program: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r1, 0x400448c9, &(0x7f0000000080)) nanosleep(&(0x7f0000000200)={0x77359400}, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x3c, r2, 0x1, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16f3}], @NL80211_ATTR_MAC={0xa, 0x6, @random="3221b9205b07"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000815}, 0x850) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r7 = creat(&(0x7f0000000040)='./file0/file0\x00', 0x0) close(r7) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x3, 0x4, &(0x7f0000000380)=@framed={{0x18, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r9, 0x0, 0xe, 0x0, &(0x7f0000000000)="0000000000000000009dc9000000", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x800000, &(0x7f0000000280)=ANY=[@ANYBLOB="62747265655f6e6f64655f70726566657463682c6469726563745f696f2c6e6f7265636f766572792c7374725f686173683d6372633332632c6a6f75726e616c5f666c7573685f64697361626c65642c726f7265636f766572792c6a6f752d69675fdafdcb726e616c5f7472616e73616374696f6e5f6e616d65732c7265636f6e7374727563745f616c6c6f632c6572726f72733d636f6e74696e75652c00"], 0x1, 0x5989, &(0x7f000000b680)="$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") chmod(&(0x7f0000000180)='./file0\x00', 0x0) r10 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r7, r10, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0) [ 75.079770][ T5304] Bluetooth: hci0: command tx timeout [ 75.408616][ T5319] loop0: detected capacity change from 0 to 32768 [ 75.454499][ T5319] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 75.498636][ T5319] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,str_hash=crc32c,journal_flush_disabled,norecovery,nojournal_transaction_names,reconstruct_alloc [ 75.498636][ T5319] allowing incompatible features above 0.0: (unknown version) [ 75.498636][ T5319] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 75.552728][ T5319] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 75.556200][ T5319] bcachefs (loop0): Version upgrade required: [ 75.556200][ T5319] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 75.556200][ T5319] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 75.556200][ T5319] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 75.608364][ T5319] bcachefs (loop0): dropping and reconstructing all alloc info [ 75.626751][ T5319] bcachefs (loop0): btree node read error at btree inodes level 0/0 [ 75.626772][ T5319] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0 [ 75.626783][ T5319] loop0 node offset 0/24 bset u64s 0: invalid bkey format: field 2 too large: 4294967295 + 12884901888 > 4294967295 [ 75.626791][ T5319] u64s 3 fields 64:0, 64:0, 32:12884901888, 0:0, 0:0, 0:0 [ 75.626797][ T5319] flagging btree inodes lost data [ 75.626803][ T5319] running recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 75.626809][ T5319] ret btree_node_read_validate_error [ 75.658350][ T5319] bcachefs (loop0): error reading btree root btree=inodes level=0: btree_node_read_error, fixing [ 75.664623][ T5319] bcachefs (loop0): btree node read error at btree xattrs level 0/0 [ 75.664636][ T5319] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0 [ 75.664646][ T5319] loop0 node offset 0/16: got wrong btree node: got [ 75.664654][ T5319] btree=xattrs level=0 seq 22000000ba0abe32 1 [ 75.664659][ T5319] min: POS_MIN [ 75.664665][ T5319] max: SPOS_MAX [ 75.664670][ T5319] flagging btree xattrs lost data [ 75.664676][ T5319] ret btree_node_read_validate_error [ 75.686533][ T5319] bcachefs (loop0): error reading btree root btree=xattrs level=0: btree_node_read_error, fixing [ 75.692190][ T5319] bcachefs (loop0): btree node read error at btree subvolumes level 0/0 [ 75.692198][ T5319] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0 [ 75.692204][ T5319] loop0 node offset 0/16 bset u64s 0: invalid bkey format: field 1 too large: 18446744073709551615 + 12884901888 > 18446744073709551615 [ 75.692209][ T5319] u64s 3 fields 64:0, 64:12884901888, 32:0, 0:0, 0:0, 0:0 [ 75.692213][ T5319] flagging btree subvolumes lost data [ 75.692216][ T5319] ret btree_node_read_validate_error [ 75.716066][ T5319] bcachefs (loop0): error reading btree root btree=subvolumes level=0: btree_node_read_error, fixing [ 75.724345][ T5319] bcachefs (loop0): scan_for_btree_nodes... [ 75.729851][ T5325] bcachefs (loop0): invalid bkey in btree_node btree=subvolumes level=0: u64s 7 type subvolume 0:12884901889:0 len 0 ver 0: root 4096 snapshot id 4294967295 [ 75.729871][ T5325] invalid pos, deleting [ 75.744671][ T5325] ------------[ cut here ]------------ [ 75.747195][ T5325] kernel BUG at fs/bcachefs/bkey.c:389! [ 75.749583][ T5325] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 75.752331][ T5325] CPU: 0 UID: 0 PID: 5325 Comm: read_btree_node Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) [ 75.757574][ T5325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.762244][ T5325] RIP: 0010:bch2_bkey_pack_pos_lossy+0x13de/0x24e0 [ 75.765254][ T5325] Code: e8 97 1c 09 fe 48 ba 00 00 00 00 00 fc ff df e9 a5 f8 ff ff e8 d3 e7 a5 fd 90 0f 0b e8 cb e7 a5 fd 90 0f 0b e8 c3 e7 a5 fd 90 <0f> 0b e8 bb e7 a5 fd 90 0f 0b e8 b3 e7 a5 fd 90 0f 0b f3 0f 1e fa [ 75.773427][ T5325] RSP: 0018:ffffc9000d43eb40 EFLAGS: 00010293 [ 75.776058][ T5325] RAX: ffffffff841a598d RBX: 0000000300000000 RCX: ffff8880387a0000 [ 75.779255][ T5325] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000300000000 [ 75.782679][ T5325] RBP: ffffc9000d43ed78 R08: ffffffffffffffff R09: ffffffffffffffff [ 75.786039][ T5325] R10: ffffffffffffffff R11: ffffffffffffffff R12: ffff88803f8bb0c4 [ 75.789510][ T5325] R13: fffffffdffffffff R14: 0000000000000000 R15: fffffffffffffffe [ 75.792951][ T5325] FS: 0000000000000000(0000) GS:ffff88808d265000(0000) knlGS:0000000000000000 [ 75.796720][ T5325] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 75.799561][ T5325] CR2: 00007fb736f6f000 CR3: 0000000050e36000 CR4: 0000000000352ef0 [ 75.802895][ T5325] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 75.806306][ T5325] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 75.809723][ T5325] Call Trace: [ 75.811074][ T5325] [ 75.812388][ T5325] ? __pfx___bch2_inode_validate+0x10/0x10 [ 75.814962][ T5325] ? __pfx_bch2_bkey_pack_pos_lossy+0x10/0x10 [ 75.817473][ T5325] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.819839][ T5325] ? __build_ro_aux_tree+0xafc/0x1800 [ 75.821963][ T5325] __build_ro_aux_tree+0xb21/0x1800 [ 75.824071][ T5325] ? __pfx___build_ro_aux_tree+0x10/0x10 [ 75.826483][ T5325] ? bch2_bkey_val_validate+0x212/0x400 [ 75.828962][ T5325] ? __pfx_bch2_bkey_val_validate+0x10/0x10 [ 75.831383][ T5325] ? __asan_memset+0x22/0x50 [ 75.833418][ T5325] bch2_bset_build_aux_tree+0x3f5/0x570 [ 75.835851][ T5325] bch2_btree_node_read_done+0x39e4/0x4f60 [ 75.838186][ T5325] ? __pfx_bch2_btree_node_read_done+0x10/0x10 [ 75.840661][ T5325] ? bch2_extent_ptr_to_text+0x5a/0x900 [ 75.842897][ T5325] ? bch2_extent_ptr_to_text+0x5a/0x900 [ 75.845137][ T5325] ? bch2_bkey_ptrs_to_text+0x1161/0x1310 [ 75.847540][ T5325] ? bch2_printbuf_make_room+0xdb/0x360 [ 75.849914][ T5325] ? enumerated_ref_put+0xbe/0x270 [ 75.852095][ T5325] btree_node_read_work+0x426/0xe30 [ 75.854426][ T5325] ? __pfx_btree_node_read_work+0x10/0x10 [ 75.856939][ T5325] ? bch2_latency_acct+0x436/0x520 [ 75.859227][ T5325] ? __pfx_bch2_latency_acct+0x10/0x10 [ 75.861587][ T5325] ? bio_associate_blkg+0x6d/0x230 [ 75.863760][ T5325] bch2_btree_node_read+0x887/0x29f0 [ 75.865941][ T5325] ? bch2_btree_node_fill+0x954/0x14f0 [ 75.868211][ T5325] ? __pfx_bch2_btree_node_read+0x10/0x10 [ 75.870783][ T5325] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 75.873170][ T5325] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 75.875783][ T5325] ? __pfx___bch2_btree_node_hash_insert+0x10/0x10 [ 75.878636][ T5325] ? bch2_btree_node_mem_alloc+0xcd9/0x1820 [ 75.881168][ T5325] ? six_unlock_ip+0x302/0x430 [ 75.883361][ T5325] ? bch2_btree_node_fill+0xb47/0x14f0 [ 75.885592][ T5325] bch2_btree_node_fill+0xd12/0x14f0 [ 75.887911][ T5325] ? __pfx_bch2_btree_cache_cmp_fn+0x10/0x10 [ 75.890611][ T5325] ? __pfx_bch2_btree_node_fill+0x10/0x10 [ 75.892975][ T5325] ? btree_cache_find+0xf4/0x2d0 [ 75.895318][ T5325] ? btree_cache_find+0xf4/0x2d0 [ 75.897634][ T5325] ? btree_cache_find+0x26f/0x2d0 [ 75.899695][ T5325] ? __pfx_btree_cache_find+0x10/0x10 [ 75.901698][ T5325] bch2_btree_node_get_noiter+0xa2c/0x1000 [ 75.903884][ T5325] read_btree_nodes_worker+0x1319/0x1e20 [ 75.906056][ T5325] ? read_btree_nodes_worker+0xcef/0x1e20 [ 75.908409][ T5325] ? __pfx_read_btree_nodes_worker+0x10/0x10 [ 75.910905][ T5325] ? _raw_spin_unlock_irqrestore+0x85/0x110 [ 75.913506][ T5325] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.915687][ T5325] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 75.918225][ T5325] ? __kthread_parkme+0x7b/0x200 [ 75.920392][ T5325] ? __kthread_parkme+0x1a1/0x200 [ 75.922620][ T5325] kthread+0x711/0x8a0 [ 75.924307][ T5325] ? __pfx_read_btree_nodes_worker+0x10/0x10 [ 75.926760][ T5325] ? __pfx_kthread+0x10/0x10 [ 75.928733][ T5325] ? _raw_spin_unlock_irq+0x23/0x50 [ 75.930862][ T5325] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.933024][ T5325] ? __pfx_kthread+0x10/0x10 [ 75.934988][ T5325] ret_from_fork+0x3fc/0x770 [ 75.937006][ T5325] ? __pfx_ret_from_fork+0x10/0x10 [ 75.939190][ T5325] ? __pfx_kthread+0x10/0x10 [ 75.941107][ T5325] ret_from_fork_asm+0x1a/0x30 [ 75.943146][ T5325] [ 75.944508][ T5325] Modules linked in: [ 75.946560][ T5325] ---[ end trace 0000000000000000 ]--- [ 75.959668][ T5325] RIP: 0010:bch2_bkey_pack_pos_lossy+0x13de/0x24e0 [ 75.964374][ T5325] Code: e8 97 1c 09 fe 48 ba 00 00 00 00 00 fc ff df e9 a5 f8 ff ff e8 d3 e7 a5 fd 90 0f 0b e8 cb e7 a5 fd 90 0f 0b e8 c3 e7 a5 fd 90 <0f> 0b e8 bb e7 a5 fd 90 0f 0b e8 b3 e7 a5 fd 90 0f 0b f3 0f 1e fa [ 75.974448][ T5325] RSP: 0018:ffffc9000d43eb40 EFLAGS: 00010293 [ 75.977064][ T5325] RAX: ffffffff841a598d RBX: 0000000300000000 RCX: ffff8880387a0000 [ 75.980394][ T5325] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000300000000 [ 75.985279][ T5325] RBP: ffffc9000d43ed78 R08: ffffffffffffffff R09: ffffffffffffffff [ 75.988784][ T5325] R10: ffffffffffffffff R11: ffffffffffffffff R12: ffff88803f8bb0c4 [ 75.992877][ T5325] R13: fffffffdffffffff R14: 0000000000000000 R15: fffffffffffffffe [ 75.996237][ T5325] FS: 0000000000000000(0000) GS:ffff88808d265000(0000) knlGS:0000000000000000 [ 75.999868][ T5325] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.002959][ T5325] CR2: 0000561549cba168 CR3: 0000000050e36000 CR4: 0000000000352ef0 [ 76.006132][ T5325] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 76.009436][ T5325] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 76.013482][ T5325] Kernel panic - not syncing: Fatal exception [ 76.016432][ T5325] Kernel Offset: disabled [ 76.018219][ T5325] Rebooting in 86400 seconds..