Warning: Permanently added '10.128.0.56' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 529.854951][ T6933] BTRFS: device fsid 7ddc34fc-b256-496a-8775-194356e1b78b devid 0 transid 5 /dev/loop1 scanned by syz-executor010 (6933) [ 529.952341][ T6932] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:0 old:/dev/loop2 new:/dev/loop5 [ 529.980566][ T6936] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:0 old:/dev/loop2 new:/dev/loop0 [ 530.082775][ T6937] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:0 old:/dev/loop2 new:/dev/loop4 [ 530.097826][ T6938] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:0 old:/dev/loop2 new:/dev/loop3 executing program [ 530.229580][ T6932] BTRFS: device fsid 7ddc34fc-b256-496a-8775-194356e1b78b devid 1 transid 5 /dev/loop5 scanned by syz-executor010 (6932) executing program [ 530.273043][ T6936] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop5 new:/dev/loop0 [ 530.290562][ T6932] BTRFS error (device loop2): superblock checksum mismatch [ 530.291270][ T6933] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop5 new:/dev/loop1 executing program executing program executing program executing program executing program [ 530.365903][ T6937] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop5 new:/dev/loop4 [ 530.401930][ T6938] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop5 new:/dev/loop3 executing program executing program executing program executing program executing program [ 530.517655][ T6949] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop5 new:/dev/loop1 executing program [ 530.585874][ T6932] BTRFS error (device loop2): open_ctree failed [ 530.600892][ T6977] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:0 old:/dev/loop0 new:/dev/loop4 [ 530.620665][ T6979] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:0 old:/dev/loop0 new:/dev/loop3 [ 530.650760][ T6969] BTRFS error (device loop0): superblock checksum mismatch executing program executing program [ 530.752559][ T6984] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:0 old:/dev/loop0 new:/dev/loop2 [ 530.856767][ T6969] BTRFS error (device loop0): open_ctree failed executing program [ 530.938323][ T6981] BTRFS info (device loop1): disk space caching is enabled [ 530.946646][ T6979] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop3 [ 530.963464][ T6981] BTRFS info (device loop1): has skinny extents [ 530.973977][ T6984] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop2 executing program executing program executing program executing program executing program [ 531.051815][ T6992] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop3 [ 531.075805][ T6969] BTRFS warning (device ): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop0 executing program executing program [ 531.108754][ T354] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 531.122049][ T6981] BTRFS warning (device loop1): failed to read root (objectid=7): -5 executing program executing program [ 531.292456][ T6981] BTRFS error (device loop1): open_ctree failed [ 531.310849][ T6996] BTRFS info (device loop1): disk space caching is enabled [ 531.322701][ T6996] BTRFS info (device loop1): has skinny extents executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 531.495190][ T354] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 531.504985][ T6996] BTRFS warning (device loop1): failed to read root (objectid=7): -5 executing program executing program executing program executing program executing program executing program [ 531.632718][ T6996] BTRFS error (device loop1): open_ctree failed [ 531.643438][ T7007] BTRFS info (device loop1): disk space caching is enabled [ 531.654779][ T7007] BTRFS info (device loop1): has skinny extents [ 531.679611][ T354] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 531.692940][ T7007] BTRFS warning (device loop1): failed to read root (objectid=7): -5 [ 531.701875][ T6996] BTRFS warning (device loop1): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop4 executing program [ 531.745997][ T7007] BTRFS error (device loop1): open_ctree failed [ 531.755238][ T7031] BTRFS info (device loop1): disk space caching is enabled [ 531.768444][ T7031] BTRFS info (device loop1): has skinny extents executing program executing program executing program [ 531.805132][ T354] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 