ice loop0): qgroup scan completed (inconsistency flag cleared)
[  218.998272][ T7436] FAULT_INJECTION: forcing a failure.
[  218.998272][ T7436] name failslab, interval 1, probability 0, space 0, times 0
[  219.003530][ T7436] CPU: 0 UID: 0 PID: 7436 Comm: syz.0.117 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  219.003547][ T7436] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.003555][ T7436] Call Trace:
[  219.003562][ T7436]  <TASK>
[  219.003567][ T7436]  dump_stack_lvl+0x241/0x360
[  219.003590][ T7436]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.003605][ T7436]  ? __pfx__printk+0x10/0x10
[  219.003619][ T7436]  ? __kmalloc_cache_noprof+0x236/0x370
[  219.003635][ T7436]  ? __pfx___might_resched+0x10/0x10
[  219.003653][ T7436]  should_fail_ex+0x424/0x570
[  219.003667][ T7436]  should_failslab+0xac/0x100
[  219.003683][ T7436]  kmem_cache_alloc_noprof+0x78/0x390
[  219.003698][ T7436]  ? alloc_extent_state+0x25/0x310
[  219.003713][ T7436]  alloc_extent_state+0x25/0x310
[  219.003725][ T7436]  __set_extent_bit+0x1f4/0x1bc0
[  219.003743][ T7436]  ? __kasan_kmalloc+0x9d/0xb0
[  219.003757][ T7436]  set_record_extent_bits+0x51/0x90
[  219.003771][ T7436]  qgroup_reserve_data+0x280/0x8d0
[  219.003794][ T7436]  btrfs_check_data_free_space+0x14b/0x240
[  219.003810][ T7436]  btrfs_buffered_write+0x509/0x1310
[  219.003838][ T7436]  ? __lock_acquire+0xad5/0xd80
[  219.003853][ T7436]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  219.003874][ T7436]  ? aa_file_perm+0x139/0xf60
[  219.003891][ T7436]  ? aa_file_perm+0x139/0xf60
[  219.003907][ T7436]  ? aa_file_perm+0x3f1/0xf60
[  219.003926][ T7436]  btrfs_do_write_iter+0x27b/0x7c0
[  219.003943][ T7436]  ? kstrtouint+0xfc/0x190
[  219.003958][ T7436]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  219.003979][ T7436]  do_iter_readv_writev+0x71f/0x9d0
[  219.003997][ T7436]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  219.004008][ T7436]  ? rcu_read_lock_any_held+0xbb/0x160
[  219.004033][ T7436]  vfs_writev+0x38d/0xbc0
[  219.004056][ T7436]  ? __lock_acquire+0xad5/0xd80
[  219.004067][ T7436]  ? __pfx_vfs_writev+0x10/0x10
[  219.004093][ T7436]  ? __fget_files+0x2a/0x420
[  219.004105][ T7436]  ? __fget_files+0x39d/0x420
[  219.004114][ T7436]  ? __fget_files+0x2a/0x420
[  219.004130][ T7436]  __se_sys_pwritev2+0x1b8/0x2d0
[  219.004145][ T7436]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  219.004162][ T7436]  ? __x64_sys_pwritev2+0x21/0xf0
[  219.004177][ T7436]  do_syscall_64+0xf3/0x230
[  219.004194][ T7436]  ? clear_bhb_loop+0x45/0xa0
[  219.004208][ T7436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.004218][ T7436] RIP: 0033:0x7fe207b7e719
[  219.004230][ T7436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.004239][ T7436] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  219.004253][ T7436] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  219.004261][ T7436] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  219.004267][ T7436] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  219.004275][ T7436] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  219.004281][ T7436] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  219.004298][ T7436]  </TASK>
[  219.164911][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  219.528855][ T7454] loop0: detected capacity change from 0 to 32768
[  219.544108][ T7454] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.118 (7454)
[  219.573076][ T7454] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  219.583454][ T7454] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  219.593600][ T7454] BTRFS info (device loop0): using free-space-tree
[  219.697772][ T7454] FAULT_INJECTION: forcing a failure.
[  219.697772][ T7454] name failslab, interval 1, probability 0, space 0, times 0
[  219.703071][ T7454] CPU: 0 UID: 0 PID: 7454 Comm: syz.0.118 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  219.703088][ T7454] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.703095][ T7454] Call Trace:
[  219.703102][ T7454]  <TASK>
[  219.703107][ T7454]  dump_stack_lvl+0x241/0x360
[  219.703128][ T7454]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.703144][ T7454]  ? __pfx__printk+0x10/0x10
[  219.703162][ T7454]  ? __pfx___might_resched+0x10/0x10
[  219.703180][ T7454]  should_fail_ex+0x424/0x570
[  219.703219][ T7454]  should_failslab+0xac/0x100
[  219.703239][ T7454]  kmem_cache_alloc_noprof+0x78/0x390
[  219.703254][ T7454]  ? alloc_extent_state+0x25/0x310
[  219.703269][ T7454]  alloc_extent_state+0x25/0x310
[  219.703282][ T7454]  __set_extent_bit+0x1f4/0x1bc0
[  219.703306][ T7454]  set_extent_bit+0x3b/0x50
[  219.703319][ T7454]  btrfs_alloc_tree_block+0xa37/0x15d0
[  219.703344][ T7454]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  219.703358][ T7454]  ? __kernel_text_address+0xd/0x40
[  219.703379][ T7454]  ? __lock_acquire+0xad5/0xd80
[  219.703391][ T7454]  ? read_extent_buffer+0x10d/0x550
[  219.703408][ T7454]  btrfs_force_cow_block+0x530/0x2010
[  219.703440][ T7454]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  219.703453][ T7454]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  219.703472][ T7454]  ? down_write_nested+0x195/0x220
[  219.703486][ T7454]  ? __pfx_down_write_nested+0x10/0x10
[  219.703504][ T7454]  btrfs_cow_block+0x377/0x840
[  219.703526][ T7454]  btrfs_search_slot+0xc12/0x31c0
[  219.703558][ T7454]  ? __pfx_btrfs_search_slot+0x10/0x10
[  219.703570][ T7454]  ? btrfs_extent_root+0x2a3/0x3b0
[  219.703593][ T7454]  ? __pfx_btrfs_extent_root+0x10/0x10
[  219.703614][ T7454]  ? kasan_save_track+0x51/0x80
[  219.703625][ T7454]  ? kasan_save_track+0x3f/0x80
[  219.703638][ T7454]  lookup_inline_extent_backref+0x44a/0x1b60
[  219.703650][ T7454]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  219.703662][ T7454]  ? btrfs_check_data_free_space+0x14b/0x240
[  219.703679][ T7454]  ? btrfs_buffered_write+0x509/0x1310
[  219.703696][ T7454]  ? do_iter_readv_writev+0x71f/0x9d0
[  219.703710][ T7454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.703741][ T7454]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  219.703767][ T7454]  ? rcu_is_watching+0x15/0xb0
[  219.703782][ T7454]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  219.703795][ T7454]  ? kmem_cache_alloc_noprof+0x237/0x390
[  219.703811][ T7454]  __btrfs_free_extent+0x438/0x3990
[  219.703837][ T7454]  ? __pfx___btrfs_free_extent+0x10/0x10
[  219.703848][ T7454]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  219.703861][ T7454]  ? do_raw_read_unlock+0x3c/0x80
[  219.703881][ T7454]  ? do_raw_spin_unlock+0x58/0x8b0
[  219.703903][ T7454]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  219.703918][ T7454]  ? __lock_acquire+0xad5/0xd80
[  219.703960][ T7454]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  219.703978][ T7454]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  219.703993][ T7454]  ? __kernel_text_address+0xd/0x40
[  219.704004][ T7454]  ? unwind_get_return_address+0x4d/0x90
[  219.704019][ T7454]  ? arch_stack_walk+0xff/0x150
[  219.704043][ T7454]  ? stack_trace_save+0x11a/0x1d0
[  219.704059][ T7454]  ? __lock_acquire+0xad5/0xd80
[  219.704073][ T7454]  ? stack_depot_save_flags+0x44/0x940
[  219.704094][ T7454]  btrfs_run_delayed_refs+0xe3/0x2f0
[  219.704114][ T7454]  btrfs_commit_transaction+0x4ae/0x3650
[  219.704128][ T7454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.704142][ T7454]  ? btrfs_commit_transaction+0x167/0x3650
[  219.704160][ T7454]  ? __lock_acquire+0xad5/0xd80
[  219.704173][ T7454]  ? do_raw_spin_lock+0x151/0x370
[  219.704190][ T7454]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  219.704218][ T7454]  ? btrfs_record_root_in_trans+0x12d/0x190
[  219.704234][ T7454]  ? start_transaction+0x45f/0x16b0
[  219.704260][ T7454]  try_flush_qgroup+0x1fc/0x3a0
[  219.704274][ T7454]  ? kfree+0x198/0x430
[  219.704285][ T7454]  ? qgroup_reserve_data+0x6b2/0x8d0
[  219.704297][ T7454]  ? __pfx_try_flush_qgroup+0x10/0x10
[  219.704311][ T7454]  ? qgroup_reserve_data+0x6b2/0x8d0
[  219.704334][ T7454]  btrfs_qgroup_reserve_data+0x68/0xb0
[  219.704349][ T7454]  btrfs_check_data_free_space+0x14b/0x240
[  219.704366][ T7454]  btrfs_buffered_write+0x509/0x1310
[  219.704385][ T7454]  ? __lock_acquire+0xad5/0xd80
[  219.704394][ T7454]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  219.704414][ T7454]  ? aa_file_perm+0x139/0xf60
[  219.704431][ T7454]  ? aa_file_perm+0x139/0xf60
[  219.704446][ T7454]  ? aa_file_perm+0x3f1/0xf60
[  219.704464][ T7454]  btrfs_do_write_iter+0x27b/0x7c0
[  219.704482][ T7454]  ? kstrtouint+0xfc/0x190
[  219.704497][ T7454]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  219.704520][ T7454]  do_iter_readv_writev+0x71f/0x9d0
[  219.704538][ T7454]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  219.704549][ T7454]  ? rcu_read_lock_any_held+0xbb/0x160
[  219.704575][ T7454]  vfs_writev+0x38d/0xbc0
[  219.704604][ T7454]  ? __lock_acquire+0xad5/0xd80
[  219.704616][ T7454]  ? __pfx_vfs_writev+0x10/0x10
[  219.704643][ T7454]  ? __fget_files+0x2a/0x420
[  219.704653][ T7454]  ? __fget_files+0x39d/0x420
[  219.704662][ T7454]  ? __fget_files+0x2a/0x420
[  219.704679][ T7454]  __se_sys_pwritev2+0x1b8/0x2d0
[  219.704694][ T7454]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  219.704711][ T7454]  ? __x64_sys_pwritev2+0x21/0xf0
[  219.704727][ T7454]  do_syscall_64+0xf3/0x230
[  219.704742][ T7454]  ? clear_bhb_loop+0x45/0xa0
[  219.704756][ T7454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.704766][ T7454] RIP: 0033:0x7fe207b7e719
[  219.704778][ T7454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.704787][ T7454] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  219.704801][ T7454] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  219.704809][ T7454] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  219.704816][ T7454] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  219.704823][ T7454] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  219.704830][ T7454] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  219.704849][ T7454]  </TASK>
[  219.983436][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  220.004562][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
2025/04/16 04:52:48 executed programs: 106
[  220.415729][ T7472] loop0: detected capacity change from 0 to 32768
[  220.427424][ T7472] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.119 (7472)
[  220.444896][ T7472] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  220.461181][ T7472] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  220.464679][ T7472] BTRFS info (device loop0): using free-space-tree
[  220.572152][ T7472] FAULT_INJECTION: forcing a failure.
[  220.572152][ T7472] name failslab, interval 1, probability 0, space 0, times 0
[  220.589063][ T7472] CPU: 0 UID: 0 PID: 7472 Comm: syz.0.119 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  220.589084][ T7472] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.589092][ T7472] Call Trace:
[  220.589096][ T7472]  <TASK>
[  220.589101][ T7472]  dump_stack_lvl+0x241/0x360
[  220.589123][ T7472]  ? __pfx_dump_stack_lvl+0x10/0x10
[  220.589138][ T7472]  ? __pfx__printk+0x10/0x10
[  220.589157][ T7472]  ? __pfx___might_resched+0x10/0x10
[  220.589173][ T7472]  should_fail_ex+0x424/0x570
[  220.589189][ T7472]  should_failslab+0xac/0x100
[  220.589206][ T7472]  kmem_cache_alloc_noprof+0x78/0x390
[  220.589220][ T7472]  ? alloc_extent_state+0x25/0x310
[  220.589235][ T7472]  alloc_extent_state+0x25/0x310
[  220.589248][ T7472]  __set_extent_bit+0x1f4/0x1bc0
[  220.589270][ T7472]  set_extent_bit+0x3b/0x50
[  220.589282][ T7472]  btrfs_alloc_tree_block+0xa37/0x15d0
[  220.589307][ T7472]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  220.589320][ T7472]  ? __kernel_text_address+0xd/0x40
[  220.589340][ T7472]  ? __lock_acquire+0xad5/0xd80
[  220.589353][ T7472]  ? read_extent_buffer+0x10d/0x550
[  220.589370][ T7472]  btrfs_force_cow_block+0x530/0x2010
[  220.589405][ T7472]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  220.589419][ T7472]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  220.589438][ T7472]  ? down_write_nested+0x195/0x220
[  220.589453][ T7472]  ? __pfx_down_write_nested+0x10/0x10
[  220.589469][ T7472]  btrfs_cow_block+0x377/0x840
[  220.589490][ T7472]  btrfs_search_slot+0xc12/0x31c0
[  220.589525][ T7472]  ? __pfx_btrfs_search_slot+0x10/0x10
[  220.589547][ T7472]  ? btrfs_extent_root+0x2a3/0x3b0
[  220.589566][ T7472]  ? __pfx_btrfs_extent_root+0x10/0x10
[  220.589589][ T7472]  ? kasan_save_track+0x51/0x80
[  220.589602][ T7472]  ? kasan_save_track+0x3f/0x80
[  220.589618][ T7472]  lookup_inline_extent_backref+0x44a/0x1b60
[  220.589631][ T7472]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  220.589643][ T7472]  ? btrfs_check_data_free_space+0x14b/0x240
[  220.589656][ T7472]  ? btrfs_buffered_write+0x509/0x1310
[  220.589672][ T7472]  ? do_iter_readv_writev+0x71f/0x9d0
[  220.589688][ T7472]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.589720][ T7472]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  220.589748][ T7472]  ? rcu_is_watching+0x15/0xb0
[  220.589765][ T7472]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  220.589780][ T7472]  ? kmem_cache_alloc_noprof+0x237/0x390
[  220.589796][ T7472]  __btrfs_free_extent+0x438/0x3990
[  220.589826][ T7472]  ? __pfx___btrfs_free_extent+0x10/0x10
[  220.589838][ T7472]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  220.589852][ T7472]  ? do_raw_read_unlock+0x3c/0x80
[  220.589875][ T7472]  ? do_raw_spin_unlock+0x58/0x8b0
[  220.589898][ T7472]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  220.589914][ T7472]  ? __lock_acquire+0xad5/0xd80
[  220.589968][ T7472]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  220.589987][ T7472]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  220.590004][ T7472]  ? __kernel_text_address+0xd/0x40
[  220.590015][ T7472]  ? unwind_get_return_address+0x4d/0x90
[  220.590031][ T7472]  ? arch_stack_walk+0xff/0x150
[  220.590058][ T7472]  ? stack_trace_save+0x11a/0x1d0
[  220.590076][ T7472]  ? __lock_acquire+0xad5/0xd80
[  220.590091][ T7472]  ? stack_depot_save_flags+0x44/0x940
[  220.590114][ T7472]  btrfs_run_delayed_refs+0xe3/0x2f0
[  220.590135][ T7472]  btrfs_commit_transaction+0x4ae/0x3650
[  220.590150][ T7472]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.590165][ T7472]  ? btrfs_commit_transaction+0x167/0x3650
[  220.590185][ T7472]  ? __lock_acquire+0xad5/0xd80
[  220.590199][ T7472]  ? do_raw_spin_lock+0x151/0x370
[  220.590220][ T7472]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  220.590250][ T7472]  ? btrfs_record_root_in_trans+0x12d/0x190
[  220.590268][ T7472]  ? start_transaction+0x45f/0x16b0
[  220.590298][ T7472]  try_flush_qgroup+0x1fc/0x3a0
[  220.590312][ T7472]  ? kfree+0x198/0x430
[  220.590325][ T7472]  ? qgroup_reserve_data+0x6b2/0x8d0
[  220.590339][ T7472]  ? __pfx_try_flush_qgroup+0x10/0x10
[  220.590354][ T7472]  ? qgroup_reserve_data+0x6b2/0x8d0
[  220.590377][ T7472]  btrfs_qgroup_reserve_data+0x68/0xb0
[  220.590394][ T7472]  btrfs_check_data_free_space+0x14b/0x240
[  220.590415][ T7472]  btrfs_buffered_write+0x509/0x1310
[  220.590448][ T7472]  ? __lock_acquire+0xad5/0xd80
[  220.590466][ T7472]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  220.590492][ T7472]  ? aa_file_perm+0x139/0xf60
[  220.590536][ T7472]  ? aa_file_perm+0x139/0xf60
[  220.590554][ T7472]  ? aa_file_perm+0x3f1/0xf60
[  220.590576][ T7472]  btrfs_do_write_iter+0x27b/0x7c0
[  220.590596][ T7472]  ? kstrtouint+0xfc/0x190
[  220.590611][ T7472]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  220.590637][ T7472]  do_iter_readv_writev+0x71f/0x9d0
[  220.590657][ T7472]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  220.590670][ T7472]  ? rcu_read_lock_any_held+0xbb/0x160
[  220.590700][ T7472]  vfs_writev+0x38d/0xbc0
[  220.590726][ T7472]  ? __lock_acquire+0xad5/0xd80
[  220.590739][ T7472]  ? __pfx_vfs_writev+0x10/0x10
[  220.590775][ T7472]  ? __fget_files+0x2a/0x420
[  220.590787][ T7472]  ? __fget_files+0x39d/0x420
[  220.590797][ T7472]  ? __fget_files+0x2a/0x420
[  220.590816][ T7472]  __se_sys_pwritev2+0x1b8/0x2d0
[  220.590834][ T7472]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  220.590854][ T7472]  ? __x64_sys_pwritev2+0x21/0xf0
[  220.590872][ T7472]  do_syscall_64+0xf3/0x230
[  220.590889][ T7472]  ? clear_bhb_loop+0x45/0xa0
[  220.590904][ T7472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.590916][ T7472] RIP: 0033:0x7fe207b7e719
[  220.590929][ T7472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.590940][ T7472] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  220.590956][ T7472] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  220.590965][ T7472] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  220.590973][ T7472] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  220.590981][ T7472] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  220.590988][ T7472] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  220.591010][ T7472]  </TASK>
[  220.882195][ T1033] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  220.904464][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  221.278946][ T7490] loop0: detected capacity change from 0 to 32768
[  221.291275][ T7490] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.120 (7490)
[  221.319242][ T7490] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  221.323456][ T7490] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  221.346705][ T7490] BTRFS info (device loop0): using free-space-tree
[  221.429514][ T7490] FAULT_INJECTION: forcing a failure.
