program: r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) syz_mount_image$btrfs(&(0x7f0000001500), &(0x7f0000005200)='./file0\x00', 0x0, &(0x7f0000005240), 0x1, 0x51aa, &(0x7f0000005280)="$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") r1 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4842, 0x1ff) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x6200, 0x0) ioctl$DVB_DEMUX_DMX_DQBUF(r1, 0xc0186f40, &(0x7f0000000000)={0x1, 0x0, 0xe, 0x3, 0x1e, 0x400}) sendfile(r1, r2, 0x0, 0x20fffe82) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff) ioctl$BTRFS_IOC_BALANCE_V2(r3, 0xc4009420, &(0x7f0000000780)={0x2, 0x7, {0x3ff, @struct={0xe, 0x3ff}, 0x0, 0x1, 0x7, 0x9, 0x5, 0x6bd, 0x31, @usage=0x800, 0x6400, 0xb83c, [0xfffffffffffffd30, 0x20008b0b, 0x4, 0x7, 0x6, 0x40]}, {0x7fff, @struct={0xffff406f, 0x9}, 0x0, 0x5, 0xffffffff, 0xcc, 0x6, 0x1ffffffffffffffe, 0x20, @usage=0x4, 0x9, 0x670, [0x4, 0x0, 0xd, 0x1d52b6d3, 0x81, 0x400009]}, {0x3, @struct={0x100, 0x4}, 0x0, 0x62c, 0x7, 0x8, 0x8, 0x8, 0x308, @usage=0x6, 0x5, 0x3, [0xffffffffffffffd1, 0x6, 0x1000000000000007, 0xe6, 0x9, 0xffffffffffffffff]}, {0x2, 0x9, 0x3}}) [ 85.910574][ T5320] loop0: detected capacity change from 0 to 32768 [ 85.917890][ T4649] Bluetooth: hci0: command tx timeout [ 85.963244][ T5320] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.0 (5320) [ 85.979710][ T5320] BTRFS info (device loop0): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 85.984003][ T5320] BTRFS info (device loop0): using xxhash64 checksum algorithm [ 86.057091][ T5320] BTRFS info (device loop0): enabling ssd optimizations [ 86.060523][ T5320] BTRFS info (device loop0): turning on async discard [ 86.107799][ T5320] BTRFS info (device loop0): enabling free space tree [ 86.151733][ T24] audit: type=1800 audit(1781969742.076:2): pid=5320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=260 res=0 errno=0 [ 86.216711][ T24] audit: type=1800 audit(1781969742.136:3): pid=5321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=260 res=0 errno=0 [ 86.250847][ T5321] BTRFS info (device loop0): balance: start -sconvert=raid0,soft,drange=1580..7 [ 86.270393][ T5321] BTRFS info (device loop0): balance: ended with status: 0 [ 86.283953][ T178] ------------[ cut here ]------------ [ 86.286063][ T178] btrfs_abort_should_print_stack(__error) [ 86.286073][ T178] WARNING: fs/btrfs/block-group.c:4203 at btrfs_chunk_alloc+0x10cc/0x1330, CPU#0: kworker/u4:6/178 [ 86.295275][ T178] Modules linked in: [ 86.297405][ T178] CPU: 0 UID: 0 PID: 178 Comm: kworker/u4:6 Not tainted syzkaller #0 PREEMPT(full) [ 86.301968][ T178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 86.307130][ T178] Workqueue: events_unbound btrfs_async_reclaim_data_space [ 86.310413][ T178] RIP: 0010:btrfs_chunk_alloc+0x10cc/0x1330 [ 86.313408][ T178] Code: 07 38 c1 0f 8c e9 ef ff ff 48 89 df e8 