531.814366][ T7031] BTRFS warning (device loop1): failed to read root (objectid=7): -5 [ 531.839181][ T7007] BTRFS warning (device loop1): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop5 executing program executing program [ 531.879811][ T7031] BTRFS error (device loop1): open_ctree failed [ 531.892526][ T7036] BTRFS info (device loop1): disk space caching is enabled [ 531.901373][ T7036] BTRFS info (device loop1): has skinny extents [ 531.940342][ T354] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 531.949080][ T7036] BTRFS warning (device loop1): failed to read root (objectid=7): -5 executing program executing program [ 531.982620][ T7031] BTRFS warning (device loop1): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop2 [ 532.011810][ T7036] BTRFS error (device loop1): open_ctree failed [ 532.024629][ T7037] BTRFS info (device loop1): disk space caching is enabled [ 532.036266][ T7037] BTRFS info (device loop1): has skinny extents [ 532.073823][ T354] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 532.083080][ T7037] BTRFS warning (device loop1): failed to read root (objectid=7): -5 executing program executing program [ 532.150778][ T7036] BTRFS warning (device loop1): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop0 executing program executing program executing program executing program [ 532.240839][ T7037] BTRFS error (device loop1): open_ctree failed [ 532.252564][ T7157] BTRFS info (device loop1): disk space caching is enabled [ 532.259787][ T7157] BTRFS info (device loop1): has skinny extents executing program executing program executing program executing program [ 532.363347][ T7212] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 532.379204][ T7157] BTRFS warning (device loop1): failed to read root (objectid=7): -5 executing program executing program executing program executing program [ 532.459325][ T7157] BTRFS error (device loop1): open_ctree failed [ 532.488723][ T7166] BTRFS info (device loop1): disk space caching is enabled [ 532.499810][ T7166] BTRFS info (device loop1): has skinny extents [ 532.528691][ T7212] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 532.537502][ T7166] BTRFS warning (device loop1): failed to read root (objectid=7): -5 executing program [ 532.578218][ T7157] BTRFS warning (device loop1): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop4 [ 532.606448][ T7166] BTRFS error (device loop1): open_ctree failed executing program [ 532.623097][ T7210] BTRFS info (device loop1): disk space caching is enabled [ 532.635630][ T7210] BTRFS info (device loop1): has skinny extents executing program [ 532.677120][ T7212] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 532.686191][ T7210] BTRFS warning (device loop1): failed to read root (objectid=7): -5 [ 532.698620][ T7166] BTRFS warning (device loop1): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop5 executing program [ 532.751060][ T7210] BTRFS error (device loop1): open_ctree failed [ 532.769108][ T7219] BTRFS info (device loop1): disk space caching is enabled [ 532.784352][ T7219] BTRFS info (device loop1): has skinny extents executing program [ 532.832837][ T132] BTRFS error (device loop1): bad tree block start, want 5279744 have 0 [ 532.847641][ T7219] BTRFS warning (device loop1): failed to read root (objectid=7): -5 [ 532.856188][ T7210] BTRFS warning (device loop1): duplicate device fsid:devid for 7ddc34fc-b256-496a-8775-194356e1b78b:1 old:/dev/loop1 new:/dev/loop2 executing program executing program executing program [ 532.909958][ T7219] BTRFS error (device loop1): open_ctree failed [ 532.936283][ T7224] BTRFS info (device loop1): disk space caching is enabled executing program executing program [ 532.965808][ T7224] BTRFS info (device loop1): has skinny extents [ 532.976949][ T6964] ================================================================== [ 532.985392][ T6964] BUG: KASAN: use-after-free in btrfs_printk+0x38b/0x40c [ 532.992426][ T6964] Read of size 8 at addr ffff8880980d06a8 by task systemd-udevd/6964 [ 533.000487][ T6964] [ 533.002836][ T6964] CPU: 1 PID: 6964 Comm: systemd-udevd Not tainted 5.9.0-rc7-syzkaller #0 [ 533.011333][ T6964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 533.021448][ T6964] Call Trace: [ 533.024800][ T6964] dump_stack+0x198/0x1fd [ 