Warning: Permanently added '[localhost]:15724' (ED25519) to the list of known hosts. executing program syzkaller login: [ 80.299035][ T5307] loop0: detected capacity change from 0 to 32768 [ 80.345735][ T5307] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 80.401591][ T5307] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,background_compression=zstd,journal_flush_disabled,norecovery,reconstruct_alloc,no_data_io [ 80.401591][ T5307] allowing incompatible features above 0.0: (unknown version) [ 80.401591][ T5307] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 80.440726][ T5307] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 80.444014][ T5307] bcachefs (loop0): Version upgrade required: [ 80.444014][ T5307] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 80.444014][ T5307] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 80.444014][ T5307] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 80.508571][ T5307] bcachefs (loop0): dropping and reconstructing all alloc info [ 80.550286][ T5307] bcachefs (loop0): btree node read error at btree inodes level 0/0 [ 80.550306][ T5307] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0 [ 80.550315][ T5307] loop0 node offset 0/24 bset u64s 0: invalid bkey format: field 2 too large: 4294967295 + 9895604649984 > 4294967295 [ 80.550322][ T5307] u64s 3 fields 64:0, 64:0, 32:9895604649984, 0:0, 0:0, 0:0 [ 80.550328][ T5307] flagging btree inodes lost data [ 80.550334][ T5307] running recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 80.550340][ T5307] ret btree_node_read_validate_error [ 80.619269][ T5307] bcachefs (loop0): error reading btree root btree=inodes level=0: btree_node_read_error, fixing [ 80.624633][ T5307] bcachefs (loop0): btree node read error at btree dirents level 0/0 [ 80.624645][ T5307] u64s 11 type btree_ptr_v2 18446744069414846463:U64_MAX:U32_MAX len 0 ver 281474976710656: seq 9aa2890000ce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 80.624654][ T5307] loop0 node offset 0/24: got wrong btree node: got [ 80.624660][ T5307] btree=dirents level=0 seq 9aa2895aefce4bdf 1 [ 80.624665][ T5307] min: POS_MIN [ 80.624670][ T5307] max: SPOS_MAX [ 80.624674][ T5307] flagging btree dirents lost data [ 80.624680][ T5307] ret btree_node_read_validate_error [ 80.668622][ T5307] bcachefs (loop0): error reading btree root btree=dirents level=0: btree_node_read_error, fixing [ 80.674661][ T5307] bcachefs (loop0): btree node read error at btree subvolumes level 0/0 [ 80.674673][ T5307] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0 [ 80.674681][ T5307] loop0 node offset 0/16 bset u64s 0: invalid bkey format: field 2 too large: 4294967295 + 3298534883328 > 4294967295 [ 80.674689][ T5307] u64s 3 fields 64:0, 64:0, 32:3298534883328, 0:0, 0:0, 0:0 [ 80.674695][ T5307] flagging btree subvolumes lost data [ 80.674701][ T5307] ret btree_node_read_validate_error [ 80.698081][ T5307] bcachefs (loop0): error reading btree root btree=subvolumes level=0: btree_node_read_error, fixing [ 80.703438][ T5307] bcachefs (loop0): btree node read error at btree snapshots level 0/0 [ 80.703450][ T5307] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 80.703458][ T5307] loop0 node offset 0/16 bset u64s 0: incorrect btree id [ 80.703464][ T5307] flagging btree snapshots lost data [ 80.703469][ T5307] running recovery pass reconstruct_snapshots (21), currently at recovery_pass_empty (0) [ 80.703476][ T5307] ret btree_node_read_validate_error [ 80.726228][ T5307] bcachefs (loop0): error reading btree root btree=snapshots level=0: btree_node_read_error, fixing [ 80.733183][ T5307] bcachefs (loop0): scan_for_btree_nodes... [ 80.737352][ T5310] bcachefs (loop0): invalid bkey in btree_node btree=subvolumes level=0: u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: subvol parent 0 