./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor958285637 <...> Warning: Permanently added '10.128.1.15' (ED25519) to the list of known hosts. execve("./syz-executor958285637", ["./syz-executor958285637"], 0x7ffc9e941300 /* 10 vars */) = 0 brk(NULL) = 0x555594c75000 brk(0x555594c75d00) = 0x555594c75d00 arch_prctl(ARCH_SET_FS, 0x555594c75380) = 0 set_tid_address(0x555594c75650) = 5184 set_robust_list(0x555594c75660, 24) = 0 rseq(0x555594c75ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor958285637", 4096) = 27 getrandom("\x5c\x51\x16\x02\x47\x20\x1e\xa2", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555594c75d00 brk(0x555594c96d00) = 0x555594c96d00 brk(0x555594c97000) = 0x555594c97000 mprotect(0x7f2b49fec000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555594c75650) = 5185 ./strace-static-x86_64: Process 5185 attached [pid 5185] set_robust_list(0x555594c75660, 24) = 0 [pid 5185] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5185] setpgid(0, 0) = 0 [pid 5185] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5185] write(3, "1000", 4) = 4 [pid 5185] close(3) = 0 [pid 5185] write(1, "executing program\n", 18executing program ) = 18 [pid 5185] prlimit64(0, RLIMIT_RTPRIO, {rlim_cur=8, rlim_max=139}, NULL) = 0 [pid 5185] sched_setscheduler(0, SCHED_FIFO, [7]) = 0 [pid 5185] memfd_create("syzkaller", 0) = 3 [pid 5185] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2b41a00000 [ 164.362725][ C1] sched: RT throttling activated [pid 5185] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5185] munmap(0x7f2b41a00000, 138412032) = 0 [pid 5185] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5185] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5185] close(3) = 0 [pid 5185] close(4) = 0 [pid 5185] mkdir("./file0", 0777) = 0 [ 164.619412][ T5185] loop0: detected capacity change from 0 to 32768 [ 164.671298][ T5185] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor958 (5185) [ 164.697244][ T5185] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 164.708208][ T5185] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm [ 164.718052][ T5185] BTRFS info (device loop0): using free-space-tree [pid 5185] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "") = 0 [pid 5185] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5185] chdir("./file0") = 0 [ 164.969166][ T5185] ===================================================== [ 164.977398][ T5185] BUG: KMSAN: uninit-value in __crc32c_le_base+0x43c/0xd80 [ 164.985456][ T5185] __crc32c_le_base+0x43c/0xd80 [ 164.991326][ T5185] chksum_update+0x5b/0xd0 [ 164.996283][ T5185] crypto_shash_update+0x79/0xa0 [ 165.001953][ T5185] csum_tree_block+0x35f/0x5d0 [ 165.008200][ T5185] btree_csum_one_bio+0x4d5/0xeb0 [ 165.013518][ T5185] btrfs_submit_bio+0x2012/0x2900 [ 165.018724][ T5185] write_one_eb+0x13fa/0x1570 [ 165.023758][ T5185] btree_write_cache_pages+0x1d2a/0x29a0 [ 165.030670][ T5185] btree_writepages+0x84/0x270 [ 165.035698][ T5185] do_writepages+0x427/0xc30 [ 165.041250][ T5185] filemap_fdatawrite_wbc+0x1d8/0x270 [ 165.047464][ T5185] filemap_fdatawrite_range+0xe1/0x110 [ 165.053292][ T5185] btrfs_write_marked_extents+0x2d8/0x610 [ 165.059955][ T5185] btrfs_sync_log+0x9fd/0x3830 [pid 5185] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5185] ioctl(4, LOOP_CLR_FD) = 0 [pid 5185] close(4) = 0 [pid 5185] openat(AT_FDCWD, "blkio.bfq.idle_time", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [ 165.065406][ T5185] btrfs_sync_file+0x18c8/0x20c0 [ 165.071323][ T5185] vfs_fsync_range+0x20d/0x270 [ 165.077040][ T5185] btrfs_do_write_iter+0xa17/0xb60 [ 165.083269][ T5185] btrfs_file_write_iter+0x38/0x50 [ 165.088925][ T5185] vfs_write+0xb2f/0x1550 [ 165.093689][ T5185] ksys_write+0x20f/0x4c0 [ 165.099320][ T5185] __x64_sys_write+0x93/0xe0 [ 165.104350][ T5185] x64_sys_call+0x306a/0x3ba0 [ 165.110002][ T5185] do_syscall_64+0xcd/0x1e0 [ 165.115144][ T5185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.122119][ T5185] [ 165.124925][ T5185] Uninit was created at: [ 165.129397][ T5185] __alloc_pages_noprof+0x9d6/0xe70 [ 165.134867][ T5185] alloc_pages_bulk_noprof+0x19e/0x21e0 [ 165.140602][ T5185] alloc_eb_folio_array+0x19c/0x750 [ 165.146161][ T5185] alloc_extent_buffer+0x75a/0x3ba0 [ 165.151539][ T5185] btrfs_find_create_tree_block+0x46/0x60 [ 165.157588][ T5185] btrfs_alloc_tree_block+0x415/0x1990 [ 165.163387][ T5185] btrfs_add_log_tree+0x1b7/0x7a0 [ 165.168608][ T5185] btrfs_log_inode_parent+0xa87/0x1c30 [ 165.174397][ T5185] btrfs_log_dentry_safe+0x9a/0x100 [ 165.179794][ T5185] btrfs_sync_file+0x1539/0x20c0 [ 165.185018][ T5185] vfs_fsync_range+0x20d/0x270 [ 165.189985][ T5185] btrfs_do_write_iter+0xa17/0xb60 [ 165.195457][ T5185] btrfs_file_write_iter+0x38/0x50 [ 165.200763][ T5185] vfs_write+0xb2f/0x1550 [ 165.205447][ T5185] ksys_write+0x20f/0x4c0 [ 165.209989][ T5185] __x64_sys_write+0x93/0xe0 [ 165.214892][ T5185] x64_sys_call+0x306a/0x3ba0 [ 165.219781][ T5185] do_syscall_64+0xcd/0x1e0 [ 165.224574][ T5185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.230675][ T5185] [ 165.233210][ T5185] CPU: 1 UID: 0 PID: 5185 Comm: syz-executor958 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 165.244623][ T5185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 165.254985][ T5185] ===================================================== [ 165.262048][ T5185] Disabling lock debugging due to kernel taint [ 165.268536][ T5185] Kernel panic - not syncing: kmsan.panic set ... [ 165.275091][ T5185] CPU: 1 UID: 0 PID: 5185 Comm: syz-executor958 Tainted: G B 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 165.287900][ T5185] Tainted: [B]=BAD_PAGE [ 165.292156][ T5185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 165.302370][ T5185] Call Trace: [ 165.305789][ T5185] [ 165.308830][ T5185] dump_stack_lvl+0x216/0x2d0 [ 165.313719][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.319751][ T5185] dump_stack+0x1e/0x30 [ 165.324103][ T5185] panic+0x4e2/0xcd0 [ 165.328186][ T5185] ? kmsan_get_metadata+0xa1/0x1c0 [ 165.333520][ T5185] kmsan_report+0x2c7/0x2d0 [ 165.338248][ T5185] ? __msan_warning+0x95/0x120 [ 165.343211][ T5185] ? __crc32c_le_base+0x43c/0xd80 [ 165.348413][ T5185] ? chksum_update+0x5b/0xd0 [ 165.353183][ T5185] ? crypto_shash_update+0x79/0xa0 [ 165.358460][ T5185] ? csum_tree_block+0x35f/0x5d0 [ 165.363605][ T5185] ? btree_csum_one_bio+0x4d5/0xeb0 [ 165.369001][ T5185] ? btrfs_submit_bio+0x2012/0x2900 [ 165.374398][ T5185] ? write_one_eb+0x13fa/0x1570 [ 165.379449][ T5185] ? btree_write_cache_pages+0x1d2a/0x29a0 [ 165.385441][ T5185] ? btree_writepages+0x84/0x270 [ 165.390533][ T5185] ? do_writepages+0x427/0xc30 [ 165.395508][ T5185] ? filemap_fdatawrite_wbc+0x1d8/0x270 [ 165.401234][ T5185] ? filemap_fdatawrite_range+0xe1/0x110 [ 165.407222][ T5185] ? btrfs_write_marked_extents+0x2d8/0x610 [ 165.413306][ T5185] ? btrfs_sync_log+0x9fd/0x3830 [ 165.418439][ T5185] ? btrfs_sync_file+0x18c8/0x20c0 [ 165.423742][ T5185] ? vfs_fsync_range+0x20d/0x270 [ 165.428877][ T5185] ? btrfs_do_write_iter+0xa17/0xb60 [ 165.434369][ T5185] ? btrfs_file_write_iter+0x38/0x50 [ 165.439856][ T5185] ? vfs_write+0xb2f/0x1550 [ 165.444578][ T5185] ? ksys_write+0x20f/0x4c0 [ 165.449288][ T5185] ? __x64_sys_write+0x93/0xe0 [ 165.454262][ T5185] ? x64_sys_call+0x306a/0x3ba0 [ 165.459312][ T5185] ? do_syscall_64+0xcd/0x1e0 [ 165.464181][ T5185] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.470457][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.475861][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.481271][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.486678][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.492704][ T5185] ? __module_address+0xef/0x7e0 [ 165.497902][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.503939][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.509353][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.515375][ T5185] __msan_warning+0x95/0x120 [ 165.520151][ T5185] __crc32c_le_base+0x43c/0xd80 [ 165.525184][ T5185] ? rd_free_prot+0x86/0x3e0 [ 165.529986][ T5185] chksum_update+0x5b/0xd0 [ 165.534584][ T5185] ? __pfx_chksum_update+0x10/0x10 [ 165.539874][ T5185] crypto_shash_update+0x79/0xa0 [ 165.545081][ T5185] csum_tree_block+0x35f/0x5d0 [ 165.550094][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.555495][ T5185] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 165.562041][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.567443][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.573466][ T5185] ? memcmp+0x61/0x1c0 [ 165.577729][ T5185] ? memcmp_extent_buffer+0x139/0x690 [ 165.583305][ T5185] ? btrfs_folio_test_uptodate+0x2ad/0x5d0 [ 165.589356][ T5185] btree_csum_one_bio+0x4d5/0xeb0 [ 165.594606][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.600636][ T5185] btrfs_submit_bio+0x2012/0x2900 [ 165.605873][ T5185] ? kmsan_get_shadow_origin_ptr+0x38/0xb0 [ 165.611904][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.617383][ T5185] write_one_eb+0x13fa/0x1570 [ 165.622282][ T5185] btree_write_cache_pages+0x1d2a/0x29a0 [ 165.628102][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.633505][ T5185] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 165.640037][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.645525][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.651548][ T5185] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 165.657546][ T5185] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 165.664089][ T5185] ? free_extent_state+0xf9/0x2f0 [ 165.669293][ T5185] ? vfs_fsync_range+0x20d/0x270 [ 165.674432][ T5185] ? ksys_write+0x20f/0x4c0 [ 165.679157][ T5185] btree_writepages+0x84/0x270 [ 165.684091][ T5185] ? __pfx_btree_writepages+0x10/0x10 [ 165.689633][ T5185] do_writepages+0x427/0xc30 [ 165.694440][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.699848][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.705257][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.711303][ T5185] filemap_fdatawrite_wbc+0x1d8/0x270 [ 165.716870][ T5185] filemap_fdatawrite_range+0xe1/0x110 [ 165.722575][ T5185] btrfs_write_marked_extents+0x2d8/0x610 [ 165.728503][ T5185] btrfs_sync_log+0x9fd/0x3830 [ 165.733469][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.738890][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.744288][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.750321][ T5185] ? filter_irq_stacks+0x164/0x1a0 [ 165.755615][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.761121][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.766520][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.772537][ T5185] ? kmsan_get_metadata+0x13e/0x1c0 [ 165.777960][ T5185] ? __pfx_autoremove_wake_function+0x10/0x10 [ 165.784300][ T5185] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 165.790373][ T5185] btrfs_sync_file+0x18c8/0x20c0 [ 165.795540][ T5185] ? btrfs_sync_file+0x951/0x20c0 [ 165.800781][ T5185] ? __pfx_btrfs_sync_file+0x10/0x10 [ 165.806269][ T5185] vfs_fsync_range+0x20d/0x270 [ 165.811249][ T5185] btrfs_do_write_iter+0xa17/0xb60 [ 165.816578][ T5185] btrfs_file_write_iter+0x38/0x50 [ 165.821896][ T5185] vfs_write+0xb2f/0x1550 [ 165.826457][ T5185] ? __pfx_btrfs_file_write_iter+0x10/0x10 [ 165.832494][ T5185] ksys_write+0x20f/0x4c0 [ 165.837065][ T5185] __x64_sys_write+0x93/0xe0 [ 165.841963][ T5185] x64_sys_call+0x306a/0x3ba0 [ 165.846855][ T5185] do_syscall_64+0xcd/0x1e0 [ 165.851560][ T5185] ? clear_bhb_loop+0x25/0x80 [ 165.856445][ T5185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.862570][ T5185] RIP: 0033:0x7f2b49f74b19 [ 165.867131][ T5185] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 165.886959][ T5185] RSP: 002b:00007ffd4a192da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 165.895569][ T5185] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2b49f74b19 [ 165.903710][ T5185] RDX: 000000000000da00 RSI: 00000000200009c0 RDI: 0000000000000004 [ 165.911839][ T5185] RBP: 00007f2b49fec5f0 R08: 0000555594c764c0 R09: 0000555594c764c0 [ 165.919973][ T5185] R10: 000000000000511e R11: 0000000000000246 R12: 00007ffd4a192dd0 [ 165.928111][ T5185] R13: 00007ffd4a192ff8 R14: 431bde82d7b634db R15: 00007f2b49fbd03b [ 165.936276][ T5185] [ 165.939645][ T5185] Kernel Offset: disabled [ 165.944039][ T5185] Rebooting in 86400 seconds..