./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor626187873
<...>
Warning: Permanently added '10.128.0.20' (ED25519) to the list of known hosts.
execve("./syz-executor626187873", ["./syz-executor626187873"], 0x7ffce3f4b140 /* 10 vars */) = 0
brk(NULL) = 0x5555572f5000
brk(0x5555572f5d00) = 0x5555572f5d00
arch_prctl(ARCH_SET_FS, 0x5555572f5380) = 0
set_tid_address(0x5555572f5650) = 5062
set_robust_list(0x5555572f5660, 24) = 0
rseq(0x5555572f5ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor626187873", 4096) = 27
getrandom("\xf6\x59\xe6\x56\xdf\xa6\xe6\x82", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x5555572f5d00
brk(0x555557316d00) = 0x555557316d00
brk(0x555557317000) = 0x555557317000
mprotect(0x7f1ff16df000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
[ 79.287411][ T27] audit: type=1400 audit(1700825268.723:83): avc: denied { execmem } for pid=5062 comm="syz-executor626" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
mkdir("./syzkaller.MSbmpF", 0700) = 0
chmod("./syzkaller.MSbmpF", 0777) = 0
chdir("./syzkaller.MSbmpF") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
[ 79.448071][ T27] audit: type=1400 audit(1700825268.883:84): avc: denied { read write } for pid=5062 comm="syz-executor626" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 79.472462][ T27] audit: type=1400 audit(1700825268.883:85): avc: denied { open } for pid=5062 comm="syz-executor626" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555572f5650) = 5063
./strace-static-x86_64: Process 5063 attached
[pid 5063] set_robust_list(0x5555572f5660, 24) = 0
[pid 5063] chdir("./0") = 0
[pid 5063] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5063] setpgid(0, 0) = 0
[pid 5063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5063] write(3, "1000", 4) = 4
[ 79.496910][ T27] audit: type=1400 audit(1700825268.893:86): avc: denied { ioctl } for pid=5062 comm="syz-executor626" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[pid 5063] close(3) = 0
[pid 5063] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5063] memfd_create("syzkaller", 0) = 3
[pid 5063] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1fe9227000
[pid 5063] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5063] munmap(0x7f1fe9227000, 138412032) = 0
[pid 5063] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5063] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5063] close(3) = 0
[ 79.829289][ T5063] loop0: detected capacity change from 0 to 32768
[ 79.848079][ T27] audit: type=1400 audit(1700825269.283:87): avc: denied { append } for pid=4494 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[pid 5063] mkdir("./file0", 0777) = 0
[ 79.873526][ T27] audit: type=1400 audit(1700825269.283:88): avc: denied { open } for pid=4494 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 79.898881][ T27] audit: type=1400 audit(1700825269.283:89): avc: denied { getattr } for pid=4494 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 79.918010][ T5063] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor626 (5063)
[ 79.923066][ T27] audit: type=1400 audit(1700825269.333:90): avc: denied { mounton } for pid=5063 comm="syz-executor626" path="/root/syzkaller.MSbmpF/0/file0" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 79.967438][ T5063] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 79.976634][ T5063] BTRFS info (device loop0): setting nodatacow, compression disabled
[ 79.984820][ T5063] BTRFS info (device loop0): using free space tree
[ 80.012362][ T5063] BTRFS info (device loop0): enabling ssd optimizations
[ 80.019663][ T5063] BTRFS info (device loop0): auto enabling async discard
[pid 5063] mount("/dev/loop0", "./file0", "btrfs", MS_NODEV, "enospc_debug,nodatacow,subvolid=0x0000000000000005,nodatacow,") = 0
[pid 5063] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5063] chdir("./file0") = 0
[pid 5063] ioctl(4, LOOP_CLR_FD) = 0
[pid 5063] close(4) = 0
[ 80.032607][ T27] audit: type=1400 audit(1700825269.463:91): avc: denied { mount } for pid=5063 comm="syz-executor626" name="/" dev="loop0" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[pid 5063] openat(AT_FDCWD, "cpuacct.usage_percpu", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5063] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[ 80.073131][ T27] audit: type=1400 audit(1700825269.503:92): avc: denied { write } for pid=5063 comm="syz-executor626" name="/" dev="loop0" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[pid 5063] write(5, "7", 1) = 1
[ 80.139952][ T5063] FAULT_INJECTION: forcing a failure.
