Warning: Permanently added '10.128.0.14' (ECDSA) to the list of known hosts. syzkaller login: [ 53.157759][ T3630] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 53.165621][ T3630] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 53.173532][ T3630] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 53.182201][ T3630] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 53.189903][ T3630] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 53.198474][ T3630] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 53.207565][ T3626] Bluetooth: hci0: HCI_REQ-0x0c1a [ 53.274340][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 53.289515][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 53.300340][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 53.310492][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 executing program [ 53.318925][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 53.327443][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 53.475615][ T3626] loop0: detected capacity change from 0 to 32768 [ 53.485656][ T3626] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor247 (3626) [ 53.504304][ T3626] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 53.513136][ T3626] BTRFS info (device loop0): using free space tree [ 53.533998][ T3626] BTRFS info (device loop0): enabling ssd optimizations [ 53.594970][ T3626] ------------[ cut here ]------------ [ 53.600641][ T3626] kernel BUG at fs/btrfs/extent-io-tree.c:517! [ 53.606939][ T3626] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 53.613012][ T3626] CPU: 1 PID: 3626 Comm: syz-executor247 Not tainted 6.1.0-rc6-syzkaller-00015-gc3eb11fbb826 #0 [ 53.623431][ T3626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 53.633490][ T3626] RIP: 0010:clear_state_bit+0x325/0x330 [ 53.639055][ T3626] Code: 2f fe e9 9c fd ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c7 fe ff ff 4c 89 ef e8 a5 0f 2f fe e9 ba fe ff ff e8 bb f7 da fd <0f> 0b 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 [ 53.658658][ T3626] RSP: 0018:ffffc90003cae8d0 EFLAGS: 00010293 [ 53.664735][ T3626] RAX: ffffffff83afa0b5 RBX: 00000000fffffff4 RCX: ffff888022add7c0 [ 53.672714][ T3626] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000 [ 53.680680][ T3626] RBP: 0000000000000000 R08: ffffffff83af9ee2 R09: 00000000ffffffff [ 53.688664][ T3626] R10: fffffbfff1a42e97 R11: 1ffffffff1a42e96 R12: ffff88807f27c540 [ 53.696642][ T3626] R13: ffffc90003caead8 R14: 0000000000001000 R15: dffffc0000000000 [ 53.704627][ T3626] FS: 0000555555ca1300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 53.713560][ T3626] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.720142][ T3626] CR2: 0000000020010000 CR3: 0000000023ed5000 CR4: 00000000003506e0 [ 53.728108][ T3626] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.736349][ T3626] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.744327][ T3626] Call Trace: [ 53.747610][ T3626] [ 53.750562][ T3626] __clear_extent_bit+0x669/0xc60 [ 53.755713][ T3626] clear_record_extent_bits+0x4e/0x80 [ 53.761101][ T3626] __btrfs_qgroup_release_data+0x4b9/0x850 [ 53.766923][ T3626] ? btrfs_replace_extent_map_range+0x122/0x170 [ 53.773162][ T3626] ? btrfs_qgroup_free_data+0x40/0x40 [ 53.778538][ T3626] ? read_lock_is_recursive+0x10/0x10 [ 53.784083][ T3626] ? add_extent_mapping+0x700/0xa30 [ 53.789281][ T3626] btrfs_add_ordered_extent+0xdf/0xbe0 [ 53.794733][ T3626] ? _raw_write_unlock+0x24/0x40 [ 53.799757][ T3626] ? btrfs_replace_extent_map_range+0x134/0x170 [ 53.805994][ T3626] cow_file_range+0x73a/0xfa0 [ 53.810674][ T3626] ? run_delalloc_zoned+0x5e0/0x5e0 [ 53.815958][ T3626] ? find_lock_delalloc_range+0x77e/0x990 [ 53.821676][ T3626] btrfs_run_delalloc_range+0xed4/0x11a0 [ 53.827311][ T3626] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.833130][ T3626] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 53.839124][ T3626] writepage_delalloc+0x25e/0x540 [ 53.844162][ T3626] ? cgroup_rstat_updated+0xca/0x350 [ 53.849458][ T3626] ? trace___extent_writepage+0x300/0x300 [ 53.855175][ T3626] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.860807][ T3626] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 53.866785][ T3626] ? lockdep_hardirqs_on_prepare+0x428/0x790 [ 53.872764][ T3626] ? set_page_extent_mapped+0x156/0x2b0 [ 53.878320][ T3626] __extent_writepage+0x5d6/0x14d0 [ 53.883431][ T3626] ? extent_write_locked_range+0xd30/0xd30 [ 53.889231][ T3626] ? folio_wait_writeback+0x1cd/0x200 [ 53.894689][ T3626] extent_write_cache_pages+0x9e7/0x12d0 [ 53.900316][ T3626] ? __lock_acquire+0x1f60/0x1f60 [ 53.905338][ T3626] ? extent_writepages+0x550/0x550 [ 53.910444][ T3626] ? process_fetch_insn+0x179e/0x1d50 [ 53.915818][ T3626] ? unwind_get_return_address+0x48/0x80 [ 53.921475][ T3626] ? arch_stack_walk+0x98/0xe0 [ 53.926264][ T3626] extent_writepages+0x228/0x550 [ 53.931218][ T3626] ? __extent_writepage+0x14d0/0x14d0 [ 53.936586][ T3626] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.942216][ T3626] ? wbc_attach_and_unlock_inode+0x2fe/0x540 [ 53.948196][ T3626] ? acls_after_inode_item+0x5e0/0x5e0 [ 53.953677][ T3626] do_writepages+0x3c3/0x680 [ 53.958265][ T3626] ? __writepage+0x120/0x120 [ 53.962860][ T3626] ? __lock_acquire+0x1f60/0x1f60 [ 53.967878][ T3626] ? mark_lock+0x2a1/0x350 [ 53.972297][ T3626] ? do_raw_spin_lock+0x148/0x360 [ 53.977316][ T3626] ? do_raw_spin_unlock+0x134/0x8a0 [ 53.982514][ T3626] ? wbc_attach_and_unlock_inode+0x350/0x540 [ 53.988491][ T3626] filemap_fdatawrite_wbc+0x11e/0x170 [ 53.993858][ T3626] filemap_fdatawrite_range+0x175/0x200 [ 53.999398][ T3626] ? filemap_fdatawrite+0x1d0/0x1d0 [ 54.004595][ T3626] ? down_write+0x1a5/0x270 [ 54.009096][ T3626] btrfs_fdatawrite_range+0x4b/0x110 [ 54.014381][ T3626] ? btrfs_wait_ordered_range+0x3e/0x270 [ 54.020007][ T3626] btrfs_wait_ordered_range+0x65/0x270 [ 54.025507][ T3626] btrfs_fallocate+0x421/0x2020 [ 54.030362][ T3626] ? btrfs_file_open+0x80/0x80 [ 54.035152][ T3626] ? read_lock_is_recursive+0x10/0x10 [ 54.040536][ T3626] ? rcu_read_lock_any_held+0xb1/0x130 [ 54.046022][ T3626] ? rcu_read_lock_bh_held+0xf0/0xf0 [ 54.051301][ T3626] ? apparmor_file_permission+0x2da/0x310 [ 54.057021][ T3626] vfs_fallocate+0x515/0x670 [ 54.061609][ T3626] do_vfs_ioctl+0x2187/0x29a0 [ 54.066717][ T3626] ? __x64_compat_sys_ioctl+0x80/0x80 [ 54.072130][ T3626] ? __lock_acquire+0x1f60/0x1f60 [ 54.077154][ T3626] ? slab_free_freelist_hook+0x12e/0x1a0 [ 54.082791][ T3626] ? __kmem_cache_free+0x71/0x110 [ 54.087828][ T3626] ? tomoyo_path_number_perm+0x607/0x760 [ 54.093462][ T3626] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 54.098919][ T3626] ? file_end_write+0x13a/0x230 [ 54.103770][ T3626] ? vfs_write+0x95d/0xc50 [ 54.108191][ T3626] ? lockdep_hardirqs_on_prepare+0x428/0x790 [ 54.114173][ T3626] ? print_irqtrace_events+0x220/0x220 [ 54.119630][ T3626] ? lockdep_hardirqs_on_prepare+0x428/0x790 [ 54.125608][ T3626] ? bpf_lsm_file_ioctl+0x5/0x10 [ 54.130544][ T3626] ? security_file_ioctl+0x9d/0xb0 [ 54.135659][ T3626] __se_sys_ioctl+0x83/0x170 [ 54.140252][ T3626] do_syscall_64+0x3d/0xb0 [ 54.144666][ T3626] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.150564][ T3626] RIP: 0033:0x7f2e2246aac9 [ 54.154971][ T3626] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 54.174668][ T3626] RSP: 002b:00007ffd222883d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 54.183082][ T3626] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f2e2246aac9 [ 54.191050][ T3626] RDX: 0000000020000100 RSI: 0000000040305829 RDI: 0000000000000005 [ 54.199016][ T3626] RBP: 0000000000000006 R08: 0000000000000001 R09: 00007ffd00000000 [ 54.206985][ T3626] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd22288460 [ 54.214952][ T3626] R13: 00007f2e224ed780 R14: 0000000000000003 R15: 00007ffd2228842a [ 54.222926][ T3626] [ 54.225942][ T3626] Modules linked in: [ 54.229951][ T3626] ---[ end trace 0000000000000000 ]--- [ 54.235451][ T3626] RIP: 0010:clear_state_bit+0x325/0x330 [ 54.241033][ T3626] Code: 2f fe e9 9c fd ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c7 fe ff ff 4c 89 ef e8 a5 0f 2f fe e9 ba fe ff ff e8 bb f7 da fd <0f> 0b 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 [ 54.260764][ T3626] RSP: 0018:ffffc90003cae8d0 EFLAGS: 00010293 [ 54.266962][ T3626] RAX: ffffffff83afa0b5 RBX: 00000000fffffff4 RCX: ffff888022add7c0 [ 54.275020][ T3626] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000 [ 54.283061][ T3626] RBP: 0000000000000000 R08: ffffffff83af9ee2 R09: 00000000ffffffff [ 54.291082][ T3626] R10: fffffbfff1a42e97 R11: 1ffffffff1a42e96 R12: ffff88807f27c540 [ 54.299078][ T3626] R13: ffffc90003caead8 R14: 0000000000001000 R15: dffffc0000000000 [ 54.307218][ T3626] FS: 0000555555ca1300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 54.316223][ T3626] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.322877][ T3626] CR2: 0000000020010000 CR3: 0000000023ed5000 CR4: 00000000003506e0 [ 54.330870][ T3626] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 54.338948][ T3626] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 54.347062][ T3626] Kernel panic - not syncing: Fatal exception [ 54.349023][ T9] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared) [ 54.362378][ T3626] Kernel Offset: disabled [ 54.366696][ T3626] Rebooting in 86400 seconds..