[  221.429514][ T7490] name failslab, interval 1, probability 0, space 0, times 0
[  221.434376][ T7490] CPU: 0 UID: 0 PID: 7490 Comm: syz.0.120 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  221.434394][ T7490] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.434401][ T7490] Call Trace:
[  221.434407][ T7490]  <TASK>
[  221.434412][ T7490]  dump_stack_lvl+0x241/0x360
[  221.434435][ T7490]  ? __pfx_dump_stack_lvl+0x10/0x10
[  221.434451][ T7490]  ? __pfx__printk+0x10/0x10
[  221.434470][ T7490]  ? __pfx___might_resched+0x10/0x10
[  221.434485][ T7490]  should_fail_ex+0x424/0x570
[  221.434501][ T7490]  should_failslab+0xac/0x100
[  221.434518][ T7490]  kmem_cache_alloc_noprof+0x78/0x390
[  221.434533][ T7490]  ? alloc_extent_state+0x25/0x310
[  221.434555][ T7490]  alloc_extent_state+0x25/0x310
[  221.434568][ T7490]  __set_extent_bit+0x1f4/0x1bc0
[  221.434593][ T7490]  set_extent_bit+0x3b/0x50
[  221.434606][ T7490]  btrfs_alloc_tree_block+0xa37/0x15d0
[  221.434629][ T7490]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  221.434653][ T7490]  ? __lock_acquire+0xad5/0xd80
[  221.434667][ T7490]  ? read_extent_buffer+0x10d/0x550
[  221.434684][ T7490]  btrfs_force_cow_block+0x530/0x2010
[  221.434715][ T7490]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  221.434729][ T7490]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  221.434747][ T7490]  ? down_write_nested+0x195/0x220
[  221.434760][ T7490]  ? __pfx_down_write_nested+0x10/0x10
[  221.434778][ T7490]  btrfs_cow_block+0x377/0x840
[  221.434799][ T7490]  btrfs_search_slot+0xc12/0x31c0
[  221.434830][ T7490]  ? __pfx_btrfs_search_slot+0x10/0x10
[  221.434842][ T7490]  ? btrfs_extent_root+0x2a3/0x3b0
[  221.434859][ T7490]  ? __pfx_btrfs_extent_root+0x10/0x10
[  221.434879][ T7490]  ? kasan_save_track+0x51/0x80
[  221.434889][ T7490]  ? kasan_save_track+0x3f/0x80
[  221.434903][ T7490]  lookup_inline_extent_backref+0x44a/0x1b60
[  221.434916][ T7490]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  221.434926][ T7490]  ? btrfs_check_data_free_space+0x14b/0x240
[  221.434939][ T7490]  ? btrfs_buffered_write+0x509/0x1310
[  221.434954][ T7490]  ? do_iter_readv_writev+0x71f/0x9d0
[  221.434967][ T7490]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.435004][ T7490]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  221.435028][ T7490]  ? rcu_is_watching+0x15/0xb0
[  221.435043][ T7490]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  221.435056][ T7490]  ? kmem_cache_alloc_noprof+0x237/0x390
[  221.435073][ T7490]  __btrfs_free_extent+0x438/0x3990
[  221.435099][ T7490]  ? __pfx___btrfs_free_extent+0x10/0x10
[  221.435109][ T7490]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  221.435123][ T7490]  ? do_raw_read_unlock+0x3c/0x80
[  221.435142][ T7490]  ? do_raw_spin_unlock+0x58/0x8b0
[  221.435163][ T7490]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  221.435177][ T7490]  ? __lock_acquire+0xad5/0xd80
[  221.435249][ T7490]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  221.435267][ T7490]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  221.435283][ T7490]  ? __kernel_text_address+0xd/0x40
[  221.435293][ T7490]  ? unwind_get_return_address+0x4d/0x90
[  221.435308][ T7490]  ? arch_stack_walk+0xff/0x150
[  221.435331][ T7490]  ? stack_trace_save+0x11a/0x1d0
[  221.435349][ T7490]  ? __lock_acquire+0xad5/0xd80
[  221.435363][ T7490]  ? stack_depot_save_flags+0x44/0x940
[  221.435386][ T7490]  btrfs_run_delayed_refs+0xe3/0x2f0
[  221.435405][ T7490]  btrfs_commit_transaction+0x4ae/0x3650
[  221.435418][ T7490]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.435432][ T7490]  ? btrfs_commit_transaction+0x167/0x3650
[  221.435451][ T7490]  ? __lock_acquire+0xad5/0xd80
[  221.435464][ T7490]  ? do_raw_spin_lock+0x151/0x370
[  221.435484][ T7490]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  221.435510][ T7490]  ? btrfs_record_root_in_trans+0x12d/0x190
[  221.435526][ T7490]  ? start_transaction+0x45f/0x16b0
[  221.435559][ T7490]  try_flush_qgroup+0x1fc/0x3a0
[  221.435572][ T7490]  ? kfree+0x198/0x430
[  221.435583][ T7490]  ? qgroup_reserve_data+0x6b2/0x8d0
[  221.435596][ T7490]  ? __pfx_try_flush_qgroup+0x10/0x10
[  221.435610][ T7490]  ? qgroup_reserve_data+0x6b2/0x8d0
[  221.435632][ T7490]  btrfs_qgroup_reserve_data+0x68/0xb0
[  221.435647][ T7490]  btrfs_check_data_free_space+0x14b/0x240
[  221.435664][ T7490]  btrfs_buffered_write+0x509/0x1310
[  221.435693][ T7490]  ? __lock_acquire+0xad5/0xd80
[  221.435710][ T7490]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  221.435732][ T7490]  ? aa_file_perm+0x139/0xf60
[  221.435748][ T7490]  ? aa_file_perm+0x139/0xf60
[  221.435758][ T7490]  ? aa_file_perm+0x3f1/0xf60
[  221.435771][ T7490]  btrfs_do_write_iter+0x27b/0x7c0
[  221.435783][ T7490]  ? kstrtouint+0xfc/0x190
[  221.435794][ T7490]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  221.435808][ T7490]  do_iter_readv_writev+0x71f/0x9d0
[  221.435820][ T7490]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  221.435828][ T7490]  ? rcu_read_lock_any_held+0xbb/0x160
[  221.435845][ T7490]  vfs_writev+0x38d/0xbc0
[  221.435863][ T7490]  ? __lock_acquire+0xad5/0xd80
[  221.435874][ T7490]  ? __pfx_vfs_writev+0x10/0x10
[  221.435900][ T7490]  ? __fget_files+0x2a/0x420
[  221.435910][ T7490]  ? __fget_files+0x39d/0x420
[  221.435919][ T7490]  ? __fget_files+0x2a/0x420
[  221.435935][ T7490]  __se_sys_pwritev2+0x1b8/0x2d0
[  221.435951][ T7490]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  221.435969][ T7490]  ? __x64_sys_pwritev2+0x21/0xf0
[  221.436007][ T7490]  do_syscall_64+0xf3/0x230
[  221.436022][ T7490]  ? clear_bhb_loop+0x45/0xa0
[  221.436036][ T7490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.436049][ T7490] RIP: 0033:0x7fe207b7e719
[  221.436061][ T7490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.436071][ T7490] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  221.436084][ T7490] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  221.436093][ T7490] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  221.436099][ T7490] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  221.436106][ T7490] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  221.436112][ T7490] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  221.436130][ T7490]  </TASK>
[  221.724609][ T1042] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  221.744459][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  222.115520][ T7508] loop0: detected capacity change from 0 to 32768
[  222.127766][ T7508] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.121 (7508)
[  222.152399][ T7508] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  222.162607][ T7508] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  222.172725][ T7508] BTRFS info (device loop0): using free-space-tree
[  222.254022][ T7508] FAULT_INJECTION: forcing a failure.
[  222.254022][ T7508] name failslab, interval 1, probability 0, space 0, times 0
[  222.271327][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  222.274976][ T7508] CPU: 0 UID: 0 PID: 7508 Comm: syz.0.121 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  222.274994][ T7508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.275001][ T7508] Call Trace:
[  222.275007][ T7508]  <TASK>
[  222.275012][ T7508]  dump_stack_lvl+0x241/0x360
[  222.275034][ T7508]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.275049][ T7508]  ? __pfx__printk+0x10/0x10
[  222.275067][ T7508]  ? __pfx___might_resched+0x10/0x10
[  222.275085][ T7508]  should_fail_ex+0x424/0x570
[  222.275100][ T7508]  should_failslab+0xac/0x100
[  222.275116][ T7508]  kmem_cache_alloc_noprof+0x78/0x390
[  222.275132][ T7508]  ? add_to_free_space_tree+0xc9/0x320
[  222.275151][ T7508]  add_to_free_space_tree+0xc9/0x320
[  222.275171][ T7508]  __btrfs_free_extent+0x1cf7/0x3990
[  222.275228][ T7508]  ? __pfx___btrfs_free_extent+0x10/0x10
[  222.275238][ T7508]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  222.275252][ T7508]  ? do_raw_read_unlock+0x3c/0x80
[  222.275274][ T7508]  ? do_raw_spin_unlock+0x58/0x8b0
[  222.275295][ T7508]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  222.275305][ T7508]  ? __lock_acquire+0xad5/0xd80
[  222.275330][ T7508]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  222.275347][ T7508]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  222.275363][ T7508]  ? __kernel_text_address+0xd/0x40
[  222.275373][ T7508]  ? unwind_get_return_address+0x4d/0x90
[  222.275387][ T7508]  ? arch_stack_walk+0xff/0x150
[  222.275411][ T7508]  ? stack_trace_save+0x11a/0x1d0
[  222.275428][ T7508]  ? __lock_acquire+0xad5/0xd80
[  222.275436][ T7508]  ? stack_depot_save_flags+0x44/0x940
[  222.275449][ T7508]  btrfs_run_delayed_refs+0xe3/0x2f0
[  222.275461][ T7508]  btrfs_commit_transaction+0x4ae/0x3650
[  222.275471][ T7508]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.275481][ T7508]  ? btrfs_commit_transaction+0x167/0x3650
[  222.275497][ T7508]  ? __lock_acquire+0xad5/0xd80
[  222.275505][ T7508]  ? do_raw_spin_lock+0x151/0x370
[  222.275522][ T7508]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  222.275547][ T7508]  ? btrfs_record_root_in_trans+0x12d/0x190
[  222.275564][ T7508]  ? start_transaction+0x45f/0x16b0
[  222.275591][ T7508]  try_flush_qgroup+0x1fc/0x3a0
[  222.275604][ T7508]  ? kfree+0x198/0x430
[  222.275613][ T7508]  ? qgroup_reserve_data+0x6b2/0x8d0
[  222.275621][ T7508]  ? __pfx_try_flush_qgroup+0x10/0x10
[  222.275633][ T7508]  ? qgroup_reserve_data+0x6b2/0x8d0
[  222.275652][ T7508]  btrfs_qgroup_reserve_data+0x68/0xb0
[  222.275667][ T7508]  btrfs_check_data_free_space+0x14b/0x240
[  222.275685][ T7508]  btrfs_buffered_write+0x509/0x1310
[  222.275714][ T7508]  ? __lock_acquire+0xad5/0xd80
[  222.275730][ T7508]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  222.275752][ T7508]  ? aa_file_perm+0x139/0xf60
[  222.275769][ T7508]  ? aa_file_perm+0x139/0xf60
[  222.275781][ T7508]  ? aa_file_perm+0x3f1/0xf60
[  222.275794][ T7508]  btrfs_do_write_iter+0x27b/0x7c0
[  222.275805][ T7508]  ? kstrtouint+0xfc/0x190
[  222.275816][ T7508]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  222.275837][ T7508]  do_iter_readv_writev+0x71f/0x9d0
[  222.275856][ T7508]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  222.275868][ T7508]  ? rcu_read_lock_any_held+0xbb/0x160
[  222.275894][ T7508]  vfs_writev+0x38d/0xbc0
[  222.275917][ T7508]  ? __lock_acquire+0xad5/0xd80
[  222.275928][ T7508]  ? __pfx_vfs_writev+0x10/0x10
[  222.275956][ T7508]  ? __fget_files+0x2a/0x420
[  222.275966][ T7508]  ? __fget_files+0x39d/0x420
[  222.275992][ T7508]  ? __fget_files+0x2a/0x420
[  222.276010][ T7508]  __se_sys_pwritev2+0x1b8/0x2d0
[  222.276027][ T7508]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  222.276044][ T7508]  ? __x64_sys_pwritev2+0x21/0xf0
[  222.276059][ T7508]  do_syscall_64+0xf3/0x230
[  222.276074][ T7508]  ? clear_bhb_loop+0x45/0xa0
[  222.276086][ T7508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.276097][ T7508] RIP: 0033:0x7fe207b7e719
[  222.276109][ T7508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.276119][ T7508] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  222.276133][ T7508] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  222.276141][ T7508] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  222.276149][ T7508] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  222.276156][ T7508] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  222.276161][ T7508] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  222.276172][ T7508]  </TASK>
[  222.492173][ T7508] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  222.495469][ T7508] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  222.503769][ T7508] BTRFS info (device loop0 state EA): forced readonly
[  222.508790][ T7508] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  222.512906][ T7508] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  222.520638][ T7508] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  222.531026][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  222.535810][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  222.541809][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  222.911012][ T7526] loop0: detected capacity change from 0 to 32768
[  222.919887][ T7526] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.122 (7526)
[  222.940524][ T7526] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  222.957446][ T7526] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  222.960909][ T7526] BTRFS info (device loop0): using free-space-tree
[  223.052078][ T7526] FAULT_INJECTION: forcing a failure.
[  223.052078][ T7526] name failslab, interval 1, probability 0, space 0, times 0
[  223.067701][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  223.073448][ T7526] CPU: 0 UID: 0 PID: 7526 Comm: syz.0.122 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  223.073469][ T7526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.073476][ T7526] Call Trace:
[  223.073483][ T7526]  <TASK>
[  223.073490][ T7526]  dump_stack_lvl+0x241/0x360
[  223.073514][ T7526]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.073530][ T7526]  ? __pfx__printk+0x10/0x10
[  223.073551][ T7526]  ? __pfx___might_resched+0x10/0x10
[  223.073568][ T7526]  should_fail_ex+0x424/0x570
[  223.073586][ T7526]  should_failslab+0xac/0x100
[  223.073605][ T7526]  kmem_cache_alloc_noprof+0x78/0x390
[  223.073621][ T7526]  ? alloc_extent_state+0x25/0x310
[  223.073639][ T7526]  alloc_extent_state+0x25/0x310
[  223.073653][ T7526]  __set_extent_bit+0x1f4/0x1bc0
[  223.073678][ T7526]  set_extent_bit+0x3b/0x50
[  223.073692][ T7526]  btrfs_alloc_tree_block+0xa37/0x15d0
[  223.073716][ T7526]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  223.073730][ T7526]  ? __kernel_text_address+0xd/0x40
[  223.073760][ T7526]  ? __lock_acquire+0xad5/0xd80
[  223.073772][ T7526]  ? read_extent_buffer+0x10d/0x550
[  223.073787][ T7526]  btrfs_force_cow_block+0x530/0x2010
[  223.073807][ T7526]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  223.073815][ T7526]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  223.073827][ T7526]  ? down_write_nested+0x195/0x220
[  223.073837][ T7526]  ? __pfx_down_write_nested+0x10/0x10
[  223.073849][ T7526]  btrfs_cow_block+0x377/0x840
[  223.073863][ T7526]  btrfs_search_slot+0xc12/0x31c0
[  223.073883][ T7526]  ? __pfx_btrfs_search_slot+0x10/0x10
[  223.073891][ T7526]  ? btrfs_extent_root+0x2a3/0x3b0
[  223.073902][ T7526]  ? __pfx_btrfs_extent_root+0x10/0x10
[  223.073917][ T7526]  ? kasan_save_track+0x51/0x80
[  223.073928][ T7526]  ? kasan_save_track+0x3f/0x80
[  223.073942][ T7526]  lookup_inline_extent_backref+0x44a/0x1b60
[  223.073952][ T7526]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  223.073965][ T7526]  ? btrfs_check_data_free_space+0x14b/0x240
[  223.073977][ T7526]  ? btrfs_buffered_write+0x509/0x1310
[  223.073992][ T7526]  ? do_iter_readv_writev+0x71f/0x9d0
[  223.074009][ T7526]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.074035][ T7526]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  223.074063][ T7526]  ? rcu_is_watching+0x15/0xb0
[  223.074076][ T7526]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  223.074090][ T7526]  ? kmem_cache_alloc_noprof+0x237/0x390
[  223.074106][ T7526]  __btrfs_free_extent+0x438/0x3990
[  223.074133][ T7526]  ? __pfx___btrfs_free_extent+0x10/0x10
[  223.074144][ T7526]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  223.074157][ T7526]  ? do_raw_read_unlock+0x3c/0x80
[  223.074176][ T7526]  ? do_raw_spin_unlock+0x58/0x8b0
[  223.074197][ T7526]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  223.074212][ T7526]  ? __lock_acquire+0xad5/0xd80
[  223.074253][ T7526]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  223.074270][ T7526]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  223.074286][ T7526]  ? __kernel_text_address+0xd/0x40
[  223.074296][ T7526]  ? unwind_get_return_address+0x4d/0x90
[  223.074312][ T7526]  ? arch_stack_walk+0xff/0x150
[  223.074336][ T7526]  ? stack_trace_save+0x11a/0x1d0
[  223.074353][ T7526]  ? __lock_acquire+0xad5/0xd80
[  223.074366][ T7526]  ? stack_depot_save_flags+0x44/0x940
[  223.074387][ T7526]  btrfs_run_delayed_refs+0xe3/0x2f0
[  223.074406][ T7526]  btrfs_commit_transaction+0x4ae/0x3650
[  223.074421][ T7526]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.074436][ T7526]  ? btrfs_commit_transaction+0x167/0x3650
[  223.074454][ T7526]  ? __lock_acquire+0xad5/0xd80
[  223.074473][ T7526]  ? do_raw_spin_lock+0x151/0x370
[  223.074492][ T7526]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  223.074519][ T7526]  ? btrfs_record_root_in_trans+0x12d/0x190
[  223.074534][ T7526]  ? start_transaction+0x45f/0x16b0
[  223.074560][ T7526]  try_flush_qgroup+0x1fc/0x3a0
[  223.074573][ T7526]  ? kfree+0x198/0x430
[  223.074586][ T7526]  ? qgroup_reserve_data+0x6b2/0x8d0
[  223.074601][ T7526]  ? __pfx_try_flush_qgroup+0x10/0x10
[  223.074616][ T7526]  ? qgroup_reserve_data+0x6b2/0x8d0
[  223.074640][ T7526]  btrfs_qgroup_reserve_data+0x68/0xb0
[  223.074656][ T7526]  btrfs_check_data_free_space+0x14b/0x240
[  223.074676][ T7526]  btrfs_buffered_write+0x509/0x1310
[  223.074709][ T7526]  ? __lock_acquire+0xad5/0xd80
[  223.074724][ T7526]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  223.074745][ T7526]  ? aa_file_perm+0x139/0xf60
[  223.074770][ T7526]  ? aa_file_perm+0x139/0xf60
[  223.074785][ T7526]  ? aa_file_perm+0x3f1/0xf60
[  223.074806][ T7526]  btrfs_do_write_iter+0x27b/0x7c0
[  223.074823][ T7526]  ? kstrtouint+0xfc/0x190
[  223.074836][ T7526]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  223.074858][ T7526]  do_iter_readv_writev+0x71f/0x9d0
[  223.074877][ T7526]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  223.074890][ T7526]  ? rcu_read_lock_any_held+0xbb/0x160
[  223.074916][ T7526]  vfs_writev+0x38d/0xbc0
[  223.074939][ T7526]  ? __lock_acquire+0xad5/0xd80
[  223.074950][ T7526]  ? __pfx_vfs_writev+0x10/0x10
[  223.074978][ T7526]  ? __fget_files+0x2a/0x420
[  223.074989][ T7526]  ? __fget_files+0x39d/0x420
[  223.074999][ T7526]  ? __fget_files+0x2a/0x420
[  223.075015][ T7526]  __se_sys_pwritev2+0x1b8/0x2d0
[  223.075032][ T7526]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  223.075049][ T7526]  ? __x64_sys_pwritev2+0x21/0xf0
[  223.075065][ T7526]  do_syscall_64+0xf3/0x230
[  223.075079][ T7526]  ? clear_bhb_loop+0x45/0xa0
[  223.075093][ T7526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.075103][ T7526] RIP: 0033:0x7fe207b7e719
[  223.075115][ T7526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.075124][ T7526] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  223.075138][ T7526] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  223.075145][ T7526] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  223.075152][ T7526] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  223.075159][ T7526] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  223.075166][ T7526] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  223.075215][ T7526]  </TASK>
[  223.377457][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  223.775819][ T7544] loop0: detected capacity change from 0 to 32768
[  223.791145][ T7544] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.123 (7544)
[  223.817025][ T7544] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  223.821088][ T7544] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  223.824547][ T7544] BTRFS info (device loop0): using free-space-tree
[  223.925935][ T7544] FAULT_INJECTION: forcing a failure.
