./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor214064205 <...> Warning: Permanently added '10.128.1.18' (ED25519) to the list of known hosts. execve("./syz-executor214064205", ["./syz-executor214064205"], 0x7fff3c058e00 /* 10 vars */) = 0 brk(NULL) = 0x555595149000 brk(0x555595149d00) = 0x555595149d00 arch_prctl(ARCH_SET_FS, 0x555595149380) = 0 set_tid_address(0x555595149650) = 5784 set_robust_list(0x555595149660, 24) = 0 rseq(0x555595149ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor214064205", 4096) = 27 getrandom("\xd7\xe1\x11\x37\x4b\xe8\x74\x12", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555595149d00 brk(0x55559516ad00) = 0x55559516ad00 brk(0x55559516b000) = 0x55559516b000 mprotect(0x7f5486e83000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555595149650) = 5785 ./strace-static-x86_64: Process 5785 attached [pid 5784] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555595149650) = 5786 [pid 5784] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5785] set_robust_list(0x555595149660, 24./strace-static-x86_64: Process 5786 attached ) = 0 [pid 5786] set_robust_list(0x555595149660, 24 [pid 5785] openat(AT_FDCWD, "/dev/loop0", O_RDWR./strace-static-x86_64: Process 5787 attached [pid 5786] <... set_robust_list resumed>) = 0 [pid 5786] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5784] <... clone resumed>, child_tidptr=0x555595149650) = 5787 [pid 5784] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5785] <... openat resumed>) = 3 [pid 5787] set_robust_list(0x555595149660, 24./strace-static-x86_64: Process 5788 attached [pid 5784] <... clone resumed>, child_tidptr=0x555595149650) = 5788 [pid 5784] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5788] set_robust_list(0x555595149660, 24) = 0 [pid 5788] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5786] ioctl(3, LOOP_CLR_FD [pid 5787] <... set_robust_list resumed>) = 0 [pid 5785] ioctl(3, LOOP_CLR_FD [pid 5787] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5786] <... ioctl resumed>) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 5789 attached [pid 5788] <... openat resumed>) = 3 [pid 5787] <... openat resumed>) = 3 [pid 5785] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5786] close(3) = 0 [pid 5786] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5784] <... clone resumed>, child_tidptr=0x555595149650) = 5789 [pid 5789] set_robust_list(0x555595149660, 24 [pid 5787] ioctl(3, LOOP_CLR_FD [pid 5785] close(3./strace-static-x86_64: Process 5790 attached [pid 5790] set_robust_list(0x555595149660, 24) = 0 [pid 5790] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5785] <... close resumed>) = 0 [pid 5788] ioctl(3, LOOP_CLR_FD [pid 5790] <... prctl resumed>) = 0 [pid 5789] <... set_robust_list resumed>) = 0 [pid 5788] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5787] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5785] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5790] setpgid(0, 0 [pid 5786] <... clone resumed>, child_tidptr=0x555595149650) = 5790 [pid 5790] <... setpgid resumed>) = 0 [pid 5790] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5789] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5790] <... openat resumed>) = 3 [pid 5788] close(3) = 0 [pid 5788] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5790] write(3, "1000", 4./strace-static-x86_64: Process 5792 attached ) = 4 [pid 5790] close(3) = 0 [pid 5792] set_robust_list(0x555595149660, 24 [pid 5790] write(1, "executing program\n", 18) = 18 [pid 5790] sched_setscheduler(0, SCHED_FIFO, [7]./strace-static-x86_64: Process 5791 attached [pid 5792] <... set_robust_list resumed>) = 0 [pid 5790] <... sched_setscheduler resumed>) = 0 [pid 5788] <... clone resumed>, child_tidptr=0x555595149650) = 5792 [pid 5787] close(3 [pid 5792] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5790] memfd_create("syzkaller", 0executing program [pid 5792] <... prctl resumed>) = 