program: r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x181080, 0x0) (async) syz_mount_image$bcachefs(&(0x7f0000002340), &(0x7f0000005900)='./file0\x00', 0x10000, &(0x7f0000002300)=ANY=[], 0x1, 0x5910, &(0x7f0000016480)="$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") unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) (async) link(&(0x7f00000000c0)='./file2\x00', &(0x7f0000000100)='./file1\x00') (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f00000000c0)={{r1}, 0x0, 0x0, 0x3000}) (async) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x20200, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000180)={0xc, 0x0, 0x0}) ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f0000000000)={0x18, 0x1, 0x0, 0x0, r2, 0x1}) (async) syz_init_net_socket$netrom(0x6, 0x5, 0x0) (async) r3 = syz_usb_connect$cdc_ecm(0x0, 0x5a, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48, 0x1, 0x1, 0x57, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@acm={0x4}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x7d7}}], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x8}}}}}]}}]}}, 0x0) syz_usb_disconnect(r3) (async) r4 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e"], 0x0) syz_usb_control_io(r4, 0x0, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041) ioctl$USBDEVFS_DISCONNECT_CLAIM(r5, 0x8108551b, &(0x7f00000001c0)={0x0, 0x2, "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"}) (async) r6 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=0x1c, 0x80000) r7 = accept$inet6(r6, 0x0, &(0x7f0000000100)) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r8, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) connect$bt_l2cap(r9, &(0x7f0000000000)={0x1f, 0x5, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="02c8100a"], 0xf) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) [ 73.762727][ T4690] Bluetooth: hci0: command tx timeout [ 74.115297][ T5343] loop0: detected capacity change from 0 to 32768 [ 74.420288][ T5343] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names [ 74.420306][ T5343] allowing incompatible features above 0.0: (unknown version) [ 74.420313][ T5343] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 74.438255][ T5343] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 74.442168][ T5343] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 74.447584][ T5343] bcachefs (loop0): Version upgrade required: [ 74.447584][ T5343] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 74.447584][ T5343] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 74.447584][ T5343] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 74.545602][ T5343] bcachefs (loop0): invalid bkey in btree_node btree=alloc level=0: u64s 12 type alloc_v4 0:28:0 len 0 ver 0: [ 74.545637][ T5343] gen 0 oldest_gen 0 data_type btree [ 74.545642][ T5343] journal_seq_nonempty 6 [ 74.545647][ T5343] journal_seq_empty 0 [ 74.545652][ T5343] need_discard 1 [ 74.545657][ T5343] need_inc_gen 1 [ 74.545662][ T5343] dirty_sectors 0 [ 74.545668][ T5343] stripe_sectors 1769482 [ 74.545673][ T5343] cached_sectors 0 [ 74.545679][ T5343] stripe 0 [ 74.545684][ T5343] stripe_redundancy 0 [ 74.545689][ T5343] io_time[READ] 1 [ 74.545695][ T5343] io_time[WRITE] 768 [ 74.545700][ T5343] fragmentation 0 [ 74.545705][ T5343] bp_start 7 [ 74.545710][ T5343] [ 74.545715][ T5343] invalid data type (got 3 should be 9), deleting [ 74.597534][ T5343] bcachefs (loop0): btree node read error at btree backpointers level 0/0 [ 74.597568][ T5343] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4a8b0fa43a9980a6 