./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1635386398 <...> Warning: Permanently added '10.128.0.143' (ED25519) to the list of known hosts. execve("./syz-executor1635386398", ["./syz-executor1635386398"], 0x7fff77a166b0 /* 10 vars */) = 0 brk(NULL) = 0x555580235000 brk(0x555580235d00) = 0x555580235d00 arch_prctl(ARCH_SET_FS, 0x555580235380) = 0 set_tid_address(0x555580235650) = 5821 set_robust_list(0x555580235660, 24) = 0 rseq(0x555580235ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1635386398", 4096) = 28 getrandom("\x97\x97\x17\xc3\x58\x14\xc7\xc9", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555580235d00 brk(0x555580256d00) = 0x555580256d00 brk(0x555580257000) = 0x555580257000 mprotect(0x7f7e8db7a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5823 attached , child_tidptr=0x555580235650) = 5823 [pid 5823] set_robust_list(0x555580235660, 24) = 0 [pid 5823] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5823] setpgid(0, 0) = 0 [pid 5823] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5823] write(3, "1000", 4) = 4 [pid 5823] close(3) = 0 [pid 5823] write(1, "executing program\n", 18executing program ) = 18 [pid 5823] memfd_create("syzkaller", 0) = 3 [pid 5823] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7e85600000 [pid 5823] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5823] munmap(0x7f7e85600000, 138412032) = 0 [pid 5823] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5823] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5823] close(3) = 0 [pid 5823] close(4) = 0 [pid 5823] mkdir("./file0", 0777) = 0 [ 75.667262][ T5823] loop0: detected capacity change from 0 to 32768 [ 75.763519][ T5823] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names [ 75.781878][ T5823] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 75.791449][ T5823] bcachefs (loop0): Version upgrade required: [ 75.791449][ T5823] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 75.791449][ T5823] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 75.791449][ T5823] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 75.874661][ T5823] invalid bkey u64s 12 type alloc_v4 0:34:0 len 0 ver 0: [ 75.874689][ T5823] gen 0 oldest_gen 0 data_type (unknown data_type 130) [ 75.874703][ T5823] journal_seq 5 [ 75.874714][ T5823] need_discard 1 [ 75.874726][ T5823] need_inc_gen 1 [ 75.874737][ T5823] dirty_sectors 0 [ 75.874748][ T5823] stripe_sectors 0 [ 75.874758][ T5823] cached_sectors 0 [ 75.874768][ T5823] stripe 0 [ 75.874779][ T5823] stripe_redundancy 27 [ 75.874789][ T5823] io_time[READ] 1 [ 75.874800][ T5823] io_time[WRITE] 512 [ 75.874811][ T5823] fragmentation 0 [ 75.874821][ T5823] bp_start 8 [ 75.874831][ T5823] [ 75.874841][ T5823] invalid data type (got 130 should be 9): delete?, fixing [ 75.956739][ T5823] bcachefs (loop0): accounting_read... done [ 75.963641][ T5823] bcachefs (loop0): alloc_read... done [ 75.969676][ T5823] bcachefs (loop0): stripes_read... done [ 75.975962][ T5823] bcachefs (loop0): snapshots_read... done [ 75.982808][ T5823] bcachefs (loop0): check_allocations... [ 75.985397][ T5823] ------------[ cut here ]------------ [ 75.996848][ T5823] kernel BUG at fs/bcachefs/bkey.c:298! [ 76.002471][ T5823] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 76.009433][ T5823] CPU: 1 UID: 0 PID: 5823 Comm: syz-executor163 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 76.020573][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 76.030915][ T5823] RIP: 0010:__bkey_unpack_pos+0x781/0x790 [ 76.036665][ T5823] Code: e8 54 2f 8c fd 48 c7 c7 40 e0 f2 8e 4c 89 e6 48 89 da e8 22 9c df 00 e9 f4 fc ff ff e8 38 2f 8c fd 90 0f 0b e8 30 2f 8c fd 90 <0f> 0b e8 28 2f 8c fd 90 0f 0b 0f 1f 44 00 00 90 90 90 90 90 90 90 [ 76.056311][ T5823] RSP: 0018:ffffc90003b762c0 EFLAGS: 00010293 [ 76.062390][ T5823] RAX: ffffffff841344b0 RBX: 0000000000000003 RCX: ffff888032e1bc00 [ 76.070375][ T5823] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000000 [ 76.078350][ T5823] RBP: 0000000000000000 R08: ffffffff84133e05 R09: 0000000000000000 [ 76.086338][ T5823] R10: ffffc90003b76380 R11: fffff5200076ec72 R12: ffffc90003b76380 [ 76.094328][ T5823] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88807a6a1060 [ 76.102315][ T5823] FS: 0000555580235380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 76.111260][ T5823] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.117945][ T5823] CR2: 00007ffc8b1cd000 CR3: 000000007f460000 CR4: 00000000003526f0 [ 76.125931][ T5823] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 76.133912][ T5823] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 76.141894][ T5823] Call Trace: [ 76.145183][ T5823] [ 76.148123][ T5823] ? __die_body+0x5f/0xb0 [ 76.152469][ T5823] ? die+0x9e/0xc0 [ 76.156209][ T5823] ? do_trap+0x15a/0x3a0 [ 76.160469][ T5823] ? __bkey_unpack_pos+0x781/0x790 [ 76.165593][ T5823] ? do_error_trap+0x1dc/0x2c0 [ 76.170376][ T5823] ? __bkey_unpack_pos+0x781/0x790 [ 76.175513][ T5823] ? __bkey_unpack_pos+0x781/0x790 [ 76.180651][ T5823] ? folio_add_file_rmap_ptes+0x328/0x380 [ 76.186395][ T5823] ? __pfx_do_error_trap+0x10/0x10 [ 76.191532][ T5823] ? handle_invalid_op+0x34/0x40 [ 76.196494][ T5823] ? __bkey_unpack_pos+0x781/0x790 [ 76.201619][ T5823] ? exc_invalid_op+0x38/0x50 [ 76.206317][ T5823] ? asm_exc_invalid_op+0x1a/0x20 [ 76.211364][ T5823] ? __bkey_unpack_pos+0xd5/0x790 [ 76.216399][ T5823] ? __bkey_unpack_pos+0x780/0x790 [ 76.221529][ T5823] ? __bkey_unpack_pos+0x781/0x790 [ 76.226662][ T5823] __bch2_bkey_cmp_packed_format_checked+0x2c7/0x800 [ 76.233358][ T5823] ? __pfx___bch2_bkey_cmp_packed_format_checked+0x10/0x10 [ 76.240570][ T5823] ? __bch2_btree_node_iter_advance+0x15e/0xaa0 [ 76.246836][ T5823] ? bch2_btree_node_iter_init+0x841/0x4280 [ 76.252751][ T5823] bch2_btree_node_iter_init+0x234b/0x4280 [ 76.258620][ T5823] ? __pfx_bch2_btree_node_iter_init+0x10/0x10 [ 76.264798][ T5823] ? __bkey_unpack_pos+0x4da/0x790 [ 76.269949][ T5823] ? __bch2_btree_path_set_pos+0x40c/0x1710 [ 76.275870][ T5823] __bch2_btree_path_set_pos+0xb8e/0x1710 [ 76.281611][ T5823] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 76.287529][ T5823] ? __pfx___bch2_btree_path_set_pos+0x10/0x10 [ 76.293708][ T5823] ? bch2_btree_iter_peek_node+0x5ee/0xed0 [ 76.299524][ T5823] bch2_btree_iter_peek_node+0x7c5/0xed0 [ 76.305188][ T5823] ? bch2_check_allocations+0x2119/0x7070 [ 76.311121][ T5823] ? __pfx_bch2_btree_iter_peek_node+0x10/0x10 [ 76.317307][ T5823] ? __asan_memset+0x23/0x50 [ 76.321914][ T5823] bch2_check_allocations+0x2125/0x7070 [ 76.327522][ T5823] ? __pfx_prb_first_seq+0x10/0x10 [ 76.332650][ T5823] ? this_cpu_in_panic+0x4f/0x80 [ 76.337602][ T5823] ? bch2_check_allocations+0x798/0x7070 [ 76.343250][ T5823] ? __pfx__prb_read_valid+0x10/0x10 [ 76.348550][ T5823] ? __pfx_validate_chain+0x10/0x10 [ 76.353765][ T5823] ? __pfx_validate_chain+0x10/0x10 [ 76.358996][ T5823] ? __pfx_bch2_check_allocations+0x10/0x10 [ 76.364906][ T5823] ? __pfx_prb_read_valid+0x10/0x10 [ 76.370117][ T5823] ? data_alloc+0x523/0x840 [ 76.374634][ T5823] ? desc_read+0x200/0x3f0 [ 76.379065][ T5823] ? desc_read+0x1a2/0x3f0 [ 76.383493][ T5823] ? prb_first_seq+0x131/0x210 [ 76.388283][ T5823] ? __pfx_prb_first_seq+0x10/0x10 [ 76.393411][ T5823] ? this_cpu_in_panic+0x4f/0x80 [ 76.398363][ T5823] ? _prb_read_valid+0xa39/0xac0 [ 76.403323][ T5823] ? bch2_check_allocations+0x1a47/0x7070 [ 76.409145][ T5823] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 76.415148][ T5823] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.421491][ T5823] ? __console_unlock+0x12d/0x1f0 [ 76.426538][ T5823] ? bch2_check_allocations+0x2119/0x7070 [ 76.432272][ T5823] ? this_cpu_in_panic+0x4f/0x80 [ 76.437233][ T5823] ? console_unlock+0x2fc/0x3b0 [ 76.442102][ T5823] ? __pfx_console_unlock+0x10/0x10 [ 76.447319][ T5823] ? __wake_up_klogd+0xd5/0x110 [ 76.452240][ T5823] ? bch2_run_recovery_passes+0x42b/0x880 [ 76.458018][ T5823] ? trace_contention_end+0x3c/0x120 [ 76.464378][ T5823] ? bch2_check_allocations+0x798/0x7070 [ 76.470137][ T5823] ? __bch2_print+0x17a/0x220 [ 76.475090][ T5823] ? __mutex_unlock_slowpath+0x21e/0x790 [ 76.480956][ T5823] ? __pfx___bch2_print+0x10/0x10 [ 76.486009][ T5823] bch2_run_recovery_pass+0xf0/0x1e0 [ 76.491579][ T5823] bch2_run_recovery_passes+0x3a7/0x880 [ 76.497150][ T5823] bch2_fs_recovery+0x25cc/0x39d0 [ 76.502197][ T5823] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 76.507593][ T5823] ? __pfx_lock_release+0x10/0x10 [ 76.512655][ T5823] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 76.518305][ T5823] ? __pfx_lock_release+0x10/0x10 [ 76.523349][ T5823] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 76.529007][ T5823] ? bch2_get_next_online_dev+0x4b9/0x4f0 [ 76.534742][ T5823] ? bch2_get_next_online_dev+0x2b/0x4f0 [ 76.540484][ T5823] ? llist_reverse_order+0x72/0x90 [ 76.545618][ T5823] bch2_fs_start+0x356/0x5b0 [ 76.550234][ T5823] bch2_fs_get_tree+0xd68/0x1710 [ 76.555220][ T5823] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 76.560726][ T5823] ? smack_fs_context_parse_param+0xff/0x170 [ 76.566756][ T5823] ? generic_parse_monolithic+0x387/0x400 [ 76.572715][ T5823] ? cap_capable+0x1b4/0x250 [ 76.577350][ T5823] ? safesetid_security_capable+0xb2/0x1d0 [ 76.583191][ T5823] vfs_get_tree+0x90/0x2b0 [ 76.587837][ T5823] do_new_mount+0x2be/0xb40 [ 76.592366][ T5823] ? __pfx_do_new_mount+0x10/0x10 [ 76.597415][ T5823] __se_sys_mount+0x2d6/0x3c0 [ 76.602145][ T5823] ? __pfx___se_sys_mount+0x10/0x10 [ 76.607352][ T5823] ? do_syscall_64+0x100/0x230 [ 76.612135][ T5823] ? __x64_sys_mount+0x20/0xc0 [ 76.616909][ T5823] do_syscall_64+0xf3/0x230 [ 76.621430][ T5823] ? clear_bhb_loop+0x35/0x90 [ 76.626117][ T5823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.632045][ T5823] RIP: 0033:0x7f7e8db0306a [ 76.636480][ T5823] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 76.656099][ T5823] RSP: 002b:00007ffc8b1cc428 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 76.664526][ T5823] RAX: ffffffffffffffda RBX: 00007ffc8b1cc440 RCX: 00007f7e8db0306a [ 76.672527][ T5823] RDX: 00000000200002c0 RSI: 0000000020000380 RDI: 00007ffc8b1cc440 [ 76.680639][ T5823] RBP: 0000000000000004 R08: 00007ffc8b1cc480 R09: 0000000000005931 [ 76.688625][ T5823] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000 [ 76.696623][ T5823] R13: 00007ffc8b1cc480 R14: 0000000000000003 R15: 0000000001000000 [ 76.704727][ T5823] [ 76.707757][ T5823] Modules linked in: [ 76.712033][ T5823] ---[ end trace 0000000000000000 ]--- [ 76.717653][ T5823] RIP: 0010:__bkey_unpack_pos+0x781/0x790 [ 76.723453][ T5823] Code: e8 54 2f 8c fd 48 c7 c7 40 e0 f2 8e 4c 89 e6 48 89 da e8 22 9c df 00 e9 f4 fc ff ff e8 38 2f 8c fd 90 0f 0b e8 30 2f 8c fd 90 <0f> 0b e8 28 2f 8c fd 90 0f 0b 0f 1f 44 00 00 90 90 90 90 90 90 90 [ 76.743221][ T5823] RSP: 0018:ffffc90003b762c0 EFLAGS: 00010293 [ 76.749493][ T5823] RAX: ffffffff841344b0 RBX: 0000000000000003 RCX: ffff888032e1bc00 [ 76.757520][ T5823] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000000 [ 76.765547][ T5823] RBP: 0000000000000000 R08: ffffffff84133e05 R09: 0000000000000000 [ 76.773538][ T5823] R10: ffffc90003b76380 R11: fffff5200076ec72 R12: ffffc90003b76380 [ 76.781587][ T5823] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88807a6a1060 [ 76.789621][ T5823] FS: 0000555580235380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 76.798604][ T5823] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.805239][ T5823] CR2: 00007ffc8b1cd000 CR3: 000000007f460000 CR4: 00000000003526f0 [ 76.813352][ T5823] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 76.821400][ T5823] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 76.829446][ T5823] Kernel panic - not syncing: Fatal exception [ 76.835841][ T5823] Kernel Offset: disabled [ 76.840187][ T5823] Rebooting in 86400 seconds..