Warning: Permanently added '10.128.0.23' (ECDSA) to the list of known hosts. executing program [ 858.377061] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 [ 858.392100] BTRFS info (device loop0): enabling inode map caching [ 858.399885] BTRFS info (device loop0): force clearing of disk cache [ 858.407305] BTRFS info (device loop0): force zlib compression, level 3 [ 858.414915] BTRFS info (device loop0): using free space tree [ 858.420774] BTRFS info (device loop0): has skinny extents [ 858.440297] BTRFS info (device loop0): clearing free space tree [ 858.447326] BTRFS info (device loop0): clearing 1 ro feature flag [ 858.454071] BTRFS info (device loop0): clearing 2 ro feature flag [ 858.464590] BTRFS info (device loop0): creating free space tree [ 858.471192] BTRFS info (device loop0): setting 1 ro feature flag [ 858.477542] BTRFS info (device loop0): setting 2 ro feature flag [ 858.502519] FAULT_INJECTION: forcing a failure. [ 858.502519] name failslab, interval 1, probability 0, space 0, times 1 [ 858.520999] CPU: 1 PID: 8103 Comm: syz-executor253 Not tainted 4.19.211-syzkaller #0 [ 858.528894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 858.538236] Call Trace: [ 858.540834] dump_stack+0x1fc/0x2ef [ 858.544456] should_fail.cold+0xa/0xf [ 858.548242] ? lock_downgrade+0x720/0x720 [ 858.552376] ? setup_fault_attr+0x200/0x200 [ 858.556682] __should_failslab+0x115/0x180 [ 858.560910] should_failslab+0x5/0x10 [ 858.564691] kmem_cache_alloc+0x277/0x370 [ 858.568822] btrfs_new_inode+0x106/0x17f0 [ 858.572981] ? btrfs_endio_direct_read+0x2f0/0x2f0 [ 858.577889] ? start_caching+0x350/0x350 [ 858.581955] ? btrfs_record_root_in_trans+0x13c/0x190 [ 858.587126] ? start_transaction+0x239/0xf90 [ 858.591517] btrfs_tmpfile+0x1da/0x530 [ 858.595389] ? __btrfs_prealloc_file_range+0xb70/0xb70 [ 858.600647] ? do_raw_spin_unlock+0x171/0x230 [ 858.605122] ? _raw_spin_unlock+0x29/0x40 [ 858.609247] ? d_alloc+0x1bc/0x230 [ 858.612783] vfs_tmpfile+0x208/0x370 [ 858.616662] path_openat+0x1e02/0x2df0 [ 858.620535] ? check_preemption_disabled+0x41/0x280 [ 858.625531] ? path_lookupat+0x8d0/0x8d0 [ 858.629573] ? mark_held_locks+0xf0/0xf0 [ 858.633615] do_filp_open+0x18c/0x3f0 [ 858.637395] ? may_open_dev+0xf0/0xf0 [ 858.641182] ? lock_downgrade+0x720/0x720 [ 858.645316] ? lock_acquire+0x170/0x3c0 [ 858.649274] ? __alloc_fd+0x34/0x570 [ 858.652981] ? do_raw_spin_unlock+0x171/0x230 [ 858.657458] ? _raw_spin_unlock+0x29/0x40 [ 858.661602] ? __alloc_fd+0x28d/0x570 [ 858.665384] do_sys_open+0x3b3/0x520 [ 858.669081] ? filp_open+0x70/0x70 [ 858.672602] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 858.677947] ? trace_hardirqs_off_caller+0x6e/0x210 [ 858.682944] ? do_syscall_64+0x21/0x620 [ 858.686899] do_syscall_64+0xf9/0x620 [ 858.690682] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 858.695850] RIP: 0033:0x7fd3db396a59 [ 858.699553] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 858.718523] RSP: 002b:00007ffc993d5fc8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 858.726210] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fd3db396a59 [ 858.733683] RDX: 0000000000000000 