./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2494532470 <...> Warning: Permanently added '10.128.1.209' (ED25519) to the list of known hosts. execve("./syz-executor2494532470", ["./syz-executor2494532470"], 0x7ffff5566f00 /* 10 vars */) = 0 brk(NULL) = 0x555575943000 brk(0x555575943d00) = 0x555575943d00 arch_prctl(ARCH_SET_FS, 0x555575943380) = 0 set_tid_address(0x555575943650) = 5829 set_robust_list(0x555575943660, 24) = 0 rseq(0x555575943ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2494532470", 4096) = 28 getrandom("\x9a\x10\x7b\x16\x2a\x1f\x36\xd8", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555575943d00 brk(0x555575964d00) = 0x555575964d00 brk(0x555575965000) = 0x555575965000 mprotect(0x7f2cf4a01000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 getrandom("\x59\x56\xec\xe8\xfa\xff\x56\x17", 8, GRND_NONBLOCK) = 8 mkdir("./syzkaller.LMiCyw", 0700) = 0 chmod("./syzkaller.LMiCyw", 0777) = 0 chdir("./syzkaller.LMiCyw") = 0 mkdir("./0", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5830 attached [pid 5830] set_robust_list(0x555575943660, 24 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5830 [pid 5830] <... set_robust_list resumed>) = 0 [pid 5830] chdir("./0") = 0 [pid 5830] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5830] setpgid(0, 0) = 0 [pid 5830] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5830] write(3, "1000", 4) = 4 [pid 5830] close(3) = 0 [pid 5830] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5830] write(1, "executing program\n", 18) = 18 [pid 5830] memfd_create("syzkaller", 0) = 3 [pid 5830] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5830] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5830] munmap(0x7f2cec400000, 138412032) = 0 [pid 5830] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5830] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5830] close(3) = 0 [pid 5830] close(4) = 0 [pid 5830] mkdir("./file0", 0777) = 0 [ 64.162599][ T5830] loop0: detected capacity change from 0 to 32768 [ 64.243405][ T5830] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 64.266220][ T5830] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 64.275014][ T5830] bcachefs (loop0): Version upgrade required: [ 64.275014][ T5830] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 64.275014][ T5830] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 64.275014][ T5830] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 64.349554][ T5830] bcachefs (loop0): dropping and reconstructing all alloc info [ 64.367161][ T5830] bcachefs (loop0): accounting_read... done [ 64.374033][ T5830] bcachefs (loop0): alloc_read... done [ 64.379621][ T5830] bcachefs (loop0): stripes_read... done [ 64.385332][ T5830] bcachefs (loop0): snapshots_read... done [pid 5830] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5830] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5830] chdir("./file0") = 0 [ 64.391467][ T5830] bcachefs (loop0): check_allocations... done [ 64.411018][ T5830] bcachefs (loop0): going read-write [ 64.421322][ T5830] bcachefs (loop0): done starting filesystem [pid 5830] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5830] ioctl(4, LOOP_CLR_FD) = 0 [pid 5830] close(4) = 0 [pid 5830] truncate("./file1", 61440) = 0 [pid 5830] exit_group(0) = ? [pid 5830] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5830, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=25 /* 0.25 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./0/binderfs") = 0 [ 64.509459][ T5830] syz-executor249 (5830) used greatest stack depth: 16544 bytes left [ 64.557723][ T5829] bcachefs (loop0): shutting down [ 64.562970][ T5829] bcachefs (loop0): going read-only [ 64.568981][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 64.578843][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 64.601055][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3343 [ 64.612749][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3344 [ 64.620956][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 64.639937][ T5829] bcachefs (loop0): shutdown complete umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./0/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./0") = 0 mkdir("./1", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5843 attached [pid 5843] set_robust_list(0x555575943660, 24) = 0 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5843 [pid 5843] chdir("./1") = 0 [pid 5843] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5843] setpgid(0, 0) = 0 [pid 5843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5843] write(3, "1000", 4) = 4 [pid 5843] close(3) = 0 [pid 5843] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5843] write(1, "executing program\n", 18) = 18 [pid 5843] memfd_create("syzkaller", 0) = 3 [pid 5843] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5843] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5843] munmap(0x7f2cec400000, 138412032) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5843] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5843] close(3) = 0 [pid 5843] close(4) = 0 [pid 5843] mkdir("./file0", 0777) = 0 [ 65.883147][ T5843] loop0: detected capacity change from 0 to 32768 [ 65.955401][ T5843] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 65.977508][ T5843] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 65.986329][ T5843] bcachefs (loop0): Version upgrade required: [ 65.986329][ T5843] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 65.986329][ T5843] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 65.986329][ T5843] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 66.058584][ T5843] bcachefs (loop0): dropping and reconstructing all alloc info [ 66.073627][ T5843] bcachefs (loop0): accounting_read... done [ 66.080295][ T5843] bcachefs (loop0): alloc_read... done [ 66.086143][ T5843] bcachefs (loop0): stripes_read... done [ 66.091842][ T5843] bcachefs (loop0): snapshots_read... done [pid 5843] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5843] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5843] chdir("./file0") = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5843] ioctl(4, LOOP_CLR_FD) = 