[ OK ] Started OpenBSD Secure Shell server. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.176' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 34.210100] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 [ 34.228770] BTRFS info (device loop0): using free space tree [ 34.235792] BTRFS info (device loop0): has skinny extents [ 34.280054] FAULT_INJECTION: forcing a failure. [ 34.280054] name failslab, interval 1, probability 0, space 0, times 1 [ 34.292748] CPU: 0 PID: 8117 Comm: syz-executor343 Not tainted 4.19.211-syzkaller #0 [ 34.300736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 34.310099] Call Trace: [ 34.312678] dump_stack+0x1fc/0x2ef [ 34.316291] should_fail.cold+0xa/0xf [ 34.320084] ? setup_fault_attr+0x200/0x200 [ 34.324441] ? lock_acquire+0x170/0x3c0 [ 34.328430] __should_failslab+0x115/0x180 [ 34.332661] should_failslab+0x5/0x10 [ 34.336449] kmem_cache_alloc_trace+0x284/0x380 [ 34.341500] ulist_alloc+0x5a/0x160 [ 34.345115] btrfs_quota_enable+0x19c/0x10b0 [ 34.349511] ? __might_fault+0x11f/0x1d0 [ 34.353565] ? btrfs_free_qgroup_config+0xc0/0xc0 [ 34.358393] ? lock_downgrade+0x720/0x720 [ 34.362517] ? lock_acquire+0x170/0x3c0 [ 34.366473] ? __might_fault+0xef/0x1d0 [ 34.370427] ? lock_acquire+0x170/0x3c0 [ 34.374393] ? btrfs_ioctl+0x3d12/0x76d0 [ 34.378441] btrfs_ioctl+0x622c/0x76d0 [ 34.382322] ? mark_held_locks+0xf0/0xf0 [ 34.386379] ? _kstrtoull+0x297/0x540 [ 34.390161] ? btrfs_ioctl_get_supported_features+0x50/0x50 [ 34.395852] ? _copy_from_user+0xd2/0x130 [ 34.400549] ? get_pid_task+0xcd/0x190 [ 34.404445] ? check_preemption_disabled+0x41/0x280 [ 34.409444] ? lock_downgrade+0x720/0x720 [ 34.413579] ? check_preemption_disabled+0x41/0x280 [ 34.418589] ? get_pid_task+0xf4/0x190 [ 34.422469] ? proc_fail_nth_write+0x95/0x1d0 [ 34.426951] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 34.431864] ? debug_check_no_obj_freed+0x201/0x490 [ 34.436867] ? __vfs_write+0xff/0x770 [ 34.440649] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 34.445574] ? common_file_perm+0x4e5/0x850 [ 34.449885] ? btrfs_ioctl_get_supported_features+0x50/0x50 [ 34.455588] do_vfs_ioctl+0xcdb/0x12e0 [ 34.459469] ? vfs_write+0x3d7/0x540 [ 34.463165] ? ioctl_preallocate+0x200/0x200 [ 34.467557] ? lock_downgrade+0x720/0x720 [ 34.471825] ? check_preemption_disabled+0x41/0x280 [ 34.476849] ? vfs_write+0x393/0x540 [ 34.480556] ? ksys_write+0x1c8/0x2a0 [ 34.484345] ksys_ioctl+0x9b/0xc0 [ 34.487791] __x64_sys_ioctl+0x6f/0xb0 [ 34.491661] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 34.496223] do_syscall_64+0xf9/0x620 [ 34.500011] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.505181] RIP: 0033:0x7f989984e209 [ 34.508876] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 34.527769] RSP: 002b:00007ffc339da0e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 34.535466] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f989984e209 [ 34.542765] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004 [ 34.550027] RBP: 00007ffc339da100 R08: 0000000000000001 R09: 00007ffc339da080 [ 34.557381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 34.564642] R13: 00007ffc339da210 R14: 431bde82d7b634db R15: 00007ffc339da110 [ 34.572522] ------------[ cut here ]------------ [ 34.577949] WARNING: CPU: 0 PID: 8117 at fs/btrfs/qgroup.c:915 btrfs_quota_enable+0xf17/0x10b0 [ 34.586706] Kernel panic - not syncing: panic_on_warn set ... [ 34.586706] [ 34.594076] CPU: 0 PID: 8117 Comm: syz-executor343 Not tainted 4.19.211-syzkaller #0 [ 34.601951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 34.611292] Call Trace: [ 34.613868] dump_stack+0x1fc/0x2ef [ 34.617479] panic+0x26a/0x50e [ 34.620657] ? __warn_printk+0xf3/0xf3 [ 