bisecting cause commit starting from 521b619acdc8f1f5acdac15b84f81fd9515b2aff building syzkaller on 64069d48f293e0be98d4a78a6f7be23861cc1e06 testing commit 521b619acdc8f1f5acdac15b84f81fd9515b2aff with gcc (GCC) 8.1.0 kernel signature: 12cce4205f24b98c4569db530fd3e44bf296791f82f2d9e4076f0fe56f549f61 run #0: crashed: no output from test machine run #1: crashed: no output from test machine run #2: crashed: no output from test machine run #3: crashed: no output from test machine run #4: crashed: no output from test machine run #5: crashed: no output from test machine run #6: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor470681849" "root@10.128.15.192:./syz-executor470681849"]: exit status 1 ssh: connect to host 10.128.15.192 port 22: Connection timed out lost connection run #7: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor762812932" "root@10.128.15.194:./syz-executor762812932"]: exit status 1 ssh: connect to host 10.128.15.194 port 22: Connection timed out lost connection run #8: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor862325651" "root@10.128.15.195:./syz-executor862325651"]: exit status 1 ssh: connect to host 10.128.15.195 port 22: Connection timed out lost connection run #9: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor101714902" "root@10.128.15.199:./syz-executor101714902"]: exit status 1 ssh: connect to host 10.128.15.199 port 22: Connection timed out lost connection testing release v5.9 testing commit bbf5c979011a099af5dc76498918ed7df445635b with gcc (GCC) 8.1.0 kernel signature: 5a15b1edcab1ab4abcb6aabaa9d641ef3b5e60fe3c01f52595240031165d717c run #0: crashed: BUG: unable to handle kernel paging request in btrfs_scan_one_device run #1: crashed: no output from test machine run #2: crashed: no output from test machine run #3: crashed: no output from test machine run #4: crashed: no output from test machine run #5: crashed: no output from test machine run #6: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor368873591" "root@10.128.10.62:./syz-executor368873591"]: exit status 1 ssh: connect to host 10.128.10.62 port 22: Connection timed out lost connection run #7: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor227762538" "root@10.128.10.63:./syz-executor227762538"]: exit status 1 ssh: connect to host 10.128.10.63 port 22: Connection timed out lost connection run #8: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor063284673" "root@10.128.1.44:./syz-executor063284673"]: exit status 1 ssh: connect to host 10.128.1.44 port 22: Connection timed out lost connection run #9: basic kernel testing failed: failed to copy test binary to VM: timedout ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor814191992" "root@10.128.0.28:./syz-executor814191992"] testing release v5.8 testing commit bcf876870b95592b52519ed4aafcf9d95999bc9c with gcc (GCC) 8.1.0 kernel signature: bae2ce506f54fac96f1afec55283e2f16a62f308eb975d094348b4597b09ef9b run #0: crashed: BUG: unable to handle kernel paging request in btrfs_scan_one_device run #1: crashed: no output from test machine run #2: crashed: no output from test machine run #3: crashed: no output from test machine run #4: crashed: no output from test machine run #5: crashed: no output from test machine run #6: crashed: no output from test machine run #7: crashed: no output from test machine run #8: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor704194459" "root@10.128.10.62:./syz-executor704194459"]: exit status 1 ssh: connect to host 10.128.10.62 port 22: Connection timed out lost connection run #9: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor015585854" "root@10.128.15.193:./syz-executor015585854"]: exit status 1 ssh: connect to host 10.128.15.193 port 22: Connection timed out lost connection testing release v5.7 testing commit 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162 with gcc (GCC) 8.1.0 kernel signature: 00f0b5c8f93a12659f677004946c1c266732a5e250206f93eb26cf3ef58b865b run #0: crashed: KASAN: slab-out-of-bounds Read in btrfs_scan_one_device run #1: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #9: crashed: KASAN: use-after-free Read in btrfs_scan_one_device testing release v5.6 testing commit 7111951b8d4973bda27ff663f2cf18b663d15b48 with gcc (GCC) 8.1.0 kernel signature: 7740b04c5f3b6e72141154567cf183bdc1abcab03bf0cfd4ccbd885d0138749d run #0: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #1: crashed: KASAN: out-of-bounds Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #9: crashed: KASAN: use-after-free Read in btrfs_scan_one_device testing release v5.5 testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0 kernel signature: 246fee441638f70c686aa820c9bcd8cc16579852600f249ce6525b58238f5108 all runs: crashed: KASAN: use-after-free Read in btrfs_scan_one_device testing release v5.4 testing commit 219d54332a09e8d8741c1e1982f5eae56099de85 with gcc (GCC) 8.1.0 kernel signature: 73e5b177f4c8fa8a6cdb5f9ba269fd9b793437b472882429ef47bc0d45e241f2 all runs: OK # git bisect start d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 219d54332a09e8d8741c1e1982f5eae56099de85 Bisecting: 8639 revisions left to test after this (roughly 13 steps) [8c39f71ee2019e77ee14f88b1321b2348db51820] Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net testing commit 8c39f71ee2019e77ee14f88b1321b2348db51820 with gcc (GCC) 8.1.0 kernel signature: 2f37d4e7f634120e449aff978856640de1287d43dcb61db07fa9ff26a6458b8b run #0: crashed: KASAN: slab-out-of-bounds Read in btrfs_scan_one_device run #1: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #9: crashed: KASAN: use-after-free Read in btrfs_scan_one_device # git bisect bad 8c39f71ee2019e77ee14f88b1321b2348db51820 Bisecting: 3435 revisions left to test after this (roughly 12 steps) [3b397c7ccafe0624018cb09fc96729f8f6165573] Merge tag 'regmap-v5.5' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/regmap testing commit 3b397c7ccafe0624018cb09fc96729f8f6165573 with gcc (GCC) 8.1.0 kernel signature: 5ffc4ed77bcaf600236b411a47ee343388f8f840b9cf523cd7af596268dcabc0 all runs: crashed: KASAN: use-after-free Read in btrfs_scan_one_device # git bisect bad 3b397c7ccafe0624018cb09fc96729f8f6165573 Bisecting: 1709 revisions left to test after this (roughly 11 steps) [924ea58dadea23cc28b60d02b9c0896b7b168a6f] Merge tag 'mt76-for-kvalo-2019-11-20' of https://github.com/nbd168/wireless testing commit 924ea58dadea23cc28b60d02b9c0896b7b168a6f with gcc (GCC) 8.1.0 kernel signature: fe5ef1a1cbd935d929e15283c35689ef169c21647195bb4f305f483a21f73b35 all runs: OK # git bisect good 924ea58dadea23cc28b60d02b9c0896b7b168a6f Bisecting: 901 revisions left to test after this (roughly 10 steps) [3f3c8be973af10875cfa1e7b85a535b6ba76b44f] Merge tag 'for-linus-5.5a-rc1-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/xen/tip testing commit 3f3c8be973af10875cfa1e7b85a535b6ba76b44f with gcc (GCC) 8.1.0 kernel signature: 893f9b76ca12dbda64964ce6a2f049a34dfbaca4eff12880c4b1511b153aca42 run #0: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #1: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: KASAN: out-of-bounds Read in btrfs_scan_one_device run #9: crashed: KASAN: use-after-free Read in btrfs_scan_one_device # git bisect bad 3f3c8be973af10875cfa1e7b85a535b6ba76b44f Bisecting: 469 revisions left to test after this (roughly 9 steps) [1b88176b9c72fb4edd5920969aef94c5cd358337] Merge tag 'mtd/for-5.5' of git://git.kernel.org/pub/scm/linux/kernel/git/mtd/linux testing commit 1b88176b9c72fb4edd5920969aef94c5cd358337 with gcc (GCC) 8.1.0 kernel signature: b0a302b332fafd45b1af73a9220f9f6f053d255212a7528fd0328f83d95d5874 all runs: OK # git bisect good 1b88176b9c72fb4edd5920969aef94c5cd358337 Bisecting: 278 revisions left to test after this (roughly 8 steps) [e25645b181ae67753f9a48e11bb5b34dcf41187d] Merge tag 'linux-kselftest-5.5-rc1-kunit' of git://git.kernel.org/pub/scm/linux/kernel/git/shuah/linux-kselftest testing commit e25645b181ae67753f9a48e11bb5b34dcf41187d with gcc (GCC) 8.1.0 kernel signature: e63bc23a5bcba05d3b558a302b0234b40ec2b5a5969ca8158da2ed35e39f2d54 run #0: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #1: crashed: KASAN: slab-out-of-bounds Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: slab-out-of-bounds Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #9: crashed: KASAN: use-after-free Read in btrfs_scan_one_device # git bisect bad e25645b181ae67753f9a48e11bb5b34dcf41187d Bisecting: 95 revisions left to test after this (roughly 7 steps) [3d976388daa9ed77c9d2ded914ad07385b37d97e] btrfs: remove embedded block_group_cache::item testing commit 3d976388daa9ed77c9d2ded914ad07385b37d97e with gcc (GCC) 8.1.0 kernel signature: 2f59f7a5d3d571768bab025ed69f0924104b3ef60128bc87ed06bfc97c84641c all runs: crashed: KASAN: use-after-free Read in btrfs_scan_one_device # git bisect bad 3d976388daa9ed77c9d2ded914ad07385b37d97e Bisecting: 47 revisions left to test after this (roughly 6 steps) [f7bddf1e27d18fbc7d3e3056ba449cfbe4e20b0a] btrfs: Avoid getting stuck during cyclic writebacks testing commit f7bddf1e27d18fbc7d3e3056ba449cfbe4e20b0a with gcc (GCC) 8.1.0 kernel signature: f983c4c204410729bb067ba388ed7914b8f18eb4547b80421e4a80a895248fcf all runs: OK # git bisect good f7bddf1e27d18fbc7d3e3056ba449cfbe4e20b0a Bisecting: 23 revisions left to test after this (roughly 5 steps) [c778df140644142fb7e12b7e468b137721d85890] btrfs: compression: inline alloc_workspace testing commit c778df140644142fb7e12b7e468b137721d85890 with gcc (GCC) 8.1.0 kernel signature: d82b3fb7b41f574e79f4d77b15182d695fa2380c283d24c0ba7aca19fb2300d8 all runs: OK # git bisect good c778df140644142fb7e12b7e468b137721d85890 Bisecting: 11 revisions left to test after this (roughly 4 steps) [32ab3d1b4d0c55daea9ba52c0f5d1363be21bf2a] btrfs: remove pointless indentation in btrfs_read_sys_array() testing commit 32ab3d1b4d0c55daea9ba52c0f5d1363be21bf2a with gcc (GCC) 8.1.0 kernel signature: 7468fdf59859a5b3ed1616b945a8f81e861e23738c7d9a3a8852823c5802f405 all runs: OK # git bisect good 32ab3d1b4d0c55daea9ba52c0f5d1363be21bf2a Bisecting: 5 revisions left to test after this (roughly 3 steps) [41e6d2a808ad89d34c662ba8dd1209c4fefb1416] btrfs: sysfs: show used checksum driver per filesystem testing commit 41e6d2a808ad89d34c662ba8dd1209c4fefb1416 with gcc (GCC) 8.1.0 kernel signature: 6ec74c0a1d0ac0c560c0a5fde494e94f17d24650c94b2a2b830a551bbde9b442 run #0: crashed: KASAN: slab-out-of-bounds Read in btrfs_scan_one_device run #1: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: no output from test machine run #9: crashed: no output from test machine # git bisect bad 41e6d2a808ad89d34c662ba8dd1209c4fefb1416 Bisecting: 2 revisions left to test after this (roughly 2 steps) [3951e7f050ac6a38bbc859fc3cd6093890c31d1c] btrfs: add xxhash64 to checksumming algorithms testing commit 3951e7f050ac6a38bbc859fc3cd6093890c31d1c with gcc (GCC) 8.1.0 kernel signature: 2d1ae3a08f90620cb6e23ef422f163deffdad29fcbd946cfa57a316a8ce49d98 all runs: OK # git bisect good 3951e7f050ac6a38bbc859fc3cd6093890c31d1c Bisecting: 0 revisions left to test after this (roughly 1 step) [f7cea56c0fff95bd5a6cd21b9fa299f66193b604] btrfs: sysfs: export supported checksums testing commit f7cea56c0fff95bd5a6cd21b9fa299f66193b604 with gcc (GCC) 8.1.0 kernel signature: 57f599358d38717b9383ee3c93928c0f49b0b1e9f7b5b7fbae11eb5a09f75a97 run #0: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #1: crashed: KASAN: slab-out-of-bounds Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #9: crashed: KASAN: use-after-free Read in btrfs_scan_one_device # git bisect bad f7cea56c0fff95bd5a6cd21b9fa299f66193b604 Bisecting: 0 revisions left to test after this (roughly 0 steps) [3831bf0094abed51e71cbeca8b6edf8b88c2644b] btrfs: add sha256 to checksumming algorithm testing commit 3831bf0094abed51e71cbeca8b6edf8b88c2644b with gcc (GCC) 8.1.0 kernel signature: cc138cdd68407b91eed5b4f5ebaa152fea6b4d38bdd62c7c7593f2b9c930c0fb run #0: crashed: general protection fault in btrfs_scan_one_device run #1: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #2: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #3: crashed: KASAN: out-of-bounds Read in