0 [pid 5843] close(4) = 0 [ 66.098007][ T5843] bcachefs (loop0): check_allocations... done [ 66.116419][ T5843] bcachefs (loop0): going read-write [ 66.126122][ T5843] bcachefs (loop0): done starting filesystem [pid 5843] truncate("./file1", 61440) = 0 [pid 5843] exit_group(0) = ? [pid 5843] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5843, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=25 /* 0.25 s */} --- umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./1/binderfs") = 0 [ 66.186093][ T5843] syz-executor249 (5843) used greatest stack depth: 16440 bytes left [ 66.206816][ T5829] bcachefs (loop0): shutting down [ 66.211876][ T5829] bcachefs (loop0): going read-only [ 66.217652][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 66.225371][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 66.244731][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3345 [ 66.256613][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3346 [ 66.264246][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 66.280396][ T5829] bcachefs (loop0): shutdown complete umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./1/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./1") = 0 mkdir("./2", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5854 attached [pid 5854] set_robust_list(0x555575943660, 24) = 0 [pid 5854] chdir("./2" [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5854 [pid 5854] <... chdir resumed>) = 0 [pid 5854] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5854] setpgid(0, 0) = 0 [pid 5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "1000", 4) = 4 [pid 5854] close(3) = 0 [pid 5854] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5854] write(1, "executing program\n", 18) = 18 [pid 5854] memfd_create("syzkaller", 0) = 3 [pid 5854] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5854] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5854] munmap(0x7f2cec400000, 138412032) = 0 [pid 5854] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5854] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5854] close(3) = 0 [pid 5854] close(4) = 0 [pid 5854] mkdir("./file0", 0777) = 0 [ 67.669683][ T5854] loop0: detected capacity change from 0 to 32768 [ 67.736928][ T5854] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 67.758285][ T5854] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 67.766907][ T5854] bcachefs (loop0): Version upgrade required: [ 67.766907][ T5854] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 67.766907][ T5854] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 67.766907][ T5854] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 67.839060][ T5854] bcachefs (loop0): dropping and reconstructing all alloc info [ 67.853812][ T5854] bcachefs (loop0): accounting_read... done [ 67.860155][ T5854] bcachefs (loop0): alloc_read... done [ 67.865865][ T5854] bcachefs (loop0): stripes_read... done [ 67.871548][ T5854] bcachefs (loop0): snapshots_read... done [pid 5854] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5854] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5854] chdir("./file0") = 0 [pid 5854] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5854] ioctl(4, LOOP_CLR_FD) = 0 [pid 5854] close(4) = 0 [pid 5854] truncate("./file1", 61440) = 0 [ 67.877468][ T5854] bcachefs (loop0): check_allocations... done [ 67.895399][ T5854] bcachefs (loop0): going read-write [ 67.904020][ T5854] bcachefs (loop0): done starting filesystem [pid 5854] exit_group(0) = ? [pid 5854] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5854, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=25 /* 0.25 s */} --- umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./2/binderfs") = 0 [ 67.953998][ T5854] syz-executor249 (5854) used greatest stack depth: 15544 bytes left [ 67.973897][ T5829] bcachefs (loop0): shutting down [ 67.979382][ T5829] bcachefs (loop0): going read-only [ 67.984579][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 67.992845][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 68.004934][ T2941] bcachefs (loop0): bch2_write_super(): fatal error loop0: Superblock write was silently dropped! (seq 0 expected 53) [ 68.018307][ T2941] bcachefs (loop0): fatal error - emergency read only [ 68.025393][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3339 [ 68.035444][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3339 [ 68.043272][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 68.059888][ T5829] bcachefs (loop0): shutdown complete umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./2/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./2") = 0 mkdir("./3", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5866 attached [pid 5866] set_robust_list(0x555575943660, 24 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5866 [pid 5866] <... set_robust_list resumed>) = 0 [pid 5866] chdir("./3") = 0 [pid 5866] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5866] setpgid(0, 0) = 0 [pid 5866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5866] write(3, "1000", 4) = 4 [pid 5866] close(3) = 0 [pid 5866] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5866] write(1, "executing program\n", 18) = 18 [pid 5866] memfd_create("syzkaller", 0) = 3 [pid 5866] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5866] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5866] munmap(0x7f2cec400000, 138412032) = 0 [pid 5866] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5866] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5866] close(3) = 0 [pid 5866] close(4) = 0 [pid 5866] mkdir("./file0", 0777) = 0 [ 69.376552][ T5866] loop0: detected capacity change from 0 to 32768 [ 69.432451][ T5866] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 69.454031][ T5866] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 69.462360][ T5866] bcachefs (loop0): Version upgrade required: [ 69.462360][ T5866] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 69.462360][ T5866] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 69.462360][ T5866] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 69.536460][ T5866] bcachefs (loop0): dropping and reconstructing all alloc info [ 69.551601][ T5866] bcachefs (loop0): accounting_read... done [ 69.557944][ T5866] bcachefs (loop0): alloc_read... done [ 69.563478][ T5866] bcachefs (loop0): stripes_read... done [ 69.569349][ T5866] bcachefs (loop0): snapshots_read... done [pid 5866] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5866] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5866] chdir("./file0") = 0 [pid 5866] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 69.575372][ T5866] bcachefs (loop0): check_allocations... done [ 69.593303][ T5866] bcachefs (loop0): going read-write [ 69.602200][ T5866] bcachefs (loop0): done starting filesystem [pid 5866] ioctl(4, LOOP_CLR_FD) = 0 [pid 5866] close(4) = 0 [pid 5866] truncate("./file1", 61440) = 0 [pid 5866] exit_group(0) = ? [pid 5866] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5866, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=23 /* 0.23 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./3/binderfs") = 0 [ 69.702535][ T5829] bcachefs (loop0): shutting down [ 69.707923][ T5829] bcachefs (loop0): going read-only [ 69.713238][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 69.720980][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 69.741237][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3343 [ 69.752304][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3344 [ 69.760837][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 69.777418][ T5829] bcachefs (loop0): shutdown complete umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./3/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./3") = 0 mkdir("./4", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5877 attached [pid 5877] set_robust_list(0x555575943660, 24) = 0 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5877 [pid 5877] chdir("./4") = 0 [pid 5877] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5877] setpgid(0, 0) = 0 [pid 5877] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5877] write(3, "1000", 4) = 4 [pid 5877] close(3) = 0 [pid 5877] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5877] write(1, "executing program\n", 18executing program ) = 18 [pid 5877] memfd_create("syzkaller", 0) = 3 [pid 5877] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5877] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5877] munmap(0x7f2cec400000, 138412032) = 0 [pid 5877] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5877] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5877] close(3) = 0 [pid 5877] close(4) = 0 [pid 5877] mkdir("./file0", 0777) = 0 [ 71.097476][ T5877] loop0: detected capacity change from 0 to 32768 [ 71.166819][ T5877] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 71.188032][ T5877] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 71.196895][ T5877] bcachefs (loop0): Version upgrade required: [ 71.196895][ T5877] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 71.196895][ T5877] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 71.196895][ T5877] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 71.269595][ T5877] bcachefs (loop0): dropping and reconstructing all alloc info [ 71.285133][ T5877] bcachefs (loop0): accounting_read... done [ 71.291634][ T5877] bcachefs (loop0): alloc_read... done [ 71.297299][ T5877] bcachefs (loop0): stripes_read... done [ 71.303046][ T5877] bcachefs (loop0): snapshots_read... done [pid 5877] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5877] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5877] chdir("./file0") = 0 [ 71.309129][ T5877] bcachefs (loop0): check_allocations... done [ 71.327174][ T5877] bcachefs (loop0): going read-write [ 71.335784][ T5877] bcachefs (loop0): done starting filesystem [pid 5877] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5877] ioctl(4, LOOP_CLR_FD) = 0 [pid 5877] close(4) = 0 [pid 5877] truncate("./file1", 61440) = 0 [pid 5877] exit_group(0) = ? [pid 5877] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5877, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=23 /* 0.23 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./4/binderfs") = 0 [ 71.513704][ T5829] bcachefs (loop0): shutting down [ 71.519059][ T5829] bcachefs (loop0): going read-only [ 71.524262][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 71.531982][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3340 [ 71.543435][ T2986] bcachefs (loop0): bch2_write_super(): fatal error loop0: Superblock write was silently dropped! (seq 0 expected 53) [ 71.556898][ T2986] bcachefs (loop0): fatal error - emergency read only [ 71.564273][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3340 [ 71.574715][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3340 [ 71.582449][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 71.599055][ T5829] bcachefs (loop0): shutdown complete umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./4/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./4") = 0 mkdir("./5", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5888 attached [pid 5888] set_robust_list(0x555575943660, 24 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5888 [pid 5888] <... set_robust_list resumed>) = 0 [pid 5888] chdir("./5") = 0 [pid 5888] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5888] setpgid(0, 0) = 0 [pid 5888] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5888] write(3, "1000", 4) = 4 [pid 5888] close(3) = 0 [pid 5888] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5888] write(1, "executing program\n", 18) = 18 [pid 5888] memfd_create("syzkaller", 0) = 3 [pid 5888] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5888] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5888] munmap(0x7f2cec400000, 138412032) = 0 [pid 5888] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5888] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5888] close(3) = 0 [pid 5888] close(4) = 0 [pid 5888] mkdir("./file0", 0777) = 0 [ 72.976447][ T5888] loop0: detected capacity change from 0 to 32768 [ 73.042205][ T5888] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 73.063964][ T5888] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 