0 [pid 5790] <... memfd_create resumed>) = 3 [pid 5789] <... openat resumed>) = 3 [pid 5787] <... close resumed>) = 0 [pid 5792] setpgid(0, 0 [pid 5790] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f547e800000 [pid 5791] set_robust_list(0x555595149660, 24 [pid 5789] ioctl(3, LOOP_CLR_FD [pid 5787] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5785] <... clone resumed>, child_tidptr=0x555595149650) = 5791 [pid 5791] <... set_robust_list resumed>) = 0 [pid 5789] <... ioctl resumed>) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 5793 attached [pid 5791] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5789] close(3 [pid 5791] <... prctl resumed>) = 0 [pid 5789] <... close resumed>) = 0 [pid 5793] set_robust_list(0x555595149660, 24 [pid 5791] setpgid(0, 0 [pid 5789] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5793] <... set_robust_list resumed>) = 0 [pid 5791] <... setpgid resumed>) = 0 [pid 5787] <... clone resumed>, child_tidptr=0x555595149650) = 5793 [pid 5793] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5791] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5793] <... prctl resumed>) = 0 [pid 5791] <... openat resumed>) = 3 [pid 5793] setpgid(0, 0) = 0 [pid 5791] write(3, "1000", 4 [pid 5793] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5791] <... write resumed>) = 4 [pid 5793] <... openat resumed>) = 3 [pid 5791] close(3 [pid 5789] <... clone resumed>, child_tidptr=0x555595149650) = 5794 executing program [pid 5791] <... close resumed>) = 0 [pid 5793] write(3, "1000", 4 [pid 5791] write(1, "executing program\n", 18 [pid 5793] <... write resumed>) = 4 [pid 5791] <... write resumed>) = 18 [pid 5791] sched_setscheduler(0, SCHED_FIFO, [7] [pid 5793] close(3) = 0 [pid 5791] <... sched_setscheduler resumed>) = 0 [pid 5791] memfd_create("syzkaller", 0) = 3 [pid 5791] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f547e800000 ./strace-static-x86_64: Process 5794 attached [pid 5790] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5794] set_robust_list(0x555595149660, 24 [pid 5793] write(1, "executing program\n", 18 [pid 5792] <... setpgid resumed>) = 0 [pid 5791] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5794] <... set_robust_list resumed>) = 0 [pid 5790] <... write resumed>) = 16777216 [pid 5790] munmap(0x7f547e800000, 138412032) = 0 [pid 5790] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5790] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5790] close(3) = 0 [pid 5790] close(4) = 0 [pid 5790] mkdir("./file1", 0777) = 0 [pid 5790] mount("/dev/loop1", "./file1", "bcachefs", 0, "data_checksum=crc64,journal_transaction_names,norecovery,inline_data,journal_transaction_names,btree"... [pid 5794] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5792] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program [pid 5794] <... prctl resumed>) = 0 [pid 5793] <... write resumed>) = 18 [pid 5792] <... openat resumed>) = 3 [pid 5793] sched_setscheduler(0, SCHED_FIFO, [7] [ 183.810298][ T5790] loop1: detected capacity change from 0 to 32768 [pid 5794] setpgid(0, 0 [pid 5793] <... sched_setscheduler resumed>) = 0 [pid 5792] write(3, "1000", 4 [pid 5794] <... setpgid resumed>) = 0 [pid 5793] memfd_create("syzkaller", 0 [pid 5792] <... write resumed>) = 4 [pid 5794] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5793] <... memfd_create resumed>) = 3 [pid 5794] <... openat resumed>) = 3 [pid 5793] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5792] close(3 [pid 5794] write(3, "1000", 4 [pid 5793] <... mmap resumed>) = 0x7f547e800000 [pid 5792] <... close resumed>) = 0 [pid 5794] <... write resumed>) = 4 [pid 5791] <... write resumed>) = 16777216 [pid 5794] close(3 [pid 5791] munmap(0x7f547e800000, 138412032) = 0 [pid 5791] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5791] ioctl(4, LOOP_SET_FD, 3executing program [pid 5794] <... close resumed>) = 0 [pid 5794] write(1, "executing program\n", 