./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4077130261
<...>
Warning: Permanently added '10.128.0.243' (ED25519) to the list of known hosts.
execve("./syz-executor4077130261", ["./syz-executor4077130261"], 0x7ffc8c9a2820 /* 10 vars */) = 0
brk(NULL) = 0x5555910ed000
brk(0x5555910edd00) = 0x5555910edd00
arch_prctl(ARCH_SET_FS, 0x5555910ed380) = 0
set_tid_address(0x5555910ed650) = 5825
set_robust_list(0x5555910ed660, 24) = 0
rseq(0x5555910edca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor4077130261", 4096) = 28
getrandom("\xec\xa4\xff\xb9\x86\x9c\xaa\x9d", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x5555910edd00
brk(0x55559110ed00) = 0x55559110ed00
brk(0x55559110f000) = 0x55559110f000
mprotect(0x7f703e934000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
write(1, "executing program\n", 18executing program
) = 18
memfd_create("syzkaller", 0) = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7036400000
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
munmap(0x7f7036400000, 138412032) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
close(3) = 0
close(4) = 0
mkdir("./file0", 0777) = 0
[ 62.021409][ T5825] loop0: detected capacity change from 0 to 32768
[ 62.105318][ T5825] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[ 62.120912][ T5825] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[ 62.129177][ T5825] bcachefs (loop0): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.13: inode_has_child_snapshots
[ 62.129177][ T5825] running recovery passes: check_allocations,check_inodes
[ 62.150233][ T5825] syz-executor407: attempt to access beyond end of device
[ 62.150233][ T5825] loop0: rw=6145, sector=1124800395245568, nr_sectors = 10 limit=32768
[ 62.165741][ T5825] bcachefs (loop0): superblock write error: I/O
[ 62.172022][ T5825] bcachefs (loop0): bch2_write_super(): fatal error : Unable to write superblock to sufficient devices (from bch2_fs_recovery)
[ 62.186033][ T5825] bcachefs (loop0): fatal error - emergency read only
[ 62.193011][ T5825] bcachefs (loop0): insufficient writeable journal devices available: have 0, need 1
[ 62.193011][ T5825] rw journal devs: loop0
[ 62.213381][ T5825] ------------[ cut here ]------------
[ 62.219141][ T5825] UBSAN: shift-out-of-bounds in fs/bcachefs/alloc_background.h:165:13
[ 62.227393][ T5825] shift exponent 129 is too large for 32-bit type 'unsigned int'
[ 62.235218][ T5825] CPU: 0 UID: 0 PID: 5825 Comm: syz-executor407 Not tainted 6.12.0-rc5-syzkaller-00063-g0fc810ae3ae1 #0
[ 62.246338][ T5825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 62.256391][ T5825] Call Trace:
[ 62.259658][ T5825]
[ 62.262576][ T5825] dump_stack_lvl+0x241/0x360
[ 62.267252][ T5825] ? __pfx_dump_stack_lvl+0x10/0x10
[ 62.272448][ T5825] ? __pfx__printk+0x10/0x10
[ 62.277029][ T5825] ? bch2_prt_printf+0x559/0x6d0
[ 62.281972][ T5825] __ubsan_handle_shift_out_of_bounds+0x3c8/0x420
[ 62.288407][ T5825] bch2_alloc_to_text+0xc79/0xce0
[ 62.293438][ T5825] ? __pfx_bch2_alloc_to_text+0x10/0x10
[ 62.298986][ T5825] ? bch2_bkey_val_to_text+0xf0/0x160
