./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1593951875
<...>
Warning: Permanently added '10.128.0.132' (ECDSA) to the list of known hosts.
execve("./syz-executor1593951875", ["./syz-executor1593951875"], 0x7ffc06409bf0 /* 10 vars */) = 0
brk(NULL) = 0x5555574e3000
brk(0x5555574e3c40) = 0x5555574e3c40
arch_prctl(ARCH_SET_FS, 0x5555574e3300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1593951875", 4096) = 28
brk(0x555557504c40) = 0x555557504c40
brk(0x555557505000) = 0x555557505000
mprotect(0x7f3528146000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
getpid() = 4989
mkdir("./syzkaller.eNA9Fp", 0700) = 0
chmod("./syzkaller.eNA9Fp", 0777) = 0
chdir("./syzkaller.eNA9Fp") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555574e35d0) = 4990
./strace-static-x86_64: Process 4990 attached
[pid 4990] chdir("./0") = 0
[pid 4990] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 4990] setpgid(0, 0) = 0
[pid 4990] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 4990] write(3, "1000", 4) = 4
[pid 4990] close(3) = 0
[pid 4990] symlink("/dev/binderfs", "./binderfs") = 0
[pid 4990] memfd_create("syzkaller", 0) = 3
[pid 4990] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f351fc84000
[ 55.284533][ T4990] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4990 'syz-executor159'
[pid 4990] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 4990] munmap(0x7f351fc84000, 16777216) = 0
[pid 4990] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 4990] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 4990] close(3) = 0
[pid 4990] mkdir("./file0", 0777) = 0
[ 55.461680][ T4990] loop0: detected capacity change from 0 to 32768
[ 55.475149][ T4990] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor159 (4990)
[ 55.494841][ T4990] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 55.503832][ T4990] BTRFS info (device loop0): using free space tree
[pid 4990] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 4990] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 4990] chdir("./file0") = 0
[pid 4990] ioctl(4, LOOP_CLR_FD) = 0
[pid 4990] close(4) = 0
[pid 4990] open("./file0", O_RDONLY) = 4
[ 55.525037][ T4990] BTRFS info (device loop0): enabling ssd optimizations
[ 55.532961][ T4990] BTRFS info (device loop0): auto enabling async discard
[pid 4990] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid 4990] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 4990] write(6, "17", 2) = 2
[ 55.570207][ T27] audit: type=1800 audit(1683289999.638:2): pid=4990 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor159" name="bus" dev="loop0" ino=263 res=0 errno=0
[ 55.605646][ T4990] FAULT_INJECTION: forcing a failure.
[ 55.605646][ T4990] name failslab, interval 1, probability 0, space 0, times 1
[ 55.618818][ T4990] CPU: 0 PID: 4990 Comm: syz-executor159 Not tainted 6.3.0-syzkaller-13091-g3c4aa4434377 #0
[ 55.628917][ T4990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 55.639015][ T4990] Call Trace:
[ 55.642331][ T4990]
[ 55.645289][ T4990] dump_stack_lvl+0x1e7/0x2d0
[ 55.650203][ T4990] ? nf_tcp_handle_invalid+0x650/0x650
[ 55.656583][ T4990] ? panic+0x770/0x770
[ 55.660702][ T4990] ? __might_sleep+0xc0/0xc0
[ 55.665349][ T4990] should_fail_ex+0x3aa/0x4e0
[ 55.670073][ T4990] should_failslab+0x9/0x20
[ 55.674609][ T4990] slab_pre_alloc_hook+0x59/0x2b0
[ 55.679760][ T4990] kmem_cache_alloc+0x52/0x2e0
[ 55.684560][ T4990] ? __btrfs_free_extent+0x1f7/0x2e50
[ 55.690077][ T4990] __btrfs_free_extent+0x1f7/0x2e50
[ 55.696063][ T4990] ? read_lock_is_recursive+0x20/0x20
[ 55.702022][ T4990] ? __btrfs_inc_extent_ref+0x5f0/0x5f0
[ 55.708746][ T4990] ? _raw_read_unlock+0x28/0x40
[ 55.713955][ T4990] ? do_raw_spin_unlock+0x13b/0x8b0
[ 55.719207][ T4990] __btrfs_run_delayed_refs+0xef9/0x3fc0
[ 55.725188][ T4990] ? btrfs_run_delayed_refs+0x480/0x480
[ 55.731068][ T4990] ? read_lock_is_recursive+0x20/0x20
[ 55.737687][ T4990] ? mark_lock+0x9a/0x340
[ 55.742038][ T4990] ? __lock_acquire+0x1295/0x2000
[ 55.747255][ T4990] btrfs_run_delayed_refs+0x140/0x480
[ 55.753372][ T4990] btrfs_commit_transaction+0x427/0x3370
[ 55.759424][ T4990] ? read_lock_is_recursive+0x20/0x20
[ 55.765716][ T4990] ? do_raw_spin_lock+0x14d/0x3a0
[ 55.771943][ T4990] ? __lock_acquire+0x2000/0x2000
[ 55.778300][ T4990] ? btrfs_commit_transaction_async+0x450/0x450
[ 55.785449][ T4990] ? do_raw_spin_unlock+0x13b/0x8b0
[ 55.794424][ T4990] ? join_transaction+0xc52/0xe80
