./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1737734719

<...>
Warning: Permanently added '10.128.0.72' (ED25519) to the list of known hosts.
execve("./syz-executor1737734719", ["./syz-executor1737734719"], 0x7ffccbb3f760 /* 10 vars */) = 0
brk(NULL)                               = 0x5555569d8000
brk(0x5555569d8d00)                     = 0x5555569d8d00
arch_prctl(ARCH_SET_FS, 0x5555569d8380) = 0
set_tid_address(0x5555569d8650)         = 5054
set_robust_list(0x5555569d8660, 24)     = 0
rseq(0x5555569d8ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1737734719", 4096) = 28
getrandom("\x14\x3a\x36\x7c\xf1\xe9\xec\x6a", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x5555569d8d00
brk(0x5555569f9d00)                     = 0x5555569f9d00
brk(0x5555569fa000)                     = 0x5555569fa000
mprotect(0x7f36570e9000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
memfd_create("syzkaller", 0)            = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f364ec34000
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
munmap(0x7f364ec34000, 138412032)       = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 4
ioctl(4, LOOP_SET_FD, 3)                = 0
close(3)                                = 0
mkdir("./file0", 0777)                  = 0
[   55.887756][ T5054] loop0: detected capacity change from 0 to 32768
[   55.914531][ T5054] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor173 (5054)
[   55.939561][ T5054] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[   55.949541][ T5054] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[   55.961962][ T5054] BTRFS info (device loop0): doing ref verification
[   55.969322][ T5054] BTRFS info (device loop0): using free space tree
mount("/dev/loop0", "./file0", "btrfs", 0, "noinode_cache,noautodefrag,ref_verify,") = 0
openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
chdir("./file0")                        = 0
ioctl(4, LOOP_CLR_FD)                   = 0
[   55.998577][ T5054] BTRFS info (device loop0): enabling ssd optimizations
[   56.011187][ T5054] BTRFS info (device loop0): auto enabling async discard
close(4)                                = 0
openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
ioctl(4, BTRFS_IOC_QUOTA_CTL, {cmd=BTRFS_QUOTA_CTL_ENABLE}) = 0
openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_NOATIME, 000) = 5
openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
write(6, "5", 1)                        = 1
[   56.139993][ T5054] FAULT_INJECTION: forcing a failure.
[   56.139993][ T5054] name failslab, interval 1, probability 0, space 0, times 1
[   56.153894][ T5054] CPU: 0 PID: 5054 Comm: syz-executor173 Not tainted 6.6.0-syzkaller-12715-g6bdfe2d88b9f #0
[   56.165323][ T5054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[   56.175759][ T5054] Call Trace:
[   56.179194][ T5054]  <TASK>
[   56.182612][ T5054]  dump_stack_lvl+0x1e7/0x2d0
[   56.187548][ T5054]  ? nf_tcp_handle_invalid+0x650/0x650
[   56.193307][ T5054]  ? panic+0x850/0x850
[   56.197518][ T5054]  should_fail_ex+0x3aa/0x4e0
[   56.202506][ T5054]  ? ulist_add_merge+0x14c/0x480
[   56.207575][ T5054]  should_failslab+0x9/0x20
[   56.212211][ T5054]  __kmem_cache_alloc_node+0x6d/0x300
[   56.213385][  T137] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[   56.217792][ T5054]  ? ulist_add_merge+0x14c/0x480
[   56.232474][ T5054]  kmalloc_trace+0x2a/0xe0
[   56.237490][ T5054]  ulist_add_merge+0x14c/0x480
[   56.242321][ T5054]  insert_state_fast+0x15a/0x250
[   56.247542][ T5054]  __set_extent_bit+0x1433/0x1af0
[   56.252967][ T5054]  set_record_extent_bits+0x51/0x90
[   56.258572][ T5054]  qgroup_reserve_data+0x27c/0x8a0
[   56.263806][ T5054]  ? fault_in_safe_writeable+0x260/0x260
[   56.269571][ T5054]  btrfs_qgroup_reserve_data+0x2e/0xb0