[ 62.304372][ T5825] __bch2_bkey_fsck_err+0x1c8/0x280
[ 62.309576][ T5825] ? _raw_spin_unlock_irqrestore+0x8f/0x140
[ 62.315486][ T5825] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 62.321395][ T5825] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 62.327742][ T5825] ? __pfx___bch2_bkey_fsck_err+0x10/0x10
[ 62.333475][ T5825] ? bch2_alloc_v4_validate+0x165/0xef0
[ 62.339032][ T5825] bch2_alloc_v4_validate+0x931/0xef0
[ 62.344430][ T5825] ? __pfx_bch2_alloc_v4_validate+0x10/0x10
[ 62.350323][ T5825] ? bch2_bkey_val_validate+0x150/0x230
[ 62.355895][ T5825] bch2_btree_node_read_done+0x3e7e/0x5e90
[ 62.361758][ T5825] ? bch2_bkey_pick_read_device+0x221/0x1670
[ 62.367734][ T5825] ? __pfx_bch2_btree_node_read_done+0x10/0x10
[ 62.373889][ T5825] ? bch2_bkey_pick_read_device+0x137d/0x1670
[ 62.379977][ T5825] ? bch2_bkey_pick_read_device+0x221/0x1670
[ 62.385947][ T5825] ? __pfx_bch2_bkey_pick_read_device+0x10/0x10
[ 62.392195][ T5825] ? bch2_btree_ptr_v2_to_text+0x209/0x2f0
[ 62.398027][ T5825] btree_node_read_work+0x68b/0x1260
[ 62.403343][ T5825] ? __pfx_btree_node_read_work+0x10/0x10
[ 62.409076][ T5825] ? __bch2_time_stats_update+0x2b0/0x370
[ 62.414805][ T5825] ? __pfx_bch2_latency_acct+0x10/0x10
[ 62.420259][ T5825] ? bio_associate_blkg+0x6c/0x230
[ 62.425359][ T5825] bch2_btree_node_read+0x2433/0x2a10
[ 62.430724][ T5825] ? __pfx_lock_release+0x10/0x10
[ 62.435758][ T5825] ? bch2_trans_unlock+0x346/0x470
[ 62.440870][ T5825] ? __pfx_bch2_btree_node_read+0x10/0x10
[ 62.446600][ T5825] ? __pfx___bch2_btree_node_hash_insert+0x10/0x10
[ 62.453107][ T5825] ? bch2_trans_unlock+0x3a6/0x470
[ 62.458221][ T5825] bch2_btree_root_read+0x617/0x7a0
[ 62.463411][ T5825] ? __pfx_bch2_btree_root_read+0x10/0x10
[ 62.469132][ T5825] ? bch2_current_has_btree_trans+0x142/0x180
[ 62.475188][ T5825] read_btree_roots+0x296/0x840
[ 62.480035][ T5825] bch2_fs_recovery+0x2585/0x39c0
[ 62.485067][ T5825] ? __pfx_bch2_fs_recovery+0x10/0x10
[ 62.490443][ T5825] ? __pfx_lock_release+0x10/0x10
[ 62.495452][ T5825] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 62.501065][ T5825] ? __pfx_lock_release+0x10/0x10
[ 62.506081][ T5825] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 62.511695][ T5825] ? bch2_get_next_online_dev+0x4b9/0x4f0
[ 62.517396][ T5825] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 62.523010][ T5825] ? llist_reverse_order+0x72/0x90
[ 62.528123][ T5825] bch2_fs_start+0x356/0x5b0
[ 62.532717][ T5825] bch2_fs_get_tree+0xd68/0x1710
[ 62.537655][ T5825] ? __pfx_bch2_fs_get_tree+0x10/0x10
[ 62.543033][ T5825] ? generic_parse_monolithic+0x387/0x400
[ 62.548741][ T5825] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 62.554359][ T5825] ? cap_capable+0x1b4/0x250
[ 62.558931][ T5825] ? safesetid_security_capable+0xb2/0x1d0
[ 62.564721][ T5825] vfs_get_tree+0x90/0x2b0
[ 62.569126][ T5825] do_new_mount+0x2be/0xb40
[ 62.573615][ T5825] ? __pfx_do_new_mount+0x10/0x10
[ 62.578628][ T5825] __se_sys_mount+0x2d6/0x3c0
[ 62.583294][ T5825] ? __pfx___se_sys_mount+0x10/0x10