[ 80.139952][ T5063] name failslab, interval 1, probability 0, space 0, times 1
[ 80.153535][ T5063] CPU: 0 PID: 5063 Comm: syz-executor626 Not tainted 6.7.0-rc2-syzkaller-00095-gd3fa86b1a7b4 #0
[ 80.163991][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 80.174076][ T5063] Call Trace:
[ 80.177409][ T5063]
[ 80.180371][ T5063] dump_stack_lvl+0x125/0x1b0
[ 80.185105][ T5063] should_fail_ex+0x496/0x5b0
[ 80.189827][ T5063] should_failslab+0x9/0x20
[ 80.194370][ T5063] __kmem_cache_alloc_node+0x5f/0x460
[ 80.199891][ T5063] ? common_lsm_audit+0x2210/0x2210
[ 80.205129][ T5063] ? tomoyo_supervisor+0xcdb/0xea0
[ 80.210277][ T5063] __kmalloc+0x49/0x90
[ 80.214388][ T5063] tomoyo_supervisor+0xcdb/0xea0
[ 80.219362][ T5063] ? tomoyo_profile+0x60/0x60
[ 80.224079][ T5063] ? tomoyo_check_path_number_acl+0xa6/0x2f0
[ 80.230101][ T5063] tomoyo_path_number_perm+0x43d/0x580
[ 80.235599][ T5063] ? tomoyo_execute_permission+0x4a0/0x4a0
[ 80.241447][ T5063] ? do_raw_spin_lock+0x12e/0x2b0
[ 80.246530][ T5063] ? ptrace_notify+0xf4/0x130
[ 80.251255][ T5063] ? restore_fpregs_from_fpstate+0xc1/0x1d0
[ 80.257187][ T5063] security_file_ioctl+0x72/0xb0
[ 80.262135][ T5063] __x64_sys_ioctl+0xbb/0x210
[ 80.266818][ T5063] do_syscall_64+0x40/0x110
[ 80.271418][ T5063] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 80.277328][ T5063] RIP: 0033:0x7f1ff1666269
[ 80.281745][ T5063] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 80.301445][ T5063] RSP: 002b:00007ffde99010f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 80.309864][ T5063] RAX: ffffffffffffffda RBX: 00007ffde9901120 RCX: 00007f1ff1666269
[ 80.317840][ T5063] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004
[ 80.325814][ T5063] RBP: 0000000000000001 R08: 00007ffde9900e97 R09: 00007ffde9901140
[ 80.333790][ T5063] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 80.341850][ T5063] R13: 0000000000000000 R14: 431bde82d7b634db R15: 00007ffde9901160
[ 80.349826][ T5063]
[pid 5063] ioctl(4, BTRFS_IOC_QUOTA_CTL, {cmd=BTRFS_QUOTA_CTL_ENABLE}) = 0
[pid 5063] exit_group(0) = ?
[pid 5063] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5063, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=34 /* 0.34 s */} ---
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x5555572f66f0 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./0/binderfs") = 0
[ 80.444241][ T31] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x5555572fe730 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555572fe730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x5555572f66f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5082 attached
, child_tidptr=0x5555572f5650) = 5082
[pid 5082] set_robust_list(0x5555572f5660, 24) = 0
[pid 5082] chdir("./1") = 0
[pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5082] setpgid(0, 0) = 0
[pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5082] write(3, "1000", 4) = 4
[pid 5082] close(3) = 0
[pid 5082] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5082] memfd_create("syzkaller", 0) = 3
[pid 5082] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1fe9227000
[pid 5082] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5082] munmap(0x7f1fe9227000, 138412032) = 0
[pid 5082] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5082] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5082] close(3) = 0
[pid 5082] mkdir("./file0", 0777) = 0
[ 80.977645][ T5082] loop0: detected capacity change from 0 to 32768
[ 81.003009][ T5082] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor626 (5082)
[pid 5082] mount("/dev/loop0", "./file0", "btrfs", MS_NODEV, "enospc_debug,nodatacow,subvolid=0x0000000000000005,nodatacow,") = 0
[pid 5082] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5082] chdir("./file0") = 0
[pid 5082] ioctl(4, LOOP_CLR_FD) = 0
[ 81.020331][ T5082] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 81.029175][ T5082] BTRFS info (device loop0): setting nodatacow, compression disabled
[ 81.037312][ T5082] BTRFS info (device loop0): using free space tree
[ 81.060134][ T5082] BTRFS info (device loop0): enabling ssd optimizations
[ 81.067184][ T5082] BTRFS info (device loop0): auto enabling async discard
[pid 5082] close(4) = 0
[pid 5082] openat(AT_FDCWD, "cpuacct.usage_percpu", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5082] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[pid 5082] write(5, "7", 1) = 1
[ 81.144637][ T5082] FAULT_INJECTION: forcing a failure.
