][T14701]  ext4_file_write_iter+0x16a2/0x1bc0
[  585.622240][T14701]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  585.622268][T14701]  ? __asan_memset+0x22/0x50
[  585.622298][T14701]  iter_file_splice_write+0x937/0x1000
[  585.622344][T14701]  ? __pfx_iter_file_splice_write+0x10/0x10
[  585.622368][T14701]  ? rcu_read_lock_any_held+0xb3/0x120
[  585.622408][T14701]  ? __pfx_iter_file_splice_write+0x10/0x10
[  585.622428][T14701]  direct_splice_actor+0xfe/0x160
[  585.622452][T14701]  splice_direct_to_actor+0x5a8/0xcc0
[  585.622494][T14701]  ? __pfx_direct_splice_actor+0x10/0x10
[  585.622513][T14701]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  585.622546][T14701]  do_splice_direct+0x181/0x270
[  585.622568][T14701]  ? __pfx_do_splice_direct+0x10/0x10
[  585.622588][T14701]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  585.622617][T14701]  ? rw_verify_area+0x258/0x650
[  585.622649][T14701]  do_sendfile+0x4da/0x7e0
[  585.622672][T14701]  ? __pfx_vfs_write+0x10/0x10
[  585.622707][T14701]  ? __pfx_do_sendfile+0x10/0x10
[  585.622744][T14701]  __se_sys_sendfile64+0x13e/0x190
[  585.622769][T14701]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  585.622798][T14701]  ? do_syscall_64+0xbe/0x3b0
[  585.622828][T14701]  do_syscall_64+0xfa/0x3b0
[  585.622850][T14701]  ? lockdep_hardirqs_on+0x9c/0x150
[  585.622873][T14701]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  585.622891][T14701]  ? clear_bhb_loop+0x60/0xb0
[  585.622916][T14701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  585.622935][T14701] RIP: 0033:0x7f5846d17449
[  585.622954][T14701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  585.622971][T14701] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  585.622992][T14701] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  585.623007][T14701] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  585.623019][T14701] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  585.623040][T14701] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  585.623054][T14701] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  585.623089][T14701]  </TASK>
[  586.083596][   T30] audit: type=1800 audit(1748505673.232:718): pid=14702 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  586.106085][T14702] FAULT_INJECTION: forcing a failure.
[  586.106085][T14702] name failslab, interval 1, probability 0, space 0, times 0
[  586.123953][T14702] CPU: 1 UID: 0 PID: 14702 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  586.123983][T14702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  586.123995][T14702] Call Trace:
[  586.124003][T14702]  <TASK>
[  586.124013][T14702]  dump_stack_lvl+0x189/0x250
[  586.124045][T14702]  ? __pfx____ratelimit+0x10/0x10
[  586.124068][T14702]  ? __pfx_dump_stack_lvl+0x10/0x10
[  586.124094][T14702]  ? __pfx__printk+0x10/0x10
[  586.124119][T14702]  ? __pfx___might_resched+0x10/0x10
[  586.124141][T14702]  ? fs_reclaim_acquire+0x7d/0x100
[  586.124169][T14702]  should_fail_ex+0x414/0x560
[  586.124197][T14702]  should_failslab+0xa8/0x100
[  586.124219][T14702]  __kmalloc_noprof+0xcb/0x4f0
[  586.124237][T14702]  ? ext4_find_extent+0x207/0xcc0
[  586.124270][T14702]  ext4_find_extent+0x207/0xcc0
[  586.124299][T14702]  ext4_ext_map_blocks+0x288/0x6ac0
[  586.124329][T14702]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  586.124362][T14702]  ? __lock_acquire+0xab9/0xd20
[  586.124396][T14702]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  586.124447][T14702]  ext4_map_blocks+0x931/0x18d0
[  586.124488][T14702]  ? __pfx_ext4_map_blocks+0x10/0x10
[  586.124511][T14702]  ? trace_jbd2_handle_start+0x8a/0x220
[  586.124557][T14702]  ext4_iomap_begin+0xe67/0x18f0
[  586.124603][T14702]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  586.124645][T14702]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  586.124669][T14702]  iomap_iter+0x53a/0xdf0
[  586.124707][T14702]  __iomap_dio_rw+0xc67/0x1e40
[  586.124732][T14702]  ? ext4_file_write_iter+0x1741/0x1bc0
[  586.124784][T14702]  ? __pfx___iomap_dio_rw+0x10/0x10
[  586.124846][T14702]  ? jbd2_journal_stop+0x8ee/0xd80
[  586.124880][T14702]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  586.124905][T14702]  ? __pfx_ext4_orphan_add+0x10/0x10
[  586.124932][T14702]  iomap_dio_rw+0x45/0xb0
[  586.124964][T14702]  ext4_file_write_iter+0x16a2/0x1bc0
[  586.125012][T14702]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  586.125042][T14702]  ? __asan_memset+0x22/0x50
[  586.125075][T14702]  iter_file_splice_write+0x937/0x1000
[  586.125122][T14702]  ? __pfx_iter_file_splice_write+0x10/0x10
[  586.125145][T14702]  ? rcu_read_lock_any_held+0xb3/0x120
[  586.125186][T14702]  ? __pfx_iter_file_splice_write+0x10/0x10
[  586.125206][T14702]  direct_splice_actor+0xfe/0x160
[  586.125227][T14702]  splice_direct_to_actor+0x5a8/0xcc0
[  586.125272][T14702]  ? __pfx_direct_splice_actor+0x10/0x10
[  586.125290][T14702]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  586.125318][T14702]  do_splice_direct+0x181/0x270
[  586.125338][T14702]  ? __pfx_do_splice_direct+0x10/0x10
[  586.125355][T14702]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  586.125381][T14702]  ? rw_verify_area+0x258/0x650
[  586.125410][T14702]  do_sendfile+0x4da/0x7e0
[  586.125428][T14702]  ? __pfx_vfs_write+0x10/0x10
[  586.125460][T14702]  ? __pfx_do_sendfile+0x10/0x10
[  586.125495][T14702]  __se_sys_sendfile64+0x13e/0x190
[  586.125518][T14702]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  586.125545][T14702]  ? do_syscall_64+0xbe/0x3b0
[  586.125572][T14702]  do_syscall_64+0xfa/0x3b0
[  586.125593][T14702]  ? lockdep_hardirqs_on+0x9c/0x150
[  586.125615][T14702]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.125635][T14702]  ? clear_bhb_loop+0x60/0xb0
[  586.125667][T14702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.125685][T14702] RIP: 0033:0x7f5846d17449
[  586.125703][T14702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  586.125720][T14702] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  586.125740][T14702] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  586.125763][T14702] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  586.125775][T14702] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  586.125786][T14702] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  586.125798][T14702] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  586.125831][T14702]  </TASK>
[  586.544536][T14703] loop0: detected capacity change from 0 to 32768
[  586.552986][T14703] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14703)
[  586.571519][T14703] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  586.583072][T14703] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  586.592780][T14703] BTRFS info (device loop0): using free-space-tree
[  586.672225][   T30] audit: type=1800 audit(1748505673.822:719): pid=14703 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  586.673594][T14703] FAULT_INJECTION: forcing a failure.
[  586.673594][T14703] name failslab, interval 1, probability 0, space 0, times 0
[  586.706125][T14703] CPU: 0 UID: 0 PID: 14703 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  586.706152][T14703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  586.706165][T14703] Call Trace:
[  586.706173][T14703]  <TASK>
[  586.706182][T14703]  dump_stack_lvl+0x189/0x250
[  586.706215][T14703]  ? __pfx____ratelimit+0x10/0x10
[  586.706239][T14703]  ? __pfx_dump_stack_lvl+0x10/0x10
[  586.706277][T14703]  ? __pfx__printk+0x10/0x10
[  586.706299][T14703]  ? __pfx___might_resched+0x10/0x10
[  586.706323][T14703]  ? fs_reclaim_acquire+0x7d/0x100
[  586.706352][T14703]  should_fail_ex+0x414/0x560
[  586.706382][T14703]  should_failslab+0xa8/0x100
[  586.706414][T14703]  kmem_cache_alloc_noprof+0x73/0x3c0
[  586.706436][T14703]  ? alloc_extent_state+0x22/0x2f0
[  586.706463][T14703]  alloc_extent_state+0x22/0x2f0
[  586.706491][T14703]  set_extent_bit+0x270/0x2180
[  586.706519][T14703]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  586.706553][T14703]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  586.706590][T14703]  ? __pfx_set_extent_bit+0x10/0x10
[  586.706620][T14703]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  586.706652][T14703]  btrfs_set_extent_bit+0x38/0x50
[  586.706684][T14703]  btrfs_dirty_folio+0x2e2/0x4d0
[  586.706728][T14703]  btrfs_buffered_write+0xd4d/0x16c0
[  586.706779][T14703]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  586.706805][T14703]  ? up_write+0x1c4/0x420
[  586.706833][T14703]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  586.706868][T14703]  btrfs_direct_write+0x610/0xb10
[  586.706904][T14703]  ? __pfx_btrfs_direct_write+0x10/0x10
[  586.706940][T14703]  btrfs_do_write_iter+0x25f/0x710
[  586.706970][T14703]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  586.706991][T14703]  ? __asan_memset+0x22/0x50
[  586.707025][T14703]  iter_file_splice_write+0x937/0x1000
[  586.707073][T14703]  ? __pfx_iter_file_splice_write+0x10/0x10
[  586.707099][T14703]  ? rcu_read_lock_any_held+0xb3/0x120
[  586.707146][T14703]  ? __pfx_iter_file_splice_write+0x10/0x10
[  586.707168][T14703]  direct_splice_actor+0xfe/0x160
[  586.707193][T14703]  splice_direct_to_actor+0x5a8/0xcc0
[  586.707235][T14703]  ? __pfx_direct_splice_actor+0x10/0x10
[  586.707260][T14703]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  586.707293][T14703]  do_splice_direct+0x181/0x270
[  586.707316][T14703]  ? __pfx_do_splice_direct+0x10/0x10
[  586.707337][T14703]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  586.707367][T14703]  ? rw_verify_area+0x258/0x650
[  586.707400][T14703]  do_sendfile+0x4da/0x7e0
[  586.707424][T14703]  ? __pfx_vfs_write+0x10/0x10
[  586.707459][T14703]  ? __pfx_do_sendfile+0x10/0x10
[  586.707496][T14703]  __se_sys_sendfile64+0x13e/0x190
[  586.707522][T14703]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  586.707567][T14703]  ? do_syscall_64+0xbe/0x3b0
[  586.707595][T14703]  do_syscall_64+0xfa/0x3b0
[  586.707618][T14703]  ? lockdep_hardirqs_on+0x9c/0x150
[  586.707640][T14703]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.707659][T14703]  ? clear_bhb_loop+0x60/0xb0
[  586.707684][T14703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.707703][T14703] RIP: 0033:0x7f5846d17449
[  586.707721][T14703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  586.707739][T14703] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  586.707764][T14703] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  586.707780][T14703] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  586.707799][T14703] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  586.707813][T14703] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  586.707825][T14703] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  586.707855][T14703]  </TASK>
[  587.169967][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  587.265271][T14720] loop0: detected capacity change from 0 to 32768
[  587.274683][T14720] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14720)
[  587.295376][T14720] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  587.307869][T14720] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  587.320762][T14720] BTRFS info (device loop0): using free-space-tree
[  587.355991][   T30] audit: type=1800 audit(1748505674.502:720): pid=14720 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  587.357292][T14720] FAULT_INJECTION: forcing a failure.
[  587.357292][T14720] name failslab, interval 1, probability 0, space 0, times 0
[  587.390398][T14720] CPU: 0 UID: 0 PID: 14720 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  587.390426][T14720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  587.390439][T14720] Call Trace:
[  587.390448][T14720]  <TASK>
[  587.390457][T14720]  dump_stack_lvl+0x189/0x250
[  587.390490][T14720]  ? __pfx____ratelimit+0x10/0x10
[  587.390514][T14720]  ? __pfx_dump_stack_lvl+0x10/0x10
[  587.390546][T14720]  ? __pfx__printk+0x10/0x10
[  587.390568][T14720]  ? __pfx___might_resched+0x10/0x10
[  587.390593][T14720]  ? fs_reclaim_acquire+0x7d/0x100
[  587.390618][T14720]  should_fail_ex+0x414/0x560
[  587.390646][T14720]  should_failslab+0xa8/0x100
[  587.390669][T14720]  kmem_cache_alloc_noprof+0x73/0x3c0
[  587.390688][T14720]  ? alloc_extent_state+0x22/0x2f0
[  587.390717][T14720]  alloc_extent_state+0x22/0x2f0
[  587.390745][T14720]  set_extent_bit+0x270/0x2180
[  587.390770][T14720]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  587.390801][T14720]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  587.390837][T14720]  ? __pfx_set_extent_bit+0x10/0x10
[  587.390864][T14720]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  587.390896][T14720]  btrfs_set_extent_bit+0x38/0x50
[  587.390955][T14720]  btrfs_dirty_folio+0x2e2/0x4d0
[  587.391009][T14720]  btrfs_buffered_write+0xd4d/0x16c0
[  587.391060][T14720]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  587.391092][T14720]  ? up_write+0x1c4/0x420
[  587.391120][T14720]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  587.391155][T14720]  btrfs_direct_write+0x610/0xb10
[  587.391211][T14720]  ? __pfx_btrfs_direct_write+0x10/0x10
[  587.391247][T14720]  btrfs_do_write_iter+0x25f/0x710
[  587.391278][T14720]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  587.391300][T14720]  ? __asan_memset+0x22/0x50
[  587.391334][T14720]  iter_file_splice_write+0x937/0x1000
[  587.391382][T14720]  ? __pfx_iter_file_splice_write+0x10/0x10
[  587.391408][T14720]  ? rcu_read_lock_any_held+0xb3/0x120
[  587.391449][T14720]  ? __pfx_iter_file_splice_write+0x10/0x10
[  587.391470][T14720]  direct_splice_actor+0xfe/0x160
[  587.391495][T14720]  splice_direct_to_actor+0x5a8/0xcc0
[  587.391538][T14720]  ? __pfx_direct_splice_actor+0x10/0x10
[  587.391559][T14720]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  587.391591][T14720]  do_splice_direct+0x181/0x270
[  587.391614][T14720]  ? __pfx_do_splice_direct+0x10/0x10
[  587.391635][T14720]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  587.391664][T14720]  ? rw_verify_area+0x258/0x650
[  587.391697][T14720]  do_sendfile+0x4da/0x7e0
[  587.391720][T14720]  ? __pfx_vfs_write+0x10/0x10
[  587.391756][T14720]  ? __pfx_do_sendfile+0x10/0x10
[  587.391795][T14720]  __se_sys_sendfile64+0x13e/0x190
[  587.391819][T14720]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  587.391846][T14720]  ? do_syscall_64+0xbe/0x3b0
[  587.391872][T14720]  do_syscall_64+0xfa/0x3b0
[  587.391892][T14720]  ? lockdep_hardirqs_on+0x9c/0x150
[  587.391912][T14720]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.391930][T14720]  ? clear_bhb_loop+0x60/0xb0
[  587.391952][T14720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.391969][T14720] RIP: 0033:0x7f5846d17449
[  587.391987][T14720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  587.392002][T14720] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  587.392022][T14720] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  587.392037][T14720] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  587.392049][T14720] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  587.392063][T14720] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  587.392076][T14720] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  587.392106][T14720]  </TASK>
[  587.786986][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  587.932452][T14737] loop0: detected capacity change from 0 to 32768
[  587.942748][T14737] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14737)
[  587.960579][T14737] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  587.971749][T14737] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  587.981483][T14737] BTRFS info (device loop0): using free-space-tree
[  588.015028][   T30] audit: type=1800 audit(1748505675.162:721): pid=14737 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  588.038364][T14737] FAULT_INJECTION: forcing a failure.
[  588.038364][T14737] name failslab, interval 1, probability 0, space 0, times 0
[  588.051491][T14737] CPU: 0 UID: 0 PID: 14737 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  588.051519][T14737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  588.051531][T14737] Call Trace:
[  588.051540][T14737]  <TASK>
[  588.051549][T14737]  dump_stack_lvl+0x189/0x250
[  588.051583][T14737]  ? __pfx____ratelimit+0x10/0x10
[  588.051608][T14737]  ? __pfx_dump_stack_lvl+0x10/0x10
[  588.051637][T14737]  ? __pfx__printk+0x10/0x10
[  588.051660][T14737]  ? __pfx___might_resched+0x10/0x10
[  588.051687][T14737]  ? fs_reclaim_acquire+0x7d/0x100
[  588.051717][T14737]  should_fail_ex+0x414/0x560
[  588.051747][T14737]  should_failslab+0xa8/0x100
[  588.051771][T14737]  kmem_cache_alloc_noprof+0x73/0x3c0
[  588.051791][T14737]  ? alloc_extent_state+0x22/0x2f0
[  588.051823][T14737]  alloc_extent_state+0x22/0x2f0
[  588.051851][T14737]  set_extent_bit+0x270/0x2180
[  588.051879][T14737]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  588.051911][T14737]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  588.051948][T14737]  ? __pfx_set_extent_bit+0x10/0x10
[  588.051979][T14737]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  588.052010][T14737]  btrfs_set_extent_bit+0x38/0x50
[  588.052041][T14737]  btrfs_dirty_folio+0x2e2/0x4d0
[  588.052087][T14737]  btrfs_buffered_write+0xd4d/0x16c0
[  588.052135][T14737]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  588.052157][T14737]  ? up_write+0x1c4/0x420
[  588.052190][T14737]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  588.052221][T14737]  btrfs_direct_write+0x610/0xb10
[  588.052252][T14737]  ? __pfx_btrfs_direct_write+0x10/0x10
[  588.052283][T14737]  btrfs_do_write_iter+0x25f/0x710
[  588.052310][T14737]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  588.052330][T14737]  ? __asan_memset+0x22/0x50
[  588.052363][T14737]  iter_file_splice_write+0x937/0x1000
[  588.052408][T14737]  ? __pfx_iter_file_splice_write+0x10/0x10
[  588.052432][T14737]  ? rcu_read_lock_any_held+0xb3/0x120
[  588.052472][T14737]  ? __pfx_iter_file_splice_write+0x10/0x10
[  588.052493][T14737]  direct_splice_actor+0xfe/0x160
[  588.052516][T14737]  splice_direct_to_actor+0x5a8/0xcc0
[  588.052556][T14737]  ? __pfx_direct_splice_actor+0x10/0x10
[  588.052575][T14737]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  588.052605][T14737]  do_splice_direct+0x181/0x270
[  588.052627][T14737]  ? __pfx_do_splice_direct+0x10/0x10
[  588.052648][T14737]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  588.052677][T14737]  ? rw_verify_area+0x258/0x650
[  588.052709][T14737]  do_sendfile+0x4da/0x7e0
[  588.052732][T14737]  ? __pfx_vfs_write+0x10/0x10
[  588.052766][T14737]  ? __pfx_do_sendfile+0x10/0x10
[  588.052802][T14737]  __se_sys_sendfile64+0x13e/0x190
[  588.052827][T14737]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  588.052857][T14737]  ? do_syscall_64+0xbe/0x3b0
[  588.052886][T14737]  do_syscall_64+0xfa/0x3b0
[  588.052908][T14737]  ? lockdep_hardirqs_on+0x9c/0x150
[  588.052930][T14737]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.052947][T14737]  ? clear_bhb_loop+0x60/0xb0
[  588.052970][T14737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.052988][T14737] RIP: 0033:0x7f5846d17449
[  588.053005][T14737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  588.053022][T14737] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  588.053043][T14737] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  588.053058][T14737] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  588.053069][T14737] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  588.053082][T14737] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  588.053096][T14737] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  588.053128][T14737]  </TASK>
[  588.513263][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  588.614110][   T30] audit: type=1800 audit(1748505675.762:722): pid=14754 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  588.615267][T14754] FAULT_INJECTION: forcing a failure.