[ 55.802314][ T4990] ? join_transaction+0xc28/0xe80
[ 55.807879][ T4990] ? btrfs_record_root_in_trans+0x12d/0x180
[ 55.815969][ T4990] ? start_transaction+0x3de/0x1080
[ 55.821626][ T4990] create_snapshot+0x4a5/0x7e0
[ 55.827124][ T4990] btrfs_mksubvol+0x5d0/0x750
[ 55.831839][ T4990] ? __btrfs_ioctl_snap_create+0x450/0x450
[ 55.837681][ T4990] ? __might_fault+0xbe/0x120
[ 55.842499][ T4990] btrfs_mksnapshot+0xb5/0xf0
[ 55.847420][ T4990] __btrfs_ioctl_snap_create+0x338/0x450
[ 55.854045][ T4990] btrfs_ioctl_snap_create+0x136/0x190
[ 55.859632][ T4990] btrfs_ioctl+0xbbc/0xd40
[ 55.864122][ T4990] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 55.870849][ T4990] __se_sys_ioctl+0xf1/0x160
[ 55.875652][ T4990] do_syscall_64+0x41/0xc0
[ 55.880182][ T4990] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 55.886539][ T4990] RIP: 0033:0x7f35280d1a29
[ 55.891152][ T4990] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 55.912170][ T4990] RSP: 002b:00007ffe61c38ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 55.920655][ T4990] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f35280d1a29
[ 55.930407][ T4990] RDX: 00000000200000c0 RSI: 0000000050009401 RDI: 0000000000000004
[ 55.938763][ T4990] RBP: 00007ffe61c38d10 R08: 0000000000000002 R09: 00007ffe61c38d20
[ 55.947698][ T4990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 55.956023][ T4990] R13: 00007ffe61c38d50 R14: 00007ffe61c38d30 R15: 0000000000000000
[ 55.964119][ T4990]
[pid 4990] ioctl(4, BTRFS_IOC_SNAP_CREATE, {fd=5, name="\x42\x99\xc6\x3c\x6a\xca\x4b\xec\x68\x72\xd2\x02\x80\x8d\xda\x69\x34\x9c\x62\x54\x02\x9b\xbc\x4a\x38\xfb\x4e\x91\xbb\xa4\x82\x6c\xd7\x77\xcb\x59\x74\x4a\xdd\x18\x26\x71\x40\x88\x2a\x98\x37\x3f\xbb\xf4\xb5\xb0\x7c"}) = -1 ENOMEM (Cannot allocate memory)
[pid 4990] exit_group(0) = ?
[pid 4990] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4990, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} ---
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555574e4620 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
[ 55.982918][ T4990] BTRFS error (device loop0): failed to run delayed ref for logical 5255168 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[ 55.998645][ T4990] BTRFS: error (device loop0: state A) in btrfs_run_delayed_refs:2127: errno=-12 Out of memory
[ 56.010283][ T4990] BTRFS info (device loop0: state EA): forced readonly
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555574ec660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555574ec660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x5555574e4620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555574e35d0) = 5015
./strace-static-x86_64: Process 5015 attached
[pid 5015] chdir("./1") = 0
[pid 5015] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5015] setpgid(0, 0) = 0
[pid 5015] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5015] write(3, "1000", 4) = 4
[pid 5015] close(3) = 0
[pid 5015] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5015] memfd_create("syzkaller", 0) = 3
[pid 5015] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f351fc84000
[pid 5015] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5015] munmap(0x7f351fc84000, 16777216) = 0
[pid 5015] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5015] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5015] close(3) = 0
[pid 5015] mkdir("./file0", 0777) = 0
[ 56.333930][ T5015] loop0: detected capacity change from 0 to 32768
[ 56.348045][ T5015] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor159 (5015)
[ 56.368266][ T5015] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[pid 5015] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5015] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5015] chdir("./file0") = 0
[pid 5015] ioctl(4, LOOP_CLR_FD) = 0
[pid 5015] close(4) = 0
[pid 5015] open("./file0", O_RDONLY) = 4
[ 56.379305][ T5015] BTRFS info (device loop0): using free space tree
[ 56.403595][ T5015] BTRFS info (device loop0): enabling ssd optimizations
[ 56.413854][ T5015] BTRFS info (device loop0): auto enabling async discard
[pid 5015] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid 5015] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5015] write(6, "17", 2) = 2
[ 56.448394][ T27] audit: type=1800 audit(1683290000.518:3): pid=5015 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor159" name="bus" dev="loop0" ino=263 res=0 errno=0
[ 56.450197][ T5015] FAULT_INJECTION: forcing a failure.