[ 81.144637][ T5082] name failslab, interval 1, probability 0, space 0, times 0
[ 81.157919][ T5082] CPU: 1 PID: 5082 Comm: syz-executor626 Not tainted 6.7.0-rc2-syzkaller-00095-gd3fa86b1a7b4 #0
[ 81.168369][ T5082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 81.178461][ T5082] Call Trace:
[ 81.181765][ T5082]
[ 81.184718][ T5082] dump_stack_lvl+0x125/0x1b0
[ 81.189430][ T5082] should_fail_ex+0x496/0x5b0
[ 81.194132][ T5082] should_failslab+0x9/0x20
[ 81.199431][ T5082] __kmem_cache_alloc_node+0x5f/0x460
[ 81.204823][ T5082] ? common_lsm_audit+0x2210/0x2210
[ 81.210056][ T5082] ? tomoyo_supervisor+0xcdb/0xea0
[ 81.215186][ T5082] __kmalloc+0x49/0x90
[ 81.219266][ T5082] tomoyo_supervisor+0xcdb/0xea0
[ 81.224507][ T5082] ? tomoyo_profile+0x60/0x60
[ 81.229215][ T5082] ? tomoyo_check_path_number_acl+0xa6/0x2f0
[ 81.235226][ T5082] tomoyo_path_number_perm+0x43d/0x580
[ 81.240708][ T5082] ? tomoyo_execute_permission+0x4a0/0x4a0
[ 81.246534][ T5082] ? do_raw_spin_lock+0x12e/0x2b0
[ 81.251581][ T5082] ? ptrace_notify+0xf4/0x130
[ 81.256269][ T5082] ? restore_fpregs_from_fpstate+0xc1/0x1d0
[ 81.262181][ T5082] security_file_ioctl+0x72/0xb0
[ 81.267139][ T5082] __x64_sys_ioctl+0xbb/0x210
[ 81.271824][ T5082] do_syscall_64+0x40/0x110
[ 81.276357][ T5082] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 81.282300][ T5082] RIP: 0033:0x7f1ff1666269
[ 81.286720][ T5082] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 81.306509][ T5082] RSP: 002b:00007ffde99010f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 81.315018][ T5082] RAX: ffffffffffffffda RBX: 00007ffde9901120 RCX: 00007f1ff1666269
[ 81.322998][ T5082] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004
[ 81.330975][ T5082] RBP: 0000000000000001 R08: 00007ffde9900e97 R09: 00007ffde9901140
[pid 5082] ioctl(4, BTRFS_IOC_QUOTA_CTL, {cmd=BTRFS_QUOTA_CTL_ENABLE}) = 0
[pid 5082] exit_group(0) = ?
[pid 5082] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5082, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=25 /* 0.25 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x5555572f66f0 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./1/binderfs") = 0
[ 81.339048][ T5082] R10: 0000000000000001 R11: 0000000000000246 R12: 00007ffde990111c
[ 81.347023][ T5082] R13: 0000000000000001 R14: 431bde82d7b634db R15: 00007ffde9901160
[ 81.355088][ T5082]
[ 81.405716][ T31] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x5555572fe730 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555572fe730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x5555572f66f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5099 attached
[pid 5099] set_robust_list(0x5555572f5660, 24
[pid 5062] <... clone resumed>, child_tidptr=0x5555572f5650) = 5099
[pid 5099] <... set_robust_list resumed>) = 0
[pid 5099] chdir("./2") = 0
[pid 5099] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5099] setpgid(0, 0) = 0
[pid 5099] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5099] write(3, "1000", 4) = 4
[pid 5099] close(3) = 0
[pid 5099] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5099] memfd_create("syzkaller", 0) = 3
[pid 5099] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1fe9227000
[pid 5099] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5099] munmap(0x7f1fe9227000, 138412032) = 0
[pid 5099] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5099] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5099] close(3) = 0
[pid 5099] mkdir("./file0", 0777) = 0
[ 82.007273][ T5099] loop0: detected capacity change from 0 to 32768
[ 82.024871][ T5099] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor626 (5099)
[ 82.042983][ T5099] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[pid 5099] mount("/dev/loop0", "./file0", "btrfs", MS_NODEV, "enospc_debug,nodatacow,subvolid=0x0000000000000005,nodatacow,") = 0
[pid 5099] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5099] chdir("./file0") = 0
[pid 5099] ioctl(4, LOOP_CLR_FD) = 0
[pid 5099] close(4) = 0
[pid 5099] openat(AT_FDCWD, "cpuacct.usage_percpu", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5099] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[ 82.051717][ T5099] BTRFS info (device loop0): setting nodatacow, compression disabled
[ 82.059912][ T5099] BTRFS info (device loop0): using free space tree
[ 82.082651][ T5099] BTRFS info (device loop0): enabling ssd optimizations
[ 82.089726][ T5099] BTRFS info (device loop0): auto enabling async discard
[pid 5099] write(5, "7", 1) = 1
[ 82.138793][ T5099] FAULT_INJECTION: forcing a failure.
