./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2842030297

<...>
forked to background, child pid 5498
no interfaces have a carrier
[   35.864379][ T5499] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.876527][ T5499] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.99' (ED25519) to the list of known hosts.
execve("./syz-executor2842030297", ["./syz-executor2842030297"], 0x7fff905943e0 /* 10 vars */) = 0
brk(NULL)                               = 0x555570aa6000
brk(0x555570aa6d40)                     = 0x555570aa6d40
arch_prctl(ARCH_SET_FS, 0x555570aa63c0) = 0
set_tid_address(0x555570aa6690)         = 5829
set_robust_list(0x555570aa66a0, 24)     = 0
rseq(0x555570aa6ce0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2842030297", 4096) = 28
getrandom("\x1b\x3c\xe2\x4c\x0b\xc6\x91\x2b", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555570aa6d40
brk(0x555570ac7d40)                     = 0x555570ac7d40
brk(0x555570ac8000)                     = 0x555570ac8000
mprotect(0x7fa142877000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("./syzkaller.c7yYjM", 0700)       = 0
chmod("./syzkaller.c7yYjM", 0777)       = 0
chdir("./syzkaller.c7yYjM")             = 0
mkdir("./0", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5831 attached
, child_tidptr=0x555570aa6690) = 5831
[pid  5831] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5831] chdir("./0")                = 0
[pid  5831] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5831] setpgid(0, 0)               = 0
[pid  5831] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5831] write(3, "1000", 4)         = 4
[pid  5831] close(3)                    = 0
[pid  5831] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5831] write(1, "executing program\n", 18) = 18
[pid  5831] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5831] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5831] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5831] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5831] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5831] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5831] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5832 attached
 <unfinished ...>
[pid  5832] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5831] <... clone3 resumed> => {parent_tid=[5832]}, 88) = 5832
[pid  5832] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5831] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5832] <... set_robust_list resumed>) = 0
[pid  5831] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5832] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5831] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5832] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5832] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5831] <... futex resumed>)        = 0
[pid  5831] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5832] <... memfd_create resumed>) = 3
[pid  5832] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5832] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5832] munmap(0x7fa13a200000, 138412032) = 0
[pid  5832] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5832] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5832] close(3)                    = 0
[pid  5832] close(4)                    = 0
[pid  5832] mkdir("./file1", 0777)      = 0
syzkaller login: [   61.985314][ T5832] loop0: detected capacity change from 0 to 32768
[   62.059221][ T5832] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   62.078815][ T5832] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   62.087573][ T5832] bcachefs (loop0): Version upgrade required:
[   62.087573][ T5832] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   62.087573][ T5832] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   62.087573][ T5832]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   62.171554][ T5832] bcachefs (loop0): check_topology... done
[   62.177543][ T5832] bcachefs (loop0): accounting_read... done
[   62.184519][ T5832] bcachefs (loop0): alloc_read... done
[   62.190270][ T5832] bcachefs (loop0): stripes_read... done
[   62.196140][ T5832] bcachefs (loop0): snapshots_read... done
[   62.202254][ T5832] bcachefs (loop0): check_allocations...
[   62.205389][ T5832] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   62.205407][ T5832] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   62.237405][ T5832] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   62.237419][ T5832] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   62.261887][ T5832] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   62.261900][ T5832] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   62.286517][ T5832] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   62.286530][ T5832] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   62.312200][ T5832] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   62.312213][ T5832] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   62.336157][ T5832] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.344548][ T5832] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   62.355367][ T5832] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.363772][ T5832] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   62.373646][ T5832] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.382078][ T5832] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   62.391917][ T5832] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.400364][ T5832] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   62.410321][ T5832] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.418692][ T5832] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   62.428484][ T5832] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.436849][ T5832] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   62.446653][ T5832] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.455007][ T5832] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   62.464680][ T5832] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   62.473051][ T5832] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   62.482654][ T5832] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   62.491457][ T5832] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   62.501655][ T5832] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   62.510589][ T5832] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   62.520865][ T5832] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   62.529705][ T5832] bcachefs (loop0): Ratelimiting new instances of previous error
[   62.537726][ T5832] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   62.548020][ T5832] bcachefs (loop0): Ratelimiting new instances of previous error
[   62.561385][ T5832]  done
[   62.565892][ T5832] bcachefs (loop0): going read-write
[pid  5832] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5832] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5832] chdir("./file1")            = 0
[pid  5832] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5832] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5832] close(4)                    = 0
[   62.576176][ T5832] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   62.588312][ T5832] bcachefs (loop0): done starting filesystem
[pid  5832] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5831] <... futex resumed>)        = 0
[pid  5831] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5831] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5832] truncate("./file2", 7326)   = 0
[pid  5832] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5831] <... futex resumed>)        = 0
[pid  5832] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5831] exit_group(0)               = ?
[pid  5832] <... futex resumed>)        = ?
[pid  5832] +++ exited with 0 +++
[pid  5831] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5831, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=58 /* 0.58 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./0/binderfs")                  = 0
[   62.677634][ T5832] syz-executor284 (5832) used greatest stack depth: 15248 bytes left
[   62.699230][ T5829] bcachefs (loop0): shutting down
[   62.704454][ T5829] bcachefs (loop0): going read-only
[   62.710030][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   62.721160][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   62.745960][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 18
[   62.757455][ T5829] bcachefs (loop0): unshutdown complete, journal seq 19
[   62.765447][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   62.784535][ T5829] bcachefs (loop0): shutdown complete
umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./0/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./0")                            = 0
mkdir("./1", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5844 attached
 <unfinished ...>
[pid  5844] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5844] chdir("./1" <unfinished ...>
[pid  5829] <... clone resumed>, child_tidptr=0x555570aa6690) = 5844
[pid  5844] <... chdir resumed>)        = 0
[pid  5844] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5844] setpgid(0, 0)               = 0
[pid  5844] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5844] write(3, "1000", 4)         = 4
[pid  5844] close(3)                    = 0
[pid  5844] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5844] write(1, "executing program\n", 18) = 18
[pid  5844] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5844] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5844] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5844] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5844] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5844] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5844] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5845 attached
 <unfinished ...>
[pid  5845] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5845] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5844] <... clone3 resumed> => {parent_tid=[5845]}, 88) = 5845
[pid  5845] <... set_robust_list resumed>) = 0
[pid  5844] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5845] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5844] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5845] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5844] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5845] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5844] <... futex resumed>)        = 0
[pid  5845] <... memfd_create resumed>) = 3
[pid  5844] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5845] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5845] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5845] munmap(0x7fa13a200000, 138412032) = 0
[pid  5845] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5845] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5845] close(3)                    = 0
[pid  5845] close(4)                    = 0
[pid  5845] mkdir("./file1", 0777)      = 0
[   64.147209][ T5845] loop0: detected capacity change from 0 to 32768
[   64.214375][ T5845] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   64.233517][ T5845] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   64.241901][ T5845] bcachefs (loop0): Version upgrade required:
[   64.241901][ T5845] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   64.241901][ T5845] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   64.241901][ T5845]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   64.322954][ T5845] bcachefs (loop0): check_topology... done
[   64.328980][ T5845] bcachefs (loop0): accounting_read... done
[   64.335604][ T5845] bcachefs (loop0): alloc_read... done
[   64.341177][ T5845] bcachefs (loop0): stripes_read... done
[   64.346918][ T5845] bcachefs (loop0): snapshots_read... done
[   64.352849][ T5845] bcachefs (loop0): check_allocations...
