[ OK ] Started OpenBSD Secure Shell server. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.39' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 27.803694] IPVS: ftp: loaded support on port[0] = 21 [ 27.911173] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 [ 27.928905] BTRFS info (device loop0): using free space tree [ 27.934928] BTRFS info (device loop0): has skinny extents [ 27.965878] FAULT_INJECTION: forcing a failure. [ 27.965878] name failslab, interval 1, probability 0, space 0, times 1 [ 27.978313] CPU: 0 PID: 7966 Comm: syz-executor426 Not tainted 4.14.301-syzkaller #0 [ 27.986341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 27.995683] Call Trace: [ 27.998258] dump_stack+0x1b2/0x281 [ 28.001877] should_fail.cold+0x10a/0x149 [ 28.006010] should_failslab+0xd6/0x130 [ 28.009967] kmem_cache_alloc+0x28e/0x3c0 [ 28.014095] btrfs_alloc_tree_block+0xcfa/0x1410 [ 28.018834] ? btrfs_reserve_extent+0x3b0/0x3b0 [ 28.023479] create_subvol+0x383/0x1930 [ 28.027431] ? btrfs_ioctl_set_fslabel+0x300/0x300 [ 28.032335] ? btrfs_free_path+0x45/0x60 [ 28.036374] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.041796] ? btrfs_free_path+0x45/0x60 [ 28.045850] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 28.050852] ? kmem_cache_free+0x23a/0x2b0 [ 28.055078] btrfs_mksubvol+0xcb3/0x1000 [ 28.059117] ? create_subvol+0x1930/0x1930 [ 28.063335] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.068760] ? preempt_count_add+0xaf/0x170 [ 28.073056] ? __mnt_want_write+0x1da/0x270 [ 28.077354] btrfs_ioctl_snap_create_transid+0x28a/0x420 [ 28.082778] btrfs_ioctl_snap_create_v2+0x22f/0x340 [ 28.087773] ? btrfs_ioctl_snap_create+0x150/0x150 [ 28.092678] btrfs_ioctl+0x1806/0x5b20 [ 28.096541] ? _kstrtoull+0x1f2/0x450 [ 28.100321] ? btrfs_ioctl_get_supported_features+0x40/0x40 [ 28.106011] ? get_pid_task+0x91/0x130 [ 28.109876] ? lock_downgrade+0x740/0x740 [ 28.113997] ? get_pid_task+0xb8/0x130 [ 28.117857] ? proc_fail_nth_write+0x7b/0x180 [ 28.122333] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 28.127237] ? fsnotify+0x974/0x11b0 [ 28.130925] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 28.135826] ? debug_check_no_obj_freed+0x2c0/0x680 [ 28.140818] ? btrfs_ioctl_get_supported_features+0x40/0x40 [ 28.146502] do_vfs_ioctl+0x75a/0xff0 [ 28.150288] ? ioctl_preallocate+0x1a0/0x1a0 [ 28.154679] ? vfs_write+0x319/0x4d0 [ 28.158364] ? SyS_write+0x14d/0x210 [ 28.162050] ? security_file_ioctl+0x83/0xb0 [ 28.166429] SyS_ioctl+0x7f/0xb0 [ 28.169775] ? do_vfs_ioctl+0xff0/0xff0 [ 28.173723] do_syscall_64+0x1d5/0x640 [ 28.177584] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 28.182744] RIP: 0033:0x7fbe445ee289 [ 28.186427] RSP: 002b:00007ffd97d013e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 28.194105] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fbe445ee289 [ 28.201348] RDX: 0000000020000a80 RSI: 0000000050009418 RDI: 0000000000000004 [ 28.208589] RBP: 00007ffd97d01400 R08: 0000000000000002 R09: 0000000000000000 [ 28.215831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 28.223075] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 