[ 82.138793][ T5099] name failslab, interval 1, probability 0, space 0, times 0
[ 82.168443][ T5099] CPU: 0 PID: 5099 Comm: syz-executor626 Not tainted 6.7.0-rc2-syzkaller-00095-gd3fa86b1a7b4 #0
[ 82.178928][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 82.189014][ T5099] Call Trace:
[ 82.192318][ T5099]
[ 82.195360][ T5099] dump_stack_lvl+0x125/0x1b0
[ 82.200083][ T5099] should_fail_ex+0x496/0x5b0
[ 82.204825][ T5099] should_failslab+0x9/0x20
[ 82.209393][ T5099] __kmem_cache_alloc_node+0x5f/0x460
[ 82.214908][ T5099] kmalloc_trace+0x25/0x60
[ 82.219366][ T5099] btrfs_sysfs_add_qgroups+0x113/0x2a0
[ 82.225052][ T5099] btrfs_quota_enable+0x359/0x1ee0
[ 82.230303][ T5099] ? find_held_lock+0x2d/0x110
[ 82.235163][ T5099] ? btrfs_free_qgroup_config+0xe0/0xe0
[ 82.240756][ T5099] ? up_write+0x510/0x510
[ 82.245133][ T5099] ? lock_sync+0x190/0x190
[ 82.249598][ T5099] ? preempt_count_sub+0x160/0x160
[ 82.254749][ T5099] btrfs_ioctl+0x5022/0x61e0
[ 82.259385][ T5099] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 82.265842][ T5099] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 82.271777][ T5099] ? do_vfs_ioctl+0x379/0x1920
[ 82.276576][ T5099] ? vfs_fileattr_set+0xbf0/0xbf0
[ 82.282196][ T5099] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x460
[ 82.288914][ T5099] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x460
[ 82.295458][ T5099] ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 82.301651][ T5099] ? selinux_file_ioctl+0x17d/0x270
[ 82.306894][ T5099] ? selinux_file_ioctl+0xb5/0x270
[ 82.312043][ T5099] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 82.318589][ T5099] __x64_sys_ioctl+0x18f/0x210
[ 82.324409][ T5099] do_syscall_64+0x40/0x110
[ 82.328952][ T5099] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 82.334890][ T5099] RIP: 0033:0x7f1ff1666269
[ 82.339337][ T5099] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 82.359013][ T5099] RSP: 002b:00007ffde99010f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 82.367466][ T5099] RAX: ffffffffffffffda RBX: 00007ffde9901120 RCX: 00007f1ff1666269
[ 82.375459][ T5099] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004
[pid 5099] ioctl(4, BTRFS_IOC_QUOTA_CTL, {cmd=BTRFS_QUOTA_CTL_ENABLE}) = -1 ENOMEM (Cannot allocate memory)
[pid 5099] exit_group(0) = ?
