program: r0 = syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x818001, &(0x7f0000000480)={[{@inodes_32bit}, {@shared_inode_numbers}, {@errors_continue}, {@inline_data}, {@direct_io}, {@nochanges}, {@prjquota}, {@recovery_pass_last={'recovery_pass_last', 0x3d, 'delete_dead_inodes'}}, {@version_upgrade={'version_upgrade', 0x3d, 'incompatible'}}]}, 0x1, 0x5968, &(0x7f000000b5c0)="$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") ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={r0, 0x10001, 0xa, 0x200}) sendmsg$nl_generic(r1, &(0x7f00000003c0)={&(0x7f0000000040), 0xc, &(0x7f0000000380)={&(0x7f0000000100)={0x25c, 0x1f, 0x100, 0x70bd26, 0x25dfdbfb, {0x1}, [@generic="7d8c9f6fd2d98984132cfa6ac626610d241161f5d57fa0772d2992b31ed940792e7075c3c469eea349e6a41075d71a31ee393ba1326777be1b5bd3d20aacddab4d5c5a492cb87ee9a5fd9611a3dab173d848ee5fcbf2fc7193bf92dade27198310d52e5fd47798b3a1107c9088ab76366d9f950ae41e4a70d8464c47bdaeb040cfbb36a33be64218e840f865ecef99b30a9fdd106eef69510d3e650d60aaca131e4f11c7a2805ae058681e6225b728b0ee06fe2f6dd763d156d618adc2717ff0", @nested={0xd4, 0x93, 0x0, 0x1, [@generic="cf841e477a2d8200ab183512a58a5cbb2ca54a6df99c0d777d1b76cd2e17344001948ed6daf3abe6e3f8456c35ea00cb0fbe9e9bcb3bc40ee79dbb29da6bbc0a74d49268291cac1373f33ebb4398d67f3360cc7f24502354e5a5c7d9f29b3cc005b2083f82d8dbe89333e5604feea38d3d4cbf3b4f586f3e35012541332ecd145b305ebd1b993e74eb9790cb23d7e09968072a1df87cc7161f64b11522299500337aea353c9ce1f753ae3784b56e0b3426d03b447857e777339878a94815991bf1fa8eb508f39bc228f2abbdb4430970"]}, @generic="5556a9c2286454efbb3d6c207acc9e117c851d209c2f38599ee0e730248ed80bcb4d8b91588ebfc34c2f04987b467a05c7704bb1ee155d84a466e0681bde559a1e6adf6233e9b83fdd1025985df13a5f164440a11897dc2a38858d5ee1f161e4676d8e0c1012b227e69968ae93deae3c8eb6636022d223789356866bd7e81cd3950a4ea0b652af23ef33d8a93a48c817390856b0fc0d2a5526ed684f812421a67f1f14bc2a0b97d10078efdf391b94e6591e2d"]}, 0x25c}, 0x1, 0x0, 0x0, 0x41}, 0x40810) [ 86.532734][ T5344] Bluetooth: hci0: command tx timeout [ 86.620607][ T9] cfg80211: failed to load regulatory.db [ 87.238408][ T5366] loop0: detected capacity change from 0 to 32768 [ 87.416875][ T5366] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,prjquota,nochanges,recovery_pass_last=delete_dead_inodes,nojournal_transaction_names,read_only,version_upgrade=incompatible [ 87.416895][ T5366] allowing incompatible features above 0.0: (unknown version) [ 87.416903][ T5366] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 87.440453][ T5366] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 87.445510][ T5366] bcachefs (loop0): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing [ 87.466875][ T5366] bcachefs (loop0): invalid bkey in superblock btree=xattrs level=1: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 0 crc: c_size 1 size 1 offset 0 nonce 0 csum none 12010b:10004000b compress none [ 87.466893][ T5366] has non ptr field, deleting [ 87.515025][ T5366] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 87.518709][ T5366] bcachefs (loop0): Version upgrade from 1.3: rebalance_work to 1.7: mi_btree_bitmap incomplete [ 87.518709][ T5366] Doing compatible version upgrade from 1.3: rebalance_work to 1.28: inode_has_case_insensitive [ 87.518709][ T5366] running recovery passes: check_allocations,check_extents_to_backpointers,check_subvols,check_inodes,check_dirents [ 87.559740][ T5366] bcachefs (loop0): Now allowing incompatible features up to 1.28: inode_has_case_insensitive, previously allowed up to 0.0: (unknown version) [ 87.559740][ T5366] [ 87.718648][ T5366] bcachefs (loop0): error reading btree root btree=inodes level=0: btree_node_read_error, fixing [ 87.808187][ T5366] bcachefs (loop0): check_topology... [ 87.808314][ T5366] bcachefs (loop0): btree root inodes unreadable, must recover from scan [ 87.831486][ T5366] bcachefs (loop0): running recovery pass scan_for_btree_nodes (1), currently at check_topology (2) - rewinding [ 87.837595][ T5366] bcachefs (loop0): bch2_check_root(): error restart_recovery [ 87.840590][ T5366] bcachefs (loop0): scan_for_btree_nodes... [ 87.861108][ T5366] bcachefs (loop0): btree node scan found 1 nodes after overwrites [ 87.878306][ T5366] done [ 87.881288][ T5366] bcachefs (loop0): check_topology... [ 87.881405][ T5366] bcachefs (loop0): btree root inodes unreadable, must recover from scan [ 87.894221][ T5366] bcachefs (loop0): no nodes found for btree inodes, continuing [ 87.898912][ T5366] done [ 87.900130][ T5366] bcachefs (loop0): accounting_read... done [ 87.922089][ T5366] bcachefs (loop0): alloc_read... done [ 87.925711][ T5366] bcachefs (loop0): snapshots_read... done [ 87.943204][ T5366] bcachefs (loop0): check_allocations... [ 87.947363][ T5366] bcachefs (loop0): bucket 0:26 data type btree ptr gen 0 missing in alloc btree [ 87.947405][ T5366] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing [ 87.983245][ T5366] bcachefs (loop0): bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 87.983262][ T5366] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 88.032147][ T5366] bcachefs (loop0): bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 88.032164][ T5366] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 88.057273][ T5366] bcachefs (loop0): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.080502][ T5366] bcachefs (loop0): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.087885][ T5366] bcachefs (loop0): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.106744][ T5366] bcachefs (loop0): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.113635][ T5366] bcachefs (loop0): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.136995][ T5366] bcachefs (loop0): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.143467][ T5366] bcachefs (loop0): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.149912][ T5366] bcachefs (loop0): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.165268][ T5366] bcachefs (loop0): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.185140][ T5366] bcachefs (loop0): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.190216][ T5366] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.195651][ T5366] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.220279][ T5366] bcachefs (loop0): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.226870][ T5366] bcachefs (loop0): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.247885][ T5366] bcachefs (loop0): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.253724][ T5366] bcachefs (loop0): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 88.270851][ T5366] bcachefs (loop0): bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.281553][ T5366] bcachefs (loop0): bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.298456][ T5366] bcachefs (loop0): bucket 