program:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) (async)
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x200804, &(0x7f0000000380)=ANY=[], 0x1, 0x59b4, &(0x7f0000000100)="$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")
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0xb}, 0x15, 0x3, 'sh\x00', 0x1, 0x4, 0x72}, 0x2c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
r2 = socket$inet_tcp(0x2, 0x1, 0x0) (async, rerun: 64)
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6d0, &(0x7f0000001340)="$eJzs3cFvHFcdB/DvrNeOt1TBaRMaoSKsRCpIEYkTK4VwwSCEcqhQVQ49W4nTWN0kVeKitEKQAoITEof+AQXJNw4IiXtQuHApt159rITEJeIQ9bJoZmfXu/Y6Xif2OoHPJxrPe/Nm3vzmN29mvOusNsD/rctn0ryfIpfPvHG3rG+sL7Y31heP1M3tJGW5kTS7sxQ3k+JBslS2FwNTBubbfLx66a3PHm583q0166laf6q/3exYIY/Yx716ynzd3/zILafH6r/bVxVeXkxypZ4Pmxm3r6EVy6Sdrudw6Drb3NvL5jte78Czr/d0KrrPzW3mkhfqJ3P1O0F9d2hMLsKDsae7HAAAADynPr112BEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA86f+/v+inhr1PPMpet//P9NbVpefQUtjr3n/QOMAAAAAAAAAgMn4+qM8yt0c7dU7RfU3/1NV5Xi+6CRfyvu5k5XcztnczXLWspbbOZ9kbqCjmbvLa2u3z/e3LI3e8sLILS9M6ogBAAAAAAAA4H/SL9Pa/Ps/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8C4pkqjurpuP1PHNpNLPZlnvJP5PMHHa8e1CMWnh/8nEAAADAU5l9gm2+/CiPcjdHe/VOUb3m/0r1enk27+dm1rKatbSzkqv1a+jyVX9jY32xvbG+eKOcyvpwv9//957CmKl7mKpqo/Z8slqjlWtZrZaczZUqmKtpdPd9OjnZi2cgrgEflTEV36uNGVmzTmu5s9/v9C7Cvhh+K6LxmDVbm8El/Yws1LGVWx7rZqCo3qhJtmZi17PTHKrNVb1O9/d0Po3+Oz/HDyDnL9Tz8nh+c6A536t+JhqpMnGhN/rKa+bxmUi+8dc/vX29ffPd69funHl2DmkXUzss3zomFgcy8cpznYnmHtdfqDJxol+/nB/lJzmT+byZ21nNT7OctaykU7cv1+O5/Dn3+EwtDdXe3C2Smfq8dM/ZODHN54dVaTmnqm2PZjVFbuVqVvJ69e9CzufbuZiLuTRwhk/sGHd1bNVV39h61ffO9N9GBn/6m3WhvLv9dvMut/S4I95pdO6X7r2/zOuxgbx2R/3D/lrHBq6DhYEsvdTLzvTIzp/k3tj8al0o9/GrXZ4TkzVXZ6K8gHpPiV50L3cz0ayeRdvH+R865XZp3+x0ri+/t0P/97bUX6vn5bBa/9pua/eMPhX7qxwvL2W2vpMMj46y7eX+XWagrbM5lrttw0/ccrsTVVtR9K7UH+dWNQC2X6kz9e9w23u6ULW9MrJtsWo7OdA29PtWbqWdqxPIHwBP4h9v94tzeWGm9a/Wp61PWr9uXW+9MfuDI9858upMpv8+/d3mwtRrjVeLv+ST/Hzz9T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDk7nzw4bvL7fbK7dGFxs5NQ4VWti7Zqecjo/sp6i/0GWNfz0VhNsnQkup7jiYeRmtrGNsKnV8kE89P70sER6/zu7LQ3DaiRhWWhpb8eXuHH+0xwmK86+IAC41MdqdTGT0ADvGmBEzEubUb752788GH31q9sfzOyjsrN6cvXry0cOni64vnrq22Vxa6Pw87SuAgbD70DzsSAAAAAAAAAAAAYFyjPhhw6sXdPjQy1mc8/M9CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYF9cPpPm/RQ5v3B2oaxvrC+2y6lX3lyzmaTRSIqfJcWDZCndKXMD3RX544N0Ruzn49VLb332cOPzzb6a3fWTRj3f2eNbk9yrp8wnmarnT2GovytP3V/xn94xlAn7otPpLD1dfLA//hsAAP//P3v0tA==") (rerun: 64)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) (async)
open(&(0x7f0000000000)='./file0\x00', 0x143042, 0x0)
listxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) (async)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e1f, 0x3, 'lc\x00', 0x4, 0x81, 0x5}, {@rand_addr=0x64010102, 0x4e26, 0x0, 0xcb, 0x12d5c, 0x12d5c}}, 0x44) (async)
r3 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0)
ioctl$TIOCGRS485(r3, 0x542e, &(0x7f0000000240))
sendmsg$NL80211_CMD_START_P2P_DEVICE(r3, &(0x7f0000005b40)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000005b00)={&(0x7f0000005ac0)={0x14, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