[  588.615267][T14754] name failslab, interval 1, probability 0, space 0, times 0
[  588.648512][T14754] CPU: 0 UID: 0 PID: 14754 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  588.648539][T14754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  588.648551][T14754] Call Trace:
[  588.648559][T14754]  <TASK>
[  588.648568][T14754]  dump_stack_lvl+0x189/0x250
[  588.648599][T14754]  ? __pfx____ratelimit+0x10/0x10
[  588.648622][T14754]  ? __pfx_dump_stack_lvl+0x10/0x10
[  588.648648][T14754]  ? __pfx__printk+0x10/0x10
[  588.648674][T14754]  ? __pfx___might_resched+0x10/0x10
[  588.648700][T14754]  ? fs_reclaim_acquire+0x7d/0x100
[  588.648731][T14754]  should_fail_ex+0x414/0x560
[  588.648762][T14754]  should_failslab+0xa8/0x100
[  588.648785][T14754]  kmem_cache_alloc_noprof+0x73/0x3c0
[  588.648805][T14754]  ? ext4_mb_new_blocks+0x559/0x46a0
[  588.648837][T14754]  ext4_mb_new_blocks+0x559/0x46a0
[  588.648879][T14754]  ? trace_kmalloc+0x1f/0xd0
[  588.648896][T14754]  ? __kmalloc_noprof+0x29b/0x4f0
[  588.648921][T14754]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  588.648948][T14754]  ? ext4_ext_check_overlap+0x162/0x580
[  588.648969][T14754]  ? ext4_inode_to_goal_block+0x31a/0x460
[  588.649001][T14754]  ext4_ext_map_blocks+0x161a/0x6ac0
[  588.649049][T14754]  ? __lock_acquire+0xab9/0xd20
[  588.649084][T14754]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  588.649148][T14754]  ext4_map_blocks+0x931/0x18d0
[  588.649192][T14754]  ? __pfx_ext4_map_blocks+0x10/0x10
[  588.649216][T14754]  ? trace_jbd2_handle_start+0x8a/0x220
[  588.649263][T14754]  ext4_iomap_begin+0xe67/0x18f0
[  588.649313][T14754]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  588.649359][T14754]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  588.649386][T14754]  iomap_iter+0x53a/0xdf0
[  588.649426][T14754]  __iomap_dio_rw+0xc67/0x1e40
[  588.649454][T14754]  ? ext4_file_write_iter+0x1741/0x1bc0
[  588.649505][T14754]  ? __pfx___iomap_dio_rw+0x10/0x10
[  588.649570][T14754]  ? jbd2_journal_stop+0x8ee/0xd80
[  588.649616][T14754]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  588.649643][T14754]  ? __pfx_ext4_orphan_add+0x10/0x10
[  588.649669][T14754]  iomap_dio_rw+0x45/0xb0
[  588.649702][T14754]  ext4_file_write_iter+0x16a2/0x1bc0
[  588.649753][T14754]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  588.649785][T14754]  ? __asan_memset+0x22/0x50
[  588.649819][T14754]  iter_file_splice_write+0x937/0x1000
[  588.649866][T14754]  ? __pfx_iter_file_splice_write+0x10/0x10
[  588.649892][T14754]  ? rcu_read_lock_any_held+0xb3/0x120
[  588.649934][T14754]  ? __pfx_iter_file_splice_write+0x10/0x10
[  588.649956][T14754]  direct_splice_actor+0xfe/0x160
[  588.649981][T14754]  splice_direct_to_actor+0x5a8/0xcc0
[  588.650024][T14754]  ? __pfx_direct_splice_actor+0x10/0x10
[  588.650044][T14754]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  588.650076][T14754]  do_splice_direct+0x181/0x270
[  588.650100][T14754]  ? __pfx_do_splice_direct+0x10/0x10
[  588.650128][T14754]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  588.650156][T14754]  ? rw_verify_area+0x258/0x650
[  588.650188][T14754]  do_sendfile+0x4da/0x7e0
[  588.650211][T14754]  ? __pfx_vfs_write+0x10/0x10
[  588.650247][T14754]  ? __pfx_do_sendfile+0x10/0x10
[  588.650286][T14754]  __se_sys_sendfile64+0x13e/0x190
[  588.650312][T14754]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  588.650341][T14754]  ? do_syscall_64+0xbe/0x3b0
[  588.650370][T14754]  do_syscall_64+0xfa/0x3b0
[  588.650393][T14754]  ? lockdep_hardirqs_on+0x9c/0x150
[  588.650416][T14754]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.650436][T14754]  ? clear_bhb_loop+0x60/0xb0
[  588.650461][T14754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.650480][T14754] RIP: 0033:0x7f5846d17449
[  588.650499][T14754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  588.650517][T14754] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  588.650538][T14754] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  588.650554][T14754] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  588.650565][T14754] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  588.650579][T14754] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  588.650593][T14754] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  588.650626][T14754]  </TASK>
[  589.085479][T14755] FAULT_INJECTION: forcing a failure.
[  589.085479][T14755] name failslab, interval 1, probability 0, space 0, times 0
[  589.104717][   T30] audit: type=1800 audit(1748505676.232:723): pid=14755 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  589.106092][T14755] CPU: 0 UID: 0 PID: 14755 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  589.106122][T14755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  589.106135][T14755] Call Trace:
[  589.106145][T14755]  <TASK>
[  589.106155][T14755]  dump_stack_lvl+0x189/0x250
[  589.106188][T14755]  ? __pfx____ratelimit+0x10/0x10
[  589.106211][T14755]  ? __pfx_dump_stack_lvl+0x10/0x10
[  589.106240][T14755]  ? __pfx__printk+0x10/0x10
[  589.106266][T14755]  ? __pfx___might_resched+0x10/0x10
[  589.106289][T14755]  ? fs_reclaim_acquire+0x7d/0x100
[  589.106317][T14755]  should_fail_ex+0x414/0x560
[  589.106348][T14755]  should_failslab+0xa8/0x100
[  589.106372][T14755]  kmem_cache_alloc_noprof+0x73/0x3c0
[  589.106391][T14755]  ? ext4_mb_new_blocks+0x559/0x46a0
[  589.106423][T14755]  ext4_mb_new_blocks+0x559/0x46a0
[  589.106470][T14755]  ? trace_kmalloc+0x1f/0xd0
[  589.106487][T14755]  ? __kmalloc_noprof+0x29b/0x4f0
[  589.106512][T14755]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  589.106540][T14755]  ? ext4_ext_check_overlap+0x162/0x580
[  589.106563][T14755]  ? ext4_inode_to_goal_block+0x31a/0x460
[  589.106594][T14755]  ext4_ext_map_blocks+0x161a/0x6ac0
[  589.106641][T14755]  ? __lock_acquire+0xab9/0xd20
[  589.106676][T14755]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  589.106728][T14755]  ext4_map_blocks+0x931/0x18d0
[  589.106769][T14755]  ? __pfx_ext4_map_blocks+0x10/0x10
[  589.106794][T14755]  ? trace_jbd2_handle_start+0x8a/0x220
[  589.106841][T14755]  ext4_iomap_begin+0xe67/0x18f0
[  589.106890][T14755]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  589.106933][T14755]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  589.106959][T14755]  iomap_iter+0x53a/0xdf0
[  589.106998][T14755]  __iomap_dio_rw+0xc67/0x1e40
[  589.107032][T14755]  ? ext4_file_write_iter+0x1741/0x1bc0
[  589.107085][T14755]  ? __pfx___iomap_dio_rw+0x10/0x10
[  589.107149][T14755]  ? jbd2_journal_stop+0x8ee/0xd80
[  589.107184][T14755]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  589.107210][T14755]  ? __pfx_ext4_orphan_add+0x10/0x10
[  589.107238][T14755]  iomap_dio_rw+0x45/0xb0
[  589.107272][T14755]  ext4_file_write_iter+0x16a2/0x1bc0
[  589.107324][T14755]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  589.107355][T14755]  ? __asan_memset+0x22/0x50
[  589.107388][T14755]  iter_file_splice_write+0x937/0x1000
[  589.107435][T14755]  ? __pfx_iter_file_splice_write+0x10/0x10
[  589.107460][T14755]  ? rcu_read_lock_any_held+0xb3/0x120
[  589.107512][T14755]  ? __pfx_iter_file_splice_write+0x10/0x10
[  589.107532][T14755]  direct_splice_actor+0xfe/0x160
[  589.107557][T14755]  splice_direct_to_actor+0x5a8/0xcc0
[  589.107598][T14755]  ? __pfx_direct_splice_actor+0x10/0x10
[  589.107618][T14755]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  589.107649][T14755]  do_splice_direct+0x181/0x270
[  589.107671][T14755]  ? __pfx_do_splice_direct+0x10/0x10
[  589.107692][T14755]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  589.107720][T14755]  ? rw_verify_area+0x258/0x650
[  589.107752][T14755]  do_sendfile+0x4da/0x7e0
[  589.107779][T14755]  ? __pfx_vfs_write+0x10/0x10
[  589.107813][T14755]  ? __pfx_do_sendfile+0x10/0x10
[  589.107851][T14755]  __se_sys_sendfile64+0x13e/0x190
[  589.107876][T14755]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  589.107904][T14755]  ? do_syscall_64+0xbe/0x3b0
[  589.107932][T14755]  do_syscall_64+0xfa/0x3b0
[  589.107954][T14755]  ? lockdep_hardirqs_on+0x9c/0x150
[  589.107976][T14755]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.107995][T14755]  ? clear_bhb_loop+0x60/0xb0
[  589.108028][T14755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.108047][T14755] RIP: 0033:0x7f5846d17449
[  589.108065][T14755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  589.108083][T14755] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  589.108103][T14755] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  589.108118][T14755] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  589.108130][T14755] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  589.108143][T14755] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  589.108156][T14755] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  589.108188][T14755]  </TASK>
[  589.307445][T14757] FAULT_INJECTION: forcing a failure.
[  589.307445][T14757] name failslab, interval 1, probability 0, space 0, times 0
[  589.378471][   T30] audit: type=1800 audit(1748505676.452:724): pid=14757 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  589.393242][T14757] CPU: 0 UID: 0 PID: 14757 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  589.393273][T14757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  589.393286][T14757] Call Trace:
[  589.393295][T14757]  <TASK>
[  589.393304][T14757]  dump_stack_lvl+0x189/0x250
[  589.393336][T14757]  ? __pfx____ratelimit+0x10/0x10
[  589.393361][T14757]  ? __pfx_dump_stack_lvl+0x10/0x10
[  589.393389][T14757]  ? __pfx__printk+0x10/0x10
[  589.393415][T14757]  ? __pfx___might_resched+0x10/0x10
[  589.393439][T14757]  ? fs_reclaim_acquire+0x7d/0x100
[  589.393467][T14757]  should_fail_ex+0x414/0x560
[  589.393497][T14757]  should_failslab+0xa8/0x100
[  589.393520][T14757]  __kmalloc_noprof+0xcb/0x4f0
[  589.393540][T14757]  ? ext4_find_extent+0x207/0xcc0
[  589.393564][T14757]  ext4_find_extent+0x207/0xcc0
[  589.393595][T14757]  ext4_ext_map_blocks+0x288/0x6ac0
[  589.393627][T14757]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  589.393665][T14757]  ? __lock_acquire+0xab9/0xd20
[  589.393700][T14757]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  589.393753][T14757]  ext4_map_blocks+0x931/0x18d0
[  589.393794][T14757]  ? __pfx_ext4_map_blocks+0x10/0x10
[  589.393818][T14757]  ? trace_jbd2_handle_start+0x8a/0x220
[  589.393867][T14757]  ext4_iomap_begin+0xe67/0x18f0
[  589.393914][T14757]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  589.393958][T14757]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  589.393984][T14757]  iomap_iter+0x53a/0xdf0
[  589.394030][T14757]  __iomap_dio_rw+0xc67/0x1e40
[  589.394058][T14757]  ? ext4_file_write_iter+0x1741/0x1bc0
[  589.394111][T14757]  ? __pfx___iomap_dio_rw+0x10/0x10
[  589.394175][T14757]  ? jbd2_journal_stop+0x8ee/0xd80
[  589.394211][T14757]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  589.394237][T14757]  ? __pfx_ext4_orphan_add+0x10/0x10
[  589.394266][T14757]  iomap_dio_rw+0x45/0xb0
[  589.394300][T14757]  ext4_file_write_iter+0x16a2/0x1bc0
[  589.394351][T14757]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  589.394383][T14757]  ? __asan_memset+0x22/0x50
[  589.394415][T14757]  iter_file_splice_write+0x937/0x1000
[  589.394463][T14757]  ? __pfx_iter_file_splice_write+0x10/0x10
[  589.394488][T14757]  ? rcu_read_lock_any_held+0xb3/0x120
[  589.394529][T14757]  ? __pfx_iter_file_splice_write+0x10/0x10
[  589.394550][T14757]  direct_splice_actor+0xfe/0x160
[  589.394574][T14757]  splice_direct_to_actor+0x5a8/0xcc0
[  589.394615][T14757]  ? __pfx_direct_splice_actor+0x10/0x10
[  589.394634][T14757]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  589.394666][T14757]  do_splice_direct+0x181/0x270
[  589.394689][T14757]  ? __pfx_do_splice_direct+0x10/0x10
[  589.394709][T14757]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  589.394738][T14757]  ? rw_verify_area+0x258/0x650
[  589.394771][T14757]  do_sendfile+0x4da/0x7e0
[  589.394793][T14757]  ? __pfx_vfs_write+0x10/0x10
[  589.394828][T14757]  ? __pfx_do_sendfile+0x10/0x10
[  589.394866][T14757]  __se_sys_sendfile64+0x13e/0x190
[  589.394891][T14757]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  589.394911][T14757]  ? rcu_is_watching+0x15/0xb0
[  589.394942][T14757]  ? do_syscall_64+0xbe/0x3b0
[  589.394970][T14757]  do_syscall_64+0xfa/0x3b0
[  589.394992][T14757]  ? lockdep_hardirqs_on+0x9c/0x150
[  589.395024][T14757]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.395043][T14757]  ? clear_bhb_loop+0x60/0xb0
[  589.395067][T14757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.395087][T14757] RIP: 0033:0x7f5846d17449
[  589.395105][T14757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  589.395122][T14757] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  589.395143][T14757] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  589.395159][T14757] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  589.395198][T14757] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  589.395212][T14757] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  589.395225][T14757] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  589.395257][T14757]  </TASK>
[  589.433147][T14758] loop0: detected capacity change from 0 to 32768
[  589.999319][T14758] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14758)
[  590.020223][T14758] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  590.030697][T14758] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  590.040390][T14758] BTRFS info (device loop0): using free-space-tree
[  590.077018][   T30] audit: type=1800 audit(1748505677.232:725): pid=14758 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  590.100252][T14758] FAULT_INJECTION: forcing a failure.
[  590.100252][T14758] name failslab, interval 1, probability 0, space 0, times 0
[  590.114848][T14758] CPU: 1 UID: 0 PID: 14758 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  590.114877][T14758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  590.114889][T14758] Call Trace:
[  590.114897][T14758]  <TASK>
[  590.114906][T14758]  dump_stack_lvl+0x189/0x250
[  590.114940][T14758]  ? __pfx____ratelimit+0x10/0x10
[  590.114974][T14758]  ? __pfx_dump_stack_lvl+0x10/0x10
[  590.115002][T14758]  ? __pfx__printk+0x10/0x10
[  590.115025][T14758]  ? __pfx___might_resched+0x10/0x10
[  590.115053][T14758]  ? fs_reclaim_acquire+0x7d/0x100
[  590.115082][T14758]  should_fail_ex+0x414/0x560
[  590.115112][T14758]  should_failslab+0xa8/0x100
[  590.115134][T14758]  kmem_cache_alloc_noprof+0x73/0x3c0
[  590.115153][T14758]  ? alloc_extent_state+0x22/0x2f0
[  590.115182][T14758]  alloc_extent_state+0x22/0x2f0
[  590.115211][T14758]  set_extent_bit+0x270/0x2180
[  590.115238][T14758]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  590.115271][T14758]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  590.115307][T14758]  ? __pfx_set_extent_bit+0x10/0x10
[  590.115335][T14758]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  590.115364][T14758]  btrfs_set_extent_bit+0x38/0x50
[  590.115395][T14758]  btrfs_dirty_folio+0x2e2/0x4d0
[  590.115437][T14758]  btrfs_buffered_write+0xd4d/0x16c0
[  590.115486][T14758]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  590.115513][T14758]  ? up_write+0x1c4/0x420
[  590.115540][T14758]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  590.115574][T14758]  btrfs_direct_write+0x610/0xb10
[  590.115609][T14758]  ? __pfx_btrfs_direct_write+0x10/0x10
[  590.115647][T14758]  btrfs_do_write_iter+0x25f/0x710
[  590.115676][T14758]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  590.115697][T14758]  ? __asan_memset+0x22/0x50
[  590.115729][T14758]  iter_file_splice_write+0x937/0x1000
[  590.115776][T14758]  ? __pfx_iter_file_splice_write+0x10/0x10
[  590.115800][T14758]  ? rcu_read_lock_any_held+0xb3/0x120
[  590.115842][T14758]  ? __pfx_iter_file_splice_write+0x10/0x10
[  590.115864][T14758]  direct_splice_actor+0xfe/0x160
[  590.115888][T14758]  splice_direct_to_actor+0x5a8/0xcc0
[  590.115929][T14758]  ? __pfx_direct_splice_actor+0x10/0x10
[  590.115949][T14758]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  590.115988][T14758]  do_splice_direct+0x181/0x270
[  590.116013][T14758]  ? __pfx_do_splice_direct+0x10/0x10
[  590.116034][T14758]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  590.116063][T14758]  ? rw_verify_area+0x258/0x650
[  590.116096][T14758]  do_sendfile+0x4da/0x7e0
[  590.116121][T14758]  ? __pfx_vfs_write+0x10/0x10
[  590.116156][T14758]  ? __pfx_do_sendfile+0x10/0x10
[  590.116193][T14758]  __se_sys_sendfile64+0x13e/0x190
[  590.116220][T14758]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  590.116247][T14758]  ? do_syscall_64+0xbe/0x3b0
[  590.116274][T14758]  do_syscall_64+0xfa/0x3b0
[  590.116295][T14758]  ? lockdep_hardirqs_on+0x9c/0x150
[  590.116318][T14758]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.116339][T14758]  ? clear_bhb_loop+0x60/0xb0
[  590.116364][T14758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.116383][T14758] RIP: 0033:0x7f5846d17449
[  590.116402][T14758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  590.116420][T14758] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  590.116444][T14758] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  590.116458][T14758] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  590.116469][T14758] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  590.116481][T14758] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  590.116493][T14758] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  590.116524][T14758]  </TASK>
[  590.583148][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  590.649711][T14776] loop0: detected capacity change from 0 to 32768
[  590.660831][T14776] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14776)
[  590.678529][T14776] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  590.689367][T14776] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  590.699003][T14776] BTRFS info (device loop0): using free-space-tree
[  590.809342][   T30] audit: type=1800 audit(1748505677.962:726): pid=14776 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  590.810536][T14776] FAULT_INJECTION: forcing a failure.
[  590.810536][T14776] name failslab, interval 1, probability 0, space 0, times 0
[  590.843162][T14776] CPU: 1 UID: 0 PID: 14776 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  590.843185][T14776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  590.843195][T14776] Call Trace:
[  590.843203][T14776]  <TASK>
[  590.843210][T14776]  dump_stack_lvl+0x189/0x250
[  590.843241][T14776]  ? __pfx____ratelimit+0x10/0x10
[  590.843264][T14776]  ? __pfx_dump_stack_lvl+0x10/0x10
[  590.843290][T14776]  ? __pfx__printk+0x10/0x10
[  590.843311][T14776]  ? __pfx___might_resched+0x10/0x10
[  590.843335][T14776]  ? fs_reclaim_acquire+0x7d/0x100
[  590.843360][T14776]  should_fail_ex+0x414/0x560
[  590.843388][T14776]  should_failslab+0xa8/0x100
[  590.843410][T14776]  kmem_cache_alloc_noprof+0x73/0x3c0
[  590.843428][T14776]  ? alloc_extent_state+0x22/0x2f0
[  590.843460][T14776]  alloc_extent_state+0x22/0x2f0
[  590.843487][T14776]  set_extent_bit+0x270/0x2180
[  590.843514][T14776]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  590.843546][T14776]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  590.843581][T14776]  ? __pfx_set_extent_bit+0x10/0x10
[  590.843609][T14776]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  590.843640][T14776]  btrfs_set_extent_bit+0x38/0x50
[  590.843675][T14776]  btrfs_dirty_folio+0x2e2/0x4d0
[  590.843722][T14776]  btrfs_buffered_write+0xd4d/0x16c0
[  590.843766][T14776]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  590.843793][T14776]  ? up_write+0x1c4/0x420
[  590.843819][T14776]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  590.843853][T14776]  btrfs_direct_write+0x610/0xb10
[  590.843887][T14776]  ? __pfx_btrfs_direct_write+0x10/0x10
[  590.843923][T14776]  btrfs_do_write_iter+0x25f/0x710
[  590.843952][T14776]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  590.843972][T14776]  ? __asan_memset+0x22/0x50
[  590.844006][T14776]  iter_file_splice_write+0x937/0x1000
[  590.844052][T14776]  ? __pfx_iter_file_splice_write+0x10/0x10
[  590.844078][T14776]  ? rcu_read_lock_any_held+0xb3/0x120
[  590.844117][T14776]  ? __pfx_iter_file_splice_write+0x10/0x10
[  590.844139][T14776]  direct_splice_actor+0xfe/0x160
[  590.844163][T14776]  splice_direct_to_actor+0x5a8/0xcc0
[  590.844205][T14776]  ? __pfx_direct_splice_actor+0x10/0x10
[  590.844225][T14776]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  590.844257][T14776]  do_splice_direct+0x181/0x270
[  590.844280][T14776]  ? __pfx_do_splice_direct+0x10/0x10
[  590.844300][T14776]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  590.844329][T14776]  ? rw_verify_area+0x258/0x650
[  590.844362][T14776]  do_sendfile+0x4da/0x7e0
[  590.844386][T14776]  ? __pfx_vfs_write+0x10/0x10
[  590.844420][T14776]  ? __pfx_do_sendfile+0x10/0x10
[  590.844455][T14776]  __se_sys_sendfile64+0x13e/0x190
[  590.844481][T14776]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  590.844509][T14776]  ? do_syscall_64+0xbe/0x3b0
[  590.844537][T14776]  do_syscall_64+0xfa/0x3b0
[  590.844559][T14776]  ? lockdep_hardirqs_on+0x9c/0x150
[  590.844582][T14776]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.844601][T14776]  ? clear_bhb_loop+0x60/0xb0
[  590.844625][T14776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.844645][T14776] RIP: 0033:0x7f5846d17449
[  590.844805][T14776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  590.844824][T14776] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  590.844843][T14776] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  590.844858][T14776] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  590.844869][T14776] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  590.844883][T14776] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  590.844897][T14776] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  590.844928][T14776]  </TASK>
[  591.340898][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  591.431798][T14793] loop0: detected capacity change from 0 to 32768
[  591.441981][T14793] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14793)
[  591.471251][T14793] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  591.483321][T14793] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  591.493353][T14793] BTRFS info (device loop0): using free-space-tree
[  591.542527][   T30] audit: type=1800 audit(1748505678.692:727): pid=14793 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  591.543726][T14793] FAULT_INJECTION: forcing a failure.