RSI: 0000000000438001 RDI: 0000000020000000 [ 858.740937] RBP: 00007ffc993d5ff0 R08: 0000000000000002 R09: 00007ffc993d6000 [ 858.748188] R10: 000000000000fec0 R11: 0000000000000246 R12: 0000000000000004 [ 858.755436] R13: 00007ffc993d6030 R14: 00007ffc993d6010 R15: 0000000000000000 executing program [ 858.953229] BTRFS info (device loop0): enabling inode map caching [ 858.959676] BTRFS info (device loop0): force clearing of disk cache [ 858.967502] BTRFS info (device loop0): force zlib compression, level 3 [ 858.976708] BTRFS info (device loop0): using free space tree [ 858.982530] BTRFS info (device loop0): has skinny extents [ 858.998830] BTRFS info (device loop0): clearing free space tree [ 859.005410] BTRFS info (device loop0): clearing 1 ro feature flag [ 859.011801] BTRFS info (device loop0): clearing 2 ro feature flag [ 859.020667] BTRFS info (device loop0): creating free space tree [ 859.027831] BTRFS info (device loop0): setting 1 ro feature flag [ 859.034036] BTRFS info (device loop0): setting 2 ro feature flag [ 859.056766] FAULT_INJECTION: forcing a failure. [ 859.056766] name failslab, interval 1, probability 0, space 0, times 0 [ 859.068063] CPU: 0 PID: 8140 Comm: syz-executor253 Not tainted 4.19.211-syzkaller #0 [ 859.075936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 859.085276] Call Trace: [ 859.087848] dump_stack+0x1fc/0x2ef [ 859.091459] should_fail.cold+0xa/0xf [ 859.095239] ? setup_fault_attr+0x200/0x200 [ 859.099544] __should_failslab+0x115/0x180 [ 859.103762] should_failslab+0x5/0x10 [ 859.107544] kmem_cache_alloc+0x277/0x370 [ 859.111677] btrfs_alloc_tree_block+0xfbe/0x15f0 [ 859.116416] ? btrfs_reserve_extent+0x440/0x440 [ 859.121068] ? check_usage_backwards+0x300/0x300 [ 859.125800] ? depot_save_stack+0x258/0x410 [ 859.130102] ? mark_held_locks+0xf0/0xf0 [ 859.134183] alloc_tree_block_no_bg_flush+0x1b6/0x250 [ 859.139353] __btrfs_cow_block+0x3c7/0x10a0 [ 859.143657] ? update_ref_for_cow+0xaf0/0xaf0 [ 859.148135] ? btrfs_tree_read_unlock_blocking+0x290/0x290 [ 859.153914] btrfs_cow_block+0x276/0x840 [ 859.157961] btrfs_search_slot+0x66a/0x1ee0 [ 859.162272] ? split_leaf+0x1240/0x1240 [ 859.166223] ? do_async_commit+0x1c0/0x1c0 [ 859.170452] ? _raw_spin_unlock+0x29/0x40 [ 859.174586] ? inode_insert5+0x26d/0x440 [ 859.178627] btrfs_insert_empty_items+0xba/0x180 [ 859.183363] btrfs_new_inode+0x651/0x17f0 [ 859.187495] ? btrfs_endio_direct_read+0x2f0/0x2f0 [ 859.192461] ? start_caching+0x350/0x350 [ 859.196504] ? start_transaction+0x239/0xf90 [ 859.200896] btrfs_tmpfile+0x1da/0x530 [ 859.204774] ? __btrfs_prealloc_file_range+0xb70/0xb70 [ 859.210031] ? _raw_spin_unlock+0x29/0x40 [ 859.214248] ? d_alloc+0x1bc/0x230 [ 859.217769] vfs_tmpfile+0x208/0x370 [ 859.221462] path_openat+0x1e02/0x2df0 [ 859.225335] ? check_preemption_disabled+0x41/0x280 [ 859.230332] ? path_lookupat+0x8d0/0x8d0 [ 859.234374] ? mark_held_locks+0xf0/0xf0 [ 859.238417] do_filp_open+0x18c/0x3f0 [ 859.242204] ? may_open_dev+0xf0/0xf0 [ 859.245989] ? lock_downgrade+0x720/0x720 [ 859.250116] ? lock_acquire+0x170/0x3c0 [ 859.254079] ? __alloc_fd+0x34/0x570 [ 859.257780] ? do_raw_spin_unlock+0x171/0x230 [ 859.262259] ? _raw_spin_unlock+0x29/0x40 [ 859.266570] ? __alloc_fd+0x28d/0x570 [ 859.270358] do_sys_open+0x3b3/0x520 [ 859.274054] ? filp_open+0x70/0x70 [ 859.277574] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 859.282919] ? trace_hardirqs_off_caller+0x6e/0x210 [ 859.287916] ? do_syscall_64+0x21/0x620 [ 859.291872] do_syscall_64+0xf9/0x620 [ 859.295665] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 859.300841] RIP: 0033:0x7fd3db396a59 [ 859.304537] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 859.323420] RSP: 002b:00007ffc993d5fc8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 859.331107] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fd3db396a59 [ 859.338359] RDX: 0000000000000000 RSI: 0000000000438001 RDI: 0000000020000000 [ 859.345611] RBP: 00007ffc993d5ff0 R08: 0000000000000002 R09: 00007ffc993d6000 [ 859.352868] R10: 000000000000fec0 R11: 0000000000000246 R12: 0000000000000004 [ 859.360115] R13: 00007ffc993d6030 R14: 00007ffc993d6010 R15: 0000000000000001 [ 859.368998] BTRFS error (device loop0): tree block 5259264 owner 5 already locked by pid=8140, extent tree corruption detected [ 1004.443007] INFO: task syz-executor253:8102 blocked for more than 140 seconds. [ 1004.450441] Not tainted 4.19.211-syzkaller #0 [ 1004.455521] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1004.463544] syz-executor253 D25680 8102 8100 0x00000000 [ 1004.469170] Call Trace: [ 1004.471782] __schedule+0x887/0x2040 [ 1004.475694] ? io_schedule_timeout+0x140/0x140 [ 1004.480284] ? prepare_to_wait_exclusive+0x2d0/0x2d0 [ 1004.485453] schedule+0x8d/0x1b0 [ 1004.488823] btrfs_tree_lock+0x4fe/0x810 [ 1004.492945] ? btrfs_tree_read_unlock_blocking+0x290/0x290 [ 1004.498566] ? btrfs_dec_block_group_reservations+0x7c/0xb0 [ 1004.504324] ? wait_woken+0x250/0x250 [ 1004.508132] btrfs_alloc_tree_block+0x9b1/0x15f0 [ 1004.512961] ? btrfs_reserve_extent+0x440/0x440 [ 1004.517640] ? mark_held_locks+0xf0/0xf0 [ 1004.521687] alloc_tree_block_no_bg_flush+0x1b6/0x250 [ 1004.526932] __btrfs_cow_block+0x3c7/0x10a0 [ 1004.531253] ? update_ref_for_cow+0xaf0/0xaf0 [ 1004.535813] ? btrfs_tree_read_unlock_blocking+0x290/0x290 [ 1004.541445] btrfs_cow_block+0x276/0x840 [ 1004.545556] btrfs_search_slot+0x66a/0x1ee0 [ 1004.549880] ? btrfs_merge_delayed_refs+0x1d2/0xda0 [ 1004.555054] ? split_leaf+0x1240/0x1240 [ 1004.559028] ? setup_fault_attr+0x200/0x200 [ 1004.563498] ? check_preemption_disabled+0x41/0x280 [ 1004.568512] btrfs_insert_empty_items+0xba/0x180 [ 1004.573325] __btrfs_run_delayed_refs+0x1fad/0x3de0 [ 1004.578441] ? start_transaction+0x2cd/0xf90 [ 1004.582912] ? btrfs_attach_transaction_barrier+0x22/0x80 [ 1004.588460] ? sync_filesystem+0x1b5/0x250 [ 1004.592687] ? deactivate_locked_super+0x94/0x160 [ 1004.597871] ? __btrfs_free_extent.isra.0+0x1450/0x1450 [ 1004.603364] ? mark_held_locks+0xf0/0xf0 [ 1004.607415] ? lock_downgrade+0x720/0x720 [ 1004.611546] ? btrfs_wait_ordered_roots+0x30/0x7d0 [ 1004.616518] ? mutex_trylock+0x1a0/0x1a0 [ 1004.620590] btrfs_run_delayed_refs.part.0+0x9a/0x310 [ 1004.625919] btrfs_run_delayed_refs+0xad/0xf0 [ 