18) = 18 [ 184.112916][ T5791] loop0: detected capacity change from 0 to 32768 [pid 5794] sched_setscheduler(0, SCHED_FIFO, [7]) = 0 [pid 5794] memfd_create("syzkaller", 0) = 3 [pid 5794] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f547e800000 [ 184.247536][ T5790] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=crc64,norecovery,reconstruct_alloc [ 184.262415][ T5790] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 184.272042][ T5790] bcachefs (loop1): Version upgrade required: [ 184.272042][ T5790] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 184.272042][ T5790] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 184.272042][ T5790] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [pid 5793] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 184.404841][ T5790] bcachefs (loop1): dropping and reconstructing all alloc info [pid 5791] <... ioctl resumed>) = 0 [pid 5794] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5792] write(1, "executing program\n", 18 [pid 5791] close(3 [pid 5793] <... write resumed>) = 16777216 [pid 5791] <... close resumed>) = 0 [pid 5793] munmap(0x7f547e800000, 138412032 [pid 5791] close(4 [pid 5793] <... munmap resumed>) = 0 [pid 5791] <... close resumed>) = 0 [pid 5793] openat(AT_FDCWD, "/dev/loop2", O_RDWRexecuting program [pid 5791] mkdir("./file1", 0777 [pid 5793] <... openat resumed>) = 4 [pid 5792] <... write resumed>) = 18 [pid 5791] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5793] ioctl(4, LOOP_SET_FD, 3 [pid 5791] mount("/dev/loop0", "./file1", "bcachefs", 0, "data_checksum=crc64,journal_transaction_names,norecovery,inline_data,journal_transaction_names,btree"... [pid 5793] <... ioctl resumed>) = 0 [pid 5792] sched_setscheduler(0, SCHED_FIFO, [7] [pid 5793] close(3) = 0 [pid 5792] <... sched_setscheduler resumed>) = 0 [pid 5793] close(4 [pid 5792] memfd_create("syzkaller", 0 [pid 5793] <... close resumed>) = 0 [pid 5792] <... memfd_create resumed>) = 3 [ 184.693106][ T5793] loop2: detected capacity change from 0 to 32768 [ 184.749309][ T5790] bcachefs (loop1): accounting_read... done [ 184.756337][ T5790] bcachefs (loop1): alloc_read... done [ 184.762484][ T5790] bcachefs (loop1): stripes_read... done [ 184.768612][ T5790] bcachefs (loop1): snapshots_read... done [pid 5793] mkdir("./file1", 0777 [pid 5792] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5793] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5792] <... mmap resumed>) = 0x7f547e800000 [pid 5794] <... write resumed>) = 16777216 [ 184.775304][ T5790] bcachefs (loop1): check_allocations... done [ 185.036392][ T5790] bcachefs (loop1): going read-write [pid 5793] mount("/dev/loop2", "./file1", "bcachefs", 0, "data_checksum=crc64,journal_transaction_names,norecovery,inline_data,journal_transaction_names,btree"... [pid 5794] munmap(0x7f547e800000, 138412032 [pid 5792] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5794] <... munmap resumed>) = 0 [pid 5794] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 185.155602][ T5790] bcachefs (loop1): done starting filesystem [ 185.179669][ T5794] loop4: detected capacity change from 0 to 32768 [pid 5794] ioctl(4, LOOP_SET_FD, 3 [pid 5790] <... mount resumed>) = 0 [pid 5790] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5790] chdir("./file1") = 0 [pid 5790] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5794] <... ioctl resumed>) = 0 [pid 5790] <... openat resumed>) = 4 [pid 5794] close(3 [pid 5790] ioctl(4, LOOP_CLR_FD [pid 5794] <... close resumed>) = 0 [pid 5790] <... ioctl resumed>) = 0 [ 185.209078][ T5791] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open [ 185.218826][ T5791] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete [pid 5794] close(4 [pid 5790] close(4 [pid 5794] <... close resumed>) = 0 [pid 5790] <... close resumed>) = 0 [pid 5794] mkdir("./file1", 0777 [pid 5790] chown("./file1", 0, 0 [pid 5794] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5790] <... chown