[   64.354405][ T5845] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   64.354417][ T5845] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   64.384997][ T5845] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   64.385011][ T5845] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   64.409320][ T5845] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   64.409332][ T5845] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   64.434560][ T5845] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   64.434574][ T5845] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   64.459921][ T5845] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   64.459935][ T5845] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   64.483554][ T5845] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.491963][ T5845] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   64.501837][ T5845] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.510230][ T5845] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   64.520036][ T5845] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.528816][ T5845] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   64.538654][ T5845] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.547065][ T5845] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   64.556964][ T5845] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.565333][ T5845] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   64.575159][ T5845] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.583452][ T5845] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   64.593339][ T5845] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.601718][ T5845] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   64.611899][ T5845] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   64.620352][ T5845] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   64.630118][ T5845] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   64.638960][ T5845] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   64.649150][ T5845] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   64.658067][ T5845] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   64.668897][ T5845] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   64.677772][ T5845] bcachefs (loop0): Ratelimiting new instances of previous error
[   64.685596][ T5845] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   64.695780][ T5845] bcachefs (loop0): Ratelimiting new instances of previous error
[   64.708437][ T5845]  done
[   64.712509][ T5845] bcachefs (loop0): going read-write
[pid  5845] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5845] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5845] chdir("./file1")            = 0
[pid  5845] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5845] ioctl(4, LOOP_CLR_FD)       = 0
[   64.721619][ T5845] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   64.733267][ T5845] bcachefs (loop0): done starting filesystem
[pid  5845] close(4)                    = 0
[pid  5845] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5844] <... futex resumed>)        = 0
[pid  5844] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5845] truncate("./file2", 7326 <unfinished ...>
[pid  5844] <... futex resumed>)        = 0
[pid  5844] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5845] <... truncate resumed>)     = 0
[pid  5845] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5844] <... futex resumed>)        = 0
[pid  5845] <... futex resumed>)        = 1
[pid  5844] exit_group(0)               = ?
[pid  5845] +++ exited with 0 +++
[pid  5844] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5844, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=54 /* 0.54 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./1/binderfs")                  = 0
[   64.937122][ T5829] bcachefs (loop0): shutting down
[   64.942186][ T5829] bcachefs (loop0): going read-only
[   64.947633][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   64.955637][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   64.977147][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 16
[   64.988341][ T5829] bcachefs (loop0): unshutdown complete, journal seq 17
[   64.996143][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   65.012825][ T5829] bcachefs (loop0): shutdown complete
umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./1/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./1")                            = 0
mkdir("./2", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5856 attached
, child_tidptr=0x555570aa6690) = 5856
[pid  5856] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5856] chdir("./2")                = 0
[pid  5856] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5856] setpgid(0, 0)               = 0
[pid  5856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5856] write(3, "1000", 4)         = 4
[pid  5856] close(3)                    = 0
[pid  5856] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5856] write(1, "executing program\n", 18) = 18
[pid  5856] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5856] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5856] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5856] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5856] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5856] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5856] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5857 attached
 <unfinished ...>
[pid  5857] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5856] <... clone3 resumed> => {parent_tid=[5857]}, 88) = 5857
[pid  5857] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5856] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5857] <... set_robust_list resumed>) = 0
[pid  5856] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5857] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5856] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5857] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5856] <... futex resumed>)        = 0
[pid  5857] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5856] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5857] <... memfd_create resumed>) = 3
[pid  5857] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5857] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5857] munmap(0x7fa13a200000, 138412032) = 0
[pid  5857] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5857] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5857] close(3)                    = 0
[pid  5857] close(4)                    = 0
[pid  5857] mkdir("./file1", 0777)      = 0
[   66.412469][ T5857] loop0: detected capacity change from 0 to 32768
[   66.487592][ T5857] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   66.506383][ T5857] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   66.514424][ T5857] bcachefs (loop0): Version upgrade required:
[   66.514424][ T5857] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   66.514424][ T5857] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   66.514424][ T5857]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   66.594279][ T5857] bcachefs (loop0): check_topology... done
[   66.600440][ T5857] bcachefs (loop0): accounting_read... done
[   66.606599][ T5857] bcachefs (loop0): alloc_read... done
[   66.612434][ T5857] bcachefs (loop0): stripes_read... done
[   66.618280][ T5857] bcachefs (loop0): snapshots_read... done
[   66.624224][ T5857] bcachefs (loop0): check_allocations...
[   66.626589][ T5857] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   66.626602][ T5857] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   66.656848][ T5857] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   66.656862][ T5857] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   66.681162][ T5857] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   66.681175][ T5857] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   66.705601][ T5857] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   66.705614][ T5857] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   66.731042][ T5857] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   66.731055][ T5857] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   66.755047][ T5857] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.763410][ T5857] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   66.773441][ T5857] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.781781][ T5857] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   66.791611][ T5857] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.799959][ T5857] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   66.809902][ T5857] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.818252][ T5857] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   66.827980][ T5857] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.836324][ T5857] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   66.846055][ T5857] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.854332][ T5857] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   66.864157][ T5857] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.872677][ T5857] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   66.882602][ T5857] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   66.890954][ T5857] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   66.900561][ T5857] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   66.909342][ T5857] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   66.919655][ T5857] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   66.928552][ T5857] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   66.938891][ T5857] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   66.947762][ T5857] bcachefs (loop0): Ratelimiting new instances of previous error
[   66.955638][ T5857] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   66.966120][ T5857] bcachefs (loop0): Ratelimiting new instances of previous error
[   66.978287][ T5857]  done
[   66.982281][ T5857] bcachefs (loop0): going read-write
[pid  5857] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5857] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5857] chdir("./file1")            = 0
[pid  5857] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5857] ioctl(4, LOOP_CLR_FD)       = 0
[   66.990816][ T5857] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   67.003550][ T5857] bcachefs (loop0): done starting filesystem
[pid  5857] close(4)                    = 0
[pid  5857] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5857] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5856] <... futex resumed>)        = 0
[pid  5856] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5857] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5856] <... futex resumed>)        = 0
[pid  5857] truncate("./file2", 7326 <unfinished ...>
[pid  5856] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5857] <... truncate resumed>)     = 0
[pid  5857] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5856] <... futex resumed>)        = 0
[pid  5856] exit_group(0)               = ?