[  591.543726][T14793] name failslab, interval 1, probability 0, space 0, times 0
[  591.577993][T14793] CPU: 1 UID: 0 PID: 14793 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  591.578020][T14793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  591.578033][T14793] Call Trace:
[  591.578041][T14793]  <TASK>
[  591.578050][T14793]  dump_stack_lvl+0x189/0x250
[  591.578078][T14793]  ? __pfx____ratelimit+0x10/0x10
[  591.578099][T14793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  591.578122][T14793]  ? __pfx__printk+0x10/0x10
[  591.578141][T14793]  ? __pfx___might_resched+0x10/0x10
[  591.578164][T14793]  ? fs_reclaim_acquire+0x7d/0x100
[  591.578188][T14793]  should_fail_ex+0x414/0x560
[  591.578213][T14793]  should_failslab+0xa8/0x100
[  591.578233][T14793]  kmem_cache_alloc_noprof+0x73/0x3c0
[  591.578249][T14793]  ? alloc_extent_state+0x22/0x2f0
[  591.578275][T14793]  alloc_extent_state+0x22/0x2f0
[  591.578299][T14793]  set_extent_bit+0x270/0x2180
[  591.578323][T14793]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  591.578351][T14793]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  591.578382][T14793]  ? __pfx_set_extent_bit+0x10/0x10
[  591.578407][T14793]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  591.578434][T14793]  btrfs_set_extent_bit+0x38/0x50
[  591.578460][T14793]  btrfs_dirty_folio+0x2e2/0x4d0
[  591.578498][T14793]  btrfs_buffered_write+0xd4d/0x16c0
[  591.578539][T14793]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  591.578560][T14793]  ? up_write+0x1c4/0x420
[  591.578583][T14793]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  591.578612][T14793]  btrfs_direct_write+0x610/0xb10
[  591.578642][T14793]  ? __pfx_btrfs_direct_write+0x10/0x10
[  591.578678][T14793]  btrfs_do_write_iter+0x25f/0x710
[  591.578698][T14793]  ? iter_file_splice_write+0x1cb/0x1000
[  591.578717][T14793]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  591.578735][T14793]  ? __asan_memset+0x22/0x50
[  591.578764][T14793]  iter_file_splice_write+0x937/0x1000
[  591.578802][T14793]  ? __pfx_iter_file_splice_write+0x10/0x10
[  591.578822][T14793]  ? rcu_read_lock_any_held+0xb3/0x120
[  591.578857][T14793]  ? __pfx_iter_file_splice_write+0x10/0x10
[  591.578874][T14793]  direct_splice_actor+0xfe/0x160
[  591.578894][T14793]  splice_direct_to_actor+0x5a8/0xcc0
[  591.578928][T14793]  ? __pfx_direct_splice_actor+0x10/0x10
[  591.578944][T14793]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  591.578971][T14793]  do_splice_direct+0x181/0x270
[  591.578989][T14793]  ? __pfx_do_splice_direct+0x10/0x10
[  591.579006][T14793]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  591.579031][T14793]  ? rw_verify_area+0x258/0x650
[  591.579058][T14793]  do_sendfile+0x4da/0x7e0
[  591.579078][T14793]  ? __pfx_vfs_write+0x10/0x10
[  591.579107][T14793]  ? __pfx_do_sendfile+0x10/0x10
[  591.579137][T14793]  __se_sys_sendfile64+0x13e/0x190
[  591.579158][T14793]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  591.579182][T14793]  ? do_syscall_64+0xbe/0x3b0
[  591.579205][T14793]  do_syscall_64+0xfa/0x3b0
[  591.579224][T14793]  ? lockdep_hardirqs_on+0x9c/0x150
[  591.579242][T14793]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.579259][T14793]  ? clear_bhb_loop+0x60/0xb0
[  591.579278][T14793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.579295][T14793] RIP: 0033:0x7f5846d17449
[  591.579310][T14793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  591.579324][T14793] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  591.579342][T14793] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  591.579355][T14793] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  591.579365][T14793] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  591.579377][T14793] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  591.579388][T14793] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  591.579415][T14793]  </TASK>
[  591.984110][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  592.084716][T14810] FAULT_INJECTION: forcing a failure.
[  592.084716][T14810] name failslab, interval 1, probability 0, space 0, times 0
[  592.097821][T14810] CPU: 1 UID: 0 PID: 14810 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  592.097848][T14810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  592.097861][T14810] Call Trace:
[  592.097869][T14810]  <TASK>
[  592.097878][T14810]  dump_stack_lvl+0x189/0x250
[  592.097911][T14810]  ? __pfx____ratelimit+0x10/0x10
[  592.097934][T14810]  ? __pfx_dump_stack_lvl+0x10/0x10
[  592.097963][T14810]  ? __pfx__printk+0x10/0x10
[  592.097990][T14810]  ? __pfx___might_resched+0x10/0x10
[  592.098016][T14810]  ? fs_reclaim_acquire+0x7d/0x100
[  592.098045][T14810]  should_fail_ex+0x414/0x560
[  592.098075][T14810]  should_failslab+0xa8/0x100
[  592.098099][T14810]  kmem_cache_alloc_noprof+0x73/0x3c0
[  592.098119][T14810]  ? ext4_mb_new_blocks+0x559/0x46a0
[  592.098151][T14810]  ext4_mb_new_blocks+0x559/0x46a0
[  592.098201][T14810]  ? trace_kmalloc+0x1f/0xd0
[  592.098218][T14810]  ? __kmalloc_noprof+0x29b/0x4f0
[  592.098244][T14810]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  592.098273][T14810]  ? ext4_ext_check_overlap+0x162/0x580
[  592.098296][T14810]  ? ext4_inode_to_goal_block+0x31a/0x460
[  592.098327][T14810]  ext4_ext_map_blocks+0x161a/0x6ac0
[  592.098373][T14810]  ? __lock_acquire+0xab9/0xd20
[  592.098409][T14810]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  592.098462][T14810]  ext4_map_blocks+0x931/0x18d0
[  592.098506][T14810]  ? __pfx_ext4_map_blocks+0x10/0x10
[  592.098532][T14810]  ? trace_jbd2_handle_start+0x8a/0x220
[  592.098590][T14810]  ext4_iomap_begin+0xe67/0x18f0
[  592.098638][T14810]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  592.098682][T14810]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  592.098708][T14810]  iomap_iter+0x53a/0xdf0
[  592.098750][T14810]  __iomap_dio_rw+0xc67/0x1e40
[  592.098778][T14810]  ? ext4_file_write_iter+0x1741/0x1bc0
[  592.098831][T14810]  ? __pfx___iomap_dio_rw+0x10/0x10
[  592.098902][T14810]  ? jbd2_journal_stop+0x8ee/0xd80
[  592.098938][T14810]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  592.098964][T14810]  ? __pfx_ext4_orphan_add+0x10/0x10
[  592.098992][T14810]  iomap_dio_rw+0x45/0xb0
[  592.099028][T14810]  ext4_file_write_iter+0x16a2/0x1bc0
[  592.099080][T14810]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  592.099112][T14810]  ? __asan_memset+0x22/0x50
[  592.099145][T14810]  iter_file_splice_write+0x937/0x1000
[  592.099195][T14810]  ? __pfx_iter_file_splice_write+0x10/0x10
[  592.099220][T14810]  ? rcu_read_lock_any_held+0xb3/0x120
[  592.099262][T14810]  ? __pfx_iter_file_splice_write+0x10/0x10
[  592.099284][T14810]  direct_splice_actor+0xfe/0x160
[  592.099308][T14810]  splice_direct_to_actor+0x5a8/0xcc0
[  592.099352][T14810]  ? __pfx_direct_splice_actor+0x10/0x10
[  592.099373][T14810]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  592.099405][T14810]  do_splice_direct+0x181/0x270
[  592.099428][T14810]  ? __pfx_do_splice_direct+0x10/0x10
[  592.099449][T14810]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  592.099478][T14810]  ? rw_verify_area+0x258/0x650
[  592.099512][T14810]  do_sendfile+0x4da/0x7e0
[  592.099535][T14810]  ? __pfx_vfs_write+0x10/0x10
[  592.099591][T14810]  ? __pfx_do_sendfile+0x10/0x10
[  592.099629][T14810]  __se_sys_sendfile64+0x13e/0x190
[  592.099655][T14810]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  592.099684][T14810]  ? do_syscall_64+0xbe/0x3b0
[  592.099713][T14810]  do_syscall_64+0xfa/0x3b0
[  592.099736][T14810]  ? lockdep_hardirqs_on+0x9c/0x150
[  592.099758][T14810]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.099778][T14810]  ? clear_bhb_loop+0x60/0xb0
[  592.099803][T14810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.099822][T14810] RIP: 0033:0x7f5846d17449
[  592.099841][T14810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  592.099858][T14810] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  592.099879][T14810] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  592.099893][T14810] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  592.099905][T14810] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  592.099919][T14810] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  592.099933][T14810] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  592.099967][T14810]  </TASK>
[  592.116621][   T30] audit: type=1800 audit(1748505679.232:728): pid=14810 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  592.160877][T14811] FAULT_INJECTION: forcing a failure.
[  592.160877][T14811] name failslab, interval 1, probability 0, space 0, times 0
[  592.173477][   T30] audit: type=1800 audit(1748505679.302:729): pid=14811 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  592.182293][T14811] CPU: 1 UID: 0 PID: 14811 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  592.182319][T14811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  592.182332][T14811] Call Trace:
[  592.182340][T14811]  <TASK>
[  592.182349][T14811]  dump_stack_lvl+0x189/0x250
[  592.182381][T14811]  ? __pfx____ratelimit+0x10/0x10
[  592.182405][T14811]  ? __pfx_dump_stack_lvl+0x10/0x10
[  592.182432][T14811]  ? __pfx__printk+0x10/0x10
[  592.182458][T14811]  ? __pfx___might_resched+0x10/0x10
[  592.182484][T14811]  ? fs_reclaim_acquire+0x7d/0x100
[  592.182513][T14811]  should_fail_ex+0x414/0x560
[  592.182542][T14811]  should_failslab+0xa8/0x100
[  592.182573][T14811]  __kmalloc_noprof+0xcb/0x4f0
[  592.182592][T14811]  ? ext4_find_extent+0x207/0xcc0
[  592.182617][T14811]  ext4_find_extent+0x207/0xcc0
[  592.182648][T14811]  ext4_ext_map_blocks+0x288/0x6ac0
[  592.182679][T14811]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  592.182713][T14811]  ? __lock_acquire+0xab9/0xd20
[  592.182747][T14811]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  592.182806][T14811]  ext4_map_blocks+0x931/0x18d0
[  592.182849][T14811]  ? __pfx_ext4_map_blocks+0x10/0x10
[  592.182874][T14811]  ? trace_jbd2_handle_start+0x8a/0x220
[  592.182921][T14811]  ext4_iomap_begin+0xe67/0x18f0
[  592.182969][T14811]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  592.183010][T14811]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  592.183035][T14811]  iomap_iter+0x53a/0xdf0
[  592.183075][T14811]  __iomap_dio_rw+0xc67/0x1e40
[  592.183103][T14811]  ? ext4_file_write_iter+0x1741/0x1bc0
[  592.183154][T14811]  ? __pfx___iomap_dio_rw+0x10/0x10
[  592.183218][T14811]  ? jbd2_journal_stop+0x8ee/0xd80
[  592.183253][T14811]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  592.183280][T14811]  ? __pfx_ext4_orphan_add+0x10/0x10
[  592.183312][T14811]  iomap_dio_rw+0x45/0xb0
[  592.183345][T14811]  ext4_file_write_iter+0x16a2/0x1bc0
[  592.183396][T14811]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  592.183427][T14811]  ? __asan_memset+0x22/0x50
[  592.183460][T14811]  iter_file_splice_write+0x937/0x1000
[  592.183507][T14811]  ? __pfx_iter_file_splice_write+0x10/0x10
[  592.183531][T14811]  ? rcu_read_lock_any_held+0xb3/0x120
[  592.183580][T14811]  ? __pfx_iter_file_splice_write+0x10/0x10
[  592.183601][T14811]  direct_splice_actor+0xfe/0x160
[  592.183624][T14811]  splice_direct_to_actor+0x5a8/0xcc0
[  592.183665][T14811]  ? __pfx_direct_splice_actor+0x10/0x10
[  592.183685][T14811]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  592.183716][T14811]  do_splice_direct+0x181/0x270
[  592.183738][T14811]  ? __pfx_do_splice_direct+0x10/0x10
[  592.183759][T14811]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  592.183788][T14811]  ? rw_verify_area+0x258/0x650
[  592.183818][T14811]  do_sendfile+0x4da/0x7e0
[  592.183836][T14811]  ? __pfx_vfs_write+0x10/0x10
[  592.183871][T14811]  ? __pfx_do_sendfile+0x10/0x10
[  592.183908][T14811]  __se_sys_sendfile64+0x13e/0x190
[  592.183933][T14811]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  592.183962][T14811]  ? do_syscall_64+0xbe/0x3b0
[  592.183990][T14811]  do_syscall_64+0xfa/0x3b0
[  592.184012][T14811]  ? lockdep_hardirqs_on+0x9c/0x150
[  592.184033][T14811]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.184053][T14811]  ? clear_bhb_loop+0x60/0xb0
[  592.184077][T14811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.184096][T14811] RIP: 0033:0x7f5846d17449
[  592.184114][T14811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  592.184131][T14811] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  592.184152][T14811] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  592.184166][T14811] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  592.184178][T14811] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  592.184192][T14811] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  592.184205][T14811] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  592.184237][T14811]  </TASK>
[  592.276664][T14812] loop0: detected capacity change from 0 to 32768
[  592.991424][T14812] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14812)
[  593.014675][T14812] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  593.025235][T14812] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  593.035620][T14812] BTRFS info (device loop0): using free-space-tree
[  593.083798][   T30] audit: type=1800 audit(1748505680.232:730): pid=14812 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  593.084451][T14812] FAULT_INJECTION: forcing a failure.
[  593.084451][T14812] name failslab, interval 1, probability 0, space 0, times 0
[  593.117734][T14812] CPU: 1 UID: 0 PID: 14812 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  593.117757][T14812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  593.117769][T14812] Call Trace:
[  593.117784][T14812]  <TASK>
[  593.117792][T14812]  dump_stack_lvl+0x189/0x250
[  593.117822][T14812]  ? __pfx____ratelimit+0x10/0x10
[  593.117846][T14812]  ? __pfx_dump_stack_lvl+0x10/0x10
[  593.117870][T14812]  ? __pfx__printk+0x10/0x10
[  593.117893][T14812]  ? __pfx___might_resched+0x10/0x10
[  593.117919][T14812]  ? fs_reclaim_acquire+0x7d/0x100
[  593.117947][T14812]  should_fail_ex+0x414/0x560
[  593.117976][T14812]  should_failslab+0xa8/0x100
[  593.117999][T14812]  kmem_cache_alloc_noprof+0x73/0x3c0
[  593.118019][T14812]  ? alloc_extent_state+0x22/0x2f0
[  593.118049][T14812]  alloc_extent_state+0x22/0x2f0
[  593.118078][T14812]  set_extent_bit+0x270/0x2180
[  593.118106][T14812]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  593.118138][T14812]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  593.118176][T14812]  ? __pfx_set_extent_bit+0x10/0x10
[  593.118206][T14812]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  593.118238][T14812]  btrfs_set_extent_bit+0x38/0x50
[  593.118270][T14812]  btrfs_dirty_folio+0x2e2/0x4d0
[  593.118316][T14812]  btrfs_buffered_write+0xd4d/0x16c0
[  593.118363][T14812]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  593.118389][T14812]  ? up_write+0x1c4/0x420
[  593.118416][T14812]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  593.118449][T14812]  btrfs_direct_write+0x610/0xb10
[  593.118484][T14812]  ? __pfx_btrfs_direct_write+0x10/0x10
[  593.118517][T14812]  btrfs_do_write_iter+0x25f/0x710
[  593.118543][T14812]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  593.118564][T14812]  ? __asan_memset+0x22/0x50
[  593.118596][T14812]  iter_file_splice_write+0x937/0x1000
[  593.118645][T14812]  ? __pfx_iter_file_splice_write+0x10/0x10
[  593.118670][T14812]  ? rcu_read_lock_any_held+0xb3/0x120
[  593.118711][T14812]  ? __pfx_iter_file_splice_write+0x10/0x10
[  593.118730][T14812]  direct_splice_actor+0xfe/0x160
[  593.118752][T14812]  splice_direct_to_actor+0x5a8/0xcc0
[  593.118797][T14812]  ? __pfx_direct_splice_actor+0x10/0x10
[  593.118817][T14812]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  593.118848][T14812]  do_splice_direct+0x181/0x270
[  593.118871][T14812]  ? __pfx_do_splice_direct+0x10/0x10
[  593.118892][T14812]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  593.118921][T14812]  ? rw_verify_area+0x258/0x650
[  593.118955][T14812]  do_sendfile+0x4da/0x7e0
[  593.118978][T14812]  ? __pfx_vfs_write+0x10/0x10
[  593.119013][T14812]  ? __pfx_do_sendfile+0x10/0x10
[  593.119035][T14812]  ? rcu_is_watching+0x15/0xb0
[  593.119062][T14812]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[  593.119097][T14812]  __se_sys_sendfile64+0x13e/0x190
[  593.119122][T14812]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  593.119142][T14812]  ? rcu_is_watching+0x15/0xb0
[  593.119173][T14812]  ? do_syscall_64+0xbe/0x3b0
[  593.119202][T14812]  do_syscall_64+0xfa/0x3b0
[  593.119224][T14812]  ? lockdep_hardirqs_on+0x9c/0x150
[  593.119247][T14812]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.119266][T14812]  ? clear_bhb_loop+0x60/0xb0
[  593.119290][T14812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.119310][T14812] RIP: 0033:0x7f5846d17449
[  593.119329][T14812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  593.119347][T14812] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  593.119367][T14812] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  593.119382][T14812] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  593.119393][T14812] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  593.119407][T14812] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  593.119421][T14812] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  593.119454][T14812]  </TASK>
[  593.640290][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  593.746537][T14830] loop0: detected capacity change from 0 to 32768
[  593.759228][T14830] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14830)
[  593.787190][T14830] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  593.797849][T14830] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  593.808129][T14830] BTRFS info (device loop0): using free-space-tree
[  593.856267][T14830] FAULT_INJECTION: forcing a failure.
[  593.856267][T14830] name failslab, interval 1, probability 0, space 0, times 0
[  593.869772][   T30] audit: type=1800 audit(1748505681.002:731): pid=14830 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  593.890966][T14830] CPU: 0 UID: 0 PID: 14830 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  593.890993][T14830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  593.891006][T14830] Call Trace:
[  593.891014][T14830]  <TASK>
[  593.891023][T14830]  dump_stack_lvl+0x189/0x250
[  593.891056][T14830]  ? __pfx____ratelimit+0x10/0x10
[  593.891080][T14830]  ? __pfx_dump_stack_lvl+0x10/0x10
[  593.891107][T14830]  ? __pfx__printk+0x10/0x10
[  593.891130][T14830]  ? __pfx___might_resched+0x10/0x10
[  593.891157][T14830]  ? fs_reclaim_acquire+0x7d/0x100
[  593.891186][T14830]  should_fail_ex+0x414/0x560
[  593.891216][T14830]  should_failslab+0xa8/0x100
[  593.891240][T14830]  kmem_cache_alloc_noprof+0x73/0x3c0
[  593.891259][T14830]  ? alloc_extent_state+0x22/0x2f0
[  593.891290][T14830]  alloc_extent_state+0x22/0x2f0
[  593.891320][T14830]  set_extent_bit+0x270/0x2180
[  593.891348][T14830]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  593.891383][T14830]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  593.891420][T14830]  ? __pfx_set_extent_bit+0x10/0x10
[  593.891450][T14830]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  593.891481][T14830]  btrfs_set_extent_bit+0x38/0x50
[  593.891512][T14830]  btrfs_dirty_folio+0x2e2/0x4d0
[  593.891557][T14830]  btrfs_buffered_write+0xd4d/0x16c0
[  593.891606][T14830]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  593.891633][T14830]  ? up_write+0x1c4/0x420
[  593.891660][T14830]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  593.891694][T14830]  btrfs_direct_write+0x610/0xb10
[  593.891736][T14830]  ? __pfx_btrfs_direct_write+0x10/0x10
[  593.891771][T14830]  btrfs_do_write_iter+0x25f/0x710
[  593.891800][T14830]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  593.891820][T14830]  ? __asan_memset+0x22/0x50
[  593.891853][T14830]  iter_file_splice_write+0x937/0x1000
[  593.891901][T14830]  ? __pfx_iter_file_splice_write+0x10/0x10
[  593.891926][T14830]  ? rcu_read_lock_any_held+0xb3/0x120
[  593.891971][T14830]  ? __pfx_iter_file_splice_write+0x10/0x10
[  593.891992][T14830]  direct_splice_actor+0xfe/0x160
[  593.892015][T14830]  splice_direct_to_actor+0x5a8/0xcc0
[  593.892057][T14830]  ? __pfx_direct_splice_actor+0x10/0x10
[  593.892076][T14830]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  593.892106][T14830]  do_splice_direct+0x181/0x270
[  593.892129][T14830]  ? __pfx_do_splice_direct+0x10/0x10
[  593.892150][T14830]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  593.892178][T14830]  ? rw_verify_area+0x258/0x650
[  593.892211][T14830]  do_sendfile+0x4da/0x7e0
[  593.892234][T14830]  ? __pfx_vfs_write+0x10/0x10
[  593.892268][T14830]  ? __pfx_do_sendfile+0x10/0x10
[  593.892305][T14830]  __se_sys_sendfile64+0x13e/0x190
[  593.892331][T14830]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  593.892360][T14830]  ? do_syscall_64+0xbe/0x3b0
[  593.892388][T14830]  do_syscall_64+0xfa/0x3b0
[  593.892410][T14830]  ? lockdep_hardirqs_on+0x9c/0x150
[  593.892431][T14830]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.892451][T14830]  ? clear_bhb_loop+0x60/0xb0
[  593.892473][T14830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.892493][T14830] RIP: 0033:0x7f5846d17449
[  593.892511][T14830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  593.892530][T14830] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  593.892551][T14830] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  593.892566][T14830] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  593.892578][T14830] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  593.892592][T14830] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  593.892606][T14830] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  593.892638][T14830]  </TASK>
[  594.367522][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  594.458843][T14848] loop0: detected capacity change from 0 to 32768
[  594.475941][T14848] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14848)
[  594.495568][T14848] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  594.507901][T14848] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  594.517558][T14848] BTRFS info (device loop0): using free-space-tree
[  594.566653][   T30] audit: type=1800 audit(1748505681.712:732): pid=14848 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  594.587697][T14848] FAULT_INJECTION: forcing a failure.