[ 56.450197][ T5015] name failslab, interval 1, probability 0, space 0, times 0
[ 56.485197][ T5015] CPU: 1 PID: 5015 Comm: syz-executor159 Not tainted 6.3.0-syzkaller-13091-g3c4aa4434377 #0
[ 56.497138][ T5015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 56.507323][ T5015] Call Trace:
[ 56.510635][ T5015]
[ 56.513693][ T5015] dump_stack_lvl+0x1e7/0x2d0
[ 56.518599][ T5015] ? nf_tcp_handle_invalid+0x650/0x650
[ 56.524106][ T5015] ? panic+0x770/0x770
[ 56.528220][ T5015] ? __might_sleep+0xc0/0xc0
[ 56.532858][ T5015] should_fail_ex+0x3aa/0x4e0
[ 56.537563][ T5015] should_failslab+0x9/0x20
[ 56.542075][ T5015] slab_pre_alloc_hook+0x59/0x2b0
[ 56.547110][ T5015] kmem_cache_alloc+0x52/0x2e0
[ 56.551888][ T5015] ? __btrfs_free_extent+0x1f7/0x2e50
[ 56.557275][ T5015] __btrfs_free_extent+0x1f7/0x2e50
[ 56.562483][ T5015] ? read_lock_is_recursive+0x20/0x20
[ 56.567859][ T5015] ? __btrfs_inc_extent_ref+0x5f0/0x5f0
[ 56.573410][ T5015] ? _raw_read_unlock+0x28/0x40
[ 56.578289][ T5015] ? do_raw_spin_unlock+0x13b/0x8b0
[ 56.583499][ T5015] __btrfs_run_delayed_refs+0xef9/0x3fc0
[ 56.589239][ T5015] ? validate_chain+0x119/0x58e0
[ 56.594217][ T5015] ? btrfs_run_delayed_refs+0x480/0x480
[ 56.599781][ T5015] ? read_lock_is_recursive+0x20/0x20
[ 56.605154][ T5015] ? mark_lock+0x9a/0x340
[ 56.609489][ T5015] ? __lock_acquire+0x1295/0x2000
[ 56.614687][ T5015] btrfs_run_delayed_refs+0x140/0x480
[ 56.620338][ T5015] btrfs_commit_transaction+0x427/0x3370
[ 56.626086][ T5015] ? read_lock_is_recursive+0x20/0x20
[ 56.631623][ T5015] ? do_raw_spin_lock+0x14d/0x3a0
[ 56.636947][ T5015] ? __lock_acquire+0x2000/0x2000
[ 56.642278][ T5015] ? btrfs_commit_transaction_async+0x450/0x450
[ 56.648592][ T5015] ? do_raw_spin_unlock+0x13b/0x8b0
[ 56.654157][ T5015] ? join_transaction+0xc52/0xe80
[ 56.659829][ T5015] ? join_transaction+0xc28/0xe80
[ 56.665344][ T5015] ? btrfs_record_root_in_trans+0x12d/0x180
[ 56.671427][ T5015] ? start_transaction+0x3de/0x1080
[ 56.676927][ T5015] create_snapshot+0x4a5/0x7e0
[ 56.682661][ T5015] btrfs_mksubvol+0x5d0/0x750
[ 56.687431][ T5015] ? __btrfs_ioctl_snap_create+0x450/0x450
[ 56.693584][ T5015] ? __might_fault+0xbe/0x120
[ 56.698688][ T5015] btrfs_mksnapshot+0xb5/0xf0
[ 56.703521][ T5015] __btrfs_ioctl_snap_create+0x338/0x450
[ 56.709407][ T5015] btrfs_ioctl_snap_create+0x136/0x190
[ 56.715043][ T5015] btrfs_ioctl+0xbbc/0xd40
[ 56.719765][ T5015] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 56.726584][ T5015] __se_sys_ioctl+0xf1/0x160
[ 56.731577][ T5015] do_syscall_64+0x41/0xc0
[ 56.736308][ T5015] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.742889][ T5015] RIP: 0033:0x7f35280d1a29
[ 56.747538][ T5015] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 56.769842][ T5015] RSP: 002b:00007ffe61c38ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 56.779942][ T5015] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f35280d1a29
[ 56.789018][ T5015] RDX: 00000000200000c0 RSI: 0000000050009401 RDI: 0000000000000004
[ 56.797837][ T5015] RBP: 00007ffe61c38d10 R08: 0000000000000002 R09: 00007ffe61c38d20
[ 56.806794][ T5015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 56.815737][ T5015] R13: 00007ffe61c38d50 R14: 00007ffe61c38d30 R15: 0000000000000001
[ 56.823774][ T5015]
[ 56.828450][ T5015] BTRFS error (device loop0): failed to run delayed ref for logical 5255168 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[pid 5015] ioctl(4, BTRFS_IOC_SNAP_CREATE, {fd=5, name="\x42\x99\xc6\x3c\x6a\xca\x4b\xec\x68\x72\xd2\x02\x80\x8d\xda\x69\x34\x9c\x62\x54\x02\x9b\xbc\x4a\x38\xfb\x4e\x91\xbb\xa4\x82\x6c\xd7\x77\xcb\x59\x74\x4a\xdd\x18\x26\x71\x40\x88\x2a\x98\x37\x3f\xbb\xf4\xb5\xb0\x7c"}) = -1 ENOMEM (Cannot allocate memory)
[pid 5015] exit_group(0) = ?