[pid 5099] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5099, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=22 /* 0.22 s */} ---
umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x5555572f66f0 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[ 82.383445][ T5099] RBP: 0000000000000001 R08: 00007ffde9900e97 R09: 00007ffde9901140
[ 82.391718][ T5099] R10: 0000000000000001 R11: 0000000000000246 R12: 00007ffde990111c
[ 82.400415][ T5099] R13: 0000000000000002 R14: 431bde82d7b634db R15: 00007ffde9901160
[ 82.408392][ T5099]
newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./2/binderfs") = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x5555572fe730 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555572fe730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./2/file0") = 0
getdents64(3, 0x5555572f66f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./2") = 0
mkdir("./3", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5116 attached
, child_tidptr=0x5555572f5650) = 5116
[pid 5116] set_robust_list(0x5555572f5660, 24) = 0
[pid 5116] chdir("./3") = 0
[pid 5116] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5116] setpgid(0, 0) = 0
[pid 5116] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5116] write(3, "1000", 4) = 4
[pid 5116] close(3) = 0
[pid 5116] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5116] memfd_create("syzkaller", 0) = 3
[pid 5116] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1fe9227000
[pid 5116] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5116] munmap(0x7f1fe9227000, 138412032) = 0
[pid 5116] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5116] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5116] close(3) = 0
[pid 5116] mkdir("./file0", 0777) = 0
[ 83.081978][ T5116] loop0: detected capacity change from 0 to 32768
[ 83.097211][ T5116] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor626 (5116)
[ 83.113442][ T5116] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 83.122224][ T5116] BTRFS info (device loop0): setting nodatacow, compression disabled
[pid 5116] mount("/dev/loop0", "./file0", "btrfs", MS_NODEV, "enospc_debug,nodatacow,subvolid=0x0000000000000005,nodatacow,") = 0
[pid 5116] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5116] chdir("./file0") = 0
[pid 5116] ioctl(4, LOOP_CLR_FD) = 0
[pid 5116] close(4) = 0
[pid 5116] openat(AT_FDCWD, "cpuacct.usage_percpu", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5116] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[ 83.130492][ T5116] BTRFS info (device loop0): using free space tree
[ 83.151916][ T5116] BTRFS info (device loop0): enabling ssd optimizations
[ 83.159064][ T5116] BTRFS info (device loop0): auto enabling async discard
[pid 5116] write(5, "7", 1) = 1
[ 83.213627][ T5116] FAULT_INJECTION: forcing a failure.
[ 83.213627][ T5116] name failslab, interval 1, probability 0, space 0, times 0
[ 83.226805][ T5116] CPU: 1 PID: 5116 Comm: syz-executor626 Not tainted 6.7.0-rc2-syzkaller-00095-gd3fa86b1a7b4 #0
[ 83.237265][ T5116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 83.247349][ T5116] Call Trace:
[ 83.250652][ T5116]
[ 83.253615][ T5116] dump_stack_lvl+0x125/0x1b0
[ 83.258425][ T5116] should_fail_ex+0x496/0x5b0
[ 83.263147][ T5116] should_failslab+0x9/0x20
[ 83.267776][ T5116] kmem_cache_alloc+0x61/0x360
[ 83.272586][ T5116] ? __kernel_text_address+0xd/0x30
[ 83.277854][ T5116] __kernfs_new_node+0xd3/0x890
[ 83.282741][ T5116] ? kernfs_path_from_node+0x60/0x60
[ 83.288061][ T5116] ? stack_trace_save+0x96/0xd0
[ 83.292939][ T5116] ? filter_irq_stacks+0x90/0x90
[ 83.297906][ T5116] ? __stack_depot_save+0x39/0x520
