program: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) r2 = inotify_init1(0x0) inotify_add_watch(r2, &(0x7f00000006c0)='.\x00', 0xaa) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) dup3(r2, r3, 0x0) getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000000000)=""/114, &(0x7f0000000100)=0x72) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r4, 0x89f9, &(0x7f00000002c0)={'sit0\x00', &(0x7f0000000280)={@empty, @empty, 0x19, 0x3}}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000400)={'wlan1\x00', 0x0}) syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x818001, &(0x7f0000000480)={[{@inodes_32bit}, {@shared_inode_numbers}, {@errors_continue}, {@inline_data}, {@direct_io}, {@nochanges}, {@prjquota}, {@grpquota}, {@version_upgrade={'version_upgrade', 0x3d, 'incompatible'}}]}, 0x21, 0x5978, &(0x7f000000b5c0)="$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") sendmsg$NL80211_CMD_PROBE_MESH_LINK(r6, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000440)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010026bd7000fbdbdf9618b94c0008000300", @ANYRES32=r8, @ANYBLOB="0a0006000802110000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x44804) readv(r3, &(0x7f0000000440)=[{&(0x7f0000000340)=""/48, 0x30}], 0x50) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB='1\x00'/14], 0x14}}, 0x0) [ 75.898632][ T4684] Bluetooth: hci0: command tx timeout [ 76.163580][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.166868][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.352865][ T5336] loop0: detected capacity change from 0 to 32768 [ 76.701928][ T5336] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,grpquota,prjquota,nochanges,nojournal_transaction_names,read_only,version_upgrade=incompatible [ 76.701952][ T5336] allowing incompatible features above 0.0: (unknown version) [ 76.701960][ T5336] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 76.793977][ T5336] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 76.816770][ T5336] bcachefs (loop0): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing [ 76.835094][ T5336] bcachefs (loop0): invalid bkey in superblock btree=xattrs level=1: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 0 crc: c_size 1 size 1 offset 0 nonce 0 csum none 12010b:c0004000b compress none [ 76.835117][ T5336] has non ptr field, deleting [ 76.899842][ T5336] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 76.904978][ T5336] bcachefs (loop0): Version upgrade from 1.3: rebalance_work to 1.7: mi_btree_bitmap incomplete [ 76.904978][ T5336] Doing compatible version upgrade from 1.3: rebalance_work to 1.28: inode_has_case_insensitive [ 76.904978][ T5336] running recovery passes: check_allocations,check_extents_to_backpointers,check_subvols,check_inodes,check_dirents [ 76.992480][ T5336] bcachefs (loop0): Now allowing incompatible features up to 1.28: inode_has_case_insensitive, previously allowed up to 0.0: (unknown version) [ 76.992480][ T5336] [ 77.074055][ T5336] bcachefs (loop0): error reading btree root btree=inodes level=0: btree_node_read_error, fixing [ 77.133833][ T5336] bcachefs (loop0): btree node read error at btree snapshots level 0/0 [ 77.133876][ T5336] u64s 11 type btree_ptr_v2 POS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 251 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 77.133888][ T5336] loop0 node offset 0/251 bset u64s 0: incorrect max key SPOS_MAX [ 77.133897][ T5336] flagging btree snapshots lost data [ 77.133903][ T5336] running recovery pass reconstruct_snapshots (21), currently at recovery_pass_empty (0) [ 77.133911][ T5336] ret btree_node_read_validate_error [ 77.342368][ T5336] bcachefs (loop0): error reading btree root btree=snapshots level=0: btree_node_read_error, fixing [ 77.374636][ T5336] bcachefs (loop0): check_topology... [ 77.374754][ T5336] bcachefs (loop0): btree root inodes unreadable, must recover from scan [ 77.400803][ T5336] bcachefs (loop0): running recovery pass scan_for_btree_nodes (1), currently at check_topology (2) - rewinding [ 77.449192][ T5336] bcachefs (loop0): bch2_check_root(): error restart_recovery [ 77.458684][ T5336] bcachefs (loop0): scan_for_btree_nodes... [ 77.479571][ T5343] bcachefs (loop0): invalid bkey in btree_node btree=inodes level=0: u64s 17 type inode_v3 0:4097:U32_MAX len 0 ver 0: (unpack error) [ 77.479603][ T5343] invalid variable length fields, deleting [ 77.519167][ T5336] bcachefs (loop0): btree node scan found 6 nodes after overwrites [ 77.540545][ T5336] done [ 77.542002][ T5336] bcachefs (loop0): check_topology... [ 77.542109][ T5336] bcachefs (loop0): btree root inodes unreadable, must recover from scan [ 77.567709][ T5336] bcachefs (loop0): no nodes found for btree inodes, continuing [ 77.573428][ T5336] bcachefs (loop0): btree root snapshots unreadable, must recover from scan [ 77.580356][ T5336] bcachefs (loop0): bch2_get_scanned_nodes(): recovery btree=snapshots level=0 POS_MIN - SPOS_MAX [ 77.602822][ T5336] bcachefs (loop0): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 77.631258][ T5336] done [ 77.633018][ T5336] bcachefs (loop0): accounting_read... done [ 77.648629][ T5336] bcachefs (loop0): alloc_read... done [ 77.651515][ T5336] bcachefs (loop0): snapshots_read... done [ 77.655593][ T5336] bcachefs (loop0): check_allocations... [ 77.705565][ T5336] bcachefs (loop0): bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 77.705618][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 77.782039][ T5336] bcachefs (loop0): bucket 0:32 data type btree ptr gen 0 missing in alloc btree [ 77.782118][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0, fixing [ 77.816672][ T5336] bcachefs (loop0): bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 77.816689][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 77.876659][ T5336] bcachefs (loop0): bucket 0:42 data type btree ptr gen 0 missing in alloc btree [ 77.876676][ T5336] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1db8f60c84bb244c written 8 min_key POS_MIN durability: 1 ptr: 0:42:0 gen 0, fixing [ 77.906317][ T5336] bcachefs (loop0): bucket 0:0 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.923685][ T4684] Bluetooth: hci0: command tx timeout [ 77.926677][ T5336] bcachefs (loop0): bucket 0:0 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.950751][ T5336] bcachefs (loop0): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.955712][ T5336] bcachefs (loop0): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 77.962640][ T5336] bcachefs (loop0): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 77.985918][ T5336] bcachefs (loop0): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.007683][ T5336] bcachefs (loop0): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.034209][ T5336] bcachefs (loop0): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.049022][ T5336] bcachefs (loop0): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.053816][ T5336] bcachefs (loop0): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.084436][ T5336] bcachefs (loop0): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.108796][ T5336] bcachefs (loop0): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.113735][ T5336] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.119476][ T5336] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.124684][ T5336] bcachefs (loop0): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.144474][ T5336] bcachefs (loop0): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.175099][ T5336] bcachefs (loop0): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.190538][ T5336] bcachefs (loop0): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 78.210753][ T5336] bcachefs (loop0): bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.226384][ T5336] bcachefs (loop0): bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.246069][ T5336] bcachefs (loop0): bucket 0:17 gen 0 has wrong data_type: got free, should be sb, fixing [ 78.246084][ T5336] Ratelimiting new instances of previous error [ 78.301407][ T5336] bcachefs (loop0): bucket 0:17 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 78.301424][ T5336] Ratelimiting new instances of previous error [ 78.381787][ T5336] done [ 78.403688][ T5336] bcachefs (loop0): going read-write [ 78.460322][ T5336] bcachefs (loop0): journal_replay... done [ 78.543324][ T5336] bcachefs (loop0): check_lrus... done [ 78.562819][ T5336] bcachefs (loop0): check_backpointers_to_extents... done [ 78.579583][ T5336] bcachefs (loop0): check_extents_to_backpointers... [ 78.580260][ T5336] bcachefs (loop0): scanning for missing backpointers in 4/128 buckets [ 78.607072][ T5336] done [ 78.609116][ T5336] bcachefs (loop0): reconstruct_snapshots... done [ 78.612385][ T5336] bcachefs (loop0): check_subvols... done [ 78.614971][ T5336] bcachefs (loop0): check_inodes... done [ 78.630206][ T5336] bcachefs (loop0): check_dirents... [ 78.650248][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 7101912138234133656 [ 78.650278][ T5336] u64s 7 type dirent 4096:189491840996961599:U32_MAX len 0 ver 0: file0 -> 4098 type dir, fixing [ 78.682121][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 4492619974098513664 [ 78.682138][ T5336] u64s 7 type dirent 4096:1896155912177158345:U32_MAX len 0 ver 0: file3 -> 536870913 type reg, fixing [ 78.703685][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 8266921511786619744 [ 78.703705][ T5336] u64s 7 type dirent 4096:2695648408715017799:U32_MAX len 0 ver 0: file2 -> 536870913 type reg, fixing [ 78.736075][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 7918983129521259319 [ 78.736094][ T5336] u64s 7 type dirent 4096:4330382808765833931:U32_MAX len 0 ver 0: file1 -> 536870912 type reg, fixing [ 78.798564][ T5336] bcachefs (loop0): dirent points to missing inode: [ 78.798579][ T5336] u64s 7 type dirent 4096:4492619974098513664:U32_MAX len 0 ver 0: file3 -> 536870913 type reg, fixing [ 78.813445][ T5336] bcachefs (loop0): dirent points to missing inode: [ 78.813460][ T5336] u64s 7 type dirent 4096:7101912138234133656:U32_MAX len 0 ver 0: file0 -> 4098 type dir, fixing [ 78.835245][ T5336] bcachefs (loop0): dirent points to missing inode: [ 78.835261][ T5336] u64s 7 type dirent 4096:7918983129521259319:U32_MAX len 0 ver 0: file1 -> 536870912 type reg, fixing [ 78.881443][ T5336] bcachefs (loop0): hash table key at wrong offset: should be at 5991012929250034265 [ 78.881460][ T5336] u64s 8 type dirent 4096:8130059955150870709:U32_MAX len 0 ver 0: lost+found -> 4097 type dir, fixing [ 78.913168][ T5336] bcachefs (loop0): dirent points to missing inode: [ 78.913187][ T5336] u64s 7 type dirent 4096:8266921511786619744:U32_MAX len 0 ver 0: file2 -> 536870913 type reg, fixing [ 78.937186][ T5336] ================================================================== [ 78.942103][ T5336] BUG: KASAN: use-after-free in bch2_check_dirents+0x1fac/0x33f0 [ 78.947687][ T5336] Read of size 1 at addr ffff888055043078 by task syz.0.0/5336 [ 78.954673][ T5336] [ 78.956331][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 78.956357][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.956366][ T5336] Call Trace: [ 78.956377][ T5336] [ 78.956384][ T5336] dump_stack_lvl+0x189/0x250 [ 78.956408][ T5336] ? __virt_addr_valid+0x1c8/0x5c0 [ 78.956426][ T5336] ? rcu_is_watching+0x15/0xb0 [ 78.956443][ T5336] ? __kasan_check_byte+0x12/0x40 [ 78.956459][ T5336] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.956609][ T5336] ? rcu_is_watching+0x15/0xb0 [ 78.956625][ T5336] ? lock_release+0x4b/0x3e0 [ 78.956641][ T5336] ? __virt_addr_valid+0x1c8/0x5c0 [ 78.956658][ T5336] ? __virt_addr_valid+0x4a5/0x5c0 [ 78.956675][ T5336] print_report+0xd2/0x2b0 [ 78.956686][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 78.956700][ T5336] kasan_report+0x118/0x150 [ 78.956716][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 78.956731][ T5336] bch2_check_dirents+0x1fac/0x33f0 [ 78.956747][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 78.956761][ T5336] ? desc_read+0x1b8/0x3f0 [ 78.956777][ T5336] ? prb_first_seq+0xfd/0x1a0 [ 78.956789][ T5336] ? __pfx_bch2_check_dirents+0x10/0x10 [ 78.956802][ T5336] ? __pfx_prb_first_seq+0x10/0x10 [ 78.956816][ T5336] ? desc_read+0x1b8/0x3f0 [ 78.956828][ T5336] ? this_cpu_in_panic+0x4f/0x80 [ 78.956840][ T5336] ? _prb_read_valid+0xa07/0xa90 [ 78.956852][ T5336] ? console_flush_all+0x13a/0xc40 [ 78.956869][ T5336] ? up+0xde/0x150 [ 78.956964][ T5336] ? __console_unlock+0x14c/0x1a0 [ 78.956980][ T5336] ? __pfx___console_unlock+0x10/0x10 [ 78.956997][ T5336] ? prb_read_valid+0x3c/0x60 [ 78.957011][ T5336] ? console_unlock+0x21b/0x270 [ 78.957026][ T5336] ? __pfx_console_unlock+0x10/0x10 [ 78.957041][ T5336] ? vprintk_emit+0x63e/0x7a0 [ 78.957060][ T5336] ? __bch2_print+0x176/0x220 [ 78.957075][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 78.957093][ T5336] ? _raw_spin_unlock_irq+0x23/0x50 [ 78.957109][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 78.957128][ T5336] __bch2_run_recovery_passes+0x395/0x1010 [ 78.957147][ T5336] bch2_run_recovery_passes+0x184/0x210 [ 78.957162][ T5336] bch2_fs_recovery+0x2690/0x3a50 [ 78.957175][ T5336] ? check_noncircular+0xe0/0x160 [ 78.957194][ T5336] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 78.957209][ T5336] ? __lock_acquire+0xab9/0xd20 [ 78.957223][ T5336] ? __lock_acquire+0xab9/0xd20 [ 78.957263][ T5336] ? __lock_acquire+0xab9/0xd20 [ 78.957278][ T5336] ? bch2_fs_start+0xa0f/0xda0 [ 78.957293][ T5336] ? up_write+0x1c4/0x420 [ 78.957316][ T5336] ? bch2_fs_start+0x5e7/0xda0 [ 78.957331][ T5336] bch2_fs_start+0xaaf/0xda0 [ 78.957346][ T5336] ? bch2_fs_start+0x5e7/0xda0 [ 78.957359][ T5336] ? __pfx_bch2_fs_start+0x10/0x10 [ 78.957378][ T5336] ? sget+0x267/0x620 [ 78.957391][ T5336] bch2_fs_get_tree+0xb39/0x1520 [ 78.957412][ T5336] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 78.957430][ T5336] ? aa_get_newest_label+0xf7/0x5d0 [ 78.957448][ T5336] ? vfs_parse_monolithic_sep+0x2df/0x310 [ 78.957466][ T5336] ? apparmor_capable+0x137/0x1b0 [ 78.957480][ T5336] vfs_get_tree+0x92/0x2b0 [ 78.957506][ T5336] do_new_mount+0x24a/0xa40 [ 78.957524][ T5336] __se_sys_mount+0x317/0x410 [ 78.957541][ T5336] ? __pfx___se_sys_mount+0x10/0x10 [ 78.957554][ T5336] ? rcu_is_watching+0x15/0xb0 [ 78.957569][ T5336] ? do_syscall_64+0xbe/0x3b0 [ 78.957580][ T5336] ? __x64_sys_mount+0x20/0xc0 [ 78.957595][ T5336] do_syscall_64+0xfa/0x3b0 [ 78.957606][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 78.957624][ T5336] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.957636][ T5336] ? clear_bhb_loop+0x60/0xb0 [ 78.957649][ T5336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.957661][ T5336] RIP: 0033:0x7fde9af900ca [ 78.957675][ T5336] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 78.957685][ T5336] RSP: 002b:00007fde9beafe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 78.957699][ T5336] RAX: ffffffffffffffda RBX: 00007fde9beafef0 RCX: 00007fde9af900ca [ 78.957707][ T5336] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 00007fde9beafeb0 [ 78.957714][ T5336] RBP: 00002000000000c0 R08: 00007fde9beafef0 R09: 0000000000818001 [ 78.957721][ T5336] R10: 0000000000818001 R11: 0000000000000246 R12: 0000200000000080 [ 78.957729][ T5336] R13: 00007fde9beafeb0 R14: 0000000000005978 R15: 0000200000000480 [ 78.957740][ T5336] [ 78.957745][ T5336] [ 79.428009][ T5336] The buggy