resumed>) = 0 [pid 5794] mount("/dev/loop4", "./file1", "bcachefs", 0, "data_checksum=crc64,journal_transaction_names,norecovery,inline_data,journal_transaction_names,btree"... [pid 5790] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 0777) = 4 [pid 5790] exit_group(0) = ? [pid 5790] +++ exited with 0 +++ [ 185.341872][ T5790] syz-executor214 (5790) used greatest stack depth: 4032 bytes left [pid 5786] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5790, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=93 /* 0.93 s */} --- [ 185.384214][ T5793] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open [ 185.393898][ T5793] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete [pid 5786] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [ 185.512923][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open [ 185.522576][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete [pid 5786] ioctl(3, LOOP_CLR_FD) = 0 [pid 5786] close(3) = 0 [ 185.757057][ T5791] bcachefs: bch2_fs_get_tree() error: EINVAL [ 185.772996][ T5793] bcachefs: bch2_fs_get_tree() error: EINVAL [ 185.818284][ T5792] loop3: detected capacity change from 0 to 32768 [pid 5786] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5829 attached [pid 5793] <... mount resumed>) = -1 EINVAL (Invalid argument) [pid 5792] <... write resumed>) = 16777216 [pid 5791] <... mount resumed>) = -1 EINVAL (Invalid argument) [pid 5793] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5792] munmap(0x7f547e800000, 138412032 [pid 5791] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5793] <... openat resumed>) = 3 [pid 5792] <... munmap resumed>) = 0 [pid 5791] <... openat resumed>) = 3 [pid 5793] ioctl(3, LOOP_CLR_FD [pid 5792] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5791] ioctl(3, LOOP_CLR_FD [pid 5793] <... ioctl resumed>) = 0 [pid 5792] <... openat resumed>) = 4 [pid 5791] <... ioctl resumed>) = 0 [pid 5793] close(3 [pid 5792] ioctl(4, LOOP_SET_FD, 3 [pid 5791] close(3 [pid 5794] <... mount resumed>) = -1 EINVAL (Invalid argument) [pid 5793] <... close resumed>) = 0 [pid 5792] <... ioctl resumed>) = 0 [pid 5794] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5793] chown("./file1", 0, 0 [pid 5792] close(3 [pid 5794] <... openat resumed>) = 3 [pid 5793] <... chown resumed>) = 0 [pid 5792] <... close resumed>) = 0 [pid 5794] ioctl(3, LOOP_CLR_FD [ 186.026134][ T5794] bcachefs: bch2_fs_get_tree() error: EINVAL [pid 5793] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 0777 [pid 5792] close(4 [pid 5786] <... clone resumed>, child_tidptr=0x555595149650) = 5829 [pid 5794] <... ioctl resumed>) = 0 [pid 5793] <... openat resumed>) = -1 EISDIR (Is a directory) [pid 5792] <... close resumed>) = 0 [pid 5829] set_robust_list(0x555595149660, 24 [ 186.223107][ T5803] ===================================================== [ 186.230382][ T5803] BUG: KMSAN: uninit-value in bch2_inode_v3_validate+0x481/0x5a0 [ 186.238572][ T5803] bch2_inode_v3_validate+0x481/0x5a0 [ 186.244558][ T5803] bch2_bkey_val_validate+0x2b5/0x440 [ 186.250163][ T5803] validate_bset_keys+0x1531/0x2080 [ 186.255810][ T5803] validate_bset_for_write+0x142/0x290 [ 186.261616][ T5803] __bch2_btree_node_write+0x53df/0x6830 [ 186.267483][ T5803] bch2_btree_node_write+0xa5/0x2e0 [ 186.273268][ T5803] __btree_node_flush+0x606/0x680 [ 186.278486][ T5803] bch2_btree_node_flush1+0x38/0x60 [ 186.283991][ T5803] journal_flush_pins+0xce6/0x1780 [ 186.289296][ T5803] __bch2_journal_reclaim+0xda8/0x1670 [ 186.295050][ T5803] bch2_journal_reclaim_thread+0x18e/0x760 [ 186.301124][ T5803] kthread+0x3e2/0x540 [ 186.305360][ T5803] ret_from_fork+0x6d/0x90 [ 186.310046][ T5803] ret_from_fork_asm+0x1a/0x30 [ 186.315156][ T5803] [ 186.317575][ T5803] Uninit was stored to memory at: [ 186.322980][ T5803] bch2_sort_keys_keep_unwritten_whiteouts+0x12d5/0x19d0 [ 186.330432][ T5803] __bch2_btree_node_write+0x3ae8/0x6830 [ 186.338052][ T5803] bch2_btree_node_write+0xa5/0x2e0 [ 186.343573][ T5803] __btree_node_flush+0x606/0x680 [ 186.348797][ T5803] bch2_btree_node_flush1+0x38/0x60 [ 186.354301][ T5803] journal_flush_pins+0xce6/0x1780 [ 186.359691][ T5803] __bch2_journal_reclaim+0xda8/0x1670 [ 186.365496][ T5803] bch2_journal_reclaim_thread+0x18e/0x760 [ 186.371624][ T5803] kthread+0x3e2/0x540 [ 186.375870][ T5803] ret_from_fork+0x6d/0x90 [ 186.380468][ T5803] ret_from_fork_asm+0x1a/0x30 [ 186.385543][ T5803] [ 186.387973][ T5803] Uninit was created at: [ 186.392612][ T5803] ___kmalloc_large_node+0x22c/0x370 [ 186.398123][ T5803] __kmalloc_large_node_noprof+0x3f/0x1e0 [ 186.404174][ T5803] __kmalloc_node_noprof+0xc96/0x1250 [ 186.409785][ T5803] __kvmalloc_node_noprof+0xc0/0x2d0 [ 186.415374][ T5803] btree_node_sort+0x78a/0x1d30 [ 186.420451][ T5803] bch2_btree_post_write_cleanup+0x1b0/0xf20 [ 186.426865][ T5803] bch2_btree_node_write+0x21c/0x2e0 [ 186.432476][ T5803] __btree_node_flush+0x606/0x680 [ 186.437708][ T5803] bch2_btree_node_flush0+0x35/0x60 [ 186.443276][ T5803] journal_flush_pins+0xce6/0x1780 [ 186.448588][ T5803] __bch2_journal_reclaim+0xda8/0x1670 [ 186.454339][ T5803] bch2_journal_reclaim_thread+0x18e/0x760 [ 186.460345][ T5803] kthread+0x3e2/0x540 [ 186.464679][ T5803] ret_from_fork+0x6d/0x90 [ 186.469381][ T5803] ret_from_fork_asm+0x1a/0x30 [ 186.474801][ T5803] [ 186.477355][ T5803] CPU: 0 UID: 0 PID: 5803 Comm: bch-reclaim/loo Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0 [ 186.488789][ T5803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 186.499662][ T5803] ===================================================== [ 186.506812][ T5803] Disabling lock debugging due to kernel taint [ 186.513203][ T5803] Kernel panic - not syncing: kmsan.panic set ... [pid 5794] close(3 [pid 5793] exit_group(0 [pid 5792] mkdir("./file1", 0777 [pid 5829] <... set_robust_list resumed>) = 0 [pid 5794] <... close resumed>) = 0 [pid 5793] <... exit_group resumed>) = ? [pid 5792] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5791] <... close resumed>) = 0 [pid 5829] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5794] chown("./file1", 0, 0 [pid 5793] +++ exited with 0 +++ [pid 5792] mount("/dev/loop3", "./file1", "bcachefs", 0, "data_checksum=crc64,journal_transaction_names,norecovery,inline_data,journal_transaction_names,btree"... [pid 5794] <... chown resumed>) = 0 [pid 5829] <... prctl resumed>) = 0 [pid 5794] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 0777 [pid 5829] setpgid(0, 0 [pid 5794] <... openat resumed>) = -1 EISDIR (Is a directory) [pid 5829] <... setpgid resumed>) = 0 [pid 5794] exit_group(0 [ 186.519788][ T5803] CPU: 0 UID: 0 PID: 5803 Comm: bch-reclaim/loo Tainted: G B 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0 [ 186.532628][ T5803] Tainted: [B]=BAD_PAGE [ 186.536913][ T5803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 186.547234][ T5803] Call Trace: [ 186.550641][ T5803] [ 186.553710][ T5803] dump_stack_lvl+0x216/0x2d0 [ 186.558711][ T5803] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 186.564832][ T5803] dump_stack+0x1e/0x24 [ 186.569211][ T5803] panic+0x4e2/0xcf0 [pid 5829] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5794] <... exit_group resumed>) = ? [pid 5829] <... openat resumed>) = 3 [pid 5794] +++ exited with 0 +++ [pid 5787] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5793, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=95 /* 0.95 s */} --- [pid 5789] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5794, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=129 /* 1.29 s */} --- [pid 5787] restart_syscall(<... resuming interrupted clone ...