children 0 0 subvol 1 tree 0 [ 80.737373][ T5310] invalid key type for btree subvolumes (snapshot), deleting [ 80.755759][ T5310] ------------[ cut here ]------------ [ 80.758470][ T5310] kernel BUG at fs/bcachefs/bkey.c:389! [ 80.761625][ T5310] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 80.765536][ T5310] CPU: 0 UID: 0 PID: 5310 Comm: read_btree_node Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) [ 80.769895][ T5310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 80.773934][ T5310] RIP: 0010:bch2_bkey_pack_pos_lossy+0x13de/0x24e0 [ 80.777389][ T5310] Code: e8 07 ca 08 fe 48 ba 00 00 00 00 00 fc ff df e9 a5 f8 ff ff e8 93 ab a5 fd 90 0f 0b e8 8b ab a5 fd 90 0f 0b e8 83 ab a5 fd 90 <0f> 0b e8 7b ab a5 fd 90 0f 0b e8 73 ab a5 fd 90 0f 0b f3 0f 1e fa [ 80.784501][ T5310] RSP: 0018:ffffc9000d49eb40 EFLAGS: 00010293 [ 80.786780][ T5310] RAX: ffffffff841a4f6d RBX: 0000090000000000 RCX: ffff888035242440 [ 80.789687][ T5310] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000090000000000 [ 80.792682][ T5310] RBP: ffffc9000d49ed78 R08: ffffffffffffffff R09: ffffffffffffffff [ 80.795968][ T5310] R10: ffffffffffffffff R11: ffffffffffffffff R12: ffff888011d320c4 [ 80.799562][ T5310] R13: fffff700ffffffff R14: 0000000000000000 R15: fffffffffffffffe [ 80.803520][ T5310] FS: 0000000000000000(0000) GS:ffff88808d266000(0000) knlGS:0000000000000000 [ 80.807285][ T5310] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 80.810186][ T5310] CR2: 000055ee29d349b0 CR3: 000000003f586000 CR4: 0000000000352ef0 [ 80.813642][ T5310] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 80.817009][ T5310] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 80.820378][ T5310] Call Trace: [ 80.821792][ T5310] [ 80.823064][ T5310] ? __pfx___bch2_inode_validate+0x10/0x10 [ 80.825569][ T5310] ? __pfx_bch2_bkey_pack_pos_lossy+0x10/0x10 [ 80.828331][ T5310] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.830657][ T5310] ? __build_ro_aux_tree+0xafc/0x1800 [ 80.832986][ T5310] __build_ro_aux_tree+0xb21/0x1800 [ 80.835258][ T5310] ? __pfx___build_ro_aux_tree+0x10/0x10 [ 80.837639][ T5310] ? bch2_bkey_val_validate+0x215/0x400 [ 80.840215][ T5310] ? __pfx_bch2_bkey_val_validate+0x10/0x10 [ 80.842856][ T5310] ? __asan_memset+0x22/0x50 [ 80.844937][ T5310] bch2_bset_build_aux_tree+0x3f5/0x570 [ 80.847299][ T5310] bch2_btree_node_read_done+0x39e4/0x4f60 [ 80.849825][ T5310] ? __pfx_bch2_btree_node_read_done+0x10/0x10 [ 80.852567][ T5310] ? bch2_extent_ptr_to_text+0x5a/0x900 [ 80.855018][ T5310] ? bch2_extent_ptr_to_text+0x5a/0x900 [ 80.857438][ T5310] ? bch2_bkey_ptrs_to_text+0x1161/0x1310 [ 80.859988][ T5310] ? bch2_printbuf_make_room+0xdb/0x360 [ 80.862546][ T5310] ? enumerated_ref_put+0xbe/0x270 [ 80.864863][ T5310] btree_node_read_work+0x426/0xe30 [ 80.867159][ T5310] ? __pfx_btree_node_read_work+0x10/0x10 [ 80.869623][ T5310] ? bch2_latency_acct+0x436/0x520 [ 80.871876][ T5310] ? __pfx_bch2_latency_acct+0x10/0x10 [ 80.874046][ T5310] ? bio_associate_blkg+0x6d/0x230 [ 80.876093][ T5310] bch2_btree_node_read+0x887/0x29f0 [ 80.878224][ T5310] ? bch2_btree_node_fill+0x954/0x14f0 [ 80.880473][ T5310] ? __pfx_bch2_btree_node_read+0x10/0x10 [ 80.882567][ T5310] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 80.884764][ T5310] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 80.887014][ T5310] ? __pfx___bch2_btree_node_hash_insert+0x10/0x10 [ 80.889926][ T5310] ? bch2_btree_node_mem_alloc+0xcd9/0x1820 [ 80.892591][ T5310] ? six_unlock_ip+0x302/0x430 [ 80.894621][ T5310] ? bch2_btree_node_fill+0xb47/0x14f0 [ 80.896990][ T5310] bch2_btree_node_fill+0xd12/0x14f0 [ 80.899327][ T5310] ? __pfx_bch2_btree_cache_cmp_fn+0x10/0x10 [ 80.902091][ T5310] ? __pfx_bch2_btree_node_fill+0x10/0x10 [ 80.904594][ T5310] ? btree_cache_find+0xf4/0x2d0 [ 80.906767][ T5310] ? btree_cache_find+0xf4/0x2d0 [ 80.908897][ T5310] ? btree_cache_find+0x26f/0x2d0 [ 80.911104][ T5310] ? __pfx_btree_cache_find+0x10/0x10 [ 80.913520][ T5310] bch2_btree_node_get_noiter+0xa2c/0x1000 [ 80.916133][ T5310] read_btree_nodes_worker+0x1319/0x1e20 [ 80.918651][ T5310] ? read_btree_nodes_worker+0xcef/0x1e20 [ 80.921160][ T5310] ? __pfx_read_btree_nodes_worker+0x10/0x10 [ 80.923779][ T5310] ? _raw_spin_unlock_irqrestore+0x85/0x110 [ 80.926395][ T5310] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.928700][ T5310] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 80.931180][ T5310] ? __kthread_parkme+0x7b/0x200 [ 80.933160][ T5310] ? __kthread_parkme+0x1a1/0x200 [ 80.935183][ T5310] kthread+0x70e/0x8a0 [ 80.936784][ T5310] ? __pfx_read_btree_nodes_worker+0x10/0x10 [ 80.939146][ T5310] ? __pfx_kthread+0x10/0x10 [ 80.940981][ T5310] ? _raw_spin_unlock_irq+0x23/0x50 [ 80.943066][ T5310] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.945155][ T5310] ? __pfx_kthread+0x10/0x10 [ 80.947132][ T5310] ret_from_fork+0x3fc/0x770 [ 80.949079][ T5310] ? __pfx_ret_from_fork+0x10/0x10 [ 80.951115][ T5310] ? __pfx_kthread+0x10/0x10 [ 80.952931][ T5310] ret_from_fork_asm+0x1a/0x30 [ 80.954820][ T5310] [ 80.956062][ T5310] Modules linked in: [ 80.957847][ T5310] ---[ end trace 0000000000000000 ]--- [ 80.964217][ T5310] RIP: 0010:bch2_bkey_pack_pos_lossy+0x13de/0x24e0 [ 80.966931][ T5310] Code: e8 07 ca 08 fe 48 ba 00 00 00 00 00 fc ff df e9 a5 f8 ff ff e8 93 ab a5 fd 90 0f 0b e8 8b ab a5 fd 90 0f 0b e8 83 ab a5 fd 90 <0f> 0b e8 7b ab a5 fd 90 0f 0b e8 73 ab a5 fd 90 0f 0b f3 0f 1e fa [ 80.975639][ T5310] RSP: 0018:ffffc9000d49eb40 EFLAGS: 00010293 [ 80.978493][ T5310] RAX: ffffffff841a4f6d RBX: 0000090000000000 RCX: ffff888035242440 [ 80.981990][ T5310] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000090000000000 [ 80.985369][ T5310] RBP: ffffc9000d49ed78 R08: ffffffffffffffff R09: ffffffffffffffff [ 80.989173][ T5310] R10: ffffffffffffffff R11: ffffffffffffffff R12: ffff888011d320c4 [ 80.992497][ T5310] R13: fffff700ffffffff R14: 0000000000000000 R15: fffffffffffffffe [ 80.995958][ T5310] FS: 0000000000000000(0000) GS:ffff88808d266000(0000) knlGS:0000000000000000 [ 81.000080][ T5310] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 81.002865][ T5310] CR2: 000055ee29d349b0 CR3: 000000003f586000 CR4: 0000000000352ef0 [ 81.006257][ T5310] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 81.010021][ T5310] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 81.013415][ T5310] Kernel panic - not syncing: Fatal exception [ 81.016352][ T5310] Kernel Offset: disabled [ 81.018339][ T5310] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:08:18 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000069 RBX=0000000000000069 RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc9000d49e290 R8 =ffff888033878237 R9 =1ffff1100670f046 R10=dffffc0000000000 R11=ffffffff85458f50 R12=dffffc0000000000 R13=ffffffff99aaf923 R14=ffffffff99db4ce0 R15=0000000000000000 RIP=ffffffff85458fcc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88808d266000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055ee29d349b0 CR3=000000003f586000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000440401 Opmask01=0000000000000001 Opmask02=00000000fff7ffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcedfdd2f0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1497db4560 00007f1497da85d8 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1497d996c4 00007f1497dad240 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65723d73726f7272 6500747865003036 36396f7369007265 6c6c616b7a797300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40571856574a5757 4000515d40001513 131c4a564c005740 4949444e5f5c5600 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000