 set_robust_list(0x555557757760, 24) = 0 rseq(0x555557757da0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor860280403", 4096) = 27 getrandom("\x4f\x9d\xa6\xb7\x05\x80\x02\x4e", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555557757e00 brk(0x555557778e00) = 0x555557778e00 brk(0x555557779000) = 0x555557779000 mprotect(0x7f32a0d44000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5820 attached [pid 5820] set_robust_list(0x555557757760, 24 [pid 5819] <... clone resumed>, child_tidptr=0x555557757750) = 5820 [pid 5820] <... set_robust_list resumed>) = 0 [pid 5819] openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "10000000000", 11) = 11 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "20", 2) = 2 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "1", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "0", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "0", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "1", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "100", 3) = 3 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "0", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "0", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "7 4 1 3", 7) = 7 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "1", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "1", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "0", 1) = 1 [pid 5819] close(3) = 0 [pid 5819] openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3 [pid 5819] write(3, "5820", 4) = 4 [pid 5819] close(3) = 0 [pid 5819] kill(5820, SIGKILL) = 0 [pid 5820] +++ killed by SIGKILL +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5820, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGSEGV, {sa_handler=0x7f32a0c79ce0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f32a0c828d0}, NULL, 8) = 0 rt_sigaction(SIGBUS, {sa_handler=0x7f32a0c79ce0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f32a0c828d0}, NULL, 8) = 0 mkdir("./syzkaller.Rt1YFY", 0700) = 0 chmod("./syzkaller.Rt1YFY", 0777) = 0 chdir("./syzkaller.Rt1YFY") = 0 mkdir("./0", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555557757750) = 5822 ./strace-static-x86_64: Process 5822 attached [pid 5822] set_robust_list(0x555557757760, 24) = 0 [pid 5822] chdir("./0") = 0 [pid 5822] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5822] setpgid(0, 0) = 0 [pid 5822] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5822] write(3, "1000", 4) = 4 [pid 5822] close(3) = 0 [pid 5822] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5822] write(1, "executing program\n", 18executing program ) = 18 [pid 5822] futex(0x7f32a0d4a6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5822] rt_sigaction(SIGRT_1, {sa_handler=0x7f32a0cd94c0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f32a0c828d0}, NULL, 8) = 0 [pid 5822] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5822] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f32a0c49000 [pid 5822] mprotect(0x7f32a0c4a000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5822] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5822] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f32a0c69990, parent_tid=0x7f32a0c69990, exit_signal=0, stack=0x7f32a0c49000, stack_size=0x20240, tls=0x7f32a0c696c0}./strace-static-x86_64: Process 5823 attached [pid 5823] rseq(0x7f32a0c69fe0, 0x20, 0, 0x53053053) = 0 [pid 5822] <... clone3 resumed> => {parent_tid=[5823]}, 88) = 5823 [pid 5823] set_robust_list(0x7f32a0c699a0, 24 [pid 5822] rt_sigprocmask(SIG_SETMASK, [], [pid 5823] <... set_robust_list resumed>) = 0 [pid 5822] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5823] rt_sigprocmask(SIG_SETMASK, [], [pid 5822] futex(0x7f32a0d4a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5823] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5822] <... futex resumed>) = 0 [pid 