73.072280][ T5888] bcachefs (loop0): Version upgrade required: [ 73.072280][ T5888] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 73.072280][ T5888] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 73.072280][ T5888] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 73.146705][ T5888] bcachefs (loop0): dropping and reconstructing all alloc info [ 73.161633][ T5888] bcachefs (loop0): accounting_read... done [ 73.167863][ T5888] bcachefs (loop0): alloc_read... done [ 73.173481][ T5888] bcachefs (loop0): stripes_read... done [ 73.179482][ T5888] bcachefs (loop0): snapshots_read... done [pid 5888] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5888] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5888] chdir("./file0") = 0 [pid 5888] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 73.185736][ T5888] bcachefs (loop0): check_allocations... done [ 73.204057][ T5888] bcachefs (loop0): going read-write [ 73.213073][ T5888] bcachefs (loop0): done starting filesystem [pid 5888] ioctl(4, LOOP_CLR_FD) = 0 [pid 5888] close(4) = 0 [pid 5888] truncate("./file1", 61440) = 0 [pid 5888] exit_group(0) = ? [pid 5888] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5888, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=19 /* 0.19 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./5/binderfs") = 0 [ 73.335129][ T5829] bcachefs (loop0): shutting down [ 73.340547][ T5829] bcachefs (loop0): going read-only [ 73.346045][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 73.353511][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 73.372113][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3343 [ 73.383205][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3344 [ 73.391396][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 73.407947][ T5829] bcachefs (loop0): shutdown complete umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./5/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./5") = 0 mkdir("./6", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5900 attached [pid 5900] set_robust_list(0x555575943660, 24) = 0 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5900 [pid 5900] chdir("./6") = 0 [pid 5900] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5900] setpgid(0, 0) = 0 [pid 5900] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5900] write(3, "1000", 4) = 4 [pid 5900] close(3) = 0 [pid 5900] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5900] write(1, "executing program\n", 18) = 18 [pid 5900] memfd_create("syzkaller", 0) = 3 [pid 5900] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5900] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5900] munmap(0x7f2cec400000, 138412032) = 0 [pid 5900] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5900] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5900] close(3) = 0 [pid 5900] close(4) = 0 [pid 5900] mkdir("./file0", 0777) = 0 [ 74.598821][ T5900] loop0: detected capacity change from 0 to 32768 [ 74.682781][ T5900] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 74.704401][ T5900] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 74.713455][ T5900] bcachefs (loop0): Version upgrade required: [ 74.713455][ T5900] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 74.713455][ T5900] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 74.713455][ T5900] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 74.785951][ T5900] bcachefs (loop0): dropping and reconstructing all alloc info [ 74.800806][ T5900] bcachefs (loop0): accounting_read... done [ 74.807045][ T5900] bcachefs (loop0): alloc_read... done [ 74.812583][ T5900] bcachefs (loop0): stripes_read... done [ 74.818403][ T5900] bcachefs (loop0): snapshots_read... done [pid 5900] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5900] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5900] chdir("./file0") = 0 [pid 5900] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5900] ioctl(4, LOOP_CLR_FD) = 0 [pid 5900] close(4) = 0 [ 74.824418][ T5900] bcachefs (loop0): check_allocations... done [ 74.842016][ T5900] bcachefs (loop0): going read-write [ 74.850663][ T5900] bcachefs (loop0): done starting filesystem [pid 5900] truncate("./file1", 61440) = 0 [pid 5900] exit_group(0) = ? [pid 5900] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5900, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} --- umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 74.882131][ T5900] syz-executor249 (5900) used greatest stack depth: 15280 bytes left newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./6/binderfs") = 0 [ 75.014681][ T5829] bcachefs (loop0): shutting down [ 75.019964][ T5829] bcachefs (loop0): going read-only [ 75.025242][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 75.034384][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 75.046410][ T2941] bcachefs (loop0): bch2_write_super(): fatal error loop0: Superblock write was silently dropped! (seq 0 expected 53) [ 75.059679][ T2941] bcachefs (loop0): fatal error - emergency read only [ 75.067561][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3339 [ 75.078004][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3339 [ 75.086155][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 75.103326][ T5829] bcachefs (loop0): shutdown complete umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./6/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./6") = 0 mkdir("./7", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5911 attached , child_tidptr=0x555575943650) = 5911 [pid 5911] set_robust_list(0x555575943660, 24) = 0 [pid 5911] chdir("./7") = 0 [pid 5911] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5911] setpgid(0, 0) = 0 [pid 5911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5911] write(3, "1000", 4) = 4 [pid 5911] close(3) = 0 [pid 5911] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5911] write(1, "executing program\n", 18executing program ) = 18 [pid 5911] memfd_create("syzkaller", 0) = 3 [pid 5911] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5911] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5911] munmap(0x7f2cec400000, 138412032) = 