./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2735971921 <...> [ 101.489821][ T10] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.19' (ED25519) to the list of known hosts. execve("./syz-executor2735971921", ["./syz-executor2735971921"], 0x7ffeb95cd220 /* 10 vars */) = 0 brk(NULL) = 0x55555a17f000 brk(0x55555a17fd40) = 0x55555a17fd40 arch_prctl(ARCH_SET_FS, 0x55555a17f3c0) = 0 set_tid_address(0x55555a17f690) = 5837 set_robust_list(0x55555a17f6a0, 24) = 0 rseq(0x55555a17fce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2735971921", 4096) = 28 getrandom("\x7f\xe7\x0e\xdf\xa5\x23\x0f\x90", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555a17fd40 brk(0x55555a1a0d40) = 0x55555a1a0d40 brk(0x55555a1a1000) = 0x55555a1a1000 mprotect(0x7fea5870c000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5840 attached , child_tidptr=0x55555a17f690) = 5840 [pid 5840] set_robust_list(0x55555a17f6a0, 24) = 0 [pid 5840] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5840] setpgid(0, 0) = 0 [pid 5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5840] write(3, "1000", 4) = 4 [pid 5840] close(3executing program ) = 0 [pid 5840] write(1, "executing program\n", 18) = 18 [pid 5840] futex(0x7fea587126ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5840] rt_sigaction(SIGRT_1, {sa_handler=0x7fea586ab530, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fea5869cbe0}, NULL, 8) = 0 [pid 5840] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5840] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fea5861a000 [pid 5840] mprotect(0x7fea5861b000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5840] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5840] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fea5863a990, parent_tid=0x7fea5863a990, exit_signal=0, stack=0x7fea5861a000, stack_size=0x20300, tls=0x7fea5863a6c0}./strace-static-x86_64: Process 5841 attached [pid 5841] rseq(0x7fea5863afe0, 0x20, 0, 0x53053053) = 0 [pid 5841] set_robust_list(0x7fea5863a9a0, 24 [pid 5840] <... clone3 resumed> => {parent_tid=[5841]}, 88) = 5841 [pid 5841] <... set_robust_list resumed>) = 0 [pid 5840] rt_sigprocmask(SIG_SETMASK, [], [pid 5841] rt_sigprocmask(SIG_SETMASK, [], [pid 5840] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5841] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5841] memfd_create("syzkaller", 0 [pid 5840] futex(0x7fea587126a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] <... memfd_create resumed>) = 3 [pid 5840] <... futex resumed>) = 0 [pid 5841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fea50200000 [pid 5840] futex(0x7fea587126ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5841] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5841] munmap(0x7fea50200000, 138412032) = 0 [pid 5841] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5841] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5841] close(3) = 0 [pid 5841] close(4) = 0 [pid 5841] mkdir("./bus", 0777) = 0 [ 106.974751][ T5841] loop0: detected capacity change from 0 to 32768 [ 107.040975][ T5841] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names [ 107.040975][ T5841] allowing incompatible features above 0.0: (unknown version) [ 107.040975][ T5841] features: [ 107.074600][ T5841] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 107.083206][ T5841] bcachefs (loop0): initializing new filesystem [ 107.101151][ T5841] bcachefs (loop0): going read-write [ 107.149141][ T5851] ODEBUG: object ffffc90002e77a98 is on stack ffffc90002e70000, but NOT annotated. [ 107.149537][ T5851] [ 107.149546][ T5851] ====================================================== [ 107.149559][ T5851] WARNING: possible circular locking dependency detected [ 107.149572][ T5851] 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 Not tainted [ 107.149592][ T5851] ------------------------------------------------------ [ 107.149603][ T5851] bch-copygc/loop/5851 is trying to acquire lock: [ 107.149618][ T5851] ffffffff8e4d1dc0 (console_owner){....