5823] memfd_create("syzkaller", 0 [pid 5822] futex(0x7f32a0d4a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5823] <... memfd_create resumed>) = 3 [pid 5823] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3298800000 [pid 5823] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5823] munmap(0x7f3298800000, 138412032) = 0 [pid 5823] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5823] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5823] close(3) = 0 [pid 5823] close(4) = 0 [pid 5823] mkdir("./file0", 0777) = 0 [ 62.063245][ T5823] loop0: detected capacity change from 0 to 32768 [ 62.138491][ T5823] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid device 255,noshard_inode_numbers,noinodes_use_key_cache,journal_flush_delay=1001,nojournal_transaction_names,version_upgrade=none [ 62.166410][ T5823] bcachefs (loop0): recovering from clean shutdown, journal seq 13 [ 62.174602][ T5823] bcachefs (loop0): Version upgrade required: [ 62.174602][ T5823] Version upgrade from 0.19: freespace to 1.7: mi_btree_bitmap incomplete [ 62.174602][ T5823] Doing incompatible version upgrade from 0.19: freespace to 1.13: inode_has_child_snapshots [ 62.174602][ T5823] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 62.250535][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree extents level 0/0 [ 62.250554][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4e0410879b0c2f04 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0 [ 62.250562][ T5823] node offset 8/16 bset u64s 51: checksum error, type chacha20_poly1305_128: got a4f396cae2b90ea5a4aefe600c08f9c5 should be 37f1d6087d67d21bebd469bc807a31f8, fixing [ 62.290938][ T5823] bcachefs (loop0): error validating btree node at btree extents level 0/0 [ 62.290950][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4e0410879b0c2f04 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0 [ 62.290958][ T5823] node offset 8/16 bset u64s 51 bset byte offset 104: key extends past end of bset, fixing [ 62.324259][ T5823] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=extents level=0 SPOS_MAX due to error [ 62.337216][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree inodes level 0/0 [ 62.337228][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2a20405ac3f40602 written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0 [ 62.337236][ T5823] node offset 16/24 bset u64s 110: checksum error, type chacha20_poly1305_128: got 4824f23f68f3b876fc9190e0f16c6be0 should be d1e256903dc89dd6436b0db8b45d2093, fixing [ 62.378049][ T5823] invalid bkey u64s 16 type inode_v3 0:4096:U32_MAX len 0 ver 0: [ 62.378062][ T5823] mode=40755 [ 62.378067][ T5823] flags=immutable,append,nodump, nlinked(1630008e) [ 62.378073][ T5823] journal_seq=4 [ 62.378078][ T5823] hash_seed=cbc94c1387bdaaf8 [ 62.378083][ T5823] hash_type=siphash [ 62.378089][ T5823] bi_size=0 [ 62.378094][ T5823] bi_sectors=0 [ 62.378099][ T5823] bi_version=0 [ 62.378104][ T5823] bi_atime=207774884 [ 62.378109][ T5823] bi_ctime=2007793514 [ 62.378114][ T5823] bi_mtime=2007793514 [ 62.378119][ T5823] bi_otime=207774884 [ 62.378124][ T5823] bi_uid=0 [ 62.378129][ T5823] bi_gid=0 [ 62.378134][ T5823] bi_nlink=2 [ 62.378139][ T5823] bi_generation=0 [ 62.378144][ T5823] bi_dev=0 [ 62.378149][ T5823] bi_data_checksum=0 [ 62.378154][ T5823] bi_compression=0 [ 62.378159][ T5823] bi_project=0 [ 62.378164][ T5823] bi_background_compression=0 [ 62.378169][ T5823] bi_data_replicas=0 [ 62.378174][ T5823] bi_promote_target=0 [ 62.378179][ T5823] bi_foreground_target=0 [ 62.378184][ T5823] bi_background_target=0 [ 62.378189][ T5823] bi_erasure_code=0 [ 62.378195][ T5823] bi_fields_set=0 [ 62.378200][ T5823] bi_dir=0 [ 62.378205][ T5823] bi_dir_offset=0 [ 62.378210][ T5823] bi_subvol=1 [ 62.378215][ T5823] bi_parent_subvol=0 [ 62.378220][ T5823] bi_nocow=0 [ 62.378225][ T5823] flagged as unlinked