[  223.925935][ T7544] name failslab, interval 1, probability 0, space 0, times 0
[  223.946750][ T7544] CPU: 0 UID: 0 PID: 7544 Comm: syz.0.123 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  223.946770][ T7544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.946777][ T7544] Call Trace:
[  223.946783][ T7544]  <TASK>
[  223.946789][ T7544]  dump_stack_lvl+0x241/0x360
[  223.946813][ T7544]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.946829][ T7544]  ? __pfx__printk+0x10/0x10
[  223.946848][ T7544]  ? __pfx___might_resched+0x10/0x10
[  223.946864][ T7544]  should_fail_ex+0x424/0x570
[  223.946881][ T7544]  should_failslab+0xac/0x100
[  223.946899][ T7544]  kmem_cache_alloc_noprof+0x78/0x390
[  223.946914][ T7544]  ? alloc_extent_state+0x25/0x310
[  223.946929][ T7544]  alloc_extent_state+0x25/0x310
[  223.946943][ T7544]  __set_extent_bit+0x1f4/0x1bc0
[  223.946967][ T7544]  set_extent_bit+0x3b/0x50
[  223.946981][ T7544]  btrfs_alloc_tree_block+0xa37/0x15d0
[  223.947003][ T7544]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  223.947016][ T7544]  ? __kernel_text_address+0xd/0x40
[  223.947037][ T7544]  ? __lock_acquire+0xad5/0xd80
[  223.947050][ T7544]  ? read_extent_buffer+0x10d/0x550
[  223.947068][ T7544]  btrfs_force_cow_block+0x530/0x2010
[  223.947093][ T7544]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  223.947102][ T7544]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  223.947113][ T7544]  ? down_write_nested+0x195/0x220
[  223.947123][ T7544]  ? __pfx_down_write_nested+0x10/0x10
[  223.947135][ T7544]  btrfs_cow_block+0x377/0x840
[  223.947149][ T7544]  btrfs_search_slot+0xc12/0x31c0
[  223.947198][ T7544]  ? __pfx_btrfs_search_slot+0x10/0x10
[  223.947212][ T7544]  ? btrfs_extent_root+0x2a3/0x3b0
[  223.947230][ T7544]  ? __pfx_btrfs_extent_root+0x10/0x10
[  223.947251][ T7544]  ? kasan_save_track+0x51/0x80
[  223.947262][ T7544]  ? kasan_save_track+0x3f/0x80
[  223.947272][ T7544]  lookup_inline_extent_backref+0x44a/0x1b60
[  223.947279][ T7544]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  223.947287][ T7544]  ? btrfs_check_data_free_space+0x14b/0x240
[  223.947296][ T7544]  ? btrfs_buffered_write+0x509/0x1310
[  223.947306][ T7544]  ? do_iter_readv_writev+0x71f/0x9d0
[  223.947316][ T7544]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.947340][ T7544]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  223.947365][ T7544]  ? rcu_is_watching+0x15/0xb0
[  223.947380][ T7544]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  223.947393][ T7544]  ? kmem_cache_alloc_noprof+0x237/0x390
[  223.947409][ T7544]  __btrfs_free_extent+0x438/0x3990
[  223.947434][ T7544]  ? __pfx___btrfs_free_extent+0x10/0x10
[  223.947444][ T7544]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  223.947456][ T7544]  ? do_raw_read_unlock+0x3c/0x80
[  223.947477][ T7544]  ? do_raw_spin_unlock+0x58/0x8b0
[  223.947498][ T7544]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  223.947513][ T7544]  ? __lock_acquire+0xad5/0xd80
[  223.947555][ T7544]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  223.947574][ T7544]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  223.947590][ T7544]  ? __kernel_text_address+0xd/0x40
[  223.947599][ T7544]  ? unwind_get_return_address+0x4d/0x90
[  223.947615][ T7544]  ? arch_stack_walk+0xff/0x150
[  223.947638][ T7544]  ? stack_trace_save+0x11a/0x1d0
[  223.947655][ T7544]  ? __lock_acquire+0xad5/0xd80
[  223.947669][ T7544]  ? stack_depot_save_flags+0x44/0x940
[  223.947689][ T7544]  btrfs_run_delayed_refs+0xe3/0x2f0
[  223.947707][ T7544]  btrfs_commit_transaction+0x4ae/0x3650
[  223.947721][ T7544]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.947741][ T7544]  ? btrfs_commit_transaction+0x167/0x3650
[  223.947760][ T7544]  ? __lock_acquire+0xad5/0xd80
[  223.947773][ T7544]  ? do_raw_spin_lock+0x151/0x370
[  223.947791][ T7544]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  223.947819][ T7544]  ? btrfs_record_root_in_trans+0x12d/0x190
[  223.947835][ T7544]  ? start_transaction+0x45f/0x16b0
[  223.947862][ T7544]  try_flush_qgroup+0x1fc/0x3a0
[  223.947875][ T7544]  ? kfree+0x198/0x430
[  223.947888][ T7544]  ? qgroup_reserve_data+0x6b2/0x8d0
[  223.947902][ T7544]  ? __pfx_try_flush_qgroup+0x10/0x10
[  223.947916][ T7544]  ? qgroup_reserve_data+0x6b2/0x8d0
[  223.947938][ T7544]  btrfs_qgroup_reserve_data+0x68/0xb0
[  223.947953][ T7544]  btrfs_check_data_free_space+0x14b/0x240
[  223.947970][ T7544]  btrfs_buffered_write+0x509/0x1310
[  223.948000][ T7544]  ? __lock_acquire+0xad5/0xd80
[  223.948016][ T7544]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  223.948037][ T7544]  ? aa_file_perm+0x139/0xf60
[  223.948054][ T7544]  ? aa_file_perm+0x139/0xf60
[  223.948070][ T7544]  ? aa_file_perm+0x3f1/0xf60
[  223.948090][ T7544]  btrfs_do_write_iter+0x27b/0x7c0
[  223.948109][ T7544]  ? kstrtouint+0xfc/0x190
[  223.948123][ T7544]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  223.948146][ T7544]  do_iter_readv_writev+0x71f/0x9d0
[  223.948165][ T7544]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  223.948177][ T7544]  ? rcu_read_lock_any_held+0xbb/0x160
[  223.948203][ T7544]  vfs_writev+0x38d/0xbc0
[  223.948226][ T7544]  ? __lock_acquire+0xad5/0xd80
[  223.948238][ T7544]  ? __pfx_vfs_writev+0x10/0x10
[  223.948265][ T7544]  ? __fget_files+0x2a/0x420
[  223.948278][ T7544]  ? __fget_files+0x39d/0x420
[  223.948286][ T7544]  ? __fget_files+0x2a/0x420
[  223.948303][ T7544]  __se_sys_pwritev2+0x1b8/0x2d0
[  223.948319][ T7544]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  223.948336][ T7544]  ? __x64_sys_pwritev2+0x21/0xf0
[  223.948353][ T7544]  do_syscall_64+0xf3/0x230
[  223.948366][ T7544]  ? clear_bhb_loop+0x45/0xa0
[  223.948380][ T7544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.948390][ T7544] RIP: 0033:0x7fe207b7e719
[  223.948402][ T7544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.948411][ T7544] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  223.948425][ T7544] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  223.948432][ T7544] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  223.948439][ T7544] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  223.948446][ T7544] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  223.948453][ T7544] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  223.948474][ T7544]  </TASK>
[  224.234360][ T1042] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  224.258326][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  224.619320][ T7562] loop0: detected capacity change from 0 to 32768
[  224.627311][ T7562] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.124 (7562)
[  224.663136][ T7562] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  224.668229][ T7562] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  224.676341][ T7562] BTRFS info (device loop0): using free-space-tree
[  224.751373][ T7562] FAULT_INJECTION: forcing a failure.
[  224.751373][ T7562] name failslab, interval 1, probability 0, space 0, times 0
[  224.761900][ T1042] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  224.776773][ T7562] CPU: 0 UID: 0 PID: 7562 Comm: syz.0.124 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  224.776793][ T7562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  224.776801][ T7562] Call Trace:
[  224.776806][ T7562]  <TASK>
[  224.776812][ T7562]  dump_stack_lvl+0x241/0x360
[  224.776835][ T7562]  ? __pfx_dump_stack_lvl+0x10/0x10
[  224.776850][ T7562]  ? __pfx__printk+0x10/0x10
[  224.776869][ T7562]  ? __pfx___might_resched+0x10/0x10
[  224.776886][ T7562]  should_fail_ex+0x424/0x570
[  224.776903][ T7562]  should_failslab+0xac/0x100
[  224.776920][ T7562]  kmem_cache_alloc_noprof+0x78/0x390
[  224.776934][ T7562]  ? add_to_free_space_tree+0xc9/0x320
[  224.776953][ T7562]  add_to_free_space_tree+0xc9/0x320
[  224.776973][ T7562]  __btrfs_free_extent+0x1cf7/0x3990
[  224.777000][ T7562]  ? __pfx___btrfs_free_extent+0x10/0x10
[  224.777010][ T7562]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  224.777024][ T7562]  ? do_raw_read_unlock+0x3c/0x80
[  224.777045][ T7562]  ? do_raw_spin_unlock+0x58/0x8b0
[  224.777065][ T7562]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  224.777080][ T7562]  ? __lock_acquire+0xad5/0xd80
[  224.777122][ T7562]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  224.777140][ T7562]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  224.777155][ T7562]  ? __kernel_text_address+0xd/0x40
[  224.777166][ T7562]  ? unwind_get_return_address+0x4d/0x90
[  224.777180][ T7562]  ? arch_stack_walk+0xff/0x150
[  224.777202][ T7562]  ? stack_trace_save+0x11a/0x1d0
[  224.777218][ T7562]  ? __lock_acquire+0xad5/0xd80
[  224.777232][ T7562]  ? stack_depot_save_flags+0x44/0x940
[  224.777252][ T7562]  btrfs_run_delayed_refs+0xe3/0x2f0
[  224.777271][ T7562]  btrfs_commit_transaction+0x4ae/0x3650
[  224.777284][ T7562]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.777299][ T7562]  ? btrfs_commit_transaction+0x167/0x3650
[  224.777317][ T7562]  ? __lock_acquire+0xad5/0xd80
[  224.777330][ T7562]  ? do_raw_spin_lock+0x151/0x370
[  224.777348][ T7562]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  224.777373][ T7562]  ? btrfs_record_root_in_trans+0x12d/0x190
[  224.777388][ T7562]  ? start_transaction+0x45f/0x16b0
[  224.777413][ T7562]  try_flush_qgroup+0x1fc/0x3a0
[  224.777426][ T7562]  ? kfree+0x198/0x430
[  224.777437][ T7562]  ? qgroup_reserve_data+0x6b2/0x8d0
[  224.777450][ T7562]  ? __pfx_try_flush_qgroup+0x10/0x10
[  224.777464][ T7562]  ? qgroup_reserve_data+0x6b2/0x8d0
[  224.777485][ T7562]  btrfs_qgroup_reserve_data+0x68/0xb0
[  224.777508][ T7562]  btrfs_check_data_free_space+0x14b/0x240
[  224.777527][ T7562]  btrfs_buffered_write+0x509/0x1310
[  224.777557][ T7562]  ? __lock_acquire+0xad5/0xd80
[  224.777571][ T7562]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  224.777593][ T7562]  ? aa_file_perm+0x139/0xf60
[  224.777609][ T7562]  ? aa_file_perm+0x139/0xf60
[  224.777624][ T7562]  ? aa_file_perm+0x3f1/0xf60
[  224.777643][ T7562]  btrfs_do_write_iter+0x27b/0x7c0
[  224.777660][ T7562]  ? kstrtouint+0xfc/0x190
[  224.777675][ T7562]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  224.777697][ T7562]  do_iter_readv_writev+0x71f/0x9d0
[  224.777717][ T7562]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  224.777730][ T7562]  ? rcu_read_lock_any_held+0xbb/0x160
[  224.777755][ T7562]  vfs_writev+0x38d/0xbc0
[  224.777779][ T7562]  ? __lock_acquire+0xad5/0xd80
[  224.777792][ T7562]  ? __pfx_vfs_writev+0x10/0x10
[  224.777820][ T7562]  ? __fget_files+0x2a/0x420
[  224.777832][ T7562]  ? __fget_files+0x39d/0x420
[  224.777841][ T7562]  ? __fget_files+0x2a/0x420
[  224.777857][ T7562]  __se_sys_pwritev2+0x1b8/0x2d0
[  224.777874][ T7562]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  224.777893][ T7562]  ? __x64_sys_pwritev2+0x21/0xf0
[  224.777909][ T7562]  do_syscall_64+0xf3/0x230
[  224.777924][ T7562]  ? clear_bhb_loop+0x45/0xa0
[  224.777938][ T7562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.777949][ T7562] RIP: 0033:0x7fe207b7e719
[  224.777961][ T7562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.777970][ T7562] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  224.777984][ T7562] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  224.777991][ T7562] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  224.777998][ T7562] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  224.778005][ T7562] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  224.778011][ T7562] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  224.778029][ T7562]  </TASK>
[  224.778038][ T7562] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  225.013016][ T7562] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  225.017395][ T7562] BTRFS info (device loop0 state EA): forced readonly
[  225.020050][ T7562] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  225.024178][ T7562] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  225.033126][ T7562] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  225.045313][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  225.052389][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  225.056715][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
2025/04/16 04:52:53 executed programs: 112
[  225.421911][ T7580] loop0: detected capacity change from 0 to 32768
[  225.431219][ T7580] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.125 (7580)
[  225.474582][ T7580] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  225.498165][ T7580] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  225.501622][ T7580] BTRFS info (device loop0): using free-space-tree
[  225.588463][ T7580] FAULT_INJECTION: forcing a failure.
[  225.588463][ T7580] name failslab, interval 1, probability 0, space 0, times 0
[  225.593464][ T7580] CPU: 0 UID: 0 PID: 7580 Comm: syz.0.125 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  225.593489][ T7580] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.593497][ T7580] Call Trace:
[  225.593504][ T7580]  <TASK>
[  225.593510][ T7580]  dump_stack_lvl+0x241/0x360
[  225.593534][ T7580]  ? __pfx_dump_stack_lvl+0x10/0x10
[  225.593550][ T7580]  ? __pfx__printk+0x10/0x10
[  225.593568][ T7580]  ? __pfx___might_resched+0x10/0x10
[  225.593585][ T7580]  should_fail_ex+0x424/0x570
[  225.593603][ T7580]  should_failslab+0xac/0x100
[  225.593620][ T7580]  kmem_cache_alloc_noprof+0x78/0x390
[  225.593634][ T7580]  ? alloc_extent_state+0x25/0x310
[  225.593650][ T7580]  alloc_extent_state+0x25/0x310
[  225.593663][ T7580]  __set_extent_bit+0x1f4/0x1bc0
[  225.593688][ T7580]  set_extent_bit+0x3b/0x50
[  225.593701][ T7580]  btrfs_alloc_tree_block+0xa37/0x15d0
[  225.593726][ T7580]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  225.593740][ T7580]  ? __kernel_text_address+0xd/0x40
[  225.593758][ T7580]  ? __lock_acquire+0xad5/0xd80
[  225.593771][ T7580]  ? read_extent_buffer+0x10d/0x550
[  225.593789][ T7580]  btrfs_force_cow_block+0x530/0x2010
[  225.593819][ T7580]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  225.593832][ T7580]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  225.593850][ T7580]  ? down_write_nested+0x195/0x220
[  225.593865][ T7580]  ? __pfx_down_write_nested+0x10/0x10
[  225.593882][ T7580]  btrfs_cow_block+0x377/0x840
[  225.593903][ T7580]  btrfs_search_slot+0xc12/0x31c0
[  225.593933][ T7580]  ? __pfx_btrfs_search_slot+0x10/0x10
[  225.593945][ T7580]  ? btrfs_extent_root+0x2a3/0x3b0
[  225.593962][ T7580]  ? __pfx_btrfs_extent_root+0x10/0x10
[  225.593982][ T7580]  ? kasan_save_track+0x51/0x80
[  225.593993][ T7580]  ? kasan_save_track+0x3f/0x80
[  225.594006][ T7580]  lookup_inline_extent_backref+0x44a/0x1b60
[  225.594020][ T7580]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  225.594033][ T7580]  ? btrfs_check_data_free_space+0x14b/0x240
[  225.594047][ T7580]  ? btrfs_buffered_write+0x509/0x1310
[  225.594062][ T7580]  ? do_iter_readv_writev+0x71f/0x9d0
[  225.594077][ T7580]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.594104][ T7580]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  225.594130][ T7580]  ? rcu_is_watching+0x15/0xb0
[  225.594146][ T7580]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  225.594160][ T7580]  ? kmem_cache_alloc_noprof+0x237/0x390
[  225.594178][ T7580]  __btrfs_free_extent+0x438/0x3990
[  225.594207][ T7580]  ? __pfx___btrfs_free_extent+0x10/0x10
[  225.594218][ T7580]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  225.594232][ T7580]  ? do_raw_read_unlock+0x3c/0x80
[  225.594253][ T7580]  ? do_raw_spin_unlock+0x58/0x8b0
[  225.594275][ T7580]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  225.594292][ T7580]  ? __lock_acquire+0xad5/0xd80
[  225.594336][ T7580]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  225.594355][ T7580]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  225.594371][ T7580]  ? __kernel_text_address+0xd/0x40
[  225.594382][ T7580]  ? unwind_get_return_address+0x4d/0x90
[  225.594398][ T7580]  ? arch_stack_walk+0xff/0x150
[  225.594422][ T7580]  ? stack_trace_save+0x11a/0x1d0
[  225.594440][ T7580]  ? __lock_acquire+0xad5/0xd80
[  225.594455][ T7580]  ? stack_depot_save_flags+0x44/0x940
[  225.594487][ T7580]  btrfs_run_delayed_refs+0xe3/0x2f0
[  225.594508][ T7580]  btrfs_commit_transaction+0x4ae/0x3650
[  225.594522][ T7580]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.594538][ T7580]  ? btrfs_commit_transaction+0x167/0x3650
[  225.594556][ T7580]  ? __lock_acquire+0xad5/0xd80
[  225.594570][ T7580]  ? do_raw_spin_lock+0x151/0x370
[  225.594590][ T7580]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  225.594617][ T7580]  ? btrfs_record_root_in_trans+0x12d/0x190
[  225.594634][ T7580]  ? start_transaction+0x45f/0x16b0
[  225.594661][ T7580]  try_flush_qgroup+0x1fc/0x3a0
[  225.594675][ T7580]  ? kfree+0x198/0x430
[  225.594688][ T7580]  ? qgroup_reserve_data+0x6b2/0x8d0
[  225.594702][ T7580]  ? __pfx_try_flush_qgroup+0x10/0x10
[  225.594716][ T7580]  ? qgroup_reserve_data+0x6b2/0x8d0
[  225.594737][ T7580]  btrfs_qgroup_reserve_data+0x68/0xb0
[  225.594753][ T7580]  btrfs_check_data_free_space+0x14b/0x240
[  225.594772][ T7580]  btrfs_buffered_write+0x509/0x1310
[  225.594802][ T7580]  ? __lock_acquire+0xad5/0xd80
[  225.594818][ T7580]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  225.594841][ T7580]  ? aa_file_perm+0x139/0xf60
[  225.594859][ T7580]  ? aa_file_perm+0x139/0xf60
[  225.594876][ T7580]  ? aa_file_perm+0x3f1/0xf60
[  225.594897][ T7580]  btrfs_do_write_iter+0x27b/0x7c0
[  225.594916][ T7580]  ? kstrtouint+0xfc/0x190
[  225.594931][ T7580]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  225.594955][ T7580]  do_iter_readv_writev+0x71f/0x9d0
[  225.594976][ T7580]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  225.594989][ T7580]  ? rcu_read_lock_any_held+0xbb/0x160
[  225.595017][ T7580]  vfs_writev+0x38d/0xbc0
[  225.595042][ T7580]  ? __lock_acquire+0xad5/0xd80
[  225.595055][ T7580]  ? __pfx_vfs_writev+0x10/0x10
[  225.595083][ T7580]  ? __fget_files+0x2a/0x420
[  225.595095][ T7580]  ? __fget_files+0x39d/0x420
[  225.595105][ T7580]  ? __fget_files+0x2a/0x420
[  225.595122][ T7580]  __se_sys_pwritev2+0x1b8/0x2d0
[  225.595139][ T7580]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  225.595190][ T7580]  ? __x64_sys_pwritev2+0x21/0xf0
[  225.595209][ T7580]  do_syscall_64+0xf3/0x230
[  225.595225][ T7580]  ? clear_bhb_loop+0x45/0xa0
[  225.595239][ T7580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.595251][ T7580] RIP: 0033:0x7fe207b7e719
[  225.595264][ T7580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.595274][ T7580] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  225.595288][ T7580] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  225.595296][ T7580] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  225.595303][ T7580] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  225.595310][ T7580] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  225.595317][ T7580] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  225.595336][ T7580]  </TASK>
[  225.873466][ T3079] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  225.893189][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  226.261771][ T7598] loop0: detected capacity change from 0 to 32768
[  226.267952][ T7598] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.126 (7598)
[  226.288868][ T7598] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  226.309017][ T7598] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  226.312511][ T7598] BTRFS info (device loop0): using free-space-tree
[  226.407430][ T7598] FAULT_INJECTION: forcing a failure.
