./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3269038576 <...> Warning: Permanently added '10.128.1.2' (ED25519) to the list of known hosts. execve("./syz-executor3269038576", ["./syz-executor3269038576"], 0x7ffcebe9b740 /* 10 vars */) = 0 brk(NULL) = 0x55555a302000 brk(0x55555a302d00) = 0x55555a302d00 arch_prctl(ARCH_SET_FS, 0x55555a302380) = 0 set_tid_address(0x55555a302650) = 5825 set_robust_list(0x55555a302660, 24) = 0 rseq(0x55555a302ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3269038576", 4096) = 28 getrandom("\x05\x67\x1a\x71\xce\x33\xb2\x6b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555a302d00 brk(0x55555a323d00) = 0x55555a323d00 brk(0x55555a324000) = 0x55555a324000 mprotect(0x7efcf9e29000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5827 attached [pid 5827] set_robust_list(0x55555a302660, 24) = 0 [pid 5825] <... clone resumed>, child_tidptr=0x55555a302650) = 5827 [pid 5827] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5827] setpgid(0, 0) = 0 [pid 5827] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5827] write(3, "1000", 4) = 4 [pid 5827] close(3) = 0 [pid 5827] write(1, "executing program\n", 18executing program ) = 18 [pid 5827] memfd_create("syzkaller", 0) = 3 [pid 5827] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7efcf1800000 [pid 5827] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5827] munmap(0x7efcf1800000, 138412032) = 0 [pid 5827] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5827] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5827] close(3) = 0 [pid 5827] close(4) = 0 [pid 5827] mkdir("./file0", 0777) = 0 [ 91.918861][ T5827] loop0: detected capacity change from 0 to 32768 [ 91.998164][ T5827] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=crc64,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io [ 91.998164][ T5827] allowing incompatible features above 0.0: (unknown version) [ 91.998164][ T5827] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 92.041934][ T977] cfg80211: failed to load regulatory.db [ 92.047723][ T5827] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 92.056238][ T5827] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 92.066563][ T5827] bcachefs (loop0): Version upgrade required: [ 92.066563][ T5827] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 92.066563][ T5827] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 92.066563][ T5827] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 92.141928][ T5827] bcachefs (loop0): dropping and reconstructing all alloc info [ 92.166013][ T5827] bcachefs (loop0): accounting_read... done [ 92.174019][ T5827] bcachefs (loop0): alloc_read... done [ 92.180903][ T5827] bcachefs (loop0): snapshots_read... done [ 92.188296][ T5827] bcachefs (loop0): check_allocations... done [ 92.214707][ T5827] bcachefs (loop0): going read-write [ 92.243021][ T5837] ODEBUG: object ffffc9000432fb90 is on stack ffffc90004328000, but NOT annotated. [pid 