Warning: Permanently added '10.128.0.242' (ED25519) to the list of known hosts. executing program [ 43.102998][ T3970] loop0: detected capacity change from 0 to 32768 [ 43.108064][ T3970] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz-executor312 (3970) [ 43.115535][ T3970] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm [ 43.117857][ T3970] BTRFS info (device loop0): doing ref verification [ 43.119561][ T3970] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11 [ 43.122376][ T3970] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11 [ 43.125173][ T3970] BTRFS warning (device loop0): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 43.127906][ T3970] BTRFS info (device loop0): trying to use backup root at mount time [ 43.130054][ T3970] BTRFS info (device loop0): use zlib compression, level 3 [ 43.131955][ T3970] BTRFS info (device loop0): enabling ssd optimizations [ 43.133703][ T3970] BTRFS info (device loop0): using spread ssd allocation scheme [ 43.135777][ T3970] BTRFS info (device loop0): using free space tree [ 43.137401][ T3970] BTRFS info (device loop0): has skinny extents [ 43.151202][ T136] BTRFS warning (device loop0): checksum verify failed on 5341184 wanted 0x829d3b74 found 0xe129ccda level 0 [ 43.154563][ T3970] BTRFS warning (device loop0): failed to read root (objectid=10): -5 [ 43.156811][ T9] BTRFS warning (device loop0): checksum verify failed on 5324800 wanted 0xa187e1f9 found 0xa3d38d98 level 0 [ 43.159927][ T3970] BTRFS warning (device loop0): couldn't read tree root [ 43.162122][ T3970] BTRFS error (device loop0): parent transid verify failed on 5255168 wanted 5 found 7 [ 43.164715][ T3970] BTRFS warning (device loop0): couldn't read tree root [ 43.171939][ T3970] BTRFS info (device loop0): clearing free space tree [ 43.173690][ T3970] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 43.176069][ T3970] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 43.187522][ T3970] ================================================================== [ 43.189662][ T3970] BUG: KASAN: null-ptr-deref in btrfs_root_node+0x144/0x404 [ 43.191553][ T3970] Write of size 4 at addr 0000000000000060 by task syz-executor312/3970 [ 43.193646][ T3970] [ 43.194245][ T3970] CPU: 1 PID: 3970 Comm: syz-executor312 Not tainted 5.15.131-syzkaller #0 [ 43.196441][ T3970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 43.199001][ T3970] Call trace: [ 43.199831][ T3970] dump_backtrace+0x0/0x530 [ 43.200953][ T3970] show_stack+0x2c/0x3c [ 43.201940][ T3970] dump_stack_lvl+0x108/0x170 [ 43.203166][ T3970] kasan_report+0x168/0x1e4 [ 43.204330][ T3970] kasan_check_range+0x274/0x2b4 [ 43.205535][ T3970] __kasan_check_write+0x44/0x54 [ 43.206818][ T3970] btrfs_root_node+0x144/0x404 [ 43.207973][ T3970] btrfs_read_lock_root_node+0x68/0x344 [ 43.209364][ T3970] btrfs_search_slot+0x3d0/0x24d8 [ 43.210694][ T3970] btrfs_orphan_cleanup+0x1c8/0xa98 [ 43.212006][ T3970] btrfs_cleanup_fs_roots+0x5e0/0x860 [ 43.213337][ T3970] btrfs_start_pre_rw_mount+0x150/0x578 [ 43.214758][ T3970] open_ctree+0x2258/0x288c [ 43.215896][ T3970] btrfs_fill_super+0x1b4/0x2c8 [ 43.217082][ T3970] btrfs_mount_root+0x6f8/0x7f8 [ 43.218305][ T3970] legacy_get_tree+0xd4/0x16c [ 43.219485][ T3970] vfs_get_tree+0x90/0x274 [ 43.220644][ T3970] vfs_kern_mount+0xdc/0x178 [ 43.221769][ T3970] btrfs_mount+0x328/0x9b8 [ 43.222836][ T3970] legacy_get_tree+0xd4/0x16c [ 43.224037][ T3970] vfs_get_tree+0x90/0x274 [ 43.225170][ T3970] do_new_mount+0x25c/0x8c4 [ 43.226264][ T3970] path_mount+0x590/0x104c [ 43.227366][ T3970] __arm64_sys_mount+0x510/0x5e0 [ 43.228656][ T3970] invoke_syscall+0x98/0x2b8 [ 43.229787][ T3970] el0_svc_common+0x138/0x258 [ 43.230972][ T3970] do_el0_svc+0x58/0x14c [ 43.231985][ T3970] el0_svc+0x7c/0x1f0 [ 43.233089][ T3970] el0t_64_sync_handler+0x84/0xe4 [ 43.234342][ T3970] el0t_64_sync+0x1a0/0x1a4 [ 43.235452][ T3970] ================================================================== [ 43.237491][ T3970] Disabling lock debugging due to kernel taint [ 43.239233][ T3970] Unable to handle kernel paging request at virtual address dfff80000000000c [ 43.241452][ T3970] Mem abort info: [ 43.242312][ T3970] ESR = 0x0000000096000006 [ 43.243489][ T3970] EC = 0x25: DABT (current EL), IL = 32 bits [ 43.244900][ T3970] SET = 0, FnV = 0 [ 43.245824][ T3970] EA = 0, S1PTW = 0 [ 43.246819][ T3970] FSC = 0x06: level 2 translation fault [ 43.248228][ T3970] Data abort info: [ 43.249196][ T3970] ISV = 0, ISS = 0x00000006 [ 43.250416][ T3970] CM = 0, WnR = 0 [ 43.251368][ T3970] [dfff80000000000c] address between user and kernel address ranges [ 43.253447][ T3970] Internal error: Oops: 96000006 [#1] PREEMPT SMP [ 43.254938][ T3970] Modules linked in: [ 43.255866][ T3970] CPU: 1 PID: 3970 Comm: syz-executor312 Tainted: G B 5.15.131-syzkaller #0 [ 43.258266][ T3970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 43.260875][ T3970] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 43.262785][ T3970] pc : btrfs_root_node+0x148/0x404 [ 43.264046][ T3970] lr : btrfs_root_node+0x144/0x404 [ 43.265327][ T3970] sp : ffff80001ca16de0 [ 43.266361][ T3970] x29: ffff80001ca16de0 x28: dfff800000000000 x27: ffff800011e77480 [ 43.268363][ T3970] x26: 0000000000000060 x25: 0000000000000000 x24: 1fffe00019182400 [ 43.270325][ T3970] x23: ffff800011e77a80 x22: 0000000000000001 x21: 0000000000000001 [ 43.272371][ T3970] x20: ffff800011e77480 x19: ffff0000c8c12000 x18: 1fffe00036902f8e [ 43.274327][ T3970] x17: 1fffe00036902f8e x16: ffff800011963a04 x15: ffff80001499f160 [ 43.276458][ T3970] x14: ffff0001b4817c80 x13: ffffffffffffffff x12: 0000000000000000 [ 43.278481][ T3970] x11: ff8080000819b844 x10: 0000000000000000 x9 : 0000000000000000 [ 43.280577][ T3970] x8 : 000000000000000c x7 : 0000000000000000 x6 : ffff800008268a28 [ 43.282595][ T3970] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff80000819b810 [ 43.284668][ T3970] x2 : 0000000000000001 x1 : 0000000000000001 x0 : 0000000000000000 [ 43.286697][ T3970] Call trace: [ 43.287512][ T3970] btrfs_root_node+0x148/0x404 [ 43.288848][ T3970] btrfs_read_lock_root_node+0x68/0x344 [ 43.290213][ T3970] btrfs_search_slot+0x3d0/0x24d8 [ 43.291494][ T3970] btrfs_orphan_cleanup+0x1c8/0xa98 [ 43.292752][ T3970] btrfs_cleanup_fs_roots+0x5e0/0x860 [ 43.294111][ T3970] btrfs_start_pre_rw_mount+0x150/0x578 [ 43.295520][ T3970] open_ctree+0x2258/0x288c [ 43.296629][ T3970] btrfs_fill_super+0x1b4/0x2c8 [ 43.297918][ T3970] btrfs_mount_root+0x6f8/0x7f8 [ 43.299148][ T3970] legacy_get_tree+0xd4/0x16c [ 43.300380][ T3970] vfs_get_tree+0x90/0x274 [ 43.301492][ T3970] vfs_kern_mount+0xdc/0x178 [ 43.302672][ T3970] btrfs_mount+0x328/0x9b8 [ 43.303805][ T3970] legacy_get_tree+0xd4/0x16c [ 43.305015][ T3970] vfs_get_tree+0x90/0x274 [ 43.306174][ T3970] do_new_mount+0x25c/0x8c4 [ 43.307379][ T3970] path_mount+0x590/0x104c [ 43.308484][ T3970] __arm64_sys_mount+0x510/0x5e0 [ 43.309694][ T3970] invoke_syscall+0x98/0x2b8 [ 43.310848][ T3970] el0_svc_common+0x138/0x258 [ 43.312015][ T3970] do_el0_svc+0x58/0x14c [ 43.313056][ T3970] el0_svc+0x7c/0x1f0 [ 43.314085][ T3970] el0t_64_sync_handler+0x84/0xe4 [ 43.315358][ T3970] el0t_64_sync+0x1a0/0x1a4 [ 43.316505][ T3970] Code: aa1a03e0 aa1b03f4 97a4ccf3 d343ff48 (38fc6908) [ 43.318215][ T3970] ---[ end trace da0241ca09b14546 ]--- [ 43.681429][ T3970] Kernel panic - not syncing: Oops: Fatal exception [ 43.683072][ T3970] SMP: stopping secondary CPUs [ 43.684335][ T3970] Kernel Offset: disabled [ 43.685394][ T3970] CPU features: 0x0,000081c1,21302e40 [ 43.686780][ T3970] Memory Limit: none [ 44.022607][ T3970] Rebooting in 86400 seconds..