./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1084193773 <...> Warning: Permanently added '10.128.1.163' (ED25519) to the list of known hosts. execve("./syz-executor1084193773", ["./syz-executor1084193773"], 0x7ffd64c1e620 /* 10 vars */) = 0 brk(NULL) = 0x55556f8f4000 brk(0x55556f8f4d00) = 0x55556f8f4d00 arch_prctl(ARCH_SET_FS, 0x55556f8f4380) = 0 set_tid_address(0x55556f8f4650) = 5777 set_robust_list(0x55556f8f4660, 24) = 0 rseq(0x55556f8f4ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1084193773", 4096) = 28 getrandom("\xae\xb2\xc4\x08\xe1\x4a\xa4\x93", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55556f8f4d00 brk(0x55556f915d00) = 0x55556f915d00 brk(0x55556f916000) = 0x55556f916000 mprotect(0x7f5ddf193000, 16384, PROT_READ) = 0 mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000 mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000 mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5778 attached , child_tidptr=0x55556f8f4650) = 5778 [pid 5778] set_robust_list(0x55556f8f4660, 24) = 0 [pid 5778] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5778] setpgid(0, 0) = 0 [pid 5778] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5778] write(3, "1000", 4executing program ) = 4 [pid 5778] close(3) = 0 [pid 5778] write(1, "executing program\n", 18) = 18 [pid 5778] prlimit64(0, RLIMIT_RTPRIO, {rlim_cur=11, rlim_max=139}, NULL) = 0 [pid 5778] sched_setscheduler(0, SCHED_FIFO, [7]) = 0 [pid 5778] memfd_create("syzkaller", 0) = 3 [pid 5778] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5dd6c00000 [pid 5778] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5778] munmap(0x7f5dd6c00000, 138412032) = 0 [pid 5778] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5778] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5778] close(3) = 0 [pid 5778] close(4) = 0 [pid 5778] mkdir("./file1", 0777) = 0 [ 181.776878][ T5778] loop0: detected capacity change from 0 to 32768 [ 181.919219][ T5778] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=gzip,background_compression=zstd,journal_flush_disabled,fsck,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 181.943166][ T5778] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 181.952704][ T5778] bcachefs (loop0): Version upgrade required: [ 181.952704][ T5778] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 181.952704][ T5778] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size [ 181.952704][ T5778] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 182.026463][ T5778] bcachefs (loop0): dropping and reconstructing all alloc info [ 182.069898][ T5778] bcachefs (loop0): accounting_read... done [ 182.076486][ T5778] bcachefs (loop0): alloc_read... done [ 182.082528][ T5778] bcachefs (loop0): stripes_read... done [ 182.088612][ T5778] bcachefs (loop0): snapshots_read... done [ 182.094840][ T5778] bcachefs (loop0): check_allocations... done [ 182.172492][ T5778] bcachefs (loop0): going read-write [ 182.181433][ T5778] bcachefs (loop0): journal_replay... [ 182.235052][ T3010] ===================================================== [ 182.247758][ T3010] BUG: KMSAN: uninit-value in bch2_bkey_cmp_packed_inlined+0x8d0/0xd50 [ 182.256298][ T3010] bch2_bkey_cmp_packed_inlined+0x8d0/0xd50 [ 182.262476][ T3010] bch2_sort_keys_keep_unwritten_whiteouts+0xebd/0x1840 [ 182.269693][ T3010] __bch2_btree_node_write+0x3b3f/0x6870 [ 182.275520][ T3010] bch2_btree_node_write_trans+0xd7/0x890 [ 182.281516][ T3010] btree_interior_update_work+0x3c02/0x48c0 [ 182.287589][ T3010] process_scheduled_works+0xc1a/0x1e80 [ 182.293475][ T3010] worker_thread+0xea7/0x14f0 [ 182.298491][ T3010] kthread+0x6b9/0xef0 [ 182.302725][ T3010] ret_from_fork+0x6d/0x90 [ 182.307235][ T3010] ret_from_fork_asm+0x1a/0x30 [ 182.312252][ T3010] [ 182.314648][ T3010] Uninit was created at: [ 182.319249][ T3010] ___kmalloc_large_node+0x22c/0x370 [ 182.324694][ T3010] __kmalloc_large_node_noprof+0x3f/0x1e0 [ 182.330707][ T3010] __kmalloc_node_noprof+0xc96/0x1250 [ 182.336306][ T3010] __kvmalloc_node_noprof+0xc0/0x2d0 [ 182.341888][ T3010] __bch2_btree_node_mem_alloc+0x2be/0xa80 [ 182.347882][ T3010] bch2_fs_btree_cache_init+0x4f0/0xb60 [ 182.353765][ T3010] bch2_fs_open+0x4d84/0x5ba0 [ 182.358710][ T3010] bch2_fs_get_tree+0x98a/0x24e0 [ 182.363833][ T3010] vfs_get_tree+0xb1/0x5a0 [ 