5827] mount("/dev/loop0", "./file0", "bcachefs", MS_I_VERSION, "\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x74\x72\x61\x6e\x73\x61\x63\x74\x69\x6f\x6e\x5f\x6e\x61\x6d\x65\x73\x2c\x6d\x65\x74\x61\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x63\x72\x63\x36\x34\x2c\x7f\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x63\x72\x63\x33\x32\x63\x2c\x66\x73\x63\x6b\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x66\x6c\x75\x73\x68\x5f\x64\x69\x73\x61\x62\x6c\x65\x64\x2c\x72"...) = 0 [pid 5827] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5827] chdir("./file0") = 0 [pid 5827] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5827] ioctl(4, LOOP_CLR_FD) = 0 [ 92.243381][ T5837] [ 92.243389][ T5837] ====================================================== [ 92.243396][ T5837] WARNING: possible circular locking dependency detected [ 92.243417][ T5837] 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 Not tainted [ 92.243428][ T5837] ------------------------------------------------------ [ 92.243436][ T5837] bch-copygc/loop/5837 is trying to acquire lock: [ 92.243453][ T5837] ffffffff8e132fc0 (console_owner){....}-{0:0}, at: console_flush_all+0x13a/0xc40 [ 92.243493][ T5837] [pid 5827] close(4) = 0 [ 92.243493][ T5837] but task is already holding lock: [ 92.243497][ T5837] ffffffff99c75328 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0x85/0x3c0 [ 92.243529][ T5837] [ 92.243529][ T5837] which lock already depends on the new lock. [ 92.243529][ T5837] [ 92.243534][ T5837] [ 92.243534][ T5837] the existing dependency chain (in reverse order) is: [ 92.243538][ T5837] [ 92.243538][ T5837] -> #4 (&obj_hash[i].lock){-.-.}-{2:2}: [ 92.243557][ T5837] lock_acquire+0x120/0x360 [ 92.243574][ T5837] _raw_spin_lock_irqsave+0xa7/0xf0 [ 92.243597][ T5837] debug_object_activate+0xbb/0x420 [ 92.243611][ T5837] insert_work+0x35/0x330 [ 92.243629][ T5837] __queue_work+0xcfc/0xfe0 [ 92.243649][ T5837] queue_work_on+0x181/0x270 [ 92.243668][ T5837] start_poll_synchronize_rcu_expedited+0xfc/0x140 [ 92.243685][ T5837] rcu_init+0x108/0x160 [ 92.243697][ T5837] start_kernel+0x1fb/0x500 [ 92.243714][ T5837] x86_64_start_reservations+0x24/0x30 [ 92.243726][ T5837] x86_64_start_kernel+0x143/0x1c0 [ 92.243738][ T5837] common_startup_64+0x13e/0x147 [ 92.243752][ T5837] [ 92.243752][ T5837] -> #3 (&pool->lock){-.-.}-{2:2}: [ 92.243770][ T5837] lock_acquire+0x120/0x360 [ 92.243787][ T5837] _raw_spin_lock+0x2e/0x40 [ 92.243803][ T5837] __queue_work+0x7b0/0xfe0 [ 92.243823][ T5837] queue_work_on+0x181/0x270 [ 92.243842][ T5837] rpm_suspend+0xe54/0x1720 [ 92.243855][ T5837] __pm_runtime_idle+0x12f/0x1a0 [ 92.243868][ T5837] __device_attach+0x342/0x400 [ 92.243882][ T5837] bus_probe_device+0x185/0x260 [ 92.243901][ T5837] device_add+0x7b6/0xb50 [ 92.243913][ T5837] serial_base_port_add+0x2f2/0x430 [ 92.243930][ T5837] serial_core_register_port+0x367/0x2700 [ 92.243951][ T5837] serial8250_register_8250_port+0x16db/0x2050 [ 92.243972][ T5837] serial_pnp_probe+0x527/0x790 [ 92.243992][ T5837] pnp_device_probe+0x30b/0x4c0 [ 92.244012][ T5837] really_probe+0x26a/0x9a0 [ 92.244027][ T5837] __driver_probe_device+0x18c/0x2f0 [ 92.244041][ T5837] driver_probe_device+0x4f/0x430 [ 92.244056][ T5837] __driver_attach+0x452/0x700 [ 92.244071][ T5837] bus_for_each_dev+0x230/0x2b0 [ 92.244090][ T5837] bus_add_driver+0x345/0x640 [ 92.244109][ T5837] driver_register+0x23a/0x320 [ 92.244125][ T5837] serial8250_init+0xc2/0x1c0 [ 92.244145][ T5837] do_one_initcall+0x233/0x820 [ 92.244169][ T5837] do_initcall_level+0x137/0x1f0 [ 92.244188][ T5837] do_initcalls+0x69/0xd0 [ 92.244207][ T5837] kernel_init_freeable+0x3d9/0x570 [ 92.244226][ T5837] kernel_init+0x1d/0x1d0 [ 92.244240][ T5837] ret_from_fork+0x3fc/0x770 [ 92.244257][ T5837] ret_from_fork_asm+0x1a/0x30 [ 92.244270][ T5837] [ 92.244270][ T5837] -> #2 (&dev->power.lock){-.-.}-{3:3}: [ 92.244288][ T5837] lock_acquire+0x120/0x360 [ 92.244305][ T5837] _raw_spin_lock_irqsave+0xa7/0xf0 [ 92.244323][ T5837] __pm_runtime_resume+0x10f/0x180 [ 92.244336][ T5837] __uart_start+0x171/0x440 [ 92.244356][ T5837] uart_write+0xdc/0x130 [ 92.244367][ T5837] n_tty_write+0xd35/0x11d0 [ 92.244383][ T5837] file_tty_write+0x500/0x990 [ 92.244402][ T5837] vfs_write+0x54b/0xa90 [ 92.244416][ T5837] ksys_write+0x145/0x250 [ 92.244430][ T5837] do_syscall_64+0xfa/0x3b0 [ 92.244441][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.244458][ T5837] [ 92.244458][ T5837] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 92.244476][ T5837] lock_acquire+0x120/0x360 [ 92.244493][ T5837] _raw_spin_lock_irqsave+0xa7/0xf0 [ 92.244511][ T5837] serial8250_console_write+0x17e/0x1ba0 [ 92.244526][ T5837] console_flush_all+0x728/0xc40 [ 92.244538][ T5837] console_unlock+0xc4/0x270 [ 92.244559][ T5837] vprintk_emit+0x5b7/0x7a0 [ 92.244579][ T5837] _printk+0xcf/0x120 [ 92.244590][ T5837] register_console+0xa8b/0xf90 [ 92.244603][ T5837] univ8250_console_init+0x52/0x90 [ 92.244623][ T5837] console_init+0x1a1/0x670 [ 92.244643][ T5837] start_kernel+0x2cc/0x500 [ 92.244659][ T5837] x86_64_start_reservations+0x24/0x30 [ 92.244672][ T5837] x86_64_start_kernel+0x143/0x1c0 [ 92.244684][ T5837] common_startup_64+0x13e/0x147 [ 92.244697][ T5837] [ 92.244697][ T5837] -> #0 (console_owner){....}-{0:0}: [ 92.244715][ T5837] validate_chain+0xb9b/0x2140 [ 92.244735][ T5837] __lock_acquire+0xab9/0xd20 [ 92.244752][ T5837] lock_acquire+0x120/0x360 [ 92.244768][ T5837] console_flush_all+0x6d2/0xc40 [ 92.244781][ T5837] console_unlock+0xc4/0x270 [ 92.244801][ T5837] vprintk_emit+0x5b7/0x7a0 [ 92.244821][ T5837] _printk+0xcf/0x120 [ 92.244832][ T5837] __debug_object_init+0x2c8/0x3c0 [ 92.244846][ T5837] rhashtable_init_noprof+0x7c0/0xbb0 [ 92.244867][ T5837] bch2_copygc_thread+0x116/0xdc0 [ 92.244882][ T5837] kthread+0x70e/0x8a0 [ 92.244895][ T5837] ret_from_fork+0x3fc/0x770 [ 92.244912][ T5837] ret_from_fork_asm+0x1a/0x30 [ 92.244924][ T5837] [ 92.244924][ T5837] other info that might help us debug this: [ 92.244924][ T5837] [ 92.244929][ T5837] Chain exists of: [ 92.244929][ T5837] console_owner --> &pool->lock --> &obj_hash[i].lock [ 92.244929][ T5837] [ 92.244951][ T5837] Possible unsafe locking scenario: [ 92.244951][ T5837] [ 92.244955][ T5837] CPU0 CPU1 [ 92.244959][ T5837] ---- ---- [ 92.244963][ T5837] lock(&obj_hash[i].lock); [ 92.244972][ T5837] lock(&pool->lock); [ 92.244982][ T5837] lock(&obj_hash[i].lock); [ 92.244992][ T5837] lock(console_owner); [ 92.245001][ T5837] [ 92.245001][ T5837] *** DEADLOCK *** [ 92.245001][ T5837] [ 92.245008][ T5837] 3 locks held by bch-copygc/loop/5837: [ 92.245016][ T5837] #0: ffffffff99c75328 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_object_init+0x85/0x3c0 [ 92.245050][ T5837] #1: ffffffff8e133020 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120 [ 92.245081][ T5837] #2: ffffffff8e01a8f0 (console_srcu){....