28.259919] ------------[ cut here ]------------ [ 28.264713] WARNING: CPU: 0 PID: 7966 at fs/btrfs/extent-tree.c:10028 btrfs_free_block_groups+0x713/0xc50 [ 28.274388] Kernel panic - not syncing: panic_on_warn set ... [ 28.274388] [ 28.281721] CPU: 0 PID: 7966 Comm: syz-executor426 Not tainted 4.14.301-syzkaller #0 [ 28.289571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 28.298894] Call Trace: [ 28.301459] dump_stack+0x1b2/0x281 [ 28.305059] panic+0x1f9/0x42d [ 28.308225] ? add_taint.cold+0x16/0x16 [ 28.312174] ? btrfs_free_block_groups+0x713/0xc50 [ 28.317076] ? btrfs_free_block_groups+0x713/0xc50 [ 28.321977] __warn.cold+0x20/0x44 [ 28.325488] ? ist_end_non_atomic+0x10/0x10 [ 28.329785] ? btrfs_free_block_groups+0x713/0xc50 [ 28.334689] report_bug+0x208/0x250 [ 28.338292] do_error_trap+0x195/0x2d0 [ 28.342155] ? math_error+0x2d0/0x2d0 [ 28.345928] ? lock_acquire+0x170/0x3f0 [ 28.349876] ? space_info_add_old_bytes+0x26/0x7e0 [ 28.354780] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 28.359597] invalid_op+0x1b/0x40 [ 28.363024] RIP: 0010:btrfs_free_block_groups+0x713/0xc50 [ 28.368530] RSP: 0018:ffff8880b3087b10 EFLAGS: 00010297 [ 28.373863] RAX: ffff8880b39b6000 RBX: 0000000000000000 RCX: ffffed1016608dfb [ 28.381107] RDX: 0000000000000000 RSI: ffff8880b3046fd8 RDI: ffff888098aa3258 [ 28.388346] RBP: ffff8880b3045c80 R08: ffffffff8ba60dac R09: 0000000000000001 [ 28.395590] R10: 0000000000000000 R11: ffff8880b39b6000 R12: ffff888098aa32e8 [ 28.402830] R13: dffffc0000000000 R14: ffff888098aa2d80 R15: 1ffff11016608dfb [ 28.410092] close_ctree+0x33d/0x840 [ 28.413781] ? btrfs_cleanup_transaction.isra.0+0x10d0/0x10d0 [ 28.419640] ? dispose_list+0x1e0/0x1e0 [ 28.423588] ? fsnotify_unmount_inodes+0x1b4/0x210 [ 28.428500] ? btrfs_set_super+0x60/0x60 [ 28.432630] generic_shutdown_super+0x144/0x370 [ 28.437277] kill_anon_super+0x36/0x90 [ 28.441137] btrfs_kill_super+0x49/0x540 [ 28.445176] ? unregister_shrinker+0x170/0x210 [ 28.449729] deactivate_locked_super+0x6c/0xd0 [ 28.454283] deactivate_super+0x7f/0xa0 [ 28.458231] cleanup_mnt+0x186/0x2c0 [ 28.461917] task_work_run+0x11f/0x190 [ 28.465778] do_exit+0xa44/0x2850 [ 28.469206] ? __do_page_fault+0x571/0xad0 [ 28.473415] ? mm_update_next_owner+0x5b0/0x5b0 [ 28.478055] ? lock_downgrade+0x740/0x740 [ 28.482178] do_group_exit+0x100/0x2e0 [ 28.486053] SyS_exit_group+0x19/0x20 [ 28.489834] ? do_group_exit+0x2e0/0x2e0 [ 28.493868] do_syscall_64+0x1d5/0x640 [ 28.497733] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 28.502896] RIP: 0033:0x7fbe445ecdc9 [ 28.506580] RSP: 002b:00007ffd97d01398 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 28.514265] RAX: ffffffffffffffda RBX: 00007fbe446673f0 RCX: 00007fbe445ecdc9 [ 28.521507] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 28.528751] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000000 [ 28.535994] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe446673f0 [ 28.543236] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 28.550700] Kernel Offset: disabled [ 28.554358] Rebooting in 86400 seconds..