7d 0e 17 fe e9 dc ef ff ff e8 e3 f6 a7 fd eb 10 e8 dc f6 a7 fd eb 09 e8 d5 f6 a7 fd 90 <0f> 0b 90 44 89 f1 f7 d9 e9 38 fd ff ff 48 8b 4c 24 08 48 83 c1 5b [ 86.323722][ T178] RSP: 0018:ffffc900018077d8 EFLAGS: 00010293 [ 86.326303][ T178] RAX: ffffffff841e4e2b RBX: 1ffff11009d26116 RCX: ffff888032d7a540 [ 86.329952][ T178] RDX: 0000000000000000 RSI: ffffffff8efbc1a0 RDI: 00000000ffffffe4 [ 86.333461][ T178] RBP: ffff88804c3cc001 R08: ffff888032d7a540 R09: 0000000000000003 [ 86.336875][ T178] R10: 00000000fffffffb R11: 0000000000000000 R12: 1ffff11009d26116 [ 86.341404][ T178] R13: 00000000ffffffe4 R14: ffffffffffffffe4 R15: ffff88804ea06180 [ 86.345542][ T178] FS: 0000000000000000(0000) GS:ffff88808c848000(0000) knlGS:0000000000000000 [ 86.349569][ T178] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.352396][ T178] CR2: 000055737cb5c5f8 CR3: 0000000023e71000 CR4: 0000000000352ef0 [ 86.356498][ T178] Call Trace: [ 86.358457][ T178] [ 86.359858][ T178] flush_space+0x3df/0xde0 [ 86.361849][ T178] ? rcu_is_watching+0x15/0xb0 [ 86.364012][ T178] ? trace_hrtimer_start+0x82/0x200 [ 86.366650][ T178] ? __pfx_flush_space+0x10/0x10 [ 86.369441][ T178] ? rcu_is_watching+0x15/0xb0 [ 86.371768][ T178] ? do_raw_spin_unlock+0x4d/0x210 [ 86.374018][ T178] do_async_reclaim_data_space+0x137/0x550 [ 86.376585][ T178] btrfs_async_reclaim_data_space+0x41/0x90 [ 86.379176][ T178] ? process_scheduled_works+0xa20/0x14e0 [ 86.382195][ T178] process_scheduled_works+0xa8e/0x14e0 [ 86.385214][ T178] ? __pfx_process_scheduled_works+0x10/0x10 [ 86.388293][ T178] ? do_raw_spin_lock+0x12b/0x2f0 [ 86.390864][ T178] ? assign_work+0x3cf/0x5d0 [ 86.393228][ T178] worker_thread+0xa47/0xfb0 [ 86.395676][ T178] ? __kthread_parkme+0x71/0x1f0 [ 86.398204][ T178] kthread+0x388/0x470 [ 86.400053][ T178] ? __pfx_worker_thread+0x10/0x10 [ 86.402179][ T178] ? __pfx_kthread+0x10/0x10 [ 86.404120][ T178] ret_from_fork+0x514/0xb70 [ 86.406145][ T178] ? __pfx_ret_from_fork+0x10/0x10 [ 86.408347][ T178] ? __switch_to+0xc89/0x1420 [ 86.413837][ T178] ? __pfx_kthread+0x10/0x10 [ 86.415989][ T178] ret_from_fork_asm+0x1a/0x30 [ 86.418362][ T178] [ 86.419749][ T178] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 86.422942][ T178] CPU: 0 UID: 0 PID: 178 Comm: kworker/u4:6 Not tainted syzkaller #0 PREEMPT(full) [ 86.427348][ T178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 86.431482][ T178] Workqueue: events_unbound btrfs_async_reclaim_data_space [ 86.434599][ T178] Call Trace: [ 86.436079][ T178] [ 86.437364][ T178] vpanic+0x56c/0xa60 [ 86.439185][ T178] ? __pfx__printk+0x10/0x10 [ 86.441451][ T178] ? __pfx_vpanic+0x10/0x10 [ 86.443412][ T178] ? is_bpf_text_address+0x292/0x2b0 [ 86.445550][ T178] ? is_bpf_text_address+0x26/0x2b0 [ 86.447440][ T178] panic+0xc5/0xd0 [ 86.448882][ T178] ? __pfx_panic+0x10/0x10 [ 86.451009][ T178] ? ret_from_fork_asm+0x1a/0x30 [ 86.453601][ T178] __warn+0x315/0x4c0 [ 86.455658][ T178] ? btrfs_chunk_alloc+0x10cc/0x1330 [ 86.458063][ T178] ? btrfs_chunk_alloc+0x10cc/0x1330 [ 86.460366][ T178] __report_bug+0x331/0x530 [ 86.462323][ T178] ? btrfs_create_chunk+0x25b8/0x3060 [ 86.464518][ T178] ? btrfs_chunk_alloc+0x10cc/0x1330 [ 86.467096][ T178] ? __pfx___report_bug+0x10/0x10 [ 86.469720][ T178] ? btrfs_chunk_alloc+0x10cc/0x1330 [ 86.472237][ T178] report_bug+0x16a/0x220 [ 86.474162][ T178] ? btrfs_chunk_alloc+0x10cc/0x1330 [ 86.476372][ T178] ? btrfs_chunk_alloc+0x10ce/0x1330 [ 86.478730][ T178] handle_bug+0x9c/0x200 [ 86.480707][ T178] exc_invalid_op+0x1a/0x50 [ 86.483086][ T178] asm_exc_invalid_op+0x1a/0x20 [ 86.485743][ T178] RIP: 0010:btrfs_chunk_alloc+0x10cc/0x1330 [ 86.488531][ T178] Code: 07 38 c1 0f 8c e9 ef ff ff 48 89 df e8 7d 0e 17 fe e9 dc ef ff ff e8 e3 f6 a7 fd eb 10 e8 dc f6 a7 fd eb 09 e8 d5 f6 a7 fd 90 <0f> 0b 90 44 89 f1 f7 d9 e9 38 fd ff ff 48 8b 4c 24 08 48 83 c1 5b [ 86.497143][ T178] RSP: 0018:ffffc900018077d8 EFLAGS: 00010293 [ 86.500281][ T178] RAX: ffffffff841e4e2b RBX: 1ffff11009d26116 RCX: ffff888032d7a540 [ 86.503628][ T178] RDX: 0000000000000000 RSI: ffffffff8efbc1a0 RDI: 00000000ffffffe4 [ 86.507140][ T178] RBP: ffff88804c3cc001 R08: ffff888032d7a540 R09: 0000000000000003 [ 86.511085][ T178] R10: 00000000fffffffb R11: 0000000000000000 R12: 1ffff11009d26116 [ 86.514903][ T178] R13: 00000000ffffffe4 R14: ffffffffffffffe4 R15: ffff88804ea06180 [ 86.518224][ T178] ? btrfs_chunk_alloc+0x10cb/0x1330 [ 86.520532][ T178] ? btrfs_chunk_alloc+0x10cb/0x1330 [ 86.523145][ T178] flush_space+0x3df/0xde0 [ 86.525457][ T178] ? rcu_is_watching+0x15/0xb0 [ 86.527663][ T178] ? trace_hrtimer_start+0x82/0x200 [ 86.529859][ T178] ? __pfx_flush_space+0x10/0x10 [ 86.531925][ T178] ? rcu_is_watching+0x15/0xb0 [ 86.534120][ T178] ? do_raw_spin_unlock+0x4d/0x210 [ 86.536709][ T178] do_async_reclaim_data_space+0x137/0x550 [ 86.539721][ T178] btrfs_async_reclaim_data_space+0x41/0x90 [ 86.542373][ T178] ? process_scheduled_works+0xa20/0x14e0 [ 86.544900][ T178] process_scheduled_works+0xa8e/0x14e0 [ 86.547368][ T178] ? __pfx_process_scheduled_works+0x10/0x10 [ 86.550269][ T178] ? do_raw_spin_lock+0x12b/0x2f0 [ 86.552695][ T178] ? assign_work+0x3cf/0x5d0 [ 86.554809][ T178] worker_thread+0xa47/0xfb0 [ 86.556930][ T178] ? __kthread_parkme+0x71/0x1f0 [ 86.559265][ T178] kthread+0x388/0x470 [ 86.561170][ T178] ? __pfx_worker_thread+0x10/0x10 [ 86.563483][ T178] ? __pfx_kthread+0x10/0x10 [ 86.565616][ T178] ret_from_fork+0x514/0xb70 [ 86.567860][ T178] ? __pfx_ret_from_fork+0x10/0x10 [ 86.570258][ T178] ? __switch_to+0xc89/0x1420 [ 86.572447][ T178] ? __pfx_kthread+0x10/0x10 [ 86.574724][ T178] ret_from_fork_asm+0x1a/0x30 [ 86.577045][ T178] [ 86.578920][ T178] Kernel Offset: disabled [ 86.580893][ T178] Rebooting in 86400 seconds..