./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor761291170 <...> Warning: Permanently added '10.128.1.38' (ED25519) to the list of known hosts. execve("./syz-executor761291170", ["./syz-executor761291170"], 0x7ffc609d0860 /* 10 vars */) = 0 brk(NULL) = 0x5555873b8000 brk(0x5555873b8d00) = 0x5555873b8d00 arch_prctl(ARCH_SET_FS, 0x5555873b8380) = 0 set_tid_address(0x5555873b8650) = 5035 set_robust_list(0x5555873b8660, 24) = 0 rseq(0x5555873b8ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor761291170", 4096) = 27 getrandom("\xe3\x48\x13\x6a\x20\xc9\xad\xa7", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555873b8d00 brk(0x5555873d9d00) = 0x5555873d9d00 brk(0x5555873da000) = 0x5555873da000 mprotect(0x7fd86ca4f000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555873b8650) = 5036 ./strace-static-x86_64: Process 5036 attached [pid 5036] set_robust_list(0x5555873b8660, 24) = 0 [pid 5036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5036] setpgid(0, 0) = 0 [pid 5036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5036] write(3, "1000", 4) = 4 [pid 5036] close(3) = 0 [pid 5036] prlimit64(0, RLIMIT_RTPRIO, {rlim_cur=8, rlim_max=139}, NULL) = 0 [pid 5036] sched_setscheduler(0, SCHED_FIFO, [7]) = 0 [pid 5036] memfd_create("syzkaller", 0) = 3 [pid 5036] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd864400000 [pid 5036] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5036] munmap(0x7fd864400000, 138412032) = 0 [pid 5036] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5036] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5036] close(3) = 0 [pid 5036] close(4) = 0 [pid 5036] mkdir("./file0", 0777) = 0 [ 183.692717][ T5036] loop0: detected capacity change from 0 to 32768 [ 183.736335][ T5036] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor761 (5036) [ 183.762821][ T5036] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 183.773791][ T5036] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm [ 183.783725][ T5036] BTRFS info (device loop0): using free-space-tree [pid 5036] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "") = 0 [pid 5036] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5036] chdir("./file0") = 0 [pid 5036] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5036] ioctl(4, LOOP_CLR_FD) = 0 [pid 5036] close(4) = 0 [pid 5036] openat(AT_FDCWD, ".", O_RDONLY) = 4 [pid 5036] openat(4, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5 [ 183.931764][ T5036] ===================================================== [ 183.939318][ T5036] BUG: KMSAN: uninit-value in __crc32c_le_base+0x43c/0xd80 [ 183.947858][ T5036] __crc32c_le_base+0x43c/0xd80 [ 183.952968][ T5036] chksum_update+0x5b/0xd0 [ 183.957789][ T5036] crypto_shash_update+0x79/0xa0 [ 183.963187][ T5036] csum_tree_block+0x35f/0x5d0 [ 183.968236][ T5036] btree_csum_one_bio+0x4d5/0xeb0 [ 183.973704][ T5036] btrfs_submit_bio+0x1eb6/0x2930 [ 183.979053][ T5036] write_one_eb+0x13fa/0x1570 [ 183.984316][ T5036] btree_write_cache_pages+0x1d2a/0x29a0 [ 183.990271][ T5036] btree_writepages+0x84/0x270 [ 183.995514][ T5036] do_writepages+0x427/0xc30 [ 184.000420][ T5036] filemap_fdatawrite_wbc+0x1d8/0x270 [ 184.006144][ T5036] filemap_fdatawrite_range+0xe1/0x110 [ 184.011895][ T5036] btrfs_write_marked_extents+0x2e7/0x620 [ 184.018070][ T5036] btrfs_sync_log+0x9fd/0x3830 [ 184.023214][ T5036] btrfs_sync_file+0x144c/0x1c60 [ 184.028437][ T5036] vfs_fsync_range+0x20d/0x270 [ 184.033647][ T5036] btrfs_do_write_iter+0x1c5f/0x2270 [ 184.039233][ T5036] btrfs_file_write_iter+0x38/0x50 [ 184.044938][ T5036] do_iter_readv_writev+0x7e6/0x960 [ 184.050455][ T5036] vfs_writev+0x574/0x1450 [ 184.055361][ T5036] do_writev+0x251/0x5c0 [ 184.059851][ T5036] __x64_sys_writev+0x98/0xe0 [ 184.064950][ T5036] x64_sys_call+0x23dc/0x3b50 [ 184.069929][ T5036] do_syscall_64+0xcf/0x1e0 [ 184.074949][ T5036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.081141][ T5036] [ 184.083734][ T5036] Uninit was created at: [ 184.088267][ T5036] __alloc_pages+0x9d6/0xe70 [ 184.093252][ T5036] __alloc_pages_bulk+0x19e/0x21e0 [ 184.098674][ T5036] alloc_eb_folio_array+0x19b/0x760 [ 184.104358][ T5036] alloc_extent_buffer+0x965/0x3ad0 [ 184.109827][ T5036] btrfs_find_create_tree_block+0x46/0x60 [ 184.116008][ T5036] btrfs_alloc_tree_block+0x35c/0x17c0 [ 184.121732][ T5036] btrfs_add_log_tree+0x1b7/0x7a0 [ 184.127164][ T5036] btrfs_log_inode_parent+0x9b6/0x1dd0 [ 184.132920][ T5036] btrfs_log_dentry_safe+0x9a/0x100 [ 184.138628][ T5036] btrfs_sync_file+0x126c/0x1c60 [ 184.144217][ T5036] vfs_fsync_range+0x20d/0x270 [ 184.149269][ T5036] btrfs_do_write_iter+0x1c5f/0x2270 [ 184.155013][ T5036] btrfs_file_write_iter+0x38/0x50 [ 184.160413][ T5036] do_iter_readv_writev+0x7e6/0x960 [ 184.166099][ T5036] vfs_writev+0x574/0x1450 [ 184.170747][ T5036] do_writev+0x251/0x5c0 [ 184.175418][ T5036] __x64_sys_writev+0x98/0xe0 [ 184.180384][ T5036] x64_sys_call+0x23dc/0x3b50 [ 184.185431][ T5036] do_syscall_64+0xcf/0x1e0 [ 184.190229][ T5036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.196534][ T5036] [ 184.198991][ T5036] CPU: 1 PID: 5036 Comm: syz-executor761 Not tainted 6.9.0-rc7-syzkaller-00023-g6d7ddd805123 #0 [ 184.209866][ T5036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 184.220214][ T5036] ===================================================== [ 184.227541][ T5036] Disabling lock debugging due to kernel taint [ 184.233931][ T5036] Kernel panic - not syncing: kmsan.panic set ... [ 184.240516][ T5036] CPU: 1 PID: 5036 Comm: syz-executor761 Tainted: G B 6.9.0-rc7-syzkaller-00023-g6d7ddd805123 #0 [ 184.252668][ T5036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 184.262939][ T5036] Call Trace: [ 184.266379][ T5036] [ 184.269467][ T5036] dump_stack_lvl+0x216/0x2d0 [ 184.274418][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.280485][ T5036] dump_stack+0x1e/0x30 [ 184.284899][ T5036] panic+0x4e2/0xcd0 [ 184.289074][ T5036] ? kmsan_get_metadata+0x51/0x1d0 [ 184.294456][ T5036] kmsan_report+0x2d5/0x2e0 [ 184.299299][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.305376][ T5036] ? __msan_warning+0x95/0x120 [ 184.310455][ T5036] ? __crc32c_le_base+0x43c/0xd80 [ 184.315837][ T5036] ? chksum_update+0x5b/0xd0 [ 184.320683][ T5036] ? crypto_shash_update+0x79/0xa0 [ 184.326106][ T5036] ? csum_tree_block+0x35f/0x5d0 [ 184.331344][ T5036] ? btree_csum_one_bio+0x4d5/0xeb0 [ 184.336821][ T5036] ? btrfs_submit_bio+0x1eb6/0x2930 [ 184.342403][ T5036] ? write_one_eb+0x13fa/0x1570 [ 184.347547][ T5036] ? btree_write_cache_pages+0x1d2a/0x29a0 [ 184.353638][ T5036] ? btree_writepages+0x84/0x270 [ 184.358833][ T5036] ? do_writepages+0x427/0xc30 [ 184.363933][ T5036] ? filemap_fdatawrite_wbc+0x1d8/0x270 [ 184.369755][ T5036] ? filemap_fdatawrite_range+0xe1/0x110 [ 184.375676][ T5036] ? btrfs_write_marked_extents+0x2e7/0x620 [ 184.381873][ T5036] ? btrfs_sync_log+0x9fd/0x3830 [ 184.387112][ T5036] ? btrfs_sync_file+0x144c/0x1c60 [ 184.392513][ T5036] ? vfs_fsync_range+0x20d/0x270 [ 184.397737][ T5036] ? btrfs_do_write_iter+0x1c5f/0x2270 [ 184.403505][ T5036] ? btrfs_file_write_iter+0x38/0x50 [ 184.409102][ T5036] ? do_iter_readv_writev+0x7e6/0x960 [ 184.414783][ T5036] ? vfs_writev+0x574/0x1450 [ 184.419619][ T5036] ? do_writev+0x251/0x5c0 [ 184.424279][ T5036] ? __x64_sys_writev+0x98/0xe0 [ 184.429424][ T5036] ? x64_sys_call+0x23dc/0x3b50 [ 184.434566][ T5036] ? do_syscall_64+0xcf/0x1e0 [ 184.439516][ T5036] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.445905][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.451459][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.456927][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.463022][ T5036] ? __module_address+0xef/0x7e0 [ 184.468270][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.474338][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.479793][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.485909][ T5036] __msan_warning+0x95/0x120 [ 184.490844][ T5036] __crc32c_le_base+0x43c/0xd80 [ 184.495984][ T5036] chksum_update+0x5b/0xd0 [ 184.500801][ T5036] ? __pfx_chksum_update+0x10/0x10 [ 184.506305][ T5036] crypto_shash_update+0x79/0xa0 [ 184.511572][ T5036] csum_tree_block+0x35f/0x5d0 [ 184.516636][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.522096][ T5036] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 184.528705][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.534171][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.540277][ T5036] ? memcmp+0x61/0x1c0 [ 184.544697][ T5036] ? memcmp_extent_buffer+0x139/0x690 [ 184.550383][ T5036] ? btrfs_folio_test_uptodate+0x2ad/0x5d0 [ 184.556527][ T5036] btree_csum_one_bio+0x4d5/0xeb0 [ 184.561976][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.568154][ T5036] btrfs_submit_bio+0x1eb6/0x2930 [ 184.573503][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.578955][ T5036] ? kmsan_get_shadow_origin_ptr+0x38/0xb0 [ 184.585028][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.590540][ T5036] write_one_eb+0x13fa/0x1570 [ 184.595550][ T5036] btree_write_cache_pages+0x1d2a/0x29a0 [ 184.601471][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.606940][ T5036] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 184.613534][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.619004][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.625092][ T5036] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 184.631227][ T5036] ? stack_depot_save_flags+0x66d/0x6e0 [ 184.637112][ T5036] ? free_extent_state+0xf5/0x2f0 [ 184.642433][ T5036] ? vfs_fsync_range+0x20d/0x270 [ 184.647643][ T5036] ? vfs_writev+0x574/0x1450 [ 184.652539][ T5036] btree_writepages+0x84/0x270 [ 184.657570][ T5036] ? __pfx_btree_writepages+0x10/0x10 [ 184.663204][ T5036] do_writepages+0x427/0xc30 [ 184.668113][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.673563][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.679038][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.685162][ T5036] filemap_fdatawrite_wbc+0x1d8/0x270 [ 184.690919][ T5036] filemap_fdatawrite_range+0xe1/0x110 [ 184.696735][ T5036] btrfs_write_marked_extents+0x2e7/0x620 [ 184.702779][ T5036] btrfs_sync_log+0x9fd/0x3830 [ 184.707838][ T5036] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 184.714413][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.719886][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.725347][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.731450][ T5036] ? call_rcu+0x79/0x920 [ 184.735959][ T5036] ? filter_irq_stacks+0x164/0x1a0 [ 184.741521][ T5036] ? stack_depot_save_flags+0x2c/0x6e0 [ 184.747303][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.752769][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.758245][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.764316][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.769812][ T5036] ? __pfx_autoremove_wake_function+0x10/0x10 [ 184.776213][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.782308][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.787821][ T5036] btrfs_sync_file+0x144c/0x1c60 [ 184.793093][ T5036] ? __pfx_btrfs_sync_file+0x10/0x10 [ 184.798667][ T5036] vfs_fsync_range+0x20d/0x270 [ 184.803723][ T5036] btrfs_do_write_iter+0x1c5f/0x2270 [ 184.809324][ T5036] ? filter_irq_stacks+0x60/0x1a0 [ 184.814686][ T5036] btrfs_file_write_iter+0x38/0x50 [ 184.820099][ T5036] ? __pfx_btrfs_file_write_iter+0x10/0x10 [ 184.826245][ T5036] do_iter_readv_writev+0x7e6/0x960 [ 184.831908][ T5036] ? __pfx_btrfs_file_write_iter+0x10/0x10 [ 184.838107][ T5036] vfs_writev+0x574/0x1450 [ 184.842826][ T5036] ? do_writev+0xb5/0x5c0 [ 184.847416][ T5036] ? filter_irq_stacks+0x60/0x1a0 [ 184.852811][ T5036] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 184.859360][ T5036] ? kmsan_get_metadata+0x146/0x1d0 [ 184.864750][ T5036] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.870764][ T5036] do_writev+0x251/0x5c0 [ 184.875285][ T5036] __x64_sys_writev+0x98/0xe0 [ 184.880166][ T5036] x64_sys_call+0x23dc/0x3b50 [ 184.885070][ T5036] do_syscall_64+0xcf/0x1e0 [ 184.889822][ T5036] ? clear_bhb_loop+0x25/0x80 [ 184.894779][ T5036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.900921][ T5036] RIP: 0033:0x7fd86c9d7b59 [ 184.905493][ T5036] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 184.925371][ T5036] RSP: 002b:00007fff2530b598 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 184.934096][ T5036] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd86c9d7b59 [ 184.942297][ T5036] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: 0000000000000005 [ 184.950495][ T5036] RBP: 00007fd86ca4f5f0 R08: 00005555873b94c0 R09: 00005555873b94c0 [ 184.958705][ T5036] R10: 00005555873b94c0 R11: 0000000000000246 R12: 00007fff2530b5c0 [ 184.966918][ T5036] R13: 00007fff2530b7e8 R14: 431bde82d7b634db R15: 00007fd86ca2003b [ 184.975135][ T5036] [ 184.978682][ T5036] Kernel Offset: disabled [ 184.983145][ T5036] Rebooting in 86400 seconds..