}-{0:0}, at: console_lock_spinning_enable+0x9f/0xd0 [ 107.149697][ T5851] [ 107.149697][ T5851] but task is already holding lock: [ 107.149704][ T5851] ffffffff9af9fc28 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0xec/0x3d0 [ 107.149765][ T5851] [ 107.149765][ T5851] which lock already depends on the new lock. [ 107.149765][ T5851] [ 107.149774][ T5851] [ 107.149774][ T5851] the existing dependency chain (in reverse order) is: [ 107.149782][ T5851] [ 107.149782][ T5851] -> #4 (&obj_hash[i].lock){-.-.}-{2:2}: [ 107.149817][ T5851] _raw_spin_lock_irqsave+0x3a/0x60 [ 107.149859][ T5851] debug_object_activate+0x14c/0x4c0 [ 107.149886][ T5851] insert_work+0x2e/0x230 [ 107.149909][ T5851] __queue_work+0x97e/0x10f0 [ 107.149933][ T5851] queue_work_on+0x15f/0x1f0 [ 107.149957][ T5851] start_poll_synchronize_rcu_expedited+0x113/0x190 [ 107.149996][ T5851] rcu_init+0xe95/0x1630 [ 107.150035][ T5851] start_kernel+0x1df/0x4d0 [ 107.150068][ T5851] x86_64_start_reservations+0x18/0x30 [ 107.150102][ T5851] x86_64_start_kernel+0x130/0x190 [ 107.150135][ T5851] common_startup_64+0x13e/0x148 [ 107.150179][ T5851] [ 107.150179][ T5851] -> #3 (&pool->lock){-.-.}-{2:2}: [ 107.150212][ T5851] _raw_spin_lock+0x2e/0x40 [ 107.150252][ T5851] __queue_work+0x26b/0x10f0 [ 107.150276][ T5851] queue_work_on+0x15f/0x1f0 [ 107.150300][ T5851] rpm_suspend+0xeba/0x11d0 [ 107.150340][ T5851] rpm_idle+0x5b4/0x730 [ 107.150378][ T5851] __pm_runtime_idle+0xba/0x1a0 [ 107.150418][ T5851] __device_attach+0x37e/0x4b0 [ 107.150458][ T5851] bus_probe_device+0x17f/0x1c0 [ 107.150493][ T5851] device_add+0x1148/0x1a70 [ 107.150518][ T5851] serial_base_port_add+0x357/0x4b0 [ 107.150546][ T5851] serial_core_register_port+0x13c/0x2570 [ 107.150572][ T5851] serial8250_register_8250_port+0x159b/0x23c0 [ 107.150609][ T5851] serial_pnp_probe+0x431/0x910 [ 107.150643][ T5851] pnp_device_probe+0x2a8/0x4d0 [ 107.150670][ T5851] really_probe+0x241/0xa90 [ 107.150708][ T5851] __driver_probe_device+0x1de/0x440 [ 107.150749][ T5851] driver_probe_device+0x4c/0x1b0 [ 107.150788][ T5851] __driver_attach+0x283/0x580 [ 107.150828][ T5851] bus_for_each_dev+0x13e/0x1d0 [ 107.150858][ T5851] bus_add_driver+0x2e9/0x690 [ 107.150892][ T5851] driver_register+0x15c/0x4b0 [ 107.150915][ T5851] serial8250_init+0xc9/0x1e0 [ 107.150948][ T5851] do_one_initcall+0x123/0x6e0 [ 107.150974][ T5851] kernel_init_freeable+0x5c2/0x900 [ 107.151008][ T5851] kernel_init+0x1c/0x2b0 [ 107.151038][ T5851] ret_from_fork+0x5d7/0x6f0 [ 107.151075][ T5851] ret_from_fork_asm+0x1a/0x30 [ 107.151101][ T5851] [ 107.151101][ T5851] -> #2 (&dev->power.lock){-...}-{3:3}: [ 107.151135][ T5851] _raw_spin_lock_irqsave+0x3a/0x60 [ 107.151172][ T5851] __pm_runtime_resume+0xa9/0x170 [ 107.151213][ T5851] __uart_start+0x1b0/0x4c0 [ 107.151252][ T5851] uart_write+0x218/0xb30 [ 107.151273][ T5851] n_tty_write+0x412/0x1160 [ 107.151303][ T5851] file_tty_write.constprop.0+0x504/0x9b0 [ 107.151346][ T5851] redirected_tty_write+0xd4/0x150 [ 107.151388][ T5851] vfs_write+0x6c7/0x1150 [ 107.151414][ T5851] ksys_write+0x12a/0x250 [ 107.151440][ T5851] do_syscall_64+0xcd/0x4c0 [ 107.151463][ T5851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.151489][ T5851] [ 107.151489][ T5851] -> #1 (&port_lock_key){-...