}-{0:0}, at: console_flush_all+0x13a/0xc40 [ 92.245114][ T5837] [ 92.245114][ T5837] stack backtrace: [ 92.245126][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) [ 92.245143][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.245155][ T5837] Call Trace: [ 92.245163][ T5837] [ 92.245170][ T5837] dump_stack_lvl+0x189/0x250 [ 92.245194][ T5837] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.245216][ T5837] ? __pfx__printk+0x10/0x10 [ 92.245231][ T5837] ? print_lock_name+0xde/0x100 [ 92.245255][ T5837] print_circular_bug+0x2ee/0x310 [ 92.245280][ T5837] check_noncircular+0x134/0x160 [ 92.245305][ T5837] validate_chain+0xb9b/0x2140 [ 92.245334][ T5837] __lock_acquire+0xab9/0xd20 [ 92.245355][ T5837] ? console_flush_all+0x13a/0xc40 [ 92.245369][ T5837] lock_acquire+0x120/0x360 [ 92.245386][ T5837] ? console_flush_all+0x13a/0xc40 [ 92.245403][ T5837] ? do_raw_spin_unlock+0x122/0x240 [ 92.245418][ T5837] ? console_flush_all+0x13a/0xc40 [ 92.245433][ T5837] console_flush_all+0x6d2/0xc40 [ 92.245451][ T5837] ? console_flush_all+0x13a/0xc40 [ 92.245466][ T5837] ? console_flush_all+0x13a/0xc40 [ 92.245483][ T5837] ? __pfx_console_flush_all+0x10/0x10 [ 92.245500][ T5837] ? is_printk_cpu_sync_owner+0x32/0x40 [ 92.245518][ T5837] console_unlock+0xc4/0x270 [ 92.245541][ T5837] ? __pfx_console_unlock+0x10/0x10 [ 92.245564][ T5837] ? is_printk_cpu_sync_owner+0x32/0x40 [ 92.245582][ T5837] vprintk_emit+0x5b7/0x7a0 [ 92.245605][ T5837] ? __pfx_vprintk_emit+0x10/0x10 [ 92.245639][ T5837] ? __lock_acquire+0xab9/0xd20 [ 92.245660][ T5837] ? do_raw_spin_lock+0x121/0x290 [ 92.245676][ T5837] _printk+0xcf/0x120 [ 92.245690][ T5837] ? __pfx__printk+0x10/0x10 [ 92.245707][ T5837] __debug_object_init+0x2c8/0x3c0 [ 92.245723][ T5837] ? rhashtable_init_noprof+0x4ee/0xbb0 [ 92.245745][ T5837] rhashtable_init_noprof+0x7c0/0xbb0 [ 92.245768][ T5837] bch2_copygc_thread+0x116/0xdc0 [ 92.245791][ T5837] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 92.245821][ T5837] ? finish_task_switch+0x266/0x950 [ 92.245838][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.245863][ T5837] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 92.245897][ T5837] ? __kthread_parkme+0x7b/0x200 [ 92.245918][ T5837] ? __kthread_parkme+0x1a1/0x200 [ 92.245941][ T5837] kthread+0x70e/0x8a0 [ 92.245956][ T5837] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 92.245971][ T5837] ? __pfx_kthread+0x10/0x10 [ 92.245985][ T5837] ? _raw_spin_unlock_irq+0x23/0x50 [ 92.246004][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.246023][ T5837] ? __pfx_kthread+0x10/0x10 [ 92.246037][ T5837] ret_from_fork+0x3fc/0x770 [ 92.246056][ T5837] ? __pfx_ret_from_fork+0x10/0x10 [ 92.246076][ T5837] ? __switch_to_asm+0x39/0x70 [ 92.246089][ T5837] ? __switch_to_asm+0x33/0x70 [ 92.246101][ T5837] ? __pfx_kthread+0x10/0x10 [ 92.246115][ T5837] ret_from_fork_asm+0x1a/0x30 [ 92.246133][ T5837] [ 92.248121][ T5827] bcachefs (loop0): done starting filesystem [ 92.256180][ T5837] ------------[ cut here ]------------ [ 93.193841][ T5837] WARNING: CPU: 1 PID: 5837 at lib/debugobjects.c:655 __debug_object_init+0x2c9/0x3c0 [ 93.203412][ T5837] Modules linked in: [ 93.207365][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) [ 93.219786][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 93.229854][ T5837] RIP: 0010:__debug_object_init+0x2c9/0x3c0 [ 93.235765][ T5837] Code: cc cc cc 41 ff c7 44 89 3d f4 2b 17 15 48 c7 c1 00 b8 e1 8b 48 c7 c7 60 b8 e1 8b 84 c0 48 0f 45 f9 48 89 de e8 28 3c 67 fc 90 <0f> 0b 90 e9 c0 fe ff ff e8 3a 1c 00 00 8b 05 0c 67 cb 09 3b 05 0a [ 93.255481][ T5837] RSP: 0018:ffffc9000432f6e0 EFLAGS: 00010046 [ 93.261564][ T5837] RAX: 0000000000000050 RBX: ffffc9000432fb90 RCX: 80688a504bab9900 [ 93.269549][ T5837] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000000 [ 93.277539][ T5837] RBP: ffff888035b79e20 R08: ffff8880b8724293 R09: 1ffff110170e4852 [ 93.285527][ T5837] R10: dffffc0000000000 R11: ffffed10170e4853 R12: ffff888030ffa9f0 [ 93.293663][ T5837] R13: ffff888034899c78 R14: dffffc0000000000 R15: 0000000000000001 [ 93.301654][ T5837] FS: 0000000000000000(0000) GS:ffff888125d86000(0000) knlGS:0000000000000000 [ 93.310614][ T5837] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.317208][ T5837] CR2: 00007f231e4d1140 CR3: 0000000075d5c000 CR4: 00000000003526f0 [ 93.325194][ T5837] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 93.333176][ T5837] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 93.341169][ T5837] Call Trace: [ 93.344462][ T5837] [ 93.347412][ T5837] ? rhashtable_init_noprof+0x4ee/0xbb0 [ 93.352988][ T5837] rhashtable_init_noprof+0x7c0/0xbb0 [ 93.358388][ T5837] bch2_copygc_thread+0x116/0xdc0 [ 93.363449][ T5837] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 93.369025][ T5837] ? finish_task_switch+0x266/0x950 [ 93.374258][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.379501][ T5837] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 93.385001][ T5837] ? __kthread_parkme+0x7b/0x200 [ 93.389959][ T5837] ? __kthread_parkme+0x1a1/0x200 [ 93.395006][ T5837] kthread+0x70e/0x8a0 [ 93.399088][ T5837] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 93.404647][ T5837] ? __pfx_kthread+0x10/0x10 [ 93.409250][ T5837] ? _raw_spin_unlock_irq+0x23/0x50 [ 93.414463][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.419679][ T5837] ? __pfx_kthread+0x10/0x10 [ 93.424289][ T5837] ret_from_fork+0x3fc/0x770 [ 93.428904][ T5837] ? __pfx_ret_from_fork+0x10/0x10 [ 93.434033][ T5837] ? __switch_to_asm+0x39/0x70 [ 93.438811][ T5837] ? __switch_to_asm+0x33/0x70 [ 93.443585][ T5837] ? __pfx_kthread+0x10/0x10 [ 93.448190][ T5837] ret_from_fork_asm+0x1a/0x30 [ 93.452980][ T5837] [ 93.456010][ T5837] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 