[  594.587697][T14848] name failslab, interval 1, probability 0, space 0, times 0
[  594.600685][T14848] CPU: 1 UID: 0 PID: 14848 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  594.600711][T14848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  594.600723][T14848] Call Trace:
[  594.600731][T14848]  <TASK>
[  594.600740][T14848]  dump_stack_lvl+0x189/0x250
[  594.600773][T14848]  ? __pfx____ratelimit+0x10/0x10
[  594.600796][T14848]  ? __pfx_dump_stack_lvl+0x10/0x10
[  594.600824][T14848]  ? __pfx__printk+0x10/0x10
[  594.600846][T14848]  ? __pfx___might_resched+0x10/0x10
[  594.600872][T14848]  ? fs_reclaim_acquire+0x7d/0x100
[  594.600901][T14848]  should_fail_ex+0x414/0x560
[  594.600929][T14848]  should_failslab+0xa8/0x100
[  594.600953][T14848]  kmem_cache_alloc_noprof+0x73/0x3c0
[  594.600972][T14848]  ? alloc_extent_state+0x22/0x2f0
[  594.601003][T14848]  alloc_extent_state+0x22/0x2f0
[  594.601033][T14848]  set_extent_bit+0x270/0x2180
[  594.601062][T14848]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  594.601096][T14848]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  594.601134][T14848]  ? __pfx_set_extent_bit+0x10/0x10
[  594.601164][T14848]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  594.601196][T14848]  btrfs_set_extent_bit+0x38/0x50
[  594.601228][T14848]  btrfs_dirty_folio+0x2e2/0x4d0
[  594.601273][T14848]  btrfs_buffered_write+0xd4d/0x16c0
[  594.601323][T14848]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  594.601349][T14848]  ? up_write+0x1c4/0x420
[  594.601377][T14848]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  594.601421][T14848]  btrfs_direct_write+0x610/0xb10
[  594.601462][T14848]  ? __pfx_btrfs_direct_write+0x10/0x10
[  594.601503][T14848]  btrfs_do_write_iter+0x25f/0x710
[  594.601529][T14848]  ? iter_file_splice_write+0x1cb/0x1000
[  594.601550][T14848]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  594.601570][T14848]  ? __asan_memset+0x22/0x50
[  594.601602][T14848]  iter_file_splice_write+0x937/0x1000
[  594.601647][T14848]  ? __pfx_iter_file_splice_write+0x10/0x10
[  594.601671][T14848]  ? rcu_read_lock_any_held+0xb3/0x120
[  594.601717][T14848]  ? __pfx_iter_file_splice_write+0x10/0x10
[  594.601738][T14848]  direct_splice_actor+0xfe/0x160
[  594.601760][T14848]  splice_direct_to_actor+0x5a8/0xcc0
[  594.601802][T14848]  ? __pfx_direct_splice_actor+0x10/0x10
[  594.601821][T14848]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  594.601854][T14848]  do_splice_direct+0x181/0x270
[  594.601877][T14848]  ? __pfx_do_splice_direct+0x10/0x10
[  594.601897][T14848]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  594.601925][T14848]  ? rw_verify_area+0x258/0x650
[  594.601959][T14848]  do_sendfile+0x4da/0x7e0
[  594.601982][T14848]  ? __pfx_vfs_write+0x10/0x10
[  594.602017][T14848]  ? __pfx_do_sendfile+0x10/0x10
[  594.602037][T14848]  ? rcu_is_watching+0x15/0xb0
[  594.602063][T14848]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[  594.602098][T14848]  __se_sys_sendfile64+0x13e/0x190
[  594.602123][T14848]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  594.602152][T14848]  ? rcu_is_watching+0x15/0xb0
[  594.602183][T14848]  ? do_syscall_64+0xbe/0x3b0
[  594.602211][T14848]  do_syscall_64+0xfa/0x3b0
[  594.602234][T14848]  ? lockdep_hardirqs_on+0x9c/0x150
[  594.602257][T14848]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.602277][T14848]  ? clear_bhb_loop+0x60/0xb0
[  594.602301][T14848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.602322][T14848] RIP: 0033:0x7f5846d17449
[  594.602340][T14848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  594.602358][T14848] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  594.602380][T14848] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  594.602395][T14848] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  594.602407][T14848] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  594.602420][T14848] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  594.602433][T14848] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  594.602471][T14848]  </TASK>
[  595.095897][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  595.172990][T14866] loop0: detected capacity change from 0 to 32768
[  595.189789][T14866] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14866)
[  595.219666][T14866] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  595.231069][T14866] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  595.240920][T14866] BTRFS info (device loop0): using free-space-tree
[  595.287072][   T30] audit: type=1800 audit(1748505682.442:733): pid=14866 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  595.288397][T14866] FAULT_INJECTION: forcing a failure.
[  595.288397][T14866] name failslab, interval 1, probability 0, space 0, times 0
[  595.321821][T14866] CPU: 0 UID: 0 PID: 14866 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  595.321848][T14866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  595.321862][T14866] Call Trace:
[  595.321870][T14866]  <TASK>
[  595.321878][T14866]  dump_stack_lvl+0x189/0x250
[  595.321913][T14866]  ? __pfx____ratelimit+0x10/0x10
[  595.321936][T14866]  ? __pfx_dump_stack_lvl+0x10/0x10
[  595.321964][T14866]  ? __pfx__printk+0x10/0x10
[  595.321987][T14866]  ? __pfx___might_resched+0x10/0x10
[  595.322015][T14866]  ? fs_reclaim_acquire+0x7d/0x100
[  595.322044][T14866]  should_fail_ex+0x414/0x560
[  595.322074][T14866]  should_failslab+0xa8/0x100
[  595.322097][T14866]  kmem_cache_alloc_noprof+0x73/0x3c0
[  595.322117][T14866]  ? alloc_extent_state+0x22/0x2f0
[  595.322146][T14866]  alloc_extent_state+0x22/0x2f0
[  595.322175][T14866]  btrfs_clear_extent_bit_changeset+0x24d/0xf00
[  595.322220][T14866]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  595.322259][T14866]  btrfs_dirty_folio+0x2cf/0x4d0
[  595.322304][T14866]  btrfs_buffered_write+0xd4d/0x16c0
[  595.322354][T14866]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  595.322380][T14866]  ? up_write+0x1c4/0x420
[  595.322408][T14866]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  595.322442][T14866]  btrfs_direct_write+0x610/0xb10
[  595.322482][T14866]  ? __pfx_btrfs_direct_write+0x10/0x10
[  595.322519][T14866]  btrfs_do_write_iter+0x25f/0x710
[  595.322550][T14866]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  595.322570][T14866]  ? __asan_memset+0x22/0x50
[  595.322603][T14866]  iter_file_splice_write+0x937/0x1000
[  595.322657][T14866]  ? __pfx_iter_file_splice_write+0x10/0x10
[  595.322682][T14866]  ? rcu_read_lock_any_held+0xb3/0x120
[  595.322724][T14866]  ? __pfx_iter_file_splice_write+0x10/0x10
[  595.322745][T14866]  direct_splice_actor+0xfe/0x160
[  595.322769][T14866]  splice_direct_to_actor+0x5a8/0xcc0
[  595.322810][T14866]  ? __pfx_direct_splice_actor+0x10/0x10
[  595.322831][T14866]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  595.322861][T14866]  do_splice_direct+0x181/0x270
[  595.322885][T14866]  ? __pfx_do_splice_direct+0x10/0x10
[  595.322905][T14866]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  595.322934][T14866]  ? rw_verify_area+0x258/0x650
[  595.322967][T14866]  do_sendfile+0x4da/0x7e0
[  595.322990][T14866]  ? __pfx_vfs_write+0x10/0x10
[  595.323025][T14866]  ? __pfx_do_sendfile+0x10/0x10
[  595.323045][T14866]  ? rcu_is_watching+0x15/0xb0
[  595.323072][T14866]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[  595.323106][T14866]  __se_sys_sendfile64+0x13e/0x190
[  595.323132][T14866]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  595.323152][T14866]  ? rcu_is_watching+0x15/0xb0
[  595.323183][T14866]  ? do_syscall_64+0xbe/0x3b0
[  595.323212][T14866]  do_syscall_64+0xfa/0x3b0
[  595.323235][T14866]  ? lockdep_hardirqs_on+0x9c/0x150
[  595.323258][T14866]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.323278][T14866]  ? clear_bhb_loop+0x60/0xb0
[  595.323302][T14866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.323322][T14866] RIP: 0033:0x7f5846d17449
[  595.323340][T14866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  595.323357][T14866] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  595.323378][T14866] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  595.323393][T14866] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  595.323405][T14866] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  595.323418][T14866] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  595.323432][T14866] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  595.323464][T14866]  </TASK>
[  595.838914][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  595.941556][   T30] audit: type=1800 audit(1748505683.092:734): pid=14885 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  595.942680][T14885] FAULT_INJECTION: forcing a failure.
[  595.942680][T14885] name failslab, interval 1, probability 0, space 0, times 0
[  595.979133][T14885] CPU: 1 UID: 0 PID: 14885 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  595.979162][T14885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  595.979175][T14885] Call Trace:
[  595.979183][T14885]  <TASK>
[  595.979192][T14885]  dump_stack_lvl+0x189/0x250
[  595.979226][T14885]  ? __pfx____ratelimit+0x10/0x10
[  595.979250][T14885]  ? __pfx_dump_stack_lvl+0x10/0x10
[  595.979295][T14885]  ? __pfx__printk+0x10/0x10
[  595.979321][T14885]  ? __pfx___might_resched+0x10/0x10
[  595.979347][T14885]  ? fs_reclaim_acquire+0x7d/0x100
[  595.979378][T14885]  should_fail_ex+0x414/0x560
[  595.979408][T14885]  should_failslab+0xa8/0x100
[  595.979432][T14885]  kmem_cache_alloc_noprof+0x73/0x3c0
[  595.979451][T14885]  ? ext4_mb_new_blocks+0x559/0x46a0
[  595.979485][T14885]  ext4_mb_new_blocks+0x559/0x46a0
[  595.979531][T14885]  ? trace_kmalloc+0x1f/0xd0
[  595.979548][T14885]  ? __kmalloc_noprof+0x29b/0x4f0
[  595.979580][T14885]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  595.979609][T14885]  ? ext4_ext_check_overlap+0x162/0x580
[  595.979633][T14885]  ? ext4_inode_to_goal_block+0x31a/0x460
[  595.979666][T14885]  ext4_ext_map_blocks+0x161a/0x6ac0
[  595.979716][T14885]  ? __lock_acquire+0xab9/0xd20
[  595.979752][T14885]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  595.979808][T14885]  ext4_map_blocks+0x931/0x18d0
[  595.979851][T14885]  ? __pfx_ext4_map_blocks+0x10/0x10
[  595.979877][T14885]  ? trace_jbd2_handle_start+0x8a/0x220
[  595.979927][T14885]  ext4_iomap_begin+0xe67/0x18f0
[  595.979977][T14885]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  595.980022][T14885]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  595.980049][T14885]  iomap_iter+0x53a/0xdf0
[  595.980091][T14885]  __iomap_dio_rw+0xc67/0x1e40
[  595.980119][T14885]  ? ext4_file_write_iter+0x1741/0x1bc0
[  595.980173][T14885]  ? __pfx___iomap_dio_rw+0x10/0x10
[  595.980241][T14885]  ? jbd2_journal_stop+0x8ee/0xd80
[  595.980278][T14885]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  595.980305][T14885]  ? __pfx_ext4_orphan_add+0x10/0x10
[  595.980332][T14885]  iomap_dio_rw+0x45/0xb0
[  595.980366][T14885]  ext4_file_write_iter+0x16a2/0x1bc0
[  595.980417][T14885]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  595.980447][T14885]  ? __asan_memset+0x22/0x50
[  595.980480][T14885]  iter_file_splice_write+0x937/0x1000
[  595.980530][T14885]  ? __pfx_iter_file_splice_write+0x10/0x10
[  595.980556][T14885]  ? rcu_read_lock_any_held+0xb3/0x120
[  595.980606][T14885]  ? __pfx_iter_file_splice_write+0x10/0x10
[  595.980628][T14885]  direct_splice_actor+0xfe/0x160
[  595.980652][T14885]  splice_direct_to_actor+0x5a8/0xcc0
[  595.980696][T14885]  ? __pfx_direct_splice_actor+0x10/0x10
[  595.980716][T14885]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  595.980753][T14885]  do_splice_direct+0x181/0x270
[  595.980777][T14885]  ? __pfx_do_splice_direct+0x10/0x10
[  595.980798][T14885]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  595.980828][T14885]  ? rw_verify_area+0x258/0x650
[  595.980862][T14885]  do_sendfile+0x4da/0x7e0
[  595.980885][T14885]  ? __pfx_vfs_write+0x10/0x10
[  595.980922][T14885]  ? __pfx_do_sendfile+0x10/0x10
[  595.980961][T14885]  __se_sys_sendfile64+0x13e/0x190
[  595.980986][T14885]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  595.981016][T14885]  ? do_syscall_64+0xbe/0x3b0
[  595.981045][T14885]  do_syscall_64+0xfa/0x3b0
[  595.981067][T14885]  ? lockdep_hardirqs_on+0x9c/0x150
[  595.981090][T14885]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.981110][T14885]  ? clear_bhb_loop+0x60/0xb0
[  595.981134][T14885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.981154][T14885] RIP: 0033:0x7f5846d17449
[  595.981173][T14885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  595.981191][T14885] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  595.981212][T14885] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  595.981228][T14885] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  595.981240][T14885] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  595.981254][T14885] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  595.981267][T14885] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  595.981302][T14885]  </TASK>
[  596.414467][   T30] audit: type=1800 audit(1748505683.562:735): pid=14886 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  596.427978][T14886] FAULT_INJECTION: forcing a failure.
[  596.427978][T14886] name failslab, interval 1, probability 0, space 0, times 0
[  596.448265][T14886] CPU: 1 UID: 0 PID: 14886 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  596.448290][T14886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  596.448302][T14886] Call Trace:
[  596.448310][T14886]  <TASK>
[  596.448317][T14886]  dump_stack_lvl+0x189/0x250
[  596.448348][T14886]  ? __pfx____ratelimit+0x10/0x10
[  596.448372][T14886]  ? __pfx_dump_stack_lvl+0x10/0x10
[  596.448397][T14886]  ? __pfx__printk+0x10/0x10
[  596.448421][T14886]  ? __pfx___might_resched+0x10/0x10
[  596.448445][T14886]  ? fs_reclaim_acquire+0x7d/0x100
[  596.448475][T14886]  should_fail_ex+0x414/0x560
[  596.448505][T14886]  should_failslab+0xa8/0x100
[  596.448537][T14886]  __kmalloc_noprof+0xcb/0x4f0
[  596.448557][T14886]  ? ext4_find_extent+0x207/0xcc0
[  596.448582][T14886]  ext4_find_extent+0x207/0xcc0
[  596.448615][T14886]  ext4_ext_map_blocks+0x288/0x6ac0
[  596.448647][T14886]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  596.448682][T14886]  ? __lock_acquire+0xab9/0xd20
[  596.448716][T14886]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  596.448762][T14886]  ext4_map_blocks+0x931/0x18d0
[  596.448799][T14886]  ? __pfx_ext4_map_blocks+0x10/0x10
[  596.448820][T14886]  ? trace_jbd2_handle_start+0x8a/0x220
[  596.448861][T14886]  ext4_iomap_begin+0xe67/0x18f0
[  596.448904][T14886]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  596.448942][T14886]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  596.448964][T14886]  iomap_iter+0x53a/0xdf0
[  596.448999][T14886]  __iomap_dio_rw+0xc67/0x1e40
[  596.449023][T14886]  ? ext4_file_write_iter+0x1741/0x1bc0
[  596.449071][T14886]  ? __pfx___iomap_dio_rw+0x10/0x10
[  596.449129][T14886]  ? jbd2_journal_stop+0x8ee/0xd80
[  596.449161][T14886]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  596.449184][T14886]  ? __pfx_ext4_orphan_add+0x10/0x10
[  596.449210][T14886]  iomap_dio_rw+0x45/0xb0
[  596.449240][T14886]  ext4_file_write_iter+0x16a2/0x1bc0
[  596.449288][T14886]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  596.449316][T14886]  ? __asan_memset+0x22/0x50
[  596.449346][T14886]  iter_file_splice_write+0x937/0x1000
[  596.449389][T14886]  ? __pfx_iter_file_splice_write+0x10/0x10
[  596.449411][T14886]  ? rcu_read_lock_any_held+0xb3/0x120
[  596.449449][T14886]  ? __pfx_iter_file_splice_write+0x10/0x10
[  596.449467][T14886]  direct_splice_actor+0xfe/0x160
[  596.449489][T14886]  splice_direct_to_actor+0x5a8/0xcc0
[  596.449562][T14886]  ? __pfx_direct_splice_actor+0x10/0x10
[  596.449579][T14886]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  596.449608][T14886]  do_splice_direct+0x181/0x270
[  596.449629][T14886]  ? __pfx_do_splice_direct+0x10/0x10
[  596.449647][T14886]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  596.449673][T14886]  ? rw_verify_area+0x258/0x650
[  596.449704][T14886]  do_sendfile+0x4da/0x7e0
[  596.449724][T14886]  ? __pfx_vfs_write+0x10/0x10
[  596.449756][T14886]  ? __pfx_do_sendfile+0x10/0x10
[  596.449790][T14886]  __se_sys_sendfile64+0x13e/0x190
[  596.449813][T14886]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  596.449839][T14886]  ? do_syscall_64+0xbe/0x3b0
[  596.449865][T14886]  do_syscall_64+0xfa/0x3b0
[  596.449885][T14886]  ? lockdep_hardirqs_on+0x9c/0x150
[  596.449905][T14886]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.449923][T14886]  ? clear_bhb_loop+0x60/0xb0
[  596.449945][T14886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.449963][T14886] RIP: 0033:0x7f5846d17449
[  596.449980][T14886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  596.449997][T14886] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  596.450023][T14886] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  596.450036][T14886] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  596.450046][T14886] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  596.450058][T14886] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  596.450070][T14886] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  596.450101][T14886]  </TASK>
[  596.480501][T14887] loop0: detected capacity change from 0 to 32768
[  596.863677][T14887] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14887)
[  596.883973][T14887] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  596.895800][T14887] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  596.905151][T14887] BTRFS info (device loop0): using free-space-tree
[  596.951630][   T30] audit: type=1800 audit(1748505684.102:736): pid=14887 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  596.952514][T14887] FAULT_INJECTION: forcing a failure.