533.029139][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.033836][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.038611][ T6964] print_address_description.constprop.0.cold+0xae/0x497 [ 533.045653][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.050428][ T6964] ? lockdep_hardirqs_off+0x96/0xd0 [ 533.055675][ T6964] ? vprintk_func+0x95/0x1d4 [ 533.060273][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.064974][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.069913][ T6964] kasan_report.cold+0x1f/0x37 [ 533.074721][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.079407][ T6964] btrfs_printk+0x38b/0x40c [ 533.083928][ T6964] ? btrfs_put_super+0x38/0x38 [ 533.088765][ T6964] ? device_list_add+0xe79/0x1570 [ 533.093859][ T6964] ? lock_release+0x8f0/0x8f0 [ 533.098550][ T6964] ? __mutex_unlock_slowpath+0xe2/0x610 [ 533.104121][ T6964] ? _atomic_dec_and_lock+0x92/0x100 [ 533.109411][ T6964] ? wait_for_completion+0x260/0x260 [ 533.114708][ T6964] device_list_add.cold+0x58/0x2d2 [ 533.119824][ T6964] ? btrfs_alloc_device+0x5d0/0x5d0 [ 533.125073][ T6964] ? do_read_cache_page+0xe6/0x1390 [ 533.130283][ T6964] btrfs_scan_one_device+0x339/0x4a0 [ 533.135585][ T6964] ? device_list_add+0x1570/0x1570 [ 533.140729][ T6964] ? __might_fault+0x190/0x1d0 [ 533.145551][ T6964] ? _copy_from_user+0x138/0x190 [ 533.150500][ T6964] btrfs_control_ioctl+0x12a/0x2d0 [ 533.155614][ T6964] ? btrfs_set_super+0x70/0x70 [ 533.160449][ T6964] __x64_sys_ioctl+0x193/0x200 [ 533.165224][ T6964] do_syscall_64+0x2d/0x70 [ 533.169702][ T6964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 533.175608][ T6964] RIP: 0033:0x7f4c483d4017 [ 533.180027][ T6964] Code: 00 00 00 48 8b 05 81 7e 2b 00 64 c7 00 26 00 00 00 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 51 7e 2b 00 f7 d8 64 89 01 48 [ 533.199637][ T6964] RSP: 002b:00007fff3a290c08 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 533.208068][ T6964] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4c483d4017 [ 533.216134][ T6964] RDX: 00007fff3a290c20 RSI: 0000000090009427 RDI: 000000000000000f [ 533.224110][ T6964] RBP: 00007fff3a290c20 R08: 0000000000000000 R09: 00000000000002a0 [ 533.232086][ T6964] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000f [ 533.240064][ T6964] R13: 0000000000000000 R14: 00005566dbad5e00 R15: 00005566dbac0c00 [ 533.248055][ T6964] [ 533.250437][ T6964] Allocated by task 7219: [ 533.254769][ T6964] kasan_save_stack+0x1b/0x40 [ 533.259465][ T6964] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 533.265171][ T6964] kvmalloc_node+0xb4/0xf0 [ 533.269612][ T6964] btrfs_mount_root+0x117/0xbb0 [ 533.274521][ T6964] legacy_get_tree+0x105/0x220 [ 533.279293][ T6964] vfs_get_tree+0x89/0x2f0 [ 533.283741][ T6964] vfs_kern_mount.part.0+0xd3/0x170 [ 533.288938][ T6964] vfs_kern_mount+0x3c/0x60 [ 533.293437][ T6964] btrfs_mount+0x234/0xaa0 [ 533.297857][ T6964] legacy_get_tree+0x105/0x220 [ 533.302711][ T6964] vfs_get_tree+0x89/0x2f0 [ 533.307128][ T6964] path_mount+0x1387/0x20a0 [ 533.311644][ T6964] __x64_sys_mount+0x27f/0x300 [ 533.316407][ T6964] do_syscall_64+0x2d/0x70 [ 533.320820][ T6964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 533.326694][ T6964] [ 533.329022][ T6964] Freed by task 7219: [ 533.333007][ T6964] kasan_save_stack+0x1b/0x40 [ 533.337691][ T6964] kasan_set_track+0x1c/0x30 [ 533.342277][ T6964] kasan_set_free_info+0x1b/0x30 [ 533.347217][ T6964] __kasan_slab_free+0xd8/0x120 [ 533.352088][ T6964] kfree+0x10e/0x2b0 [ 533.355981][ T6964] kvfree+0x42/0x50 [ 533.359783][ T6964] deactivate_locked_super+0x94/0x160 [ 533.365169][ T6964] btrfs_mount_root+0x772/0xbb0 [ 533.370011][ T6964] legacy_get_tree+0x105/0x220 [ 533.374781][ T6964] vfs_get_tree+0x89/0x2f0 [ 533.379192][ T6964] vfs_kern_mount.part.0+0xd3/0x170 [ 533.384382][ T6964] vfs_kern_mount+0x3c/0x60 [ 533.388883][ T6964] btrfs_mount+0x234/0xaa0 [ 533.393293][ T6964] legacy_get_tree+0x105/0x220 [ 533.398062][ T6964] vfs_get_tree+0x89/0x2f0 [ 533.402471][ T6964] path_mount+0x1387/0x20a0 [ 533.406970][ T6964] __x64_sys_mount+0x27f/0x300 [ 533.411736][ T6964] do_syscall_64+0x2d/0x70 [ 533.416155][ T6964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 533.422034][ T6964] [ 533.424363][ T6964] The buggy address belongs to the object at ffff8880980d0000 [ 533.424363][ T6964] which belongs to the cache kmalloc-16k of size 16384 [ 533.438606][ T6964] The