}-{3:3}: [ 107.151526][ T5851] _raw_spin_lock_irqsave+0x3a/0x60 [ 107.151563][ T5851] serial8250_console_write+0x181/0x1890 [ 107.151594][ T5851] console_flush_all+0x801/0xc60 [ 107.151623][ T5851] console_unlock+0xd8/0x210 [ 107.151651][ T5851] vprintk_emit+0x418/0x6d0 [ 107.151681][ T5851] _printk+0xc7/0x100 [ 107.151720][ T5851] register_console+0xc2d/0x11b0 [ 107.151752][ T5851] univ8250_console_init+0x5f/0x90 [ 107.151785][ T5851] console_init+0x14f/0x680 [ 107.151817][ T5851] start_kernel+0x29f/0x4d0 [ 107.151849][ T5851] x86_64_start_reservations+0x18/0x30 [ 107.151883][ T5851] x86_64_start_kernel+0x130/0x190 [ 107.151917][ T5851] common_startup_64+0x13e/0x148 [ 107.151959][ T5851] [ 107.151959][ T5851] -> #0 (console_owner){....}-{0:0}: [ 107.151993][ T5851] __lock_acquire+0x126f/0x1c90 [ 107.152032][ T5851] lock_acquire+0x179/0x350 [ 107.152071][ T5851] console_lock_spinning_enable+0xb0/0xd0 [ 107.152100][ T5851] console_flush_all+0x7aa/0xc60 [ 107.152129][ T5851] console_unlock+0xd8/0x210 [ 107.152157][ T5851] vprintk_emit+0x418/0x6d0 [ 107.152187][ T5851] _printk+0xc7/0x100 [ 107.152229][ T5851] lookup_object_or_alloc.part.0+0x3d7/0x590 [ 107.152258][ T5851] __debug_object_init+0x2a9/0x3d0 [ 107.152285][ T5851] __init_work+0x4c/0x60 [ 107.152322][ T5851] rhashtable_init_noprof+0x49f/0x7e0 [ 107.152360][ T5851] bch2_copygc_thread+0xf6/0xdd0 [ 107.152395][ T5851] kthread+0x3c5/0x780 [ 107.152435][ T5851] ret_from_fork+0x5d7/0x6f0 [ 107.152472][ T5851] ret_from_fork_asm+0x1a/0x30 [ 107.152498][ T5851] [ 107.152498][ T5851] other info that might help us debug this: [ 107.152498][ T5851] [ 107.152506][ T5851] Chain exists of: [ 107.152506][ T5851] console_owner --> &pool->lock --> &obj_hash[i].lock [ 107.152506][ T5851] [ 107.152546][ T5851] Possible unsafe locking scenario: [ 107.152546][ T5851] [ 107.152553][ T5851] CPU0 CPU1 [ 107.152560][ T5851] ---- ---- [ 107.152567][ T5851] lock(&obj_hash[i].lock); [ 107.152583][ T5851] lock(&pool->lock); [ 107.152601][ T5851] lock(&obj_hash[i].lock); [ 107.152620][ T5851] lock(console_owner); [ 107.152636][ T5851] [ 107.152636][ T5851] *** DEADLOCK *** [ 107.152636][ T5851] [ 107.152642][ T5851] 3 locks held by bch-copygc/loop/5851: [ 107.152657][ T5851] #0: ffffffff9af9fc28 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0xec/0x3d0 [ 107.152721][ T5851] #1: ffffffff8e5b2200 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100 [ 107.152796][ T5851] #2: ffffffff8e5b2270 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60 [ 107.152861][ T5851] [ 107.152861][ T5851] stack backtrace: [ 107.152873][ T5851] CPU: 1 UID: 0 PID: 5851 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) [ 107.152906][ T5851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.152922][ T5851] Call Trace: [ 107.152931][ T5851] [ 107.152940][ T5851] dump_stack_lvl+0x116/0x1f0 [ 107.152984][ T5851] print_circular_bug+0x275/0x350 [ 107.153026][ T5851] check_noncircular+0x14c/0x170 [ 107.153071][ T5851] __lock_acquire+0x126f/0x1c90 [ 107.153119][ T5851] lock_acquire+0x179/0x350 [ 107.153159][ T5851] ? console_lock_spinning_enable+0x9f/0xd0 [ 107.153192][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153232][ T5851] console_lock_spinning_enable+0xb0/0xd0 [ 107.153263][ T5851] ? console_lock_spinning_enable+0x9f/0xd0 [ 107.153294][ T5851] console_flush_all+0x7aa/0xc60 [ 107.153329][ T5851] ? __pfx_console_flush_all+0x10/0x10 [ 107.153364][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153397][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153430][ T5851] ? is_printk_cpu_sync_owner+0x32/0x40 [ 