[pid  5857] +++ exited with 0 +++
[pid  5856] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5856, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=56 /* 0.56 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./2/binderfs")                  = 0
[   67.147903][ T5829] bcachefs (loop0): shutting down
[   67.152949][ T5829] bcachefs (loop0): going read-only
[   67.158375][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   67.166830][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   67.188569][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 17
[   67.199441][ T5829] bcachefs (loop0): unshutdown complete, journal seq 18
[   67.207046][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   67.223037][ T5829] bcachefs (loop0): shutdown complete
umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./2/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./2")                            = 0
mkdir("./3", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5868 attached
 <unfinished ...>
[pid  5868] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5829] <... clone resumed>, child_tidptr=0x555570aa6690) = 5868
[pid  5868] chdir("./3")                = 0
[pid  5868] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5868] setpgid(0, 0)               = 0
[pid  5868] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5868] write(3, "1000", 4)         = 4
[pid  5868] close(3)                    = 0
[pid  5868] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5868] write(1, "executing program\n", 18) = 18
[pid  5868] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5868] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5868] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5868] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5868] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5868] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5868] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5869 attached
 <unfinished ...>
[pid  5869] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5868] <... clone3 resumed> => {parent_tid=[5869]}, 88) = 5869
[pid  5869] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5868] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5869] <... set_robust_list resumed>) = 0
[pid  5868] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5869] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5868] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5869] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5868] <... futex resumed>)        = 0
[pid  5868] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5869] <... memfd_create resumed>) = 3
[pid  5869] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5869] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5869] munmap(0x7fa13a200000, 138412032) = 0
[pid  5869] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5869] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5869] close(3)                    = 0
[pid  5869] close(4)                    = 0
[pid  5869] mkdir("./file1", 0777)      = 0
[   68.583998][ T5869] loop0: detected capacity change from 0 to 32768
[   68.653743][ T5869] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   68.673147][ T5869] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   68.681620][ T5869] bcachefs (loop0): Version upgrade required:
[   68.681620][ T5869] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   68.681620][ T5869] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   68.681620][ T5869]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   68.761581][ T5869] bcachefs (loop0): check_topology... done
[   68.767638][ T5869] bcachefs (loop0): accounting_read... done
[   68.773882][ T5869] bcachefs (loop0): alloc_read... done
[   68.779812][ T5869] bcachefs (loop0): stripes_read... done
[   68.785922][ T5869] bcachefs (loop0): snapshots_read... done
[   68.791932][ T5869] bcachefs (loop0): check_allocations...
[   68.793569][ T5869] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   68.793581][ T5869] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   68.823911][ T5869] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   68.823924][ T5869] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   68.848188][ T5869] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   68.848202][ T5869] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   68.872670][ T5869] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   68.872683][ T5869] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   68.898147][ T5869] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   68.898160][ T5869] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   68.922143][ T5869] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   68.930545][ T5869] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   68.940400][ T5869] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   68.948773][ T5869] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   68.958579][ T5869] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   68.966943][ T5869] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   68.976743][ T5869] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   68.985144][ T5869] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   68.994936][ T5869] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   69.003234][ T5869] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   69.013037][ T5869] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   69.021394][ T5869] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   69.031232][ T5869] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   69.039693][ T5869] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   69.049636][ T5869] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   69.058031][ T5869] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   69.068040][ T5869] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   69.076855][ T5869] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   69.087030][ T5869] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   69.095938][ T5869] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   69.106192][ T5869] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   69.115033][ T5869] bcachefs (loop0): Ratelimiting new instances of previous error
[   69.122843][ T5869] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   69.132961][ T5869] bcachefs (loop0): Ratelimiting new instances of previous error
[   69.145271][ T5869]  done
[   69.149242][ T5869] bcachefs (loop0): going read-write
[pid  5869] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5869] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5869] chdir("./file1")            = 0
[pid  5869] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5869] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5869] close(4)                    = 0
[pid  5869] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5868] <... futex resumed>)        = 0
[pid  5869] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[   69.159262][ T5869] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   69.170711][ T5869] bcachefs (loop0): done starting filesystem
[pid  5868] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5869] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5868] <... futex resumed>)        = 0
[pid  5869] truncate("./file2", 7326 <unfinished ...>
[pid  5868] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5869] <... truncate resumed>)     = 0
[pid  5869] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5868] <... futex resumed>)        = 0
[pid  5868] exit_group(0)               = ?
[pid  5869] <... futex resumed>)        = ?
[pid  5869] +++ exited with 0 +++
[pid  5868] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5868, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=57 /* 0.57 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./3/binderfs")                  = 0
[   69.395294][ T5829] bcachefs (loop0): shutting down
[   69.400403][ T5829] bcachefs (loop0): going read-only
[   69.405911][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   69.413716][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   69.434273][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 16
[   69.445329][ T5829] bcachefs (loop0): unshutdown complete, journal seq 17
[   69.452793][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   69.469309][ T5829] bcachefs (loop0): shutdown complete
umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./3/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./3")                            = 0
mkdir("./4", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5880 attached
 <unfinished ...>
[pid  5880] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5880] chdir("./4")                = 0
[pid  5880] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5880] setpgid(0, 0)               = 0
[pid  5880] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5880] write(3, "1000", 4 <unfinished ...>
[pid  5829] <... clone resumed>, child_tidptr=0x555570aa6690) = 5880
[pid  5880] <... write resumed>)        = 4
[pid  5880] close(3)                    = 0
[pid  5880] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5880] write(1, "executing program\n", 18executing program
) = 18
[pid  5880] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5880] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5880] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5880] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5880] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5880] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5880] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5881 attached
 <unfinished ...>
[pid  5881] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5881] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5880] <... clone3 resumed> => {parent_tid=[5881]}, 88) = 5881
[pid  5881] <... set_robust_list resumed>) = 0
[pid  5880] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5881] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5880] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5881] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5880] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5880] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5881] memfd_create("syzkaller", 0) = 3
[pid  5881] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5881] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5881] munmap(0x7fa13a200000, 138412032) = 0
[pid  5881] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5881] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5881] close(3)                    = 0
[pid  5881] close(4)                    = 0
[pid  5881] mkdir("./file1", 0777)      = 0
[   70.972666][ T5881] loop0: detected capacity change from 0 to 32768
[   71.041363][ T5881] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   71.061403][ T5881] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   71.069546][ T5881] bcachefs (loop0): Version upgrade required:
[   71.069546][ T5881] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   71.069546][ T5881] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   71.069546][ T5881]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   71.150040][ T5881] bcachefs (loop0): check_topology... done
[   71.155972][ T5881] bcachefs (loop0): accounting_read... done
[   71.162292][ T5881] bcachefs (loop0): alloc_read... done
[   71.167970][ T5881] bcachefs (loop0): stripes_read... done
[   71.173691][ T5881] bcachefs (loop0): snapshots_read... done
[   71.179812][ T5881] bcachefs (loop0): check_allocations...
[   71.181529][ T5881] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   71.181542][ T5881] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   71.212123][ T5881] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   71.212136][ T5881] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   71.236852][ T5881] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   71.236866][ T5881] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   71.261330][ T5881] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   71.261343][ T5881] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   71.286821][ T5881] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   71.286835][ T5881] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   71.311056][ T5881] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.319569][ T5881] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   71.329615][ T5881] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.338052][ T5881] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   71.347883][ T5881] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.356252][ T5881] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   71.366022][ T5881] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.374311][ T5881] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   71.384166][ T5881] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.392603][ T5881] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   71.402544][ T5881] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.411031][ T5881] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   71.420854][ T5881] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.429232][ T5881] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   71.438984][ T5881] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   71.447366][ T5881] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   71.456974][ T5881] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   71.465783][ T5881] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   71.475986][ T5881] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   71.484894][ T5881] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   71.495178][ T5881] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   71.504023][ T5881] bcachefs (loop0): Ratelimiting new instances of previous error
[   71.511889][ T5881] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   71.522017][ T5881] bcachefs (loop0): Ratelimiting new instances of previous error
[   71.534593][ T5881]  done
[   71.538924][ T5881] bcachefs (loop0): going read-write
[pid  5881] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5881] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5881] chdir("./file1")            = 0
[pid  5881] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[   71.548169][ T5881] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   71.559598][ T5881] bcachefs (loop0): done starting filesystem
[pid  5881] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5881] close(4)                    = 0
[pid  5881] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5880] <... futex resumed>)        = 0
[pid  5881] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5880] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5881] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5880] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5881] truncate("./file2", 7326)   = 0
[pid  5881] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5880] <... futex resumed>)        = 0
[pid  5880] exit_group(0 <unfinished ...>
[pid  5881] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL) = ?