[pid 5015] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5015, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=23 /* 0.23 s */} ---
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555574e4620 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./1/binderfs") = 0
[ 56.842823][ T5015] BTRFS: error (device loop0: state A) in btrfs_run_delayed_refs:2127: errno=-12 Out of memory
[ 56.853840][ T5015] BTRFS info (device loop0: state EA): forced readonly
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555574ec660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555574ec660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x5555574e4620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555574e35d0) = 5045
./strace-static-x86_64: Process 5045 attached
[pid 5045] chdir("./2") = 0
[pid 5045] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5045] setpgid(0, 0) = 0
[pid 5045] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5045] write(3, "1000", 4) = 4
[pid 5045] close(3) = 0
[pid 5045] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5045] memfd_create("syzkaller", 0) = 3
[pid 5045] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f351fc84000
[pid 5045] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5045] munmap(0x7f351fc84000, 16777216) = 0
[pid 5045] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5045] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5045] close(3) = 0
[pid 5045] mkdir("./file0", 0777) = 0
[ 57.192200][ T5045] loop0: detected capacity change from 0 to 32768
[ 57.203313][ T5045] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 scanned by syz-executor159 (5045)
[ 57.220652][ T5045] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[ 57.229460][ T5045] BTRFS info (device loop0): using free space tree
[pid 5045] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5045] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5045] chdir("./file0") = 0
[pid 5045] ioctl(4, LOOP_CLR_FD) = 0
[pid 5045] close(4) = 0
[pid 5045] open("./file0", O_RDONLY) = 4
[ 57.247042][ T5045] BTRFS info (device loop0): enabling ssd optimizations
[ 57.254437][ T5045] BTRFS info (device loop0): auto enabling async discard
[pid 5045] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid 5045] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5045] write(6, "17", 2) = 2
[ 57.288030][ T27] audit: type=1800 audit(1683290001.358:4): pid=5045 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor159" name="bus" dev="loop0" ino=263 res=0 errno=0
[ 57.297882][ T5045] FAULT_INJECTION: forcing a failure.
[ 57.297882][ T5045] name failslab, interval 1, probability 0, space 0, times 0
[ 57.323973][ T5045] CPU: 0 PID: 5045 Comm: syz-executor159 Not tainted 6.3.0-syzkaller-13091-g3c4aa4434377 #0
[ 57.334101][ T5045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 57.344183][ T5045] Call Trace:
[ 57.347489][ T5045]
[ 57.350451][ T5045] dump_stack_lvl+0x1e7/0x2d0
[ 57.355176][ T5045] ? nf_tcp_handle_invalid+0x650/0x650
[ 57.360667][ T5045] ? panic+0x770/0x770
[ 57.364773][ T5045] ? __might_sleep+0xc0/0xc0
[ 57.369404][ T5045] should_fail_ex+0x3aa/0x4e0
[ 57.374115][ T5045] should_failslab+0x9/0x20
[ 57.378640][ T5045] slab_pre_alloc_hook+0x59/0x2b0
[ 57.383708][ T5045] kmem_cache_alloc+0x52/0x2e0
[ 57.388498][ T5045] ? btrfs_add_delayed_tree_ref+0x24d/0xfb0