setsockopt$IP_VS_SO_SET_EDITDEST(r1, 0x0, 0x489, &(0x7f0000000380)={{0x84, @multicast1, 0x4e20, 0x3, 'sh\x00', 0x0, 0x60000000, 0xc}, {@rand_addr=0x64010102, 0x4e26, 0x12002, 0x0, 0x8001, 0x1}}, 0x44) (async, rerun: 32)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bic\x00', 0x4) (rerun: 32)
[ 85.216236][ T5310] Bluetooth: hci0: command tx timeout
[ 85.595051][ T5333] loop0: detected capacity change from 0 to 32768
[ 85.773986][ T5333] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[ 85.774003][ T5333] allowing incompatible features above 0.0: (unknown version)
[ 85.774010][ T5333] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[ 85.805185][ T5333] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[ 85.809957][ T5333] bcachefs (loop0): invalid bkey in superblock btree=extents level=0: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0
[ 85.809985][ T5333] invalid key type for btree extents (btree_ptr_v2), deleting
[ 85.824660][ T5333] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[ 85.828241][ T5333] bcachefs (loop0): Version upgrade from 1.6: btree_subvolume_children to 1.7: mi_btree_bitmap incomplete
[ 85.828241][ T5333] Doing compatible version upgrade from 1.6: btree_subvolume_children to 1.28: inode_has_case_insensitive
[ 85.828241][ T5333] running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[ 85.892372][ T5333] bcachefs (loop0): invalid bkey in btree_node btree=alloc level=0: u64s 11 type alloc_v4 0:6:0 len 0 ver 0:
[ 85.892406][ T5333] gen 0 oldest_gen 0 data_type sb
[ 85.892411][ T5333] journal_seq_nonempty 1
[ 85.892416][ T5333] journal_seq_empty 1769481
[ 85.892422][ T5333] need_discard 1
[ 85.892427][ T5333] need_inc_gen 1
[ 85.892432][ T5333] dirty_sectors 256
[ 85.892437][ T5333] stripe_sectors 7
[ 85.892442][ T5333] cached_sectors 0
[ 85.892447][ T5333] stripe 0
[ 85.892452][ T5333] stripe_redundancy 0
[ 85.892457][ T5333] io_time[READ] 1
[ 85.892462][ T5333] io_time[WRITE] 9223372036854775809
[ 85.892467][ T5333] fragmentation 0
[ 85.892472][ T5333] bp_start 6
[ 85.892477][ T5333]
[ 85.892482][ T5333] invalid io_time[write]: 9223372036854775809, max 281474976710655, deleting
[ 85.942103][ T5333] bcachefs (loop0): invalid bkey in btree_node btree=alloc level=0: u64s 11 type alloc_v4 0:12:0 len 0 ver 0:
[ 85.942117][ T5333] gen 0 oldest_gen 0 data_type journal
[ 85.942122][ T5333] journal_seq_nonempty 1
[ 85.942127][ T5333] journal_seq_empty 1769481
[ 85.942131][ T5333] need_discard 1
[ 85.942137][ T5333] need_inc_gen 1
[ 85.942141][ T5333] dirty_sectors 256
[ 85.942146][ T5333] stripe_sectors 13
[ 85.942151][ T5333] cached_sectors 0
[ 85.942155][ T5333] stripe 2047
[ 85.942160][ T5333] stripe_redundancy 0
[ 85.942165][ T5333] io_time[READ] 1
[ 85.942170][ T5333] io_time[WRITE] 1
[ 85.942175][ T5333] fragmentation 0
[ 85.942179][ T5333] bp_start 6
[ 85.942184][ T5333]
[ 85.942188][ T5333] invalid data type (got 2 should be 7), deleting
[ 85.985949][ T5333] bcachefs (loop0): invalid bkey in btree_node btree=alloc level=0: u64s 15 type alloc_v4 0:26:0 len 0 ver 0:
[ 85.985963][ T5333] gen 0 oldest_gen 0 data_type btree
[ 85.985968][ T5333] journal_seq_nonempty 4503599627370497
[ 85.985973][ T5333] journal_seq_empty 196868
[ 85.985978][ T5333] need_discard 0
[ 85.985983][ T5333] need_inc_gen 0
[ 85.985988][ T5333] dirty_sectors 256
[ 85.985992][ T5333] stripe_sectors 256
[ 85.985996][ T5333] cached_sectors 0
[ 85.986001][ T5333] stripe 0
[ 85.986005][ T5333] stripe_redundancy 0
[ 85.986009][ T5333] io_time[READ] 1
[ 85.986014][ T5333] io_time[WRITE] 1
[ 85.986018][ T5333] fragmentation 0
[ 85.986023][ T5333] bp_start 0
[ 85.986028][ T5333]
[ 85.986032][ T5333] invalid backpointers_start, deleting
[ 86.039710][ T5333] bcachefs (loop0): accounting_read... done
[ 86.045663][ T5333] bcachefs (loop0): alloc_read... done
[ 86.048929][ T5333] bcachefs (loop0): snapshots_read... done
[ 86.053250][ T5333] bcachefs (loop0): check_allocations...
[ 86.057449][ T5333] bcachefs (loop0): bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[ 86.057475][ T5333] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[ 86.077335][ T5333] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[ 86.082403][ T5333] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[ 86.088378][ T5333] bcachefs (loop0): bucket 0:12 gen 0 has wrong data_type: got free, should be journal, fixing
[ 86.093185][ T5333] bcachefs (loop0): bucket 0:12 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[ 86.098426][ T5333] bcachefs (loop0): bucket 0:26 gen 0 has wrong data_type: got free, should be btree, fixing
[ 86.106361][ T5333] bcachefs (loop0): bucket 0:26 gen 0 data type btree has wrong dirty_sectors: got 0, should be 256, fixing
[ 86.112756][ T5333] bcachefs (loop0): bucket 0:27 gen 0 has wrong data_type: got btree, should be need_discard, fixing
[ 86.117753][ T5333] bcachefs (loop0): bucket 0:27 gen 0 data type need_discard has wrong dirty_sectors: got 256, should be 0, fixing
[ 86.125164][ T5333] bcachefs (loop0): bucket 0:34 gen 0 has wrong data_type: got user, should be need_discard, fixing
[ 86.133126][ T5333] bcachefs (loop0): bucket 0:34 gen 0 data type need_discard has wrong dirty_sectors: got 16, should be 0, fixing
[ 86.139740][ T5333] done
[ 86.144730][ T5333] bcachefs (loop0): going read-write
[ 86.271397][ T1132] bcachefs (loop0): u64s 12 type alloc_v4 0:28:0 len 0 ver 0:
[ 86.271424][ T1132] gen 0 oldest_gen 0 data_type btree
[ 86.271431][ T1132] journal_seq_nonempty 6
[ 86.271437][ T1132] journal_seq_empty 0
[ 86.271443][ T1132] need_discard 1
[ 86.271456][ T1132] need_inc_gen 1
[ 86.271462][ T1132] dirty_sectors 256
[ 86.271468][ T1132] stripe_sectors 0
[ 86.271473][ T1132] cached_sectors 0
[ 86.271479][ T1132] stripe 0
[ 86.271485][ T1132] stripe_redundancy 0
[ 86.271491][ T1132] io_time[READ] 1
[ 86.271497][ T1132] io_time[WRITE] 768
[ 86.271503][ T1132] fragmentation 0
[ 86.271508][ T1132] bp_start 7
[ 86.271514][ T1132]
[ 86.271520][ T1132] incorrectly set at freespace:0:28:0 (free 0, genbits 0 should be 0), fixing
[ 86.278739][ T5333] bcachefs (loop0): journal_replay...