[pid  5880] <... exit_group resumed>)   = ?
[pid  5881] +++ exited with 0 +++
[pid  5880] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5880, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=57 /* 0.57 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./4/binderfs")                  = 0
[   71.681713][ T5829] bcachefs (loop0): shutting down
[   71.686975][ T5829] bcachefs (loop0): going read-only
[   71.692194][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   71.699836][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   71.722604][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 18
[   71.733533][ T5829] bcachefs (loop0): unshutdown complete, journal seq 19
[   71.741275][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   71.758307][ T5829] bcachefs (loop0): shutdown complete
umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./4/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./4")                            = 0
mkdir("./5", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5894 attached
, child_tidptr=0x555570aa6690) = 5894
[pid  5894] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5894] chdir("./5")                = 0
[pid  5894] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5894] setpgid(0, 0)               = 0
[pid  5894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5894] write(3, "1000", 4)         = 4
[pid  5894] close(3)                    = 0
[pid  5894] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5894] write(1, "executing program\n", 18) = 18
[pid  5894] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5894] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5894] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5894] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5894] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5894] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5894] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5895 attached
 <unfinished ...>
[pid  5895] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5894] <... clone3 resumed> => {parent_tid=[5895]}, 88) = 5895
[pid  5895] set_robust_list(0x7fa1427a69a0, 24) = 0
[pid  5895] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5895] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5894] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5894] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5895] <... futex resumed>)        = 0
[pid  5895] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5894] <... futex resumed>)        = 1
[pid  5894] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5895] <... memfd_create resumed>) = 3
[pid  5895] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5895] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5895] munmap(0x7fa13a200000, 138412032) = 0
[pid  5895] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5895] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5895] close(3)                    = 0
[pid  5895] close(4)                    = 0
[pid  5895] mkdir("./file1", 0777)      = 0
[   73.149251][ T5895] loop0: detected capacity change from 0 to 32768
[   73.220370][ T5895] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   73.239474][ T5895] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   73.247742][ T5895] bcachefs (loop0): Version upgrade required:
[   73.247742][ T5895] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   73.247742][ T5895] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   73.247742][ T5895]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   73.328795][ T5895] bcachefs (loop0): check_topology... done
[   73.334651][ T5895] bcachefs (loop0): accounting_read... done
[   73.340852][ T5895] bcachefs (loop0): alloc_read... done
[   73.346862][ T5895] bcachefs (loop0): stripes_read... done
[   73.352560][ T5895] bcachefs (loop0): snapshots_read... done
[   73.358543][ T5895] bcachefs (loop0): check_allocations...
[   73.360143][ T5895] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   73.360156][ T5895] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   73.390669][ T5895] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   73.390683][ T5895] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   73.414995][ T5895] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   73.415008][ T5895] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   73.439642][ T5895] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   73.439654][ T5895] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   73.465336][ T5895] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   73.465350][ T5895] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   73.489065][ T5895] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.497532][ T5895] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   73.507482][ T5895] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.515878][ T5895] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   73.525800][ T5895] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.534121][ T5895] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   73.543997][ T5895] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.552426][ T5895] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   73.562368][ T5895] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.570812][ T5895] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   73.580564][ T5895] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.589100][ T5895] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   73.599263][ T5895] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.607771][ T5895] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   73.617601][ T5895] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   73.625976][ T5895] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   73.635577][ T5895] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   73.644302][ T5895] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   73.654606][ T5895] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   73.663519][ T5895] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   73.673903][ T5895] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   73.682791][ T5895] bcachefs (loop0): Ratelimiting new instances of previous error
[   73.690703][ T5895] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   73.701193][ T5895] bcachefs (loop0): Ratelimiting new instances of previous error
[   73.713309][ T5895]  done
[   73.717489][ T5895] bcachefs (loop0): going read-write
[pid  5895] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5895] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5895] chdir("./file1")            = 0
[pid  5895] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5895] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5895] close(4)                    = 0
[pid  5895] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5894] <... futex resumed>)        = 0
[pid  5895] <... futex resumed>)        = 1
[pid  5894] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5895] truncate("./file2", 7326 <unfinished ...>
[pid  5894] <... futex resumed>)        = 0
[   73.727130][ T5895] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   73.738435][ T5895] bcachefs (loop0): done starting filesystem
[pid  5894] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5895] <... truncate resumed>)     = 0
[pid  5895] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5894] <... futex resumed>)        = 0
[pid  5895] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5894] exit_group(0 <unfinished ...>
[pid  5895] <... futex resumed>)        = ?
[pid  5894] <... exit_group resumed>)   = ?
[pid  5895] +++ exited with 0 +++
[pid  5894] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5894, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=56 /* 0.56 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./5/binderfs")                  = 0
[   73.939582][ T5829] bcachefs (loop0): shutting down
[   73.944643][ T5829] bcachefs (loop0): going read-only
[   73.950016][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   73.957898][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   73.980563][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 18
[   73.991252][ T5829] bcachefs (loop0): unshutdown complete, journal seq 19
[   73.999204][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   74.015258][ T5829] bcachefs (loop0): shutdown complete
umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./5/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./5")                            = 0
mkdir("./6", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5906 attached
, child_tidptr=0x555570aa6690) = 5906
[pid  5906] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5906] chdir("./6")                = 0
[pid  5906] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5906] setpgid(0, 0)               = 0
[pid  5906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5906] write(3, "1000", 4)         = 4
[pid  5906] close(3)                    = 0
[pid  5906] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5906] write(1, "executing program\n", 18) = 18
[pid  5906] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5906] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5906] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5906] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5906] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5906] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5907 attached
 <unfinished ...>
[pid  5907] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5907] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5906] <... clone3 resumed> => {parent_tid=[5907]}, 88) = 5907
[pid  5907] <... set_robust_list resumed>) = 0
[pid  5906] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5907] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5906] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5907] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5906] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5907] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5906] <... futex resumed>)        = 0
[pid  5907] <... memfd_create resumed>) = 3
[pid  5906] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5907] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5907] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5907] munmap(0x7fa13a200000, 138412032) = 0
[pid  5907] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5907] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5907] close(3)                    = 0
[pid  5907] close(4)                    = 0
[pid  5907] mkdir("./file1", 0777)      = 0
[   75.500043][ T5907] loop0: detected capacity change from 0 to 32768
[   75.576759][ T5907] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   75.597332][ T5907] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   75.605588][ T5907] bcachefs (loop0): Version upgrade required:
[   75.605588][ T5907] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   75.605588][ T5907] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   75.605588][ T5907]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   75.685708][ T5907] bcachefs (loop0): check_topology... done
[   75.691561][ T5907] bcachefs (loop0): accounting_read... done
[   75.698226][ T5907] bcachefs (loop0): alloc_read... done
[   75.703978][ T5907] bcachefs (loop0): stripes_read... done
[   75.709789][ T5907] bcachefs (loop0): snapshots_read... done
[   75.715936][ T5907] bcachefs (loop0): check_allocations...