[ 57.394431][ T5045] btrfs_add_delayed_tree_ref+0x24d/0xfb0
[ 57.400217][ T5045] ? btrfs_delete_ref_head+0x270/0x270
[ 57.405723][ T5045] ? btrfs_alloc_tree_block+0xbae/0x1800
[ 57.411498][ T5045] ? btrfs_alloc_tree_block+0xbdb/0x1800
[ 57.417359][ T5045] btrfs_alloc_tree_block+0xf56/0x1800
[ 57.422874][ T5045] ? alloc_reserved_file_extent+0x5e0/0x5e0
[ 57.428810][ T5045] ? mark_lock+0x29d/0x340
[ 57.433363][ T5045] ? read_extent_buffer+0x122/0x2a0
[ 57.438602][ T5045] ? __asan_memcpy+0x40/0x70
[ 57.443228][ T5045] __btrfs_cow_block+0x470/0x1830
[ 57.448283][ T5045] ? btrfs_qgroup_trace_subtree_after_cow+0x1a8/0x1190
[ 57.455223][ T5045] ? btrfs_cow_block+0x780/0x780
[ 57.460170][ T5045] ? btrfs_qgroup_add_swapped_blocks+0x730/0x7f0
[ 57.466594][ T5045] ? rcu_is_watching+0x15/0xb0
[ 57.471360][ T5045] btrfs_cow_block+0x403/0x780
[ 57.476141][ T5045] btrfs_search_slot+0xbfc/0x2f50
[ 57.481187][ T5045] ? btrfs_extent_root+0x2a1/0x3b0
[ 57.486342][ T5045] ? btrfs_find_item+0x5b0/0x5b0
[ 57.491299][ T5045] ? btrfs_extent_root+0x2a1/0x3b0
[ 57.496413][ T5045] ? btrfs_ioctl_snap_create+0x136/0x190
[ 57.502099][ T5045] ? btrfs_ioctl+0xbbc/0xd40
[ 57.506720][ T5045] ? btrfs_csum_root+0x3b0/0x3b0
[ 57.511699][ T5045] lookup_inline_extent_backref+0x3f2/0x1470
[ 57.517721][ T5045] ? insert_extent_data_ref+0xa30/0xa30
[ 57.523639][ T5045] ? __kasan_slab_alloc+0x66/0x70
[ 57.528689][ T5045] ? slab_post_alloc_hook+0x83/0x3a0
[ 57.534006][ T5045] ? kmem_cache_alloc+0x14e/0x2e0
[ 57.539146][ T5045] __btrfs_free_extent+0x292/0x2e50
[ 57.544393][ T5045] ? read_lock_is_recursive+0x20/0x20
[ 57.549771][ T5045] ? __btrfs_inc_extent_ref+0x5f0/0x5f0
[ 57.555342][ T5045] ? _raw_read_unlock+0x28/0x40
[ 57.560206][ T5045] ? do_raw_spin_unlock+0x13b/0x8b0
[ 57.565434][ T5045] __btrfs_run_delayed_refs+0xef9/0x3fc0
[ 57.571116][ T5045] ? validate_chain+0x119/0x58e0
[ 57.576099][ T5045] ? btrfs_run_delayed_refs+0x480/0x480
[ 57.581668][ T5045] ? read_lock_is_recursive+0x20/0x20
[ 57.587045][ T5045] ? mark_lock+0x9a/0x340
[ 57.591483][ T5045] ? __lock_acquire+0x1295/0x2000
[ 57.596552][ T5045] btrfs_run_delayed_refs+0x140/0x480
[ 57.601930][ T5045] btrfs_commit_transaction+0x427/0x3370
[ 57.607572][ T5045] ? read_lock_is_recursive+0x20/0x20
[ 57.612969][ T5045] ? do_raw_spin_lock+0x14d/0x3a0
[ 57.618029][ T5045] ? __lock_acquire+0x2000/0x2000
[ 57.623080][ T5045] ? btrfs_commit_transaction_async+0x450/0x450
[ 57.629354][ T5045] ? do_raw_spin_unlock+0x13b/0x8b0
[ 57.634631][ T5045] ? join_transaction+0xc52/0xe80
[ 57.639692][ T5045] ? join_transaction+0xc28/0xe80
[ 57.644742][ T5045] ? btrfs_record_root_in_trans+0x12d/0x180
[ 57.650653][ T5045] ? start_transaction+0x3de/0x1080
[ 57.655987][ T5045] create_snapshot+0x4a5/0x7e0
[ 57.660769][ T5045] btrfs_mksubvol+0x5d0/0x750
[ 57.665465][ T5045] ? __btrfs_ioctl_snap_create+0x450/0x450
[ 57.671316][ T5045] ? __might_fault+0xbe/0x120
[ 57.676000][ T5045] btrfs_mksnapshot+0xb5/0xf0
[ 57.680677][ T5045] __btrfs_ioctl_snap_create+0x338/0x450
[ 57.686314][ T5045] btrfs_ioctl_snap_create+0x136/0x190
[ 57.691798][ T5045] btrfs_ioctl+0xbbc/0xd40
[ 57.696401][ T5045] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 57.702822][ T5045] __se_sys_ioctl+0xf1/0x160
[ 57.707463][ T5045] do_syscall_64+0x41/0xc0
[ 57.711898][ T5045] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 57.717882][ T5045] RIP: 0033:0x7f35280d1a29