[ 86.375368][ T1132] bcachefs (loop0): u64s 12 type alloc_v4 0:37:0 len 0 ver 0:
[ 86.375388][ T1132] gen 0 oldest_gen 0 data_type btree
[ 86.375395][ T1132] journal_seq_nonempty 6
[ 86.375400][ T1132] journal_seq_empty 0
[ 86.375405][ T1132] need_discard 1
[ 86.375411][ T1132] need_inc_gen 1
[ 86.375416][ T1132] dirty_sectors 256
[ 86.375421][ T1132] stripe_sectors 0
[ 86.375426][ T1132] cached_sectors 0
[ 86.375432][ T1132] stripe 0
[ 86.375436][ T1132] stripe_redundancy 0
[ 86.375441][ T1132] io_time[READ] 1
[ 86.375447][ T1132] io_time[WRITE] 1024
[ 86.375452][ T1132] fragmentation 0
[ 86.375457][ T1132] bp_start 7
[ 86.375462][ T1132]
[ 86.375467][ T1132] incorrectly set at freespace:0:37:0 (free 0, genbits 0 should be 0), fixing
[ 86.428847][ T1132] ==================================================================
[ 86.432844][ T1132] BUG: KASAN: slab-use-after-free in bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.436950][ T1132] Read of size 8 at addr ffff888039683d20 by task kworker/u4:10/1132
[ 86.440803][ T1132]
[ 86.441991][ T1132] CPU: 0 UID: 0 PID: 1132 Comm: kworker/u4:10 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full)
[ 86.442007][ T1132] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.442016][ T1132] Workqueue: btree_node_rewrite async_btree_node_rewrite_work
[ 86.442040][ T1132] Call Trace:
[ 86.442047][ T1132]
[ 86.442053][ T1132] dump_stack_lvl+0x189/0x250
[ 86.442070][ T1132] ? __virt_addr_valid+0x1c8/0x5c0
[ 86.442081][ T1132] ? rcu_is_watching+0x15/0xb0
[ 86.442098][ T1132] ? __kasan_check_byte+0x12/0x40
[ 86.442108][ T1132] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.442123][ T1132] ? rcu_is_watching+0x15/0xb0
[ 86.442138][ T1132] ? lock_release+0x4b/0x3e0
[ 86.442154][ T1132] ? __virt_addr_valid+0x1c8/0x5c0
[ 86.442163][ T1132] ? __virt_addr_valid+0x4a5/0x5c0
[ 86.442174][ T1132] print_report+0xd2/0x2b0
[ 86.442186][ T1132] ? bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.442198][ T1132] kasan_report+0x118/0x150
[ 86.442209][ T1132] ? bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.442224][ T1132] bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.442241][ T1132] ? bch2_bucket_alloc_trans+0xcb4/0x2410
[ 86.442256][ T1132] ? __pfx_bch2_bucket_alloc_trans+0x10/0x10
[ 86.442271][ T1132] ? bch2_bucket_alloc_trans+0xcb4/0x2410
[ 86.442286][ T1132] ? bch2_bucket_alloc_set_trans+0x1eb/0xe70
[ 86.442299][ T1132] bch2_bucket_alloc_set_trans+0x5a6/0xe70
[ 86.442314][ T1132] ? bch2_bucket_alloc_set_trans+0x1eb/0xe70
[ 86.442329][ T1132] ? __open_bucket_add_buckets+0x783/0x1e40
[ 86.442346][ T1132] __open_bucket_add_buckets+0x1437/0x1e40
[ 86.442376][ T1132] open_bucket_add_buckets+0x2ee/0x440
[ 86.442389][ T1132] bch2_alloc_sectors_start_trans+0xd26/0x1e80
