program: r0 = gettid() pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) splice(r2, 0x0, r1, 0x0, 0x1, 0x0) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000ffc000/0x1000)=nil, 0x0, 0x3000007, 0x810, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000000c0)="68403104d8b154692530c8eb54e1dcfcfd491042a715b8a5ee1e34371cfb2de96766d6e6a5f337b3a940bb5b6c3d3f70df31e41d08715a73cbadbfd8f3f01057124d9d64077bcf18", 0x0, 0x48) r4 = open(&(0x7f0000000080)='./file0\x00', 0x60000, 0x0) syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x10, &(0x7f0000000480)=ANY=[@ANYRES32=0x0], 0xff, 0x59d5, &(0x7f00000007c0)="$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") symlink(&(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file0\x00', &(0x7f0000000280)='./file0\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='pids.events\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) r6 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) flock(r6, 0x2) r7 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) flock(r7, 0x2) close_range(r4, 0xffffffffffffffff, 0x0) [ 67.896103][ T5306] Bluetooth: hci0: command tx timeout [ 68.055571][ T5321] loop0: detected capacity change from 0 to 32768 [ 68.143459][ T5321] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names [ 68.151571][ T5321] bcachefs (loop0): initializing new filesystem [ 68.157142][ T5321] bcachefs (loop0): going read-write [ 68.162803][ T5321] bcachefs (loop0): marking superblocks [ 68.176318][ T5321] bcachefs (loop0): initializing freespace [ 68.180928][ T5321] bcachefs (loop0): done initializing freespace [ 68.189023][ T5321] bcachefs (loop0): reading snapshots table [ 68.191302][ T5321] bcachefs (loop0): reading snapshots done [ 68.209069][ T5321] bcachefs (loop0): done starting filesystem [ 69.974936][ T5306] Bluetooth: hci0: command tx timeout [ 71.202951][ T5321] ================================================================== [ 71.206162][ T5321] BUG: KASAN: slab-use-after-free in bchfs_read+0x2ac0/0x3290 [ 71.209151][ T5321] Read of size 4 at addr ffff888043d80148 by task syz.0.0/5321 [ 71.212149][ T5321] [ 71.213086][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) [ 71.213100][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.213107][ T5321] Call Trace: [ 71.213113][ T5321] [ 71.213119][ T5321] dump_stack_lvl+0x241/0x360 [ 71.213137][ T5321] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.213151][ T5321] ? __virt_addr_valid+0x183/0x530 [ 71.213165][ T5321] ? rcu_is_watching+0x15/0xb0 [ 71.213179][ T5321] ? __virt_addr_valid+0x183/0x530 [ 71.213192][ T5321] ? lock_release+0x4e/0x3e0 [ 71.213203][ T5321] ? __virt_addr_valid+0x183/0x530 [ 71.213216][ T5321] ? __virt_addr_valid+0x183/0x530 [ 71.213230][ T5321] print_report+0x16e/0x5b0 [ 71.213244][ T5321] ? __virt_addr_valid+0x183/0x530 [ 71.213257][ T5321] ? __virt_addr_valid+0x183/0x530 [ 71.213269][ T5321] ? __virt_addr_valid+0x45f/0x530 [ 71.213282][ T5321] ? __phys_addr+0xba/0x170 [ 71.213294][ T5321] ? bchfs_read+0x2ac0/0x3290 [ 71.213307][ T5321] kasan_report+0x143/0x180 [ 71.213320][ T5321] ? bchfs_read+0x2ac0/0x3290 [ 71.213332][ T5321] bchfs_read+0x2ac0/0x3290 [ 71.213355][ T5321] ? __pfx_bchfs_read+0x10/0x10 [ 71.213365][ T5321] ? _raw_spin_unlock_irqrestore+0x90/0x140 [ 71.213416][ T5321] ? lockdep_hardirqs_on+0x9d/0x150 [ 71.213428][ T5321] ? _raw_spin_unlock_irqrestore+0xde/0x140 [ 71.213439][ T5321] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.213449][ T5321] ? rcu_is_watching+0x15/0xb0 [ 71.213466][ T5321] ? bchfs_read+0x33e/0x3290 [ 71.213482][ T5321] ? __pfx_bio_add_page+0x10/0x10 [ 71.213500][ T5321] ? bio_alloc_bioset+0x80e/0x1130 [ 71.213512][ T5321] bch2_readahead+0xe7a/0x12d0 [ 71.213524][ T5321] ? lockdep_hardirqs_on+0x9d/0x150 [ 71.213537][ T5321] ? __pfx_bch2_readahead+0x10/0x10 [ 71.213548][ T5321] ? folio_batch_move_lru+0x3ae/0x430 [ 71.213570][ T5321] ? blk_start_plug+0x70/0x1b0 [ 71.213584][ T5321] read_pages+0x193/0x590 [ 71.213595][ T5321] ? folio_add_lru+0x2d5/0x3e0 [ 71.213608][ T5321] ? filemap_add_folio+0x250/0x380 [ 71.213619][ T5321] ? __pfx_read_pages+0x10/0x10 [ 71.213634][ T5321] page_cache_ra_order+0xa37/0xca0 [ 71.213652][ T5321] filemap_fault+0x6ce/0x13d0 [ 71.213668][ T5321] ? __pfx_filemap_fault+0x10/0x10 [ 71.213681][ T5321] ? filemap_map_pages+0x230/0x1900 [ 71.213695][ T5321] bch2_page_fault+0x52e/0x960 [ 71.213710][ T5321] ? __pfx_bch2_page_fault+0x10/0x10 [ 71.213723][ T5321] ? __lock_acquire+0xad5/0xd80 [ 71.213734][ T5321] ? __pfx_filemap_map_pages+0x10/0x10 [ 71.213750][ T5321] __do_fault+0x135/0x390 [ 71.213761][ T5321] handle_pte_fault+0x3f0c/0x61c0 [ 71.213772][ T5321] ? handle_pte_fault+0x2b0a/0x61c0 [ 71.213785][ T5321] ? __pfx___switch_to+0x10/0x10 [ 71.213800][ T5321] ? __pfx_cgroup_rstat_updated+0x10/0x10 [ 71.213815][ T5321] ? __pfx_handle_pte_fault+0x10/0x10 [ 71.213827][ T5321] ? rcu_is_watching+0x15/0xb0 [ 71.213841][ T5321] ? __count_memcg_events+0x1e1/0x3d0 [ 71.213860][ T5321] ? count_memcg_event_mm+0x96/0x440 [ 71.213876][ T5321] ? mtree_range_walk+0x700/0x8e0 [ 71.213890][ T5321] handle_mm_fault+0x1129/0x1bf0 [ 71.213904][ T5321] ? mt_find+0x28a/0x8f0 [ 71.213922][ T5321] ? __pfx_handle_mm_fault+0x10/0x10 [ 71.213940][ T5321] ? lock_mm_and_find_vma+0x9c/0x2f0 [ 71.213957][ T5321] exc_page_fault+0x2bb/0x920 [ 71.213970][ T5321] asm_exc_page_fault+0x26/0x30 [ 71.213981][ T5321] RIP: 0010:fault_in_readable+0x177/0x2e0 [ 71.213997][ T5321] Code: 49 81 c5 ff 0f 00 00 49 81 e5 00 f0 ff ff 49 39 c5 0f 82 85 00 00 00 e8 e7 07 b3 ff 4c 39 eb 0f 84 88 00 00 00 4c 89 64 24 10 <44> 8a 23 43 0f b6 04 3e 84 c0 75 18 44 88 64 24 40 48 81 c3 00 