[   75.717510][ T5907] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   75.717522][ T5907] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   75.747732][ T5907] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   75.747746][ T5907] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   75.771898][ T5907] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   75.771912][ T5907] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   75.796496][ T5907] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   75.796509][ T5907] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   75.821985][ T5907] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   75.821999][ T5907] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   75.845811][ T5907] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.854118][ T5907] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   75.864144][ T5907] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.872608][ T5907] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   75.882407][ T5907] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.890871][ T5907] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   75.900694][ T5907] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.909117][ T5907] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   75.918972][ T5907] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.927325][ T5907] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   75.937256][ T5907] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.945720][ T5907] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   75.955551][ T5907] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.963871][ T5907] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   75.973668][ T5907] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   75.982010][ T5907] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   75.991684][ T5907] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   76.000491][ T5907] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   76.010717][ T5907] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   76.019587][ T5907] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   76.029916][ T5907] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   76.038753][ T5907] bcachefs (loop0): Ratelimiting new instances of previous error
[   76.046640][ T5907] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   76.056769][ T5907] bcachefs (loop0): Ratelimiting new instances of previous error
[   76.068966][ T5907]  done
[   76.073052][ T5907] bcachefs (loop0): going read-write
[pid  5907] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5907] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5907] chdir("./file1")            = 0
[pid  5907] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5907] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5907] close(4)                    = 0
[   76.082401][ T5907] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   76.093594][ T5907] bcachefs (loop0): done starting filesystem
[pid  5907] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5907] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5906] <... futex resumed>)        = 0
[pid  5906] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5907] <... futex resumed>)        = 0
[pid  5907] truncate("./file2", 7326 <unfinished ...>
[pid  5906] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5907] <... truncate resumed>)     = 0
[pid  5907] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5906] <... futex resumed>)        = 0
[pid  5907] <... futex resumed>)        = 1
[pid  5906] exit_group(0 <unfinished ...>
[pid  5907] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL) = ?
[pid  5906] <... exit_group resumed>)   = ?
[pid  5907] +++ exited with 0 +++
[pid  5906] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5906, si_uid=0, si_status=0, si_utime=0, si_stime=57 /* 0.57 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./6/binderfs")                  = 0
[   76.287851][ T5829] bcachefs (loop0): shutting down
[   76.293062][ T5829] bcachefs (loop0): going read-only
[   76.298651][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   76.306563][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   76.327676][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 18
[   76.338634][ T5829] bcachefs (loop0): unshutdown complete, journal seq 19
[   76.346410][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   76.362551][ T5829] bcachefs (loop0): shutdown complete
[   76.786377][ T1170] cfg80211: failed to load regulatory.db
umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./6/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./6")                            = 0
mkdir("./7", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5919 attached
 <unfinished ...>
[pid  5919] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5829] <... clone resumed>, child_tidptr=0x555570aa6690) = 5919
[pid  5919] chdir("./7")                = 0
[pid  5919] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5919] setpgid(0, 0)               = 0
[pid  5919] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5919] write(3, "1000", 4)         = 4
[pid  5919] close(3)                    = 0
[pid  5919] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5919] write(1, "executing program\n", 18) = 18
[pid  5919] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5919] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5919] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5919] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5919] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5919] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5919] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5920 attached
 <unfinished ...>
[pid  5920] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5919] <... clone3 resumed> => {parent_tid=[5920]}, 88) = 5920
[pid  5920] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5919] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5920] <... set_robust_list resumed>) = 0
[pid  5919] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5920] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5919] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5920] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5920] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5919] <... futex resumed>)        = 0
[pid  5919] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5920] <... memfd_create resumed>) = 3
[pid  5920] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5920] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5920] munmap(0x7fa13a200000, 138412032) = 0
[pid  5920] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5920] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5920] close(3)                    = 0
[pid  5920] close(4)                    = 0
[pid  5920] mkdir("./file1", 0777)      = 0
[   77.876693][ T5920] loop0: detected capacity change from 0 to 32768
[   77.970937][ T5920] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   77.989702][ T5920] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   77.997817][ T5920] bcachefs (loop0): Version upgrade required:
[   77.997817][ T5920] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   77.997817][ T5920] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   77.997817][ T5920]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   78.077878][ T5920] bcachefs (loop0): check_topology... done
[   78.083763][ T5920] bcachefs (loop0): accounting_read... done
[   78.089860][ T5920] bcachefs (loop0): alloc_read... done
[   78.095583][ T5920] bcachefs (loop0): stripes_read... done
[   78.101272][ T5920] bcachefs (loop0): snapshots_read... done
[   78.107403][ T5920] bcachefs (loop0): check_allocations...
[   78.109136][ T5920] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   78.109149][ T5920] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   78.139541][ T5920] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   78.139555][ T5920] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   78.164358][ T5920] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   78.164373][ T5920] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   78.189105][ T5920] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   78.189119][ T5920] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   78.214444][ T5920] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   78.214458][ T5920] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   78.237988][ T5920] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.246423][ T5920] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   78.256219][ T5920] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.264514][ T5920] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   78.274318][ T5920] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.282752][ T5920] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   78.292578][ T5920] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.300951][ T5920] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   78.310816][ T5920] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.319194][ T5920] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   78.328984][ T5920] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.337366][ T5920] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   78.347190][ T5920] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.355580][ T5920] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   78.365357][ T5920] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   78.373637][ T5920] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   78.383267][ T5920] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   78.392215][ T5920] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   78.402425][ T5920] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   78.411326][ T5920] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   78.421592][ T5920] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   78.430500][ T5920] bcachefs (loop0): Ratelimiting new instances of previous error
[   78.438407][ T5920] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   78.448539][ T5920] bcachefs (loop0): Ratelimiting new instances of previous error
[   78.460678][ T5920]  done
[   78.465262][ T5920] bcachefs (loop0): going read-write
[pid  5920] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5920] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5920] chdir("./file1")            = 0
[pid  5920] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5920] ioctl(4, LOOP_CLR_FD)       = 0
[   78.474022][ T5920] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   78.485815][ T5920] bcachefs (loop0): done starting filesystem
[pid  5920] close(4)                    = 0
[pid  5920] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5920] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5919] <... futex resumed>)        = 0
[pid  5919] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5920] <... futex resumed>)        = 0
[pid  5919] <... futex resumed>)        = 1
[pid  5920] truncate("./file2", 7326 <unfinished ...>
[pid  5919] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5920] <... truncate resumed>)     = 0
[pid  5920] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5919] <... futex resumed>)        = 0
[pid  5920] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5919] exit_group(0 <unfinished ...>
[pid  5920] <... futex resumed>)        = ?
[pid  5919] <... exit_group resumed>)   = ?