[  226.407430][ T7598] name failslab, interval 1, probability 0, space 0, times 0
[  226.412469][ T7598] CPU: 0 UID: 0 PID: 7598 Comm: syz.0.126 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  226.412488][ T7598] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.412496][ T7598] Call Trace:
[  226.412502][ T7598]  <TASK>
[  226.412508][ T7598]  dump_stack_lvl+0x241/0x360
[  226.412554][ T7598]  ? __pfx_dump_stack_lvl+0x10/0x10
[  226.412571][ T7598]  ? __pfx__printk+0x10/0x10
[  226.412591][ T7598]  ? __pfx___might_resched+0x10/0x10
[  226.412606][ T7598]  should_fail_ex+0x424/0x570
[  226.412632][ T7598]  should_failslab+0xac/0x100
[  226.412649][ T7598]  kmem_cache_alloc_noprof+0x78/0x390
[  226.412666][ T7598]  ? alloc_extent_state+0x25/0x310
[  226.412683][ T7598]  alloc_extent_state+0x25/0x310
[  226.412696][ T7598]  __set_extent_bit+0x1f4/0x1bc0
[  226.412723][ T7598]  set_extent_bit+0x3b/0x50
[  226.412738][ T7598]  btrfs_alloc_tree_block+0xa37/0x15d0
[  226.412761][ T7598]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  226.412777][ T7598]  ? __kernel_text_address+0xd/0x40
[  226.412796][ T7598]  ? __lock_acquire+0xad5/0xd80
[  226.412809][ T7598]  ? read_extent_buffer+0x10d/0x550
[  226.412829][ T7598]  btrfs_force_cow_block+0x530/0x2010
[  226.412861][ T7598]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  226.412876][ T7598]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  226.412896][ T7598]  ? down_write_nested+0x195/0x220
[  226.412912][ T7598]  ? __pfx_down_write_nested+0x10/0x10
[  226.412931][ T7598]  btrfs_cow_block+0x377/0x840
[  226.412953][ T7598]  btrfs_search_slot+0xc12/0x31c0
[  226.412987][ T7598]  ? __pfx_btrfs_search_slot+0x10/0x10
[  226.412999][ T7598]  ? btrfs_extent_root+0x2a3/0x3b0
[  226.413018][ T7598]  ? __pfx_btrfs_extent_root+0x10/0x10
[  226.413040][ T7598]  ? kasan_save_track+0x51/0x80
[  226.413051][ T7598]  ? kasan_save_track+0x3f/0x80
[  226.413066][ T7598]  lookup_inline_extent_backref+0x44a/0x1b60
[  226.413078][ T7598]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  226.413090][ T7598]  ? btrfs_check_data_free_space+0x14b/0x240
[  226.413103][ T7598]  ? btrfs_buffered_write+0x509/0x1310
[  226.413117][ T7598]  ? do_iter_readv_writev+0x71f/0x9d0
[  226.413133][ T7598]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.413160][ T7598]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  226.413187][ T7598]  ? rcu_is_watching+0x15/0xb0
[  226.413202][ T7598]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  226.413214][ T7598]  ? kmem_cache_alloc_noprof+0x237/0x390
[  226.413232][ T7598]  __btrfs_free_extent+0x438/0x3990
[  226.413259][ T7598]  ? __pfx___btrfs_free_extent+0x10/0x10
[  226.413270][ T7598]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  226.413283][ T7598]  ? do_raw_read_unlock+0x3c/0x80
[  226.413304][ T7598]  ? do_raw_spin_unlock+0x58/0x8b0
[  226.413325][ T7598]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  226.413341][ T7598]  ? __lock_acquire+0xad5/0xd80
[  226.413386][ T7598]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  226.413405][ T7598]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  226.413420][ T7598]  ? __kernel_text_address+0xd/0x40
[  226.413431][ T7598]  ? unwind_get_return_address+0x4d/0x90
[  226.413447][ T7598]  ? arch_stack_walk+0xff/0x150
[  226.413469][ T7598]  ? stack_trace_save+0x11a/0x1d0
[  226.413488][ T7598]  ? __lock_acquire+0xad5/0xd80
[  226.413502][ T7598]  ? stack_depot_save_flags+0x44/0x940
[  226.413522][ T7598]  btrfs_run_delayed_refs+0xe3/0x2f0
[  226.413548][ T7598]  btrfs_commit_transaction+0x4ae/0x3650
[  226.413562][ T7598]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.413576][ T7598]  ? btrfs_commit_transaction+0x167/0x3650
[  226.413595][ T7598]  ? __lock_acquire+0xad5/0xd80
[  226.413608][ T7598]  ? do_raw_spin_lock+0x151/0x370
[  226.413628][ T7598]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  226.413656][ T7598]  ? btrfs_record_root_in_trans+0x12d/0x190
[  226.413671][ T7598]  ? start_transaction+0x45f/0x16b0
[  226.413701][ T7598]  try_flush_qgroup+0x1fc/0x3a0
[  226.413713][ T7598]  ? kfree+0x198/0x430
[  226.413725][ T7598]  ? qgroup_reserve_data+0x6b2/0x8d0
[  226.413738][ T7598]  ? __pfx_try_flush_qgroup+0x10/0x10
[  226.413753][ T7598]  ? qgroup_reserve_data+0x6b2/0x8d0
[  226.413775][ T7598]  btrfs_qgroup_reserve_data+0x68/0xb0
[  226.413790][ T7598]  btrfs_check_data_free_space+0x14b/0x240
[  226.413809][ T7598]  btrfs_buffered_write+0x509/0x1310
[  226.413839][ T7598]  ? __lock_acquire+0xad5/0xd80
[  226.413855][ T7598]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  226.413876][ T7598]  ? aa_file_perm+0x139/0xf60
[  226.413895][ T7598]  ? aa_file_perm+0x139/0xf60
[  226.413911][ T7598]  ? aa_file_perm+0x3f1/0xf60
[  226.413930][ T7598]  btrfs_do_write_iter+0x27b/0x7c0
[  226.413950][ T7598]  ? kstrtouint+0xfc/0x190
[  226.413965][ T7598]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  226.413988][ T7598]  do_iter_readv_writev+0x71f/0x9d0
[  226.414007][ T7598]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  226.414019][ T7598]  ? rcu_read_lock_any_held+0xbb/0x160
[  226.414046][ T7598]  vfs_writev+0x38d/0xbc0
[  226.414071][ T7598]  ? __lock_acquire+0xad5/0xd80
[  226.414083][ T7598]  ? __pfx_vfs_writev+0x10/0x10
[  226.414112][ T7598]  ? __fget_files+0x2a/0x420
[  226.414124][ T7598]  ? __fget_files+0x39d/0x420
[  226.414132][ T7598]  ? __fget_files+0x2a/0x420
[  226.414151][ T7598]  __se_sys_pwritev2+0x1b8/0x2d0
[  226.414168][ T7598]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  226.414185][ T7598]  ? __x64_sys_pwritev2+0x21/0xf0
[  226.414203][ T7598]  do_syscall_64+0xf3/0x230
[  226.414225][ T7598]  ? clear_bhb_loop+0x45/0xa0
[  226.414239][ T7598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.414250][ T7598] RIP: 0033:0x7fe207b7e719
[  226.414263][ T7598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.414274][ T7598] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  226.414288][ T7598] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  226.414297][ T7598] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  226.414305][ T7598] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  226.414312][ T7598] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  226.414319][ T7598] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  226.414339][ T7598]  </TASK>
[  226.720240][   T12] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  226.734921][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  227.114185][ T7616] loop0: detected capacity change from 0 to 32768
[  227.121955][ T7616] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.127 (7616)
[  227.142664][ T7616] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  227.156872][ T7616] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  227.160306][ T7616] BTRFS info (device loop0): using free-space-tree
[  227.231662][ T7616] FAULT_INJECTION: forcing a failure.
[  227.231662][ T7616] name failslab, interval 1, probability 0, space 0, times 0
[  227.250957][ T7616] CPU: 0 UID: 0 PID: 7616 Comm: syz.0.127 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  227.250978][ T7616] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.250986][ T7616] Call Trace:
[  227.250991][ T7616]  <TASK>
[  227.250998][ T7616]  dump_stack_lvl+0x241/0x360
[  227.251020][ T7616]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.251031][ T7616]  ? __pfx__printk+0x10/0x10
[  227.251045][ T7616]  ? __pfx___might_resched+0x10/0x10
[  227.251060][ T7616]  should_fail_ex+0x424/0x570
[  227.251076][ T7616]  should_failslab+0xac/0x100
[  227.251094][ T7616]  kmem_cache_alloc_noprof+0x78/0x390
[  227.251109][ T7616]  ? add_to_free_space_tree+0xc9/0x320
[  227.251128][ T7616]  add_to_free_space_tree+0xc9/0x320
[  227.251179][ T7616]  __btrfs_free_extent+0x1cf7/0x3990
[  227.251207][ T7616]  ? __pfx___btrfs_free_extent+0x10/0x10
[  227.251217][ T7616]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  227.251230][ T7616]  ? do_raw_read_unlock+0x3c/0x80
[  227.251251][ T7616]  ? do_raw_spin_unlock+0x58/0x8b0
[  227.251271][ T7616]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  227.251287][ T7616]  ? __lock_acquire+0xad5/0xd80
[  227.251325][ T7616]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  227.251342][ T7616]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  227.251357][ T7616]  ? __kernel_text_address+0xd/0x40
[  227.251368][ T7616]  ? unwind_get_return_address+0x4d/0x90
[  227.251383][ T7616]  ? arch_stack_walk+0xff/0x150
[  227.251407][ T7616]  ? stack_trace_save+0x11a/0x1d0
[  227.251424][ T7616]  ? __lock_acquire+0xad5/0xd80
[  227.251438][ T7616]  ? stack_depot_save_flags+0x44/0x940
[  227.251456][ T7616]  btrfs_run_delayed_refs+0xe3/0x2f0
[  227.251481][ T7616]  btrfs_commit_transaction+0x4ae/0x3650
[  227.251496][ T7616]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.251511][ T7616]  ? btrfs_commit_transaction+0x167/0x3650
[  227.251529][ T7616]  ? __lock_acquire+0xad5/0xd80
[  227.251541][ T7616]  ? do_raw_spin_lock+0x151/0x370
[  227.251559][ T7616]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  227.251584][ T7616]  ? btrfs_record_root_in_trans+0x12d/0x190
[  227.251600][ T7616]  ? start_transaction+0x45f/0x16b0
[  227.251627][ T7616]  try_flush_qgroup+0x1fc/0x3a0
[  227.251640][ T7616]  ? kfree+0x198/0x430
[  227.251652][ T7616]  ? qgroup_reserve_data+0x6b2/0x8d0
[  227.251663][ T7616]  ? __pfx_try_flush_qgroup+0x10/0x10
[  227.251672][ T7616]  ? qgroup_reserve_data+0x6b2/0x8d0
[  227.251685][ T7616]  btrfs_qgroup_reserve_data+0x68/0xb0
[  227.251694][ T7616]  btrfs_check_data_free_space+0x14b/0x240
[  227.251708][ T7616]  btrfs_buffered_write+0x509/0x1310
[  227.251736][ T7616]  ? __lock_acquire+0xad5/0xd80
[  227.251752][ T7616]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  227.251774][ T7616]  ? aa_file_perm+0x139/0xf60
[  227.251790][ T7616]  ? aa_file_perm+0x139/0xf60
[  227.251806][ T7616]  ? aa_file_perm+0x3f1/0xf60
[  227.251826][ T7616]  btrfs_do_write_iter+0x27b/0x7c0
[  227.251843][ T7616]  ? kstrtouint+0xfc/0x190
[  227.251858][ T7616]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  227.251880][ T7616]  do_iter_readv_writev+0x71f/0x9d0
[  227.251898][ T7616]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  227.251909][ T7616]  ? rcu_read_lock_any_held+0xbb/0x160
[  227.251936][ T7616]  vfs_writev+0x38d/0xbc0
[  227.251961][ T7616]  ? __lock_acquire+0xad5/0xd80
[  227.251971][ T7616]  ? __pfx_vfs_writev+0x10/0x10
[  227.251989][ T7616]  ? __fget_files+0x2a/0x420
[  227.252000][ T7616]  ? __fget_files+0x39d/0x420
[  227.252009][ T7616]  ? __fget_files+0x2a/0x420
[  227.252026][ T7616]  __se_sys_pwritev2+0x1b8/0x2d0
[  227.252041][ T7616]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  227.252059][ T7616]  ? __x64_sys_pwritev2+0x21/0xf0
[  227.252074][ T7616]  do_syscall_64+0xf3/0x230
[  227.252088][ T7616]  ? clear_bhb_loop+0x45/0xa0
[  227.252102][ T7616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.252113][ T7616] RIP: 0033:0x7fe207b7e719
[  227.252124][ T7616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.252133][ T7616] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  227.252147][ T7616] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  227.252156][ T7616] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  227.252162][ T7616] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  227.252169][ T7616] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  227.252175][ T7616] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  227.252193][ T7616]  </TASK>
[  227.252202][ T7616] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  227.491552][ T7616] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  227.495718][ T7616] BTRFS info (device loop0 state EA): forced readonly
[  227.499452][ T7616] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  227.504022][ T7616] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  227.513518][ T7616] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  227.520393][   T12] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  227.528300][   T12] BTRFS: error (device loop0 state EA) in cleanup_transaction:2022: errno=-12 Out of memory
[  227.538034][   T12] BTRFS error (device loop0 state EA): fail to start transaction for status update: -30
[  227.543821][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  227.550758][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  227.554794][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  227.915636][ T7634] loop0: detected capacity change from 0 to 32768
[  227.929055][ T7634] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.128 (7634)
[  227.970950][ T7634] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  227.974979][ T7634] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  227.987430][ T7634] BTRFS info (device loop0): using free-space-tree
[  228.089270][ T7634] FAULT_INJECTION: forcing a failure.
[  228.089270][ T7634] name failslab, interval 1, probability 0, space 0, times 0
[  228.094002][ T7634] CPU: 0 UID: 0 PID: 7634 Comm: syz.0.128 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  228.094019][ T7634] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  228.094027][ T7634] Call Trace:
[  228.094034][ T7634]  <TASK>
[  228.094039][ T7634]  dump_stack_lvl+0x241/0x360
[  228.094063][ T7634]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.094079][ T7634]  ? __pfx__printk+0x10/0x10
[  228.094096][ T7634]  ? __pfx___might_resched+0x10/0x10
[  228.094112][ T7634]  should_fail_ex+0x424/0x570
[  228.094134][ T7634]  should_failslab+0xac/0x100
[  228.094151][ T7634]  kmem_cache_alloc_noprof+0x78/0x390
[  228.094167][ T7634]  ? alloc_extent_state+0x25/0x310
[  228.094182][ T7634]  alloc_extent_state+0x25/0x310
[  228.094200][ T7634]  __set_extent_bit+0x1f4/0x1bc0
[  228.094226][ T7634]  set_extent_bit+0x3b/0x50
[  228.094241][ T7634]  btrfs_alloc_tree_block+0xa37/0x15d0
[  228.094267][ T7634]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  228.094280][ T7634]  ? __kernel_text_address+0xd/0x40
[  228.094300][ T7634]  ? __lock_acquire+0xad5/0xd80
[  228.094313][ T7634]  ? read_extent_buffer+0x10d/0x550
[  228.094331][ T7634]  btrfs_force_cow_block+0x530/0x2010
[  228.094361][ T7634]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  228.094375][ T7634]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  228.094392][ T7634]  ? down_write_nested+0x195/0x220
[  228.094406][ T7634]  ? __pfx_down_write_nested+0x10/0x10
[  228.094423][ T7634]  btrfs_cow_block+0x377/0x840
[  228.094445][ T7634]  btrfs_search_slot+0xc12/0x31c0
[  228.094478][ T7634]  ? __pfx_btrfs_search_slot+0x10/0x10
[  228.094489][ T7634]  ? btrfs_extent_root+0x2a3/0x3b0
[  228.094507][ T7634]  ? __pfx_btrfs_extent_root+0x10/0x10
[  228.094531][ T7634]  ? kasan_save_track+0x51/0x80
[  228.094544][ T7634]  ? kasan_save_track+0x3f/0x80
[  228.094557][ T7634]  lookup_inline_extent_backref+0x44a/0x1b60
[  228.094569][ T7634]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  228.094580][ T7634]  ? btrfs_check_data_free_space+0x14b/0x240
[  228.094593][ T7634]  ? btrfs_buffered_write+0x509/0x1310
[  228.094607][ T7634]  ? do_iter_readv_writev+0x71f/0x9d0
[  228.094622][ T7634]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.094647][ T7634]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  228.094673][ T7634]  ? rcu_is_watching+0x15/0xb0
[  228.094687][ T7634]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  228.094700][ T7634]  ? kmem_cache_alloc_noprof+0x237/0x390
[  228.094716][ T7634]  __btrfs_free_extent+0x438/0x3990
[  228.094744][ T7634]  ? __pfx___btrfs_free_extent+0x10/0x10
[  228.094754][ T7634]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  228.094767][ T7634]  ? do_raw_read_unlock+0x3c/0x80
[  228.094787][ T7634]  ? do_raw_spin_unlock+0x58/0x8b0
[  228.094808][ T7634]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  228.094824][ T7634]  ? __lock_acquire+0xad5/0xd80
[  228.094867][ T7634]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  228.094884][ T7634]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  228.094900][ T7634]  ? __kernel_text_address+0xd/0x40
[  228.094910][ T7634]  ? unwind_get_return_address+0x4d/0x90
[  228.094923][ T7634]  ? arch_stack_walk+0xff/0x150
[  228.094947][ T7634]  ? stack_trace_save+0x11a/0x1d0
[  228.094963][ T7634]  ? __lock_acquire+0xad5/0xd80
[  228.094976][ T7634]  ? stack_depot_save_flags+0x44/0x940
[  228.094997][ T7634]  btrfs_run_delayed_refs+0xe3/0x2f0
[  228.095016][ T7634]  btrfs_commit_transaction+0x4ae/0x3650
[  228.095030][ T7634]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.095044][ T7634]  ? btrfs_commit_transaction+0x167/0x3650
[  228.095062][ T7634]  ? __lock_acquire+0xad5/0xd80
[  228.095075][ T7634]  ? do_raw_spin_lock+0x151/0x370
[  228.095096][ T7634]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  228.095122][ T7634]  ? btrfs_record_root_in_trans+0x12d/0x190
[  228.095167][ T7634]  ? start_transaction+0x45f/0x16b0
[  228.095196][ T7634]  try_flush_qgroup+0x1fc/0x3a0
[  228.095209][ T7634]  ? kfree+0x198/0x430
[  228.095221][ T7634]  ? qgroup_reserve_data+0x6b2/0x8d0
[  228.095233][ T7634]  ? __pfx_try_flush_qgroup+0x10/0x10
[  228.095247][ T7634]  ? qgroup_reserve_data+0x6b2/0x8d0
[  228.095270][ T7634]  btrfs_qgroup_reserve_data+0x68/0xb0
[  228.095284][ T7634]  btrfs_check_data_free_space+0x14b/0x240
[  228.095307][ T7634]  btrfs_buffered_write+0x509/0x1310
[  228.095337][ T7634]  ? __lock_acquire+0xad5/0xd80
[  228.095352][ T7634]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  228.095374][ T7634]  ? aa_file_perm+0x139/0xf60
[  228.095391][ T7634]  ? aa_file_perm+0x139/0xf60
[  228.095407][ T7634]  ? aa_file_perm+0x3f1/0xf60
[  228.095427][ T7634]  btrfs_do_write_iter+0x27b/0x7c0
[  228.095444][ T7634]  ? kstrtouint+0xfc/0x190
[  228.095457][ T7634]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  228.095480][ T7634]  do_iter_readv_writev+0x71f/0x9d0
[  228.095498][ T7634]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  228.095509][ T7634]  ? rcu_read_lock_any_held+0xbb/0x160
[  228.095541][ T7634]  vfs_writev+0x38d/0xbc0
[  228.095566][ T7634]  ? __lock_acquire+0xad5/0xd80
[  228.095578][ T7634]  ? __pfx_vfs_writev+0x10/0x10
[  228.095606][ T7634]  ? __fget_files+0x2a/0x420
[  228.095618][ T7634]  ? __fget_files+0x39d/0x420
[  228.095627][ T7634]  ? __fget_files+0x2a/0x420
[  228.095644][ T7634]  __se_sys_pwritev2+0x1b8/0x2d0
[  228.095661][ T7634]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  228.095679][ T7634]  ? __x64_sys_pwritev2+0x21/0xf0
[  228.095695][ T7634]  do_syscall_64+0xf3/0x230
[  228.095710][ T7634]  ? clear_bhb_loop+0x45/0xa0
[  228.095724][ T7634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.095735][ T7634] RIP: 0033:0x7fe207b7e719
[  228.095747][ T7634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.095757][ T7634] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  228.095772][ T7634] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  228.095780][ T7634] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  228.095787][ T7634] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  228.095795][ T7634] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  228.095803][ T7634] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  228.095822][ T7634]  </TASK>
[  228.384145][ T1042] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  228.400466][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  228.770105][ T7652] loop0: detected capacity change from 0 to 32768
[  228.778833][ T7652] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.129 (7652)
[  228.801750][ T7652] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  228.809970][ T7652] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  228.813298][ T7652] BTRFS info (device loop0): using free-space-tree
[  228.892222][ T7652] FAULT_INJECTION: forcing a failure.