0 [pid 5911] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5911] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5911] close(3) = 0 [pid 5911] close(4) = 0 [pid 5911] mkdir("./file0", 0777) = 0 [ 76.429509][ T5911] loop0: detected capacity change from 0 to 32768 [ 76.497202][ T5911] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 76.518687][ T5911] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 76.527014][ T5911] bcachefs (loop0): Version upgrade required: [ 76.527014][ T5911] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 76.527014][ T5911] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 76.527014][ T5911] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 76.599142][ T5911] bcachefs (loop0): dropping and reconstructing all alloc info [ 76.614166][ T5911] bcachefs (loop0): accounting_read... done [ 76.620462][ T5911] bcachefs (loop0): alloc_read... done [ 76.626157][ T5911] bcachefs (loop0): stripes_read... done [ 76.631972][ T5911] bcachefs (loop0): snapshots_read... done [pid 5911] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5911] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5911] chdir("./file0") = 0 [pid 5911] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5911] ioctl(4, LOOP_CLR_FD) = 0 [pid 5911] close(4) = 0 [pid 5911] truncate("./file1", 61440) = 0 [pid 5911] exit_group(0) = ? [ 76.637933][ T5911] bcachefs (loop0): check_allocations... done [ 76.655434][ T5911] bcachefs (loop0): going read-write [ 76.663900][ T5911] bcachefs (loop0): done starting filesystem [pid 5911] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5911, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=25 /* 0.25 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./7/binderfs") = 0 [ 76.725679][ T5829] bcachefs (loop0): shutting down [ 76.730788][ T5829] bcachefs (loop0): going read-only [ 76.737182][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 76.745127][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3340 [ 76.757567][ T2941] bcachefs (loop0): bch2_write_super(): fatal error loop0: Superblock write was silently dropped! (seq 0 expected 53) [ 76.770677][ T2941] bcachefs (loop0): fatal error - emergency read only [ 76.778043][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3340 [ 76.788213][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3340 [ 76.796158][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 76.811975][ T5829] bcachefs (loop0): shutdown complete umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./7/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./7") = 0 mkdir("./8", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5922 attached [pid 5922] set_robust_list(0x555575943660, 24) = 0 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5922 [pid 5922] chdir("./8") = 0 [pid 5922] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5922] setpgid(0, 0) = 0 [pid 5922] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5922] write(3, "1000", 4) = 4 [pid 5922] close(3) = 0 [pid 5922] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5922] write(1, "executing program\n", 18) = 18 [pid 5922] memfd_create("syzkaller", 0) = 3 [pid 5922] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5922] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5922] munmap(0x7f2cec400000, 138412032) = 0 [pid 5922] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5922] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5922] close(3) = 0 [pid 5922] close(4) = 0 [pid 5922] mkdir("./file0", 0777) = 0 [ 78.139224][ T5922] loop0: detected capacity change from 0 to 32768 [ 78.217100][ T5922] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 78.238374][ T5922] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 78.246916][ T5922] bcachefs (loop0): Version upgrade required: [ 78.246916][ T5922] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 78.246916][ T5922] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 78.246916][ T5922] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 78.319140][ T5922] bcachefs (loop0): dropping and reconstructing all alloc info [ 78.333762][ T5922] bcachefs (loop0): accounting_read... done [ 78.340093][ T5922] bcachefs (loop0): alloc_read... done [ 78.345650][ T5922] bcachefs (loop0): stripes_read... done [ 78.351337][ T5922] bcachefs (loop0): snapshots_read... done [pid 5922] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5922] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5922] chdir("./file0") = 0 [pid 5922] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5922] ioctl(4, LOOP_CLR_FD) = 0 [pid 5922] close(4) = 0 [ 78.357418][ T5922] bcachefs (loop0): check_allocations... done [ 78.376528][ T5922] bcachefs (loop0): going read-write [ 78.384873][ T5922] bcachefs (loop0): done starting filesystem [pid 5922] truncate("./file1", 61440) = 0 [pid 5922] exit_group(0) = ? [pid 5922] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5922, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./8/binderfs") = 0 [ 78.460842][ T5829] bcachefs (loop0): shutting down [ 78.466487][ T5829] bcachefs (loop0): going read-only [ 78.471706][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 78.479452][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 78.498777][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3343 [ 78.510129][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3344 [ 78.517910][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 78.533861][ T5829] bcachefs (loop0): shutdown complete umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./8/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./8") = 0 mkdir("./9", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5933 attached [pid 5933] set_robust_list(0x555575943660, 24 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5933 [pid 5933] <... set_robust_list resumed>) = 0 [pid 5933] chdir("./9") = 0 [pid 5933] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5933] setpgid(0, 0) = 0 [pid 5933] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5933] write(3, "1000", 4) = 4 [pid 5933] close(3) = 0 [pid 5933] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5933] write(1, "executing