> [pid 5829] write(3, "1000", 4 [pid 5787] <... restart_syscall resumed>) = 0 [pid 5829] <... write resumed>) = 4 executing program [pid 5829] close(3 [pid 5789] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5787] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5789] <... openat resumed>) = 3 [pid 5787] ioctl(3, LOOP_CLR_FD [pid 5829] <... close resumed>) = 0 [pid 5787] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5829] write(1, "executing program\n", 18 [pid 5789] ioctl(3, LOOP_CLR_FD [pid 5787] close(3 [pid 5829] <... write resumed>) = 18 [pid 5789] <... ioctl resumed>) = -1 ENXIO (No such device or address) [ 186.573348][ T5803] ? kmsan_get_metadata+0xd1/0x1c0 [ 186.578684][ T5803] kmsan_report+0x2c7/0x2d0 [ 186.583376][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.588790][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.594202][ T5803] ? __msan_warning+0x95/0x120 [ 186.599202][ T5803] ? bch2_inode_v3_validate+0x481/0x5a0 [ 186.604989][ T5803] ? bch2_bkey_val_validate+0x2b5/0x440 [ 186.610779][ T5803] ? validate_bset_keys+0x1531/0x2080 [ 186.616395][ T5803] ? validate_bset_for_write+0x142/0x290 [pid 5829] sched_setscheduler(0, SCHED_FIFO, [7] [pid 5789] close(3 [pid 5829] <... sched_setscheduler resumed>) = 0 [pid 5789] <... close resumed>) = 0 [pid 5787] <... close resumed>) = 0 [ 186.622294][ T5803] ? __bch2_btree_node_write+0x53df/0x6830 [ 186.628376][ T5803] ? bch2_btree_node_write+0xa5/0x2e0 [ 186.634079][ T5803] ? __btree_node_flush+0x606/0x680 [ 186.639586][ T5803] ? bch2_btree_node_flush1+0x38/0x60 [ 186.645277][ T5803] ? journal_flush_pins+0xce6/0x1780 [ 186.650928][ T5803] ? __bch2_journal_reclaim+0xda8/0x1670 [ 186.656789][ T5803] ? bch2_journal_reclaim_thread+0x18e/0x760 [ 186.663074][ T5803] ? kthread+0x3e2/0x540 [ 186.668288][ T5803] ? ret_from_fork+0x6d/0x90 [ 186.673282][ T5803] ? ret_from_fork_asm+0x1a/0x30 [ 186.678521][ T5803] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 186.684567][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.689969][ T5803] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 186.696546][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.701946][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.707350][ T5803] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 186.713377][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.718924][ T5803] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 186.724946][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.730354][ T5803] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 186.736358][ T5803] __msan_warning+0x95/0x120 [ 186.741176][ T5803] bch2_inode_v3_validate+0x481/0x5a0 [ 186.746791][ T5803] ? __pfx_bch2_inode_v3_validate+0x10/0x10 [ 186.752912][ T5803] bch2_bkey_val_validate+0x2b5/0x440 [ 186.758540][ T5803] validate_bset_keys+0x1531/0x2080 [ 186.764031][ T5803] validate_bset_for_write+0x142/0x290 [ 186.769744][ T5803] __bch2_btree_node_write+0x53df/0x6830 [ 186.775622][ T5803] ? __kmalloc_noprof+0xcd5/0x1230 [ 186.780960][ T5803] ? stack_depot_save_flags+0x2c/0x750 [ 186.786628][ T5803] ? kmsan_get_metadata+0x13e/0x1c0 [ 186.792026][ T5803] ? mempool_kmalloc+0x36/0x50 [ 186.797030][ T5803] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 186.803668][ T5803] bch2_btree_node_write+0xa5/0x2e0 [ 186.809106][ T5803] __btree_node_flush+0x606/0x680 [ 186.814337][ T5803] ? __btree_node_flush+0xd3/0x680 [ 186.819667][ T5803] ? __pfx_bch2_btree_node_flush1+0x10/0x10 [ 186.825775][ T5803] bch2_btree_node_flush1+0x38/0x60 [ 186.831197][ T5803] journal_flush_pins+0xce6/0x1780 [ 186.836545][ T5803] __bch2_journal_reclaim+0xda8/0x1670 [ 186.842217][ T5803] ? __try_to_del_timer_sync+0x3d3/0x420 [ 186.848108][ T5803] bch2_journal_reclaim_thread+0x18e/0x760 [ 186.854183][ T5803] kthread+0x3e2/0x540 [ 186.858463][ T5803] ? __pfx_bch2_journal_reclaim_thread+0x10/0x10 [ 186.865018][ T5803] ? __pfx_kthread+0x10/0x10 [ 186.869808][ T5803] ret_from_fork+0x6d/0x90 [ 186.874437][ T5803] ? __pfx_kthread+0x10/0x10 [ 186.879226][ T5803] ret_from_fork_asm+0x1a/0x30 [ 186.884244][ T5803] [ 186.887558][ T5803] Kernel Offset: disabled [ 186.891952][ T5803] Rebooting in 86400 seconds..