[ 62.588483][ T5825] ? do_syscall_64+0x100/0x230
[ 62.593248][ T5825] ? __x64_sys_mount+0x20/0xc0
[ 62.597999][ T5825] do_syscall_64+0xf3/0x230
[ 62.602498][ T5825] ? clear_bhb_loop+0x35/0x90
[ 62.607157][ T5825] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 62.613041][ T5825] RIP: 0033:0x7f703e8bc8fa
[ 62.617444][ T5825] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 62.637043][ T5825] RSP: 002b:00007ffc17ef5508 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 62.645442][ T5825] RAX: ffffffffffffffda RBX: 00007ffc17ef5520 RCX: 00007f703e8bc8fa
[ 62.653395][ T5825] RDX: 00000000200058c0 RSI: 0000000020000100 RDI: 00007ffc17ef5520
[ 62.661435][ T5825] RBP: 0000000000000004 R08: 00007ffc17ef5560 R09: 00000000000058c6
[ 62.669396][ T5825] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[ 62.677348][ T5825] R13: 00007ffc17ef5560 R14: 0000000000000003 R15: 0000000001000000
[ 62.685420][ T5825]
[ 62.688763][ T5825] ---[ end trace ]---
[ 62.692775][ T5825] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[ 62.699967][ T5825] CPU: 0 UID: 0 PID: 5825 Comm: syz-executor407 Not tainted 6.12.0-rc5-syzkaller-00063-g0fc810ae3ae1 #0
[ 62.711091][ T5825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 62.721139][ T5825] Call Trace:
[ 62.724412][ T5825]
[ 62.727335][ T5825] dump_stack_lvl+0x241/0x360
[ 62.732015][ T5825] ? __pfx_dump_stack_lvl+0x10/0x10
[ 62.737213][ T5825] ? __pfx__printk+0x10/0x10
[ 62.741799][ T5825] ? lockdep_hardirqs_on+0x99/0x150
[ 62.747008][ T5825] ? vscnprintf+0x5d/0x90
[ 62.751337][ T5825] panic+0x349/0x880
[ 62.755236][ T5825] ? check_panic_on_warn+0x21/0xb0
[ 62.760343][ T5825] ? __pfx_panic+0x10/0x10
[ 62.764750][ T5825] ? _printk+0xd5/0x120
[ 62.768901][ T5825] ? __pfx__printk+0x10/0x10
[ 62.773488][ T5825] check_panic_on_warn+0x86/0xb0
[ 62.778420][ T5825] __ubsan_handle_shift_out_of_bounds+0x3e7/0x420
[ 62.784844][ T5825] bch2_alloc_to_text+0xc79/0xce0
[ 62.789872][ T5825] ? __pfx_bch2_alloc_to_text+0x10/0x10
[ 62.795426][ T5825] ? bch2_bkey_val_to_text+0xf0/0x160
[ 62.800799][ T5825] __bch2_bkey_fsck_err+0x1c8/0x280
[ 62.806005][ T5825] ? _raw_spin_unlock_irqrestore+0x8f/0x140
[ 62.811899][ T5825] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 62.817788][ T5825] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 62.824298][ T5825] ? __pfx___bch2_bkey_fsck_err+0x10/0x10
[ 62.830030][ T5825] ? bch2_alloc_v4_validate+0x165/0xef0
[ 62.835576][ T5825] bch2_alloc_v4_validate+0x931/0xef0
[ 62.840952][ T5825] ? __pfx_bch2_alloc_v4_validate+0x10/0x10
[ 62.847025][ T5825] ? bch2_bkey_val_validate+0x150/0x230
[ 62.852572][ T5825] bch2_btree_node_read_done+0x3e7e/0x5e90
[ 62.858416][ T5825] ? bch2_bkey_pick_read_device+0x221/0x1670
[ 62.864401][ T5825] ? __pfx_bch2_btree_node_read_done+0x10/0x10
[ 62.870561][ T5825] ? bch2_bkey_pick_read_device+0x137d/0x1670
[ 62.876631][ T5825] ? bch2_bkey_pick_read_device+0x221/0x1670
[ 62.882674][ T5825] ? __pfx_bch2_bkey_pick_read_device+0x10/0x10
[ 62.888932][ T5825] ? bch2_btree_ptr_v2_to_text+0x209/0x2f0