buggy address is located 1704 bytes inside of [ 533.438606][ T6964] 16384-byte region [ffff8880980d0000, ffff8880980d4000) [ 533.452153][ T6964] The buggy address belongs to the page: [ 533.457796][ T6964] page:000000002d8168e5 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x980d0 [ 533.469079][ T6964] head:000000002d8168e5 order:3 compound_mapcount:0 compound_pincount:0 [ 533.477415][ T6964] flags: 0xfffe0000010200(slab|head) [ 533.482742][ T6964] raw: 00fffe0000010200 ffffea00023fa608 ffffea00025c9e08 ffff8880aa040b00 [ 533.492200][ T6964] raw: 0000000000000000 ffff8880980d0000 0000000100000001 0000000000000000 [ 533.500795][ T6964] page dumped because: kasan: bad access detected [ 533.507197][ T6964] [ 533.509521][ T6964] Memory state around the buggy address: [ 533.515150][ T6964] ffff8880980d0580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 533.523208][ T6964] ffff8880980d0600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 533.531273][ T6964] >ffff8880980d0680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 533.539329][ T6964] ^ [ 533.544964][ T6964] ffff8880980d0700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 533.553027][ T6964] ffff8880980d0780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb executing program executing program executing program executing program executing program executing program executing program [ 533.561082][ T6964] ================================================================== [ 533.569142][ T6964] Disabling lock debugging due to kernel taint executing program [ 533.635267][ T6964] Kernel panic - not syncing: panic_on_warn set ... [ 533.641912][ T6964] CPU: 0 PID: 6964 Comm: systemd-udevd Tainted: G B 5.9.0-rc7-syzkaller #0 [ 533.651793][ T6964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 533.661840][ T6964] Call Trace: [ 533.665132][ T6964] dump_stack+0x198/0x1fd [ 533.669459][ T6964] ? btrfs_printk+0x2f8/0x40c [ 533.674227][ T6964] panic+0x382/0x7fb [ 533.678133][ T6964] ? __warn_printk+0xf3/0xf3 [ 533.682746][ T6964] ? preempt_schedule_common+0x59/0xc0 [ 533.688205][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.692926][ T6964] ? preempt_schedule_thunk+0x16/0x18 [ 533.698399][ T6964] ? trace_hardirqs_on+0x55/0x220 [ 533.703432][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.708106][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.712811][ T6964] end_report+0x4d/0x53 [ 533.716964][ T6964] kasan_report.cold+0xd/0x37 [ 533.721640][ T6964] ? btrfs_printk+0x38b/0x40c [ 533.726314][ T6964] btrfs_printk+0x38b/0x40c [ 533.730813][ T6964] ? btrfs_put_super+0x38/0x38 [ 533.735573][ T6964] ? device_list_add+0xe79/0x1570 [ 533.740599][ T6964] ? lock_release+0x8f0/0x8f0 [ 533.745275][ T6964] ? __mutex_unlock_slowpath+0xe2/0x610 [ 533.750821][ T6964] ? _atomic_dec_and_lock+0x92/0x100 [ 533.756110][ T6964] ? wait_for_completion+0x260/0x260 [ 533.761444][ T6964] device_list_add.cold+0x58/0x2d2 [ 533.766577][ T6964] ? btrfs_alloc_device+0x5d0/0x5d0 [ 533.771890][ T6964] ? do_read_cache_page+0xe6/0x1390 [ 533.777106][ T6964] btrfs_scan_one_device+0x339/0x4a0 [ 533.782393][ T6964] ? device_list_add+0x1570/0x1570 [ 533.787587][ T6964] ? __might_fault+0x190/0x1d0 [ 533.792354][ T6964] ? _copy_from_user+0x138/0x190 [ 533.797335][ T6964] btrfs_control_ioctl+0x12a/0x2d0 [ 533.802448][ T6964] ? btrfs_set_super+0x70/0x70 [ 533.807224][ T6964] __x64_sys_ioctl+0x193/0x200 [ 533.811987][ T6964] do_syscall_64+0x2d/0x70 [ 533.816400][ T6964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 533.822305][ T6964] RIP: 0033:0x7f4c483d4017 [ 533.826717][ T6964] Code: 00 00 00 48 8b 05 81 7e 2b 00 64 c7 00 26 00 00 00 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 51 7e 2b 00 f7 d8 64 89 01 48 [ 533.846319][ T6964] RSP: 002b:00007fff3a290c08 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 533.854732][ T6964] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4c483d4017 [ 533.862706][ T6964] RDX: 00007fff3a290c20 RSI: 0000000090009427 RDI: 000000000000000f [ 533.870683][ T6964] RBP: 00007fff3a290c20 R08: 0000000000000000 R09: 00000000000002a0 [ 533.884910][ T6964] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000f [ 533.892883][ T6964] R13: 0000000000000000 R14: 00005566dbad5e00 R15: 00005566dbac0c00 [ 533.902033][ T6964] Kernel Offset: disabled [ 533.906352][ T6964] Rebooting in 86400 seconds..