Warning: Permanently added '[localhost]:57285' (ED25519) to the list of known hosts. executing program syzkaller login: [ 79.598819][ T5311] loop0: detected capacity change from 0 to 32768 [ 79.640648][ T5311] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 79.698377][ T5311] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,background_compression=zstd,journal_flush_disabled,norecovery,reconstruct_alloc,no_data_io [ 79.698377][ T5311] allowing incompatible features above 0.0: (unknown version) [ 79.698377][ T5311] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 79.727972][ T5311] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 79.731691][ T5311] bcachefs (loop0): Version upgrade required: [ 79.731691][ T5311] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 79.731691][ T5311] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 79.731691][ T5311] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 79.765015][ T5311] bcachefs (loop0): dropping and reconstructing all alloc info [ 79.782316][ T5311] bcachefs (loop0): btree node read error at btree inodes level 0/0 [ 79.782334][ T5311] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0 [ 79.782342][ T5311] loop0 node offset 0/24 bset u64s 0: invalid bkey format: field 2 too large: 4294967295 + 9895604649984 > 4294967295 [ 79.782349][ T5311] u64s 3 fields 64:0, 64:0, 32:9895604649984, 0:0, 0:0, 0:0 [ 79.782355][ T5311] flagging btree inodes lost data [ 79.782360][ T5311] running recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 79.782367][ T5311] ret btree_node_read_validate_error [ 79.811060][ T5311] bcachefs (loop0): error reading btree root btree=inodes level=0: btree_node_read_error, fixing [ 79.819074][ T5311] bcachefs (loop0): btree node read error at btree dirents level 0/0 [ 79.819087][ T5311] u64s 11 type btree_ptr_v2 18446744069414846463:U64_MAX:U32_MAX len 0 ver 281474976710656: seq 9aa2890000ce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 79.819096][ T5311] loop0 node offset 0/24: got wrong btree node: got [ 79.819102][ T5311] btree=dirents level=0 seq 9aa2895aefce4bdf 1 [ 79.819107][ T5311] min: POS_MIN [ 79.819112][ T5311] max: SPOS_MAX [ 79.819117][ T5311] flagging btree dirents lost data [ 79.819123][ T5311] ret btree_node_read_validate_error [ 79.846263][ T5311] bcachefs (loop0): error reading btree root btree=dirents level=0: btree_node_read_error, fixing [ 79.852545][ T5311] bcachefs (loop0): btree node read error at btree subvolumes level 0/0 [ 79.852557][ T5311] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0 [ 79.852566][ T5311] loop0 node offset 0/16 bset u64s 0: invalid bkey format: field 2 too large: 4294967295 + 3298534883328 > 4294967295 [ 79.852573][ T5311] u64s 3 fields 64:0, 64:0, 32:3298534883328, 0:0, 0:0, 0:0 [ 79.852579][ T5311] flagging btree subvolumes lost data [ 79.852585][ T5311] ret btree_node_read_validate_error [ 79.876417][ T5311] bcachefs (loop0): error reading btree root btree=subvolumes level=0: btree_node_read_error, fixing [ 79.882007][ T5311] bcachefs (loop0): btree node read error at btree snapshots level 0/0 [ 79.882019][ T5311] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 79.882024][ T5311] loop0 node offset 0/16 bset u64s 0: incorrect btree id [ 79.882027][ T5311] flagging btree snapshots lost data [ 79.882031][ T5311] running recovery pass reconstruct_snapshots (21), currently at recovery_pass_empty (0) [ 79.882035][ T5311] ret btree_node_read_validate_error [ 79.904392][ T5311] bcachefs (loop0): error reading btree root btree=snapshots level=0: btree_node_read_error, fixing [ 79.910812][ T5311] bcachefs (loop0): scan_for_btree_nodes... [ 79.915320][ T5314] bcachefs (loop0): invalid bkey in btree_node btree=subvolumes level=0: u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: subvol parent 0 