but bi_nlink != 0: deleting [ 62.518758][ T5823] invalid bkey u64s 18 type inode_v3 0:1073741826:U32_MAX len 0 ver 0: (unpack error) [ 62.518772][ T5823] invalid variable length fields: delete?, fixing [ 62.535231][ T5823] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=inodes level=0 SPOS_MAX due to error [ 62.547708][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree dirents level 0/0 [ 62.547726][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 267fcf747c875937 written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 62.547734][ T5823] node offset 0/24: got wrong btree node: got [ 62.547740][ T5823] btree=(unknown) l=1 seq 2774163494416111927x [ 62.547745][ T5823] min: 15876595779377021056:14598282726174629052:3622545195 [ 62.547751][ T5823] max: 443999667996278687:11692075508790369864:2516906035 [ 62.598395][ T5823] bcachefs (loop0): flagging btree dirents lost data [ 62.608141][ T5823] error reading btree root dirents l=0: btree_node_read_error, fixing [ 62.616464][ T5823] bcachefs (loop0): will run btree node scan [ 62.624484][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree alloc level 0/0 [ 62.624496][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1818ce08861e3527 written 40 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 62.624504][ T5823] node offset 8/40 bset u64s 375: checksum error, type chacha20_poly1305_128: got 2d1b41d865616c1f5319137ce21d6071 should be 61ec379a8789477e76ff1a5280fd6dbd, fixing [ 62.664630][ T5823] bcachefs (loop0): error validating btree node at btree alloc level 0/0 [ 62.664643][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1818ce08861e3527 written 40 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 62.664650][ T5823] node offset 8/40 bset u64s 375 bset byte offset 1048: keys out of order: u64s 11 type alloc_v4 29273397577908224:13:0 len 0 ver 0 > u64s 11 type alloc_v4 0:14:0 len 0 ver 0, fixing [ 62.705590][ T5823] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=alloc level=0 SPOS_MAX due to error [ 62.717840][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree subvolumes level 0/0 [ 62.717853][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d682cebdf2a7eb26 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0 [ 62.717860][ T5823] node offset 8/16 bset u64s 9: checksum error, type chacha20_poly1305_128: got 7632cdaf3353c3de8e3d2914ef82ff81 should be fbb8db7d0b4b1105d74f8b153c3602e1, fixing [ 62.758205][ T5823] bcachefs (loop0): error validating btree node at btree subvolumes level 0/0 [ 62.758217][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d682cebdf2a7eb26 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0 [ 62.758224][ T5823] node offset 8/16 bset u64s 9 bset byte offset 40: key extends past end of bset, fixing [ 62.791190][ T5823] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=subvolumes level=0 SPOS_MAX due to error [ 62.803914][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree snapshots level 0/0 [ 62.803927][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 62.803934][ T5823] node offset 0/16 bset u64s 0: checksum error, type chacha20_poly1305_128: got 62e2995e867337a1803b70574e89b407 should be 3f4bb4678363c29f1ca269ce5970cac0, fixing [ 62.844096][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree snapshots level 0/0 [ 62.844108][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 62.844115][ T5823] node offset 0/16: incorrect min_key: got 674309865472:0:0 should be POS_MIN [ 62.876522][ T5823] bcachefs (loop0): flagging btree snapshots lost data [ 62.884917][ T5823] error reading btree root snapshots l=0: btree_node_read_error, fixing [ 62.894220][ T5823] bcachefs (loop0): error validating btree node on loop0 at btree lru level 0/0 [ 62.894233][ T5823] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 93dda84068e88b3f written 16 min_key