[ 83.303054][ T5116] kernfs_create_dir_ns+0x9a/0x210
[ 83.308199][ T5116] sysfs_create_dir_ns+0x13b/0x2b0
[ 83.313357][ T5116] ? sysfs_create_mount_point+0xb0/0xb0
[ 83.318946][ T5116] kobject_add_internal+0x2c8/0x970
[ 83.324183][ T5116] ? kfree+0x108/0x150
[ 83.328291][ T5116] kobject_init_and_add+0x11c/0x190
[ 83.333533][ T5116] ? kobject_create_and_add+0xf0/0xf0
[ 83.338946][ T5116] btrfs_sysfs_add_qgroups+0x15f/0x2a0
[ 83.344450][ T5116] btrfs_quota_enable+0x359/0x1ee0
[ 83.349602][ T5116] ? find_held_lock+0x2d/0x110
[ 83.354430][ T5116] ? btrfs_free_qgroup_config+0xe0/0xe0
[ 83.360025][ T5116] ? up_write+0x510/0x510
[ 83.364386][ T5116] ? lock_sync+0x190/0x190
[ 83.368852][ T5116] ? preempt_count_sub+0x160/0x160
[ 83.373998][ T5116] btrfs_ioctl+0x5022/0x61e0
[ 83.378626][ T5116] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 83.385081][ T5116] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 83.391016][ T5116] ? do_vfs_ioctl+0x379/0x1920
[ 83.395824][ T5116] ? vfs_fileattr_set+0xbf0/0xbf0
[ 83.400881][ T5116] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x460
[ 83.407507][ T5116] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x460
[ 83.414052][ T5116] ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 83.420072][ T5116] ? selinux_file_ioctl+0x17d/0x270
[ 83.425289][ T5116] ? selinux_file_ioctl+0xb5/0x270
[ 83.430399][ T5116] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 83.436812][ T5116] __x64_sys_ioctl+0x18f/0x210
[ 83.441588][ T5116] do_syscall_64+0x40/0x110
[ 83.446712][ T5116] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 83.452604][ T5116] RIP: 0033:0x7f1ff1666269
[ 83.457195][ T5116] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 83.476894][ T5116] RSP: 002b:00007ffde99010f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 83.485310][ T5116] RAX: ffffffffffffffda RBX: 00007ffde9901120 RCX: 00007f1ff1666269
[ 83.493367][ T5116] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004
[ 83.501788][ T5116] RBP: 0000000000000001 R08: 00007ffde9900e97 R09: 00007ffde9901140
[ 83.510311][ T5116] R10: 0000000000000001 R11: 0000000000000246 R12: 00007ffde990111c
[ 83.518619][ T5116] R13: 0000000000000003 R14: 431bde82d7b634db R15: 00007ffde9901160
[ 83.526803][ T5116]
[ 83.530838][ T5116] kobject: kobject_add_internal failed for qgroups (error: -12 parent: 395ef67a-297e-477c-816d-cd80a5b93e5d)
[ 83.543001][ T5116] ------------[ cut here ]------------
[ 83.548946][ T5116] kernfs: can not remove 'enabled', no directory
[ 83.555594][ T5116] WARNING: CPU: 1 PID: 5116 at fs/kernfs/dir.c:1662 kernfs_remove_by_name_ns+0x108/0x130
[ 83.565467][ T5116] Modules linked in:
[ 83.569446][ T5116] CPU: 1 PID: 5116 Comm: syz-executor626 Not tainted 6.7.0-rc2-syzkaller-00095-gd3fa86b1a7b4 #0
[ 83.579912][ T5116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 83.590066][ T5116] RIP: 0010:kernfs_remove_by_name_ns+0x108/0x130
[ 83.596466][ T5116] Code: ff e8 2c a3 71 ff bb fe ff ff ff 89 d8 5b 5d 41 5c 41 5d c3 e8 19 a3 71 ff 90 48 c7 c7 e0 39 e0 8a 4c 89 e6 e8 b9 c8 37 ff 90 <0f> 0b 90 90 eb d1 e8 6d 86 c7 ff e9 5c ff ff ff e8 63 86 c7 ff e9
[ 83.616357][ T5116] RSP: 0018:ffffc900033af920 EFLAGS: 00010286
[ 83.622424][ T5116] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff814ca799
[ 83.630468][ T5116] RDX: ffff888077462000 RSI: ffffffff814ca7a6 RDI: 0000000000000001
[ 83.638613][ T5116] RBP: ffffffff8d72f120 R08: 0000000000000001 R09: 0000000000000000
[ 83.646690][ T5116] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8b172ba0
[ 83.654721][ T5116] R13: 0000000000000000 R14: ffffffff8b172a80 R15: ffff8880706017b0