107.153469][ T5851] console_unlock+0xd8/0x210 [ 107.153499][ T5851] ? __pfx_console_unlock+0x10/0x10 [ 107.153529][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153562][ T5851] ? do_raw_spin_unlock+0x100/0x230 [ 107.153591][ T5851] ? _printk+0xc7/0x100 [ 107.153632][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153665][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153699][ T5851] vprintk_emit+0x418/0x6d0 [ 107.153732][ T5851] ? __pfx_vprintk_emit+0x10/0x10 [ 107.153767][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153802][ T5851] _printk+0xc7/0x100 [ 107.153843][ T5851] ? __pfx__printk+0x10/0x10 [ 107.153887][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.153920][ T5851] ? do_raw_spin_lock+0x12c/0x2b0 [ 107.153948][ T5851] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 107.153979][ T5851] lookup_object_or_alloc.part.0+0x3d7/0x590 [ 107.154013][ T5851] __debug_object_init+0x2a9/0x3d0 [ 107.154041][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154076][ T5851] ? __pfx___debug_object_init+0x10/0x10 [ 107.154114][ T5851] __init_work+0x4c/0x60 [ 107.154152][ T5851] rhashtable_init_noprof+0x49f/0x7e0 [ 107.154191][ T5851] ? __lock_acquire+0xb8a/0x1c90 [ 107.154235][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 107.154273][ T5851] bch2_copygc_thread+0xf6/0xdd0 [ 107.154309][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154344][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 107.154381][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154414][ T5851] ? lock_acquire+0x179/0x350 [ 107.154461][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154495][ T5851] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 107.154552][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154584][ T5851] ? rcu_is_watching+0x12/0xc0 [ 107.154617][ T5851] ? finish_task_switch.isra.0+0x221/0xc10 [ 107.154651][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154683][ T5851] ? lockdep_hardirqs_on+0x7c/0x110 [ 107.154727][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154759][ T5851] ? finish_task_switch.isra.0+0x221/0xc10 [ 107.154813][ T5851] ? rcu_is_watching+0x12/0xc0 [ 107.154845][ T5851] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 107.154885][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154918][ T5851] ? lockdep_hardirqs_on+0x7c/0x110 [ 107.154960][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.154994][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.155026][ T5851] ? __kthread_parkme+0x19e/0x250 [ 107.155064][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 107.155101][ T5851] kthread+0x3c5/0x780 [ 107.155143][ T5851] ? __pfx_kthread+0x10/0x10 [ 107.155187][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 107.155220][ T5851] ? rcu_is_watching+0x12/0xc0 [ 107.155255][ T5851] ? __pfx_kthread+0x10/0x10 [ 107.155299][ T5851] ret_from_fork+0x5d7/0x6f0 [ 107.155337][ T5851] ? __pfx_kthread+0x10/0x10 [ 107.155380][ T5851] ret_from_fork_asm+0x1a/0x30 [ 107.155415][ T5851] [ 108.191022][ T5851] ------------[ cut here ]------------ [ 108.196475][ T5851] WARNING: CPU: 1 PID: 5851 at lib/debugobjects.c:655 lookup_object_or_alloc.part.0+0x2b1/0x590 [ 108.206916][ T5851] Modules linked in: [ 108.210825][ T5851] CPU: 1 UID: 0 PID: 5851 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) [ 108.223255][ T5851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.233319][ T5851] RIP: 0010:lookup_object_or_alloc.part.0+0x2b1/0x590 [ 108.240112][ T5851] Code: 0e 48 8d 7d 20 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 58 02 00 00 48 8b 55 20 4c 89 e6 48 c7 c7 60 67 15 8c e8 