[ 62.894766][ T5825] btree_node_read_work+0x68b/0x1260
[ 62.900074][ T5825] ? __pfx_btree_node_read_work+0x10/0x10
[ 62.905797][ T5825] ? __bch2_time_stats_update+0x2b0/0x370
[ 62.911527][ T5825] ? __pfx_bch2_latency_acct+0x10/0x10
[ 62.916987][ T5825] ? bio_associate_blkg+0x6c/0x230
[ 62.922095][ T5825] bch2_btree_node_read+0x2433/0x2a10
[ 62.927469][ T5825] ? __pfx_lock_release+0x10/0x10
[ 62.932510][ T5825] ? bch2_trans_unlock+0x346/0x470
[ 62.937616][ T5825] ? __pfx_bch2_btree_node_read+0x10/0x10
[ 62.943337][ T5825] ? __pfx___bch2_btree_node_hash_insert+0x10/0x10
[ 62.949849][ T5825] ? bch2_trans_unlock+0x3a6/0x470
[ 62.955051][ T5825] bch2_btree_root_read+0x617/0x7a0
[ 62.960244][ T5825] ? __pfx_bch2_btree_root_read+0x10/0x10
[ 62.965966][ T5825] ? bch2_current_has_btree_trans+0x142/0x180
[ 62.972036][ T5825] read_btree_roots+0x296/0x840
[ 62.976894][ T5825] bch2_fs_recovery+0x2585/0x39c0
[ 62.981924][ T5825] ? __pfx_bch2_fs_recovery+0x10/0x10
[ 62.987333][ T5825] ? __pfx_lock_release+0x10/0x10
[ 62.992355][ T5825] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 62.997980][ T5825] ? __pfx_lock_release+0x10/0x10
[ 63.003188][ T5825] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 63.008813][ T5825] ? bch2_get_next_online_dev+0x4b9/0x4f0
[ 63.014529][ T5825] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 63.020155][ T5825] ? llist_reverse_order+0x72/0x90
[ 63.025270][ T5825] bch2_fs_start+0x356/0x5b0
[ 63.029880][ T5825] bch2_fs_get_tree+0xd68/0x1710
[ 63.034839][ T5825] ? __pfx_bch2_fs_get_tree+0x10/0x10
[ 63.040217][ T5825] ? generic_parse_monolithic+0x387/0x400
[ 63.045941][ T5825] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 63.051568][ T5825] ? cap_capable+0x1b4/0x250
[ 63.056152][ T5825] ? safesetid_security_capable+0xb2/0x1d0
[ 63.061955][ T5825] vfs_get_tree+0x90/0x2b0
[ 63.066372][ T5825] do_new_mount+0x2be/0xb40
[ 63.070873][ T5825] ? __pfx_do_new_mount+0x10/0x10
[ 63.075901][ T5825] __se_sys_mount+0x2d6/0x3c0
[ 63.080576][ T5825] ? __pfx___se_sys_mount+0x10/0x10
[ 63.085778][ T5825] ? do_syscall_64+0x100/0x230
[ 63.090548][ T5825] ? __x64_sys_mount+0x20/0xc0
[ 63.095310][ T5825] do_syscall_64+0xf3/0x230
[ 63.099810][ T5825] ? clear_bhb_loop+0x35/0x90
[ 63.104483][ T5825] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 63.110368][ T5825] RIP: 0033:0x7f703e8bc8fa
[ 63.114779][ T5825] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 63.134376][ T5825] RSP: 002b:00007ffc17ef5508 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 63.142838][ T5825] RAX: ffffffffffffffda RBX: 00007ffc17ef5520 RCX: 00007f703e8bc8fa
[ 63.150833][ T5825] RDX: 00000000200058c0 RSI: 0000000020000100 RDI: 00007ffc17ef5520
[ 63.158894][ T5825] RBP: 0000000000000004 R08: 00007ffc17ef5560 R09: 00000000000058c6
[ 63.166864][ T5825] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[ 63.174833][ T5825] R13: 00007ffc17ef5560 R14: 0000000000000003 R15: 0000000001000000
[ 63.182814][ T5825]
[ 63.186225][ T5825] Kernel Offset: disabled
[ 63.190575][ T5825] Rebooting in 86400 seconds..