[  228.892222][ T7652] name failslab, interval 1, probability 0, space 0, times 0
[  228.908143][ T7652] CPU: 0 UID: 0 PID: 7652 Comm: syz.0.129 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  228.908166][ T7652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  228.908174][ T7652] Call Trace:
[  228.908180][ T7652]  <TASK>
[  228.908185][ T7652]  dump_stack_lvl+0x241/0x360
[  228.908207][ T7652]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.908224][ T7652]  ? __pfx__printk+0x10/0x10
[  228.908243][ T7652]  ? __pfx___might_resched+0x10/0x10
[  228.908260][ T7652]  should_fail_ex+0x424/0x570
[  228.908277][ T7652]  should_failslab+0xac/0x100
[  228.908296][ T7652]  kmem_cache_alloc_noprof+0x78/0x390
[  228.908310][ T7652]  ? alloc_extent_state+0x25/0x310
[  228.908326][ T7652]  alloc_extent_state+0x25/0x310
[  228.908340][ T7652]  __set_extent_bit+0x1f4/0x1bc0
[  228.908365][ T7652]  set_extent_bit+0x3b/0x50
[  228.908379][ T7652]  btrfs_alloc_tree_block+0xa37/0x15d0
[  228.908405][ T7652]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  228.908419][ T7652]  ? __kernel_text_address+0xd/0x40
[  228.908440][ T7652]  ? __lock_acquire+0xad5/0xd80
[  228.908453][ T7652]  ? read_extent_buffer+0x10d/0x550
[  228.908473][ T7652]  btrfs_force_cow_block+0x530/0x2010
[  228.908507][ T7652]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  228.908522][ T7652]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  228.908540][ T7652]  ? down_write_nested+0x195/0x220
[  228.908557][ T7652]  ? __pfx_down_write_nested+0x10/0x10
[  228.908574][ T7652]  btrfs_cow_block+0x377/0x840
[  228.908598][ T7652]  btrfs_search_slot+0xc12/0x31c0
[  228.908631][ T7652]  ? __pfx_btrfs_search_slot+0x10/0x10
[  228.908644][ T7652]  ? btrfs_extent_root+0x2a3/0x3b0
[  228.908664][ T7652]  ? __pfx_btrfs_extent_root+0x10/0x10
[  228.908687][ T7652]  ? kasan_save_track+0x51/0x80
[  228.908698][ T7652]  ? kasan_save_track+0x3f/0x80
[  228.908712][ T7652]  lookup_inline_extent_backref+0x44a/0x1b60
[  228.908724][ T7652]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  228.908736][ T7652]  ? btrfs_check_data_free_space+0x14b/0x240
[  228.908748][ T7652]  ? btrfs_buffered_write+0x509/0x1310
[  228.908763][ T7652]  ? do_iter_readv_writev+0x71f/0x9d0
[  228.908788][ T7652]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.908815][ T7652]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  228.908841][ T7652]  ? rcu_is_watching+0x15/0xb0
[  228.908857][ T7652]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  228.908871][ T7652]  ? kmem_cache_alloc_noprof+0x237/0x390
[  228.908887][ T7652]  __btrfs_free_extent+0x438/0x3990
[  228.908917][ T7652]  ? __pfx___btrfs_free_extent+0x10/0x10
[  228.908927][ T7652]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  228.908942][ T7652]  ? do_raw_read_unlock+0x3c/0x80
[  228.908962][ T7652]  ? do_raw_spin_unlock+0x58/0x8b0
[  228.908984][ T7652]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  228.908999][ T7652]  ? __lock_acquire+0xad5/0xd80
[  228.909043][ T7652]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  228.909063][ T7652]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  228.909081][ T7652]  ? __kernel_text_address+0xd/0x40
[  228.909091][ T7652]  ? unwind_get_return_address+0x4d/0x90
[  228.909107][ T7652]  ? arch_stack_walk+0xff/0x150
[  228.909132][ T7652]  ? stack_trace_save+0x11a/0x1d0
[  228.909152][ T7652]  ? __lock_acquire+0xad5/0xd80
[  228.909168][ T7652]  ? stack_depot_save_flags+0x44/0x940
[  228.909192][ T7652]  btrfs_run_delayed_refs+0xe3/0x2f0
[  228.909211][ T7652]  btrfs_commit_transaction+0x4ae/0x3650
[  228.909225][ T7652]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.909241][ T7652]  ? btrfs_commit_transaction+0x167/0x3650
[  228.909261][ T7652]  ? __lock_acquire+0xad5/0xd80
[  228.909277][ T7652]  ? do_raw_spin_lock+0x151/0x370
[  228.909299][ T7652]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  228.909327][ T7652]  ? btrfs_record_root_in_trans+0x12d/0x190
[  228.909342][ T7652]  ? start_transaction+0x45f/0x16b0
[  228.909368][ T7652]  try_flush_qgroup+0x1fc/0x3a0
[  228.909383][ T7652]  ? kfree+0x198/0x430
[  228.909398][ T7652]  ? qgroup_reserve_data+0x6b2/0x8d0
[  228.909412][ T7652]  ? __pfx_try_flush_qgroup+0x10/0x10
[  228.909428][ T7652]  ? qgroup_reserve_data+0x6b2/0x8d0
[  228.909452][ T7652]  btrfs_qgroup_reserve_data+0x68/0xb0
[  228.909466][ T7652]  btrfs_check_data_free_space+0x14b/0x240
[  228.909484][ T7652]  btrfs_buffered_write+0x509/0x1310
[  228.909517][ T7652]  ? __lock_acquire+0xad5/0xd80
[  228.909533][ T7652]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  228.909558][ T7652]  ? aa_file_perm+0x139/0xf60
[  228.909576][ T7652]  ? aa_file_perm+0x139/0xf60
[  228.909592][ T7652]  ? aa_file_perm+0x3f1/0xf60
[  228.909614][ T7652]  btrfs_do_write_iter+0x27b/0x7c0
[  228.909634][ T7652]  ? kstrtouint+0xfc/0x190
[  228.909652][ T7652]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  228.909676][ T7652]  do_iter_readv_writev+0x71f/0x9d0
[  228.909695][ T7652]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  228.909709][ T7652]  ? rcu_read_lock_any_held+0xbb/0x160
[  228.909737][ T7652]  vfs_writev+0x38d/0xbc0
[  228.909762][ T7652]  ? __lock_acquire+0xad5/0xd80
[  228.909783][ T7652]  ? __pfx_vfs_writev+0x10/0x10
[  228.909812][ T7652]  ? __fget_files+0x2a/0x420
[  228.909824][ T7652]  ? __fget_files+0x39d/0x420
[  228.909833][ T7652]  ? __fget_files+0x2a/0x420
[  228.909849][ T7652]  __se_sys_pwritev2+0x1b8/0x2d0
[  228.909865][ T7652]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  228.909881][ T7652]  ? __x64_sys_pwritev2+0x21/0xf0
[  228.909898][ T7652]  do_syscall_64+0xf3/0x230
[  228.909913][ T7652]  ? clear_bhb_loop+0x45/0xa0
[  228.909927][ T7652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.909937][ T7652] RIP: 0033:0x7fe207b7e719
[  228.909948][ T7652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.909957][ T7652] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  228.909972][ T7652] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  228.909980][ T7652] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  228.909987][ T7652] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  228.909993][ T7652] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  228.910000][ T7652] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  228.910019][ T7652]  </TASK>
[  229.162138][   T12] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  229.189712][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  229.582268][ T7670] loop0: detected capacity change from 0 to 32768
[  229.592834][ T7670] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.130 (7670)
[  229.614153][ T7670] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  229.636537][ T7670] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  229.639929][ T7670] BTRFS info (device loop0): using free-space-tree
[  229.727933][ T7670] FAULT_INJECTION: forcing a failure.
[  229.727933][ T7670] name failslab, interval 1, probability 0, space 0, times 0
[  229.732564][ T7670] CPU: 0 UID: 0 PID: 7670 Comm: syz.0.130 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  229.732578][ T7670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  229.732583][ T7670] Call Trace:
[  229.732588][ T7670]  <TASK>
[  229.732594][ T7670]  dump_stack_lvl+0x241/0x360
[  229.732615][ T7670]  ? __pfx_dump_stack_lvl+0x10/0x10
[  229.732631][ T7670]  ? __pfx__printk+0x10/0x10
[  229.732650][ T7670]  ? __pfx___might_resched+0x10/0x10
[  229.732667][ T7670]  should_fail_ex+0x424/0x570
[  229.732680][ T7670]  should_failslab+0xac/0x100
[  229.732691][ T7670]  kmem_cache_alloc_noprof+0x78/0x390
[  229.732701][ T7670]  ? alloc_extent_state+0x25/0x310
[  229.732710][ T7670]  alloc_extent_state+0x25/0x310
[  229.732718][ T7670]  __set_extent_bit+0x1f4/0x1bc0
[  229.732733][ T7670]  set_extent_bit+0x3b/0x50
[  229.732742][ T7670]  btrfs_alloc_tree_block+0xa37/0x15d0
[  229.732765][ T7670]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  229.732778][ T7670]  ? __kernel_text_address+0xd/0x40
[  229.732797][ T7670]  ? __lock_acquire+0xad5/0xd80
[  229.732809][ T7670]  ? read_extent_buffer+0x10d/0x550
[  229.732827][ T7670]  btrfs_force_cow_block+0x530/0x2010
[  229.732860][ T7670]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  229.732873][ T7670]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  229.732889][ T7670]  ? down_write_nested+0x195/0x220
[  229.732903][ T7670]  ? __pfx_down_write_nested+0x10/0x10
[  229.732920][ T7670]  btrfs_cow_block+0x377/0x840
[  229.732943][ T7670]  btrfs_search_slot+0xc12/0x31c0
[  229.732974][ T7670]  ? __pfx_btrfs_search_slot+0x10/0x10
[  229.732985][ T7670]  ? btrfs_extent_root+0x2a3/0x3b0
[  229.733002][ T7670]  ? __pfx_btrfs_extent_root+0x10/0x10
[  229.733024][ T7670]  ? kasan_save_track+0x51/0x80
[  229.733035][ T7670]  ? kasan_save_track+0x3f/0x80
[  229.733050][ T7670]  lookup_inline_extent_backref+0x44a/0x1b60
[  229.733061][ T7670]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  229.733073][ T7670]  ? btrfs_check_data_free_space+0x14b/0x240
[  229.733086][ T7670]  ? btrfs_buffered_write+0x509/0x1310
[  229.733101][ T7670]  ? do_iter_readv_writev+0x71f/0x9d0
[  229.733115][ T7670]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.733141][ T7670]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  229.733164][ T7670]  ? rcu_is_watching+0x15/0xb0
[  229.733179][ T7670]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  229.733192][ T7670]  ? kmem_cache_alloc_noprof+0x237/0x390
[  229.733208][ T7670]  __btrfs_free_extent+0x438/0x3990
[  229.733237][ T7670]  ? __pfx___btrfs_free_extent+0x10/0x10
[  229.733247][ T7670]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  229.733259][ T7670]  ? do_raw_read_unlock+0x3c/0x80
[  229.733279][ T7670]  ? do_raw_spin_unlock+0x58/0x8b0
[  229.733300][ T7670]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  229.733316][ T7670]  ? __lock_acquire+0xad5/0xd80
[  229.733359][ T7670]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  229.733377][ T7670]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  229.733392][ T7670]  ? __kernel_text_address+0xd/0x40
[  229.733402][ T7670]  ? unwind_get_return_address+0x4d/0x90
[  229.733417][ T7670]  ? arch_stack_walk+0xff/0x150
[  229.733440][ T7670]  ? stack_trace_save+0x11a/0x1d0
[  229.733458][ T7670]  ? __lock_acquire+0xad5/0xd80
[  229.733471][ T7670]  ? stack_depot_save_flags+0x44/0x940
[  229.733493][ T7670]  btrfs_run_delayed_refs+0xe3/0x2f0
[  229.733511][ T7670]  btrfs_commit_transaction+0x4ae/0x3650
[  229.733546][ T7670]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.733561][ T7670]  ? btrfs_commit_transaction+0x167/0x3650
[  229.733580][ T7670]  ? __lock_acquire+0xad5/0xd80
[  229.733598][ T7670]  ? do_raw_spin_lock+0x151/0x370
[  229.733617][ T7670]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  229.733643][ T7670]  ? btrfs_record_root_in_trans+0x12d/0x190
[  229.733660][ T7670]  ? start_transaction+0x45f/0x16b0
[  229.733685][ T7670]  try_flush_qgroup+0x1fc/0x3a0
[  229.733697][ T7670]  ? kfree+0x198/0x430
[  229.733710][ T7670]  ? qgroup_reserve_data+0x6b2/0x8d0
[  229.733722][ T7670]  ? __pfx_try_flush_qgroup+0x10/0x10
[  229.733735][ T7670]  ? qgroup_reserve_data+0x6b2/0x8d0
[  229.733762][ T7670]  btrfs_qgroup_reserve_data+0x68/0xb0
[  229.733777][ T7670]  btrfs_check_data_free_space+0x14b/0x240
[  229.733796][ T7670]  btrfs_buffered_write+0x509/0x1310
[  229.733819][ T7670]  ? __lock_acquire+0xad5/0xd80
[  229.733830][ T7670]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  229.733850][ T7670]  ? aa_file_perm+0x139/0xf60
[  229.733866][ T7670]  ? aa_file_perm+0x139/0xf60
[  229.733881][ T7670]  ? aa_file_perm+0x3f1/0xf60
[  229.733901][ T7670]  btrfs_do_write_iter+0x27b/0x7c0
[  229.733920][ T7670]  ? kstrtouint+0xfc/0x190
[  229.733934][ T7670]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  229.733958][ T7670]  do_iter_readv_writev+0x71f/0x9d0
[  229.733977][ T7670]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  229.733989][ T7670]  ? rcu_read_lock_any_held+0xbb/0x160
[  229.734014][ T7670]  vfs_writev+0x38d/0xbc0
[  229.734039][ T7670]  ? __lock_acquire+0xad5/0xd80
[  229.734050][ T7670]  ? __pfx_vfs_writev+0x10/0x10
[  229.734076][ T7670]  ? __fget_files+0x2a/0x420
[  229.734087][ T7670]  ? __fget_files+0x39d/0x420
[  229.734096][ T7670]  ? __fget_files+0x2a/0x420
[  229.734114][ T7670]  __se_sys_pwritev2+0x1b8/0x2d0
[  229.734130][ T7670]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  229.734147][ T7670]  ? __x64_sys_pwritev2+0x21/0xf0
[  229.734163][ T7670]  do_syscall_64+0xf3/0x230
[  229.734179][ T7670]  ? clear_bhb_loop+0x45/0xa0
[  229.734191][ T7670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.734201][ T7670] RIP: 0033:0x7fe207b7e719
[  229.734214][ T7670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.734223][ T7670] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  229.734237][ T7670] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  229.734245][ T7670] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  229.734252][ T7670] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  229.734259][ T7670] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  229.734266][ T7670] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  229.734284][ T7670]  </TASK>
[  230.002806][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  230.021157][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  230.422742][ T7688] loop0: detected capacity change from 0 to 32768
[  230.436362][ T7688] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.131 (7688)
[  230.470263][ T7688] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  230.474260][ T7688] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  230.488500][ T7688] BTRFS info (device loop0): using free-space-tree
[  230.581996][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  230.587035][ T7688] FAULT_INJECTION: forcing a failure.