1004.630414] btrfs_commit_transaction+0x173/0x2480 [ 1004.635396] ? _raw_spin_unlock+0x29/0x40 [ 1004.639552] ? join_transaction+0x1b7/0xe20 [ 1004.644107] ? btrfs_apply_pending_changes+0x150/0x150 [ 1004.649548] ? start_transaction+0x239/0xf90 [ 1004.654017] btrfs_sync_fs+0x120/0x490 [ 1004.657904] ? btrfs_freeze+0xc0/0xc0 [ 1004.661913] sync_filesystem+0x1b5/0x250 [ 1004.666028] generic_shutdown_super+0x70/0x370 [ 1004.670872] kill_anon_super+0x36/0x60 [ 1004.674923] btrfs_kill_super+0x49/0x550 [ 1004.679071] ? unregister_shrinker+0x1cb/0x300 [ 1004.683861] deactivate_locked_super+0x94/0x160 [ 1004.688526] deactivate_super+0x174/0x1a0 [ 1004.692658] ? deactivate_locked_super+0x160/0x160 [ 1004.697638] ? dput+0x31/0x640 [ 1004.700845] cleanup_mnt+0x1a8/0x290 [ 1004.704852] task_work_run+0x148/0x1c0 [ 1004.708905] exit_to_usermode_loop+0x251/0x2a0 [ 1004.713645] do_syscall_64+0x538/0x620 [ 1004.719536] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.724952] RIP: 0033:0x7fd3db397df7 [ 1004.728687] Code: Bad RIP value. [ 1004.732042] RSP: 002b:00007ffc993d4ed8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6 [ 1004.739804] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd3db397df7 [ 1004.747133] RDX: 00007ffc993d4f97 RSI: 000000000000000a RDI: 00007ffc993d4f90 [ 1004.754455] RBP: 00007ffc993d4f90 R08: 00000000ffffffff R09: 00007ffc993d4d70 [ 1004.761982] R10: 0000555555c85683 R11: 0000000000000206 R12: 00007ffc993d6010 [ 1004.769323] R13: 0000555555c855f0 R14: 00007ffc993d4f00 R15: 0000000000000002 [ 1004.776700] [ 1004.776700] Showing all locks held in the system: [ 1004.783173] 1 lock held by khungtaskd/1570: [ 1004.787490] #0: 0000000070bdc9ca (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 [ 1004.796187] 3 locks held by in:imklog/7797: [ 1004.800499] #0: 00000000ec8c370c (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x26f/0x310 [ 1004.808532] #1: 00000000fd3dbf45 (fs_reclaim){+.+.}, at: do_syslog.part.0+0x2d5/0x1510 [ 1004.818347] #2: 0000000070bdc9ca (rcu_read_lock){....}, at: update_curr+0x2c3/0x870 [ 1004.826311] 2 locks held by syz-executor253/8102: [ 1004.831161] #0: 0000000068c68263 (&type->s_umount_key#47){+.+.}, at: deactivate_super+0x16c/0x1a0 [ 1004.840440] #1: 000000000b6553f1 (&head_ref->mutex){+.+.}, at: btrfs_delayed_ref_lock+0x91/0x1f0 [ 1004.849729] 2 locks held by btrfs-transacti/8168: [ 1004.854705] #0: 00000000c92e5705 (&fs_info->transaction_kthread_mutex){+.+.}, at: transaction_kthread+0xfa/0x490 [ 1004.865360] #1: 0000000036a48dbd (&head_ref->mutex){+.+.}, at: btrfs_delayed_ref_lock+0x91/0x1f0 [ 1004.874498] [ 1004.876235] ============================================= [ 1004.876235] [ 1004.883326] NMI backtrace for cpu 0 [ 1004.886962] CPU: 0 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 [ 1004.894397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1004.903847] Call Trace: [ 1004.906421] dump_stack+0x1fc/0x2ef [ 1004.910142] nmi_cpu_backtrace.cold+0x63/0xa2 [ 1004.914620] ? lapic_can_unplug_cpu+0x80/0x80 [ 1004.919094] nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 [ 1004.924353] watchdog+0x991/0xe60 [ 