[pid  5920] +++ exited with 0 +++
[pid  5919] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5919, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=63 /* 0.63 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./7/binderfs")                  = 0
[   78.694873][ T5829] bcachefs (loop0): shutting down
[   78.699928][ T5829] bcachefs (loop0): going read-only
[   78.705401][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   78.712758][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   78.732846][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 17
[   78.743664][ T5829] bcachefs (loop0): unshutdown complete, journal seq 18
[   78.751357][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   78.767665][ T5829] bcachefs (loop0): shutdown complete
umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./7/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./7")                            = 0
mkdir("./8", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5931 attached
 <unfinished ...>
[pid  5931] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5829] <... clone resumed>, child_tidptr=0x555570aa6690) = 5931
[pid  5931] chdir("./8")                = 0
[pid  5931] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5931] setpgid(0, 0)               = 0
[pid  5931] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5931] write(3, "1000", 4)         = 4
[pid  5931] close(3)                    = 0
[pid  5931] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5931] write(1, "executing program\n", 18) = 18
[pid  5931] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5931] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5931] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5931] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5931] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5931] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5931] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5932 attached
 <unfinished ...>
[pid  5932] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053 <unfinished ...>
[pid  5931] <... clone3 resumed> => {parent_tid=[5932]}, 88) = 5932
[pid  5932] <... rseq resumed>)         = 0
[pid  5932] set_robust_list(0x7fa1427a69a0, 24) = 0
[pid  5932] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5932] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5931] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5931] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5932] <... futex resumed>)        = 0
[pid  5931] <... futex resumed>)        = 1
[pid  5932] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5931] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5932] <... memfd_create resumed>) = 3
[pid  5932] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5932] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5932] munmap(0x7fa13a200000, 138412032) = 0
[pid  5932] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5932] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5932] close(3)                    = 0
[pid  5932] close(4)                    = 0
[pid  5932] mkdir("./file1", 0777)      = 0
[   80.201691][ T5932] loop0: detected capacity change from 0 to 32768
[   80.287033][ T5932] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   80.305897][ T5932] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   80.313885][ T5932] bcachefs (loop0): Version upgrade required:
[   80.313885][ T5932] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   80.313885][ T5932] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   80.313885][ T5932]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   80.393975][ T5932] bcachefs (loop0): check_topology... done
[   80.399935][ T5932] bcachefs (loop0): accounting_read... done
[   80.406060][ T5932] bcachefs (loop0): alloc_read... done
[   80.411665][ T5932] bcachefs (loop0): stripes_read... done
[   80.417595][ T5932] bcachefs (loop0): snapshots_read... done
[   80.423513][ T5932] bcachefs (loop0): check_allocations...
[   80.425279][ T5932] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   80.425291][ T5932] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   80.455578][ T5932] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   80.455592][ T5932] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   80.480009][ T5932] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   80.480022][ T5932] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   80.504633][ T5932] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   80.504646][ T5932] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   80.530229][ T5932] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   80.530243][ T5932] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   80.554048][ T5932] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.562503][ T5932] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   80.572404][ T5932] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.580786][ T5932] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   80.590583][ T5932] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.598950][ T5932] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   80.608909][ T5932] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.617334][ T5932] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   80.627283][ T5932] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.635669][ T5932] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   80.645415][ T5932] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.653698][ T5932] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   80.664554][ T5932] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.672955][ T5932] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   80.682711][ T5932] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   80.691256][ T5932] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   80.700856][ T5932] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   80.709753][ T5932] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   80.719946][ T5932] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   80.728868][ T5932] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   80.739195][ T5932] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   80.748092][ T5932] bcachefs (loop0): Ratelimiting new instances of previous error
[   80.755921][ T5932] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   80.766097][ T5932] bcachefs (loop0): Ratelimiting new instances of previous error
[   80.782300][ T5932]  done
[   80.786350][ T5932] bcachefs (loop0): going read-write
[pid  5932] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5932] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5932] chdir("./file1")            = 0
[pid  5932] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5932] ioctl(4, LOOP_CLR_FD)       = 0
[   80.795406][ T5932] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   80.806779][ T5932] bcachefs (loop0): done starting filesystem
[pid  5932] close(4)                    = 0
[pid  5932] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5932] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5931] <... futex resumed>)        = 0
[pid  5931] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5932] <... futex resumed>)        = 0
[pid  5931] <... futex resumed>)        = 1
[pid  5932] truncate("./file2", 7326 <unfinished ...>
[pid  5931] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5932] <... truncate resumed>)     = 0
[pid  5932] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5931] <... futex resumed>)        = 0
[pid  5932] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5931] exit_group(0 <unfinished ...>
[pid  5932] <... futex resumed>)        = ?
[pid  5931] <... exit_group resumed>)   = ?
[pid  5932] +++ exited with 0 +++
[pid  5931] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5931, si_uid=0, si_status=0, si_utime=0, si_stime=59 /* 0.59 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./8/binderfs")                  = 0
[   81.025653][ T5829] bcachefs (loop0): shutting down
[   81.030703][ T5829] bcachefs (loop0): going read-only
[   81.036265][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   81.043660][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   81.065446][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 18
[   81.076305][ T5829] bcachefs (loop0): unshutdown complete, journal seq 19
[   81.083849][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   81.100445][ T5829] bcachefs (loop0): shutdown complete
umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./8/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./8")                            = 0
mkdir("./9", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5944 attached
, child_tidptr=0x555570aa6690) = 5944
[pid  5944] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5944] chdir("./9")                = 0
[pid  5944] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5944] setpgid(0, 0)               = 0
[pid  5944] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5944] write(3, "1000", 4)         = 4
[pid  5944] close(3)                    = 0
[pid  5944] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5944] write(1, "executing program\n", 18executing program
) = 18
[pid  5944] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5944] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5944] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5944] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5944] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5944] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5944] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5945 attached
 <unfinished ...>
[pid  5945] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5945] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5944] <... clone3 resumed> => {parent_tid=[5945]}, 88) = 5945
[pid  5945] <... set_robust_list resumed>) = 0
[pid  5944] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5945] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5944] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5945] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5944] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5945] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5944] <... futex resumed>)        = 0
[pid  5945] <... memfd_create resumed>) = 3
[pid  5945] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5944] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5945] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5945] munmap(0x7fa13a200000, 138412032) = 0
[pid  5945] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5945] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5945] close(3)                    = 0
[pid  5945] close(4)                    = 0
[pid  5945] mkdir("./file1", 0777)      = 0
[   82.473358][ T5945] loop0: detected capacity change from 0 to 32768
[   82.540331][ T5945] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   82.559821][ T5945] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   82.567927][ T5945] bcachefs (loop0): Version upgrade required:
[   82.567927][ T5945] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   82.567927][ T5945] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   82.567927][ T5945]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   82.648100][ T5945] bcachefs (loop0): check_topology... done
[   82.653972][ T5945] bcachefs (loop0): accounting_read... done
[   82.660682][ T5945] bcachefs (loop0): alloc_read... done
[   82.666514][ T5945] bcachefs (loop0): stripes_read... done
[   82.672194][ T5945] bcachefs (loop0): snapshots_read... done
[   82.678230][ T5945] bcachefs (loop0): check_allocations...