[  230.587035][ T7688] name failslab, interval 1, probability 0, space 0, times 0
[  230.591907][ T7688] CPU: 0 UID: 0 PID: 7688 Comm: syz.0.131 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  230.591920][ T7688] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.591925][ T7688] Call Trace:
[  230.591929][ T7688]  <TASK>
[  230.591935][ T7688]  dump_stack_lvl+0x241/0x360
[  230.591956][ T7688]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.591971][ T7688]  ? __pfx__printk+0x10/0x10
[  230.591990][ T7688]  ? __pfx___might_resched+0x10/0x10
[  230.592007][ T7688]  should_fail_ex+0x424/0x570
[  230.592024][ T7688]  should_failslab+0xac/0x100
[  230.592041][ T7688]  kmem_cache_alloc_noprof+0x78/0x390
[  230.592056][ T7688]  ? add_to_free_space_tree+0xc9/0x320
[  230.592075][ T7688]  add_to_free_space_tree+0xc9/0x320
[  230.592095][ T7688]  __btrfs_free_extent+0x1cf7/0x3990
[  230.592121][ T7688]  ? __pfx___btrfs_free_extent+0x10/0x10
[  230.592131][ T7688]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  230.592145][ T7688]  ? do_raw_read_unlock+0x3c/0x80
[  230.592166][ T7688]  ? do_raw_spin_unlock+0x58/0x8b0
[  230.592185][ T7688]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  230.592201][ T7688]  ? __lock_acquire+0xad5/0xd80
[  230.592243][ T7688]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  230.592259][ T7688]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  230.592275][ T7688]  ? __kernel_text_address+0xd/0x40
[  230.592285][ T7688]  ? unwind_get_return_address+0x4d/0x90
[  230.592298][ T7688]  ? arch_stack_walk+0xff/0x150
[  230.592321][ T7688]  ? stack_trace_save+0x11a/0x1d0
[  230.592337][ T7688]  ? __lock_acquire+0xad5/0xd80
[  230.592351][ T7688]  ? stack_depot_save_flags+0x44/0x940
[  230.592373][ T7688]  btrfs_run_delayed_refs+0xe3/0x2f0
[  230.592391][ T7688]  btrfs_commit_transaction+0x4ae/0x3650
[  230.592401][ T7688]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.592410][ T7688]  ? btrfs_commit_transaction+0x167/0x3650
[  230.592425][ T7688]  ? __lock_acquire+0xad5/0xd80
[  230.592437][ T7688]  ? do_raw_spin_lock+0x151/0x370
[  230.592456][ T7688]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  230.592489][ T7688]  ? btrfs_record_root_in_trans+0x12d/0x190
[  230.592506][ T7688]  ? start_transaction+0x45f/0x16b0
[  230.592523][ T7688]  try_flush_qgroup+0x1fc/0x3a0
[  230.592531][ T7688]  ? kfree+0x198/0x430
[  230.592539][ T7688]  ? qgroup_reserve_data+0x6b2/0x8d0
[  230.592547][ T7688]  ? __pfx_try_flush_qgroup+0x10/0x10
[  230.592556][ T7688]  ? qgroup_reserve_data+0x6b2/0x8d0
[  230.592569][ T7688]  btrfs_qgroup_reserve_data+0x68/0xb0
[  230.592583][ T7688]  btrfs_check_data_free_space+0x14b/0x240
[  230.592599][ T7688]  btrfs_buffered_write+0x509/0x1310
[  230.592628][ T7688]  ? __lock_acquire+0xad5/0xd80
[  230.592645][ T7688]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  230.592666][ T7688]  ? aa_file_perm+0x139/0xf60
[  230.592683][ T7688]  ? aa_file_perm+0x139/0xf60
[  230.592698][ T7688]  ? aa_file_perm+0x3f1/0xf60
[  230.592717][ T7688]  btrfs_do_write_iter+0x27b/0x7c0
[  230.592733][ T7688]  ? kstrtouint+0xfc/0x190
[  230.592748][ T7688]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  230.592771][ T7688]  do_iter_readv_writev+0x71f/0x9d0
[  230.592789][ T7688]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  230.592801][ T7688]  ? rcu_read_lock_any_held+0xbb/0x160
[  230.592824][ T7688]  vfs_writev+0x38d/0xbc0
[  230.592849][ T7688]  ? __lock_acquire+0xad5/0xd80
[  230.592859][ T7688]  ? __pfx_vfs_writev+0x10/0x10
[  230.592886][ T7688]  ? __fget_files+0x2a/0x420
[  230.592898][ T7688]  ? __fget_files+0x39d/0x420
[  230.592908][ T7688]  ? __fget_files+0x2a/0x420
[  230.592925][ T7688]  __se_sys_pwritev2+0x1b8/0x2d0
[  230.592937][ T7688]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  230.592949][ T7688]  ? __x64_sys_pwritev2+0x21/0xf0
[  230.592959][ T7688]  do_syscall_64+0xf3/0x230
[  230.592970][ T7688]  ? clear_bhb_loop+0x45/0xa0
[  230.592979][ T7688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.592986][ T7688] RIP: 0033:0x7fe207b7e719
[  230.592994][ T7688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.593001][ T7688] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  230.593010][ T7688] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  230.593015][ T7688] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  230.593020][ T7688] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  230.593024][ T7688] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  230.593029][ T7688] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  230.593046][ T7688]  </TASK>
[  230.593055][ T7688] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  230.817149][ T7688] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  230.821364][ T7688] BTRFS info (device loop0 state EA): forced readonly
[  230.824230][ T7688] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  230.832617][ T7688] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  230.838490][ T7688] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  230.849774][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  230.854933][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  230.859536][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
2025/04/16 04:52:59 executed programs: 119
[  231.212109][ T7706] loop0: detected capacity change from 0 to 32768
[  231.226239][ T7706] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.132 (7706)
[  231.259369][ T7706] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  231.263438][ T7706] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  231.286227][ T7706] BTRFS info (device loop0): using free-space-tree
[  231.350914][ T7706] FAULT_INJECTION: forcing a failure.
[  231.350914][ T7706] name failslab, interval 1, probability 0, space 0, times 0
[  231.370494][ T1042] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  231.374266][ T7706] CPU: 0 UID: 0 PID: 7706 Comm: syz.0.132 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  231.374286][ T7706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.374294][ T7706] Call Trace:
[  231.374301][ T7706]  <TASK>
[  231.374307][ T7706]  dump_stack_lvl+0x241/0x360
[  231.374333][ T7706]  ? __pfx_dump_stack_lvl+0x10/0x10
[  231.374350][ T7706]  ? __pfx__printk+0x10/0x10
[  231.374370][ T7706]  ? __pfx___might_resched+0x10/0x10
[  231.374388][ T7706]  should_fail_ex+0x424/0x570
[  231.374406][ T7706]  should_failslab+0xac/0x100
[  231.374421][ T7706]  kmem_cache_alloc_noprof+0x78/0x390
[  231.374436][ T7706]  ? add_to_free_space_tree+0xc9/0x320
[  231.374454][ T7706]  add_to_free_space_tree+0xc9/0x320
[  231.374472][ T7706]  __btrfs_free_extent+0x1cf7/0x3990
[  231.374502][ T7706]  ? __pfx___btrfs_free_extent+0x10/0x10
[  231.374513][ T7706]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  231.374528][ T7706]  ? do_raw_read_unlock+0x3c/0x80
[  231.374550][ T7706]  ? do_raw_spin_unlock+0x58/0x8b0
[  231.374573][ T7706]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  231.374589][ T7706]  ? __lock_acquire+0xad5/0xd80
[  231.374635][ T7706]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  231.374654][ T7706]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  231.374671][ T7706]  ? __kernel_text_address+0xd/0x40
[  231.374692][ T7706]  ? unwind_get_return_address+0x4d/0x90
[  231.374710][ T7706]  ? arch_stack_walk+0xff/0x150
[  231.374736][ T7706]  ? stack_trace_save+0x11a/0x1d0
[  231.374756][ T7706]  ? __lock_acquire+0xad5/0xd80
[  231.374772][ T7706]  ? stack_depot_save_flags+0x44/0x940
[  231.374796][ T7706]  btrfs_run_delayed_refs+0xe3/0x2f0
[  231.374815][ T7706]  btrfs_commit_transaction+0x4ae/0x3650
[  231.374829][ T7706]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.374844][ T7706]  ? btrfs_commit_transaction+0x167/0x3650
[  231.374869][ T7706]  ? __lock_acquire+0xad5/0xd80
[  231.374883][ T7706]  ? do_raw_spin_lock+0x151/0x370
[  231.374904][ T7706]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  231.374928][ T7706]  ? btrfs_record_root_in_trans+0x12d/0x190
[  231.374945][ T7706]  ? start_transaction+0x45f/0x16b0
[  231.374974][ T7706]  try_flush_qgroup+0x1fc/0x3a0
[  231.374990][ T7706]  ? kfree+0x198/0x430
[  231.375004][ T7706]  ? qgroup_reserve_data+0x6b2/0x8d0
[  231.375019][ T7706]  ? __pfx_try_flush_qgroup+0x10/0x10
[  231.375033][ T7706]  ? qgroup_reserve_data+0x6b2/0x8d0
[  231.375055][ T7706]  btrfs_qgroup_reserve_data+0x68/0xb0
[  231.375070][ T7706]  btrfs_check_data_free_space+0x14b/0x240
[  231.375089][ T7706]  btrfs_buffered_write+0x509/0x1310
[  231.375143][ T7706]  ? __lock_acquire+0xad5/0xd80
[  231.375161][ T7706]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  231.375185][ T7706]  ? aa_file_perm+0x139/0xf60
[  231.375203][ T7706]  ? aa_file_perm+0x139/0xf60
[  231.375220][ T7706]  ? aa_file_perm+0x3f1/0xf60
[  231.375243][ T7706]  btrfs_do_write_iter+0x27b/0x7c0
[  231.375264][ T7706]  ? kstrtouint+0xfc/0x190
[  231.375280][ T7706]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  231.375305][ T7706]  do_iter_readv_writev+0x71f/0x9d0
[  231.375326][ T7706]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  231.375339][ T7706]  ? rcu_read_lock_any_held+0xbb/0x160
[  231.375367][ T7706]  vfs_writev+0x38d/0xbc0
[  231.375393][ T7706]  ? __lock_acquire+0xad5/0xd80
[  231.375405][ T7706]  ? __pfx_vfs_writev+0x10/0x10
[  231.375433][ T7706]  ? __fget_files+0x2a/0x420
[  231.375446][ T7706]  ? __fget_files+0x39d/0x420
[  231.375455][ T7706]  ? __fget_files+0x2a/0x420
[  231.375473][ T7706]  __se_sys_pwritev2+0x1b8/0x2d0
[  231.375490][ T7706]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  231.375510][ T7706]  ? __x64_sys_pwritev2+0x21/0xf0
[  231.375527][ T7706]  do_syscall_64+0xf3/0x230
[  231.375544][ T7706]  ? clear_bhb_loop+0x45/0xa0
[  231.375559][ T7706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.375572][ T7706] RIP: 0033:0x7fe207b7e719
[  231.375584][ T7706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.375595][ T7706] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  231.375609][ T7706] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  231.375618][ T7706] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  231.375626][ T7706] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  231.375634][ T7706] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  231.375642][ T7706] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  231.375662][ T7706]  </TASK>
[  231.375671][ T7706] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  231.619300][ T7706] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  231.625527][ T7706] BTRFS info (device loop0 state EA): forced readonly
[  231.633424][ T7706] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  231.638086][ T7706] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  231.643515][ T7706] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  231.656796][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  231.661992][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  231.669236][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  232.036836][ T7724] loop0: detected capacity change from 0 to 32768
[  232.044507][ T7724] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.133 (7724)
[  232.083239][ T7724] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  232.096454][ T7724] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  232.099881][ T7724] BTRFS info (device loop0): using free-space-tree
[  232.187394][ T7724] FAULT_INJECTION: forcing a failure.
[  232.187394][ T7724] name failslab, interval 1, probability 0, space 0, times 0
[  232.192389][ T7724] CPU: 0 UID: 0 PID: 7724 Comm: syz.0.133 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  232.192408][ T7724] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  232.192417][ T7724] Call Trace:
[  232.192423][ T7724]  <TASK>
[  232.192430][ T7724]  dump_stack_lvl+0x241/0x360
[  232.192460][ T7724]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.192476][ T7724]  ? __pfx__printk+0x10/0x10
[  232.192497][ T7724]  ? __pfx___might_resched+0x10/0x10
[  232.192515][ T7724]  should_fail_ex+0x424/0x570
[  232.192533][ T7724]  should_failslab+0xac/0x100
[  232.192551][ T7724]  kmem_cache_alloc_noprof+0x78/0x390
[  232.192567][ T7724]  ? add_to_free_space_tree+0xc9/0x320
[  232.192588][ T7724]  add_to_free_space_tree+0xc9/0x320
[  232.192610][ T7724]  __btrfs_free_extent+0x1cf7/0x3990
[  232.192638][ T7724]  ? __pfx___btrfs_free_extent+0x10/0x10
[  232.192649][ T7724]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  232.192663][ T7724]  ? do_raw_read_unlock+0x3c/0x80
[  232.192686][ T7724]  ? do_raw_spin_unlock+0x58/0x8b0
[  232.192708][ T7724]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  232.192724][ T7724]  ? __lock_acquire+0xad5/0xd80
[  232.192767][ T7724]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  232.192785][ T7724]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  232.192800][ T7724]  ? __kernel_text_address+0xd/0x40
[  232.192810][ T7724]  ? unwind_get_return_address+0x4d/0x90
[  232.192824][ T7724]  ? arch_stack_walk+0xff/0x150
[  232.192846][ T7724]  ? stack_trace_save+0x11a/0x1d0
[  232.192864][ T7724]  ? __lock_acquire+0xad5/0xd80
[  232.192878][ T7724]  ? stack_depot_save_flags+0x44/0x940
[  232.192900][ T7724]  btrfs_run_delayed_refs+0xe3/0x2f0
[  232.192921][ T7724]  btrfs_commit_transaction+0x4ae/0x3650
[  232.192934][ T7724]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.192948][ T7724]  ? btrfs_commit_transaction+0x167/0x3650
[  232.192964][ T7724]  ? __lock_acquire+0xad5/0xd80
[  232.192976][ T7724]  ? do_raw_spin_lock+0x151/0x370
[  232.192993][ T7724]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  232.193019][ T7724]  ? btrfs_record_root_in_trans+0x12d/0x190
[  232.193035][ T7724]  ? start_transaction+0x45f/0x16b0
[  232.193062][ T7724]  try_flush_qgroup+0x1fc/0x3a0
[  232.193074][ T7724]  ? kfree+0x198/0x430
[  232.193086][ T7724]  ? qgroup_reserve_data+0x6b2/0x8d0
[  232.193099][ T7724]  ? __pfx_try_flush_qgroup+0x10/0x10
[  232.193112][ T7724]  ? qgroup_reserve_data+0x6b2/0x8d0
[  232.193134][ T7724]  btrfs_qgroup_reserve_data+0x68/0xb0
[  232.193148][ T7724]  btrfs_check_data_free_space+0x14b/0x240
[  232.193166][ T7724]  btrfs_buffered_write+0x509/0x1310
[  232.193196][ T7724]  ? __lock_acquire+0xad5/0xd80
[  232.193212][ T7724]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  232.193233][ T7724]  ? aa_file_perm+0x139/0xf60
[  232.193249][ T7724]  ? aa_file_perm+0x139/0xf60
[  232.193263][ T7724]  ? aa_file_perm+0x3f1/0xf60
[  232.193282][ T7724]  btrfs_do_write_iter+0x27b/0x7c0
[  232.193299][ T7724]  ? kstrtouint+0xfc/0x190
[  232.193314][ T7724]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  232.193336][ T7724]  do_iter_readv_writev+0x71f/0x9d0
[  232.193355][ T7724]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  232.193366][ T7724]  ? rcu_read_lock_any_held+0xbb/0x160
[  232.193392][ T7724]  vfs_writev+0x38d/0xbc0
[  232.193416][ T7724]  ? __lock_acquire+0xad5/0xd80
[  232.193427][ T7724]  ? __pfx_vfs_writev+0x10/0x10
[  232.193463][ T7724]  ? __fget_files+0x2a/0x420
[  232.193474][ T7724]  ? __fget_files+0x39d/0x420
[  232.193483][ T7724]  ? __fget_files+0x2a/0x420
[  232.193500][ T7724]  __se_sys_pwritev2+0x1b8/0x2d0
[  232.193516][ T7724]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  232.193534][ T7724]  ? __x64_sys_pwritev2+0x21/0xf0
[  232.193550][ T7724]  do_syscall_64+0xf3/0x230
[  232.193564][ T7724]  ? clear_bhb_loop+0x45/0xa0
[  232.193578][ T7724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.193589][ T7724] RIP: 0033:0x7fe207b7e719
[  232.193601][ T7724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.193611][ T7724] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  232.193624][ T7724] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  232.193632][ T7724] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  232.193640][ T7724] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  232.193646][ T7724] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  232.193653][ T7724] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  232.193673][ T7724]  </TASK>
[  232.193682][ T7724] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  232.452141][ T1042] BTRFS info (device loop0 state A): qgroup scan completed (inconsistency flag cleared)
[  232.459091][ T7724] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  232.462876][ T7724] BTRFS info (device loop0 state EA): forced readonly
[  232.465462][ T7724] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  232.471819][ T7724] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  232.476826][ T7724] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  232.485512][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  232.492736][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  232.496645][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  232.880480][ T7742] loop0: detected capacity change from 0 to 32768
[  232.895725][ T7742] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.134 (7742)
[  232.930546][ T7742] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  232.936222][ T7742] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  232.939866][ T7742] BTRFS info (device loop0): using free-space-tree
[  233.037935][ T7742] FAULT_INJECTION: forcing a failure.