program\n", 18executing program ) = 18 [pid 5933] memfd_create("syzkaller", 0) = 3 [pid 5933] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5933] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5933] munmap(0x7f2cec400000, 138412032) = 0 [pid 5933] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5933] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5933] close(3) = 0 [pid 5933] close(4) = 0 [pid 5933] mkdir("./file0", 0777) = 0 [ 79.809617][ T5933] loop0: detected capacity change from 0 to 32768 [ 79.877444][ T5933] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 79.898908][ T5933] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 79.907441][ T5933] bcachefs (loop0): Version upgrade required: [ 79.907441][ T5933] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 79.907441][ T5933] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 79.907441][ T5933] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 79.979734][ T5933] bcachefs (loop0): dropping and reconstructing all alloc info [ 79.994470][ T5933] bcachefs (loop0): accounting_read... done [ 80.000699][ T5933] bcachefs (loop0): alloc_read... done [ 80.006291][ T5933] bcachefs (loop0): stripes_read... done [ 80.011962][ T5933] bcachefs (loop0): snapshots_read... done [pid 5933] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5933] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5933] chdir("./file0") = 0 [pid 5933] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 80.018077][ T5933] bcachefs (loop0): check_allocations... done [ 80.034853][ T5933] bcachefs (loop0): going read-write [ 80.043306][ T5933] bcachefs (loop0): done starting filesystem [pid 5933] ioctl(4, LOOP_CLR_FD) = 0 [pid 5933] close(4) = 0 [pid 5933] truncate("./file1", 61440) = 0 [pid 5933] exit_group(0) = ? [pid 5933] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5933, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=27 /* 0.27 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./9/binderfs") = 0 [ 80.126743][ T5829] bcachefs (loop0): shutting down [ 80.131815][ T5829] bcachefs (loop0): going read-only [ 80.137495][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 80.144885][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 80.166733][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3343 [ 80.179002][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3344 [ 80.186859][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 80.202835][ T5829] bcachefs (loop0): shutdown complete umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./9/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./9") = 0 mkdir("./10", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5944 attached [pid 5944] set_robust_list(0x555575943660, 24 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5944 [pid 5944] <... set_robust_list resumed>) = 0 [pid 5944] chdir("./10") = 0 [pid 5944] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5944] setpgid(0, 0) = 0 [pid 5944] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5944] write(3, "1000", 4) = 4 [pid 5944] close(3) = 0 [pid 5944] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5944] write(1, "executing program\n", 18) = 18 [pid 5944] memfd_create("syzkaller", 0) = 3 [pid 5944] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5944] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5944] munmap(0x7f2cec400000, 138412032) = 0 [pid 5944] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5944] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5944] close(3) = 0 [pid 5944] close(4) = 0 [pid 5944] mkdir("./file0", 0777) = 0 [ 81.616291][ T5944] loop0: detected capacity change from 0 to 32768 [ 81.694133][ T5944] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 81.715282][ T5944] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 81.723651][ T5944] bcachefs (loop0): Version upgrade required: [ 81.723651][ T5944] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 81.723651][ T5944] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 81.723651][ T5944] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 81.796372][ T5944] bcachefs (loop0): dropping and reconstructing all alloc info [ 81.811725][ T5944] bcachefs (loop0): accounting_read... done [ 81.817925][ T5944] bcachefs (loop0): alloc_read... done [ 81.823473][ T5944] bcachefs (loop0): stripes_read... done [ 81.829261][ T5944] bcachefs (loop0): snapshots_read... done [pid 5944] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5944] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5944] chdir("./file0") = 0 [pid 5944] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5944] ioctl(4, LOOP_CLR_FD) = 0 [pid 5944] close(4) = 0 [pid 5944] truncate("./file1", 61440) = 0 [pid 5944] exit_group(0) = ? [pid 5944] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5944, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=22 /* 0.22 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 81.835151][ T5944] bcachefs (loop0): check_allocations... done [ 81.852054][ T5944] bcachefs (loop0): going read-write [ 81.860540][ T5944] bcachefs (loop0): done starting filesystem umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./10/binderfs") = 0 [ 81.937056][ T46] cfg80211: failed to load regulatory.db [ 81.952472][ T5829] bcachefs (loop0): shutting down [ 81.957730][ T5829] bcachefs (loop0): going read-only [ 81.962923][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 81.970970][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 81.982972][ T2941] bcachefs (loop0): bch2_write_super(): fatal error loop0: Superblock write was silently dropped! (seq 0 expected 53) [ 81.996442][ T2941] bcachefs (loop0): fatal error - emergency read only [ 82.003594][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3339 [ 82.013645][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3339 [ 82.021568][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 82.037458][ T5829] bcachefs (loop0): shutdown complete umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./10/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./10") = 0 mkdir("./11", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5955 