./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor451726175 <...> Warning: Permanently added '10.128.1.20' (ED25519) to the list of known hosts. execve("./syz-executor451726175", ["./syz-executor451726175"], 0x7ffc9334aa30 /* 10 vars */) = 0 brk(NULL) = 0x55555688e000 brk(0x55555688ed00) = 0x55555688ed00 arch_prctl(ARCH_SET_FS, 0x55555688e380) = 0 set_tid_address(0x55555688e650) = 5830 set_robust_list(0x55555688e660, 24) = 0 rseq(0x55555688eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor451726175", 4096) = 27 getrandom("\x0b\xb2\x64\x12\x7b\xd1\x41\x65", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555688ed00 brk(0x5555568afd00) = 0x5555568afd00 brk(0x5555568b0000) = 0x5555568b0000 mprotect(0x7ff9fb831000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 write(1, "executing program\n", 18executing program ) = 18 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff9f3200000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 munmap(0x7ff9f3200000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 close(4) = 0 mkdir("./file1", 0777) = 0 [ 59.974439][ T5830] loop0: detected capacity change from 0 to 32768 [ 60.069789][ T5830] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,degraded,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow [ 60.091283][ T5830] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 60.099450][ T5830] bcachefs (loop0): Version upgrade required: [ 60.099450][ T5830] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 60.099450][ T5830] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 60.099450][ T5830] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 60.173103][ T5830] bcachefs (loop0): dropping and reconstructing all alloc info [ 60.186904][ T5830] invalid bkey u64s 18 type inode_v3 0:4100:U32_MAX len 0 ver 0: (unpack error) [ 60.186923][ T5830] invalid variable length fields: delete?, fixing [ 60.206876][ T5830] bcachefs (loop0): check_topology... done [ 60.212819][ T5830] bcachefs (loop0): accounting_read... done [ 60.219813][ T5830] bcachefs (loop0): alloc_read... done [ 60.225375][ T5830] bcachefs (loop0): stripes_read... done [ 60.231245][ T5830] bcachefs (loop0): snapshots_read... done [ 60.237297][ T5830] bcachefs (loop0): check_allocations... [ 60.238808][ T5830] ------------[ cut here ]------------ [ 60.250065][ T5830] kernel BUG at fs/bcachefs/bkey.c:130! [ 60.255901][ T5830] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 60.262859][ T5830] CPU: 0 UID: 0 PID: 5830 Comm: syz-executor451 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 60.273944][ T5830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 60.283991][ T5830] RIP: 0010:bch2_bkey_pack_pos_lossy+0x1956/0x1990 [ 60.290485][ T5830] Code: fd 90 0f 0b e8 3b b3 86 fd 90 0f 0b e8 33 b3 86 fd 90 0f 0b e8 2b b3 86 fd 90 0f 0b e8 23 b3 86 fd 90 0f 0b e8 1b b3 86 fd 90 <0f> 0b e8 c3 7f b0 07 e8 0e b3 86 fd 90 0f 0b e8 06 b3 86 fd 90 0f [ 60.310101][ T5830] RSP: 0018:ffffc90003605d20 EFLAGS: 00010293 [ 60.316160][ T5830] RAX: ffffffff840e26e5 RBX: ffffc908036060b8 RCX: ffff88803050da00 [ 60.324124][ T5830] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 60.332086][ T5830] RBP: ffffc90003605f58 R08: ffffffff840e15e6 R09: 0000000000000000 [ 60.340045][ T5830] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 60.348008][ T5830] R13: ffff888027ab28c0 R14: 0000000000000000 R15: ffffc900036060c0 [ 60.355967][ T5830] FS: 000055555688e380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 60.364890][ T5830] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 60.371464][ T5830] CR2: 000055e3ed200380 CR3: 000000007cf72000 CR4: 00000000003526f0 [ 60.379427][ T5830] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 60.387388][ T5830] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 60.395364][ T5830] Call Trace: [ 60.398637][ T5830] [ 60.401569][ T5830] ? __die_body+0x5f/0xb0 [ 60.405903][ T5830] ? die+0x9e/0xc0 [ 60.409616][ T5830] ? do_trap+0x15a/0x3a0 [ 60.413853][ T5830] ? bch2_bkey_pack_pos_lossy+0x1956/0x1990 [ 60.419790][ T5830] ? do_error_trap+0x1dc/0x2c0 [ 60.424551][ T5830] ? bch2_bkey_pack_pos_lossy+0x1956/0x1990 [ 60.430471][ T5830] ? __pfx_do_error_trap+0x10/0x10 [ 60.435583][ T5830] ? handle_invalid_op+0x34/0x40 [ 60.440512][ T5830] ? bch2_bkey_pack_pos_lossy+0x1956/0x1990 [ 60.446401][ T5830] ? exc_invalid_op+0x38/0x50 [ 60.451079][ T5830] ? asm_exc_invalid_op+0x1a/0x20 [ 60.456102][ T5830] ? bch2_bkey_pack_pos_lossy+0x856/0x1990 [ 60.461986][ T5830] ? bch2_bkey_pack_pos_lossy+0x1955/0x1990 [ 60.467873][ T5830] ? bch2_bkey_pack_pos_lossy+0x1956/0x1990 [ 60.473768][ T5830] ? __pfx_bch2_bkey_pack_pos_lossy+0x10/0x10 [ 60.479917][ T5830] ? __lock_acquire+0x1384/0x2050 [ 60.484941][ T5830] ? rcuwait_wake_up+0x1c/0x230 [ 60.489784][ T5830] ? bch2_btree_node_iter_init+0x841/0x4280 [ 60.495671][ T5830] bch2_btree_node_iter_init+0x894/0x4280 [ 60.501405][ T5830] ? bch2_printbuf_exit+0x6d/0xa0 [ 60.506426][ T5830] ? __pfx_bch2_btree_node_iter_init+0x10/0x10 [ 60.512580][ T5830] ? __pfx_check_noncircular+0x10/0x10 [ 60.518036][ T5830] ? __pfx___do_six_trylock+0x10/0x10 [ 60.523398][ T5830] ? __btree_path_up_until_good_node+0xafb/0xb40 [ 60.529744][ T5830] bch2_btree_path_level_init+0x4d2/0x9f0 [ 60.535458][ T5830] ? bch2_btree_path_traverse_one+0xa4b/0x2940 [ 60.541601][ T5830] bch2_btree_path_traverse_one+0x10de/0x2940 [ 60.547658][ T5830] ? __pfx_validate_chain+0x10/0x10 [ 60.552854][ T5830] ? bch2_check_allocations+0x1abe/0x7070 [ 60.558572][ T5830] ? __pfx_bch2_btree_path_traverse_one+0x10/0x10 [ 60.564977][ T5830] ? __pfx_bch2_btree_path_verify_level+0x10/0x10 [ 60.571383][ T5830] ? mark_lock+0x9a/0x360 [ 60.575702][ T5830] ? __lock_acquire+0x1384/0x2050 [ 60.580778][ T5830] ? bch2_btree_path_verify+0x1fd/0x300 [ 60.586316][ T5830] bch2_btree_iter_peek_upto+0xb58/0x70e0 [ 60.592037][ T5830] ? __pfx_lock_acquire+0x10/0x10 [ 60.597053][ T5830] ? __pfx___might_resched+0x10/0x10 [ 60.602329][ T5830] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 60.608215][ T5830] ? __pfx_bch2_btree_iter_peek_upto+0x10/0x10 [ 60.614365][ T5830] ? bch2_trans_begin+0x9c5/0x1c00 [ 60.619471][ T5830] ? bch2_trans_begin+0x16c1/0x1c00 [ 60.624664][ T5830] ? bch2_check_allocations+0x1a53/0x7070 [ 60.630384][ T5830] ? __pfx___might_resched+0x10/0x10 [ 60.635662][ T5830] ? __bch2_path_free+0x6ef/0x820 [ 60.640940][ T5830] ? __asan_memset+0x23/0x50 [ 60.645524][ T5830] bch2_check_allocations+0x1abe/0x7070 [ 60.651073][ T5830] ? prb_first_seq+0x131/0x210 [ 60.655834][ T5830] ? __pfx_prb_first_seq+0x10/0x10 [ 60.660944][ T5830] ? this_cpu_in_panic+0x4f/0x80 [ 60.665872][ T5830] ? bch2_check_allocations+0x798/0x7070 [ 60.671587][ T5830] ? __pfx_validate_chain+0x10/0x10 [ 60.676874][ T5830] ? __pfx_validate_chain+0x10/0x10 [ 60.682061][ T5830] ? do_raw_spin_lock+0x14f/0x370 [ 60.687074][ T5830] ? __pfx_bch2_check_allocations+0x10/0x10 [ 60.692965][ T5830] ? prb_read_valid+0xa9/0xf0 [ 60.697635][ T5830] ? __pfx_prb_read_valid+0x10/0x10 [ 60.702824][ T5830] ? desc_read+0x200/0x3f0 [ 60.707231][ T5830] ? desc_read+0x1a2/0x3f0 [ 60.711635][ T5830] ? prb_first_seq+0x131/0x210 [ 60.716399][ T5830] ? __pfx_prb_first_seq+0x10/0x10 [ 60.721499][ T5830] ? this_cpu_in_panic+0x4f/0x80 [ 60.726429][ T5830] ? _prb_read_valid+0xa39/0xac0 [ 60.731359][ T5830] ? bch2_check_allocations+0x1a47/0x7070 [ 60.737074][ T5830] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 60.743044][ T5830] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 60.749363][ T5830] ? __console_unlock+0x12d/0x1f0 [ 60.754378][ T5830] ? bch2_check_allocations+0x2119/0x7070 [ 60.760087][ T5830] ? this_cpu_in_panic+0x4f/0x80 [ 60.765018][ T5830] ? __wake_up_klogd+0xd5/0x110 [ 60.769946][ T5830] ? __pfx_lock_release+0x10/0x10 [ 60.774963][ T5830] ? rcu_is_watching+0x15/0xb0 [ 60.779717][ T5830] ? bch2_check_allocations+0x798/0x7070 [ 60.785341][ T5830] ? __bch2_print+0x17a/0x220 [ 60.790014][ T5830] ? local_clock+0x10/0x30 [ 60.794419][ T5830] ? __pfx___bch2_print+0x10/0x10 [ 60.799436][ T5830] bch2_run_recovery_pass+0xf0/0x1e0 [ 60.804712][ T5830] bch2_run_recovery_passes+0x387/0x870 [ 60.810256][ T5830] bch2_fs_recovery+0x25cc/0x39c0 [ 60.815278][ T5830] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 60.820664][ T5830] ? __pfx_lock_release+0x10/0x10 [ 60.825682][ T5830] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 60.831302][ T5830] ? __pfx_lock_release+0x10/0x10 [ 60.836406][ T5830] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 60.842029][ T5830] ? bch2_get_next_online_dev+0x4b9/0x4f0 [ 60.847735][ T5830] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 60.853357][ T5830] ? llist_reverse_order+0x72/0x90 [ 60.858460][ T5830] bch2_fs_start+0x356/0x5b0 [ 60.863055][ T5830] bch2_fs_get_tree+0xd68/0x1710 [ 60.867993][ T5830] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 60.873365][ T5830] ? generic_parse_monolithic+0x387/0x400 [ 60.879081][ T5830] ? cap_capable+0x1b4/0x250 [ 60.883665][ T5830] ? safesetid_security_capable+0xb2/0x1d0 [ 60.889470][ T5830] vfs_get_tree+0x90/0x2b0 [ 60.893881][ T5830] do_new_mount+0x2be/0xb40 [ 60.898382][ T5830] ? __pfx_do_new_mount+0x10/0x10 [ 60.903397][ T5830] __se_sys_mount+0x2d6/0x3c0 [ 60.908069][ T5830] ? __pfx___se_sys_mount+0x10/0x10 [ 60.913262][ T5830] ? do_syscall_64+0x100/0x230 [ 60.918017][ T5830] ? __x64_sys_mount+0x20/0xc0 [ 60.922776][ T5830] do_syscall_64+0xf3/0x230 [ 60.927269][ T5830] ? clear_bhb_loop+0x35/0x90 [ 60.931936][ T5830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.937817][ T5830] RIP: 0033:0x7ff9fb7b9c3a [ 60.942238][ T5830] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.961835][ T5830] RSP: 002b:00007ffd79acb698 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 60.970240][ T5830] RAX: ffffffffffffffda RBX: 00007ffd79acb6b0 RCX: 00007ff9fb7b9c3a [ 60.978219][ T5830] RDX: 00000000200058c0 RSI: 0000000020005900 RDI: 00007ffd79acb6b0 [ 60.986195][ T5830] RBP: 0000000000000004 R08: 00007ffd79acb6f0 R09: 0000000000005932 [ 60.994179][ T5830] R10: 0000000000010000 R11: 0000000000000282 R12: 0000000000010000 [ 61.002145][ T5830] R13: 00007ffd79acb6f0 R14: 0000000000000003 R15: 0000000001000000 [ 61.010137][ T5830] [ 61.013152][ T5830] Modules linked in: [ 61.017218][ T5830] ---[ end trace 0000000000000000 ]--- [ 61.022793][ T5830] RIP: 0010:bch2_bkey_pack_pos_lossy+0x1956/0x1990 [ 61.029335][ T5830] Code: fd 90 0f 0b e8 3b b3 86 fd 90 0f 0b e8 33 b3 86 fd 90 0f 0b e8 2b b3 86 fd 90 0f 0b e8 23 b3 86 fd 90 0f 0b e8 1b b3 86 fd 90 <0f> 0b e8 c3 7f b0 07 e8 0e b3 86 fd 90 0f 0b e8 06 b3 86 fd 90 0f [ 61.049060][ T5830] RSP: 0018:ffffc90003605d20 EFLAGS: 00010293 [ 61.055188][ T5830] RAX: ffffffff840e26e5 RBX: ffffc908036060b8 RCX: ffff88803050da00 [ 61.063199][ T5830] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 61.071192][ T5830] RBP: ffffc90003605f58 R08: ffffffff840e15e6 R09: 0000000000000000 [ 61.079335][ T5830] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 61.087338][ T5830] R13: ffff888027ab28c0 R14: 0000000000000000 R15: ffffc900036060c0 [ 61.095341][ T5830] FS: 000055555688e380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 61.104290][ T5830] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 61.110936][ T5830] CR2: 000055e3ed1f7e58 CR3: 000000007cf72000 CR4: 00000000003526f0 [ 61.118897][ T5830] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 61.127330][ T5830] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 61.135369][ T5830] Kernel panic - not syncing: Fatal exception [ 61.141708][ T5830] Kernel Offset: disabled [ 61.146016][ T5830] Rebooting in 86400 seconds..