182.368499][ T3010] do_new_mount+0x71f/0x15e0 [ 182.373255][ T3010] path_mount+0x742/0x1f10 [ 182.377794][ T3010] __se_sys_mount+0x71f/0x800 [ 182.382807][ T3010] __x64_sys_mount+0xe4/0x150 [ 182.387586][ T3010] x64_sys_call+0x39bf/0x3c30 [ 182.392514][ T3010] do_syscall_64+0xcd/0x1e0 [ 182.397183][ T3010] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.403399][ T3010] [ 182.405824][ T3010] CPU: 1 UID: 0 PID: 3010 Comm: kworker/u8:7 Not tainted 6.14.0-rc2-syzkaller-00281-g496659003dac #0 [ 182.416955][ T3010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 182.427261][ T3010] Workqueue: btree_update btree_interior_update_work [ 182.434262][ T3010] ===================================================== [ 182.441432][ T3010] Disabling lock debugging due to kernel taint [ 182.447687][ T3010] Kernel panic - not syncing: kmsan.panic set ... [ 182.454182][ T3010] CPU: 1 UID: 0 PID: 3010 Comm: kworker/u8:7 Tainted: G B 6.14.0-rc2-syzkaller-00281-g496659003dac #0 [ 182.466630][ T3010] Tainted: [B]=BAD_PAGE [ 182.470841][ T3010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 182.480986][ T3010] Workqueue: btree_update btree_interior_update_work [ 182.487819][ T3010] Call Trace: [ 182.491191][ T3010] [ 182.494217][ T3010] dump_stack_lvl+0x216/0x2d0 [ 182.499063][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.505018][ T3010] dump_stack+0x1e/0x24 [ 182.509311][ T3010] panic+0x4e2/0xcf0 [ 182.513331][ T3010] ? kmsan_get_metadata+0x81/0x1c0 [ 182.518601][ T3010] kmsan_report+0x2c7/0x2d0 [ 182.523245][ T3010] ? filter_irq_stacks+0x60/0x1a0 [ 182.528406][ T3010] ? __msan_warning+0x95/0x120 [ 182.533328][ T3010] ? bch2_bkey_cmp_packed_inlined+0x8d0/0xd50 [ 182.539504][ T3010] ? bch2_sort_keys_keep_unwritten_whiteouts+0xebd/0x1840 [ 182.546815][ T3010] ? __bch2_btree_node_write+0x3b3f/0x6870 [ 182.552740][ T3010] ? bch2_btree_node_write_trans+0xd7/0x890 [ 182.558740][ T3010] ? btree_interior_update_work+0x3c02/0x48c0 [ 182.564953][ T3010] ? process_scheduled_works+0xc1a/0x1e80 [ 182.570823][ T3010] ? worker_thread+0xea7/0x14f0 [ 182.575763][ T3010] ? kthread+0x6b9/0xef0 [ 182.580171][ T3010] ? ret_from_fork+0x6d/0x90 [ 182.584862][ T3010] ? ret_from_fork_asm+0x1a/0x30 [ 182.589903][ T3010] ? kmsan_get_metadata+0x13e/0x1c0 [ 182.595226][ T3010] ? kmsan_get_metadata+0x13e/0x1c0 [ 182.600555][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.606483][ T3010] ? bch2_bkey_cmp_packed_inlined+0x43/0xd50 [ 182.612577][ T3010] ? filter_irq_stacks+0x60/0x1a0 [ 182.617717][ T3010] ? stack_depot_save_flags+0x2c/0x750 [ 182.623291][ T3010] ? kmsan_get_metadata+0x13e/0x1c0 [ 182.628608][ T3010] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 182.635087][ T3010] ? kmsan_get_metadata+0x13e/0x1c0 [ 182.640401][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.646333][ T3010] __msan_warning+0x95/0x120 [ 182.651055][ T3010] bch2_bkey_cmp_packed_inlined+0x8d0/0xd50 [ 182.657073][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.663023][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.668964][ T3010] bch2_sort_keys_keep_unwritten_whiteouts+0xebd/0x1840 [ 182.676056][ T3010] __bch2_btree_node_write+0x3b3f/0x6870 [ 182.681854][ T3010] ? kmsan_get_metadata+0x13e/0x1c0 [ 182.687196][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.693127][ T3010] ? kmsan_get_metadata+0x13e/0x1c0 [ 182.698471][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.704449][ T3010] bch2_btree_node_write_trans+0xd7/0x890 [ 182.710294][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.716320][ T3010] btree_interior_update_work+0x3c02/0x48c0 [ 182.722419][ T3010] ? btree_interior_update_work+0x39b6/0x48c0 [ 182.728688][ T3010] ? __pfx_btree_interior_update_work+0x10/0x10 [ 182.735074][ T3010] process_scheduled_works+0xc1a/0x1e80 [ 182.740796][ T3010] worker_thread+0xea7/0x14f0 [ 182.745599][ T3010] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 182.751626][ T3010] kthread+0x6b9/0xef0 [ 182.755800][ T3010] ? __pfx_worker_thread+0x10/0x10 [ 182.761066][ T3010] ? __pfx_kthread+0x10/0x10 [ 182.765763][ T3010] ret_from_fork+0x6d/0x90 [ 182.770285][ T3010] ? __pfx_kthread+0x10/0x10 [ 182.774974][ T3010] ret_from_fork_asm+0x1a/0x30 [ 182.779876][ T3010] [ 182.783166][ T3010] Kernel Offset: disabled [ 182.787552][ T3010] Rebooting in 86400 seconds..