POS_MIN durability: 1 ptr: 0:28:0 gen 0 [ 62.894240][ T5823] node offset 8/16 bset u64s 3: checksum error, type chacha20_poly1305_128: got f3429b02592db3bb33a5353e5cab12c2 should be 9ac25d08c1c53f9311173a7dfa1d3bf7, fixing [ 62.934395][ T5823] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=lru level=0 SPOS_MAX due to error [ 62.949313][ T5823] bcachefs (loop0): scan_for_btree_nodes... [ 62.974168][ T5823] bch2_scan_for_btree_nodes: nodes found after overwrites: [ 62.974189][ T5823] extents l=0 seq=1 journal_seq=5 cookie=4e0410879b0c2f04 POS_MIN-SPOS_MAX ptr: 0:27:0 gen 0 [ 62.974196][ T5823] inodes l=0 seq=1 journal_seq=5 cookie=2a20405ac3f40602 POS_MIN-SPOS_MAX ptr: 0:38:0 gen 0 [ 62.974203][ T5823] xattrs l=0 seq=1 journal_seq=4 cookie=1b881868e2a6abe1 POS_MIN-SPOS_MAX ptr: 0:31:0 gen 0 [ 62.974209][ T5823] subvolumes l=0 seq=1 journal_seq=1 cookie=d682cebdf2a7eb26 POS_MIN-SPOS_MAX ptr: 0:35:0 gen 0 [ 62.974215][ T5823] snapshots l=0 seq=1 journal_seq=1 cookie=d771a06d670df06c 674309865472:0:0-SPOS_MAX ptr: 0:32:0 gen 0 [ 62.974222][ T5823] lru l=0 seq=1 journal_seq=5 cookie=93dda84068e88b3f POS_MIN-SPOS_MAX ptr: 0:28:0 gen 0 [ 62.974228][ T5823] deleted_inodes l=0 seq=1 journal_seq=0 cookie=82036bda63714c10 POS_MIN-SPOS_MAX ptr: 0:40:0 gen 0 [ 62.974234][ T5823] [ 63.064509][ T5823] done [ 63.067292][ T5823] bcachefs (loop0): check_topology... [ 63.067470][ T5823] bcachefs (loop0): btree root dirents unreadable, must recover from scan [ 63.081836][ T5823] no nodes found for btree dirents, continuing [ 63.088294][ T5823] bcachefs (loop0): btree root snapshots unreadable, must recover from scan [ 63.097093][ T5823] bcachefs (loop0): bch2_get_scanned_nodes(): recovering snapshots l=0 POS_MIN - SPOS_MAX [ 63.107276][ T5823] bcachefs (loop0): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 536 min_key 674309865472:0:0 durability: 1 ptr: 0:32:0 gen 0 [ 63.128111][ T44] bcachefs (loop0): error validating btree node on loop0 at btree snapshots level 0/0 [ 63.128144][ T44] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 536 min_key 674309865472:0:0 durability: 1 ptr: 0:32:0 gen 0 [ 63.128152][ T44] node offset 0/536 bset u64s 0: checksum error, type chacha20_poly1305_128: got 62e2995e867337a1803b70574e89b407 should be 3f4bb4678363c29f1ca269ce5970cac0, fixing [ 63.169435][ T44] bcachefs (loop0): error validating btree node on loop0 at btree snapshots level 0/0 [ 63.169449][ T44] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 536 min_key 674309865472:0:0 durability: 1 ptr: 0:32:0 gen 0 [ 63.169457][ T44] node offset 8/536 bset u64s 33286: checksum error, type chacha20_poly1305_128: got eeb463c6618d234d8259d1874f73404e should be 0176b982601c8c7be5dd888361fca1bb, fixing [ 63.211418][ T44] bcachefs (loop0): error validating btree node at btree snapshots level 0/0 [ 63.211432][ T44] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 536 min_key 674309865472:0:0 durability: 1 ptr: 0:32:0 gen 0 [ 63.211440][ T44] node offset 8/536 bset u64s 33286 bset byte offset 40: invalid bkey format 2, fixing [ 63.246100][ T44] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=snapshots level=0 SPOS_MAX due to error [ 63.258400][ T5823] btree node with incorrect min_key at btree snapshots level 1: [ 63.258413][ T5823] parent: u64s 5 type btree_ptr SPOS_MAX len 0 ver 0 [ 63.258420][ T5823] next: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 536 min_key 674309865472:0:0 durability: 1 ptr: 0:32:0 gen 0, fixing [ 63.288946][ T5823] bcachefs (loop0): set_node_min(): u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d771a06d670df06c written 536 min_key 674309865472:0:0 durability: 1 ptr: 0:32:0 gen 0 -> 9710702841361986335:2465851572921718109:1388148219 [ 63.311142][ T5823] ------------[ cut here ]------------ [ 63.316679][ T5823] kernel BUG at fs/bcachefs/bset.c:1354! [ 63.322432][ T5823] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 63.329380][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor860 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 63.340472][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 63.350610][ T5823] RIP: 0010:bch2_btree_node_iter_init_from_start+0x446/0x460 [ 63.358001][ T5823] Code: c4 80 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 40 ae ff ff e8 0b 2f 8a fd 90 0f 0b e8 03 2f 8a fd 90 0f 0b e8 fb 2e 8a fd 90 <0f> 0b e8 f3 2e 8a fd 90 0f 0b e8 eb 2e 8a fd 90 0f 0b e8 e3 2e 8a [ 63.377616][ T5823] RSP: 0018:ffffc90003eee828 EFLAGS: 00010293 [ 63.383690][ T5823] RAX: ffffffff841544a5 RBX: ffff8880734c009e RCX: ffff888033451e00 [ 63.391674][ T5823] RDX: 0000000000000000 RSI: ffff8880734c00a0 RDI: ffff8880734c0008 [ 63.399638][ T5823] RBP: 0000000000000013 R08: ffffffff84154119 R09: 0000000000000000 [ 63.407601][ T5823] R10: ffffc90003eee920 R11: fffff520007ddd25 R12: ffff8880277888f8 [ 63.415580][ T5823] R13: ffff888027788908 R14: dffffc0000000000 R15: ffffc90003eee920 [ 63.423556][ T5823] FS: 00007f32a0c696c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 63.432509][ T5823] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.439090][ T5823] CR2: 000055a384727ff8 CR3: 0000000032b60000 CR4: 00000000003526f0 [ 63.447058][ T5823] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 63.455020][ T5823] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 63.462992][ T5823] Call Trace: [ 63.466284][ T5823] [ 63.469214][ T5823] ? __die_body+0x5f/0xb0 [ 63.473543][ T5823] ? die+0x9e/0xc0 [ 63.477259][ T5823] ? do_trap+0x15a/0x3a0 [ 63.481513][ T5823] ? bch2_btree_node_iter_init_from_start+0x446/0x460 [ 63.488280][ T5823] ? do_error_trap+0x1dc/0x2c0 [ 63.493044][ T5823] ? bch2_btree_node_iter_init_from_start+0x446/0x460 [ 63.499799][ T5823] ? __pfx_do_error_trap+0x10/0x10 [ 63.504914][ T5823] ? report_bug+0x3e8/0x500 [ 63.509433][ T5823] ? handle_invalid_op+0x34/0x40 [ 63.514364][ T5823] ? bch2_btree_node_iter_init_from_start+0x446/0x460 [ 63.521139][ T5823] ? exc_invalid_op+0x38/0x50 [ 63.525814][ T5823] ? asm_exc_invalid_op+0x1a/0x20 [ 63.530846][ T5823] ? bch2_btree_node_iter_init_from_start+0xb9/0x460 [ 63.537517][ T5823] ? bch2_btree_node_iter_init_from_start+0x445/0x460 [ 63.544280][ T5823] ? bch2_btree_node_iter_init_from_start+0x446/0x460 [ 63.551035][ T5823] ? bch2_btree_node_iter_init_from_start+0x445/0x460 [ 63.557807][ T5823] bch2_btree_and_journal_iter_init_node_iter+0x98/0x200 [ 63.564818][ T5823] ? __pfx_bch2_btree_and_journal_iter_init_node_iter+0x10/0x10 [ 63.572453][ T5823] ? bch2_btree_and_journal_iter_exit+0x35/0x100 [ 63.578774][ T5823] bch2_btree_repair_topology_recurse+0x45c8/0x6750 [ 63.585359][ T5823] ? __pfx_bch2_btree_repair_topology_recurse+0x10/0x10 [ 63.592303][ T5823] ? __pfx_bch2_journal_key_insert_take+0x10/0x10 [ 63.598713][ T5823] ? rcu_is_watching+0x15/0xb0 [ 63.603462][ T5823] ? trace_kmalloc+0x1f/0xd0 [ 63.608033][ T5823] ? bch2_journal_key_insert+0x8e/0x130 [ 63.613589][ T5823] ? bch2_journal_key_insert+0xda/0x130 [ 63.619131][ T5823] ? __pfx_bch2_get_scanned_nodes+0x10/0x10 [ 63.625027][ T5823] ? six_unlock_ip+0x2ce/0x3e0 [ 63.629788][ T5823] ? __do_six_trylock+0x832/0x9f0 [ 63.634815][ T5823] ? __pfx___do_six_trylock+0x10/0x10 [ 63.640177][ T5823] ? bch2_check_topology+0x59b/0xb20 [ 63.645449][ T5823] ? six_lock_ip_waiter+0xe5/0x160 [ 63.650559][ T5823] ? __pfx_bch2_six_check_for_deadlock+0x10/0x10 [ 63.656879][ T5823] bch2_check_topology+0x692/0xb20 [ 63.661977][ T5823] ? irq_work_queue+0xd1/0x150 [ 63.666727][ T5823] ? bch2_check_topology+0x59b/0xb20 [ 63.672002][ T5823] ? __pfx_bch2_check_topology+0x10/0x10 [ 63.677618][ T5823] ? __pfx___mutex_trylock_common+0x10/0x10 [ 63.683511][ T5823] ? __bch2_print+0x17a/0x220 [ 63.688195][ T5823] ? kvm_sched_clock_read+0x11/0x20 [ 63.693399][ T5823] ? local_clock_noinstr+0xe/0xe0 [ 63.698431][ T5823] ? __pfx___bch2_print+0x10/0x10 [ 63.703464][ T5823] ? __mutex_unlock_slowpath+0x21e/0x790 [ 63.709090][ T5823] bch2_run_recovery_pass+0xf0/0x1e0 [ 63.714375][ T5823] bch2_run_recovery_passes+0x3a7/0x880 [ 63.719913][ T5823] bch2_fs_recovery+0x25cc/0x39d0 [ 63.724924][ T5823] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 63.730291][ T5823] ? __pfx_lock_release+0x10/0x10 [ 63.735304][ T5823] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 63.740925][ T5823] ? __pfx_lock_release+0x10/0x10 [ 63.745935][ T5823] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 63.751558][ T5823] ? bch2_get_next_online_dev+0x4b9/0x4f0 [ 63.757278][ T5823] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 63.762901][ T5823] ? llist_reverse_order+0x72/0x90 [ 63.767997][ T5823] bch2_fs_start+0x356/0x5b0 [ 63.772600][ T5823] bch2_fs_get_tree+0xd68/0x1710 [ 63.777527][ T5823] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 63.782900][ T5823] ? smack_fs_context_parse_param+0xff/0x170 [ 63.788873][ T5823] ? generic_parse_monolithic+0x387/0x400 [ 63.794590][ T5823] ? cap_capable+0x1b4/0x250 [ 63.799184][ T5823] ? safesetid_security_capable+0xb2/0x1d0 [ 63.805064][ T5823] vfs_get_tree+0x90/0x2b0 [ 63.809473][ T5823] do_new_mount+0x2be/0xb40 [ 63.813966][ T5823] ? __pfx_do_new_mount+0x10/0x10 [ 63.818990][ T5823] __se_sys_mount+0x2d6/0x3c0 [ 63.823675][ T5823] ? __pfx___se_sys_mount+0x10/0x10 [ 63.828867][ T5823] ? do_syscall_64+0x100/0x230 [ 63.833630][ T5823] ? __x64_sys_mount+0x20/0xc0 [ 63.838384][ T5823] do_syscall_64+0xf3/0x230 [ 63.842880][ T5823] ? clear_bhb_loop+0x35/0x90 [ 63.847541][ T5823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 63.853429][ T5823] RIP: 0033:0x7f32a0cb471a [ 63.857869][ T5823] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 63.877492][ T5823] RSP: 002b:00007f32a0c68fd8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 63.885898][ T5823] RAX: ffffffffffffffda RBX: 00007f32a0c68ff0 RCX: 00007f32a0cb471a [ 63.893880][ T5823] RDX: 000000002000f640 RSI: 000000002000f680 RDI: 00007f32a0c68ff0 [ 63.902011][ T5823] RBP: 0000000000000004 R08: 00007f32a0c69030 R09: 000000000000f625 [ 63.909998][ T5823] R10: 0000000000000084 R11: 0000000000000282 R12: 00007f32a0c69030 [ 63.917982][ T5823] R13: 0000000000000084 R14: 0000000000000003 R15: 0000000001000000 [ 63.925979][ T5823] [ 63.929010][ T5823] Modules linked in: [ 63.933115][ T5823] ---[ end trace 0000000000000000 ]--- [ 63.938721][ T5823] RIP: 0010:bch2_btree_node_iter_init_from_start+0x446/0x460 [ 63.946162][ T5823] Code: c4 80 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 40 ae ff ff e8 0b 2f 8a fd 90 0f 0b e8 03 2f 8a fd 90 0f 0b e8 fb 2e 8a fd 90 <0f> 0b e8 f3 2e 8a fd 90 0f 0b e8 eb 2e 8a fd 90 0f 0b e8 e3 2e 8a [ 63.965831][ T5823] RSP: 0018:ffffc90003eee828 EFLAGS: 00010293 [ 63.971916][ T5823] RAX: ffffffff841544a5 RBX: ffff8880734c009e RCX: ffff888033451e00 [ 63.979916][ T5823] RDX: 0000000000000000 RSI: ffff8880734c00a0 RDI: ffff8880734c0008 [ 63.987929][ T5823] RBP: 0000000000000013 R08: ffffffff84154119 R09: 0000000000000000 [ 63.995944][ T5823] R10: ffffc90003eee920 R11: fffff520007ddd25 R12: ffff8880277888f8 [ 64.003927][ T5823] R13: ffff888027788908 R14: dffffc0000000000 R15: ffffc90003eee920 [ 64.011943][ T5823] FS: 00007f32a0c696c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 64.020903][ T5823] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 64.027546][ T5823] CR2: 000055a384727ff8 CR3: 0000000032b60000 CR4: 00000000003526f0 [ 64.035529][ T5823] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 64.043600][ T5823] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 64.051634][ T5823] Kernel panic - not syncing: Fatal exception [ 64.057974][ T5823] Kernel Offset: disabled [ 64.062292][ T5823] Rebooting in 86400 seconds..