written 24 min_key POS_MIN durability: 1 ptr: 0:37:0 gen 0 [ 74.597576][ T5343] loop0 node offset 0/24 bset u64s 0: invalid bkey format: field 4 too large: 0 + 1099511627776 > 4294967295 [ 74.597583][ T5343] u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:1099511627776, 0:0 [ 74.597589][ T5343] loop0 btree validate error [ 74.597594][ T5343] flagging btree backpointers lost data [ 74.597600][ T5343] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 74.597607][ T5343] ret btree_node_read_err_bad_node [ 74.632467][ T5343] bcachefs (loop0): error reading btree root btree=backpointers level=0: btree_node_read_error, fixing [ 74.644434][ T5343] bcachefs (loop0): check_topology... done [ 74.648959][ T5343] bcachefs (loop0): accounting_read... done [ 74.653097][ T5343] bcachefs (loop0): alloc_read... done [ 74.657248][ T5343] bcachefs (loop0): snapshots_read... done [ 74.660517][ T5343] bcachefs (loop0): check_allocations... [ 74.667653][ T5343] bcachefs (loop0): bucket 0:26 data type btree ptr gen 0 missing in alloc btree [ 74.667679][ T5343] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing [ 74.687277][ T5343] bcachefs (loop0): bucket 0:38 data type btree ptr gen 0 missing in alloc btree [ 74.687292][ T5343] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 74.701178][ T5343] bcachefs (loop0): bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 74.701196][ T5343] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 74.713582][ T5343] bcachefs (loop0): bucket 0:35 data type btree ptr gen 0 missing in alloc btree [ 74.713597][ T5343] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 74.729149][ T5343] bcachefs (loop0): bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 74.729164][ T5343] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 74.741099][ T5343] bcachefs (loop0): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.745973][ T5343] bcachefs (loop0): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 74.752810][ T5343] bcachefs (loop0): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.758133][ T5343] bcachefs (loop0): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 74.765112][ T5343] bcachefs (loop0): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.770516][ T5343] bcachefs (loop0): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 74.775695][ T5343] bcachefs (loop0): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.780862][ T5343] bcachefs (loop0): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 74.785965][ T5343] bcachefs (loop0): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.791814][ T5343] bcachefs (loop0): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 74.827549][ T5343] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.833061][ T5343] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 74.851151][ T5343] bcachefs (loop0): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.855647][ T5343] bcachefs (loop0): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 74.862168][ T5343] bcachefs (loop0): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 74.867565][ T5343] bcachefs (loop0): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 74.874014][ T5343] bcachefs (loop0): bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing [ 74.881519][ T5343] bcachefs (loop0): bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 74.888168][ T5343] bcachefs (loop0): bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing [ 74.893160][ T5343] bcachefs (loop0): bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 74.899618][ T5343] bcachefs (loop0): bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing [ 74.899632][ T5343] Ratelimiting new instances of previous error [ 74.907905][ T5343] bcachefs (loop0): bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 74.907919][ T5343] Ratelimiting new instances of previous error [ 74.927793][ T5343] done [ 74.931545][ T5343] bcachefs (loop0): going read-write [ 74.949187][ T5343] bcachefs (loop0): journal_replay... done [ 74.995531][ T5343] bcachefs (loop0): check_alloc_info... [ 74.999588][ T5343] bcachefs (loop0): hole in alloc btree missing in freespace btree [ 74.999616][ T5343] device 0 buckets 28-29, fixing [ 75.011054][ T5343] bcachefs (loop0): bucket incorrectly unset in need_discard btree [ 75.011068][ T5343] u64s 13 type alloc_v4 0:37:0 len 0 ver 0: [ 75.011074][ T5343] gen 0 oldest_gen 0 data_type need_discard [ 75.011079][ T5343] journal_seq_nonempty 6 [ 75.011085][ T5343] journal_seq_empty 0 [ 75.011090][ T5343] need_discard 1 [ 75.011096][ T5343] need_inc_gen 1 [ 75.011101][ T5343] dirty_sectors 0 [ 75.011106][ T5343] stripe_sectors 0 [ 75.011111][ T5343] cached_sectors 0 [ 75.011117][ T5343] stripe 0 [ 75.011122][ T5343] stripe_redundancy 0 [ 75.011127][ T5343] io_time[READ] 1 [ 75.011132][ T5343] io_time[WRITE] 1024 [ 75.011137][ T5343] fragmentation 0 [ 75.011143][ T5343] bp_start 8 [ 75.011147][ T5343] , fixing [ 75.080272][ T5343] done [ 75.085709][ T5343] bcachefs (loop0): check_lrus... done [ 75.095898][ T5343] bcachefs (loop0): check_btree_backpointers... done [ 75.100570][ T5343] bcachefs (loop0): check_backpointers_to_extents... done [ 75.116784][ T5343] bcachefs (loop0): check_extents_to_backpointers... [ 75.117789][ T5343] bcachefs (loop0): scanning for missing backpointers in 10/128 buckets [ 75.137749][ T5343] done [ 75.139542][ T5343] bcachefs (loop0): check_alloc_to_lru_refs... [ 75.141631][ T5343] bcachefs (loop0): missing fragmentation lru entry [ 75.141643][ T5343] u64s 12 type alloc_v4 0:34:0 len 0 ver 0: [ 75.141648][ T5343] gen 0 oldest_gen 0 data_type user [ 75.141654][ T5343] journal_seq_nonempty 5 [ 75.141659][ T5343] journal_seq_empty 134217728 [ 75.141665][ T5343] need_discard 1 [ 75.141670][ T5343] need_inc_gen 1 [ 75.141676][ T5343] dirty_sectors 16 [ 75.141681][ T5343] stripe_sectors 1802251 [ 75.141686][ T5343] cached_sectors 0 [ 75.141691][ T5343] stripe 0 [ 75.141695][ T5343] stripe_redundancy 0 [ 75.141700][ T5343] io_time[READ] 1 [ 75.141705][ T5343] io_time[WRITE] 512 [ 75.141710][ T5343] fragmentation 0 [ 75.141715][ T5343] bp_start 7 [ 75.141719][ T5343] , fixing [ 75.195813][ T5343] done [ 75.199254][ T5343] bcachefs (loop0): bucket_gens_init... done [ 75.210506][ T5343] bcachefs (loop0): check_snapshot_trees... done [ 75.213913][ T5343] bcachefs (loop0): check_snapshots... [ 75.214500][ T5343] bcachefs (loop0): snapshot points to missing/incorrect tree: [ 75.214510][ T5343] u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: subvol parent 0 children 0 0 subvol 1 tree 0, fixing [ 75.236941][ T5343] done [ 75.238733][ T5343] bcachefs (loop0): check_subvols... done [ 75.246156][ T5343] bcachefs (loop0): check_subvol_children... done [ 75.250013][ T5343] bcachefs (loop0): delete_dead_snapshots... done [ 75.265589][ T5343] bcachefs (loop0): check_inodes... done [ 75.285467][ T5343] bcachefs (loop0): check_extents... done [ 75.289875][ T5343] bcachefs (loop0): check_indirect_extents... done [ 75.299857][ T5343] bcachefs (loop0): check_dirents... done [ 75.309106][ T5343] bcachefs (loop0): check_xattrs... done [ 75.320052][ T5343] bcachefs (loop0): check_root... done [ 75.323844][ T5343] bcachefs (loop0): check_unreachable_inodes... done [ 75.340235][ T5343] bcachefs (loop0): check_subvolume_structure... done [ 75.343607][ T5343] bcachefs (loop0): check_directory_structure... done [ 75.356273][ T5343] bcachefs (loop0): check_nlinks... done [ 75.360513][ T5343] bcachefs (loop0): check_rebalance_work... done [ 75.364127][ T5343] bcachefs (loop0): resume_logged_ops... done [ 75.379599][ T5343] bcachefs (loop0): delete_dead_inodes... done [ 75.384601][ T5343] bcachefs (loop0): set_fs_needs_rebalance... done [ 75.448202][ T5343] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean [ 75.456710][ T5343] bcachefs (loop0): check_alloc_info... done [ 75.471392][ T5343] bcachefs (loop0): check_lrus... done [ 75.475252][ T5343] bcachefs (loop0): check_btree_backpointers... done [ 75.488315][ T5343] bcachefs (loop0): check_backpointers_to_extents... done [ 75.505265][ T5343] bcachefs (loop0): check_extents_to_backpointers... done [ 75.509622][ T5343] bcachefs (loop0): check_alloc_to_lru_refs... done [ 75.526503][ T5343] bcachefs (loop0): bucket_gens_init... done [ 75.536192][ T5343] bcachefs (loop0): check_snapshot_trees... done [ 75.540958][ T5343] bcachefs (loop0): check_snapshots... done [ 75.544158][ T5343] bcachefs (loop0): check_subvols... done [ 75.553953][ T5343] bcachefs (loop0): check_subvol_children... done [ 75.561760][ T5343] bcachefs (loop0): delete_dead_snapshots... done [ 75.564982][ T5343] bcachefs (loop0): check_inodes... done [ 75.575198][ T5343] bcachefs (loop0): check_extents... done [ 75.579592][ T5343] bcachefs (loop0): check_indirect_extents... done [ 75.590112][ T5343] bcachefs (loop0): check_dirents... done [ 75.600655][ T5343] bcachefs (loop0): check_xattrs... done [ 75.609652][ T5343] bcachefs (loop0): check_root... done [ 75.612491][ T5343] bcachefs (loop0): check_unreachable_inodes... done [ 75.626484][ T5343] bcachefs (loop0): check_subvolume_structure... done [ 75.630445][ T5343] bcachefs (loop0): check_directory_structure... done [ 75.633994][ T5343] bcachefs (loop0): check_nlinks... done [ 75.649905][ T5343] bcachefs (loop0): check_rebalance_work... done [ 75.653349][ T5343] bcachefs (loop0): resume_logged_ops... done [ 75.660289][ T5343] bcachefs (loop0): delete_dead_inodes... done [ 75.669789][ T5343] bcachefs (loop0): set_fs_needs_rebalance... done [ 75.681800][ T5343] bcachefs (loop0): done starting filesystem [ 75.728626][ T25] audit: type=1800 audit(1752355476.200:2): pid=5355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=536870912 res=0 errno=0 [ 75.748220][ T5344] bcachefs (loop0): requested incompat feature 1.16: reflink_p_may_update_opts currently not enabled, allowed up to 1.16: reflink_p_may_update_opts [ 75.748220][ T5344] set version_upgrade=incompat to enable [ 75.810203][ T25] audit: type=1804 audit(1752355476.280:3): pid=5355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.0" name="/newroot/0/file0/file1" dev="loop0" ino=536870912 res=1 errno=0 [ 75.828701][ T5355] ------------[ cut here ]------------ [ 75.831370][ T5355] truncate spotted in mem i_size < btree i_size: 10 < 12288 [ 75.834921][ T5355] WARNING: CPU: 0 PID: 5355 at fs/bcachefs/fs-io.c:474 bchfs_truncate+0xa3b/0xc20 [ 75.841778][ T5355] Modules linked in: [ 75.843725][ T5355] CPU: 0 UID: 0 PID: 5355 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(full) [ 75.848946][ T5355] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.853611][ T5355] RIP: 0010:bchfs_truncate+0xa3b/0xc20 [ 75.856133][ T5355] Code: 00 74 0a 48 8b 7c 24 20 e8 32 fb e8 fd 4c 8b 7c 24 