a0 ea bb fc 90 <0f> 0b 90 48 83 c4 18 48 89 d8 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d1 [ 108.259760][ T5851] RSP: 0018:ffffc90002e777b0 EFLAGS: 00010086 [ 108.265933][ T5851] RAX: 0000000000000050 RBX: ffff888030d385e8 RCX: ffffffff819b01d9 [ 108.273989][ T5851] RDX: 0000000000000000 RSI: ffffffff819b8066 RDI: 0000000000000005 [ 108.281983][ T5851] RBP: ffff888034213c00 R08: 0000000000000005 R09: 0000000000000000 [ 108.289982][ T5851] R10: 0000000080000001 R11: 0000000035383554 R12: ffffc90002e77a98 [ 108.297972][ T5851] R13: ffff888034213c00 R14: 0000000000000000 R15: 0000000000000000 [ 108.305942][ T5851] FS: 0000000000000000(0000) GS:ffff88812485b000(0000) knlGS:0000000000000000 [ 108.314870][ T5851] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 108.321451][ T5851] CR2: 0000562552374450 CR3: 0000000075e5a000 CR4: 0000000000350ef0 [ 108.329547][ T5851] Call Trace: [ 108.332836][ T5851] [ 108.335765][ T5851] __debug_object_init+0x2a9/0x3d0 [ 108.340887][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.346531][ T5851] ? __pfx___debug_object_init+0x10/0x10 [ 108.352183][ T5851] __init_work+0x4c/0x60 [ 108.356465][ T5851] rhashtable_init_noprof+0x49f/0x7e0 [ 108.361867][ T5851] ? __lock_acquire+0xb8a/0x1c90 [ 108.366833][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 108.372409][ T5851] bch2_copygc_thread+0xf6/0xdd0 [ 108.377413][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.383074][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 108.388645][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.394301][ T5851] ? lock_acquire+0x179/0x350 [ 108.399041][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.404714][ T5851] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 108.410223][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.415880][ T5851] ? rcu_is_watching+0x12/0xc0 [ 108.420778][ T5851] ? finish_task_switch.isra.0+0x221/0xc10 [ 108.426604][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.432265][ T5851] ? lockdep_hardirqs_on+0x7c/0x110 [ 108.437504][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.443155][ T5851] ? finish_task_switch.isra.0+0x221/0xc10 [ 108.449008][ T5851] ? rcu_is_watching+0x12/0xc0 [ 108.453791][ T5851] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 108.459651][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.465307][ T5851] ? lockdep_hardirqs_on+0x7c/0x110 [ 108.470539][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.476191][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.481852][ T5851] ? __kthread_parkme+0x19e/0x250 [ 108.486922][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 108.492547][ T5851] kthread+0x3c5/0x780 [ 108.496667][ T5851] ? __pfx_kthread+0x10/0x10 [ 108.501414][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.507069][ T5851] ? rcu_is_watching+0x12/0xc0 [ 108.511862][ T5851] ? __pfx_kthread+0x10/0x10 [ 108.516494][ T5851] ret_from_fork+0x5d7/0x6f0 [ 108.521155][ T5851] ? __pfx_kthread+0x10/0x10 [ 108.525798][ T5851] ret_from_fork_asm+0x1a/0x30 [ 108.530604][ T5851] [ 108.533683][ T5851] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 108.540994][ T5851] CPU: 1 UID: 0 PID: 5851 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) [ 108.553526][ T5851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.563586][ T5851] Call Trace: [ 108.566865][ T5851] [ 108.569802][ T5851] dump_stack_lvl+0x3d/0x1f0 [ 108.574430][ T5851] panic+0x71c/0x800 [ 108.578357][ T5851] ? __pfx_panic+0x10/0x10 [ 108.582813][ T5851] ? show_trace_log_lvl+0x29b/0x3e0 [ 108.588046][ T5851] ? check_panic_on_warn+0x1f/0xb0 [ 108.593190][ T5851] ? lookup_object_or_alloc.part.0+0x2b1/0x590 [ 108.599402][ T5851] check_panic_on_warn+0xab/0xb0 [ 108.604371][ T5851] __warn+0xf6/0x3c0 [ 108.608303][ T5851] ? lookup_object_or_alloc.part.0+0x2b1/0x590 [ 108.614477][ T5851] report_bug+0x3c3/0x580 [ 108.618844][ T5851] ? lookup_object_or_alloc.part.0+0x2b1/0x590 [ 108.625034][ T5851] handle_bug+0x184/0x210 [ 108.629371][ T5851] exc_invalid_op+0x17/0x50 [ 108.633896][ T5851] asm_exc_invalid_op+0x1a/0x20 [ 108.638755][ T5851] RIP: 0010:lookup_object_or_alloc.part.0+0x2b1/0x590 [ 108.645618][ T5851] Code: 0e 48 8d 7d 20 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 58 02 00 00 48 8b 55 20 4c 89 e6 48 c7 c7 60 67 15 8c e8 a0 ea bb fc 90 <0f> 0b 90 48 83 c4 18 48 89 d8 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d1 [ 108.665416][ T5851] RSP: 0018:ffffc90002e777b0 EFLAGS: 00010086 [ 108.671500][ T5851] RAX: 0000000000000050 RBX: ffff888030d385e8 RCX: ffffffff819b01d9 [ 108.679476][ T5851] RDX: 0000000000000000 RSI: ffffffff819b8066 RDI: 0000000000000005 [ 108.687448][ T5851] RBP: ffff888034213c00 R08: 0000000000000005 R09: 0000000000000000 [ 108.695514][ T5851] R10: 0000000080000001 R11: 0000000035383554 R12: ffffc90002e77a98 [ 108.703516][ T5851] R13: ffff888034213c00 R14: 0000000000000000 R15: 0000000000000000 [ 108.711519][ T5851] ? __wake_up_klogd.part.0+0x99/0xf0 [ 108.716910][ T5851] ? vprintk_emit+0x1e6/0x6d0 [ 108.721619][ T5851] __debug_object_init+0x2a9/0x3d0 [ 108.726742][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.732410][ T5851] ? __pfx___debug_object_init+0x10/0x10 [ 108.738070][ T5851] __init_work+0x4c/0x60 [ 108.742347][ T5851] rhashtable_init_noprof+0x49f/0x7e0 [ 108.747746][ T5851] ? __lock_acquire+0xb8a/0x1c90 [ 108.752902][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 108.758513][ T5851] bch2_copygc_thread+0xf6/0xdd0 [ 108.763477][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.769136][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 108.774709][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.780361][ T5851] ? lock_acquire+0x179/0x350 [ 108.785079][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.790736][ T5851] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 108.796254][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.801909][ T5851] ? rcu_is_watching+0x12/0xc0 [ 108.806693][ T5851] ? finish_task_switch.isra.0+0x221/0xc10 [ 108.812609][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.818359][ T5851] ? lockdep_hardirqs_on+0x7c/0x110 [ 108.823595][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.829257][ T5851] ? finish_task_switch.isra.0+0x221/0xc10 [ 108.835131][ T5851] ? rcu_is_watching+0x12/0xc0 [ 108.839922][ T5851] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 108.845776][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.851710][ T5851] ? lockdep_hardirqs_on+0x7c/0x110 [ 108.856946][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.862615][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.868270][ T5851] ? __kthread_parkme+0x19e/0x250 [ 108.873362][ T5851] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 108.878926][ T5851] kthread+0x3c5/0x780 [ 108.883051][ T5851] ? __pfx_kthread+0x10/0x10 [ 108.887659][ T5851] ? srso_alias_return_thunk+0x5/0xfbef5 [ 108.893300][ T5851] ? rcu_is_watching+0x12/0xc0 [ 108.898089][ T5851] ? __pfx_kthread+0x10/0x10 [ 108.902698][ T5851] ret_from_fork+0x5d7/0x6f0 [ 108.907305][ T5851] ? __pfx_kthread+0x10/0x10 [ 108.911913][ T5851] ret_from_fork_asm+0x1a/0x30 [ 108.916707][ T5851] [ 108.920125][ T5851] Kernel Offset: disabled [ 108.924452][ T5851] Rebooting in 86400 seconds..