attached [pid 5955] set_robust_list(0x555575943660, 24) = 0 [pid 5955] chdir("./11") = 0 [pid 5955] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5829] <... clone resumed>, child_tidptr=0x555575943650) = 5955 [pid 5955] setpgid(0, 0) = 0 [pid 5955] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5955] write(3, "1000", 4) = 4 [pid 5955] close(3) = 0 [pid 5955] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5955] write(1, "executing program\n", 18) = 18 [pid 5955] memfd_create("syzkaller", 0) = 3 [pid 5955] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5955] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5955] munmap(0x7f2cec400000, 138412032) = 0 [pid 5955] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5955] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5955] close(3) = 0 [pid 5955] close(4) = 0 [pid 5955] mkdir("./file0", 0777) = 0 [ 83.310589][ T5955] loop0: detected capacity change from 0 to 32768 [ 83.365878][ T5955] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 83.387113][ T5955] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 83.395280][ T5955] bcachefs (loop0): Version upgrade required: [ 83.395280][ T5955] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 83.395280][ T5955] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 83.395280][ T5955] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 83.467847][ T5955] bcachefs (loop0): dropping and reconstructing all alloc info [ 83.482432][ T5955] bcachefs (loop0): accounting_read... done [ 83.488736][ T5955] bcachefs (loop0): alloc_read... done [ 83.494358][ T5955] bcachefs (loop0): stripes_read... done [ 83.500219][ T5955] bcachefs (loop0): snapshots_read... done [pid 5955] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5955] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5955] chdir("./file0") = 0 [pid 5955] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 83.506343][ T5955] bcachefs (loop0): check_allocations... done [ 83.522977][ T5955] bcachefs (loop0): going read-write [ 83.531650][ T5955] bcachefs (loop0): done starting filesystem [pid 5955] ioctl(4, LOOP_CLR_FD) = 0 [pid 5955] close(4) = 0 [pid 5955] truncate("./file1", 61440) = 0 [pid 5955] exit_group(0) = ? [pid 5955] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5955, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=25 /* 0.25 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./11/binderfs") = 0 [ 83.620331][ T5829] bcachefs (loop0): shutting down [ 83.625396][ T5829] bcachefs (loop0): going read-only [ 83.631246][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 83.638916][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 83.659902][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3343 [ 83.671082][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3344 [ 83.679031][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 83.694781][ T5829] bcachefs (loop0): shutdown complete umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55557594c730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55557594c730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./11/file0") = 0 getdents64(3, 0x5555759446f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./11") = 0 mkdir("./12", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5966 attached , child_tidptr=0x555575943650) = 5966 [pid 5966] set_robust_list(0x555575943660, 24) = 0 [pid 5966] chdir("./12") = 0 [pid 5966] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5966] setpgid(0, 0) = 0 [pid 5966] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5966] write(3, "1000", 4) = 4 [pid 5966] close(3) = 0 [pid 5966] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5966] write(1, "executing program\n", 18) = 18 [pid 5966] memfd_create("syzkaller", 0) = 3 [pid 5966] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2cec400000 [pid 5966] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5966] munmap(0x7f2cec400000, 138412032) = 0 [pid 5966] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5966] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5966] close(3) = 0 [pid 5966] close(4) = 0 [pid 5966] mkdir("./file0", 0777) = 0 [ 84.974938][ T5966] loop0: detected capacity change from 0 to 32768 [ 85.051173][ T5966] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc,nocow,no_data_io [ 85.072555][ T5966] bcachefs (loop0): recovering from clean shutdown, journal seq 3338 [ 85.081319][ T5966] bcachefs (loop0): Version upgrade required: [ 85.081319][ T5966] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 85.081319][ T5966] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 85.081319][ T5966] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 85.155835][ T5966] bcachefs (loop0): dropping and reconstructing all alloc info [ 85.170937][ T5966] bcachefs (loop0): accounting_read... done [ 85.177305][ T5966] bcachefs (loop0): alloc_read... done [ 85.182863][ T5966] bcachefs (loop0): stripes_read... done [ 85.188719][ T5966] bcachefs (loop0): snapshots_read... done [pid 5966] mount("/dev/loop0", "./file0", "bcachefs", MS_NOEXEC|MS_POSIXACL|MS_RELATIME, "\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\xfd\xff\x63\x6f\x6d\x70\x72\x65\x33\x73\x69\x6f\x6e\x3d\x6c\x7a\x34\x2c\x72\x65\x63\x6f\x6e\x73\x74\x72\x75\x63\x74\x5f\x61\x6c\x6c\x6f\x63\x2c\x6e\x6f\x63\x6f\x77\x2c\x6e\x6f\x65\x78\x63\x6c\x2c\x62\x74\x72\x65\x65\x5f\x6e\x6f\x64\x65\x5f\x70\x72\x65\x66\x65\x74\x63\x68\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x64\x65"...) = 0 [pid 5966] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5966] chdir("./file0") = 0 [pid 5966] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5966] ioctl(4, LOOP_CLR_FD) = 0 [pid 5966] close(4) = 0 [ 85.194624][ T5966] bcachefs (loop0): check_allocations... done [ 85.212432][ T5966] bcachefs (loop0): going read-write [ 85.221226][ T5966] bcachefs (loop0): done starting filesystem [pid 5966] truncate("./file1", 61440) = 0 [pid 5966] exit_group(0) = ? [pid 5966] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5966, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=24 /* 0.24 