20 49 8b 37 48 8b 94 24 00 01 00 00 48 c7 c7 80 c2 d4 8b e8 b6 5d 49 fd 90 <0f> 0b 90 90 e9 95 fa ff ff e8 d7 7a 85 fd 4c 8b 7c 24 50 4c 89 ff [ 75.864505][ T5355] RSP: 0018:ffffc9000d3df540 EFLAGS: 00010246 [ 75.867450][ T5355] RAX: 9e2cd93a6181c000 RBX: 1ffff110089a427b RCX: ffff88800064a440 [ 75.871299][ T5355] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 75.874831][ T5355] RBP: ffffc9000d3df7d0 R08: ffff88801fc24293 R09: 1ffff11003f84852 [ 75.878578][ T5355] R10: dffffc0000000000 R11: ffffed1003f84853 R12: ffff888044d213d8 [ 75.882126][ T5355] R13: ffff888044d21498 R14: 000000000000000a R15: ffff888044d20f80 [ 75.886698][ T5355] FS: 00007f2dda4176c0(0000) GS:ffff88808d21b000(0000) knlGS:0000000000000000 [ 75.890509][ T5355] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 75.893854][ T5355] CR2: 0000000000000000 CR3: 0000000043ac7000 CR4: 0000000000352ef0 [ 75.897776][ T5355] Call Trace: [ 75.899158][ T5355] [ 75.900374][ T5355] ? __pfx_bchfs_truncate+0x10/0x10 [ 75.902606][ T5355] ? __bch2_trans_get+0x9c2/0xd80 [ 75.904849][ T5355] ? __pfx_bch2_subvol_is_ro+0x10/0x10 [ 75.907207][ T5355] ? setattr_prepare+0x1e7/0xac0 [ 75.909289][ T5355] ? bch2_setattr+0x1a7/0x220 [ 75.911813][ T5355] ? __pfx_bch2_setattr+0x10/0x10 [ 75.914606][ T5355] notify_change+0xb36/0xe40 [ 75.916611][ T5355] do_truncate+0x1a4/0x220 [ 75.918613][ T5355] ? __pfx_do_truncate+0x10/0x10 [ 75.920646][ T5355] ? apparmor_file_truncate+0x23e/0x2d0 [ 75.922916][ T5355] path_openat+0x306c/0x3830 [ 75.924740][ T5355] ? arch_stack_walk+0xfc/0x150 [ 75.926656][ T5355] ? __pfx_path_openat+0x10/0x10 [ 75.928501][ T5355] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.931002][ T5355] do_filp_open+0x1fa/0x410 [ 75.933057][ T5355] ? __lock_acquire+0xab9/0xd20 [ 75.935320][ T5355] ? __pfx_do_filp_open+0x10/0x10 [ 75.938168][ T5355] ? _raw_spin_unlock+0x28/0x50 [ 75.941381][ T5355] ? alloc_fd+0x64c/0x6c0 [ 75.943286][ T5355] do_sys_openat2+0x121/0x1c0 [ 75.946164][ T5355] ? __pfx_do_sys_openat2+0x10/0x10 [ 75.951441][ T5355] ? rcu_is_watching+0x15/0xb0 [ 75.953672][ T5355] __x64_sys_openat+0x138/0x170 [ 75.955794][ T5355] do_syscall_64+0xfa/0x3b0 [ 75.957868][ T5355] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.960049][ T5355] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.962655][ T5355] ? clear_bhb_loop+0x60/0xb0 [ 75.964683][ T5355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.967354][ T5355] RIP: 0033:0x7f2dd958e929 [ 75.969283][ T5355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.978095][ T5355] RSP: 002b:00007f2dda417038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 75.981499][ T5355] RAX: ffffffffffffffda RBX: 00007f2dd97b6160 RCX: 00007f2dd958e929 [ 75.984887][ T5355] RDX: 0000000000020200 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 75.988464][ T5355] RBP: 00007f2dd9610b39 R08: 0000000000000000 R09: 0000000000000000 [ 75.992046][ T5355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.995656][ T5355] R13: 0000000000000000 R14: 00007f2dd97b6160 R15: 00007ffd7b613d18 [ 76.000886][ T5355] [ 76.002394][ T5355] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 76.005682][ T5355] CPU: 0 UID: 0 PID: 5355 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(full) [ 76.011207][ T5355] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.016686][ T5355] Call Trace: [ 76.018301][ T5355] [ 76.019579][ T5355] dump_stack_lvl+0x99/0x250 [ 76.021678][ T5355] ? __asan_memcpy+0x40/0x70 [ 76.023838][ T5355] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.026305][ T5355] ? __pfx__printk+0x10/0x10 [ 