[ 86.442402][ T1132] ? __mutex_unlock_slowpath+0x1cd/0x700
[ 86.442536][ T1132] bch2_btree_reserve_get+0x641/0x1810
[ 86.442552][ T1132] ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 86.442567][ T1132] ? __pfx_bch2_btree_reserve_get+0x10/0x10
[ 86.442581][ T1132] ? __pfx___bch2_disk_reservation_add+0x10/0x10
[ 86.442595][ T1132] ? bch2_btree_update_start+0xadb/0x1dc0
[ 86.442612][ T1132] bch2_btree_update_start+0x147e/0x1dc0
[ 86.442627][ T1132] ? bch2_btree_path_traverse_one+0x91e/0x21d0
[ 86.442645][ T1132] ? bch2_btree_node_rewrite+0x17e/0x1120
[ 86.442660][ T1132] ? __pfx_bch2_btree_update_start+0x10/0x10
[ 86.442675][ T1132] ? bch2_btree_path_traverse_one+0x91e/0x21d0
[ 86.442689][ T1132] ? async_btree_node_rewrite_work+0x1e1/0x840
[ 86.442705][ T1132] ? bch2_btree_iter_peek_node+0x566/0xbe0
[ 86.442715][ T1132] ? bch2_btree_iter_verify+0x1d/0x360
[ 86.442725][ T1132] bch2_btree_node_rewrite+0x17e/0x1120
[ 86.442744][ T1132] async_btree_node_rewrite_work+0x370/0x840
[ 86.442762][ T1132] ? __pfx_async_btree_node_rewrite_work+0x10/0x10
[ 86.442780][ T1132] ? async_btree_node_rewrite_work+0x1d2/0x840
[ 86.442796][ T1132] ? _raw_spin_unlock_irq+0x23/0x50
[ 86.442809][ T1132] ? process_scheduled_works+0x9ef/0x17b0
[ 86.442823][ T1132] ? process_scheduled_works+0x9ef/0x17b0
[ 86.442838][ T1132] process_scheduled_works+0xae1/0x17b0
[ 86.442860][ T1132] ? __pfx_process_scheduled_works+0x10/0x10
[ 86.442879][ T1132] worker_thread+0x8a0/0xda0
[ 86.442899][ T1132] kthread+0x70e/0x8a0
[ 86.442912][ T1132] ? __pfx_worker_thread+0x10/0x10
[ 86.442927][ T1132] ? __pfx_kthread+0x10/0x10
[ 86.442937][ T1132] ? _raw_spin_unlock_irq+0x23/0x50
[ 86.442951][ T1132] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.442967][ T1132] ? __pfx_kthread+0x10/0x10
[ 86.442977][ T1132] ret_from_fork+0x3fc/0x770
[ 86.442993][ T1132] ? __pfx_ret_from_fork+0x10/0x10
[ 86.443008][ T1132] ? __pfx_kthread+0x10/0x10
[ 86.443018][ T1132] ret_from_fork_asm+0x1a/0x30
[ 86.443033][ T1132]
[ 86.443037][ T1132]
[ 86.621138][ T1132] Allocated by task 1132:
[ 86.622862][ T1132] kasan_save_track+0x3e/0x80
[ 86.624872][ T1132] __kasan_kmalloc+0x93/0xb0
[ 86.626974][ T1132] __kmalloc_node_track_caller_noprof+0x271/0x4e0
[ 86.629798][ T1132] krealloc_noprof+0x124/0x340
[ 86.632139][ T1132] __bch2_trans_kmalloc+0x26c/0xc80
[ 86.634497][ T1132] bch2_alloc_sectors_start_trans+0x1d59/0x1e80
[ 86.637177][ T1132] bch2_btree_reserve_get+0x641/0x1810
[ 86.639565][ T1132] bch2_btree_update_start+0x147e/0x1dc0
[ 86.642085][ T1132] bch2_btree_node_rewrite+0x17e/0x1120
[ 86.645128][ T1132] async_btree_node_rewrite_work+0x370/0x840
[ 86.647663][ T1132] process_scheduled_works+0xae1/0x17b0
[ 86.650142][ T1132] worker_thread+0x8a0/0xda0
[ 86.652126][ T1132] kthread+0x70e/0x8a0
[ 86.653966][ T1132] ret_from_fork+0x3fc/0x770
