./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2223725420 <...> Warning: Permanently added '10.128.0.60' (ECDSA) to the list of known hosts. execve("./syz-executor2223725420", ["./syz-executor2223725420"], 0x7fff2baeaf50 /* 10 vars */) = 0 brk(NULL) = 0x5555565c8000 brk(0x5555565c8c40) = 0x5555565c8c40 arch_prctl(ARCH_SET_FS, 0x5555565c8300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2223725420", 4096) = 28 brk(0x5555565e9c40) = 0x5555565e9c40 brk(0x5555565ea000) = 0x5555565ea000 mprotect(0x7f85f3e30000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f85eb800000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 munmap(0x7f85eb800000, 16777216) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 [ 62.350438][ T3631] loop0: detected capacity change from 0 to 32768 [ 62.362180][ T3631] BTRFS: device fsid a830dcec-d20e-42dc-8160-bf13f3286f97 devid 1 transid 8 /dev/loop0 scanned by syz-executor222 (3631) [ 62.386156][ T3631] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 62.396515][ T3631] BTRFS warning (device loop0): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 62.407459][ T3631] BTRFS info (device loop0): trying to use backup root at mount time [ 62.415759][ T3631] BTRFS warning (device loop0): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 62.426547][ T3631] BTRFS info (device loop0): trying to use backup root at mount time [ 62.434603][ T3631] BTRFS info (device loop0): using free space tree [ 62.441497][ T3631] workqueue: max_active 14258 requested for btrfs-worker is out of range, clamping between 1 and 512 [ 62.453388][ T3631] workqueue: max_active 14258 requested for btrfs-worker-high is out of range, clamping between 1 and 512 [ 62.465787][ T3631] workqueue: max_active 14258 requested for btrfs-delalloc is out of range, clamping between 1 and 512 [ 62.478664][ T3631] workqueue: max_active 14258 requested for btrfs-endio is out of range, clamping between 1 and 512 [ 62.490019][ T3631] workqueue: max_active 14258 requested for btrfs-endio-meta is out of range, clamping between 1 and 512 [ 62.501644][ T3631] workqueue: max_active 14258 requested for btrfs-endio-raid56 is out of range, clamping between 1 and 512 [ 62.513562][ T3631] workqueue: max_active 14258 requested for btrfs-rmw is out of range, clamping between 1 and 512 [ 62.524620][ T3631] workqueue: max_active 14258 requested for btrfs-endio-write is out of range, clamping between 1 and 512 [ 62.536675][ T3631] workqueue: max_active 14258 requested for btrfs-compressed-write is out of range, clamping between 1 and 512 [ 62.551815][ T41] BTRFS warning (device loop0): checksum verify failed on logical 5332992 mirror 1 wanted 0x6f1c19d9e98527de found 0x3d333e2ad94dd107 level 0 [ 62.566876][ T3631] BTRFS warning (device loop0): couldn't read tree root [ 62.576588][ T9] BTRFS error (device loop0): bad tree block start, mirror 1 want 5292032 have 648518346346643456 [ 62.587339][ T3631] BTRFS warning (device loop0): failed to read root (objectid=9): -5 [ 62.595877][ T3631] BTRFS error (device loop0): parent transid verify failed on logical 5255168 mirror 1 wanted 5 found 7 [ 62.607288][ T3631] BTRFS warning (device loop0): couldn't read tree root [ 62.614824][ T3631] assertion failed: !tmp, in fs/btrfs/disk-io.c:1098 [ 62.621928][ T3631] ------------[ cut here ]------------ [ 62.627512][ T3631] kernel BUG at fs/btrfs/ctree.h:3713! [ 62.632971][ T3631] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 62.639012][ T3631] CPU: 0 PID: 3631 Comm: syz-executor222 Not tainted 6.1.0-rc6-syzkaller-00308-g644e9524388a #0 [ 62.649393][ T3631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 62.659424][ T3631] RIP: 0010:assertfail+0x1a/0x1c [ 62.664356][ T3631] Code: 48 c7 c2 40 aa 38 8b 31 c0 e8 ef e3 ff ff 0f 0b 89 f1 48 89 fe 48 c7 c7 20 d9 38 8b 48 c7 c2 10 0a 39 8b 31 c0 e8 d3 e3 ff ff <0f> 0b 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48 81 ec [ 62.683938][ T3631] RSP: 0018:ffffc90003bbf450 EFLAGS: 00010246 [ 62.689982][ T3631] RAX: 0000000000000032 RBX: 0000000000000000 RCX: 4ad7781c1036c000 [ 62.697931][ T3631] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 62.705881][ T3631] RBP: ffff888026f040a0 R08: ffffffff816e55cd R09: fffff52000777e01 [ 62.713830][ T3631] R10: fffff52000777e01 R11: 1ffff92000777e00 R12: dffffc0000000000 [ 62.721778][ T3631] R13: ffff88807b2021f7 R14: ffff88802470e000 R15: ffff88802470e000 [ 62.729728][ T3631] FS: 00005555565c8300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 62.738643][ T3631] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 