0:17 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.307925][ T5366] bcachefs (loop0): bucket 0:17 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.317911][ T5366] bcachefs (loop0): bucket 0:18 gen 0 has wrong data_type: got free, should be sb, fixing [ 88.317926][ T5366] Ratelimiting new instances of previous error [ 88.330571][ T5366] bcachefs (loop0): bucket 0:18 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 88.330588][ T5366] Ratelimiting new instances of previous error [ 88.355853][ T5366] done [ 88.363079][ T5366] bcachefs (loop0): going read-write [ 88.509862][ T5366] bcachefs (loop0): journal_replay... done [ 88.580730][ T5366] bcachefs (loop0): check_lrus... [ 88.581428][ T5366] bcachefs (loop0): incorrect lru entry: lru fragmentation time 134217728 [ 88.581454][ T5366] u64s 5 type set 18446462598867058688:6597069766690:0 len 0 ver 0 [ 88.581461][ T5366] for u64s 5 type deleted 0:6597069766690:0 len 0 ver 0, fixing [ 88.599736][ T5366] done [ 88.601339][ T5366] bcachefs (loop0): check_backpointers_to_extents... done [ 88.637378][ T5344] Bluetooth: hci0: command tx timeout [ 88.645431][ T5366] bcachefs (loop0): check_extents_to_backpointers... [ 88.647002][ T5366] bcachefs (loop0): scanning for missing backpointers in 3/128 buckets [ 88.690008][ T5366] done [ 88.709839][ T5366] bcachefs (loop0): check_subvols... done [ 88.714287][ T5366] bcachefs (loop0): check_inodes... done [ 88.718722][ T5366] bcachefs (loop0): check_dirents... [ 88.748028][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 6727340544370192390 [ 88.748045][ T5366] u64s 7 type dirent 4096:189491840996961599:U32_MAX len 0 ver 0: file0 -> 4098 type dir, fixing [ 88.796681][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 3057573667123522367 [ 88.796716][ T5366] u64s 7 type dirent 4096:1896155912177158345:U32_MAX len 0 ver 0: file3 -> 536870913 type reg, fixing [ 88.826991][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 5272952085128875929 [ 88.827006][ T5366] u64s 7 type dirent 4096:2695648408715017799:U32_MAX len 0 ver 0: file2 -> 536870913 type reg, fixing [ 88.858786][ T5366] bcachefs (loop0): dirent points to missing inode: [ 88.858802][ T5366] u64s 7 type dirent 4096:3057573667123522367:U32_MAX len 0 ver 0: file3 -> 536870913 type reg, fixing [ 88.878107][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 1086328996698781471 [ 88.878122][ T5366] u64s 7 type dirent 4096:4330382808765833931:U32_MAX len 0 ver 0: file1 -> 536870912 type reg, fixing [ 88.895146][ T5366] bcachefs (loop0): dirent points to missing inode: [ 88.895160][ T5366] u64s 7 type dirent 4096:5272952085128875929:U32_MAX len 0 ver 0: file2 -> 536870913 type reg, fixing [ 88.920731][ T5366] bcachefs (loop0): dirent points to missing inode: [ 88.920745][ T5366] u64s 7 type dirent 4096:6727340544370192390:U32_MAX len 0 ver 0: file0 -> 4098 type dir, fixing [ 88.941379][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 184810969402766605 [ 88.941394][ T5366] u64s 8 type dirent 4096:8130059955150870709:U32_MAX len 0 ver 0: lost+found -> 4097 type dir, fixing [ 88.955842][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 4351015781274782511 [ 88.955856][ T5366] u64s 8 type dirent 4096:9097378837824744618:U32_MAX len 0 ver 0: file.cold -> 536870914 type reg, fixing [ 88.996749][ T5366] bcachefs (loop0): fsck counted subdirectories wrong for inum 