address belongs to the physical page: [ 79.432861][ T5336] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55043 [ 79.437805][ T5336] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 79.443052][ T5336] raw: 04fff00000000000 0000000000000000 ffffea00015410c8 0000000000000000 [ 79.454059][ T5336] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 79.461339][ T5336] page dumped because: kasan: bad access detected [ 79.464141][ T5336] page_owner tracks the page as freed [ 79.466293][ T5336] page last allocated via order 5, migratetype Unmovable, gfp_mask 0x42800(GFP_NOWAIT|__GFP_COMP), pid 5336, tgid 5335 (syz.0.0), ts 77132059952, free_ts 78936653017 [ 79.488954][ T5336] post_alloc_hook+0x240/0x2a0 [ 79.491505][ T5336] get_page_from_freelist+0x21e4/0x22c0 [ 79.494254][ T5336] __alloc_frozen_pages_noprof+0x181/0x370 [ 79.501701][ T5336] __alloc_pages_noprof+0xa/0x30 [ 79.504388][ T5336] ___kmalloc_large_node+0x85/0x210 [ 79.507291][ T5336] __kmalloc_large_node_noprof+0x18/0x90 [ 79.540709][ T5336] __kvmalloc_node_noprof+0x6d/0x5f0 [ 79.543214][ T5336] bch2_btree_node_read_done+0x3305/0x5520 [ 79.546748][ T5336] btree_node_read_work+0x426/0xe30 [ 79.559920][ T5336] bch2_btree_node_read+0x887/0x2a00 [ 79.562854][ T5336] bch2_btree_root_read+0x5f0/0x760 [ 79.565355][ T5336] read_btree_roots+0x2c6/0x840 [ 79.568018][ T5336] bch2_fs_recovery+0x261f/0x3a50 [ 79.580889][ T5336] bch2_fs_start+0xaaf/0xda0 [ 79.583832][ T5336] bch2_fs_get_tree+0xb39/0x1520 [ 79.586915][ T5336] vfs_get_tree+0x92/0x2b0 [ 79.589382][ T5336] page last free pid 5336 tgid 5335 stack trace: [ 79.594326][ T5336] __free_pages_ok+0xa44/0xc20 [ 79.597125][ T5336] __folio_put+0x21b/0x2c0 [ 79.600064][ T5336] free_large_kmalloc+0x145/0x200 [ 79.602542][ T5336] btree_node_sort+0x117f/0x1760 [ 79.604979][ T5336] bch2_btree_post_write_cleanup+0x11f/0xad0 [ 79.608717][ T5336] bch2_btree_node_prep_for_write+0x337/0x650 [ 79.615280][ T5336] bch2_trans_lock_write+0x669/0xba0 [ 79.620174][ T5336] __bch2_trans_commit+0x2773/0x8870 [ 79.624839][ T5336] bch2_check_dirents+0x1c5c/0x33f0 [ 79.628221][ T5336] __bch2_run_recovery_passes+0x395/0x1010 [ 79.631624][ T5336] bch2_run_recovery_passes+0x184/0x210 [ 79.634604][ T5336] bch2_fs_recovery+0x2690/0x3a50 [ 79.638059][ T5336] bch2_fs_start+0xaaf/0xda0 [ 79.641592][ T5336] bch2_fs_get_tree+0xb39/0x1520 [ 79.644931][ T5336] vfs_get_tree+0x92/0x2b0 [ 79.648049][ T5336] do_new_mount+0x24a/0xa40 [ 79.651910][ T5336] [ 79.653764][ T5336] Memory state around the buggy address: [ 79.659592][ T5336] ffff888055042f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 79.668629][ T5336] ffff888055042f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 79.673954][ T5336] >ffff888055043000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 79.684886][ T5336] ^ [ 79.692622][ T5336] ffff888055043080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 79.698335][ T5336] ffff888055043100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 79.703830][ T5336] ================================================================== [ 79.753334][ T5336] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 79.758254][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 79.768558][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.776638][ T5336] Call Trace: [ 79.779648][ T5336] [ 79.782317][ T5336] dump_stack_lvl+0x99/0x250 [ 79.791103][ T5336] ? __asan_memcpy+0x40/0x70 [ 79.796133][ T5336] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.801501][ T5336] ? __pfx__printk+0x10/0x10 [ 79.808701][ T5336] panic+0x2db/0x790 [ 79.811551][ T5336] ? __pfx_panic+0x10/0x10 [ 79.815390][ T5336] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 79.824269][ T5336] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 79.841356][ T5336] ? print_memory_metadata+0x314/0x400 [ 