[  596.952514][T14887] name failslab, interval 1, probability 0, space 0, times 0
[  596.988730][T14887] CPU: 0 UID: 0 PID: 14887 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  596.988759][T14887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  596.988777][T14887] Call Trace:
[  596.988786][T14887]  <TASK>
[  596.988795][T14887]  dump_stack_lvl+0x189/0x250
[  596.988828][T14887]  ? __pfx____ratelimit+0x10/0x10
[  596.988852][T14887]  ? __pfx_dump_stack_lvl+0x10/0x10
[  596.988882][T14887]  ? __pfx__printk+0x10/0x10
[  596.988904][T14887]  ? __pfx___might_resched+0x10/0x10
[  596.988932][T14887]  ? fs_reclaim_acquire+0x7d/0x100
[  596.988963][T14887]  should_fail_ex+0x414/0x560
[  596.988992][T14887]  should_failslab+0xa8/0x100
[  596.989014][T14887]  kmem_cache_alloc_noprof+0x73/0x3c0
[  596.989033][T14887]  ? alloc_extent_state+0x22/0x2f0
[  596.989062][T14887]  alloc_extent_state+0x22/0x2f0
[  596.989091][T14887]  set_extent_bit+0x270/0x2180
[  596.989119][T14887]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  596.989154][T14887]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  596.989193][T14887]  ? __pfx_set_extent_bit+0x10/0x10
[  596.989225][T14887]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  596.989258][T14887]  btrfs_set_extent_bit+0x38/0x50
[  596.989290][T14887]  btrfs_dirty_folio+0x2e2/0x4d0
[  596.989334][T14887]  btrfs_buffered_write+0xd4d/0x16c0
[  596.989382][T14887]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  596.989409][T14887]  ? up_write+0x1c4/0x420
[  596.989437][T14887]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  596.989472][T14887]  btrfs_direct_write+0x610/0xb10
[  596.989507][T14887]  ? __pfx_btrfs_direct_write+0x10/0x10
[  596.989543][T14887]  btrfs_do_write_iter+0x25f/0x710
[  596.989578][T14887]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  596.989598][T14887]  ? __asan_memset+0x22/0x50
[  596.989630][T14887]  iter_file_splice_write+0x937/0x1000
[  596.989678][T14887]  ? __pfx_iter_file_splice_write+0x10/0x10
[  596.989703][T14887]  ? rcu_read_lock_any_held+0xb3/0x120
[  596.989747][T14887]  ? __pfx_iter_file_splice_write+0x10/0x10
[  596.989768][T14887]  direct_splice_actor+0xfe/0x160
[  596.989793][T14887]  splice_direct_to_actor+0x5a8/0xcc0
[  596.989832][T14887]  ? __pfx_direct_splice_actor+0x10/0x10
[  596.989851][T14887]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  596.989881][T14887]  do_splice_direct+0x181/0x270
[  596.989904][T14887]  ? __pfx_do_splice_direct+0x10/0x10
[  596.989924][T14887]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  596.989954][T14887]  ? rw_verify_area+0x258/0x650
[  596.989988][T14887]  do_sendfile+0x4da/0x7e0
[  596.990012][T14887]  ? __pfx_vfs_write+0x10/0x10
[  596.990046][T14887]  ? __pfx_do_sendfile+0x10/0x10
[  596.990082][T14887]  __se_sys_sendfile64+0x13e/0x190
[  596.990109][T14887]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  596.990136][T14887]  ? do_syscall_64+0xbe/0x3b0
[  596.990165][T14887]  do_syscall_64+0xfa/0x3b0
[  596.990187][T14887]  ? lockdep_hardirqs_on+0x9c/0x150
[  596.990210][T14887]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.990229][T14887]  ? clear_bhb_loop+0x60/0xb0
[  596.990253][T14887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.990289][T14887] RIP: 0033:0x7f5846d17449
[  596.990308][T14887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  596.990326][T14887] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  596.990348][T14887] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  596.990364][T14887] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  596.990375][T14887] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  596.990388][T14887] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  596.990401][T14887] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  596.990434][T14887]  </TASK>
[  597.552780][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  597.689046][   T30] audit: type=1800 audit(1748505684.842:737): pid=14909 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  597.713574][T14909] FAULT_INJECTION: forcing a failure.
[  597.713574][T14909] name failslab, interval 1, probability 0, space 0, times 0
[  597.727860][T14909] CPU: 1 UID: 0 PID: 14909 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  597.727888][T14909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  597.727901][T14909] Call Trace:
[  597.727909][T14909]  <TASK>
[  597.727919][T14909]  dump_stack_lvl+0x189/0x250
[  597.727952][T14909]  ? __pfx____ratelimit+0x10/0x10
[  597.727975][T14909]  ? __pfx_dump_stack_lvl+0x10/0x10
[  597.728004][T14909]  ? __pfx__printk+0x10/0x10
[  597.728029][T14909]  ? __pfx___might_resched+0x10/0x10
[  597.728053][T14909]  ? fs_reclaim_acquire+0x7d/0x100
[  597.728083][T14909]  should_fail_ex+0x414/0x560
[  597.728113][T14909]  should_failslab+0xa8/0x100
[  597.728136][T14909]  __kmalloc_noprof+0xcb/0x4f0
[  597.728155][T14909]  ? ext4_find_extent+0x207/0xcc0
[  597.728181][T14909]  ext4_find_extent+0x207/0xcc0
[  597.728212][T14909]  ext4_ext_map_blocks+0x288/0x6ac0
[  597.728244][T14909]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  597.728278][T14909]  ? __lock_acquire+0xab9/0xd20
[  597.728314][T14909]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  597.728368][T14909]  ext4_map_blocks+0x931/0x18d0
[  597.728412][T14909]  ? __pfx_ext4_map_blocks+0x10/0x10
[  597.728437][T14909]  ? trace_jbd2_handle_start+0x8a/0x220
[  597.728496][T14909]  ext4_iomap_begin+0xe67/0x18f0
[  597.728545][T14909]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  597.728589][T14909]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  597.728615][T14909]  iomap_iter+0x53a/0xdf0
[  597.728655][T14909]  __iomap_dio_rw+0xc67/0x1e40
[  597.728682][T14909]  ? ext4_file_write_iter+0x1741/0x1bc0
[  597.728737][T14909]  ? __pfx___iomap_dio_rw+0x10/0x10
[  597.728805][T14909]  ? jbd2_journal_stop+0x8ee/0xd80
[  597.728843][T14909]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  597.728870][T14909]  ? __pfx_ext4_orphan_add+0x10/0x10
[  597.728900][T14909]  iomap_dio_rw+0x45/0xb0
[  597.728934][T14909]  ext4_file_write_iter+0x16a2/0x1bc0
[  597.728989][T14909]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  597.729020][T14909]  ? __asan_memset+0x22/0x50
[  597.729054][T14909]  iter_file_splice_write+0x937/0x1000
[  597.729104][T14909]  ? __pfx_iter_file_splice_write+0x10/0x10
[  597.729129][T14909]  ? rcu_read_lock_any_held+0xb3/0x120
[  597.729170][T14909]  ? __pfx_iter_file_splice_write+0x10/0x10
[  597.729192][T14909]  direct_splice_actor+0xfe/0x160
[  597.729215][T14909]  splice_direct_to_actor+0x5a8/0xcc0
[  597.729258][T14909]  ? __pfx_direct_splice_actor+0x10/0x10
[  597.729278][T14909]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  597.729310][T14909]  do_splice_direct+0x181/0x270
[  597.729334][T14909]  ? __pfx_do_splice_direct+0x10/0x10
[  597.729355][T14909]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  597.729385][T14909]  ? rw_verify_area+0x258/0x650
[  597.729419][T14909]  do_sendfile+0x4da/0x7e0
[  597.729441][T14909]  ? __pfx_vfs_write+0x10/0x10
[  597.729484][T14909]  ? __pfx_do_sendfile+0x10/0x10
[  597.729523][T14909]  __se_sys_sendfile64+0x13e/0x190
[  597.729549][T14909]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  597.729578][T14909]  ? do_syscall_64+0xbe/0x3b0
[  597.729608][T14909]  do_syscall_64+0xfa/0x3b0
[  597.729631][T14909]  ? lockdep_hardirqs_on+0x9c/0x150
[  597.729653][T14909]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.729672][T14909]  ? clear_bhb_loop+0x60/0xb0
[  597.729697][T14909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.729716][T14909] RIP: 0033:0x7f5846d17449
[  597.729735][T14909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  597.729753][T14909] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  597.729775][T14909] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  597.729790][T14909] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  597.729802][T14909] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  597.729816][T14909] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  597.729830][T14909] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  597.729870][T14909]  </TASK>
[  598.143280][   T30] audit: type=1800 audit(1748505685.292:738): pid=14910 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  598.144451][T14910] FAULT_INJECTION: forcing a failure.
[  598.144451][T14910] name failslab, interval 1, probability 0, space 0, times 0
[  598.179153][T14910] CPU: 0 UID: 0 PID: 14910 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  598.179180][T14910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  598.179193][T14910] Call Trace:
[  598.179201][T14910]  <TASK>
[  598.179210][T14910]  dump_stack_lvl+0x189/0x250
[  598.179242][T14910]  ? __pfx____ratelimit+0x10/0x10
[  598.179267][T14910]  ? __pfx_dump_stack_lvl+0x10/0x10
[  598.179295][T14910]  ? __pfx__printk+0x10/0x10
[  598.179322][T14910]  ? __pfx___might_resched+0x10/0x10
[  598.179347][T14910]  ? fs_reclaim_acquire+0x7d/0x100
[  598.179377][T14910]  should_fail_ex+0x414/0x560
[  598.179414][T14910]  should_failslab+0xa8/0x100
[  598.179439][T14910]  kmem_cache_alloc_noprof+0x73/0x3c0
[  598.179458][T14910]  ? ext4_mb_new_blocks+0x559/0x46a0
[  598.179490][T14910]  ext4_mb_new_blocks+0x559/0x46a0
[  598.179535][T14910]  ? trace_kmalloc+0x1f/0xd0
[  598.179552][T14910]  ? __kmalloc_noprof+0x29b/0x4f0
[  598.179578][T14910]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  598.179607][T14910]  ? ext4_ext_check_overlap+0x162/0x580
[  598.179630][T14910]  ? ext4_inode_to_goal_block+0x31a/0x460
[  598.179661][T14910]  ext4_ext_map_blocks+0x161a/0x6ac0
[  598.179708][T14910]  ? __lock_acquire+0xab9/0xd20
[  598.179745][T14910]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  598.179797][T14910]  ext4_map_blocks+0x931/0x18d0
[  598.179839][T14910]  ? __pfx_ext4_map_blocks+0x10/0x10
[  598.179863][T14910]  ? trace_jbd2_handle_start+0x8a/0x220
[  598.179912][T14910]  ext4_iomap_begin+0xe67/0x18f0
[  598.179960][T14910]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  598.180005][T14910]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  598.180032][T14910]  iomap_iter+0x53a/0xdf0
[  598.180072][T14910]  __iomap_dio_rw+0xc67/0x1e40
[  598.180100][T14910]  ? ext4_file_write_iter+0x1741/0x1bc0
[  598.180152][T14910]  ? __pfx___iomap_dio_rw+0x10/0x10
[  598.180223][T14910]  ? jbd2_journal_stop+0x8ee/0xd80
[  598.180259][T14910]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  598.180287][T14910]  ? __pfx_ext4_orphan_add+0x10/0x10
[  598.180314][T14910]  iomap_dio_rw+0x45/0xb0
[  598.180349][T14910]  ext4_file_write_iter+0x16a2/0x1bc0
[  598.180407][T14910]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  598.180439][T14910]  ? __asan_memset+0x22/0x50
[  598.180474][T14910]  iter_file_splice_write+0x937/0x1000
[  598.180523][T14910]  ? __pfx_iter_file_splice_write+0x10/0x10
[  598.180548][T14910]  ? rcu_read_lock_any_held+0xb3/0x120
[  598.180591][T14910]  ? __pfx_iter_file_splice_write+0x10/0x10
[  598.180613][T14910]  direct_splice_actor+0xfe/0x160
[  598.180638][T14910]  splice_direct_to_actor+0x5a8/0xcc0
[  598.180680][T14910]  ? __pfx_direct_splice_actor+0x10/0x10
[  598.180701][T14910]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  598.180733][T14910]  do_splice_direct+0x181/0x270
[  598.180757][T14910]  ? __pfx_do_splice_direct+0x10/0x10
[  598.180779][T14910]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  598.180809][T14910]  ? rw_verify_area+0x258/0x650
[  598.180843][T14910]  do_sendfile+0x4da/0x7e0
[  598.180866][T14910]  ? __pfx_vfs_write+0x10/0x10
[  598.180901][T14910]  ? __pfx_do_sendfile+0x10/0x10
[  598.180940][T14910]  __se_sys_sendfile64+0x13e/0x190
[  598.180965][T14910]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  598.180994][T14910]  ? do_syscall_64+0xbe/0x3b0
[  598.181022][T14910]  do_syscall_64+0xfa/0x3b0
[  598.181045][T14910]  ? lockdep_hardirqs_on+0x9c/0x150
[  598.181068][T14910]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.181088][T14910]  ? clear_bhb_loop+0x60/0xb0
[  598.181112][T14910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.181132][T14910] RIP: 0033:0x7f5846d17449
[  598.181150][T14910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  598.181168][T14910] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  598.181189][T14910] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  598.181205][T14910] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  598.181218][T14910] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  598.181232][T14910] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  598.181245][T14910] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  598.181278][T14910]  </TASK>
[  598.620477][   T30] audit: type=1800 audit(1748505685.772:739): pid=14911 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  598.643517][T14911] FAULT_INJECTION: forcing a failure.
[  598.643517][T14911] name failslab, interval 1, probability 0, space 0, times 0
[  598.657494][T14911] CPU: 1 UID: 0 PID: 14911 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  598.657521][T14911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  598.657534][T14911] Call Trace:
[  598.657542][T14911]  <TASK>
[  598.657550][T14911]  dump_stack_lvl+0x189/0x250
[  598.657583][T14911]  ? __pfx____ratelimit+0x10/0x10
[  598.657608][T14911]  ? __pfx_dump_stack_lvl+0x10/0x10
[  598.657637][T14911]  ? __pfx__printk+0x10/0x10
[  598.657657][T14911]  ? __pfx___might_resched+0x10/0x10
[  598.657680][T14911]  ? fs_reclaim_acquire+0x7d/0x100
[  598.657706][T14911]  should_fail_ex+0x414/0x560
[  598.657742][T14911]  should_failslab+0xa8/0x100
[  598.657766][T14911]  __kmalloc_noprof+0xcb/0x4f0
[  598.657782][T14911]  ? ext4_find_extent+0x207/0xcc0
[  598.657805][T14911]  ext4_find_extent+0x207/0xcc0
[  598.657837][T14911]  ext4_ext_map_blocks+0x288/0x6ac0
[  598.657868][T14911]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  598.657903][T14911]  ? __lock_acquire+0xab9/0xd20
[  598.657938][T14911]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  598.657991][T14911]  ext4_map_blocks+0x931/0x18d0
[  598.658032][T14911]  ? __pfx_ext4_map_blocks+0x10/0x10
[  598.658057][T14911]  ? trace_jbd2_handle_start+0x8a/0x220
[  598.658105][T14911]  ext4_iomap_begin+0xe67/0x18f0
[  598.658161][T14911]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  598.658205][T14911]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  598.658231][T14911]  iomap_iter+0x53a/0xdf0
[  598.658271][T14911]  __iomap_dio_rw+0xc67/0x1e40
[  598.658298][T14911]  ? ext4_file_write_iter+0x1741/0x1bc0
[  598.658350][T14911]  ? __pfx___iomap_dio_rw+0x10/0x10
[  598.658416][T14911]  ? jbd2_journal_stop+0x8ee/0xd80
[  598.658452][T14911]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  598.658479][T14911]  ? __pfx_ext4_orphan_add+0x10/0x10
[  598.658507][T14911]  iomap_dio_rw+0x45/0xb0
[  598.658541][T14911]  ext4_file_write_iter+0x16a2/0x1bc0
[  598.658594][T14911]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  598.658625][T14911]  ? __asan_memset+0x22/0x50
[  598.658669][T14911]  iter_file_splice_write+0x937/0x1000
[  598.658720][T14911]  ? __pfx_iter_file_splice_write+0x10/0x10
[  598.658746][T14911]  ? rcu_read_lock_any_held+0xb3/0x120
[  598.658790][T14911]  ? __pfx_iter_file_splice_write+0x10/0x10
[  598.658813][T14911]  direct_splice_actor+0xfe/0x160
[  598.658838][T14911]  splice_direct_to_actor+0x5a8/0xcc0
[  598.658879][T14911]  ? __pfx_direct_splice_actor+0x10/0x10
[  598.658898][T14911]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  598.658930][T14911]  do_splice_direct+0x181/0x270
[  598.658954][T14911]  ? __pfx_do_splice_direct+0x10/0x10
[  598.658975][T14911]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  598.659003][T14911]  ? rw_verify_area+0x258/0x650
[  598.659037][T14911]  do_sendfile+0x4da/0x7e0
[  598.659060][T14911]  ? __pfx_vfs_write+0x10/0x10
[  598.659122][T14911]  ? __pfx_do_sendfile+0x10/0x10
[  598.659159][T14911]  __se_sys_sendfile64+0x13e/0x190
[  598.659186][T14911]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  598.659214][T14911]  ? do_syscall_64+0xbe/0x3b0
[  598.659243][T14911]  do_syscall_64+0xfa/0x3b0
[  598.659265][T14911]  ? lockdep_hardirqs_on+0x9c/0x150
[  598.659287][T14911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.659307][T14911]  ? clear_bhb_loop+0x60/0xb0
[  598.659331][T14911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.659350][T14911] RIP: 0033:0x7f5846d17449
[  598.659367][T14911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  598.659386][T14911] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  598.659407][T14911] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  598.659422][T14911] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  598.659434][T14911] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  598.659449][T14911] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  598.659462][T14911] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  598.659495][T14911]  </TASK>
[  599.072805][T14912] loop0: detected capacity change from 0 to 32768
[  599.085711][T14912] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14912)
[  599.108595][T14912] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  599.120677][T14912] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  599.131960][T14912] BTRFS info (device loop0): using free-space-tree
[  599.168462][   T30] audit: type=1800 audit(1748505686.322:740): pid=14912 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  599.190267][T14912] FAULT_INJECTION: forcing a failure.
[  599.190267][T14912] name failslab, interval 1, probability 0, space 0, times 0
[  599.204750][T14912] CPU: 0 UID: 0 PID: 14912 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  599.204781][T14912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  599.204794][T14912] Call Trace:
[  599.204802][T14912]  <TASK>
[  599.204811][T14912]  dump_stack_lvl+0x189/0x250
[  599.204844][T14912]  ? __pfx____ratelimit+0x10/0x10
[  599.204868][T14912]  ? __pfx_dump_stack_lvl+0x10/0x10
[  599.204897][T14912]  ? __pfx__printk+0x10/0x10
[  599.204919][T14912]  ? __pfx___might_resched+0x10/0x10
[  599.204946][T14912]  ? fs_reclaim_acquire+0x7d/0x100
[  599.204975][T14912]  should_fail_ex+0x414/0x560
[  599.205004][T14912]  should_failslab+0xa8/0x100
[  599.205027][T14912]  kmem_cache_alloc_noprof+0x73/0x3c0
[  599.205047][T14912]  ? alloc_extent_state+0x22/0x2f0
[  599.205079][T14912]  alloc_extent_state+0x22/0x2f0
[  599.205109][T14912]  btrfs_clear_extent_bit_changeset+0x24d/0xf00
[  599.205261][T14912]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  599.205301][T14912]  btrfs_dirty_folio+0x2cf/0x4d0
[  599.205347][T14912]  btrfs_buffered_write+0xd4d/0x16c0
[  599.205397][T14912]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  599.205422][T14912]  ? up_write+0x1c4/0x420
[  599.205449][T14912]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  599.205483][T14912]  btrfs_direct_write+0x610/0xb10
[  599.205519][T14912]  ? __pfx_btrfs_direct_write+0x10/0x10
[  599.205555][T14912]  btrfs_do_write_iter+0x25f/0x710
[  599.205585][T14912]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  599.205606][T14912]  ? __asan_memset+0x22/0x50
[  599.205639][T14912]  iter_file_splice_write+0x937/0x1000
[  599.205688][T14912]  ? __pfx_iter_file_splice_write+0x10/0x10
[  599.205717][T14912]  ? rcu_read_lock_any_held+0xb3/0x120
[  599.205764][T14912]  ? __pfx_iter_file_splice_write+0x10/0x10
[  599.205786][T14912]  direct_splice_actor+0xfe/0x160
[  599.205810][T14912]  splice_direct_to_actor+0x5a8/0xcc0
[  599.205852][T14912]  ? __pfx_direct_splice_actor+0x10/0x10
[  599.205871][T14912]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  599.205902][T14912]  do_splice_direct+0x181/0x270
[  599.205924][T14912]  ? __pfx_do_splice_direct+0x10/0x10
[  599.205946][T14912]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  599.205975][T14912]  ? rw_verify_area+0x258/0x650
[  599.206009][T14912]  do_sendfile+0x4da/0x7e0
[  599.206031][T14912]  ? __pfx_vfs_write+0x10/0x10
[  599.206067][T14912]  ? __pfx_do_sendfile+0x10/0x10
[  599.206105][T14912]  __se_sys_sendfile64+0x13e/0x190
[  599.206131][T14912]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  599.206166][T14912]  ? do_syscall_64+0xbe/0x3b0
[  599.206195][T14912]  do_syscall_64+0xfa/0x3b0
[  599.206218][T14912]  ? lockdep_hardirqs_on+0x9c/0x150
[  599.206241][T14912]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.206262][T14912]  ? clear_bhb_loop+0x60/0xb0
[  599.206287][T14912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.206307][T14912] RIP: 0033:0x7f5846d17449
[  599.206325][T14912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  599.206343][T14912] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  599.206365][T14912] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  599.206381][T14912] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  599.206393][T14912] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  599.206407][T14912] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  599.206421][T14912] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  599.206449][T14912]  </TASK>
[  599.689940][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  599.819341][   T30] audit: type=1800 audit(1748505686.972:741): pid=14930 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  599.820521][T14930] FAULT_INJECTION: forcing a failure.