1004.927790] ? reset_hung_task_detector+0x30/0x30 [ 1004.932616] kthread+0x33f/0x460 [ 1004.936053] ? kthread_park+0x180/0x180 [ 1004.940017] ret_from_fork+0x24/0x30 [ 1004.944000] Sending NMI from CPU 0 to CPUs 1: [ 1004.948782] NMI backtrace for cpu 1 [ 1004.948794] CPU: 1 PID: 4678 Comm: systemd-journal Not tainted 4.19.211-syzkaller #0 [ 1004.948801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1004.948805] RIP: 0010:__sanitizer_cov_trace_pc+0x22/0x50 [ 1004.948815] Code: 90 90 90 90 90 90 90 90 48 8b 34 24 65 48 8b 04 25 c0 df 01 00 65 8b 15 cc 59 9f 7e 81 e2 00 01 1f 00 75 2b 8b 90 60 13 00 00 <83> fa 02 75 20 48 8b 88 68 13 00 00 8b 80 64 13 00 00 48 8b 11 48 [ 1004.948819] RSP: 0018:ffff8880a1a97f20 EFLAGS: 00000246 [ 1004.948827] RAX: ffff8880a1a88200 RBX: 0000000000000053 RCX: 1ffff11014352ff5 [ 1004.948832] RDX: 0000000000000000 RSI: ffffffff81007741 RDI: ffff8880a1a97fa8 [ 1004.948837] RBP: ffff8880a1a97f58 R08: 0000000000000000 R09: fffffffffffff000 [ 1004.948842] R10: 0000000000000007 R11: 0000000000000000 R12: 0000000000000100 [ 1004.948847] R13: ffffffff89f18298 R14: 0000000000000000 R15: 0000000000000000 [ 1004.948852] FS: 00007fe45d9a88c0(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 1004.948856] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1004.948861] CR2: 00007fe45ad88020 CR3: 00000000a209b000 CR4: 00000000003406e0 [ 1004.948866] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1004.948871] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1004.948874] Call Trace: [ 1004.948877] do_syscall_64+0x121/0x620 [ 1004.948881] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.948885] RIP: 0033:0x7fe45cc63687 [ 1004.948895] Code: 00 b8 ff ff ff ff c3 0f 1f 40 00 48 8b 05 09 d8 2b 00 64 c7 00 5f 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 d7 2b 00 f7 d8 64 89 01 48 [ 1004.948899] RSP: 002b:00007fff0ab21318 EFLAGS: 00000293 ORIG_RAX: 0000000000000053 [ 1004.948907] RAX: fffffffffffffffe RBX: 00007fff0ab24230 RCX: 00007fe45cc63687 [ 1004.948912] RDX: 00007fe45d6d4a00 RSI: 00000000000001ed RDI: 0000559356e208a0 [ 1004.948917] RBP: 00007fff0ab21350 R08: 0000000000000000 R09: 0000000000000000 [ 1004.948922] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000 [ 1004.948927] R13: 0000000000000000 R14: 00007fff0ab24230 R15: 00007fff0ab21840 [ 1004.949544] Kernel panic - not syncing: hung_task: blocked tasks [ 1005.158081] CPU: 0 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 [ 1005.165610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1005.174953] Call Trace: [ 1005.177575] dump_stack+0x1fc/0x2ef [ 1005.181191] panic+0x26a/0x50e [ 1005.184376] ? __warn_printk+0xf3/0xf3 [ 1005.188248] ? lapic_can_unplug_cpu+0x80/0x80 [ 1005.194777] ? ___preempt_schedule+0x16/0x18 [ 1005.199176] ? watchdog+0x991/0xe60 [ 1005.202793] ? nmi_trigger_cpumask_backtrace+0x15e/0x1f0 [ 1005.208487] watchdog+0x9a2/0xe60 [ 1005.211925] ? reset_hung_task_detector+0x30/0x30 [ 1005.216752] kthread+0x33f/0x460 [ 1005.220099] ? kthread_park+0x180/0x180 [ 1005.224060] ret_from_fork+0x24/0x30 [ 1005.228181] Kernel Offset: disabled [ 1005.231812] Rebooting in 86400 seconds..