34.624530] ? btrfs_quota_enable+0xf17/0x10b0 [ 34.629095] ? __probe_kernel_read+0x130/0x1b0 [ 34.633663] ? __warn.cold+0x5/0x5a [ 34.637276] ? __warn+0xe4/0x200 [ 34.640634] ? btrfs_quota_enable+0xf17/0x10b0 [ 34.645198] __warn.cold+0x20/0x5a [ 34.648723] ? btrfs_quota_enable+0xf17/0x10b0 [ 34.653295] report_bug+0x262/0x2b0 [ 34.656914] do_error_trap+0x1d7/0x310 [ 34.660782] ? math_error+0x310/0x310 [ 34.664567] ? irq_work_claim+0xa6/0xc0 [ 34.668531] ? irq_work_queue+0x29/0x80 [ 34.672493] ? error_entry+0x72/0xd0 [ 34.676189] ? trace_hardirqs_off_caller+0x6e/0x210 [ 34.681191] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.686018] invalid_op+0x14/0x20 [ 34.689455] RIP: 0010:btrfs_quota_enable+0xf17/0x10b0 [ 34.694626] Code: 92 c5 31 ff 89 ee e8 48 0e 65 fe 40 84 ed 0f 85 ad a0 fd 04 e8 0a 0d 65 fe be f4 ff ff ff 48 c7 c7 80 be a5 88 e8 de 44 f5 04 <0f> 0b e9 90 a0 fd 04 4c 89 f7 e8 da e9 9a fe e9 5f fb ff ff e8 e0 [ 34.713511] RSP: 0018:ffff8880b14b7910 EFLAGS: 00010286 [ 34.718856] RAX: 0000000000000000 RBX: ffff88809232c180 RCX: 0000000000000000 [ 34.726105] RDX: 0000000000000000 RSI: ffffffff814dff01 RDI: ffffed1016296f14 [ 34.733392] RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000 [ 34.740651] R10: 0000000000000005 R11: 0000000000000000 R12: ffff8880b292d200 [ 34.747906] R13: ffff8880b3ce1080 R14: ffff8880ae167738 R15: ffff8880952f6000 [ 34.755181] ? vprintk_func+0x81/0x180 [ 34.759061] ? __might_fault+0x11f/0x1d0 [ 34.763106] ? btrfs_free_qgroup_config+0xc0/0xc0 [ 34.767939] ? lock_downgrade+0x720/0x720 [ 34.772079] ? lock_acquire+0x170/0x3c0 [ 34.776054] ? __might_fault+0xef/0x1d0 [ 34.780020] ? lock_acquire+0x170/0x3c0 [ 34.783997] ? btrfs_ioctl+0x3d12/0x76d0 [ 34.788048] btrfs_ioctl+0x622c/0x76d0 [ 34.791920] ? mark_held_locks+0xf0/0xf0 [ 34.795970] ? _kstrtoull+0x297/0x540 [ 34.799772] ? btrfs_ioctl_get_supported_features+0x50/0x50 [ 34.805470] ? _copy_from_user+0xd2/0x130 [ 34.809607] ? get_pid_task+0xcd/0x190 [ 34.813482] ? check_preemption_disabled+0x41/0x280 [ 34.818492] ? lock_downgrade+0x720/0x720 [ 34.822638] ? check_preemption_disabled+0x41/0x280 [ 34.827658] ? get_pid_task+0xf4/0x190 [ 34.831535] ? proc_fail_nth_write+0x95/0x1d0 [ 34.836017] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 34.840932] ? debug_check_no_obj_freed+0x201/0x490 [ 34.845967] ? __vfs_write+0xff/0x770 [ 34.849750] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 34.854664] ? common_file_perm+0x4e5/0x850 [ 34.858973] ? btrfs_ioctl_get_supported_features+0x50/0x50 [ 34.864670] do_vfs_ioctl+0xcdb/0x12e0 [ 34.868541] ? vfs_write+0x3d7/0x540 [ 34.872242] ? ioctl_preallocate+0x200/0x200 [ 34.876635] ? lock_downgrade+0x720/0x720 [ 34.880778] ? check_preemption_disabled+0x41/0x280 [ 34.885802] ? vfs_write+0x393/0x540 [ 34.889507] ? ksys_write+0x1c8/0x2a0 [ 34.893304] ksys_ioctl+0x9b/0xc0 [ 34.896747] __x64_sys_ioctl+0x6f/0xb0 [ 34.900633] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 34.905215] do_syscall_64+0xf9/0x620 [ 34.909005] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.914309] RIP: 0033:0x7f989984e209 [ 34.918017] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 34.936912] RSP: 002b:00007ffc339da0e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 34.944607] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f989984e209 [ 34.951868] RDX: 0000000020000000 RSI: 00000000c0109428 RDI: 0000000000000004 [ 34.959120] RBP: 00007ffc339da100 R08: 0000000000000001 R09: 00007ffc339da080 [ 34.966372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 34.973623] R13: 00007ffc339da210 R14: 431bde82d7b634db R15: 00007ffc339da110 [ 34.981124] Kernel Offset: disabled [ 34.984791] Rebooting in 86400 seconds..