[ 57.722307][ T5045] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 57.742019][ T5045] RSP: 002b:00007ffe61c38ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 57.750442][ T5045] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f35280d1a29
[ 57.758415][ T5045] RDX: 00000000200000c0 RSI: 0000000050009401 RDI: 0000000000000004
[ 57.766380][ T5045] RBP: 00007ffe61c38d10 R08: 0000000000000002 R09: 00007ffe61c38d20
[ 57.774373][ T5045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 57.782344][ T5045] R13: 00007ffe61c38d50 R14: 00007ffe61c38d30 R15: 0000000000000002
[pid 5045] ioctl(4, BTRFS_IOC_SNAP_CREATE, {fd=5, name="\x42\x99\xc6\x3c\x6a\xca\x4b\xec\x68\x72\xd2\x02\x80\x8d\xda\x69\x34\x9c\x62\x54\x02\x9b\xbc\x4a\x38\xfb\x4e\x91\xbb\xa4\x82\x6c\xd7\x77\xcb\x59\x74\x4a\xdd\x18\x26\x71\x40\x88\x2a\x98\x37\x3f\xbb\xf4\xb5\xb0\x7c"}) = -1 ENOMEM (Cannot allocate memory)
[pid 5045] exit_group(0) = ?
[pid 5045] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5045, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=24 /* 0.24 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555574e4620 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./2/binderfs") = 0
[ 57.790511][ T5045]
[ 57.796449][ T5045] BTRFS: error (device loop0: state A) in __btrfs_free_extent:3053: errno=-12 Out of memory
[ 57.806741][ T5045] BTRFS info (device loop0: state EA): forced readonly
[ 57.813705][ T5045] BTRFS error (device loop0: state EA): failed to run delayed ref for logical 5255168 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[ 57.827900][ T5045] BTRFS: error (device loop0: state EA) in btrfs_run_delayed_refs:2127: errno=-12 Out of memory
[ 57.871299][ T4989] ------------[ cut here ]------------
[ 57.877075][ T4989] WARNING: CPU: 1 PID: 4989 at fs/btrfs/space-info.h:198 btrfs_space_info_update_bytes_may_use+0x29f/0x600
[ 57.888495][ T4989] Modules linked in:
[ 57.892469][ T4989] CPU: 1 PID: 4989 Comm: syz-executor159 Not tainted 6.3.0-syzkaller-13091-g3c4aa4434377 #0
[ 57.902557][ T4989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 57.912800][ T4989] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x29f/0x600
[ 57.920692][ T4989] Code: 25 00 00 74 08 4c 89 ff e8 2e 6e 38 fe 49 8b 1f 48 89 df 48 8b 6c 24 20 48 89 ee e8 4b 9c e0 fd 48 39 eb 73 14 e8 31 9a e0 fd <0f> 0b 45 31 f6 43 80 7c 25 00 00 75 ac eb b2 e8 1d 9a e0 fd 43 80
[ 57.940363][ T4989] RSP: 0018:ffffc900039df930 EFLAGS: 00010293
[ 57.946528][ T4989] RAX: ffffffff83aaf5df RBX: 000000000015f000 RCX: ffff8880250b3b80
[ 57.954587][ T4989] RDX: 0000000000000000 RSI: 0000000000160000 RDI: 000000000015f000
[ 57.962575][ T4989] RBP: 0000000000160000 R08: ffffffff83aaf5d5 R09: fffffbfff1cab85e
[ 57.970596][ T4989] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 57.978986][ T4989] R13: 1ffff11005af350c R14: ffffffffffea0000 R15: ffff88802d79a860
[ 57.987037][ T4989] FS: 00005555574e3300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 57.996013][ T4989] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 58.002593][ T4989] CR2: 00005555574ec628 CR3: 0000000018bd6000 CR4: 00000000003506e0
[ 58.010623][ T4989] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 58.018648][ T4989] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 58.026745][ T4989] Call Trace:
[ 58.030064][ T4989]