[  599.820521][T14930] name failslab, interval 1, probability 0, space 0, times 0
[  599.853467][T14930] CPU: 0 UID: 0 PID: 14930 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  599.853495][T14930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  599.853507][T14930] Call Trace:
[  599.853516][T14930]  <TASK>
[  599.853525][T14930]  dump_stack_lvl+0x189/0x250
[  599.853558][T14930]  ? __pfx____ratelimit+0x10/0x10
[  599.853584][T14930]  ? __pfx_dump_stack_lvl+0x10/0x10
[  599.853608][T14930]  ? __pfx__printk+0x10/0x10
[  599.853630][T14930]  ? __pfx___might_resched+0x10/0x10
[  599.853654][T14930]  ? fs_reclaim_acquire+0x7d/0x100
[  599.853679][T14930]  should_fail_ex+0x414/0x560
[  599.853709][T14930]  should_failslab+0xa8/0x100
[  599.853731][T14930]  kmem_cache_alloc_noprof+0x73/0x3c0
[  599.853751][T14930]  ? ext4_mb_new_blocks+0x559/0x46a0
[  599.853784][T14930]  ext4_mb_new_blocks+0x559/0x46a0
[  599.853829][T14930]  ? trace_kmalloc+0x1f/0xd0
[  599.853845][T14930]  ? __kmalloc_noprof+0x29b/0x4f0
[  599.853872][T14930]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  599.853901][T14930]  ? ext4_ext_check_overlap+0x162/0x580
[  599.853924][T14930]  ? ext4_inode_to_goal_block+0x31a/0x460
[  599.853954][T14930]  ext4_ext_map_blocks+0x161a/0x6ac0
[  599.853999][T14930]  ? __lock_acquire+0xab9/0xd20
[  599.854034][T14930]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  599.854086][T14930]  ext4_map_blocks+0x931/0x18d0
[  599.854129][T14930]  ? __pfx_ext4_map_blocks+0x10/0x10
[  599.854154][T14930]  ? trace_jbd2_handle_start+0x8a/0x220
[  599.854203][T14930]  ext4_iomap_begin+0xe67/0x18f0
[  599.854252][T14930]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  599.854304][T14930]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  599.854331][T14930]  iomap_iter+0x53a/0xdf0
[  599.854371][T14930]  __iomap_dio_rw+0xc67/0x1e40
[  599.854399][T14930]  ? ext4_file_write_iter+0x1741/0x1bc0
[  599.854453][T14930]  ? __pfx___iomap_dio_rw+0x10/0x10
[  599.854516][T14930]  ? jbd2_journal_stop+0x8ee/0xd80
[  599.854552][T14930]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  599.854576][T14930]  ? __pfx_ext4_orphan_add+0x10/0x10
[  599.854602][T14930]  iomap_dio_rw+0x45/0xb0
[  599.854634][T14930]  ext4_file_write_iter+0x16a2/0x1bc0
[  599.854687][T14930]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  599.854719][T14930]  ? __asan_memset+0x22/0x50
[  599.854753][T14930]  iter_file_splice_write+0x937/0x1000
[  599.854803][T14930]  ? __pfx_iter_file_splice_write+0x10/0x10
[  599.854827][T14930]  ? rcu_read_lock_any_held+0xb3/0x120
[  599.854869][T14930]  ? __pfx_iter_file_splice_write+0x10/0x10
[  599.854889][T14930]  direct_splice_actor+0xfe/0x160
[  599.854913][T14930]  splice_direct_to_actor+0x5a8/0xcc0
[  599.854953][T14930]  ? __pfx_direct_splice_actor+0x10/0x10
[  599.854970][T14930]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  599.854996][T14930]  do_splice_direct+0x181/0x270
[  599.855015][T14930]  ? __pfx_do_splice_direct+0x10/0x10
[  599.855033][T14930]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  599.855059][T14930]  ? rw_verify_area+0x258/0x650
[  599.855090][T14930]  do_sendfile+0x4da/0x7e0
[  599.855111][T14930]  ? __pfx_vfs_write+0x10/0x10
[  599.855146][T14930]  ? __pfx_do_sendfile+0x10/0x10
[  599.855182][T14930]  __se_sys_sendfile64+0x13e/0x190
[  599.855208][T14930]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  599.855237][T14930]  ? do_syscall_64+0xbe/0x3b0
[  599.855266][T14930]  do_syscall_64+0xfa/0x3b0
[  599.855294][T14930]  ? lockdep_hardirqs_on+0x9c/0x150
[  599.855317][T14930]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.855337][T14930]  ? clear_bhb_loop+0x60/0xb0
[  599.855359][T14930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.855376][T14930] RIP: 0033:0x7f5846d17449
[  599.855394][T14930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  599.855413][T14930] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  599.855434][T14930] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  599.855450][T14930] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  599.855462][T14930] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  599.855476][T14930] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  599.855490][T14930] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  599.855524][T14930]  </TASK>
[  600.290718][T14931] loop0: detected capacity change from 0 to 32768
[  600.313279][T14931] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14931)
[  600.332708][T14931] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  600.344957][T14931] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  600.354780][T14931] BTRFS info (device loop0): using free-space-tree
[  600.414217][   T30] audit: type=1800 audit(1748505687.562:742): pid=14931 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  600.435988][T14931] FAULT_INJECTION: forcing a failure.
[  600.435988][T14931] name failslab, interval 1, probability 0, space 0, times 0
[  600.449565][T14931] CPU: 1 UID: 0 PID: 14931 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  600.449592][T14931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  600.449605][T14931] Call Trace:
[  600.449614][T14931]  <TASK>
[  600.449622][T14931]  dump_stack_lvl+0x189/0x250
[  600.449655][T14931]  ? __pfx____ratelimit+0x10/0x10
[  600.449677][T14931]  ? __pfx_dump_stack_lvl+0x10/0x10
[  600.449705][T14931]  ? __pfx__printk+0x10/0x10
[  600.449727][T14931]  ? __pfx___might_resched+0x10/0x10
[  600.449755][T14931]  ? fs_reclaim_acquire+0x7d/0x100
[  600.449783][T14931]  should_fail_ex+0x414/0x560
[  600.449812][T14931]  should_failslab+0xa8/0x100
[  600.449835][T14931]  kmem_cache_alloc_noprof+0x73/0x3c0
[  600.449854][T14931]  ? alloc_extent_state+0x22/0x2f0
[  600.449884][T14931]  alloc_extent_state+0x22/0x2f0
[  600.449913][T14931]  set_extent_bit+0x270/0x2180
[  600.449940][T14931]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  600.449974][T14931]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  600.450011][T14931]  ? __pfx_set_extent_bit+0x10/0x10
[  600.450041][T14931]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  600.450084][T14931]  btrfs_set_extent_bit+0x38/0x50
[  600.450114][T14931]  btrfs_dirty_folio+0x2e2/0x4d0
[  600.450159][T14931]  btrfs_buffered_write+0xd4d/0x16c0
[  600.450209][T14931]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  600.450235][T14931]  ? up_write+0x1c4/0x420
[  600.450263][T14931]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  600.450297][T14931]  btrfs_direct_write+0x610/0xb10
[  600.450329][T14931]  ? __pfx_btrfs_direct_write+0x10/0x10
[  600.450366][T14931]  btrfs_do_write_iter+0x25f/0x710
[  600.450396][T14931]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  600.450416][T14931]  ? __asan_memset+0x22/0x50
[  600.450449][T14931]  iter_file_splice_write+0x937/0x1000
[  600.450496][T14931]  ? __pfx_iter_file_splice_write+0x10/0x10
[  600.450522][T14931]  ? rcu_read_lock_any_held+0xb3/0x120
[  600.450561][T14931]  ? __pfx_iter_file_splice_write+0x10/0x10
[  600.450583][T14931]  direct_splice_actor+0xfe/0x160
[  600.450605][T14931]  splice_direct_to_actor+0x5a8/0xcc0
[  600.450646][T14931]  ? __pfx_direct_splice_actor+0x10/0x10
[  600.450665][T14931]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  600.450696][T14931]  do_splice_direct+0x181/0x270
[  600.450719][T14931]  ? __pfx_do_splice_direct+0x10/0x10
[  600.450739][T14931]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  600.450765][T14931]  ? rw_verify_area+0x258/0x650
[  600.450797][T14931]  do_sendfile+0x4da/0x7e0
[  600.450819][T14931]  ? __pfx_vfs_write+0x10/0x10
[  600.450853][T14931]  ? __pfx_do_sendfile+0x10/0x10
[  600.450891][T14931]  __se_sys_sendfile64+0x13e/0x190
[  600.450916][T14931]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  600.450944][T14931]  ? do_syscall_64+0xbe/0x3b0
[  600.450973][T14931]  do_syscall_64+0xfa/0x3b0
[  600.450995][T14931]  ? lockdep_hardirqs_on+0x9c/0x150
[  600.451019][T14931]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.451038][T14931]  ? clear_bhb_loop+0x60/0xb0
[  600.451070][T14931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.451089][T14931] RIP: 0033:0x7f5846d17449
[  600.451108][T14931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  600.451126][T14931] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  600.451147][T14931] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  600.451162][T14931] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  600.451174][T14931] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  600.451187][T14931] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  600.451201][T14931] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  600.451233][T14931]  </TASK>
[  600.923278][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  601.022299][T14948] loop0: detected capacity change from 0 to 32768
[  601.030776][T14948] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14948)
[  601.077752][T14948] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  601.088947][T14948] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  601.098467][T14948] BTRFS info (device loop0): using free-space-tree
[  601.140796][   T30] audit: type=1800 audit(1748505688.292:743): pid=14948 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  601.291388][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  601.352959][T14965] loop0: detected capacity change from 0 to 32768
[  601.375839][T14965] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14965)
[  601.402429][T14965] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  601.414555][T14965] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  601.424448][T14965] BTRFS info (device loop0): using free-space-tree
[  601.495889][   T30] audit: type=1800 audit(1748505688.642:744): pid=14965 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  601.497220][T14965] FAULT_INJECTION: forcing a failure.
[  601.497220][T14965] name failslab, interval 1, probability 0, space 0, times 0
[  601.529727][T14965] CPU: 0 UID: 0 PID: 14965 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  601.529755][T14965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  601.529767][T14965] Call Trace:
[  601.529775][T14965]  <TASK>
[  601.529784][T14965]  dump_stack_lvl+0x189/0x250
[  601.529817][T14965]  ? __pfx____ratelimit+0x10/0x10
[  601.529842][T14965]  ? __pfx_dump_stack_lvl+0x10/0x10
[  601.529881][T14965]  ? __pfx__printk+0x10/0x10
[  601.529904][T14965]  ? __pfx___might_resched+0x10/0x10
[  601.529939][T14965]  ? fs_reclaim_acquire+0x7d/0x100
[  601.529966][T14965]  should_fail_ex+0x414/0x560
[  601.529994][T14965]  should_failslab+0xa8/0x100
[  601.530017][T14965]  kmem_cache_alloc_noprof+0x73/0x3c0
[  601.530036][T14965]  ? alloc_extent_state+0x22/0x2f0
[  601.530066][T14965]  alloc_extent_state+0x22/0x2f0
[  601.530095][T14965]  set_extent_bit+0x270/0x2180
[  601.530125][T14965]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  601.530159][T14965]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  601.530196][T14965]  ? __pfx_set_extent_bit+0x10/0x10
[  601.530226][T14965]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  601.530258][T14965]  btrfs_set_extent_bit+0x38/0x50
[  601.530290][T14965]  btrfs_dirty_folio+0x2e2/0x4d0
[  601.530336][T14965]  btrfs_buffered_write+0xd4d/0x16c0
[  601.530388][T14965]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  601.530414][T14965]  ? up_write+0x1c4/0x420
[  601.530442][T14965]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  601.530476][T14965]  btrfs_direct_write+0x610/0xb10
[  601.530519][T14965]  ? __pfx_btrfs_direct_write+0x10/0x10
[  601.530555][T14965]  btrfs_do_write_iter+0x25f/0x710
[  601.530584][T14965]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  601.530606][T14965]  ? __asan_memset+0x22/0x50
[  601.530647][T14965]  iter_file_splice_write+0x937/0x1000
[  601.530697][T14965]  ? __pfx_iter_file_splice_write+0x10/0x10
[  601.530723][T14965]  ? rcu_read_lock_any_held+0xb3/0x120
[  601.530766][T14965]  ? __pfx_iter_file_splice_write+0x10/0x10
[  601.530787][T14965]  direct_splice_actor+0xfe/0x160
[  601.530810][T14965]  splice_direct_to_actor+0x5a8/0xcc0
[  601.530848][T14965]  ? __pfx_direct_splice_actor+0x10/0x10
[  601.530868][T14965]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  601.530898][T14965]  do_splice_direct+0x181/0x270
[  601.530929][T14965]  ? __pfx_do_splice_direct+0x10/0x10
[  601.530951][T14965]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  601.530978][T14965]  ? rw_verify_area+0x258/0x650
[  601.531008][T14965]  do_sendfile+0x4da/0x7e0
[  601.531031][T14965]  ? __pfx_vfs_write+0x10/0x10
[  601.531062][T14965]  ? __pfx_do_sendfile+0x10/0x10
[  601.531081][T14965]  ? rcu_is_watching+0x15/0xb0
[  601.531107][T14965]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[  601.531139][T14965]  __se_sys_sendfile64+0x13e/0x190
[  601.531164][T14965]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  601.531184][T14965]  ? rcu_is_watching+0x15/0xb0
[  601.531216][T14965]  ? do_syscall_64+0xbe/0x3b0
[  601.531245][T14965]  do_syscall_64+0xfa/0x3b0
[  601.531268][T14965]  ? lockdep_hardirqs_on+0x9c/0x150
[  601.531290][T14965]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.531310][T14965]  ? clear_bhb_loop+0x60/0xb0
[  601.531334][T14965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.531353][T14965] RIP: 0033:0x7f5846d17449
[  601.531372][T14965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  601.531390][T14965] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  601.531410][T14965] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  601.531424][T14965] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  601.531437][T14965] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  601.531450][T14965] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  601.531465][T14965] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  601.531497][T14965]  </TASK>
[  602.024025][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  602.098677][T14982] loop0: detected capacity change from 0 to 32768
[  602.114131][T14982] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (14982)
[  602.142520][T14982] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  602.153939][T14982] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  602.163352][T14982] BTRFS info (device loop0): using free-space-tree
[  602.208971][T14982] FAULT_INJECTION: forcing a failure.
[  602.208971][T14982] name failslab, interval 1, probability 0, space 0, times 0
[  602.222039][   T30] audit: type=1800 audit(1748505689.362:745): pid=14982 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  602.243071][T14982] CPU: 1 UID: 0 PID: 14982 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  602.243098][T14982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  602.243110][T14982] Call Trace:
[  602.243118][T14982]  <TASK>
[  602.243127][T14982]  dump_stack_lvl+0x189/0x250
[  602.243167][T14982]  ? __pfx____ratelimit+0x10/0x10
[  602.243192][T14982]  ? __pfx_dump_stack_lvl+0x10/0x10
[  602.243220][T14982]  ? __pfx__printk+0x10/0x10
[  602.243242][T14982]  ? __pfx___might_resched+0x10/0x10
[  602.243269][T14982]  ? fs_reclaim_acquire+0x7d/0x100
[  602.243297][T14982]  should_fail_ex+0x414/0x560
[  602.243327][T14982]  should_failslab+0xa8/0x100
[  602.243350][T14982]  kmem_cache_alloc_noprof+0x73/0x3c0
[  602.243370][T14982]  ? alloc_extent_state+0x22/0x2f0
[  602.243400][T14982]  alloc_extent_state+0x22/0x2f0
[  602.243430][T14982]  set_extent_bit+0x270/0x2180
[  602.243459][T14982]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  602.243493][T14982]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  602.243531][T14982]  ? __pfx_set_extent_bit+0x10/0x10
[  602.243561][T14982]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  602.243592][T14982]  btrfs_set_extent_bit+0x38/0x50
[  602.243622][T14982]  btrfs_dirty_folio+0x2e2/0x4d0
[  602.243669][T14982]  btrfs_buffered_write+0xd4d/0x16c0
[  602.243716][T14982]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  602.243742][T14982]  ? up_write+0x1c4/0x420
[  602.243769][T14982]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  602.243802][T14982]  btrfs_direct_write+0x610/0xb10
[  602.243838][T14982]  ? __pfx_btrfs_direct_write+0x10/0x10
[  602.243873][T14982]  btrfs_do_write_iter+0x25f/0x710
[  602.243898][T14982]  ? iter_file_splice_write+0x1cb/0x1000
[  602.243920][T14982]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  602.243941][T14982]  ? __asan_memset+0x22/0x50
[  602.243975][T14982]  iter_file_splice_write+0x937/0x1000
[  602.244022][T14982]  ? __pfx_iter_file_splice_write+0x10/0x10
[  602.244046][T14982]  ? rcu_read_lock_any_held+0xb3/0x120
[  602.244088][T14982]  ? __pfx_iter_file_splice_write+0x10/0x10
[  602.244115][T14982]  direct_splice_actor+0xfe/0x160
[  602.244145][T14982]  splice_direct_to_actor+0x5a8/0xcc0
[  602.244183][T14982]  ? __pfx_direct_splice_actor+0x10/0x10
[  602.244225][T14982]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  602.244254][T14982]  do_splice_direct+0x181/0x270
[  602.244275][T14982]  ? __pfx_do_splice_direct+0x10/0x10
[  602.244294][T14982]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  602.244321][T14982]  ? rw_verify_area+0x258/0x650
[  602.244351][T14982]  do_sendfile+0x4da/0x7e0
[  602.244373][T14982]  ? __pfx_vfs_write+0x10/0x10
[  602.244406][T14982]  ? __pfx_do_sendfile+0x10/0x10
[  602.244445][T14982]  __se_sys_sendfile64+0x13e/0x190
[  602.244470][T14982]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  602.244498][T14982]  ? do_syscall_64+0xbe/0x3b0
[  602.244524][T14982]  do_syscall_64+0xfa/0x3b0
[  602.244546][T14982]  ? lockdep_hardirqs_on+0x9c/0x150
[  602.244567][T14982]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.244585][T14982]  ? clear_bhb_loop+0x60/0xb0
[  602.244607][T14982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.244625][T14982] RIP: 0033:0x7f5846d17449
[  602.244642][T14982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  602.244659][T14982] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  602.244679][T14982] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  602.244693][T14982] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  602.244705][T14982] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  602.244718][T14982] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  602.244731][T14982] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  602.244761][T14982]  </TASK>
[  602.773579][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  602.861264][T15000] loop0: detected capacity change from 0 to 32768
[  602.870351][T15000] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (15000)
[  602.894546][T15000] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  602.906173][T15000] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  602.916484][T15000] BTRFS info (device loop0): using free-space-tree
[  602.961964][   T30] audit: type=1800 audit(1748505690.112:746): pid=15000 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  602.962929][T15000] FAULT_INJECTION: forcing a failure.
[  602.962929][T15000] name failslab, interval 1, probability 0, space 0, times 0
[  602.997222][T15000] CPU: 1 UID: 0 PID: 15000 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  602.997249][T15000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  602.997260][T15000] Call Trace:
[  602.997269][T15000]  <TASK>
[  602.997278][T15000]  dump_stack_lvl+0x189/0x250
[  602.997311][T15000]  ? __pfx____ratelimit+0x10/0x10
[  602.997334][T15000]  ? __pfx_dump_stack_lvl+0x10/0x10
[  602.997363][T15000]  ? __pfx__printk+0x10/0x10
[  602.997386][T15000]  ? __pfx___might_resched+0x10/0x10
[  602.997412][T15000]  ? fs_reclaim_acquire+0x7d/0x100
[  602.997440][T15000]  should_fail_ex+0x414/0x560
[  602.997471][T15000]  should_failslab+0xa8/0x100
[  602.997492][T15000]  kmem_cache_alloc_noprof+0x73/0x3c0
[  602.997511][T15000]  ? alloc_extent_state+0x22/0x2f0
[  602.997543][T15000]  alloc_extent_state+0x22/0x2f0
[  602.997570][T15000]  set_extent_bit+0x270/0x2180
[  602.997597][T15000]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  602.997628][T15000]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  602.997663][T15000]  ? __pfx_set_extent_bit+0x10/0x10
[  602.997691][T15000]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  602.997718][T15000]  btrfs_set_extent_bit+0x38/0x50
[  602.997743][T15000]  btrfs_dirty_folio+0x2e2/0x4d0
[  602.997781][T15000]  btrfs_buffered_write+0xd4d/0x16c0
[  602.997822][T15000]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  602.997843][T15000]  ? up_write+0x1c4/0x420
[  602.997866][T15000]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  602.997901][T15000]  btrfs_direct_write+0x610/0xb10
[  602.997929][T15000]  ? __pfx_btrfs_direct_write+0x10/0x10
[  602.997959][T15000]  btrfs_do_write_iter+0x25f/0x710
[  602.997984][T15000]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  602.998006][T15000]  ? __asan_memset+0x22/0x50
[  602.998034][T15000]  iter_file_splice_write+0x937/0x1000
[  602.998073][T15000]  ? __pfx_iter_file_splice_write+0x10/0x10
[  602.998093][T15000]  ? rcu_read_lock_any_held+0xb3/0x120
[  602.998128][T15000]  ? __pfx_iter_file_splice_write+0x10/0x10
[  602.998146][T15000]  direct_splice_actor+0xfe/0x160
[  602.998166][T15000]  splice_direct_to_actor+0x5a8/0xcc0
[  602.998200][T15000]  ? __pfx_direct_splice_actor+0x10/0x10
[  602.998216][T15000]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  602.998242][T15000]  do_splice_direct+0x181/0x270
[  602.998261][T15000]  ? __pfx_do_splice_direct+0x10/0x10
[  602.998278][T15000]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  602.998302][T15000]  ? rw_verify_area+0x258/0x650
[  602.998330][T15000]  do_sendfile+0x4da/0x7e0
[  602.998349][T15000]  ? __pfx_vfs_write+0x10/0x10
[  602.998378][T15000]  ? __pfx_do_sendfile+0x10/0x10
[  602.998409][T15000]  __se_sys_sendfile64+0x13e/0x190
[  602.998430][T15000]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  602.998453][T15000]  ? do_syscall_64+0xbe/0x3b0
[  602.998477][T15000]  do_syscall_64+0xfa/0x3b0
[  602.998496][T15000]  ? lockdep_hardirqs_on+0x9c/0x150
[  602.998515][T15000]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.998531][T15000]  ? clear_bhb_loop+0x60/0xb0
[  602.998551][T15000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.998567][T15000] RIP: 0033:0x7f5846d17449
[  602.998583][T15000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  602.998599][T15000] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  602.998617][T15000] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  602.998630][T15000] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  602.998640][T15000] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  602.998651][T15000] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  602.998663][T15000] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  602.998690][T15000]  </TASK>
[  603.413947][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  603.532715][T15017] FAULT_INJECTION: forcing a failure.