10 [ 71.214006][ T5321] RSP: 0018:ffffc9000d427900 EFLAGS: 00050246 [ 71.214018][ T5321] RAX: ffffffff82105db9 RBX: 00002000005a0000 RCX: 0000000000100000 [ 71.214043][ T5321] RDX: ffffc9000dff2000 RSI: 00000000000fffff RDI: 0000000000100000 [ 71.214051][ T5321] RBP: ffffc9000d4279b8 R08: ffffffff82105d20 R09: ffffffff85026549 [ 71.214058][ T5321] R10: 0000000000000002 R11: ffff888000ea4880 R12: 000000000208e200 [ 71.214065][ T5321] R13: 000020000208f000 R14: 1ffff92001a84f28 R15: dffffc0000000000 [ 71.214075][ T5321] ? fault_in_iov_iter_readable+0x49/0x280 [ 71.214088][ T5321] ? fault_in_readable+0x100/0x2e0 [ 71.214104][ T5321] ? fault_in_readable+0x199/0x2e0 [ 71.214123][ T5321] ? __pfx_fault_in_readable+0x10/0x10 [ 71.214141][ T5321] ? generic_write_checks+0x162/0x1d0 [ 71.214159][ T5321] ? __pfx_generic_write_checks+0x10/0x10 [ 71.214175][ T5321] fault_in_iov_iter_readable+0x229/0x280 [ 71.214190][ T5321] bch2_write_iter+0x5b2/0x2cd0 [ 71.214204][ T5321] ? aa_file_perm+0x3f1/0xf60 [ 71.214221][ T5321] ? fpu__restore_sig+0x51d/0x11d0 [ 71.214231][ T5321] ? __pfx_aa_file_perm+0x10/0x10 [ 71.214251][ T5321] ? __pfx_bch2_write_iter+0x10/0x10 [ 71.214264][ T5321] ? rcu_read_lock_any_held+0xbb/0x160 [ 71.214278][ T5321] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 71.214294][ T5321] vfs_write+0x70f/0xd10 [ 71.214306][ T5321] ? __pfx_bch2_write_iter+0x10/0x10 [ 71.214318][ T5321] ? __pfx_vfs_write+0x10/0x10 [ 71.214329][ T5321] ? __fget_files+0x2a/0x420 [ 71.214339][ T5321] ? __fget_files+0x2a/0x420 [ 71.214350][ T5321] ksys_write+0x19d/0x2d0 [ 71.214362][ T5321] ? __pfx_ksys_write+0x10/0x10 [ 71.214375][ T5321] ? do_syscall_64+0xb6/0x230 [ 71.214389][ T5321] do_syscall_64+0xf3/0x230 [ 71.214401][ T5321] ? clear_bhb_loop+0x45/0xa0 [ 71.214412][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.214422][ T5321] RIP: 0033:0x7f02cd18d169 [ 71.214433][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 71.214442][ T5321] RSP: 002b:00007f02cdff3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 71.214453][ T5321] RAX: ffffffffffffffda RBX: 00007f02cd3a5fa0 RCX: 00007f02cd18d169 [ 71.214461][ T5321] RDX: 000000000208e24b RSI: 0000200000000000 RDI: 0000000000000007 [ 71.214468][ T5321] RBP: 00007f02cd20e730 R08: 0000000000000000 R09: 0000000000000000 [ 71.214475][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 71.214482][ T5321] R13: 0000000000000000 R14: 00007f02cd3a5fa0 R15: 00007ffe80332d18 [ 71.214498][ T5321] [ 71.214502][ T5321] [ 71.445387][ T5321] Allocated by task 5321: [ 71.447067][ T5321] kasan_save_track+0x3f/0x80 [ 71.448876][ T5321] __kasan_mempool_unpoison_object+0x9e/0x170 [ 71.451227][ T5321] remove_element+0x129/0x1a0 [ 71.453152][ T5321] mempool_alloc_noprof+0x552/0x5a0 [ 71.455271][ T5321] bio_alloc_bioset+0x26f/0x1130 [ 71.457189][ T5321] bch2_readahead+0xbaf/0x12d0 [ 71.459185][ T5321] read_pages+0x193/0x590 [ 71.460964][ T5321] page_cache_ra_order+0xa37/0xca0 [ 71.463057][ T5321] filemap_fault+0x6ce/0x13d0 [ 71.464991][ T5321] bch2_page_fault+0x52e/0x960 [ 71.466954][ T5321] __do_fault+0x135/0x390 [ 71.468644][ T5321] handle_pte_fault+0x3f0c/0x61c0 [ 71.470543][ T5321] handle_mm_fault+0x1129/0x1bf0 [ 71.472514][ T5321] exc_page_fault+0x2bb/0x920 [ 71.474392][ T5321] asm_exc_page_fault+0x26/0x30 [ 71.476371][ T5321] [ 71.477391][ T5321] Freed by task 5321: [ 71.478961][ T5321] kasan_save_track+0x3f/0x80 [ 71.480693][ T5321] kasan_save_free_info+0x40/0x50 [ 71.482621][ T5321] __kasan_mempool_poison_object+0xaa/0x120 [ 71.484898][ T5321] mempool_free+0x1c8/0x390 [ 71.486860][ T5321] bch2_readpages_end_io+0x17c/0x1d0 [ 71.488832][ T5321] __bch2_read_extent+0x1348/0x4400 [ 71.490819][ T5321] bchfs_read+0x2379/0x3290 [ 71.492542][ T5321] bch2_readahead+0xe7a/0x12d0 [ 71.494384][ T5321] read_pages+0x193/0x590 [ 71.496082][ T5321] page_cache_ra_order+0xa37/0xca0 [ 71.498210][ T5321] filemap_fault+0x6ce/0x13d0 [ 71.500089][ T5321] bch2_page_fault+0x52e/0x960 [ 71.501993][ T5321] __do_fault+0x135/0x390 [ 71.503706][ T5321] handle_pte_fault+0x3f0c/0x61c0 [ 71.505730][ T5321] handle_mm_fault+0x1129/0x1bf0 [ 71.507692][ T5321] exc_page_fault+0x2bb/0x920 [ 71.509541][ T5321] asm_exc_page_fault+0x26/0x30 [ 71.511462][ T5321] [ 71.512413][ T5321] The buggy address belongs to the object at ffff888043d80000 [ 71.512413][ T5321] which belongs to the cache bio-488 of size 488 [ 71.517617][ T5321] The buggy address is located 328 bytes inside of [ 71.517617][ T5321] freed 488-byte region [ffff888043d80000, ffff888043d801e8) [ 71.522637][ T5321] [ 71.523611][ T5321] The buggy address belongs to the physical page: [ 71.526081][ T5321] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x43d80 [ 71.529488][ T5321] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 71.532661][ T5321] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff) [ 71.535522][ T5321] page_type: f5(slab) [ 71.537031][ T5321] raw: 04fff00000000040 ffff888040720280 dead000000000122 0000000000000000 [ 71.540144][ T5321] raw: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000 [ 71.543417][ T5321] head: 04fff00000000040 ffff888040720280 dead000000000122 0000000000000000 [ 71.546722][ T5321] head: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000 [ 71.549942][ T5321] head: 04fff00000000001 ffffea00010f6001 00000000ffffffff 00000000ffffffff [ 71.553232][ T5321] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 71.556436][ T5321] page dumped because: kasan: bad access detected [ 71.558957][ T5321] page_owner tracks the page as allocated [ 71.561101][ T5321] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5321, tgid 5320 (syz.0.0), ts 68115461165, free_ts 