[ 58.032991][ T4989] ? do_raw_write_lock+0x147/0x4f0
[ 58.038142][ T4989] btrfs_block_rsv_release+0x441/0x520
[ 58.043802][ T4989] btrfs_release_global_block_rsv+0x33/0x260
[ 58.049793][ T4989] btrfs_free_block_groups+0xa35/0xe40
[ 58.055305][ T4989] close_ctree+0x6df/0xc60
[ 58.059743][ T4989] ? hook_sb_delete+0xa07/0xb30
[ 58.064695][ T4989] ? init_tree_roots+0x1f80/0x1f80
[ 58.069869][ T4989] ? hook_inode_free_security+0xb0/0xb0
[ 58.075510][ T4989] ? __fsnotify_vfsmount_delete+0x20/0x20
[ 58.081253][ T4989] ? clear_inode+0x150/0x150
[ 58.085991][ T4989] ? dput+0x403/0x420
[ 58.089994][ T4989] ? fscrypt_destroy_keyring+0x273/0x290
[ 58.095677][ T4989] ? btrfs_fill_super+0x2f0/0x2f0
[ 58.100735][ T4989] generic_shutdown_super+0x134/0x340
[ 58.106166][ T4989] kill_anon_super+0x3b/0x60
[ 58.110804][ T4989] btrfs_kill_super+0x41/0x50
[ 58.115551][ T4989] deactivate_locked_super+0xa4/0x110
[ 58.121027][ T4989] cleanup_mnt+0x426/0x4c0
[ 58.125496][ T4989] ? _raw_spin_unlock_irq+0x23/0x50
[ 58.130797][ T4989] task_work_run+0x24a/0x300
[ 58.135510][ T4989] ? dput+0x3a1/0x420
[ 58.139539][ T4989] ? task_work_cancel+0x2b0/0x2b0
[ 58.144605][ T4989] ? __x64_sys_umount+0x126/0x170
[ 58.149642][ T4989] ptrace_notify+0x2cd/0x380
[ 58.154370][ T4989] ? do_notify_parent+0xf50/0xf50
[ 58.159489][ T4989] ? user_path_at_empty+0x12f/0x180
[ 58.164801][ T4989] ? __x64_sys_umount+0x126/0x170
[ 58.169869][ T4989] ? path_umount+0xea0/0xea0
[ 58.174540][ T4989] ? syscall_enter_from_user_mode+0x32/0x230
[ 58.180600][ T4989] syscall_exit_to_user_mode+0x157/0x280
[ 58.186478][ T4989] do_syscall_64+0x4d/0xc0
[ 58.190923][ T4989] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 58.196855][ T4989] RIP: 0033:0x7f35280d2dc7
[ 58.201373][ T4989] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 58.221056][ T4989] RSP: 002b:00007ffe61c37bf8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[ 58.229521][ T4989] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f35280d2dc7
[ 58.237725][ T4989] RDX: 00007ffe61c37cb9 RSI: 000000000000000a RDI: 00007ffe61c37cb0
[ 58.245834][ T4989] RBP: 00007ffe61c37cb0 R08: 00000000ffffffff R09: 00007ffe61c37a90
[ 58.253858][ T4989] R10: 00005555574e4653 R11: 0000000000000202 R12: 00007ffe61c38d30
[ 58.261939][ T4989] R13: 00005555574e45f0 R14: 00007ffe61c37c20 R15: 0000000000000003
[ 58.270069][ T4989]
[ 58.273106][ T4989] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 58.280393][ T4989] CPU: 1 PID: 4989 Comm: syz-executor159 Not tainted 6.3.0-syzkaller-13091-g3c4aa4434377 #0
[ 58.290646][ T4989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 58.301158][ T4989] Call Trace:
[ 58.304439][ T4989]
[ 58.307366][ T4989] dump_stack_lvl+0x1e7/0x2d0
[ 58.312054][ T4989] ? nf_tcp_handle_invalid+0x650/0x650
[ 58.317710][ T4989] ? panic+0x770/0x770
[ 58.321778][ T4989] ? vscnprintf+0x5d/0x80
[ 58.326103][ T4989] panic+0x30f/0x770
[ 58.330000][ T4989] ? __warn+0x171/0x4a0
[ 58.334155][ T4989] ? __memcpy_flushcache+0x2b0/0x2b0
[ 58.339446][ T4989] __warn+0x314/0x4a0
[ 58.343425][ T4989] ? btrfs_space_info_update_bytes_may_use+0x29f/0x600
[ 58.350276][ T4989] report_bug+0x2b3/0x500
[ 58.354600][ T4989] ? btrfs_space_info_update_bytes_may_use+0x29f/0x600
[ 58.361448][ T4989] handle_bug+0x3d/0x70
[ 58.365687][ T4989] exc_invalid_op+0x1a/0x50
[ 58.370275][ T4989] asm_exc_invalid_op+0x1a/0x20