4096:4294967295: got 2 should be 1 [ 89.019620][ T5366] bcachefs (loop0): directory with wrong i_nlink: got 0, should be 1 [ 89.019633][ T5366] (disconnected), fixing [ 89.026607][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 526312147005388241 [ 89.026620][ T5366] u64s 7 type dirent 4098:5675548428000973578:U32_MAX len 0 ver 0: file1 -> 4100 type lnk, fixing [ 89.059570][ T5366] bcachefs (loop0): hash table key at wrong offset: should be at 1316408838722383884 [ 89.059584][ T5366] u64s 7 type dirent 4098:8977922886548783724:U32_MAX len 0 ver 0: file0 -> 4099 type reg, fixing [ 89.090352][ T5366] bcachefs (loop0): check_dirents requires second pass [ 89.094865][ T5366] bcachefs (loop0): dirent points to missing inode: [ 89.094880][ T5366] u64s 8 type dirent 4096:184810969402766605:U32_MAX len 0 ver 0: lost+found -> 4097 type dir, fixing [ 89.121255][ T5366] bcachefs (loop0): dirent points to missing inode: [ 89.121268][ T5366] u64s 7 type dirent 4096:1086328996698781471:U32_MAX len 0 ver 0: file1 -> 536870912 type reg, fixing [ 89.135741][ T5366] bcachefs (loop0): dirent points to missing inode: [ 89.135758][ T5366] u64s 8 type dirent 4096:4351015781274782511:U32_MAX len 0 ver 0: file.cold -> 536870914 type reg, fixing [ 89.174166][ T5366] ================================================================== [ 89.196853][ T5366] BUG: KASAN: use-after-free in bch2_check_dirents+0x1fac/0x33f0 [ 89.205373][ T5366] Read of size 1 at addr ffff8880543e3048 by task syz.0.0/5366 [ 89.213343][ T5366] [ 89.215884][ T5366] CPU: 0 UID: 0 PID: 5366 Comm: syz.0.0 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 89.215905][ T5366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 89.215913][ T5366] Call Trace: [ 89.215922][ T5366] [ 89.215928][ T5366] dump_stack_lvl+0x189/0x250 [ 89.215946][ T5366] ? __kasan_check_byte+0x12/0x40 [ 89.215961][ T5366] ? __pfx_dump_stack_lvl+0x10/0x10 [ 89.215974][ T5366] ? lock_release+0x4b/0x3e0 [ 89.215990][ T5366] ? __virt_addr_valid+0x4a5/0x5c0 [ 89.216005][ T5366] print_report+0xca/0x240 [ 89.216015][ T5366] ? bch2_check_dirents+0x1fac/0x33f0 [ 89.216031][ T5366] kasan_report+0x118/0x150 [ 89.216044][ T5366] ? bch2_check_dirents+0x1fac/0x33f0 [ 89.216199][ T5366] bch2_check_dirents+0x1fac/0x33f0 [ 89.216658][ T5366] ? bch2_check_dirents+0x2f1/0x33f0 [ 89.216676][ T5366] ? desc_read+0x1b8/0x3f0 [ 89.216688][ T5366] ? prb_first_seq+0xfd/0x1a0 [ 89.216697][ T5366] ? __pfx_bch2_check_dirents+0x10/0x10 [ 89.216712][ T5366] ? __pfx_prb_first_seq+0x10/0x10 [ 89.216723][ T5366] ? desc_read+0x1b8/0x3f0 [ 89.216733][ T5366] ? this_cpu_in_panic+0x4f/0x80 [ 89.216743][ T5366] ? _prb_read_valid+0xa07/0xa90 [ 89.216754][ T5366] ? console_flush_all+0x13a/0xc40 [ 89.216767][ T5366] ? up+0xde/0x150 [ 89.216858][ T5366] ? __console_unlock+0x14c/0x1a0 [ 89.216870][ T5366] ? __pfx___console_unlock+0x10/0x10 [ 89.216884][ T5366] ? prb_read_valid+0x3c/0x60 [ 89.216895][ T5366] ? console_unlock+0x21b/0x270 [ 89.216907][ T5366] ? __pfx_console_unlock+0x10/0x10 [ 89.216963][ T5366] ? vprintk_emit+0x63e/0x7a0 [ 89.216982][ T5366] ? __bch2_print+0x176/0x220 [ 89.216994][ T5366] ? bch2_check_dirents+0x2f1/0x33f0 [ 89.217010][ T5366] ? lockdep_hardirqs_on+0x9c/0x150 [ 89.217064][ T5366] __bch2_run_recovery_passes+0x3ba/0x1060 [ 89.217082][ T5366] bch2_run_recovery_passes+0x184/0x210 [ 89.217105][ T5366] bch2_fs_recovery+0x2690/0x3a50 [ 89.217124][ T5366] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 89.217140][ T5366] ? __lock_acquire+0xab9/0xd20 [ 89.217157][ T5366] ? __mutex_trylock_common+0x153/0x260 [ 89.217169][ T5366] ? __lock_acquire+0xab9/0xd20 [ 89.217185][ T5366] ? __lock_acquire+0xab9/0xd20 [ 89.217204][ T5366] ? bch2_fs_start+0xa0f/0xda0 [ 89.217215][ T5366] ? up_write+0x1c4/0x420 [ 89.217225][ T5366] ? bch2_fs_start+0x5e7/0xda0 [ 89.217292][ T5366] bch2_fs_start+0xaaf/0xda0 [ 89.217794][ T5366] ? bch2_fs_start+0x5e7/0xda0 [ 89.217810][ T5366] ? __pfx_bch2_fs_start+0x10/0x10 [ 89.217826][ T5366] ? sget+0x267/0x620 [ 89.217839][ T5366] bch2_fs_get_tree+0xb39/0x1520 [ 89.217855][ T5366] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 89.217878][ T5366] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 89.217896][ T5366] vfs_get_tree+0x8f/0x2b0 [ 89.217911][ T5366] do_new_mount+0x2a2/0x9e0 [ 89.217926][ T5366] ? ns_capable+0x8a/0xf0 [ 89.217937][ T5366] ? __pfx_do_new_mount+0x10/0x10 [ 89.217950][ T5366] ? path_mount+0x61c/0xfe0 [ 89.217962][ T5366] ? user_path_at+0x44/0x60 [ 89.217975][ T5366] __se_sys_mount+0x317/0x410 [ 89.217990][ T5366] ? __pfx___se_sys_mount+0x10/0x10 [ 89.218004][ T5366] ? do_syscall_64+0xbe/0x3b0 [ 89.218019][ T5366] ? __x64_sys_mount+0x20/0xc0 [ 89.218031][ T5366] do_syscall_64+0xfa/0x3b0 [ 89.218045][ T5366] ? lockdep_hardirqs_on+0x9c/0x150 [ 89.218058][ T5366] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.218130][ T5366] ? clear_bhb_loop+0x60/0xb0 [ 89.218142][ T5366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.218153][ T5366] RIP: 0033:0x7f00aef9038a [ 89.218166][ T5366] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 89.218175][ T5366] RSP: 002b:00007f00afe15e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 89.218188][ T5366] RAX: ffffffffffffffda RBX: 00007f00afe15ef0 RCX: 00007f00aef9038a [ 89.218197][ T5366] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 00007f00afe15eb0 [ 89.218204][ T5366] RBP: 00002000000000c0 R08: 00007f00afe15ef0 R09: 0000000000818001 [ 89.218211][ T5366] R10: 0000000000818001 R11: 0000000000000246 R12: 0000200000000080 [ 89.218218][ T5366] R13: 00007f00afe15eb0 R14: 0000000000005968 R15: 0000200000000480 [ 89.218230][ T5366] [ 89.218234][ T5366] [ 89.585403][ T5366] The buggy address belongs to the physical page: [ 89.602313][ T5366] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x543e3 [ 89.606303][ T5366] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 89.609728][ T5366] raw: 04fff00000000000 0000000000000000 ffffea000150f8c8 0000000000000000 [ 89.613774][ T5366] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 89.620899][ T5366] page dumped because: kasan: bad access detected [ 89.630114][ T5366] page_owner tracks the page as freed [ 89.632476][ T5366] page last allocated via order 5, migratetype Unmovable, gfp_mask 0x42800(GFP_NOWAIT|__GFP_COMP), pid 5366, tgid 5365 (syz.0.0), ts 87747927018, free_ts 89173828260 [ 89.656745][ T5366] post_alloc_hook+0x240/0x2a0 [ 89.660536][ T5366] get_page_from_freelist+0x21e4/0x22c0 [ 89.664133][ T5366] __alloc_frozen_pages_noprof+0x181/0x370 [ 89.675702][ T5366] alloc_pages_mpol+0x232/0x4a0 [ 89.689057][ T5366] ___kmalloc_large_node+0x5f/0x1b0 [ 89.691997][ T5366] __kmalloc_large_node_noprof+0x18/0x90 [ 89.695768][ T5366] __kvmalloc_node_noprof+0x6d/0x5f0 [ 89.713368][ T5366] bch2_btree_node_read_done+0x32f6/0x5550 [ 89.719127][ T5366] btree_node_read_work+0x40e/0xe60 [ 89.723965][ T5366] bch2_btree_node_read+0x887/0x2a00 [ 89.729246][ T5366] bch2_btree_root_read+0x5f0/0x760 [ 89.736889][ T5366] read_btree_roots+0x2c6/0x840 [ 89.739813][ T5366] bch2_fs_recovery+0x261f/0x3a50 [ 89.742865][ T5366] bch2_fs_start+0xaaf/0xda0 [ 89.748263][ T5366] bch2_fs_get_tree+0xb39/0x1520 [ 89.751352][ T5366] vfs_get_tree+0x8f/0x2b0 [ 89.779968][ T5366] page last free pid 5366 tgid 5365 stack trace: [ 89.782583][ T5366] __free_pages_ok+0xa83/0xbe0 [ 89.784573][ T5366] free_large_kmalloc+0x13a/0x1f0 [ 89.792211][ T5366] btree_node_sort+0x117f/0x1760 [ 89.801238][ T5366] bch2_btree_post_write_cleanup+0x11f/0xad0 [ 89.804452][ T5366] bch2_btree_node_prep_for_write+0x337/0x650 [ 89.822026][ T5366] bch2_trans_lock_write+0x669/0xba0 [ 89.824579][ T5366] __bch2_trans_commit+0x2773/0x8870 [ 89.826790][ T5366] bch2_check_dirents+0x1c5c/0x33f0 [ 89.829103][ T5366] __bch2_run_recovery_passes+0x3ba/0x1060 [ 89.831654][ T5366] bch2_run_recovery_passes+0x184/0x210 [ 89.839977][ T5366] bch2_fs_recovery+0x2690/0x3a50 [ 89.870849][ T5366] bch2_fs_start+0xaaf/0xda0 [ 89.873835][ T5366] bch2_fs_get_tree+0xb39/0x1520 [ 89.876107][ T5366] vfs_get_tree+0x8f/0x2b0 [ 89.877941][ T5366] do_new_mount+0x2a2/0x9e0 [ 89.889530][ T5366] __se_sys_mount+0x317/0x410 [ 89.911121][ T5366] [ 89.912408][ T5366] Memory state around the buggy address: [ 89.915051][ T5366] ffff8880543e2f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 89.920284][ T5366] ffff8880543e2f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 89.936377][ T5366] >ffff8880543e3000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 89.940466][ T5366] ^ [ 89.943101][ T5366] ffff8880543e3080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 89.948113][ T5366] ffff8880543e3100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 89.961153][ T5366] ================================================================== [ 89.998829][ T5366] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 90.002486][ T5366] CPU: 0 UID: 0 PID: 5366 Comm: syz.0.0 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 90.011030][ T5366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 90.020664][ T5366] Call Trace: [ 90.022634][ T5366] [ 90.024401][ T5366] dump_stack_lvl+0x99/0x250 [ 90.027170][ T5366] ? __asan_memcpy+0x40/0x70 [ 90.030636][ T5366] ? __pfx_dump_stack_lvl+0x10/0x10 [ 90.035812][ T5366] ? __pfx__printk+0x10/0x10 [ 90.040255][ T5366] vpanic+0x281/0x750 [ 90.044393][ T5366] ? preempt_schedule+0xae/0xc0 [ 90.048523][ T5366] ? __pfx_vpanic+0x10/0x10 [ 90.052460][ T5366] ? preempt_schedule_common+0x83/0xd0 [ 90.056712][ T5366] ? preempt_schedule+0xae/0xc0 [ 90.064155][ T5366] ? __pfx_preempt_schedule+0x10/0x10 [ 90.066414][ T5366] panic+0xb9/0xc0 [ 90.068195][ T5366] ? __pfx_panic+0x10/0x10 [ 90.070299][ T5366] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 90.072879][ T5366] ? bch2_check_dirents+0x1fac/0x33f0 [ 90.075176][ T5366] check_panic_on_warn+0x89/0xb0 [ 90.077292][ T5366] ? bch2_check_dirents+0x1fac/0x33f0 [ 90.079791][ T5366] end_report+0x78/0x160 [ 90.081976][ T5366] kasan_report+0x129/0x150 [ 90.084139][ T5366] ? bch2_check_dirents+0x1fac/0x33f0 [ 90.086912][ T5366] bch2_check_dirents+0x1fac/0x33f0 [ 90.089683][ T5366] ? bch2_check_dirents+0x2f1/0x33f0 [ 90.092250][ T5366] ? desc_read+0x1b8/0x3f0 [ 90.094418][ T5366] ? prb_first_seq+0xfd/0x1a0 [ 90.096656][ T5366] ? __pfx_bch2_check_dirents+0x10/0x10 [ 90.099486][ T5366] ? __pfx_prb_first_seq+0x10/0x10 [ 90.101918][ T5366] ? desc_read+0x1b8/0x3f0 [ 90.105507][ T5366] ? this_cpu_in_panic+0x4f/0x80 [ 90.108485][ T5366] ? _prb_read_valid+0xa07/0xa90 [ 90.111589][ T5366] ? console_flush_all+0x13a/0xc40 [ 90.115698][ T5366] ? up+0xde/0x150 [ 90.117907][ T5366] ? __console_unlock+0x14c/0x1a0 [ 90.120911][ T5366] ? __pfx___console_unlock+0x10/0x10 [ 90.126389][ T5366] ? prb_read_valid+0x3c/0x60 [ 90.128471][ T5366] ? console_unlock+0x21b/0x270 [ 90.130803][ T5366] ? __pfx_console_unlock+0x10/0x10 [ 90.133138][ T5366] ? vprintk_emit+0x63e/0x7a0 [ 90.135231][ T5366] ? __bch2_print+0x176/0x220 [ 90.137207][ T5366] ? bch2_check_dirents+0x2f1/0x33f0 [ 90.141880][ T5366] ? lockdep_hardirqs_on+0x9c/0x150 [ 90.145319][ T5366] __bch2_run_recovery_passes+0x3ba/0x1060 [ 90.148288][ T5366] bch2_run_recovery_passes+0x184/0x210 [ 90.151630][ T5366] bch2_fs_recovery+0x2690/0x3a50 [ 90.157332][ T5366] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 90.162043][ T5366] ? __lock_acquire+0xab9/0xd20 [ 90.164792][ T5366] ? __mutex_trylock_common+0x153/0x260 [ 90.168116][ T5366] ? __lock_acquire+0xab9/0xd20 [ 90.171136][ T5366] ? __lock_acquire+0xab9/0xd20 [ 90.174955][ T5366] ? bch2_fs_start+0xa0f/0xda0 [ 90.178992][ T5366] ? up_write+0x1c4/0x420 [ 90.190285][ T5366] ? bch2_fs_start+0x5e7/0xda0 [ 90.192498][ T5366] bch2_fs_start+0xaaf/0xda0 [ 90.194604][ T5366] ? bch2_fs_start+0x5e7/0xda0 [ 90.196775][ T5366] ? __pfx_bch2_fs_start+0x10/0x10 [ 90.213423][ T5366] ? sget+0x267/0x620 [ 90.215617][ T5366] bch2_fs_get_tree+0xb39/0x1520 [ 90.222363][ T5366] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 90.227278][ T5366] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 90.233494][ T5366] vfs_get_tree+0x8f/0x2b0 [ 90.239247][ T5366] do_new_mount+0x2a2/0x9e0 [ 90.241540][ T5366] ? ns_capable+0x8a/0xf0 [ 90.243564][ T5366] ? __pfx_do_new_mount+0x10/0x10 [ 90.246186][ T5366] ? path_mount+0x61c/0xfe0 [ 90.248177][ T5366] ? user_path_at+0x44/0x60 [ 90.260295][ T5366] __se_sys_mount+0x317/0x410 [ 90.262499][ T5366] ? __pfx___se_sys_mount+0x10/0x10 [ 90.267689][ T5366] ? do_syscall_64+0xbe/0x3b0 [ 90.278326][ T5366] ? __x64_sys_mount+0x20/0xc0 [ 90.280573][ T5366] do_syscall_64+0xfa/0x3b0 [ 90.298450][ T5366] ? lockdep_hardirqs_on+0x9c/0x150 [ 90.300713][ T5366] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.303456][ T5366] ? clear_bhb_loop+0x60/0xb0 [ 90.305590][ T5366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.308211][ T5366] RIP: 0033:0x7f00aef9038a [ 90.322505][ T5366] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 90.331651][ T5366] RSP: 002b:00007f00afe15e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 90.335713][ T5366] RAX: ffffffffffffffda RBX: 00007f00afe15ef0 RCX: 00007f00aef9038a [ 90.345222][ T5366] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 00007f00afe15eb0 [ 90.361435][ T5366] RBP: 00002000000000c0 R08: 00007f00afe15ef0 R09: 0000000000818001 [ 90.365378][ T5366] R10: 0000000000818001 R11: 0000000000000246 R12: 0000200000000080 [ 90.369108][ T5366] R13: 00007f00afe15eb0 R14: 0000000000005968 R15: 0000200000000480 [ 90.372588][ T5366] [ 90.374367][ T5366] Kernel Offset: disabled [ 90.376440][ T5366] Rebooting in 86400 seconds..