children 0 0 subvol 1 tree 0 [ 79.915340][ T5314] invalid key type for btree subvolumes (snapshot), deleting [ 79.932386][ T5314] ------------[ cut here ]------------ [ 79.935006][ T5314] kernel BUG at fs/bcachefs/bkey.c:389! [ 79.937517][ T5314] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 79.941140][ T5314] CPU: 0 UID: 0 PID: 5314 Comm: read_btree_node Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) [ 79.946005][ T5314] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.950429][ T5314] RIP: 0010:bch2_bkey_pack_pos_lossy+0x13de/0x24e0 [ 79.953208][ T5314] Code: e8 07 ca 08 fe 48 ba 00 00 00 00 00 fc ff df e9 a5 f8 ff ff e8 93 ab a5 fd 90 0f 0b e8 8b ab a5 fd 90 0f 0b e8 83 ab a5 fd 90 <0f> 0b e8 7b ab a5 fd 90 0f 0b e8 73 ab a5 fd 90 0f 0b f3 0f 1e fa [ 79.961037][ T5314] RSP: 0018:ffffc9000d4c6b40 EFLAGS: 00010293 [ 79.963557][ T5314] RAX: ffffffff841a4f6d RBX: 0000090000000000 RCX: ffff888000f24880 [ 79.966934][ T5314] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000090000000000 [ 79.970270][ T5314] RBP: ffffc9000d4c6d78 R08: ffffffffffffffff R09: ffffffffffffffff [ 79.973600][ T5314] R10: ffffffffffffffff R11: ffffffffffffffff R12: ffff8880419ca8c4 [ 79.977048][ T5314] R13: fffff700ffffffff R14: 0000000000000000 R15: fffffffffffffffe [ 79.980633][ T5314] FS: 0000000000000000(0000) GS:ffff88808d266000(0000) knlGS:0000000000000000 [ 79.984488][ T5314] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 79.987380][ T5314] CR2: 0000556b9fbee548 CR3: 000000003eab2000 CR4: 0000000000352ef0 [ 79.990791][ T5314] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 79.994137][ T5314] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 79.997559][ T5314] Call Trace: [ 79.998949][ T5314] [ 80.000282][ T5314] ? __pfx___bch2_inode_validate+0x10/0x10 [ 80.002749][ T5314] ? __pfx_bch2_bkey_pack_pos_lossy+0x10/0x10 [ 80.005348][ T5314] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.007711][ T5314] ? __build_ro_aux_tree+0xafc/0x1800 [ 80.010067][ T5314] __build_ro_aux_tree+0xb21/0x1800 [ 80.012355][ T5314] ? __pfx___build_ro_aux_tree+0x10/0x10 [ 80.014948][ T5314] ? bch2_bkey_val_validate+0x215/0x400 [ 80.017567][ T5314] ? __pfx_bch2_bkey_val_validate+0x10/0x10 [ 80.020414][ T5314] ? __asan_memset+0x22/0x50 [ 80.022583][ T5314] bch2_bset_build_aux_tree+0x3f5/0x570 [ 80.025232][ T5314] bch2_btree_node_read_done+0x39e4/0x4f60 [ 80.028097][ T5314] ? __pfx_bch2_btree_node_read_done+0x10/0x10 [ 80.031140][ T5314] ? bch2_extent_ptr_to_text+0x5a/0x900 [ 80.033953][ T5314] ? bch2_extent_ptr_to_text+0x5a/0x900 [ 80.036809][ T5314] ? bch2_bkey_ptrs_to_text+0x1161/0x1310 [ 80.039564][ T5314] ? bch2_printbuf_make_room+0xdb/0x360 [ 80.041877][ T5314] ? enumerated_ref_put+0xbe/0x270 [ 80.044153][ T5314] btree_node_read_work+0x426/0xe30 [ 80.046380][ T5314] ? __pfx_btree_node_read_work+0x10/0x10 [ 80.048709][ T5314] ? bch2_latency_acct+0x436/0x520 [ 80.050874][ T5314] ? __pfx_bch2_latency_acct+0x10/0x10 [ 80.053287][ T5314] ? bio_associate_blkg+0x6d/0x230 [ 80.055628][ T5314] bch2_btree_node_read+0x887/0x29f0 [ 80.057724][ T5314] ? bch2_btree_node_fill+0x954/0x14f0 [ 80.060167][ T5314] ? __pfx_bch2_btree_node_read+0x10/0x10 [ 80.063095][ T5314] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 80.065557][ T5314] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 80.068120][ T5314] ? __pfx___bch2_btree_node_hash_insert+0x10/0x10 [ 80.070903][ T5314] ? bch2_btree_node_mem_alloc+0xcd9/0x1820 [ 80.073517][ T5314] ? six_unlock_ip+0x302/0x430 [ 80.075601][ T5314] ? bch2_btree_node_fill+0xb47/0x14f0 [ 80.077824][ T5314] bch2_btree_node_fill+0xd12/0x14f0 [ 80.080088][ T5314] ? __pfx_bch2_btree_cache_cmp_fn+0x10/0x10 [ 80.082624][ T5314] ? __pfx_bch2_btree_node_fill+0x10/0x10 [ 80.085148][ T5314] ? btree_cache_find+0xf4/0x2d0 [ 80.087364][ T5314] ? btree_cache_find+0xf4/0x2d0 [ 80.089524][ T5314] ? btree_cache_find+0x26f/0x2d0 [ 80.091687][ T5314] ? __pfx_btree_cache_find+0x10/0x10 [ 80.094019][ T5314] bch2_btree_node_get_noiter+0xa2c/0x1000 [ 80.096515][ T5314] read_btree_nodes_worker+0x1319/0x1e20 [ 80.098898][ T5314] ? read_btree_nodes_worker+0xcef/0x1e20 [ 80.101314][ T5314] ? __pfx_read_btree_nodes_worker+0x10/0x10 [ 80.103754][ T5314] ? _raw_spin_unlock_irqrestore+0x85/0x110 [ 80.106321][ T5314] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.108390][ T5314] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 80.110858][ T5314] ? __kthread_parkme+0x7b/0x200 [ 80.113022][ T5314] ? __kthread_parkme+0x1a1/0x200 [ 80.115136][ T5314] kthread+0x70e/0x8a0 [ 80.116923][ T5314] ? __pfx_read_btree_nodes_worker+0x10/0x10 [ 80.119500][ T5314] ? __pfx_kthread+0x10/0x10 [ 80.121435][ T5314] ? _raw_spin_unlock_irq+0x23/0x50 [ 80.123698][ T5314] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.125907][ T5314] ? __pfx_kthread+0x10/0x10 [ 80.127921][ T5314] ret_from_fork+0x3fc/0x770 [ 80.129779][ T5314] ? __pfx_ret_from_fork+0x10/0x10 [ 80.131907][ T5314] ? __pfx_kthread+0x10/0x10 [ 80.133891][ T5314] ret_from_fork_asm+0x1a/0x30 [ 80.135939][ T5314] [ 80.137247][ T5314] Modules linked in: [ 80.139014][ T5314] ---[ end trace 0000000000000000 ]--- [ 80.142953][ T5314] RIP: 0010:bch2_bkey_pack_pos_lossy+0x13de/0x24e0 [ 80.148175][ T5314] Code: e8 07 ca 08 fe 48 ba 00 00 00 00 00 fc ff df e9 a5 f8 ff ff e8 93 ab a5 fd 90 0f 0b e8 8b ab a5 fd 90 0f 0b e8 83 ab a5 fd 90 <0f> 0b e8 7b ab a5 fd 90 0f 0b e8 73 ab a5 fd 90 0f 0b f3 0f 1e fa [ 80.157025][ T5314] RSP: 0018:ffffc9000d4c6b40 EFLAGS: 00010293 [ 80.159798][ T5314] RAX: ffffffff841a4f6d RBX: 0000090000000000 RCX: ffff888000f24880 [ 80.163221][ T5314] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000090000000000 [ 80.167263][ T5314] RBP: ffffc9000d4c6d78 R08: ffffffffffffffff R09: ffffffffffffffff [ 80.171213][ T5314] R10: ffffffffffffffff R11: ffffffffffffffff R12: ffff8880419ca8c4 [ 80.175009][ T5314] R13: fffff700ffffffff R14: 0000000000000000 R15: fffffffffffffffe [ 80.178463][ T5314] FS: 0000000000000000(0000) GS:ffff88808d266000(0000) knlGS:0000000000000000 [ 80.182328][ T5314] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 80.185664][ T5314] CR2: 0000556b9fbee548 CR3: 000000003eab2000 CR4: 0000000000352ef0 [ 80.189422][ T5314] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 80.192849][ T5314] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 80.196514][ T5314] Kernel panic - not syncing: Fatal exception [ 80.199449][ T5314] Kernel Offset: disabled [ 80.201310][ T5314] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:27:52 Registers: info registers vcpu 0 CPU#0 RAX=000000000000005d RBX=000000000000005d RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc9000d4c6290 R8 =ffff888033828237 R9 =1ffff11006705046 R10=dffffc0000000000 R11=ffffffff85458f50 R12=dffffc0000000000 R13=ffffffff99aaf936 R14=ffffffff99db4ce0 R15=0000000000000000 RIP=ffffffff85458fcc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88808d266000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000556b9fbee548 CR3=000000003eab2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000440401 Opmask01=0000000000000001 Opmask02=00000000fff7ffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe5b6cf280 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7e45bf8560 00007f7e45bec5d8 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7e45bddcc4 00007f7e45bf1240 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65723d73726f7272 6500747865003036 36396f7369007265 6c6c616b7a797300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40571856574a5757 4000515d40001513 131c4a564c005740 4949444e5f5c5600 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000