68098218394 [ 71.568766][ T5321] post_alloc_hook+0x1f4/0x240 [ 71.570671][ T5321] get_page_from_freelist+0x352b/0x36c0 [ 71.572858][ T5321] __alloc_frozen_pages_noprof+0x211/0x5b0 [ 71.575127][ T5321] alloc_pages_mpol+0x339/0x690 [ 71.576952][ T5321] allocate_slab+0x8f/0x3a0 [ 71.578678][ T5321] ___slab_alloc+0xc3b/0x1500 [ 71.580428][ T5321] __slab_alloc+0x58/0xa0 [ 71.582051][ T5321] kmem_cache_alloc_noprof+0x270/0x390 [ 71.584085][ T5321] mempool_init_node+0x1ee/0x4e0 [ 71.585946][ T5321] mempool_init_noprof+0x3a/0x50 [ 71.587995][ T5321] bioset_init+0x2ea/0x820 [ 71.589754][ T5321] bch2_fs_io_read_init+0x29/0xc0 [ 71.591745][ T5321] bch2_fs_open+0x2f37/0x32a0 [ 71.593614][ T5321] bch2_fs_get_tree+0x77b/0x18f0 [ 71.595584][ T5321] vfs_get_tree+0x90/0x2b0 [ 71.597296][ T5321] do_new_mount+0x2cf/0xb70 [ 71.599094][ T5321] page last free pid 5321 tgid 5320 stack trace: [ 71.601622][ T5321] __free_frozen_pages+0xde8/0x10a0 [ 71.603653][ T5321] __slab_free+0x2c6/0x390 [ 71.605397][ T5321] qlist_free_all+0x9a/0x140 [ 71.607310][ T5321] kasan_quarantine_reduce+0x14f/0x170 [ 71.609362][ T5321] __kasan_slab_alloc+0x23/0x80 [ 71.611232][ T5321] __kmalloc_node_track_caller_noprof+0x23a/0x4d0 [ 71.613647][ T5321] kvasprintf+0xe1/0x190 [ 71.615302][ T5321] kasprintf+0xd7/0x120 [ 71.616980][ T5321] alloc_workqueue+0x123/0x210 [ 71.618837][ T5321] bch2_fs_journal_init+0x62c/0x830 [ 71.620799][ T5321] bch2_fs_open+0x2d41/0x32a0 [ 71.622615][ T5321] bch2_fs_get_tree+0x77b/0x18f0 [ 71.624482][ T5321] vfs_get_tree+0x90/0x2b0 [ 71.626176][ T5321] do_new_mount+0x2cf/0xb70 [ 71.628004][ T5321] __se_sys_mount+0x38c/0x400 [ 71.629757][ T5321] do_syscall_64+0xf3/0x230 [ 71.631503][ T5321] [ 71.632476][ T5321] Memory state around the buggy address: [ 71.634598][ T5321] ffff888043d80000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 71.637595][ T5321] ffff888043d80080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 71.640607][ T5321] >ffff888043d80100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 71.643650][ T5321] ^ [ 71.646039][ T5321] ffff888043d80180: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc [ 71.648922][ T5321] ffff888043d80200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 71.651962][ T5321] ================================================================== [ 71.656820][ T5321] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 71.659693][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) [ 71.664290][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.668376][ T5321] Call Trace: [ 71.669697][ T5321] [ 71.670900][ T5321] dump_stack_lvl+0x241/0x360 [ 71.672772][ T5321] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.674855][ T5321] ? __pfx__printk+0x10/0x10 [ 71.676706][ T5321] ? vscnprintf+0x5d/0x90 [ 71.678292][ T5321] panic+0x349/0x880 [ 71.679704][ T5321] ? check_panic_on_warn+0x21/0xb0 [ 71.681650][ T5321] ? __pfx_panic+0x10/0x10 [ 71.683403][ T5321] ? _raw_spin_unlock_irqrestore+0xd9/0x140 [ 71.685891][ T5321] ? _raw_spin_unlock_irqrestore+0xde/0x140 [ 71.688205][ T5321] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.690627][ T5321] ? print_report+0x519/0x5b0 [ 71.692603][ T5321] check_panic_on_warn+0x86/0xb0 [ 71.694600][ T5321] ? bchfs_read+0x2ac0/0x3290 [ 71.696435][ T5321] end_report+0x77/0x160 [ 71.698268][ T5321] kasan_report+0x154/0x180 [ 71.700130][ T5321] ? bchfs_read+0x2ac0/0x3290 [ 71.701933][ T5321] bchfs_read+0x2ac0/0x3290 [ 71.703862][ T5321] ? __pfx_bchfs_read+0x10/0x10 [ 71.705783][ T5321] ? _raw_spin_unlock_irqrestore+0x90/0x140 [ 71.708149][ T5321] ? lockdep_hardirqs_on+0x9d/0x150 [ 71.710264][ T5321] ? _raw_spin_unlock_irqrestore+0xde/0x140 [ 71.712582][ T5321] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.715045][ T5321] ? rcu_is_watching+0x15/0xb0 [ 71.716921][ T5321] ? bchfs_read+0x33e/0x3290 [ 71.718752][ T5321] ? __pfx_bio_add_page+0x10/0x10 [ 71.720705][ T5321] ? bio_alloc_bioset+0x80e/0x1130 [ 71.722725][ T5321] bch2_readahead+0xe7a/0x12d0 [ 71.724584][ T5321] ? lockdep_hardirqs_on+0x9d/0x150 [ 71.726680][ T5321] ? __pfx_bch2_readahead+0x10/0x10 [ 71.728824][ T5321] ? folio_batch_move_lru+0x3ae/0x430 [ 71.730814][ T5321] ? blk_start_plug+0x70/0x1b0 [ 71.732741][ T5321] read_pages+0x193/0x590 [ 71.734964][ T5321] ? folio_add_lru+0x2d5/0x3e0 [ 71.736979][ T5321] ? filemap_add_folio+0x250/0x380 [ 71.739141][ T5321] ? __pfx_read_pages+0x10/0x10 [ 71.741107][ T5321] page_cache_ra_order+0xa37/0xca0 [ 71.743524][ T5321] filemap_fault+0x6ce/0x13d0 [ 71.745435][ T5321] ? __pfx_filemap_fault+0x10/0x10 [ 71.747475][ T5321] ? filemap_map_pages+0x230/0x1900 [ 71.749468][ T5321] bch2_page_fault+0x52e/0x960 [ 71.751357][ T5321] ? __pfx_bch2_page_fault+0x10/0x10 [ 71.753480][ T5321] ? __lock_acquire+0xad5/0xd80 [ 71.755347][ T5321] ? __pfx_filemap_map_pages+0x10/0x10 [ 71.757315][ T5321] __do_fault+0x135/0x390 [ 71.759062][ T5321] handle_pte_fault+0x3f0c/0x61c0 [ 71.761016][ T5321] ? handle_pte_fault+0x2b0a/0x61c0 [ 71.763053][ T5321] ? __pfx___switch_to+0x10/0x10 [ 71.764989][ T5321] ? __pfx_cgroup_rstat_updated+0x10/0x10 [ 71.767285][ T5321] ? __pfx_handle_pte_fault+0x10/0x10 [ 71.769460][ T5321] ? rcu_is_watching+0x15/0xb0 [ 71.771416][ T5321] ? __count_memcg_events+0x1e1/0x3d0 [ 71.773525][ T5321] ? count_memcg_event_mm+0x96/0x440 [ 71.775612][ T5321] ? mtree_range_walk+0x700/0x8e0 [ 71.777569][ T5321] handle_mm_fault+0x1129/0x1bf0 [ 71.779578][ T5321] ? mt_find+0x28a/0x8f0 [ 71.781202][ T5321] ? __pfx_handle_mm_fault+0x10/0x10 [ 71.783266][ T5321] ? lock_mm_and_find_vma+0x9c/0x2f0 [ 71.785348][ T5321] exc_page_fault+0x2bb/0x920 [ 71.787270][ T5321] asm_exc_page_fault+0x26/0x30 [ 71.789266][ T5321] RIP: 0010:fault_in_readable+0x177/0x2e0 [ 71.791581][ T5321] Code: 49 81 c5 ff 0f 00 00 49 81 e5 00 f0 ff ff 49 39 c5 0f 82 85 00 00 00 e8 e7 07 b3 ff 4c 39 eb 0f 84 88 00 00 00 4c 89 64 24 10 <44> 8a 23 43 0f b6 04 3e 84 c0 75 18 44 88 64 24 40 48 81 c3 00 10 [ 71.799923][ T5321] RSP: 0018:ffffc9000d427900 EFLAGS: 00050246 [ 71.802429][ T5321] RAX: ffffffff82105db9 RBX: 00002000005a0000 RCX: 0000000000100000 [ 71.805605][ T5321] RDX: ffffc9000dff2000 RSI: 00000000000fffff RDI: 0000000000100000 [ 71.808808][ T5321] RBP: ffffc9000d4279b8 R08: ffffffff82105d20 R09: ffffffff85026549 [ 71.811920][ T5321] R10: 0000000000000002 R11: ffff888000ea4880 R12: 000000000208e200 [ 71.815043][ T5321] R13: 000020000208f000 R14: 1ffff92001a84f28 R15: dffffc0000000000 [ 71.818125][ T5321] ? fault_in_iov_iter_readable+0x49/0x280 [ 71.820441][ T5321] ? fault_in_readable+0x100/0x2e0 [ 71.822563][ T5321] ? fault_in_readable+0x199/0x2e0 [ 71.824671][ T5321] ? __pfx_fault_in_readable+0x10/0x10 [ 71.826945][ T5321] ? generic_write_checks+0x162/0x1d0 [ 71.829061][ T5321] ? __pfx_generic_write_checks+0x10/0x10 [ 71.831402][ T5321] fault_in_iov_iter_readable+0x229/0x280 [ 71.833698][ T5321] bch2_write_iter+0x5b2/0x2cd0 [ 71.835676][ T5321] ? aa_file_perm+0x3f1/0xf60 [ 71.837607][ T5321] ? fpu__restore_sig+0x51d/0x11d0 [ 71.839761][ T5321] ? __pfx_aa_file_perm+0x10/0x10 [ 71.841760][ T5321] ? __pfx_bch2_write_iter+0x10/0x10 [ 71.843877][ T5321] ? rcu_read_lock_any_held+0xbb/0x160 [ 71.846062][ T5321] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 71.848477][ T5321] vfs_write+0x70f/0xd10 [ 71.850018][ T5321] ? __pfx_bch2_write_iter+0x10/0x10 [ 71.851980][ T5321] ? __pfx_vfs_write+0x10/0x10 [ 71.853882][ T5321] ? __fget_files+0x2a/0x420 [ 71.855755][ T5321] ? __fget_files+0x2a/0x420 [ 71.857635][ T5321] ksys_write+0x19d/0x2d0 [ 71.859456][ T5321] ? __pfx_ksys_write+0x10/0x10 [ 71.861394][ T5321] ? do_syscall_64+0xb6/0x230 [ 71.863313][ T5321] do_syscall_64+0xf3/0x230 [ 71.864998][ T5321] ? clear_bhb_loop+0x45/0xa0 [ 71.867202][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.869544][ T5321] RIP: 0033:0x7f02cd18d169 [ 71.871371][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 71.878793][ T5321] RSP: 002b:00007f02cdff3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 71.882191][ T5321] RAX: ffffffffffffffda RBX: 00007f02cd3a5fa0 RCX: 00007f02cd18d169 [ 71.885305][ T5321] RDX: 000000000208e24b RSI: 0000200000000000 RDI: 0000000000000007 [ 71.888518][ T5321] RBP: 00007f02cd20e730 R08: 0000000000000000 R09: 0000000000000000 [ 71.892228][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 71.895337][ T5321] R13: 0000000000000000 R14: 00007f02cd3a5fa0 R15: 00007ffe80332d18 [ 71.898621][ T5321] [ 71.900187][ T5321] Kernel Offset: disabled [ 71.901994][ T5321] Rebooting in 86400 seconds..