btrfs_scan_one_device run #4: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #5: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #6: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #7: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #8: crashed: KASAN: use-after-free Read in btrfs_scan_one_device run #9: crashed: KASAN: use-after-free Read in btrfs_scan_one_device # git bisect bad 3831bf0094abed51e71cbeca8b6edf8b88c2644b 3831bf0094abed51e71cbeca8b6edf8b88c2644b is the first bad commit commit 3831bf0094abed51e71cbeca8b6edf8b88c2644b Author: Johannes Thumshirn Date: Mon Oct 7 11:11:02 2019 +0200 btrfs: add sha256 to checksumming algorithm Add sha256 to the list of possible checksumming algorithms used by BTRFS. Signed-off-by: Johannes Thumshirn Reviewed-by: David Sterba Signed-off-by: David Sterba fs/btrfs/Kconfig | 1 + fs/btrfs/ctree.c | 1 + fs/btrfs/disk-io.c | 1 + fs/btrfs/super.c | 1 + include/uapi/linux/btrfs_tree.h | 1 + 5 files changed, 5 insertions(+) culprit signature: cc138cdd68407b91eed5b4f5ebaa152fea6b4d38bdd62c7c7593f2b9c930c0fb parent signature: 2d1ae3a08f90620cb6e23ef422f163deffdad29fcbd946cfa57a316a8ce49d98 revisions tested: 21, total time: 4h32m9.601375245s (build: 1h54m50.856122808s, test: 2h35m16.334302383s) first bad commit: 3831bf0094abed51e71cbeca8b6edf8b88c2644b btrfs: add sha256 to checksumming algorithm recipients (to): ["clm@fb.com" "dsterba@suse.com" "dsterba@suse.com" "josef@toxicpanda.com" "jthumshirn@suse.de" "linux-btrfs@vger.kernel.org"] recipients (cc): ["linux-kernel@vger.kernel.org"] crash: KASAN: use-after-free Read in btrfs_scan_one_device ================================================================== BUG: KASAN: use-after-free in btrfs_printk+0x312/0x380 fs/btrfs/super.c:218 Read of size 8 at addr ffff8880893d4690 by task systemd-udevd/13824 CPU: 1 PID: 13824 Comm: systemd-udevd Not tainted 5.4.0-rc8-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0xa0/0xea lib/dump_stack.c:118 print_address_description.constprop.4.cold.6+0x9/0x376 mm/kasan/report.c:374 __kasan_report.cold.7+0x7d/0xa2 mm/kasan/report.c:506 kasan_report+0x12/0x20 mm/kasan/common.c:634 __asan_report_load8_noabort+0x14/0x20 mm/kasan/generic_report.c:132 btrfs_printk+0x312/0x380 fs/btrfs/super.c:218 device_list_add+0xe41/0x1600 fs/btrfs/volumes.c:865 btrfs_scan_one_device+0x2c8/0x880 fs/btrfs/volumes.c:1281 btrfs_control_ioctl+0xbe/0x220 fs/btrfs/super.c:2192 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:509 [inline] do_vfs_ioctl+0x196/0x1150 fs/ioctl.c:696 ksys_ioctl+0x62/0x90 fs/ioctl.c:713 __do_sys_ioctl fs/ioctl.c:720 [inline] __se_sys_ioctl fs/ioctl.c:718 [inline] __x64_sys_ioctl+0x6e/0xb0 fs/ioctl.c:718 do_syscall_64+0x93/0x4e0 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7efe92be3017 Code: 00 00 00 48 8b 05 81 7e 2b 00 64 c7 00 26 00 00 00 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 51 7e 2b 00 f7 d8 64 89 01 48 RSP: 002b:00007ffebc01bb58 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe92be3017 RDX: 00007ffebc01bb70 RSI: 0000000090009427 RDI: 000000000000000f RBP: 00007ffebc01bb70 R08: 0000000000000000 R09: 0000000000000150 R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000f R13: 0000000000000000 R14: 0000562fdfa5c810 R15: 0000562fdfa4a060 The buggy address belongs to the page: page:ffffea000224f500 refcount:0 mapcount:-128 mapping:0000000000000000 index:0x0 raw: 00fff00000000000 ffffea0002aec508 ffffea00022ab908 0000000000000000 raw: 0000000000000000 0000000000000002 00000000ffffff7f 0000000000000000 page dumped because: kasan: bad access detected Memory state around the buggy address: ffff8880893d4580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ffff8880893d4600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff >ffff8880893d4680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ^ ffff8880893d4700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ffff8880893d4780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ==================================================================