[   82.679842][ T5945] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   82.679855][ T5945] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   82.710127][ T5945] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   82.710140][ T5945] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   82.734362][ T5945] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   82.734375][ T5945] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   82.758965][ T5945] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   82.758979][ T5945] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   82.784170][ T5945] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   82.784184][ T5945] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   82.807726][ T5945] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.816556][ T5945] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   82.826387][ T5945] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.834675][ T5945] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   82.844492][ T5945] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.852892][ T5945] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   82.862694][ T5945] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.871142][ T5945] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   82.881038][ T5945] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.889454][ T5945] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   82.899220][ T5945] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.907583][ T5945] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   82.917307][ T5945] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.925683][ T5945] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   82.935405][ T5945] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   82.943686][ T5945] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   82.953330][ T5945] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   82.962147][ T5945] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   82.972343][ T5945] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   82.981253][ T5945] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   82.991618][ T5945] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   83.000474][ T5945] bcachefs (loop0): Ratelimiting new instances of previous error
[   83.008318][ T5945] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   83.018511][ T5945] bcachefs (loop0): Ratelimiting new instances of previous error
[   83.030621][ T5945]  done
[   83.038689][ T5945] bcachefs (loop0): going read-write
[pid  5945] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5945] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5945] chdir("./file1")            = 0
[pid  5945] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5945] ioctl(4, LOOP_CLR_FD)       = 0
[   83.047930][ T5945] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   83.059182][ T5945] bcachefs (loop0): done starting filesystem
[pid  5945] close(4)                    = 0
[pid  5945] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5945] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5944] <... futex resumed>)        = 0
[pid  5944] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5945] <... futex resumed>)        = 0
[pid  5944] <... futex resumed>)        = 1
[pid  5945] truncate("./file2", 7326 <unfinished ...>
[pid  5944] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5945] <... truncate resumed>)     = 0
[pid  5945] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5944] <... futex resumed>)        = 0
[pid  5945] <... futex resumed>)        = 1
[pid  5944] exit_group(0 <unfinished ...>
[pid  5945] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL) = ?
[pid  5944] <... exit_group resumed>)   = ?
[pid  5945] +++ exited with 0 +++
[pid  5944] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5944, si_uid=0, si_status=0, si_utime=0, si_stime=55 /* 0.55 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./9/binderfs")                  = 0
[   83.222197][ T5829] bcachefs (loop0): shutting down
[   83.227545][ T5829] bcachefs (loop0): going read-only
[   83.232762][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   83.241259][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   83.261373][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 18
[   83.273020][ T5829] bcachefs (loop0): unshutdown complete, journal seq 19
[   83.280786][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   83.298084][ T5829] bcachefs (loop0): shutdown complete
umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555570aaf770 /* 2 entries */, 32768) = 48
getdents64(4, 0x555570aaf770 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./9/file1")                      = 0
getdents64(3, 0x555570aa7730 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./9")                            = 0
mkdir("./10", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5956 attached
, child_tidptr=0x555570aa6690) = 5956
[pid  5956] set_robust_list(0x555570aa66a0, 24) = 0
[pid  5956] chdir("./10")               = 0
[pid  5956] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5956] setpgid(0, 0)               = 0
[pid  5956] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5956] write(3, "1000", 4)         = 4
[pid  5956] close(3)                    = 0
[pid  5956] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5956] write(1, "executing program\n", 18executing program
) = 18
[pid  5956] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5956] rt_sigaction(SIGRT_1, {sa_handler=0x7fa142815ef0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fa1428070a0}, NULL, 8) = 0
[pid  5956] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5956] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fa142786000
[pid  5956] mprotect(0x7fa142787000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5956] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5956] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fa1427a6990, parent_tid=0x7fa1427a6990, exit_signal=0, stack=0x7fa142786000, stack_size=0x20300, tls=0x7fa1427a66c0}./strace-static-x86_64: Process 5957 attached
 <unfinished ...>
[pid  5957] rseq(0x7fa1427a6fe0, 0x20, 0, 0x53053053) = 0
[pid  5957] set_robust_list(0x7fa1427a69a0, 24 <unfinished ...>
[pid  5956] <... clone3 resumed> => {parent_tid=[5957]}, 88) = 5957
[pid  5957] <... set_robust_list resumed>) = 0
[pid  5956] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5957] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5956] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5957] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5956] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5957] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5956] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5957] <... memfd_create resumed>) = 3
[pid  5957] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fa13a200000
[pid  5957] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5957] munmap(0x7fa13a200000, 138412032) = 0
[pid  5957] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5957] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5957] close(3)                    = 0
[pid  5957] close(4)                    = 0
[pid  5957] mkdir("./file1", 0777)      = 0
[   84.603153][ T5957] loop0: detected capacity change from 0 to 32768
[   84.666721][ T5957] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names
[   84.685819][ T5957] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   84.693849][ T5957] bcachefs (loop0): Version upgrade required:
[   84.693849][ T5957] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   84.693849][ T5957] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   84.693849][ T5957]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   84.773954][ T5957] bcachefs (loop0): check_topology... done
[   84.779896][ T5957] bcachefs (loop0): accounting_read... done
[   84.786225][ T5957] bcachefs (loop0): alloc_read... done
[   84.791837][ T5957] bcachefs (loop0): stripes_read... done
[   84.797609][ T5957] bcachefs (loop0): snapshots_read... done
[   84.803531][ T5957] bcachefs (loop0): check_allocations...
[   84.805255][ T5957] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[   84.805268][ T5957] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   84.835536][ T5957] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   84.835548][ T5957] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   84.859777][ T5957] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   84.859790][ T5957] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   84.884107][ T5957] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   84.884120][ T5957] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   84.909484][ T5957] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[   84.909497][ T5957] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   84.933336][ T5957] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   84.941733][ T5957] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   84.951665][ T5957] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   84.960050][ T5957] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   84.969814][ T5957] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   84.978194][ T5957] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   84.988007][ T5957] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[   84.996365][ T5957] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   85.006104][ T5957] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   85.014416][ T5957] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   85.024329][ T5957] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   85.032672][ T5957] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   85.042502][ T5957] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   85.050924][ T5957] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   85.060760][ T5957] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[   85.069223][ T5957] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   85.078894][ T5957] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   85.087765][ T5957] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   85.097936][ T5957] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   85.106971][ T5957] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   85.117221][ T5957] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   85.126047][ T5957] bcachefs (loop0): Ratelimiting new instances of previous error
[   85.133834][ T5957] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   85.144033][ T5957] bcachefs (loop0): Ratelimiting new instances of previous error
[   85.156147][ T5957]  done
[   85.160129][ T5957] bcachefs (loop0): going read-write
[pid  5957] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x78\x78\x68\x61\x73\x68\x2c\x64\x69\x72\x65\x63\x74\x5f\x69\x6f\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x9f\x68\xca\xf6\xf3\x2b\xbd\x41\xf7\x28") = 0
[pid  5957] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5957] chdir("./file1")            = 0
[pid  5957] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5957] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5957] close(4)                    = 0
[   85.169280][ T5957] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   85.180557][ T5957] bcachefs (loop0): done starting filesystem
[pid  5957] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5956] <... futex resumed>)        = 0
[pid  5957] futex(0x7fa14287d6a8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5956] futex(0x7fa14287d6a8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5957] <... futex resumed>)        = 0
[pid  5956] <... futex resumed>)        = 1
[pid  5957] truncate("./file2", 7326 <unfinished ...>
[pid  5956] futex(0x7fa14287d6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5957] <... truncate resumed>)     = 0
[pid  5957] futex(0x7fa14287d6ac, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5956] <... futex resumed>)        = 0
[pid  5957] <... futex resumed>)        = 1
[pid  5956] exit_group(0)               = ?