[  603.532715][T15017] name failslab, interval 1, probability 0, space 0, times 0
[  603.537615][   T30] audit: type=1800 audit(1748505690.682:747): pid=15017 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  603.566690][T15017] CPU: 0 UID: 0 PID: 15017 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  603.566720][T15017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  603.566732][T15017] Call Trace:
[  603.566741][T15017]  <TASK>
[  603.566751][T15017]  dump_stack_lvl+0x189/0x250
[  603.566785][T15017]  ? __pfx____ratelimit+0x10/0x10
[  603.566810][T15017]  ? __pfx_dump_stack_lvl+0x10/0x10
[  603.566832][T15017]  ? __pfx__printk+0x10/0x10
[  603.566852][T15017]  ? __pfx___might_resched+0x10/0x10
[  603.566872][T15017]  ? fs_reclaim_acquire+0x7d/0x100
[  603.566894][T15017]  should_fail_ex+0x414/0x560
[  603.566917][T15017]  should_failslab+0xa8/0x100
[  603.566934][T15017]  kmem_cache_alloc_noprof+0x73/0x3c0
[  603.566953][T15017]  ? ext4_mb_new_blocks+0x559/0x46a0
[  603.566982][T15017]  ext4_mb_new_blocks+0x559/0x46a0
[  603.567018][T15017]  ? ext4_find_extent+0x207/0xcc0
[  603.567043][T15017]  ? trace_kmalloc+0x1f/0xd0
[  603.567069][T15017]  ? __kmalloc_noprof+0x29b/0x4f0
[  603.567096][T15017]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  603.567125][T15017]  ? ext4_ext_check_overlap+0x162/0x580
[  603.567147][T15017]  ? ext4_inode_to_goal_block+0x31a/0x460
[  603.567179][T15017]  ext4_ext_map_blocks+0x161a/0x6ac0
[  603.567227][T15017]  ? __lock_acquire+0xab9/0xd20
[  603.567263][T15017]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  603.567318][T15017]  ext4_map_blocks+0x931/0x18d0
[  603.567365][T15017]  ? __pfx_ext4_map_blocks+0x10/0x10
[  603.567389][T15017]  ? trace_jbd2_handle_start+0x8a/0x220
[  603.567439][T15017]  ext4_iomap_begin+0xe67/0x18f0
[  603.567488][T15017]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  603.567532][T15017]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  603.567558][T15017]  iomap_iter+0x53a/0xdf0
[  603.567596][T15017]  __iomap_dio_rw+0xc67/0x1e40
[  603.567621][T15017]  ? ext4_file_write_iter+0x1741/0x1bc0
[  603.567675][T15017]  ? __pfx___iomap_dio_rw+0x10/0x10
[  603.567741][T15017]  ? jbd2_journal_stop+0x8ee/0xd80
[  603.567776][T15017]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  603.567802][T15017]  ? __pfx_ext4_orphan_add+0x10/0x10
[  603.567828][T15017]  iomap_dio_rw+0x45/0xb0
[  603.567862][T15017]  ext4_file_write_iter+0x16a2/0x1bc0
[  603.567914][T15017]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  603.567945][T15017]  ? __asan_memset+0x22/0x50
[  603.567979][T15017]  iter_file_splice_write+0x937/0x1000
[  603.568027][T15017]  ? __pfx_iter_file_splice_write+0x10/0x10
[  603.568052][T15017]  ? rcu_read_lock_any_held+0xb3/0x120
[  603.568100][T15017]  ? __pfx_iter_file_splice_write+0x10/0x10
[  603.568120][T15017]  direct_splice_actor+0xfe/0x160
[  603.568145][T15017]  splice_direct_to_actor+0x5a8/0xcc0
[  603.568187][T15017]  ? __pfx_direct_splice_actor+0x10/0x10
[  603.568206][T15017]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  603.568238][T15017]  do_splice_direct+0x181/0x270
[  603.568261][T15017]  ? __pfx_do_splice_direct+0x10/0x10
[  603.568282][T15017]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  603.568310][T15017]  ? rw_verify_area+0x258/0x650
[  603.568343][T15017]  do_sendfile+0x4da/0x7e0
[  603.568365][T15017]  ? __pfx_vfs_write+0x10/0x10
[  603.568400][T15017]  ? __pfx_do_sendfile+0x10/0x10
[  603.568437][T15017]  __se_sys_sendfile64+0x13e/0x190
[  603.568462][T15017]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  603.568490][T15017]  ? do_syscall_64+0xbe/0x3b0
[  603.568519][T15017]  do_syscall_64+0xfa/0x3b0
[  603.568541][T15017]  ? lockdep_hardirqs_on+0x9c/0x150
[  603.568563][T15017]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  603.568582][T15017]  ? clear_bhb_loop+0x60/0xb0
[  603.568606][T15017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  603.568625][T15017] RIP: 0033:0x7f5846d17449
[  603.568643][T15017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  603.568662][T15017] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  603.568682][T15017] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  603.568697][T15017] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  603.568709][T15017] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  603.568723][T15017] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  603.568737][T15017] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  603.568770][T15017]  </TASK>
[  603.655825][T15018] loop0: detected capacity change from 0 to 32768
[  604.011730][T15018] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (15018)
[  604.037385][T15018] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  604.049774][T15018] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  604.060078][T15018] BTRFS info (device loop0): using free-space-tree
[  604.104103][   T30] audit: type=1800 audit(1748505691.252:748): pid=15018 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  604.105259][T15018] FAULT_INJECTION: forcing a failure.
[  604.105259][T15018] name failslab, interval 1, probability 0, space 0, times 0
[  604.140974][T15018] CPU: 0 UID: 0 PID: 15018 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  604.141010][T15018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  604.141023][T15018] Call Trace:
[  604.141032][T15018]  <TASK>
[  604.141040][T15018]  dump_stack_lvl+0x189/0x250
[  604.141071][T15018]  ? __pfx____ratelimit+0x10/0x10
[  604.141092][T15018]  ? __pfx_dump_stack_lvl+0x10/0x10
[  604.141120][T15018]  ? __pfx__printk+0x10/0x10
[  604.141141][T15018]  ? __pfx___might_resched+0x10/0x10
[  604.141167][T15018]  ? fs_reclaim_acquire+0x7d/0x100
[  604.141196][T15018]  should_fail_ex+0x414/0x560
[  604.141225][T15018]  should_failslab+0xa8/0x100
[  604.141247][T15018]  kmem_cache_alloc_noprof+0x73/0x3c0
[  604.141264][T15018]  ? alloc_extent_state+0x22/0x2f0
[  604.141296][T15018]  alloc_extent_state+0x22/0x2f0
[  604.141324][T15018]  set_extent_bit+0x270/0x2180
[  604.141351][T15018]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  604.141386][T15018]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  604.141424][T15018]  ? __pfx_set_extent_bit+0x10/0x10
[  604.141454][T15018]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  604.141483][T15018]  btrfs_set_extent_bit+0x38/0x50
[  604.141513][T15018]  btrfs_dirty_folio+0x2e2/0x4d0
[  604.141557][T15018]  btrfs_buffered_write+0xd4d/0x16c0
[  604.141606][T15018]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  604.141632][T15018]  ? up_write+0x1c4/0x420
[  604.141657][T15018]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  604.141687][T15018]  btrfs_direct_write+0x610/0xb10
[  604.141720][T15018]  ? __pfx_btrfs_direct_write+0x10/0x10
[  604.141754][T15018]  btrfs_do_write_iter+0x25f/0x710
[  604.141785][T15018]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  604.141806][T15018]  ? __asan_memset+0x22/0x50
[  604.141840][T15018]  iter_file_splice_write+0x937/0x1000
[  604.141888][T15018]  ? __pfx_iter_file_splice_write+0x10/0x10
[  604.141913][T15018]  ? rcu_read_lock_any_held+0xb3/0x120
[  604.141954][T15018]  ? __pfx_iter_file_splice_write+0x10/0x10
[  604.141973][T15018]  direct_splice_actor+0xfe/0x160
[  604.141995][T15018]  splice_direct_to_actor+0x5a8/0xcc0
[  604.142043][T15018]  ? __pfx_direct_splice_actor+0x10/0x10
[  604.142063][T15018]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  604.142095][T15018]  do_splice_direct+0x181/0x270
[  604.142118][T15018]  ? __pfx_do_splice_direct+0x10/0x10
[  604.142139][T15018]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  604.142169][T15018]  ? rw_verify_area+0x258/0x650
[  604.142203][T15018]  do_sendfile+0x4da/0x7e0
[  604.142226][T15018]  ? __pfx_vfs_write+0x10/0x10
[  604.142261][T15018]  ? __pfx_do_sendfile+0x10/0x10
[  604.142299][T15018]  __se_sys_sendfile64+0x13e/0x190
[  604.142326][T15018]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  604.142355][T15018]  ? do_syscall_64+0xbe/0x3b0
[  604.142384][T15018]  do_syscall_64+0xfa/0x3b0
[  604.142407][T15018]  ? lockdep_hardirqs_on+0x9c/0x150
[  604.142431][T15018]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.142451][T15018]  ? clear_bhb_loop+0x60/0xb0
[  604.142476][T15018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.142495][T15018] RIP: 0033:0x7f5846d17449
[  604.142515][T15018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  604.142533][T15018] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  604.142555][T15018] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  604.142571][T15018] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  604.142583][T15018] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  604.142597][T15018] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  604.142611][T15018] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  604.142645][T15018]  </TASK>
[  604.547387][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  604.663375][   T30] audit: type=1800 audit(1748505691.812:749): pid=15035 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  604.665063][T15035] FAULT_INJECTION: forcing a failure.
[  604.665063][T15035] name failslab, interval 1, probability 0, space 0, times 0
[  604.697943][T15035] CPU: 0 UID: 0 PID: 15035 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  604.697971][T15035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  604.697984][T15035] Call Trace:
[  604.697992][T15035]  <TASK>
[  604.698000][T15035]  dump_stack_lvl+0x189/0x250
[  604.698031][T15035]  ? __pfx____ratelimit+0x10/0x10
[  604.698054][T15035]  ? __pfx_dump_stack_lvl+0x10/0x10
[  604.698079][T15035]  ? __pfx__printk+0x10/0x10
[  604.698102][T15035]  ? __pfx___might_resched+0x10/0x10
[  604.698125][T15035]  ? fs_reclaim_acquire+0x7d/0x100
[  604.698153][T15035]  should_fail_ex+0x414/0x560
[  604.698181][T15035]  should_failslab+0xa8/0x100
[  604.698203][T15035]  kmem_cache_alloc_noprof+0x73/0x3c0
[  604.698222][T15035]  ? ext4_mb_new_blocks+0x559/0x46a0
[  604.698256][T15035]  ext4_mb_new_blocks+0x559/0x46a0
[  604.698302][T15035]  ? trace_kmalloc+0x1f/0xd0
[  604.698318][T15035]  ? __kmalloc_noprof+0x29b/0x4f0
[  604.698345][T15035]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  604.698375][T15035]  ? ext4_ext_check_overlap+0x162/0x580
[  604.698398][T15035]  ? ext4_inode_to_goal_block+0x31a/0x460
[  604.698430][T15035]  ext4_ext_map_blocks+0x161a/0x6ac0
[  604.698479][T15035]  ? __lock_acquire+0xab9/0xd20
[  604.698515][T15035]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  604.698569][T15035]  ext4_map_blocks+0x931/0x18d0
[  604.698612][T15035]  ? __pfx_ext4_map_blocks+0x10/0x10
[  604.698637][T15035]  ? trace_jbd2_handle_start+0x8a/0x220
[  604.698701][T15035]  ext4_iomap_begin+0xe67/0x18f0
[  604.698751][T15035]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  604.698796][T15035]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  604.698823][T15035]  iomap_iter+0x53a/0xdf0
[  604.698865][T15035]  __iomap_dio_rw+0xc67/0x1e40
[  604.698893][T15035]  ? ext4_file_write_iter+0x1741/0x1bc0
[  604.698955][T15035]  ? __pfx___iomap_dio_rw+0x10/0x10
[  604.699023][T15035]  ? jbd2_journal_stop+0x8ee/0xd80
[  604.699060][T15035]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  604.699087][T15035]  ? __pfx_ext4_orphan_add+0x10/0x10
[  604.699117][T15035]  iomap_dio_rw+0x45/0xb0
[  604.699152][T15035]  ext4_file_write_iter+0x16a2/0x1bc0
[  604.699203][T15035]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  604.699236][T15035]  ? __asan_memset+0x22/0x50
[  604.699271][T15035]  iter_file_splice_write+0x937/0x1000
[  604.699321][T15035]  ? __pfx_iter_file_splice_write+0x10/0x10
[  604.699346][T15035]  ? rcu_read_lock_any_held+0xb3/0x120
[  604.699389][T15035]  ? __pfx_iter_file_splice_write+0x10/0x10
[  604.699410][T15035]  direct_splice_actor+0xfe/0x160
[  604.699436][T15035]  splice_direct_to_actor+0x5a8/0xcc0
[  604.699479][T15035]  ? __pfx_direct_splice_actor+0x10/0x10
[  604.699499][T15035]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  604.699532][T15035]  do_splice_direct+0x181/0x270
[  604.699556][T15035]  ? __pfx_do_splice_direct+0x10/0x10
[  604.699577][T15035]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  604.699606][T15035]  ? rw_verify_area+0x258/0x650
[  604.699640][T15035]  do_sendfile+0x4da/0x7e0
[  604.699663][T15035]  ? __pfx_vfs_write+0x10/0x10
[  604.699699][T15035]  ? __pfx_do_sendfile+0x10/0x10
[  604.699738][T15035]  __se_sys_sendfile64+0x13e/0x190
[  604.699764][T15035]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  604.699794][T15035]  ? do_syscall_64+0xbe/0x3b0
[  604.699823][T15035]  do_syscall_64+0xfa/0x3b0
[  604.699846][T15035]  ? lockdep_hardirqs_on+0x9c/0x150
[  604.699868][T15035]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.699889][T15035]  ? clear_bhb_loop+0x60/0xb0
[  604.699914][T15035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.699942][T15035] RIP: 0033:0x7f5846d17449
[  604.699961][T15035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  604.699980][T15035] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  604.700002][T15035] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  604.700017][T15035] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  604.700030][T15035] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  604.700044][T15035] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  604.700058][T15035] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  604.700092][T15035]  </TASK>
[  604.783397][T15036] loop0: detected capacity change from 0 to 32768
[  604.790031][T15036] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (15036)
[  605.157803][T15036] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  605.168442][T15036] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  605.177999][T15036] BTRFS info (device loop0): using free-space-tree
[  605.219638][   T30] audit: type=1800 audit(1748505692.372:750): pid=15036 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  605.221107][T15036] FAULT_INJECTION: forcing a failure.
[  605.221107][T15036] name failslab, interval 1, probability 0, space 0, times 0
[  605.255549][T15036] CPU: 0 UID: 0 PID: 15036 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  605.255578][T15036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  605.255591][T15036] Call Trace:
[  605.255600][T15036]  <TASK>
[  605.255608][T15036]  dump_stack_lvl+0x189/0x250
[  605.255642][T15036]  ? __pfx____ratelimit+0x10/0x10
[  605.255666][T15036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  605.255694][T15036]  ? __pfx__printk+0x10/0x10
[  605.255716][T15036]  ? __pfx___might_resched+0x10/0x10
[  605.255742][T15036]  ? fs_reclaim_acquire+0x7d/0x100
[  605.255772][T15036]  should_fail_ex+0x414/0x560
[  605.255800][T15036]  should_failslab+0xa8/0x100
[  605.255823][T15036]  kmem_cache_alloc_noprof+0x73/0x3c0
[  605.255842][T15036]  ? alloc_extent_state+0x22/0x2f0
[  605.255873][T15036]  alloc_extent_state+0x22/0x2f0
[  605.255902][T15036]  set_extent_bit+0x270/0x2180
[  605.256014][T15036]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  605.256048][T15036]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  605.256084][T15036]  ? __pfx_set_extent_bit+0x10/0x10
[  605.256112][T15036]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  605.256144][T15036]  btrfs_set_extent_bit+0x38/0x50
[  605.256174][T15036]  btrfs_dirty_folio+0x2e2/0x4d0
[  605.256218][T15036]  btrfs_buffered_write+0xd4d/0x16c0
[  605.256268][T15036]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  605.256294][T15036]  ? up_write+0x1c4/0x420
[  605.256322][T15036]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  605.256382][T15036]  btrfs_direct_write+0x610/0xb10
[  605.256413][T15036]  ? __pfx_btrfs_direct_write+0x10/0x10
[  605.256449][T15036]  btrfs_do_write_iter+0x25f/0x710
[  605.256473][T15036]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  605.256492][T15036]  ? __asan_memset+0x22/0x50
[  605.256521][T15036]  iter_file_splice_write+0x937/0x1000
[  605.256560][T15036]  ? __pfx_iter_file_splice_write+0x10/0x10
[  605.256584][T15036]  ? rcu_read_lock_any_held+0xb3/0x120
[  605.256623][T15036]  ? __pfx_iter_file_splice_write+0x10/0x10
[  605.256649][T15036]  direct_splice_actor+0xfe/0x160
[  605.256671][T15036]  splice_direct_to_actor+0x5a8/0xcc0
[  605.256714][T15036]  ? __pfx_direct_splice_actor+0x10/0x10
[  605.256734][T15036]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  605.256764][T15036]  do_splice_direct+0x181/0x270
[  605.256787][T15036]  ? __pfx_do_splice_direct+0x10/0x10
[  605.256808][T15036]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  605.256836][T15036]  ? rw_verify_area+0x258/0x650
[  605.256878][T15036]  do_sendfile+0x4da/0x7e0
[  605.256901][T15036]  ? __pfx_vfs_write+0x10/0x10
[  605.256939][T15036]  ? __pfx_do_sendfile+0x10/0x10
[  605.256975][T15036]  __se_sys_sendfile64+0x13e/0x190
[  605.257000][T15036]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  605.257029][T15036]  ? do_syscall_64+0xbe/0x3b0
[  605.257058][T15036]  do_syscall_64+0xfa/0x3b0
[  605.257085][T15036]  ? lockdep_hardirqs_on+0x9c/0x150
[  605.257109][T15036]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.257130][T15036]  ? clear_bhb_loop+0x60/0xb0
[  605.257153][T15036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.257172][T15036] RIP: 0033:0x7f5846d17449
[  605.257190][T15036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  605.257207][T15036] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  605.257229][T15036] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  605.257244][T15036] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  605.257257][T15036] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  605.257270][T15036] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  605.257284][T15036] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  605.257315][T15036]  </TASK>
[  605.761048][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  605.843588][T15053] loop0: detected capacity change from 0 to 32768
[  605.859020][T15053] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (15053)
[  605.886240][T15053] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  605.896890][T15053] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  605.913281][T15053] BTRFS info (device loop0): using free-space-tree
[  605.971828][   T30] audit: type=1800 audit(1748505693.122:751): pid=15053 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  605.999141][T15053] FAULT_INJECTION: forcing a failure.