[ 83.662968][ T5116] FS: 00005555572f5380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 83.672130][ T5116] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 83.678763][ T5116] CR2: 000055b069d08000 CR3: 000000007bb72000 CR4: 00000000003506f0
[ 83.686899][ T5116] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 83.695053][ T5116] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 83.703087][ T5116] Call Trace:
[ 83.706449][ T5116]
[ 83.709389][ T5116] ? show_regs+0x8f/0xa0
[ 83.713742][ T5116] ? __warn+0xe6/0x390
[ 83.717884][ T5116] ? __wake_up_klogd.part.0+0x99/0xf0
[ 83.723300][ T5116] ? kernfs_remove_by_name_ns+0x108/0x130
[ 83.729078][ T5116] ? report_bug+0x3bc/0x580
[ 83.733600][ T5116] ? handle_bug+0x3d/0x70
[ 83.738013][ T5116] ? exc_invalid_op+0x17/0x40
[ 83.742748][ T5116] ? asm_exc_invalid_op+0x1a/0x20
[ 83.747841][ T5116] ? __warn_printk+0x199/0x350
[ 83.752648][ T5116] ? __warn_printk+0x1a6/0x350
[ 83.757927][ T5116] ? kernfs_remove_by_name_ns+0x108/0x130
[ 83.763689][ T5116] remove_files+0x96/0x1c0
[ 83.768299][ T5116] sysfs_remove_group+0x8b/0x180
[ 83.773373][ T5116] sysfs_remove_groups+0x60/0xa0
[ 83.778503][ T5116] __kobject_del+0x83/0x1e0
[ 83.783415][ T5116] kobject_del+0x3f/0x60
[ 83.787798][ T5116] btrfs_sysfs_del_qgroups+0x119/0x1a0
[ 83.793281][ T5116] btrfs_sysfs_add_qgroups+0x218/0x2a0
[ 83.798942][ T5116] btrfs_quota_enable+0x359/0x1ee0
[ 83.804197][ T5116] ? find_held_lock+0x2d/0x110
[ 83.809025][ T5116] ? btrfs_free_qgroup_config+0xe0/0xe0
[ 83.814605][ T5116] ? up_write+0x510/0x510
[ 83.818987][ T5116] ? lock_sync+0x190/0x190
[ 83.823432][ T5116] ? preempt_count_sub+0x160/0x160
[ 83.828612][ T5116] btrfs_ioctl+0x5022/0x61e0
[ 83.833236][ T5116] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 83.839811][ T5116] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 83.845778][ T5116] ? do_vfs_ioctl+0x379/0x1920
[ 83.850542][ T5116] ? vfs_fileattr_set+0xbf0/0xbf0
[ 83.855613][ T5116] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x460
[ 83.862286][ T5116] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x460
[ 83.868865][ T5116] ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 83.874868][ T5116] ? selinux_file_ioctl+0x17d/0x270
[ 83.880135][ T5116] ? selinux_file_ioctl+0xb5/0x270
[ 83.885266][ T5116] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 83.891796][ T5116] __x64_sys_ioctl+0x18f/0x210
[ 83.896636][ T5116] do_syscall_64+0x40/0x110
[ 83.901178][ T5116] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 83.907134][ T5116] RIP: 0033:0x7f1ff1666269
[ 83.911572][ T5116] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 83.931365][ T5116] RSP: 002b:00007ffde99010f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 83.939827][ T5116] RAX: ffffffffffffffda RBX: 00007ffde9901120 RCX: 00007f1ff1666269
[ 83.947955][ T5116] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004
[ 83.955976][ T5116] RBP: 0000000000000001 R08: 00007ffde9900e97 R09: 00007ffde9901140
[ 83.963939][ T5116] R10: 0000000000000001 R11: 0000000000000246 R12: 00007ffde990111c
[ 83.972094][ T5116] R13: 0000000000000003 R14: 431bde82d7b634db R15: 00007ffde9901160
[ 83.980106][ T5116]
[ 83.983117][ T5116] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 83.990382][ T5116] CPU: 1 PID: 5116 Comm: syz-executor626 Not tainted 6.7.0-rc2-syzkaller-00095-gd3fa86b1a7b4 #0
[ 84.000888][ T5116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 84.011044][ T5116] Call Trace:
[ 84.014321][ T5116]
[ 84.017254][ T5116] dump_stack_lvl+0xd9/0x1b0
[ 84.021837][ T5116] panic+0x6dc/0x790
[ 84.025765][ T5116] ? panic_smp_self_stop+0xa0/0xa0
[ 84.030865][ T5116] ? show_trace_log_lvl+0x363/0x4f0