62.745215][ T3631] CR2: 00005625e09eff80 CR3: 000000007aeff000 CR4: 00000000003506f0 [ 62.753174][ T3631] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 62.761128][ T3631] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 62.769085][ T3631] Call Trace: [ 62.772350][ T3631] [ 62.775270][ T3631] btrfs_global_root_insert+0x1a7/0x1b0 [ 62.780811][ T3631] load_global_roots_objectid+0x482/0x8c0 [ 62.786524][ T3631] ? folio_detach_private+0x3c0/0x3c0 [ 62.791891][ T3631] ? trace_kmem_cache_alloc+0x30/0xe0 [ 62.797251][ T3631] ? kmem_cache_alloc+0x85/0x300 [ 62.802178][ T3631] init_tree_roots+0xa25/0x1ed0 [ 62.807024][ T3631] ? open_ctree+0x2d6d/0x2d6d [ 62.811690][ T3631] ? free_fs_devices+0x270/0x2c0 [ 62.816619][ T3631] ? memcpy+0x3c/0x60 [ 62.820593][ T3631] ? read_extent_buffer+0x228/0x2e0 [ 62.825782][ T3631] open_ctree+0x1a92/0x2d6d [ 62.830283][ T3631] ? assertfail+0x1c/0x1c [ 62.834599][ T3631] ? vscnprintf+0x80/0x80 [ 62.838932][ T3631] btrfs_fill_super+0x1c6/0x2d0 [ 62.843773][ T3631] btrfs_mount_root+0x885/0x9a0 [ 62.848614][ T3631] ? btrfs_control_open+0x40/0x40 [ 62.853628][ T3631] ? trace_kfree+0x30/0xe0 [ 62.858033][ T3631] ? kfree+0x16/0xe0 [ 62.861915][ T3631] ? vfs_parse_fs_string+0x1ca/0x280 [ 62.867190][ T3631] ? legacy_init_fs_context+0x4d/0xb0 [ 62.872552][ T3631] ? vfs_parse_fs_param+0x410/0x410 [ 62.877740][ T3631] legacy_get_tree+0xea/0x180 [ 62.882409][ T3631] ? btrfs_control_open+0x40/0x40 [ 62.887429][ T3631] vfs_get_tree+0x88/0x270 [ 62.891837][ T3631] vfs_kern_mount+0xc9/0x160 [ 62.896418][ T3631] btrfs_mount+0x3d3/0xbb0 [ 62.900826][ T3631] ? btrfs_clear_sb_rdonly+0x70/0x70 [ 62.906106][ T3631] ? aa_get_newest_label+0xf4/0x640 [ 62.911291][ T3631] ? vfs_parse_fs_string+0x1ca/0x280 [ 62.916564][ T3631] ? trace_kfree+0x30/0xe0 [ 62.920972][ T3631] ? vfs_parse_fs_string+0x1ca/0x280 [ 62.926250][ T3631] legacy_get_tree+0xea/0x180 [ 62.930917][ T3631] ? btrfs_clear_sb_rdonly+0x70/0x70 [ 62.936190][ T3631] vfs_get_tree+0x88/0x270 [ 62.940593][ T3631] do_new_mount+0x289/0xad0 [ 62.945085][ T3631] ? do_move_mount_old+0x150/0x150 [ 62.950187][ T3631] ? user_path_at_empty+0x149/0x1a0 [ 62.955372][ T3631] __se_sys_mount+0x2d3/0x3c0 [ 62.960038][ T3631] ? __x64_sys_mount+0xc0/0xc0 [ 62.964791][ T3631] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 62.970759][ T3631] ? __x64_sys_mount+0x1c/0xc0 [ 62.975513][ T3631] do_syscall_64+0x3d/0xb0 [ 62.979915][ T3631] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 62.985795][ T3631] RIP: 0033:0x7f85f3dbfd5a [ 62.990200][ T3631] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 63.009789][ T3631] RSP: 002b:00007ffe9a2845c8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 63.018186][ T3631] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f85f3dbfd5a [ 63.026141][ T3631] RDX: 00000000200051c0 RSI: 0000000020005200 RDI: 00007ffe9a2845e0 [ 63.034112][ T3631] RBP: 00007ffe9a2845e0 R08: 00007ffe9a284620 R09: 00000000000051b1 [ 63.042077][ T3631] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000004 [ 63.050043][ T3631] R13: 00005555565c82c0 R14: 0000000000000000 R15: 00007ffe9a284620 [ 63.058017][ T3631] [ 63.061024][ T3631] Modules linked in: [ 63.065067][ T3631] ---[ end trace 0000000000000000 ]--- [ 63.070525][ T3631] RIP: 0010:assertfail+0x1a/0x1c [ 63.075502][ T3631] Code: 48 c7 c2 40 aa 38 8b 31 c0 e8 ef e3 ff ff 0f 0b 89 f1 48 89 fe 48 c7 c7 20 d9 38 8b 48 c7 c2 10 0a 39 8b 31 c0 e8 d3 e3 ff ff <0f> 0b 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48 81 ec [ 63.095227][ T3631] RSP: 0018:ffffc90003bbf450 EFLAGS: 00010246 [ 63.101282][ T3631] RAX: 0000000000000032 RBX: 0000000000000000 RCX: 4ad7781c1036c000 [ 63.109344][ T3631] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 63.117382][ T3631] RBP: ffff888026f040a0 R08: ffffffff816e55cd R09: fffff52000777e01 [ 63.125373][ T3631] R10: fffff52000777e01 R11: 1ffff92000777e00 R12: dffffc0000000000 [ 63.133346][ T3631] R13: ffff88807b2021f7 R14: ffff88802470e000 R15: ffff88802470e000 [ 63.141382][ T3631] FS: 00005555565c8300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 63.150349][ T3631] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.156973][ T3631] CR2: 00005625e09eff80 CR3: 000000007aeff000 CR4: 00000000003506f0 [ 63.164979][ T3631] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 63.172941][ T3631] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 63.180939][ T3631] Kernel panic - not syncing: Fatal exception [ 63.187143][ T3631] Kernel Offset: disabled [ 63.191456][ T3631] Rebooting in 86400 seconds..