79.846342][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 79.849695][ T5336] check_panic_on_warn+0x89/0xb0 [ 79.860802][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 79.863407][ T5336] end_report+0x78/0x160 [ 79.866162][ T5336] kasan_report+0x129/0x150 [ 79.871288][ T5336] ? bch2_check_dirents+0x1fac/0x33f0 [ 79.881600][ T5336] bch2_check_dirents+0x1fac/0x33f0 [ 79.885701][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 79.893240][ T5336] ? desc_read+0x1b8/0x3f0 [ 79.902090][ T5336] ? prb_first_seq+0xfd/0x1a0 [ 79.904888][ T5336] ? __pfx_bch2_check_dirents+0x10/0x10 [ 79.907679][ T5336] ? __pfx_prb_first_seq+0x10/0x10 [ 79.919499][ T5336] ? desc_read+0x1b8/0x3f0 [ 79.921846][ T5336] ? this_cpu_in_panic+0x4f/0x80 [ 79.924534][ T5336] ? _prb_read_valid+0xa07/0xa90 [ 79.927213][ T5336] ? console_flush_all+0x13a/0xc40 [ 79.930611][ T5336] ? up+0xde/0x150 [ 79.933589][ T5336] ? __console_unlock+0x14c/0x1a0 [ 79.937932][ T5336] ? __pfx___console_unlock+0x10/0x10 [ 79.943358][ T5336] ? prb_read_valid+0x3c/0x60 [ 79.949618][ T5336] ? console_unlock+0x21b/0x270 [ 79.952282][ T5336] ? __pfx_console_unlock+0x10/0x10 [ 79.957071][ T5336] ? vprintk_emit+0x63e/0x7a0 [ 79.960858][ T5336] ? __bch2_print+0x176/0x220 [ 79.966242][ T5336] ? bch2_check_dirents+0x2f1/0x33f0 [ 79.970738][ T5336] ? _raw_spin_unlock_irq+0x23/0x50 [ 79.975620][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 79.982878][ T5336] __bch2_run_recovery_passes+0x395/0x1010 [ 79.987396][ T5336] bch2_run_recovery_passes+0x184/0x210 [ 79.991348][ T5336] bch2_fs_recovery+0x2690/0x3a50 [ 79.995320][ T5336] ? check_noncircular+0xe0/0x160 [ 79.998402][ T5336] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 80.005093][ T5336] ? __lock_acquire+0xab9/0xd20 [ 80.010317][ T5336] ? __lock_acquire+0xab9/0xd20 [ 80.013412][ T5336] ? __lock_acquire+0xab9/0xd20 [ 80.016573][ T5336] ? bch2_fs_start+0xa0f/0xda0 [ 80.023414][ T5336] ? up_write+0x1c4/0x420 [ 80.028915][ T5336] ? bch2_fs_start+0x5e7/0xda0 [ 80.032125][ T5336] bch2_fs_start+0xaaf/0xda0 [ 80.035138][ T5336] ? bch2_fs_start+0x5e7/0xda0 [ 80.060243][ T5336] ? __pfx_bch2_fs_start+0x10/0x10 [ 80.062676][ T5336] ? sget+0x267/0x620 [ 80.064625][ T5336] bch2_fs_get_tree+0xb39/0x1520 [ 80.067912][ T5336] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 80.081508][ T5336] ? aa_get_newest_label+0xf7/0x5d0 [ 80.084788][ T5336] ? vfs_parse_monolithic_sep+0x2df/0x310 [ 80.088078][ T5336] ? apparmor_capable+0x137/0x1b0 [ 80.091191][ T5336] vfs_get_tree+0x92/0x2b0 [ 80.100563][ T5336] do_new_mount+0x24a/0xa40 [ 80.102808][ T5336] __se_sys_mount+0x317/0x410 [ 80.105256][ T5336] ? __pfx___se_sys_mount+0x10/0x10 [ 80.126612][ T5336] ? rcu_is_watching+0x15/0xb0 [ 80.139324][ T5336] ? do_syscall_64+0xbe/0x3b0 [ 80.143045][ T5336] ? __x64_sys_mount+0x20/0xc0 [ 80.146091][ T5336] do_syscall_64+0xfa/0x3b0 [ 80.150755][ T5336] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.153350][ T5336] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.156561][ T5336] ? clear_bhb_loop+0x60/0xb0 [ 80.169722][ T5336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.173423][ T5336] RIP: 0033:0x7fde9af900ca [ 80.175901][ T5336] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 80.203793][ T5336] RSP: 002b:00007fde9beafe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 80.208569][ T5336] RAX: ffffffffffffffda RBX: 00007fde9beafef0 RCX: 00007fde9af900ca [ 80.213713][ T5336] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 00007fde9beafeb0 [ 80.239339][ T5336] RBP: 00002000000000c0 R08: 00007fde9beafef0 R09: 0000000000818001 [ 80.246489][ T5336] R10: 0000000000818001 R11: 0000000000000246 R12: 0000200000000080 [ 80.253095][ T5336] R13: 00007fde9beafeb0 R14: 0000000000005978 R15: 0000200000000480 [ 80.257566][ T5336] [ 80.259670][ T5336] Kernel Offset: disabled [ 80.262446][ T5336] Rebooting in 86400 seconds..