[  233.037935][ T7742] name failslab, interval 1, probability 0, space 0, times 0
[  233.044713][ T1035] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  233.058580][ T7742] CPU: 0 UID: 0 PID: 7742 Comm: syz.0.134 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  233.058600][ T7742] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  233.058608][ T7742] Call Trace:
[  233.058614][ T7742]  <TASK>
[  233.058619][ T7742]  dump_stack_lvl+0x241/0x360
[  233.058644][ T7742]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.058660][ T7742]  ? __pfx__printk+0x10/0x10
[  233.058678][ T7742]  ? __pfx___might_resched+0x10/0x10
[  233.058706][ T7742]  should_fail_ex+0x424/0x570
[  233.058724][ T7742]  should_failslab+0xac/0x100
[  233.058741][ T7742]  kmem_cache_alloc_noprof+0x78/0x390
[  233.058757][ T7742]  ? alloc_extent_state+0x25/0x310
[  233.058771][ T7742]  alloc_extent_state+0x25/0x310
[  233.058785][ T7742]  __set_extent_bit+0x1f4/0x1bc0
[  233.058809][ T7742]  set_extent_bit+0x3b/0x50
[  233.058824][ T7742]  btrfs_alloc_tree_block+0xa37/0x15d0
[  233.058847][ T7742]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  233.058861][ T7742]  ? __kernel_text_address+0xd/0x40
[  233.058881][ T7742]  ? __lock_acquire+0xad5/0xd80
[  233.058894][ T7742]  ? read_extent_buffer+0x10d/0x550
[  233.058910][ T7742]  btrfs_force_cow_block+0x530/0x2010
[  233.058931][ T7742]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  233.058943][ T7742]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  233.058962][ T7742]  ? down_write_nested+0x195/0x220
[  233.058977][ T7742]  ? __pfx_down_write_nested+0x10/0x10
[  233.058995][ T7742]  btrfs_cow_block+0x377/0x840
[  233.059017][ T7742]  btrfs_search_slot+0xc12/0x31c0
[  233.059051][ T7742]  ? __pfx_btrfs_search_slot+0x10/0x10
[  233.059063][ T7742]  ? btrfs_extent_root+0x2a3/0x3b0
[  233.059081][ T7742]  ? __pfx_btrfs_extent_root+0x10/0x10
[  233.059128][ T7742]  ? kasan_save_track+0x51/0x80
[  233.059141][ T7742]  ? kasan_save_track+0x3f/0x80
[  233.059154][ T7742]  lookup_inline_extent_backref+0x44a/0x1b60
[  233.059166][ T7742]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  233.059177][ T7742]  ? btrfs_check_data_free_space+0x14b/0x240
[  233.059190][ T7742]  ? btrfs_buffered_write+0x509/0x1310
[  233.059205][ T7742]  ? do_iter_readv_writev+0x71f/0x9d0
[  233.059219][ T7742]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.059241][ T7742]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  233.059265][ T7742]  ? rcu_is_watching+0x15/0xb0
[  233.059280][ T7742]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  233.059293][ T7742]  ? kmem_cache_alloc_noprof+0x237/0x390
[  233.059309][ T7742]  __btrfs_free_extent+0x438/0x3990
[  233.059334][ T7742]  ? __pfx___btrfs_free_extent+0x10/0x10
[  233.059345][ T7742]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  233.059358][ T7742]  ? do_raw_read_unlock+0x3c/0x80
[  233.059379][ T7742]  ? do_raw_spin_unlock+0x58/0x8b0
[  233.059400][ T7742]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  233.059416][ T7742]  ? __lock_acquire+0xad5/0xd80
[  233.059459][ T7742]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  233.059477][ T7742]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  233.059492][ T7742]  ? __kernel_text_address+0xd/0x40
[  233.059502][ T7742]  ? unwind_get_return_address+0x4d/0x90
[  233.059517][ T7742]  ? arch_stack_walk+0xff/0x150
[  233.059540][ T7742]  ? stack_trace_save+0x11a/0x1d0
[  233.059558][ T7742]  ? __lock_acquire+0xad5/0xd80
[  233.059573][ T7742]  ? stack_depot_save_flags+0x44/0x940
[  233.059594][ T7742]  btrfs_run_delayed_refs+0xe3/0x2f0
[  233.059614][ T7742]  btrfs_commit_transaction+0x4ae/0x3650
[  233.059629][ T7742]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.059644][ T7742]  ? btrfs_commit_transaction+0x167/0x3650
[  233.059662][ T7742]  ? __lock_acquire+0xad5/0xd80
[  233.059676][ T7742]  ? do_raw_spin_lock+0x151/0x370
[  233.059700][ T7742]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  233.059727][ T7742]  ? btrfs_record_root_in_trans+0x12d/0x190
[  233.059745][ T7742]  ? start_transaction+0x45f/0x16b0
[  233.059770][ T7742]  try_flush_qgroup+0x1fc/0x3a0
[  233.059783][ T7742]  ? kfree+0x198/0x430
[  233.059795][ T7742]  ? qgroup_reserve_data+0x6b2/0x8d0
[  233.059808][ T7742]  ? __pfx_try_flush_qgroup+0x10/0x10
[  233.059821][ T7742]  ? qgroup_reserve_data+0x6b2/0x8d0
[  233.059843][ T7742]  btrfs_qgroup_reserve_data+0x68/0xb0
[  233.059859][ T7742]  btrfs_check_data_free_space+0x14b/0x240
[  233.059877][ T7742]  btrfs_buffered_write+0x509/0x1310
[  233.059907][ T7742]  ? __lock_acquire+0xad5/0xd80
[  233.059923][ T7742]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  233.059945][ T7742]  ? aa_file_perm+0x139/0xf60
[  233.059962][ T7742]  ? aa_file_perm+0x139/0xf60
[  233.059977][ T7742]  ? aa_file_perm+0x3f1/0xf60
[  233.059997][ T7742]  btrfs_do_write_iter+0x27b/0x7c0
[  233.060016][ T7742]  ? kstrtouint+0xfc/0x190
[  233.060031][ T7742]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  233.060055][ T7742]  do_iter_readv_writev+0x71f/0x9d0
[  233.060073][ T7742]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  233.060085][ T7742]  ? rcu_read_lock_any_held+0xbb/0x160
[  233.060112][ T7742]  vfs_writev+0x38d/0xbc0
[  233.060136][ T7742]  ? __lock_acquire+0xad5/0xd80
[  233.060148][ T7742]  ? __pfx_vfs_writev+0x10/0x10
[  233.060177][ T7742]  ? __fget_files+0x2a/0x420
[  233.060189][ T7742]  ? __fget_files+0x39d/0x420
[  233.060199][ T7742]  ? __fget_files+0x2a/0x420
[  233.060216][ T7742]  __se_sys_pwritev2+0x1b8/0x2d0
[  233.060232][ T7742]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  233.060250][ T7742]  ? __x64_sys_pwritev2+0x21/0xf0
[  233.060266][ T7742]  do_syscall_64+0xf3/0x230
[  233.060281][ T7742]  ? clear_bhb_loop+0x45/0xa0
[  233.060295][ T7742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.060306][ T7742] RIP: 0033:0x7fe207b7e719
[  233.060319][ T7742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.060329][ T7742] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  233.060343][ T7742] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  233.060351][ T7742] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  233.060359][ T7742] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  233.060366][ T7742] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  233.060373][ T7742] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  233.060392][ T7742]  </TASK>
[  233.357251][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  233.725831][ T7760] loop0: detected capacity change from 0 to 32768
[  233.738168][ T7760] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.135 (7760)
[  233.760202][ T7760] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  233.775822][ T7760] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  233.788377][ T7760] BTRFS info (device loop0): using free-space-tree
[  233.863487][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  233.905169][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  234.295480][ T7778] loop0: detected capacity change from 0 to 32768
[  234.308625][ T7778] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.136 (7778)
[  234.338525][ T7778] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  234.342388][ T7778] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  234.358318][ T7778] BTRFS info (device loop0): using free-space-tree
[  234.431191][ T7778] FAULT_INJECTION: forcing a failure.
[  234.431191][ T7778] name failslab, interval 1, probability 0, space 0, times 0
[  234.457120][ T7778] CPU: 0 UID: 0 PID: 7778 Comm: syz.0.136 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  234.457141][ T7778] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  234.457149][ T7778] Call Trace:
[  234.457154][ T7778]  <TASK>
[  234.457160][ T7778]  dump_stack_lvl+0x241/0x360
[  234.457184][ T7778]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.457199][ T7778]  ? __pfx__printk+0x10/0x10
[  234.457217][ T7778]  ? __pfx___might_resched+0x10/0x10
[  234.457232][ T7778]  should_fail_ex+0x424/0x570
[  234.457248][ T7778]  should_failslab+0xac/0x100
[  234.457264][ T7778]  kmem_cache_alloc_noprof+0x78/0x390
[  234.457279][ T7778]  ? start_transaction+0x49b/0x16b0
[  234.457295][ T7778]  start_transaction+0x49b/0x16b0
[  234.457319][ T7778]  btrfs_commit_current_transaction+0x26/0xd0
[  234.457334][ T7778]  try_flush_qgroup+0x1fc/0x3a0
[  234.457347][ T7778]  ? kfree+0x198/0x430
[  234.457359][ T7778]  ? qgroup_reserve_data+0x6b2/0x8d0
[  234.457371][ T7778]  ? __pfx_try_flush_qgroup+0x10/0x10
[  234.457384][ T7778]  ? qgroup_reserve_data+0x6b2/0x8d0
[  234.457404][ T7778]  btrfs_qgroup_reserve_data+0x68/0xb0
[  234.457418][ T7778]  btrfs_check_data_free_space+0x14b/0x240
[  234.457435][ T7778]  btrfs_buffered_write+0x509/0x1310
[  234.457463][ T7778]  ? __lock_acquire+0xad5/0xd80
[  234.457480][ T7778]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  234.457500][ T7778]  ? aa_file_perm+0x139/0xf60
[  234.457517][ T7778]  ? aa_file_perm+0x139/0xf60
[  234.457532][ T7778]  ? aa_file_perm+0x3f1/0xf60
[  234.457550][ T7778]  btrfs_do_write_iter+0x27b/0x7c0
[  234.457568][ T7778]  ? kstrtouint+0xfc/0x190
[  234.457582][ T7778]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  234.457604][ T7778]  do_iter_readv_writev+0x71f/0x9d0
[  234.457623][ T7778]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  234.457634][ T7778]  ? rcu_read_lock_any_held+0xbb/0x160
[  234.457659][ T7778]  vfs_writev+0x38d/0xbc0
[  234.457690][ T7778]  ? __lock_acquire+0xad5/0xd80
[  234.457702][ T7778]  ? __pfx_vfs_writev+0x10/0x10
[  234.457728][ T7778]  ? __fget_files+0x2a/0x420
[  234.457739][ T7778]  ? __fget_files+0x39d/0x420
[  234.457748][ T7778]  ? __fget_files+0x2a/0x420
[  234.457763][ T7778]  __se_sys_pwritev2+0x1b8/0x2d0
[  234.457779][ T7778]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  234.457797][ T7778]  ? __x64_sys_pwritev2+0x21/0xf0
[  234.457812][ T7778]  do_syscall_64+0xf3/0x230
[  234.457827][ T7778]  ? clear_bhb_loop+0x45/0xa0
[  234.457840][ T7778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.457852][ T7778] RIP: 0033:0x7fe207b7e719
[  234.457863][ T7778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.457874][ T7778] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  234.457887][ T7778] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  234.457896][ T7778] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  234.457903][ T7778] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  234.457910][ T7778] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  234.457916][ T7778] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  234.457935][ T7778]  </TASK>
[  234.606256][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  234.609983][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  235.021464][ T7796] loop0: detected capacity change from 0 to 32768
[  235.033073][ T7796] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.137 (7796)
[  235.075887][ T7796] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  235.086760][ T7796] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  235.090277][ T7796] BTRFS info (device loop0): using free-space-tree
[  235.177994][ T7796] FAULT_INJECTION: forcing a failure.
[  235.177994][ T7796] name failslab, interval 1, probability 0, space 0, times 0
[  235.182768][ T7796] CPU: 0 UID: 0 PID: 7796 Comm: syz.0.137 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  235.182788][ T7796] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  235.182797][ T7796] Call Trace:
[  235.182803][ T7796]  <TASK>
[  235.182808][ T7796]  dump_stack_lvl+0x241/0x360
[  235.182832][ T7796]  ? __pfx_dump_stack_lvl+0x10/0x10
[  235.182849][ T7796]  ? __pfx__printk+0x10/0x10
[  235.182871][ T7796]  ? __pfx___might_resched+0x10/0x10
[  235.182890][ T7796]  should_fail_ex+0x424/0x570
[  235.182909][ T7796]  should_failslab+0xac/0x100
[  235.182928][ T7796]  kmem_cache_alloc_noprof+0x78/0x390
[  235.182943][ T7796]  ? __btrfs_free_extent+0x359/0x3990
[  235.182960][ T7796]  __btrfs_free_extent+0x359/0x3990
[  235.182988][ T7796]  ? __pfx___btrfs_free_extent+0x10/0x10
[  235.182999][ T7796]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  235.183014][ T7796]  ? do_raw_read_unlock+0x3c/0x80
[  235.183036][ T7796]  ? do_raw_spin_unlock+0x58/0x8b0
[  235.183059][ T7796]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  235.183134][ T7796]  ? __mutex_trylock_common+0x184/0x2e0
[  235.183155][ T7796]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  235.183173][ T7796]  ? __pfx___mutex_trylock_common+0x10/0x10
[  235.183198][ T7796]  ? btrfs_start_dirty_block_groups+0xcf4/0x1120
[  235.183215][ T7796]  ? __mutex_unlock_slowpath+0x229/0x800
[  235.183234][ T7796]  ? do_raw_spin_unlock+0x58/0x8b0
[  235.183252][ T7796]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  235.183275][ T7796]  btrfs_run_delayed_refs+0xe3/0x2f0
[  235.183297][ T7796]  btrfs_start_dirty_block_groups+0xcfe/0x1120
[  235.183327][ T7796]  ? __pfx_btrfs_start_dirty_block_groups+0x10/0x10
[  235.183341][ T7796]  ? __kasan_slab_alloc+0x66/0x80
[  235.183354][ T7796]  ? btrfs_trans_release_metadata+0x233/0x330
[  235.183374][ T7796]  btrfs_commit_transaction+0x69d/0x3650
[  235.183388][ T7796]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.183404][ T7796]  ? btrfs_commit_transaction+0x167/0x3650
[  235.183424][ T7796]  ? __lock_acquire+0xad5/0xd80
[  235.183443][ T7796]  ? do_raw_spin_lock+0x151/0x370
[  235.183464][ T7796]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  235.183493][ T7796]  ? btrfs_record_root_in_trans+0x12d/0x190
[  235.183510][ T7796]  ? start_transaction+0x45f/0x16b0
[  235.183540][ T7796]  try_flush_qgroup+0x1fc/0x3a0
[  235.183554][ T7796]  ? kfree+0x198/0x430
[  235.183567][ T7796]  ? qgroup_reserve_data+0x6b2/0x8d0
[  235.183581][ T7796]  ? __pfx_try_flush_qgroup+0x10/0x10
[  235.183596][ T7796]  ? qgroup_reserve_data+0x6b2/0x8d0
[  235.183619][ T7796]  btrfs_qgroup_reserve_data+0x68/0xb0
[  235.183635][ T7796]  btrfs_check_data_free_space+0x14b/0x240
[  235.183655][ T7796]  btrfs_buffered_write+0x509/0x1310
[  235.183686][ T7796]  ? __lock_acquire+0xad5/0xd80
[  235.183703][ T7796]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  235.183727][ T7796]  ? aa_file_perm+0x139/0xf60
[  235.183745][ T7796]  ? aa_file_perm+0x139/0xf60
[  235.183762][ T7796]  ? aa_file_perm+0x3f1/0xf60
[  235.183783][ T7796]  btrfs_do_write_iter+0x27b/0x7c0
[  235.183802][ T7796]  ? kstrtouint+0xfc/0x190
[  235.183818][ T7796]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  235.183842][ T7796]  do_iter_readv_writev+0x71f/0x9d0
[  235.183862][ T7796]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  235.183875][ T7796]  ? rcu_read_lock_any_held+0xbb/0x160
[  235.183904][ T7796]  vfs_writev+0x38d/0xbc0
[  235.183930][ T7796]  ? __lock_acquire+0xad5/0xd80
[  235.183943][ T7796]  ? __pfx_vfs_writev+0x10/0x10
[  235.183972][ T7796]  ? __fget_files+0x2a/0x420
[  235.183985][ T7796]  ? __fget_files+0x39d/0x420
[  235.183994][ T7796]  ? __fget_files+0x2a/0x420
[  235.184012][ T7796]  __se_sys_pwritev2+0x1b8/0x2d0
[  235.184029][ T7796]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  235.184049][ T7796]  ? __x64_sys_pwritev2+0x21/0xf0
[  235.184066][ T7796]  do_syscall_64+0xf3/0x230
[  235.184082][ T7796]  ? clear_bhb_loop+0x45/0xa0
[  235.184096][ T7796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.184107][ T7796] RIP: 0033:0x7fe207b7e719
[  235.184119][ T7796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.184129][ T7796] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  235.184144][ T7796] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  235.184153][ T7796] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  235.184160][ T7796] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  235.184168][ T7796] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  235.184176][ T7796] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  235.184196][ T7796]  </TASK>
[  235.184210][ T7796] BTRFS error (device loop0): failed to run delayed ref for logical 5349376 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  235.420952][ T7796] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  235.424267][ T7796] BTRFS: error (device loop0 state A) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  235.433955][ T7796] BTRFS info (device loop0 state EA): forced readonly
[  235.439643][ T1035] BTRFS warning (device loop0 state EA): Skipping commit of aborted transaction.
[  235.443456][ T1035] BTRFS: error (device loop0 state EA) in cleanup_transaction:2022: errno=-12 Out of memory
[  235.448825][ T1035] BTRFS error (device loop0 state EA): fail to start transaction for status update: -30
[  235.460325][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  235.465104][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  235.469881][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  235.843851][ T7814] loop0: detected capacity change from 0 to 32768
[  235.853986][ T7814] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.138 (7814)
[  235.893873][ T7814] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  235.907300][ T7814] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  235.911738][ T7814] BTRFS info (device loop0): using free-space-tree
[  236.007648][ T7814] FAULT_INJECTION: forcing a failure.
[  236.007648][ T7814] name failslab, interval 1, probability 0, space 0, times 0
[  236.012439][ T7814] CPU: 0 UID: 0 PID: 7814 Comm: syz.0.138 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  236.012457][ T7814] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  236.012465][ T7814] Call Trace:
[  236.012471][ T7814]  <TASK>
[  236.012477][ T7814]  dump_stack_lvl+0x241/0x360
[  236.012500][ T7814]  ? __pfx_dump_stack_lvl+0x10/0x10
[  236.012515][ T7814]  ? __pfx__printk+0x10/0x10
[  236.012535][ T7814]  ? __pfx___might_resched+0x10/0x10
[  236.012552][ T7814]  should_fail_ex+0x424/0x570
[  236.012569][ T7814]  should_failslab+0xac/0x100
[  236.012586][ T7814]  kmem_cache_alloc_noprof+0x78/0x390
[  236.012601][ T7814]  ? alloc_extent_state+0x25/0x310
[  236.012615][ T7814]  alloc_extent_state+0x25/0x310
[  236.012628][ T7814]  __set_extent_bit+0x1f4/0x1bc0
[  236.012652][ T7814]  set_extent_bit+0x3b/0x50
[  236.012666][ T7814]  btrfs_alloc_tree_block+0xa37/0x15d0
[  236.012692][ T7814]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  236.012705][ T7814]  ? __kernel_text_address+0xd/0x40
[  236.012726][ T7814]  ? __lock_acquire+0xad5/0xd80
[  236.012738][ T7814]  ? read_extent_buffer+0x10d/0x550
[  236.012756][ T7814]  btrfs_force_cow_block+0x530/0x2010
[  236.012786][ T7814]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  236.012800][ T7814]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  236.012816][ T7814]  ? down_write_nested+0x195/0x220
[  236.012832][ T7814]  ? __pfx_down_write_nested+0x10/0x10
[  236.012850][ T7814]  btrfs_cow_block+0x377/0x840
[  236.012872][ T7814]  btrfs_search_slot+0xc12/0x31c0
[  236.012904][ T7814]  ? __pfx_btrfs_search_slot+0x10/0x10
[  236.012916][ T7814]  ? btrfs_extent_root+0x2a3/0x3b0
[  236.012933][ T7814]  ? __pfx_btrfs_extent_root+0x10/0x10
[  236.012953][ T7814]  ? kasan_save_track+0x51/0x80
[  236.012964][ T7814]  ? kasan_save_track+0x3f/0x80
[  236.012978][ T7814]  lookup_inline_extent_backref+0x44a/0x1b60
[  236.012989][ T7814]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  236.013001][ T7814]  ? btrfs_check_data_free_space+0x14b/0x240
[  236.013013][ T7814]  ? btrfs_buffered_write+0x509/0x1310
[  236.013027][ T7814]  ? do_iter_readv_writev+0x71f/0x9d0
[  236.013042][ T7814]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.013070][ T7814]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  236.013094][ T7814]  ? rcu_is_watching+0x15/0xb0
[  236.013109][ T7814]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  236.013122][ T7814]  ? kmem_cache_alloc_noprof+0x237/0x390
[  236.013139][ T7814]  __btrfs_free_extent+0x438/0x3990
[  236.013168][ T7814]  ? __pfx___btrfs_free_extent+0x10/0x10
[  236.013178][ T7814]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  236.013191][ T7814]  ? do_raw_read_unlock+0x3c/0x80
[  236.013211][ T7814]  ? do_raw_spin_unlock+0x58/0x8b0
[  236.013236][ T7814]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  236.013251][ T7814]  ? __lock_acquire+0xad5/0xd80
[  236.013295][ T7814]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  236.013313][ T7814]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  236.013328][ T7814]  ? __kernel_text_address+0xd/0x40
[  236.013338][ T7814]  ? unwind_get_return_address+0x4d/0x90
[  236.013352][ T7814]  ? arch_stack_walk+0xff/0x150
[  236.013376][ T7814]  ? stack_trace_save+0x11a/0x1d0
[  236.013393][ T7814]  ? __lock_acquire+0xad5/0xd80
[  236.013406][ T7814]  ? stack_depot_save_flags+0x44/0x940
[  236.013435][ T7814]  btrfs_run_delayed_refs+0xe3/0x2f0
[  236.013455][ T7814]  btrfs_commit_transaction+0x4ae/0x3650
[  236.013468][ T7814]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.013482][ T7814]  ? btrfs_commit_transaction+0x167/0x3650
[  236.013501][ T7814]  ? __lock_acquire+0xad5/0xd80
[  236.013514][ T7814]  ? do_raw_spin_lock+0x151/0x370
[  236.013533][ T7814]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  236.013559][ T7814]  ? btrfs_record_root_in_trans+0x12d/0x190
[  236.013576][ T7814]  ? start_transaction+0x45f/0x16b0
[  236.013607][ T7814]  try_flush_qgroup+0x1fc/0x3a0
[  236.013621][ T7814]  ? kfree+0x198/0x430
[  236.013633][ T7814]  ? qgroup_reserve_data+0x6b2/0x8d0
[  236.013646][ T7814]  ? __pfx_try_flush_qgroup+0x10/0x10
[  236.013660][ T7814]  ? qgroup_reserve_data+0x6b2/0x8d0
[  236.013683][ T7814]  btrfs_qgroup_reserve_data+0x68/0xb0
[  236.013698][ T7814]  btrfs_check_data_free_space+0x14b/0x240
[  236.013716][ T7814]  btrfs_buffered_write+0x509/0x1310
[  236.013744][ T7814]  ? __lock_acquire+0xad5/0xd80
[  236.013760][ T7814]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  236.013783][ T7814]  ? aa_file_perm+0x139/0xf60
[  236.013800][ T7814]  ? aa_file_perm+0x139/0xf60
[  236.013813][ T7814]  ? aa_file_perm+0x3f1/0xf60
[  236.013825][ T7814]  btrfs_do_write_iter+0x27b/0x7c0
[  236.013838][ T7814]  ? kstrtouint+0xfc/0x190
[  236.013847][ T7814]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  236.013867][ T7814]  do_iter_readv_writev+0x71f/0x9d0
[  236.013886][ T7814]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  236.013898][ T7814]  ? rcu_read_lock_any_held+0xbb/0x160
[  236.013923][ T7814]  vfs_writev+0x38d/0xbc0
[  236.013949][ T7814]  ? __lock_acquire+0xad5/0xd80
[  236.013961][ T7814]  ? __pfx_vfs_writev+0x10/0x10
[  236.013989][ T7814]  ? __fget_files+0x2a/0x420
[  236.014001][ T7814]  ? __fget_files+0x39d/0x420
[  236.014011][ T7814]  ? __fget_files+0x2a/0x420
[  236.014028][ T7814]  __se_sys_pwritev2+0x1b8/0x2d0
[  236.014044][ T7814]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  236.014062][ T7814]  ? __x64_sys_pwritev2+0x21/0xf0
[  236.014079][ T7814]  do_syscall_64+0xf3/0x230
[  236.014094][ T7814]  ? clear_bhb_loop+0x45/0xa0
[  236.014108][ T7814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.014119][ T7814] RIP: 0033:0x7fe207b7e719
[  236.014131][ T7814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.014140][ T7814] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  236.014155][ T7814] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  236.014163][ T7814] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  236.014171][ T7814] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  236.014178][ T7814] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  236.014183][ T7814] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  236.014201][ T7814]  </TASK>
[  236.272297][   T42] unregister_netdevice: waiting for batadv0 to become free. Usage count = 3
[  236.325050][ T1035] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  236.344462][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
2025/04/16 04:53:04 executed programs: 126
[  236.725130][ T7832] loop0: detected capacity change from 0 to 32768
[  236.732036][ T7832] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.139 (7832)
[  236.752456][ T7832] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  236.767302][ T7832] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  236.770959][ T7832] BTRFS info (device loop0): using free-space-tree
[  236.872282][ T7832] FAULT_INJECTION: forcing a failure.