93.463304][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: bch-copygc/loop Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) [ 93.475724][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 93.485792][ T5837] Call Trace: [ 93.489087][ T5837] [ 93.492061][ T5837] dump_stack_lvl+0x99/0x250 [ 93.496685][ T5837] ? __asan_memcpy+0x40/0x70 [ 93.501290][ T5837] ? __pfx_dump_stack_lvl+0x10/0x10 [ 93.506513][ T5837] ? __pfx__printk+0x10/0x10 [ 93.511118][ T5837] panic+0x2db/0x790 [ 93.515036][ T5837] ? __pfx_panic+0x10/0x10 [ 93.519471][ T5837] ? show_trace_log_lvl+0x4fb/0x550 [ 93.524696][ T5837] ? ret_from_fork_asm+0x1a/0x30 [ 93.529652][ T5837] __warn+0x31b/0x4b0 [ 93.533654][ T5837] ? __debug_object_init+0x2c9/0x3c0 [ 93.538956][ T5837] ? __debug_object_init+0x2c9/0x3c0 [ 93.544256][ T5837] report_bug+0x2be/0x4f0 [ 93.548610][ T5837] ? __debug_object_init+0x2c9/0x3c0 [ 93.553911][ T5837] ? __debug_object_init+0x2c9/0x3c0 [ 93.559212][ T5837] ? __debug_object_init+0x2cb/0x3c0 [ 93.564512][ T5837] handle_bug+0x84/0x160 [ 93.568773][ T5837] exc_invalid_op+0x1a/0x50 [ 93.573297][ T5837] asm_exc_invalid_op+0x1a/0x20 [ 93.578167][ T5837] RIP: 0010:__debug_object_init+0x2c9/0x3c0 [ 93.584085][ T5837] Code: cc cc cc 41 ff c7 44 89 3d f4 2b 17 15 48 c7 c1 00 b8 e1 8b 48 c7 c7 60 b8 e1 8b 84 c0 48 0f 45 f9 48 89 de e8 28 3c 67 fc 90 <0f> 0b 90 e9 c0 fe ff ff e8 3a 1c 00 00 8b 05 0c 67 cb 09 3b 05 0a [ 93.603703][ T5837] RSP: 0018:ffffc9000432f6e0 EFLAGS: 00010046 [ 93.609790][ T5837] RAX: 0000000000000050 RBX: ffffc9000432fb90 RCX: 80688a504bab9900 [ 93.617789][ T5837] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000000 [ 93.625772][ T5837] RBP: ffff888035b79e20 R08: ffff8880b8724293 R09: 1ffff110170e4852 [ 93.633754][ T5837] R10: dffffc0000000000 R11: ffffed10170e4853 R12: ffff888030ffa9f0 [ 93.641782][ T5837] R13: ffff888034899c78 R14: dffffc0000000000 R15: 0000000000000001 [ 93.649781][ T5837] ? rhashtable_init_noprof+0x4ee/0xbb0 [ 93.655384][ T5837] rhashtable_init_noprof+0x7c0/0xbb0 [ 93.660777][ T5837] bch2_copygc_thread+0x116/0xdc0 [ 93.665826][ T5837] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 93.671408][ T5837] ? finish_task_switch+0x266/0x950 [ 93.676623][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.681848][ T5837] ? __pfx_rhashtable_jhash2+0x10/0x10 [ 93.687430][ T5837] ? __kthread_parkme+0x7b/0x200 [ 93.692414][ T5837] ? __kthread_parkme+0x1a1/0x200 [ 93.697464][ T5837] kthread+0x70e/0x8a0 [ 93.701549][ T5837] ? __pfx_bch2_copygc_thread+0x10/0x10 [ 93.707377][ T5837] ? __pfx_kthread+0x10/0x10 [ 93.711980][ T5837] ? _raw_spin_unlock_irq+0x23/0x50 [ 93.717197][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.722413][ T5837] ? __pfx_kthread+0x10/0x10 [ 93.727191][ T5837] ret_from_fork+0x3fc/0x770 [ 93.731800][ T5837] ? __pfx_ret_from_fork+0x10/0x10 [ 93.736936][ T5837] ? __switch_to_asm+0x39/0x70 [ 93.741712][ T5837] ? __switch_to_asm+0x33/0x70 [ 93.746508][ T5837] ? __pfx_kthread+0x10/0x10 [ 93.751144][ T5837] ret_from_fork_asm+0x1a/0x30 [ 93.755927][ T5837] [ 93.759293][ T5837] Kernel Offset: disabled [ 93.763628][ T5837] Rebooting in 86400 seconds..