[ 86.656000][ T1132] ret_from_fork_asm+0x1a/0x30
[ 86.658076][ T1132]
[ 86.659145][ T1132] Freed by task 1132:
[ 86.660865][ T1132] kasan_save_track+0x3e/0x80
[ 86.663767][ T1132] kasan_save_free_info+0x46/0x50
[ 86.665981][ T1132] __kasan_slab_free+0x62/0x70
[ 86.667930][ T1132] kfree+0x18e/0x440
[ 86.669574][ T1132] krealloc_noprof+0x1cd/0x340
[ 86.671500][ T1132] __bch2_trans_kmalloc+0x26c/0xc80
[ 86.673689][ T1132] __bch2_trans_subbuf_alloc+0x2da/0x460
[ 86.676233][ T1132] bch2_trans_log_str+0xd5/0x3c0
[ 86.678429][ T1132] __bch2_fsck_err+0xc11/0xfb0
[ 86.680392][ T1132] bch2_check_discard_freespace_key+0x71b/0xce0
[ 86.682936][ T1132] bch2_bucket_alloc_trans+0x1333/0x2410
[ 86.685213][ T1132] bch2_bucket_alloc_set_trans+0x5a6/0xe70
[ 86.687535][ T1132] __open_bucket_add_buckets+0x1437/0x1e40
[ 86.689878][ T1132] open_bucket_add_buckets+0x2ee/0x440
[ 86.692019][ T1132] bch2_alloc_sectors_start_trans+0xd26/0x1e80
[ 86.694542][ T1132] bch2_btree_reserve_get+0x641/0x1810
[ 86.696706][ T1132] bch2_btree_update_start+0x147e/0x1dc0
[ 86.699136][ T1132] bch2_btree_node_rewrite+0x17e/0x1120
[ 86.701653][ T1132] async_btree_node_rewrite_work+0x370/0x840
[ 86.704172][ T1132] process_scheduled_works+0xae1/0x17b0
[ 86.706580][ T1132] worker_thread+0x8a0/0xda0
[ 86.708591][ T1132] kthread+0x70e/0x8a0
[ 86.710387][ T1132] ret_from_fork+0x3fc/0x770
[ 86.712313][ T1132] ret_from_fork_asm+0x1a/0x30
[ 86.714374][ T1132]
[ 86.715461][ T1132] The buggy address belongs to the object at ffff888039683c00
[ 86.715461][ T1132] which belongs to the cache kmalloc-512 of size 512
[ 86.721178][ T1132] The buggy address is located 288 bytes inside of
[ 86.721178][ T1132] freed 512-byte region [ffff888039683c00, ffff888039683e00)
[ 86.726812][ T1132]
[ 86.727864][ T1132] The buggy address belongs to the physical page:
[ 86.730566][ T1132] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x39682
[ 86.734305][ T1132] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 86.737797][ T1132] ksm flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[ 86.741194][ T1132] page_type: f5(slab)
[ 86.742907][ T1132] raw: 04fff00000000040 ffff88801a441c80 ffffea0000ffb700 dead000000000003
[ 86.746805][ T1132] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 86.750417][ T1132] head: 04fff00000000040 ffff88801a441c80 ffffea0000ffb700 dead000000000003
[ 86.754343][ T1132] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 86.758165][ T1132] head: 04fff00000000001 ffffea0000e5a081 00000000ffffffff 00000000ffffffff
[ 86.761653][ T1132] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 86.766070][ T1132] page dumped because: kasan: bad access detected
[ 86.769089][ T1132] page_owner tracks the page as allocated
[ 86.771449][ T1132] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 19506931485, free_ts 0