[ 84.036064][ T5116] ? check_panic_on_warn+0x1f/0xb0
[ 84.041190][ T5116] ? kernfs_remove_by_name_ns+0x108/0x130
[ 84.046923][ T5116] check_panic_on_warn+0xab/0xb0
[ 84.051908][ T5116] __warn+0xf2/0x390
[ 84.056073][ T5116] ? __wake_up_klogd.part.0+0x99/0xf0
[ 84.061461][ T5116] ? kernfs_remove_by_name_ns+0x108/0x130
[ 84.067189][ T5116] report_bug+0x3bc/0x580
[ 84.071527][ T5116] handle_bug+0x3d/0x70
[ 84.075695][ T5116] exc_invalid_op+0x17/0x40
[ 84.080295][ T5116] asm_exc_invalid_op+0x1a/0x20
[ 84.085158][ T5116] RIP: 0010:kernfs_remove_by_name_ns+0x108/0x130
[ 84.091517][ T5116] Code: ff e8 2c a3 71 ff bb fe ff ff ff 89 d8 5b 5d 41 5c 41 5d c3 e8 19 a3 71 ff 90 48 c7 c7 e0 39 e0 8a 4c 89 e6 e8 b9 c8 37 ff 90 <0f> 0b 90 90 eb d1 e8 6d 86 c7 ff e9 5c ff ff ff e8 63 86 c7 ff e9
[ 84.111130][ T5116] RSP: 0018:ffffc900033af920 EFLAGS: 00010286
[ 84.117204][ T5116] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff814ca799
[ 84.125264][ T5116] RDX: ffff888077462000 RSI: ffffffff814ca7a6 RDI: 0000000000000001
[ 84.133240][ T5116] RBP: ffffffff8d72f120 R08: 0000000000000001 R09: 0000000000000000
[ 84.141222][ T5116] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8b172ba0
[ 84.149196][ T5116] R13: 0000000000000000 R14: ffffffff8b172a80 R15: ffff8880706017b0
[ 84.157174][ T5116] ? __warn_printk+0x199/0x350
[ 84.161948][ T5116] ? __warn_printk+0x1a6/0x350
[ 84.166722][ T5116] remove_files+0x96/0x1c0
[ 84.171156][ T5116] sysfs_remove_group+0x8b/0x180
[ 84.176107][ T5116] sysfs_remove_groups+0x60/0xa0
[ 84.181067][ T5116] __kobject_del+0x83/0x1e0
[ 84.185579][ T5116] kobject_del+0x3f/0x60
[ 84.189832][ T5116] btrfs_sysfs_del_qgroups+0x119/0x1a0
[ 84.195306][ T5116] btrfs_sysfs_add_qgroups+0x218/0x2a0
[ 84.200781][ T5116] btrfs_quota_enable+0x359/0x1ee0
[ 84.205906][ T5116] ? find_held_lock+0x2d/0x110
[ 84.210682][ T5116] ? btrfs_free_qgroup_config+0xe0/0xe0
[ 84.216244][ T5116] ? up_write+0x510/0x510
[ 84.220588][ T5116] ? lock_sync+0x190/0x190
[ 84.225019][ T5116] ? preempt_count_sub+0x160/0x160
[ 84.230137][ T5116] btrfs_ioctl+0x5022/0x61e0
[ 84.234744][ T5116] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 84.241166][ T5116] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 84.247076][ T5116] ? do_vfs_ioctl+0x379/0x1920
[ 84.251844][ T5116] ? vfs_fileattr_set+0xbf0/0xbf0
[ 84.256872][ T5116] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x460
[ 84.263380][ T5116] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x460
[ 84.269884][ T5116] ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 84.275881][ T5116] ? selinux_file_ioctl+0x17d/0x270
[ 84.281079][ T5116] ? selinux_file_ioctl+0xb5/0x270
[ 84.286194][ T5116] ? btrfs_ioctl_get_supported_features+0x40/0x40
[ 84.292634][ T5116] __x64_sys_ioctl+0x18f/0x210
[ 84.297405][ T5116] do_syscall_64+0x40/0x110
[ 84.301916][ T5116] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 84.307854][ T5116] RIP: 0033:0x7f1ff1666269
[ 84.312281][ T5116] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 84.331896][ T5116] RSP: 002b:00007ffde99010f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 84.340318][ T5116] RAX: ffffffffffffffda RBX: 00007ffde9901120 RCX: 00007f1ff1666269
[ 84.348477][ T5116] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004
[ 84.356448][ T5116] RBP: 0000000000000001 R08: 00007ffde9900e97 R09: 00007ffde9901140
[ 84.364512][ T5116] R10: 0000000000000001 R11: 0000000000000246 R12: 00007ffde990111c
[ 84.372484][ T5116] R13: 0000000000000003 R14: 431bde82d7b634db R15: 00007ffde9901160
[ 84.380466][ T5116]
[ 84.383735][ T5116] Kernel Offset: disabled
[ 84.388221][ T5116] Rebooting in 86400 seconds..