[  605.999141][T15053] name failslab, interval 1, probability 0, space 0, times 0
[  606.013299][T15053] CPU: 1 UID: 0 PID: 15053 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  606.013328][T15053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  606.013341][T15053] Call Trace:
[  606.013349][T15053]  <TASK>
[  606.013359][T15053]  dump_stack_lvl+0x189/0x250
[  606.013392][T15053]  ? __pfx____ratelimit+0x10/0x10
[  606.013416][T15053]  ? __pfx_dump_stack_lvl+0x10/0x10
[  606.013444][T15053]  ? __pfx__printk+0x10/0x10
[  606.013466][T15053]  ? __pfx___might_resched+0x10/0x10
[  606.013492][T15053]  ? fs_reclaim_acquire+0x7d/0x100
[  606.013521][T15053]  should_fail_ex+0x414/0x560
[  606.013549][T15053]  should_failslab+0xa8/0x100
[  606.013571][T15053]  kmem_cache_alloc_noprof+0x73/0x3c0
[  606.013589][T15053]  ? alloc_extent_state+0x22/0x2f0
[  606.013619][T15053]  alloc_extent_state+0x22/0x2f0
[  606.013649][T15053]  set_extent_bit+0x270/0x2180
[  606.013797][T15053]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  606.013831][T15053]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  606.013869][T15053]  ? __pfx_set_extent_bit+0x10/0x10
[  606.013900][T15053]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  606.013931][T15053]  btrfs_set_extent_bit+0x38/0x50
[  606.013955][T15053]  btrfs_dirty_folio+0x2e2/0x4d0
[  606.013997][T15053]  btrfs_buffered_write+0xd4d/0x16c0
[  606.014045][T15053]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  606.014072][T15053]  ? up_write+0x1c4/0x420
[  606.014106][T15053]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  606.014140][T15053]  btrfs_direct_write+0x610/0xb10
[  606.014177][T15053]  ? __pfx_btrfs_direct_write+0x10/0x10
[  606.014218][T15053]  btrfs_do_write_iter+0x25f/0x710
[  606.014247][T15053]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  606.014267][T15053]  ? __asan_memset+0x22/0x50
[  606.014302][T15053]  iter_file_splice_write+0x937/0x1000
[  606.014359][T15053]  ? __pfx_iter_file_splice_write+0x10/0x10
[  606.014386][T15053]  ? rcu_read_lock_any_held+0xb3/0x120
[  606.014425][T15053]  ? __pfx_iter_file_splice_write+0x10/0x10
[  606.014448][T15053]  direct_splice_actor+0xfe/0x160
[  606.014473][T15053]  splice_direct_to_actor+0x5a8/0xcc0
[  606.014515][T15053]  ? __pfx_direct_splice_actor+0x10/0x10
[  606.014534][T15053]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  606.014567][T15053]  do_splice_direct+0x181/0x270
[  606.014589][T15053]  ? __pfx_do_splice_direct+0x10/0x10
[  606.014611][T15053]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  606.014641][T15053]  ? rw_verify_area+0x258/0x650
[  606.014672][T15053]  do_sendfile+0x4da/0x7e0
[  606.014705][T15053]  ? __pfx_vfs_write+0x10/0x10
[  606.014741][T15053]  ? __pfx_do_sendfile+0x10/0x10
[  606.014778][T15053]  __se_sys_sendfile64+0x13e/0x190
[  606.014805][T15053]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  606.014834][T15053]  ? do_syscall_64+0xbe/0x3b0
[  606.014864][T15053]  do_syscall_64+0xfa/0x3b0
[  606.014887][T15053]  ? lockdep_hardirqs_on+0x9c/0x150
[  606.014911][T15053]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.014929][T15053]  ? clear_bhb_loop+0x60/0xb0
[  606.014955][T15053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.014975][T15053] RIP: 0033:0x7f5846d17449
[  606.014995][T15053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  606.015011][T15053] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  606.015033][T15053] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  606.015049][T15053] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  606.015061][T15053] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  606.015075][T15053] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  606.015089][T15053] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  606.015126][T15053]  </TASK>
[  606.487272][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  606.565969][T15070] loop0: detected capacity change from 0 to 32768
[  606.580002][T15070] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (15070)
[  606.620068][T15070] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  606.633868][T15070] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  606.644087][T15070] BTRFS info (device loop0): using free-space-tree
[  606.679266][   T30] audit: type=1800 audit(1748505693.832:752): pid=15070 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  606.680720][T15070] FAULT_INJECTION: forcing a failure.
[  606.680720][T15070] name failslab, interval 1, probability 0, space 0, times 0
[  606.713889][T15070] CPU: 0 UID: 0 PID: 15070 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  606.713916][T15070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  606.713929][T15070] Call Trace:
[  606.713937][T15070]  <TASK>
[  606.713946][T15070]  dump_stack_lvl+0x189/0x250
[  606.713979][T15070]  ? __pfx____ratelimit+0x10/0x10
[  606.714003][T15070]  ? __pfx_dump_stack_lvl+0x10/0x10
[  606.714031][T15070]  ? __pfx__printk+0x10/0x10
[  606.714054][T15070]  ? __pfx___might_resched+0x10/0x10
[  606.714081][T15070]  ? fs_reclaim_acquire+0x7d/0x100
[  606.714108][T15070]  should_fail_ex+0x414/0x560
[  606.714136][T15070]  should_failslab+0xa8/0x100
[  606.714159][T15070]  kmem_cache_alloc_noprof+0x73/0x3c0
[  606.714178][T15070]  ? alloc_extent_state+0x22/0x2f0
[  606.714208][T15070]  alloc_extent_state+0x22/0x2f0
[  606.714236][T15070]  set_extent_bit+0x270/0x2180
[  606.714262][T15070]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  606.714293][T15070]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  606.714329][T15070]  ? __pfx_set_extent_bit+0x10/0x10
[  606.714359][T15070]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  606.714391][T15070]  btrfs_set_extent_bit+0x38/0x50
[  606.714421][T15070]  btrfs_dirty_folio+0x2e2/0x4d0
[  606.714466][T15070]  btrfs_buffered_write+0xd4d/0x16c0
[  606.714516][T15070]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  606.714542][T15070]  ? up_write+0x1c4/0x420
[  606.714569][T15070]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  606.714603][T15070]  btrfs_direct_write+0x610/0xb10
[  606.714636][T15070]  ? __pfx_btrfs_direct_write+0x10/0x10
[  606.714668][T15070]  btrfs_do_write_iter+0x25f/0x710
[  606.714691][T15070]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  606.714706][T15070]  ? __asan_memset+0x22/0x50
[  606.714732][T15070]  iter_file_splice_write+0x937/0x1000
[  606.714778][T15070]  ? __pfx_iter_file_splice_write+0x10/0x10
[  606.714803][T15070]  ? rcu_read_lock_any_held+0xb3/0x120
[  606.714844][T15070]  ? __pfx_iter_file_splice_write+0x10/0x10
[  606.714866][T15070]  direct_splice_actor+0xfe/0x160
[  606.714897][T15070]  splice_direct_to_actor+0x5a8/0xcc0
[  606.714938][T15070]  ? __pfx_direct_splice_actor+0x10/0x10
[  606.714958][T15070]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  606.714990][T15070]  do_splice_direct+0x181/0x270
[  606.715013][T15070]  ? __pfx_do_splice_direct+0x10/0x10
[  606.715034][T15070]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  606.715061][T15070]  ? rw_verify_area+0x258/0x650
[  606.715094][T15070]  do_sendfile+0x4da/0x7e0
[  606.715116][T15070]  ? __pfx_vfs_write+0x10/0x10
[  606.715151][T15070]  ? __pfx_do_sendfile+0x10/0x10
[  606.715171][T15070]  ? rcu_is_watching+0x15/0xb0
[  606.715197][T15070]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[  606.715232][T15070]  __se_sys_sendfile64+0x13e/0x190
[  606.715258][T15070]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  606.715278][T15070]  ? rcu_is_watching+0x15/0xb0
[  606.715308][T15070]  ? do_syscall_64+0xbe/0x3b0
[  606.715336][T15070]  do_syscall_64+0xfa/0x3b0
[  606.715359][T15070]  ? lockdep_hardirqs_on+0x9c/0x150
[  606.715382][T15070]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.715402][T15070]  ? clear_bhb_loop+0x60/0xb0
[  606.715426][T15070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.715445][T15070] RIP: 0033:0x7f5846d17449
[  606.715463][T15070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  606.715481][T15070] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  606.715501][T15070] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  606.715516][T15070] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  606.715527][T15070] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  606.715540][T15070] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  606.715554][T15070] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  606.715588][T15070]  </TASK>
[  607.282082][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  607.362367][T15089] loop0: detected capacity change from 0 to 32768
[  607.378267][T15089] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (15089)
[  607.418976][T15089] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  607.429415][T15089] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  607.441391][T15089] BTRFS info (device loop0): using free-space-tree
[  607.494742][   T30] audit: type=1800 audit(1748505694.642:753): pid=15089 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  607.516417][T15089] FAULT_INJECTION: forcing a failure.
[  607.516417][T15089] name failslab, interval 1, probability 0, space 0, times 0
[  607.530629][T15089] CPU: 1 UID: 0 PID: 15089 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  607.530658][T15089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  607.530670][T15089] Call Trace:
[  607.530678][T15089]  <TASK>
[  607.530688][T15089]  dump_stack_lvl+0x189/0x250
[  607.530721][T15089]  ? __pfx____ratelimit+0x10/0x10
[  607.530744][T15089]  ? __pfx_dump_stack_lvl+0x10/0x10
[  607.530772][T15089]  ? __pfx__printk+0x10/0x10
[  607.530794][T15089]  ? __pfx___might_resched+0x10/0x10
[  607.530819][T15089]  ? fs_reclaim_acquire+0x7d/0x100
[  607.530848][T15089]  should_fail_ex+0x414/0x560
[  607.530878][T15089]  should_failslab+0xa8/0x100
[  607.530902][T15089]  kmem_cache_alloc_noprof+0x73/0x3c0
[  607.530922][T15089]  ? alloc_extent_state+0x22/0x2f0
[  607.530954][T15089]  alloc_extent_state+0x22/0x2f0
[  607.530984][T15089]  set_extent_bit+0x270/0x2180
[  607.531013][T15089]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  607.531046][T15089]  ? btrfs_clear_extent_bit_changeset+0xc6d/0xf00
[  607.531083][T15089]  ? __pfx_set_extent_bit+0x10/0x10
[  607.531114][T15089]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  607.531145][T15089]  btrfs_set_extent_bit+0x38/0x50
[  607.531175][T15089]  btrfs_dirty_folio+0x2e2/0x4d0
[  607.531219][T15089]  btrfs_buffered_write+0xd4d/0x16c0
[  607.531269][T15089]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  607.531295][T15089]  ? up_write+0x1c4/0x420
[  607.531323][T15089]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  607.531357][T15089]  btrfs_direct_write+0x610/0xb10
[  607.531393][T15089]  ? __pfx_btrfs_direct_write+0x10/0x10
[  607.531429][T15089]  btrfs_do_write_iter+0x25f/0x710
[  607.531458][T15089]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  607.531478][T15089]  ? __asan_memset+0x22/0x50
[  607.531511][T15089]  iter_file_splice_write+0x937/0x1000
[  607.531563][T15089]  ? __pfx_iter_file_splice_write+0x10/0x10
[  607.531587][T15089]  ? rcu_read_lock_any_held+0xb3/0x120
[  607.531628][T15089]  ? __pfx_iter_file_splice_write+0x10/0x10
[  607.531649][T15089]  direct_splice_actor+0xfe/0x160
[  607.531673][T15089]  splice_direct_to_actor+0x5a8/0xcc0
[  607.531715][T15089]  ? __pfx_direct_splice_actor+0x10/0x10
[  607.531735][T15089]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  607.531765][T15089]  do_splice_direct+0x181/0x270
[  607.531788][T15089]  ? __pfx_do_splice_direct+0x10/0x10
[  607.531807][T15089]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  607.531836][T15089]  ? rw_verify_area+0x258/0x650
[  607.531869][T15089]  do_sendfile+0x4da/0x7e0
[  607.531893][T15089]  ? __pfx_vfs_write+0x10/0x10
[  607.531928][T15089]  ? __pfx_do_sendfile+0x10/0x10
[  607.531965][T15089]  __se_sys_sendfile64+0x13e/0x190
[  607.531991][T15089]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  607.532020][T15089]  ? do_syscall_64+0xbe/0x3b0
[  607.532048][T15089]  do_syscall_64+0xfa/0x3b0
[  607.532071][T15089]  ? lockdep_hardirqs_on+0x9c/0x150
[  607.532093][T15089]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.532113][T15089]  ? clear_bhb_loop+0x60/0xb0
[  607.532137][T15089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.532157][T15089] RIP: 0033:0x7f5846d17449
[  607.532175][T15089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  607.532193][T15089] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  607.532215][T15089] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  607.532232][T15089] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  607.532244][T15089] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  607.532258][T15089] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  607.532272][T15089] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  607.532305][T15089]  </TASK>
[  608.044917][T12524] BTRFS info (device loop0): last unmount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  608.170074][T15107] FAULT_INJECTION: forcing a failure.
[  608.170074][T15107] name failslab, interval 1, probability 0, space 0, times 0
[  608.171384][   T30] audit: type=1800 audit(1748505695.322:754): pid=15107 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="sda1" ino=2040 res=0 errno=0
[  608.183605][T15107] CPU: 0 UID: 0 PID: 15107 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  608.183632][T15107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  608.183644][T15107] Call Trace:
[  608.183655][T15107]  <TASK>
[  608.183666][T15107]  dump_stack_lvl+0x189/0x250
[  608.183698][T15107]  ? __pfx____ratelimit+0x10/0x10
[  608.183721][T15107]  ? __pfx_dump_stack_lvl+0x10/0x10
[  608.183748][T15107]  ? __pfx__printk+0x10/0x10
[  608.183774][T15107]  ? __pfx___might_resched+0x10/0x10
[  608.183799][T15107]  ? fs_reclaim_acquire+0x7d/0x100
[  608.183829][T15107]  should_fail_ex+0x414/0x560
[  608.183858][T15107]  should_failslab+0xa8/0x100
[  608.183880][T15107]  kmem_cache_alloc_noprof+0x73/0x3c0
[  608.183899][T15107]  ? ext4_mb_new_blocks+0x559/0x46a0
[  608.183932][T15107]  ext4_mb_new_blocks+0x559/0x46a0
[  608.183975][T15107]  ? trace_kmalloc+0x1f/0xd0
[  608.183992][T15107]  ? __kmalloc_noprof+0x29b/0x4f0
[  608.184017][T15107]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  608.184046][T15107]  ? ext4_ext_check_overlap+0x162/0x580
[  608.184069][T15107]  ? ext4_inode_to_goal_block+0x31a/0x460
[  608.184100][T15107]  ext4_ext_map_blocks+0x161a/0x6ac0
[  608.184146][T15107]  ? __lock_acquire+0xab9/0xd20
[  608.184181][T15107]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  608.184233][T15107]  ext4_map_blocks+0x931/0x18d0
[  608.184276][T15107]  ? __pfx_ext4_map_blocks+0x10/0x10
[  608.184300][T15107]  ? trace_jbd2_handle_start+0x8a/0x220
[  608.184347][T15107]  ext4_iomap_begin+0xe67/0x18f0
[  608.184395][T15107]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  608.184437][T15107]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  608.184470][T15107]  iomap_iter+0x53a/0xdf0
[  608.184509][T15107]  __iomap_dio_rw+0xc67/0x1e40
[  608.184536][T15107]  ? ext4_file_write_iter+0x1741/0x1bc0
[  608.184590][T15107]  ? __pfx___iomap_dio_rw+0x10/0x10
[  608.184654][T15107]  ? jbd2_journal_stop+0x8ee/0xd80
[  608.184689][T15107]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  608.184715][T15107]  ? __pfx_ext4_orphan_add+0x10/0x10
[  608.184743][T15107]  iomap_dio_rw+0x45/0xb0
[  608.184777][T15107]  ext4_file_write_iter+0x16a2/0x1bc0
[  608.184828][T15107]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  608.184859][T15107]  ? __asan_memset+0x22/0x50
[  608.184892][T15107]  iter_file_splice_write+0x937/0x1000
[  608.184940][T15107]  ? __pfx_iter_file_splice_write+0x10/0x10
[  608.184965][T15107]  ? rcu_read_lock_any_held+0xb3/0x120
[  608.185006][T15107]  ? __pfx_iter_file_splice_write+0x10/0x10
[  608.185026][T15107]  direct_splice_actor+0xfe/0x160
[  608.185050][T15107]  splice_direct_to_actor+0x5a8/0xcc0
[  608.185092][T15107]  ? __pfx_direct_splice_actor+0x10/0x10
[  608.185111][T15107]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  608.185142][T15107]  do_splice_direct+0x181/0x270
[  608.185165][T15107]  ? __pfx_do_splice_direct+0x10/0x10
[  608.185186][T15107]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  608.185215][T15107]  ? rw_verify_area+0x258/0x650
[  608.185247][T15107]  do_sendfile+0x4da/0x7e0
[  608.185270][T15107]  ? __pfx_vfs_write+0x10/0x10
[  608.185305][T15107]  ? __pfx_do_sendfile+0x10/0x10
[  608.185343][T15107]  __se_sys_sendfile64+0x13e/0x190
[  608.185369][T15107]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  608.185397][T15107]  ? do_syscall_64+0xbe/0x3b0
[  608.185424][T15107]  do_syscall_64+0xfa/0x3b0
[  608.185447][T15107]  ? lockdep_hardirqs_on+0x9c/0x150
[  608.185475][T15107]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.185494][T15107]  ? clear_bhb_loop+0x60/0xb0
[  608.185518][T15107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.185538][T15107] RIP: 0033:0x7f5846d17449
[  608.185556][T15107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  608.185574][T15107] RSP: 002b:00007ffd4b2a2668 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  608.185595][T15107] RAX: ffffffffffffffda RBX: 00007ffd4b2a2690 RCX: 00007f5846d17449
[  608.185610][T15107] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  608.185622][T15107] RBP: 0000000000000002 R08: 00007ffd4b2a2406 R09: 00007ffd4b2a26b0
[  608.185636][T15107] R10: 0000000080000009 R11: 0000000000000246 R12: 00007f5846d64728
[  608.185650][T15107] R13: 00007f5846d646c0 R14: 431bde82d7b634db R15: 00007ffd4b2a26d0
[  608.185676][T15107]  </TASK>
[  608.324296][T15108] loop0: detected capacity change from 0 to 32768
[  608.638364][T15108] BTRFS: device fsid 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor170 (15108)
[  608.665903][T15108] BTRFS info (device loop0): first mount of filesystem 8ff932b8-f4e4-4b03-aed6-d7e5736fd60a
[  608.677615][T15108] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  608.687506][T15108] BTRFS info (device loop0): using free-space-tree
[  608.734082][   T30] audit: type=1800 audit(1748505695.882:755): pid=15108 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor170" name="bus" dev="loop0" ino=263 res=0 errno=0
[  608.755925][T15108] FAULT_INJECTION: forcing a failure.
[  608.755925][T15108] name failslab, interval 1, probability 0, space 0, times 0
[  608.770804][T15108] CPU: 1 UID: 0 PID: 15108 Comm: syz-executor170 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  608.770831][T15108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  608.770845][T15108] Call Trace:
[  608.770853][T15108]  <TASK>
[  608.770863][T15108]  dump_stack_lvl+0x189/0x250
[  608.770894][T15108]  ? __pfx____ratelimit+0x10/0x10
[  608.770919][T15108]  ? __pfx_dump_stack_lvl+0x10/0x10
[  608.770946][T15108]  ? __pfx__printk+0x10/0x10
[  608.770968][T15108]  ? __pfx___might_resched+0x10/0x10
[  608.770994][T15108]  ? fs_reclaim_acquire+0x7d/0x100
[  608.771023][T15108]  should_fail_ex+0x414/0x560
[  608.771053][T15108]  should_failslab+0xa8/0x100
[  608.771076][T15108]  kmem_cache_alloc_noprof+0x73/0x3c0
[  608.771095][T15108]  ? alloc_extent_state+0x22/0x2f0
[  608.771127][T15108]  alloc_extent_state+0x22/0x2f0
[  608.771156][T15108]  btrfs_clear_extent_bit_changeset+0x24d/0xf00
[  608.771201][T15108]  ? __pfx_btrfs_clear_extent_bit_changeset+0x10/0x10
[  608.771239][T15108]  btrfs_dirty_folio+0x2cf/0x4d0
[  608.771285][T15108]  btrfs_buffered_write+0xd4d/0x16c0
[  608.771335][T15108]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  608.771362][T15108]  ? up_write+0x1c4/0x420
[  608.771391][T15108]  ? iov_iter_alignment_bvec+0x14c/0x1a0
[  608.771424][T15108]  btrfs_direct_write+0x610/0xb10
[  608.771458][T15108]  ? __pfx_btrfs_direct_write+0x10/0x10
[  608.771505][T15108]  btrfs_do_write_iter+0x25f/0x710
[  608.771535][T15108]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  608.771555][T15108]  ? __asan_memset+0x22/0x50
[  608.771587][T15108]  iter_file_splice_write+0x937/0x1000
[  608.771634][T15108]  ? __pfx_iter_file_splice_write+0x10/0x10
[  608.771660][T15108]  ? rcu_read_lock_any_held+0xb3/0x120
[  608.771701][T15108]  ? __pfx_iter_file_splice_write+0x10/0x10
[  608.771722][T15108]  direct_splice_actor+0xfe/0x160
[  608.771745][T15108]  splice_direct_to_actor+0x5a8/0xcc0
[  608.771786][T15108]  ? __pfx_direct_splice_actor+0x10/0x10
[  608.771806][T15108]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  608.771841][T15108]  do_splice_direct+0x181/0x270
[  608.771863][T15108]  ? __pfx_do_splice_direct+0x10/0x10
[  608.771884][T15108]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  608.771912][T15108]  ? rw_verify_area+0x258/0x650
[  608.771946][T15108]  do_sendfile+0x4da/0x7e0
[  608.771969][T15108]  ? __pfx_vfs_write+0x10/0x10
[  608.772003][T15108]  ? __pfx_do_sendfile+0x10/0x10
[  608.772040][T15108]  __se_sys_sendfile64+0x13e/0x190
[  608.772067][T15108]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  608.772087][T15108]  ? rcu_is_watching+0x15/0xb0
[  608.772119][T15108]  ? do_syscall_64+0xbe/0x3b0
[  608.772146][T15108]  do_syscall_64+0xfa/0x3b0
[  608.772169][T15108]  ? lockdep_hardirqs_on+0x9c/0x150
[  608.772191][T15108]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.772212][T15108]  ? clear_bhb_loop+0x60/0xb0
[  608.772236][T15108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.772256][T15108] RIP: 0033:0x7f5846d17449
[  608.772274][T15108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48