[ 86.779537][ T1132] post_alloc_hook+0x240/0x2a0
[ 86.781513][ T1132] get_page_from_freelist+0x21e4/0x22c0
[ 86.783754][ T1132] __alloc_frozen_pages_noprof+0x181/0x370
[ 86.786327][ T1132] alloc_pages_mpol+0x232/0x4a0
[ 86.788551][ T1132] allocate_slab+0x8a/0x3b0
[ 86.790552][ T1132] ___slab_alloc+0xbfc/0x1480
[ 86.792828][ T1132] __kmalloc_cache_noprof+0x296/0x3d0
[ 86.795386][ T1132] device_add+0xbe/0xb50
[ 86.797143][ T1132] cdev_device_add+0x1d6/0x390
[ 86.799495][ T1132] cec_register_adapter+0x2eb/0x690
[ 86.801718][ T1132] vivid_create_devnodes+0xa72/0x2bf0
[ 86.803883][ T1132] vivid_probe+0x5035/0x7180
[ 86.805885][ T1132] platform_probe+0x148/0x1d0
[ 86.807788][ T1132] really_probe+0x26a/0x9a0
[ 86.809643][ T1132] __driver_probe_device+0x18c/0x2f0
[ 86.811859][ T1132] driver_probe_device+0x4f/0x430
[ 86.814041][ T1132] page_owner free stack trace missing
[ 86.816307][ T1132]
[ 86.817386][ T1132] Memory state around the buggy address:
[ 86.819926][ T1132] ffff888039683c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 86.823280][ T1132] ffff888039683c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 86.826607][ T1132] >ffff888039683d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 86.829851][ T1132] ^
[ 86.831848][ T1132] ffff888039683d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 86.835187][ T1132] ffff888039683e00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 86.838383][ T1132] ==================================================================
[ 86.851224][ T55] cfg80211: failed to load regulatory.db
[ 86.865500][ T1132] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 86.868742][ T1132] CPU: 0 UID: 0 PID: 1132 Comm: kworker/u4:10 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full)
[ 86.873947][ T1132] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.878554][ T1132] Workqueue: btree_node_rewrite async_btree_node_rewrite_work
[ 86.881686][ T1132] Call Trace:
[ 86.883057][ T1132]
[ 86.884307][ T1132] dump_stack_lvl+0x99/0x250
[ 86.886334][ T1132] ? __asan_memcpy+0x40/0x70
[ 86.888283][ T1132] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.890515][ T1132] ? __pfx__printk+0x10/0x10
[ 86.892596][ T1132] panic+0x2db/0x790
[ 86.894239][ T1132] ? __pfx_panic+0x10/0x10
[ 86.896136][ T1132] ? _raw_spin_unlock_irqrestore+0xfd/0x110
[ 86.898613][ T1132] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 86.901287][ T1132] ? print_memory_metadata+0x314/0x400
[ 86.903705][ T1132] ? bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.906879][ T1132] check_panic_on_warn+0x89/0xb0
[ 86.909506][ T1132] ? bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.911978][ T1132] end_report+0x78/0x160
[ 86.913837][ T1132] kasan_report+0x129/0x150