[   56.278663][ T5054]  btrfs_check_data_free_space+0x149/0x240
[   56.284971][ T5054]  btrfs_buffered_write+0x5c6/0x1380
[   56.290380][ T5054]  ? btrfs_do_write_iter+0x1190/0x1190
[   56.296911][ T5054]  ? finish_task_switch+0x1e5/0x840
[   56.302524][ T5054]  ? lockdep_hardirqs_on+0x98/0x140
[   56.308110][ T5054]  btrfs_do_write_iter+0x2bb/0x1190
[   56.314390][ T5054]  ? read_lock_is_recursive+0x20/0x20
[   56.320335][ T5054]  ? rcu_read_lock_bh_held+0x120/0x120
[   56.326053][ T5054]  ? btrfs_check_nocow_unlock+0x40/0x40
[   56.331802][ T5054]  vfs_write+0x792/0xb20
[   56.336192][ T5054]  ? file_end_write+0x250/0x250
[   56.341164][ T5054]  ? lockdep_hardirqs_on+0x98/0x140
[   56.346405][ T5054]  ? __fdget_pos+0x2c7/0x340
[   56.351654][ T5054]  ksys_write+0x1a0/0x2c0
[   56.356360][ T5054]  ? __ia32_sys_read+0x90/0x90
[   56.362366][ T5054]  ? syscall_enter_from_user_mode+0x32/0x230
[   56.368553][ T5054]  ? syscall_enter_from_user_mode+0x8c/0x230
[   56.374651][ T5054]  do_syscall_64+0x44/0x110
[   56.380230][ T5054]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   56.386606][ T5054] RIP: 0033:0x7f3657071b39
[   56.391125][ T5054] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   56.411347][ T5054] RSP: 002b:00007fff97e8a638 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   56.420133][ T5054] RAX: ffffffffffffffda RBX: 00007fff97e8a640 RCX: 00007f3657071b39
[   56.429171][ T5054] RDX: 0000000000000001 RSI: 0000000020004200 RDI: 0000000000000005
[   56.437740][ T5054] RBP: 0000000000000001 R08: 00007fff97e8a3d7 R09: 00007f36570e0035
[   56.447204][ T5054] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   56.455270][ T5054] R13: 00007fff97e8a818 R14: 0000000000000001 R15: 0000000000000001
[   56.463267][ T5054]  </TASK>
[   56.467560][ T5054] ------------[ cut here ]------------
[   56.473606][ T5054] kernel BUG at fs/btrfs/extent-io-tree.c:397!
[   56.480051][ T5054] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   56.486125][ T5054] CPU: 0 PID: 5054 Comm: syz-executor173 Not tainted 6.6.0-syzkaller-12715-g6bdfe2d88b9f #0
[   56.497765][ T5054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[   56.509571][ T5054] RIP: 0010:insert_state_fast+0x244/0x250
[   56.517314][ T5054] Code: 2e fe e9 77 ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 71 fe ff ff 4c 89 e7 e8 46 8e 2e fe e9 64 fe ff ff e8 9c 6c d2 fd <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 55 41 57 41 56 41 55 41 54 53
[   56.538328][ T5054] RSP: 0018:ffffc90003a6f6a0 EFLAGS: 00010293
[   56.544403][ T5054] RAX: ffffffff83bc7fc4 RBX: dffffc0000000000 RCX: ffff88807b673b80
[   56.552891][ T5054] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   56.561507][ T5054] RBP: 00000000fffffff4 R08: ffffffff83bc7ee5 R09: 1ffffffff1b45582
[   56.570108][ T5054] R10: dffffc0000000000 R11: fffffbfff1b45583 R12: 0000000000000000
[   56.580705][ T5054] R13: ffff888017e4b888 R14: ffff888076afd6c0 R15: 0000000000000800
[   56.589412][ T5054] FS:  00005555569d8380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   56.599404][ T5054] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.606512][ T5054] CR2: 0000000020004200 CR3: 000000007b3bd000 CR4: 00000000003506f0
[   56.615507][ T5054] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   56.624569][ T5054] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   56.635015][ T5054] Call Trace:
[   56.639051][ T5054]  <TASK>
[   56.642930][ T5054]  ? __die_body+0x8b/0xe0
[   56.647742][ T5054]  ? die+0xa1/0xd0
[   56.651944][ T5054]  ? do_trap+0x153/0x380
[   56.657578][ T5054]  ? insert_state_fast+0x244/0x250
[   56.663955][ T5054]  ? do_error_trap+0x1dc/0x2c0
[   56.671447][ T5054]  ? insert_state_fast+0x244/0x250
[   56.677962][ T5054]  ? do_int3+0x50/0x50
[   56.683399][ T5054]  ? handle_invalid_op+0x34/0x40
[   56.691681][ T5054]  ? insert_state_fast+0x244/0x250