[pid  5957] +++ exited with 0 +++
[pid  5956] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5956, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=58 /* 0.58 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555570aa7730 /* 4 entries */, 32768) = 112
umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./10/binderfs")                 = 0
[   85.351585][ T5829] bcachefs (loop0): shutting down
[   85.356836][ T5829] bcachefs (loop0): going read-only
[   85.362030][ T5829] bcachefs (loop0): finished waiting for writes to stop
[   85.369856][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   85.390564][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 15
[   85.401565][ T5829] bcachefs (loop0): unshutdown complete, journal seq 16
[   85.409342][ T5829] bcachefs (loop0): done going read-only, filesystem not clean
[   85.425344][ T5829] bcachefs (loop0): shutdown complete
[   86.128285][ T5829] ------------[ cut here ]------------
[   86.135453][ T5829] kernel BUG at fs/bcachefs/btree_cache.c:614!
[   86.141866][ T5829] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[   86.148842][ T5829] CPU: 0 UID: 0 PID: 5829 Comm: syz-executor284 Not tainted 6.12.0-rc7-syzkaller-00042-gf1b785f4c787 #0
[   86.159947][ T5829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   86.169992][ T5829] RIP: 0010:bch2_fs_btree_cache_exit+0x1521/0x1530
[   86.176483][ T5829] Code: fd 90 0f 0b e8 60 09 84 fd 90 0f 0b e8 58 09 84 fd 90 0f 0b e8 50 09 84 fd 90 0f 0b e8 48 09 84 fd 90 0f 0b e8 40 09 84 fd 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90
[   86.196088][ T5829] RSP: 0018:ffffc90003687b18 EFLAGS: 00010293
[   86.202156][ T5829] RAX: ffffffff8410e070 RBX: 0000000000000002 RCX: ffff888030610000
[   86.210117][ T5829] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
[   86.218094][ T5829] RBP: ffff888034296000 R08: ffffffff8410d71c R09: 1ffff1100e4003b6
[   86.226055][ T5829] R10: dffffc0000000000 R11: ffffed100e4003b7 R12: ffff888034296228
[   86.234016][ T5829] R13: dffffc0000000000 R14: ffff888072001c78 R15: ffff888072000000
[   86.241983][ T5829] FS:  0000555570aa63c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[   86.251075][ T5829] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.257754][ T5829] CR2: 0000555570aaf738 CR3: 00000000761f8000 CR4: 00000000003526f0
[   86.265721][ T5829] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   86.273680][ T5829] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   86.281641][ T5829] Call Trace:
[   86.284921][ T5829]  <TASK>
[   86.287851][ T5829]  ? __die_body+0x5f/0xb0
[   86.292173][ T5829]  ? die+0x9e/0xc0
[   86.295883][ T5829]  ? do_trap+0x15a/0x3a0
[   86.300120][ T5829]  ? bch2_fs_btree_cache_exit+0x1521/0x1530
[   86.306007][ T5829]  ? do_error_trap+0x1dc/0x2c0
[   86.310763][ T5829]  ? bch2_fs_btree_cache_exit+0x1521/0x1530
[   86.316649][ T5829]  ? __pfx_do_error_trap+0x10/0x10
[   86.321755][ T5829]  ? handle_invalid_op+0x34/0x40
[   86.326684][ T5829]  ? bch2_fs_btree_cache_exit+0x1521/0x1530
[   86.332567][ T5829]  ? exc_invalid_op+0x38/0x50
[   86.337248][ T5829]  ? asm_exc_invalid_op+0x1a/0x20
[   86.342265][ T5829]  ? bch2_fs_btree_cache_exit+0xbcc/0x1530
[   86.348063][ T5829]  ? bch2_fs_btree_cache_exit+0x1520/0x1530
[   86.354470][ T5829]  ? bch2_fs_btree_cache_exit+0x1521/0x1530
[   86.360359][ T5829]  ? bch2_fs_btree_cache_exit+0x1520/0x1530
[   86.366246][ T5829]  bch2_fs_release+0x20e/0x7d0
[   86.371002][ T5829]  ? kobject_put+0x44d/0x480
[   86.375584][ T5829]  kobject_put+0x22f/0x480
[   86.379996][ T5829]  deactivate_locked_super+0xc4/0x130
[   86.385361][ T5829]  cleanup_mnt+0x41f/0x4b0
[   86.389790][ T5829]  ? lockdep_hardirqs_on+0x99/0x150
[   86.394998][ T5829]  task_work_run+0x24f/0x310
[   86.399596][ T5829]  ? __pfx_task_work_run+0x10/0x10
[   86.404710][ T5829]  ? path_umount+0x284/0xf70
[   86.409309][ T5829]  ptrace_notify+0x2d2/0x380
[   86.413895][ T5829]  ? __pfx_path_umount+0x10/0x10
[   86.418831][ T5829]  ? __pfx_ptrace_notify+0x10/0x10
[   86.423961][ T5829]  ? __x64_sys_umount+0x123/0x170
[   86.428977][ T5829]  ? __pfx___x64_sys_umount+0x10/0x10
[   86.434341][ T5829]  syscall_exit_work+0xc6/0x190
[   86.439197][ T5829]  syscall_exit_to_user_mode+0x279/0x370
[   86.444827][ T5829]  do_syscall_64+0x100/0x230
[   86.449421][ T5829]  ? clear_bhb_loop+0x35/0x90
[   86.454093][ T5829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.459989][ T5829] RIP: 0033:0x7fa1427f0d37
[   86.464407][ T5829] Code: 08 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8
[   86.484005][ T5829] RSP: 002b:00007ffe330a6b78 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[   86.492411][ T5829] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fa1427f0d37
[   86.500461][ T5829] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe330a6c30
[   86.508442][ T5829] RBP: 00007ffe330a6c30 R08: 0000000000000000 R09: 0000000000000000
[   86.516424][ T5829] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffe330a7cf0
[   86.524401][ T5829] R13: 0000555570aa7700 R14: 00007ffe330a7c94 R15: 00007ffe330a7d10
[   86.532385][ T5829]  </TASK>
[   86.535400][ T5829] Modules linked in:
[   86.539530][ T5829] ---[ end trace 0000000000000000 ]---
[   86.545307][ T5829] RIP: 0010:bch2_fs_btree_cache_exit+0x1521/0x1530
[   86.551839][ T5829] Code: fd 90 0f 0b e8 60 09 84 fd 90 0f 0b e8 58 09 84 fd 90 0f 0b e8 50 09 84 fd 90 0f 0b e8 48 09 84 fd 90 0f 0b e8 40 09 84 fd 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90
[   86.571716][ T5829] RSP: 0018:ffffc90003687b18 EFLAGS: 00010293
[   86.577816][ T5829] RAX: ffffffff8410e070 RBX: 0000000000000002 RCX: ffff888030610000
[   86.585816][ T5829] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
[   86.593768][ T5829] RBP: ffff888034296000 R08: ffffffff8410d71c R09: 1ffff1100e4003b6
[   86.601801][ T5829] R10: dffffc0000000000 R11: ffffed100e4003b7 R12: ffff888034296228
[   86.609819][ T5829] R13: dffffc0000000000 R14: ffff888072001c78 R15: ffff888072000000
[   86.617821][ T5829] FS:  0000555570aa63c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[   86.626779][ T5829] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.633370][ T5829] CR2: 00007fa1428435d8 CR3: 00000000761f8000 CR4: 00000000003526f0
[   86.641411][ T5829] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   86.649414][ T5829] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   86.657713][ T5829] Kernel panic - not syncing: Fatal exception
[   86.664039][ T5829] Kernel Offset: disabled
[   86.668372][ T5829] Rebooting in 86400 seconds..