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555759446f0 /* 4 entries */, 32768) = 112 umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./12/binderfs") = 0 [ 85.302749][ T5829] bcachefs (loop0): shutting down [ 85.308500][ T5829] bcachefs (loop0): going read-only [ 85.313739][ T5829] bcachefs (loop0): finished waiting for writes to stop [ 85.321457][ T5829] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3339 [ 85.338471][ T5829] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3340 [ 85.349562][ T5829] bcachefs (loop0): unshutdown complete, journal seq 3341 [ 85.357404][ T5829] bcachefs (loop0): done going read-only, filesystem not clean [ 85.373861][ T5829] bcachefs (loop0): shutdown complete [ 86.059018][ T5829] ------------[ cut here ]------------ [ 86.066261][ T5829] kernel BUG at fs/bcachefs/btree_cache.c:614! [ 86.073736][ T5829] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 86.080711][ T5829] CPU: 1 UID: 0 PID: 5829 Comm: syz-executor249 Not tainted 6.12.0-rc6-syzkaller-00192-gf1dce1f09380 #0 [ 86.091823][ T5829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 86.102310][ T5829] RIP: 0010:bch2_fs_btree_cache_exit+0x1521/0x1530 [ 86.108806][ T5829] Code: fd 90 0f 0b e8 70 18 84 fd 90 0f 0b e8 68 18 84 fd 90 0f 0b e8 60 18 84 fd 90 0f 0b e8 58 18 84 fd 90 0f 0b e8 50 18 84 fd 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90 [ 86.128416][ T5829] RSP: 0018:ffffc90003d07b18 EFLAGS: 00010293 [ 86.134477][ T5829] RAX: ffffffff8410c1b0 RBX: 0000000000000002 RCX: ffff888030439e00 [ 86.142441][ T5829] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000 [ 86.150403][ T5829] RBP: ffff88807da36000 R08: ffffffff8410b85c R09: 1ffff1100eab03b6 [ 86.158367][ T5829] R10: dffffc0000000000 R11: ffffed100eab03b7 R12: ffff88807da36228 [ 86.166327][ T5829] R13: dffffc0000000000 R14: ffff888075581c78 R15: ffff888075580000 [ 86.174288][ T5829] FS: 0000555575943380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 86.183208][ T5829] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.189960][ T5829] CR2: 00007ffef9018000 CR3: 0000000031bc6000 CR4: 00000000003526f0 [ 86.197924][ T5829] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 86.205902][ T5829] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 86.213878][ T5829] Call Trace: [ 86.217150][ T5829] [ 86.220076][ T5829] ? __die_body+0x5f/0xb0 [ 86.224398][ T5829] ? die+0x9e/0xc0 [ 86.228150][ T5829] ? do_trap+0x15a/0x3a0 [ 86.232402][ T5829] ? bch2_fs_btree_cache_exit+0x1521/0x1530 [ 86.238286][ T5829] ? do_error_trap+0x1dc/0x2c0 [ 86.243042][ T5829] ? bch2_fs_btree_cache_exit+0x1521/0x1530 [ 86.248928][ T5829] ? __pfx_do_error_trap+0x10/0x10 [ 86.254036][ T5829] ? handle_invalid_op+0x34/0x40 [ 86.258963][ T5829] ? bch2_fs_btree_cache_exit+0x1521/0x1530 [ 86.264852][ T5829] ? exc_invalid_op+0x38/0x50 [ 86.269536][ T5829] ? asm_exc_invalid_op+0x1a/0x20 [ 86.274555][ T5829] ? bch2_fs_btree_cache_exit+0xbcc/0x1530 [ 86.280529][ T5829] ? bch2_fs_btree_cache_exit+0x1520/0x1530 [ 86.286415][ T5829] ? bch2_fs_btree_cache_exit+0x1521/0x1530 [ 86.292562][ T5829] ? bch2_fs_btree_cache_exit+0x1520/0x1530 [ 86.298464][ T5829] bch2_fs_release+0x20e/0x7d0 [ 86.303230][ T5829] ? kobject_put+0x44d/0x480 [ 86.307816][ T5829] kobject_put+0x22f/0x480 [ 86.312223][ T5829] deactivate_locked_super+0xc4/0x130 [ 86.317593][ T5829] cleanup_mnt+0x41f/0x4b0 [ 86.322025][ T5829] ? lockdep_hardirqs_on+0x99/0x150 [ 86.327217][ T5829] task_work_run+0x24f/0x310 [ 86.331900][ T5829] ? __pfx_task_work_run+0x10/0x10 [ 86.337085][ T5829] ? path_umount+0x284/0xf70 [ 86.341696][ T5829] ptrace_notify+0x2d2/0x380 [ 86.346279][ T5829] ? __pfx_path_umount+0x10/0x10 [ 86.351208][ T5829] ? __pfx_ptrace_notify+0x10/0x10 [ 86.356313][ T5829] ? __x64_sys_umount+0x123/0x170 [ 86.361329][ T5829] ? __pfx___x64_sys_umount+0x10/0x10 [ 86.366694][ T5829] syscall_exit_work+0xc6/0x190 [ 86.371629][ T5829] syscall_exit_to_user_mode+0x279/0x370 [ 86.377265][ T5829] do_syscall_64+0x100/0x230 [ 86.381937][ T5829] ? clear_bhb_loop+0x35/0x90 [ 86.386611][ T5829] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.392499][ T5829] RIP: 0033:0x7f2cf4989347 [ 86.396919][ T5829] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 [ 86.416519][ T5829] RSP: 002b:00007ffef90160d8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6 [ 86.424942][ T5829] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f2cf4989347 [ 86.432913][ T5829] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffef9016190 [ 86.441048][ T5829] RBP: 00007ffef9016190 R08: 0000000000000000 R09: 0000000000000000 [ 86.449011][ T5829] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffef90171f0 [ 86.457059][ T5829] R13: 00005555759446c0 R14: 000000000000000d R15: 431bde82d7b634db [ 86.465044][ T5829] [ 86.468056][ T5829] Modules linked in: [ 86.472087][ T5829] ---[ end trace 0000000000000000 ]--- [ 86.477628][ T5829] RIP: 0010:bch2_fs_btree_cache_exit+0x1521/0x1530 [ 86.484154][ T5829] Code: fd 90 0f 0b e8 70 18 84 fd 90 0f 0b e8 68 18 84 fd 90 0f 0b e8 60 18 84 fd 90 0f 0b e8 58 18 84 fd 90 0f 0b e8 50 18 84 fd 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90 [ 86.503847][ T5829] RSP: 0018:ffffc90003d07b18 EFLAGS: 00010293 [ 86.510200][ T5829] RAX: ffffffff8410c1b0 RBX: 0000000000000002 RCX: ffff888030439e00 [ 86.518221][ T5829] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000 [ 86.526237][ T5829] RBP: ffff88807da36000 R08: ffffffff8410b85c R09: 1ffff1100eab03b6 [ 86.534196][ T5829] R10: dffffc0000000000 R11: ffffed100eab03b7 R12: ffff88807da36228 [ 86.542196][ T5829] R13: dffffc0000000000 R14: ffff888075581c78 R15: ffff888075580000 [ 86.550226][ T5829] FS: 0000555575943380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 86.559183][ T5829] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.565794][ T5829] CR2: 00007ffef9018000 CR3: 0000000031bc6000 CR4: 00000000003526f0 [ 86.573758][ T5829] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 86.581781][ T5829] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 86.590321][ T5829] Kernel panic - not syncing: Fatal exception [ 86.596726][ T5829] Kernel Offset: disabled [ 86.601044][ T5829] Rebooting in 86400 seconds..