[ 86.917353][ T1132] ? bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.919900][ T1132] bch2_bucket_alloc_trans+0x1aa0/0x2410
[ 86.922255][ T1132] ? bch2_bucket_alloc_trans+0xcb4/0x2410
[ 86.924672][ T1132] ? __pfx_bch2_bucket_alloc_trans+0x10/0x10
[ 86.927055][ T1132] ? bch2_bucket_alloc_trans+0xcb4/0x2410
[ 86.929439][ T1132] ? bch2_bucket_alloc_set_trans+0x1eb/0xe70
[ 86.931949][ T1132] bch2_bucket_alloc_set_trans+0x5a6/0xe70
[ 86.934700][ T1132] ? bch2_bucket_alloc_set_trans+0x1eb/0xe70
[ 86.937524][ T1132] ? __open_bucket_add_buckets+0x783/0x1e40
[ 86.940129][ T1132] __open_bucket_add_buckets+0x1437/0x1e40
[ 86.942574][ T1132] open_bucket_add_buckets+0x2ee/0x440
[ 86.945160][ T1132] bch2_alloc_sectors_start_trans+0xd26/0x1e80
[ 86.948118][ T1132] ? __mutex_unlock_slowpath+0x1cd/0x700
[ 86.950827][ T1132] bch2_btree_reserve_get+0x641/0x1810
[ 86.953171][ T1132] ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 86.955800][ T1132] ? __pfx_bch2_btree_reserve_get+0x10/0x10
[ 86.958368][ T1132] ? __pfx___bch2_disk_reservation_add+0x10/0x10
[ 86.960945][ T1132] ? bch2_btree_update_start+0xadb/0x1dc0
[ 86.963393][ T1132] bch2_btree_update_start+0x147e/0x1dc0
[ 86.965725][ T1132] ? bch2_btree_path_traverse_one+0x91e/0x21d0
[ 86.968288][ T1132] ? bch2_btree_node_rewrite+0x17e/0x1120
[ 86.970608][ T1132] ? __pfx_bch2_btree_update_start+0x10/0x10
[ 86.973394][ T1132] ? bch2_btree_path_traverse_one+0x91e/0x21d0
[ 86.976031][ T1132] ? async_btree_node_rewrite_work+0x1e1/0x840
[ 86.978506][ T1132] ? bch2_btree_iter_peek_node+0x566/0xbe0
[ 86.980773][ T1132] ? bch2_btree_iter_verify+0x1d/0x360
[ 86.982766][ T1132] bch2_btree_node_rewrite+0x17e/0x1120
[ 86.984581][ T1132] async_btree_node_rewrite_work+0x370/0x840
[ 86.986609][ T1132] ? __pfx_async_btree_node_rewrite_work+0x10/0x10
[ 86.989687][ T1132] ? async_btree_node_rewrite_work+0x1d2/0x840
[ 86.992570][ T1132] ? _raw_spin_unlock_irq+0x23/0x50
[ 86.995217][ T1132] ? process_scheduled_works+0x9ef/0x17b0
[ 86.998005][ T1132] ? process_scheduled_works+0x9ef/0x17b0
[ 87.000349][ T1132] process_scheduled_works+0xae1/0x17b0
[ 87.002813][ T1132] ? __pfx_process_scheduled_works+0x10/0x10
[ 87.005367][ T1132] worker_thread+0x8a0/0xda0
[ 87.007410][ T1132] kthread+0x70e/0x8a0
[ 87.009216][ T1132] ? __pfx_worker_thread+0x10/0x10
[ 87.011374][ T1132] ? __pfx_kthread+0x10/0x10
[ 87.013417][ T1132] ? _raw_spin_unlock_irq+0x23/0x50
[ 87.015748][ T1132] ? lockdep_hardirqs_on+0x9c/0x150
[ 87.017872][ T1132] ? __pfx_kthread+0x10/0x10
[ 87.019795][ T1132] ret_from_fork+0x3fc/0x770
[ 87.021758][ T1132] ? __pfx_ret_from_fork+0x10/0x10
[ 87.023904][ T1132] ? __pfx_kthread+0x10/0x10
[ 87.026042][ T1132] ret_from_fork_asm+0x1a/0x30
[ 87.028154][ T1132]
[ 87.029819][ T1132] Kernel Offset: disabled
[ 87.031612][ T1132] Rebooting in 86400 seconds..