[   56.697909][ T5054]  ? exc_invalid_op+0x33/0x50
[   56.702976][ T5054]  ? asm_exc_invalid_op+0x1a/0x20
[   56.709714][ T5054]  ? insert_state_fast+0x165/0x250
[   56.715469][ T5054]  ? insert_state_fast+0x244/0x250
[   56.721751][ T5054]  ? insert_state_fast+0x244/0x250
[   56.727503][ T5054]  __set_extent_bit+0x1433/0x1af0
[   56.733267][ T5054]  set_record_extent_bits+0x51/0x90
[   56.739370][ T5054]  qgroup_reserve_data+0x27c/0x8a0
[   56.744977][ T5054]  ? fault_in_safe_writeable+0x260/0x260
[   56.751965][ T5054]  btrfs_qgroup_reserve_data+0x2e/0xb0
[   56.757695][ T5054]  btrfs_check_data_free_space+0x149/0x240
[   56.765005][ T5054]  btrfs_buffered_write+0x5c6/0x1380
[   56.770596][ T5054]  ? btrfs_do_write_iter+0x1190/0x1190
[   56.776345][ T5054]  ? finish_task_switch+0x1e5/0x840
[   56.781829][ T5054]  ? lockdep_hardirqs_on+0x98/0x140
[   56.787322][ T5054]  btrfs_do_write_iter+0x2bb/0x1190
[   56.793581][ T5054]  ? read_lock_is_recursive+0x20/0x20
[   56.799427][ T5054]  ? rcu_read_lock_bh_held+0x120/0x120
[   56.806075][ T5054]  ? btrfs_check_nocow_unlock+0x40/0x40
[   56.813453][ T5054]  vfs_write+0x792/0xb20
[   56.818846][ T5054]  ? file_end_write+0x250/0x250
[   56.824914][ T5054]  ? lockdep_hardirqs_on+0x98/0x140
[   56.831364][ T5054]  ? __fdget_pos+0x2c7/0x340
[   56.836619][ T5054]  ksys_write+0x1a0/0x2c0
[   56.842470][ T5054]  ? __ia32_sys_read+0x90/0x90
[   56.847560][ T5054]  ? syscall_enter_from_user_mode+0x32/0x230
[   56.855663][ T5054]  ? syscall_enter_from_user_mode+0x8c/0x230
[   56.862381][ T5054]  do_syscall_64+0x44/0x110
[   56.868246][ T5054]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   56.875559][ T5054] RIP: 0033:0x7f3657071b39
[   56.881025][ T5054] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   56.903702][ T5054] RSP: 002b:00007fff97e8a638 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   56.912674][ T5054] RAX: ffffffffffffffda RBX: 00007fff97e8a640 RCX: 00007f3657071b39
[   56.921974][ T5054] RDX: 0000000000000001 RSI: 0000000020004200 RDI: 0000000000000005
[   56.930755][ T5054] RBP: 0000000000000001 R08: 00007fff97e8a3d7 R09: 00007f36570e0035
[   56.939541][ T5054] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   56.949187][ T5054] R13: 00007fff97e8a818 R14: 0000000000000001 R15: 0000000000000001
[   56.957701][ T5054]  </TASK>
[   56.961776][ T5054] Modules linked in:
[   56.966143][ T5054] ---[ end trace 0000000000000000 ]---
[   56.973156][ T5054] RIP: 0010:insert_state_fast+0x244/0x250
[   56.979177][ T5054] Code: 2e fe e9 77 ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 71 fe ff ff 4c 89 e7 e8 46 8e 2e fe e9 64 fe ff ff e8 9c 6c d2 fd <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 55 41 57 41 56 41 55 41 54 53
[   57.000067][ T5054] RSP: 0018:ffffc90003a6f6a0 EFLAGS: 00010293
[   57.006632][ T5054] RAX: ffffffff83bc7fc4 RBX: dffffc0000000000 RCX: ffff88807b673b80
[   57.015909][ T5054] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   57.024591][ T5054] RBP: 00000000fffffff4 R08: ffffffff83bc7ee5 R09: 1ffffffff1b45582
[   57.033630][ T5054] R10: dffffc0000000000 R11: fffffbfff1b45583 R12: 0000000000000000
[   57.041723][ T5054] R13: ffff888017e4b888 R14: ffff888076afd6c0 R15: 0000000000000800
[   57.049978][ T5054] FS:  00005555569d8380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   57.060055][ T5054] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.066789][ T5054] CR2: 0000000020004200 CR3: 000000007b3bd000 CR4: 00000000003506f0
[   57.074834][ T5054] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   57.083418][ T5054] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   57.092149][ T5054] Kernel panic - not syncing: Fatal exception
[   57.099381][ T5054] Kernel Offset: disabled
[   57.103971][ T5054] Rebooting in 86400 seconds..