[ 58.375215][ T4989] RIP: 0010:btrfs_space_info_update_bytes_may_use+0x29f/0x600
[ 58.382682][ T4989] Code: 25 00 00 74 08 4c 89 ff e8 2e 6e 38 fe 49 8b 1f 48 89 df 48 8b 6c 24 20 48 89 ee e8 4b 9c e0 fd 48 39 eb 73 14 e8 31 9a e0 fd <0f> 0b 45 31 f6 43 80 7c 25 00 00 75 ac eb b2 e8 1d 9a e0 fd 43 80
[ 58.402461][ T4989] RSP: 0018:ffffc900039df930 EFLAGS: 00010293
[ 58.408528][ T4989] RAX: ffffffff83aaf5df RBX: 000000000015f000 RCX: ffff8880250b3b80
[ 58.416498][ T4989] RDX: 0000000000000000 RSI: 0000000000160000 RDI: 000000000015f000
[ 58.424464][ T4989] RBP: 0000000000160000 R08: ffffffff83aaf5d5 R09: fffffbfff1cab85e
[ 58.432431][ T4989] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 58.440398][ T4989] R13: 1ffff11005af350c R14: ffffffffffea0000 R15: ffff88802d79a860
[ 58.448372][ T4989] ? btrfs_space_info_update_bytes_may_use+0x295/0x600
[ 58.455249][ T4989] ? btrfs_space_info_update_bytes_may_use+0x29f/0x600
[ 58.462102][ T4989] ? do_raw_write_lock+0x147/0x4f0
[ 58.467246][ T4989] btrfs_block_rsv_release+0x441/0x520
[ 58.473014][ T4989] btrfs_release_global_block_rsv+0x33/0x260
[ 58.479025][ T4989] btrfs_free_block_groups+0xa35/0xe40
[ 58.484588][ T4989] close_ctree+0x6df/0xc60
[ 58.489268][ T4989] ? hook_sb_delete+0xa07/0xb30
[ 58.494116][ T4989] ? init_tree_roots+0x1f80/0x1f80
[ 58.499227][ T4989] ? hook_inode_free_security+0xb0/0xb0
[ 58.504768][ T4989] ? __fsnotify_vfsmount_delete+0x20/0x20
[ 58.510497][ T4989] ? clear_inode+0x150/0x150
[ 58.515086][ T4989] ? dput+0x403/0x420
[ 58.519067][ T4989] ? fscrypt_destroy_keyring+0x273/0x290
[ 58.524695][ T4989] ? btrfs_fill_super+0x2f0/0x2f0
[ 58.529807][ T4989] generic_shutdown_super+0x134/0x340
[ 58.535186][ T4989] kill_anon_super+0x3b/0x60
[ 58.539775][ T4989] btrfs_kill_super+0x41/0x50
[ 58.544444][ T4989] deactivate_locked_super+0xa4/0x110
[ 58.549814][ T4989] cleanup_mnt+0x426/0x4c0
[ 58.554232][ T4989] ? _raw_spin_unlock_irq+0x23/0x50
[ 58.559449][ T4989] task_work_run+0x24a/0x300
[ 58.564032][ T4989] ? dput+0x3a1/0x420
[ 58.568011][ T4989] ? task_work_cancel+0x2b0/0x2b0
[ 58.573031][ T4989] ? __x64_sys_umount+0x126/0x170
[ 58.578056][ T4989] ptrace_notify+0x2cd/0x380
[ 58.582643][ T4989] ? do_notify_parent+0xf50/0xf50
[ 58.587688][ T4989] ? user_path_at_empty+0x12f/0x180
[ 58.592883][ T4989] ? __x64_sys_umount+0x126/0x170
[ 58.597919][ T4989] ? path_umount+0xea0/0xea0
[ 58.602765][ T4989] ? syscall_enter_from_user_mode+0x32/0x230
[ 58.608742][ T4989] syscall_exit_to_user_mode+0x157/0x280
[ 58.614373][ T4989] do_syscall_64+0x4d/0xc0
[ 58.618811][ T4989] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 58.624698][ T4989] RIP: 0033:0x7f35280d2dc7
[ 58.629106][ T4989] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 58.648715][ T4989] RSP: 002b:00007ffe61c37bf8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[ 58.657128][ T4989] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f35280d2dc7
[ 58.665094][ T4989] RDX: 00007ffe61c37cb9 RSI: 000000000000000a RDI: 00007ffe61c37cb0
[ 58.673062][ T4989] RBP: 00007ffe61c37cb0 R08: 00000000ffffffff R09: 00007ffe61c37a90
[ 58.681036][ T4989] R10: 00005555574e4653 R11: 0000000000000202 R12: 00007ffe61c38d30
[ 58.688998][ T4989] R13: 00005555574e45f0 R14: 00007ffe61c37c20 R15: 0000000000000003
[ 58.697075][ T4989]
[ 58.700266][ T4989] Kernel Offset: disabled
[ 58.704680][ T4989] Rebooting in 86400 seconds..