76.028521][ T5355] panic+0x2db/0x790 [ 76.030330][ T5355] ? __pfx_panic+0x10/0x10 [ 76.032133][ T5355] ? show_trace_log_lvl+0x4fb/0x550 [ 76.034453][ T5355] __warn+0x31b/0x4b0 [ 76.036070][ T5355] ? bchfs_truncate+0xa3b/0xc20 [ 76.038258][ T5355] ? bchfs_truncate+0xa3b/0xc20 [ 76.040468][ T5355] report_bug+0x2be/0x4f0 [ 76.042503][ T5355] ? bchfs_truncate+0xa3b/0xc20 [ 76.044663][ T5355] ? bchfs_truncate+0xa3b/0xc20 [ 76.046756][ T5355] ? bchfs_truncate+0xa3d/0xc20 [ 76.048851][ T5355] handle_bug+0x84/0x160 [ 76.050905][ T5355] exc_invalid_op+0x1a/0x50 [ 76.053067][ T5355] asm_exc_invalid_op+0x1a/0x20 [ 76.055546][ T5355] RIP: 0010:bchfs_truncate+0xa3b/0xc20 [ 76.058121][ T5355] Code: 00 74 0a 48 8b 7c 24 20 e8 32 fb e8 fd 4c 8b 7c 24 20 49 8b 37 48 8b 94 24 00 01 00 00 48 c7 c7 80 c2 d4 8b e8 b6 5d 49 fd 90 <0f> 0b 90 90 e9 95 fa ff ff e8 d7 7a 85 fd 4c 8b 7c 24 50 4c 89 ff [ 76.066382][ T5355] RSP: 0018:ffffc9000d3df540 EFLAGS: 00010246 [ 76.068757][ T5355] RAX: 9e2cd93a6181c000 RBX: 1ffff110089a427b RCX: ffff88800064a440 [ 76.072181][ T5355] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 76.075833][ T5355] RBP: ffffc9000d3df7d0 R08: ffff88801fc24293 R09: 1ffff11003f84852 [ 76.079320][ T5355] R10: dffffc0000000000 R11: ffffed1003f84853 R12: ffff888044d213d8 [ 76.082853][ T5355] R13: ffff888044d21498 R14: 000000000000000a R15: ffff888044d20f80 [ 76.086949][ T5355] ? __pfx_bchfs_truncate+0x10/0x10 [ 76.089377][ T5355] ? __bch2_trans_get+0x9c2/0xd80 [ 76.091589][ T5355] ? __pfx_bch2_subvol_is_ro+0x10/0x10 [ 76.093918][ T5355] ? setattr_prepare+0x1e7/0xac0 [ 76.096184][ T5355] ? bch2_setattr+0x1a7/0x220 [ 76.098091][ T5355] ? __pfx_bch2_setattr+0x10/0x10 [ 76.100295][ T5355] notify_change+0xb36/0xe40 [ 76.102418][ T5355] do_truncate+0x1a4/0x220 [ 76.104399][ T5355] ? __pfx_do_truncate+0x10/0x10 [ 76.106559][ T5355] ? apparmor_file_truncate+0x23e/0x2d0 [ 76.109008][ T5355] path_openat+0x306c/0x3830 [ 76.111055][ T5355] ? arch_stack_walk+0xfc/0x150 [ 76.113371][ T5355] ? __pfx_path_openat+0x10/0x10 [ 76.115655][ T5355] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.118030][ T5355] do_filp_open+0x1fa/0x410 [ 76.119924][ T5355] ? __lock_acquire+0xab9/0xd20 [ 76.122066][ T5355] ? __pfx_do_filp_open+0x10/0x10 [ 76.124232][ T5355] ? _raw_spin_unlock+0x28/0x50 [ 76.126369][ T5355] ? alloc_fd+0x64c/0x6c0 [ 76.128242][ T5355] do_sys_openat2+0x121/0x1c0 [ 76.130406][ T5355] ? __pfx_do_sys_openat2+0x10/0x10 [ 76.132652][ T5355] ? rcu_is_watching+0x15/0xb0 [ 76.134773][ T5355] __x64_sys_openat+0x138/0x170 [ 76.136939][ T5355] do_syscall_64+0xfa/0x3b0 [ 76.139013][ T5355] ? lockdep_hardirqs_on+0x9c/0x150 [ 76.142054][ T5355] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.144374][ T5355] ? clear_bhb_loop+0x60/0xb0 [ 76.146545][ T5355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.149195][ T5355] RIP: 0033:0x7f2dd958e929 [ 76.151357][ T5355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.159931][ T5355] RSP: 002b:00007f2dda417038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 76.163658][ T5355] RAX: ffffffffffffffda RBX: 00007f2dd97b6160 RCX: 00007f2dd958e929 [ 76.167141][ T5355] RDX: 0000000000020200 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 76.170770][ T5355] RBP: 00007f2dd9610b39 R08: 0000000000000000 R09: 0000000000000000 [ 76.174249][ T5355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.177946][ T5355] R13: 0000000000000000 R14: 00007f2dd97b6160 R15: 00007ffd7b613d18 [ 76.181687][ T5355] [ 76.183214][ T5355] Kernel Offset: disabled [ 76.185164][ T5355] Rebooting in 86400 seconds..