[  236.872282][ T7832] name failslab, interval 1, probability 0, space 0, times 0
[  236.891577][ T7832] CPU: 0 UID: 0 PID: 7832 Comm: syz.0.139 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  236.891597][ T7832] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  236.891605][ T7832] Call Trace:
[  236.891611][ T7832]  <TASK>
[  236.891616][ T7832]  dump_stack_lvl+0x241/0x360
[  236.891638][ T7832]  ? __pfx_dump_stack_lvl+0x10/0x10
[  236.891654][ T7832]  ? __pfx__printk+0x10/0x10
[  236.891673][ T7832]  ? __pfx___might_resched+0x10/0x10
[  236.891689][ T7832]  should_fail_ex+0x424/0x570
[  236.891712][ T7832]  should_failslab+0xac/0x100
[  236.891730][ T7832]  kmem_cache_alloc_noprof+0x78/0x390
[  236.891745][ T7832]  ? alloc_extent_state+0x25/0x310
[  236.891761][ T7832]  alloc_extent_state+0x25/0x310
[  236.891773][ T7832]  __set_extent_bit+0x1f4/0x1bc0
[  236.891797][ T7832]  set_extent_bit+0x3b/0x50
[  236.891811][ T7832]  btrfs_alloc_tree_block+0xa37/0x15d0
[  236.891834][ T7832]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  236.891847][ T7832]  ? __kernel_text_address+0xd/0x40
[  236.891868][ T7832]  ? __lock_acquire+0xad5/0xd80
[  236.891881][ T7832]  ? read_extent_buffer+0x10d/0x550
[  236.891899][ T7832]  btrfs_force_cow_block+0x530/0x2010
[  236.891929][ T7832]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  236.891941][ T7832]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  236.891958][ T7832]  ? down_write_nested+0x195/0x220
[  236.891972][ T7832]  ? __pfx_down_write_nested+0x10/0x10
[  236.891990][ T7832]  btrfs_cow_block+0x377/0x840
[  236.892010][ T7832]  btrfs_search_slot+0xc12/0x31c0
[  236.892044][ T7832]  ? __pfx_btrfs_search_slot+0x10/0x10
[  236.892055][ T7832]  ? btrfs_extent_root+0x2a3/0x3b0
[  236.892071][ T7832]  ? __pfx_btrfs_extent_root+0x10/0x10
[  236.892091][ T7832]  ? kasan_save_track+0x51/0x80
[  236.892102][ T7832]  ? kasan_save_track+0x3f/0x80
[  236.892116][ T7832]  lookup_inline_extent_backref+0x44a/0x1b60
[  236.892128][ T7832]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  236.892139][ T7832]  ? btrfs_check_data_free_space+0x14b/0x240
[  236.892151][ T7832]  ? btrfs_buffered_write+0x509/0x1310
[  236.892162][ T7832]  ? do_iter_readv_writev+0x71f/0x9d0
[  236.892171][ T7832]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.892192][ T7832]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  236.892215][ T7832]  ? rcu_is_watching+0x15/0xb0
[  236.892230][ T7832]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  236.892242][ T7832]  ? kmem_cache_alloc_noprof+0x237/0x390
[  236.892258][ T7832]  __btrfs_free_extent+0x438/0x3990
[  236.892288][ T7832]  ? __pfx___btrfs_free_extent+0x10/0x10
[  236.892298][ T7832]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  236.892310][ T7832]  ? do_raw_read_unlock+0x3c/0x80
[  236.892331][ T7832]  ? do_raw_spin_unlock+0x58/0x8b0
[  236.892351][ T7832]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  236.892366][ T7832]  ? __lock_acquire+0xad5/0xd80
[  236.892412][ T7832]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  236.892429][ T7832]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  236.892444][ T7832]  ? __kernel_text_address+0xd/0x40
[  236.892454][ T7832]  ? unwind_get_return_address+0x4d/0x90
[  236.892468][ T7832]  ? arch_stack_walk+0xff/0x150
[  236.892490][ T7832]  ? stack_trace_save+0x11a/0x1d0
[  236.892506][ T7832]  ? __lock_acquire+0xad5/0xd80
[  236.892520][ T7832]  ? stack_depot_save_flags+0x44/0x940
[  236.892540][ T7832]  btrfs_run_delayed_refs+0xe3/0x2f0
[  236.892559][ T7832]  btrfs_commit_transaction+0x4ae/0x3650
[  236.892573][ T7832]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.892588][ T7832]  ? btrfs_commit_transaction+0x167/0x3650
[  236.892606][ T7832]  ? __lock_acquire+0xad5/0xd80
[  236.892619][ T7832]  ? do_raw_spin_lock+0x151/0x370
[  236.892637][ T7832]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  236.892664][ T7832]  ? btrfs_record_root_in_trans+0x12d/0x190
[  236.892680][ T7832]  ? start_transaction+0x45f/0x16b0
[  236.892714][ T7832]  try_flush_qgroup+0x1fc/0x3a0
[  236.892727][ T7832]  ? kfree+0x198/0x430
[  236.892740][ T7832]  ? qgroup_reserve_data+0x6b2/0x8d0
[  236.892753][ T7832]  ? __pfx_try_flush_qgroup+0x10/0x10
[  236.892767][ T7832]  ? qgroup_reserve_data+0x6b2/0x8d0
[  236.892789][ T7832]  btrfs_qgroup_reserve_data+0x68/0xb0
[  236.892804][ T7832]  btrfs_check_data_free_space+0x14b/0x240
[  236.892822][ T7832]  btrfs_buffered_write+0x509/0x1310
[  236.892850][ T7832]  ? __lock_acquire+0xad5/0xd80
[  236.892866][ T7832]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  236.892889][ T7832]  ? aa_file_perm+0x139/0xf60
[  236.892906][ T7832]  ? aa_file_perm+0x139/0xf60
[  236.892921][ T7832]  ? aa_file_perm+0x3f1/0xf60
[  236.892940][ T7832]  btrfs_do_write_iter+0x27b/0x7c0
[  236.892958][ T7832]  ? kstrtouint+0xfc/0x190
[  236.892972][ T7832]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  236.892995][ T7832]  do_iter_readv_writev+0x71f/0x9d0
[  236.893014][ T7832]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  236.893026][ T7832]  ? rcu_read_lock_any_held+0xbb/0x160
[  236.893051][ T7832]  vfs_writev+0x38d/0xbc0
[  236.893067][ T7832]  ? __lock_acquire+0xad5/0xd80
[  236.893074][ T7832]  ? __pfx_vfs_writev+0x10/0x10
[  236.893091][ T7832]  ? __fget_files+0x2a/0x420
[  236.893099][ T7832]  ? __fget_files+0x39d/0x420
[  236.893104][ T7832]  ? __fget_files+0x2a/0x420
[  236.893115][ T7832]  __se_sys_pwritev2+0x1b8/0x2d0
[  236.893133][ T7832]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  236.893150][ T7832]  ? __x64_sys_pwritev2+0x21/0xf0
[  236.893166][ T7832]  do_syscall_64+0xf3/0x230
[  236.893181][ T7832]  ? clear_bhb_loop+0x45/0xa0
[  236.893195][ T7832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.893205][ T7832] RIP: 0033:0x7fe207b7e719
[  236.893217][ T7832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.893227][ T7832] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  236.893240][ T7832] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  236.893248][ T7832] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  236.893256][ T7832] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  236.893263][ T7832] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  236.893269][ T7832] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  236.893288][ T7832]  </TASK>
[  236.895025][ T1035] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  237.195173][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  237.546997][ T7850] loop0: detected capacity change from 0 to 32768
[  237.554142][ T7850] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.140 (7850)
[  237.581100][ T7850] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  237.585176][ T7850] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  237.598575][ T7850] BTRFS info (device loop0): using free-space-tree
[  237.668508][ T1035] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  237.674320][ T7850] FAULT_INJECTION: forcing a failure.
[  237.674320][ T7850] name failslab, interval 1, probability 0, space 0, times 0
[  237.697696][ T7850] CPU: 0 UID: 0 PID: 7850 Comm: syz.0.140 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  237.697717][ T7850] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  237.697725][ T7850] Call Trace:
[  237.697731][ T7850]  <TASK>
[  237.697736][ T7850]  dump_stack_lvl+0x241/0x360
[  237.697760][ T7850]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.697775][ T7850]  ? __pfx__printk+0x10/0x10
[  237.697794][ T7850]  ? __pfx___might_resched+0x10/0x10
[  237.697811][ T7850]  should_fail_ex+0x424/0x570
[  237.697828][ T7850]  should_failslab+0xac/0x100
[  237.697845][ T7850]  kmem_cache_alloc_noprof+0x78/0x390
[  237.697858][ T7850]  ? start_transaction+0x49b/0x16b0
[  237.697874][ T7850]  start_transaction+0x49b/0x16b0
[  237.697897][ T7850]  btrfs_commit_current_transaction+0x26/0xd0
[  237.697912][ T7850]  try_flush_qgroup+0x1fc/0x3a0
[  237.697925][ T7850]  ? kfree+0x198/0x430
[  237.697937][ T7850]  ? qgroup_reserve_data+0x6b2/0x8d0
[  237.697950][ T7850]  ? __pfx_try_flush_qgroup+0x10/0x10
[  237.697961][ T7850]  ? qgroup_reserve_data+0x6b2/0x8d0
[  237.697979][ T7850]  btrfs_qgroup_reserve_data+0x68/0xb0
[  237.697993][ T7850]  btrfs_check_data_free_space+0x14b/0x240
[  237.698011][ T7850]  btrfs_buffered_write+0x509/0x1310
[  237.698038][ T7850]  ? __lock_acquire+0xad5/0xd80
[  237.698053][ T7850]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  237.698075][ T7850]  ? aa_file_perm+0x139/0xf60
[  237.698091][ T7850]  ? aa_file_perm+0x139/0xf60
[  237.698106][ T7850]  ? aa_file_perm+0x3f1/0xf60
[  237.698124][ T7850]  btrfs_do_write_iter+0x27b/0x7c0
[  237.698142][ T7850]  ? kstrtouint+0xfc/0x190
[  237.698156][ T7850]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  237.698177][ T7850]  do_iter_readv_writev+0x71f/0x9d0
[  237.698196][ T7850]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  237.698208][ T7850]  ? rcu_read_lock_any_held+0xbb/0x160
[  237.698234][ T7850]  vfs_writev+0x38d/0xbc0
[  237.698256][ T7850]  ? __lock_acquire+0xad5/0xd80
[  237.698268][ T7850]  ? __pfx_vfs_writev+0x10/0x10
[  237.698294][ T7850]  ? __fget_files+0x2a/0x420
[  237.698306][ T7850]  ? __fget_files+0x39d/0x420
[  237.698316][ T7850]  ? __fget_files+0x2a/0x420
[  237.698332][ T7850]  __se_sys_pwritev2+0x1b8/0x2d0
[  237.698349][ T7850]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  237.698366][ T7850]  ? __x64_sys_pwritev2+0x21/0xf0
[  237.698397][ T7850]  do_syscall_64+0xf3/0x230
[  237.698413][ T7850]  ? clear_bhb_loop+0x45/0xa0
[  237.698428][ T7850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.698440][ T7850] RIP: 0033:0x7fe207b7e719
[  237.698452][ T7850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.698462][ T7850] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  237.698475][ T7850] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  237.698483][ T7850] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  237.698490][ T7850] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  237.698497][ T7850] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  237.698503][ T7850] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  237.698521][ T7850]  </TASK>
[  237.911981][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  238.281473][ T7868] loop0: detected capacity change from 0 to 32768
[  238.294365][ T7868] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.141 (7868)
[  238.322854][ T7868] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  238.336740][ T7868] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  238.340272][ T7868] BTRFS info (device loop0): using free-space-tree
[  238.404892][ T7868] FAULT_INJECTION: forcing a failure.
[  238.404892][ T7868] name failslab, interval 1, probability 0, space 0, times 0
[  238.418453][ T7868] CPU: 0 UID: 0 PID: 7868 Comm: syz.0.141 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  238.418473][ T7868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  238.418480][ T7868] Call Trace:
[  238.418486][ T7868]  <TASK>
[  238.418491][ T7868]  dump_stack_lvl+0x241/0x360
[  238.418515][ T7868]  ? __pfx_dump_stack_lvl+0x10/0x10
[  238.418531][ T7868]  ? __pfx__printk+0x10/0x10
[  238.418549][ T7868]  ? __pfx___might_resched+0x10/0x10
[  238.418565][ T7868]  should_fail_ex+0x424/0x570
[  238.418581][ T7868]  should_failslab+0xac/0x100
[  238.418597][ T7868]  kmem_cache_alloc_noprof+0x78/0x390
[  238.418611][ T7868]  ? __btrfs_run_delayed_items+0x92/0x4b0
[  238.418625][ T7868]  __btrfs_run_delayed_items+0x92/0x4b0
[  238.418636][ T7868]  ? schedule+0x90/0x360
[  238.418649][ T7868]  ? schedule+0x90/0x360
[  238.418658][ T7868]  ? schedule+0x16d/0x360
[  238.418670][ T7868]  btrfs_commit_transaction+0xa1b/0x3650
[  238.418683][ T7868]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.418697][ T7868]  ? btrfs_commit_transaction+0x167/0x3650
[  238.418715][ T7868]  ? do_raw_spin_lock+0x151/0x370
[  238.418733][ T7868]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  238.418755][ T7868]  ? __pfx_autoremove_wake_function+0x10/0x10
[  238.418773][ T7868]  ? start_transaction+0x45f/0x16b0
[  238.418797][ T7868]  try_flush_qgroup+0x1fc/0x3a0
[  238.418810][ T7868]  ? kfree+0x198/0x430
[  238.418822][ T7868]  ? qgroup_reserve_data+0x6b2/0x8d0
[  238.418835][ T7868]  ? __pfx_try_flush_qgroup+0x10/0x10
[  238.418848][ T7868]  ? qgroup_reserve_data+0x6b2/0x8d0
[  238.418866][ T7868]  btrfs_qgroup_reserve_data+0x68/0xb0
[  238.418879][ T7868]  btrfs_check_data_free_space+0x14b/0x240
[  238.418897][ T7868]  btrfs_buffered_write+0x509/0x1310
[  238.418923][ T7868]  ? __lock_acquire+0xad5/0xd80
[  238.418938][ T7868]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  238.418959][ T7868]  ? aa_file_perm+0x139/0xf60
[  238.418976][ T7868]  ? aa_file_perm+0x139/0xf60
[  238.418990][ T7868]  ? aa_file_perm+0x3f1/0xf60
[  238.419009][ T7868]  btrfs_do_write_iter+0x27b/0x7c0
[  238.419027][ T7868]  ? kstrtouint+0xfc/0x190
[  238.419041][ T7868]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  238.419089][ T7868]  do_iter_readv_writev+0x71f/0x9d0
[  238.419109][ T7868]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  238.419120][ T7868]  ? rcu_read_lock_any_held+0xbb/0x160
[  238.419146][ T7868]  vfs_writev+0x38d/0xbc0
[  238.419169][ T7868]  ? __lock_acquire+0xad5/0xd80
[  238.419180][ T7868]  ? __pfx_vfs_writev+0x10/0x10
[  238.419206][ T7868]  ? __fget_files+0x2a/0x420
[  238.419217][ T7868]  ? __fget_files+0x39d/0x420
[  238.419225][ T7868]  ? __fget_files+0x2a/0x420
[  238.419242][ T7868]  __se_sys_pwritev2+0x1b8/0x2d0
[  238.419258][ T7868]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  238.419276][ T7868]  ? __x64_sys_pwritev2+0x21/0xf0
[  238.419292][ T7868]  do_syscall_64+0xf3/0x230
[  238.419307][ T7868]  ? clear_bhb_loop+0x45/0xa0
[  238.419321][ T7868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.419331][ T7868] RIP: 0033:0x7fe207b7e719
[  238.419342][ T7868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.419352][ T7868] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  238.419366][ T7868] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  238.419374][ T7868] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  238.419380][ T7868] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  238.419386][ T7868] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  238.419393][ T7868] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  238.419412][ T7868]  </TASK>
[  238.419430][ T7868] BTRFS warning (device loop0): Skipping commit of aborted transaction.
[  238.628295][ T7868] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  238.631795][ T7868] BTRFS: error (device loop0 state A) in cleanup_transaction:2022: errno=-12 Out of memory
[  238.635892][ T7868] BTRFS info (device loop0 state EA): forced readonly
[  238.643888][   T12] BTRFS error (device loop0 state EA): fail to start transaction for status update: -30
[  238.654235][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  238.661510][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  238.665604][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  239.034924][ T7886] loop0: detected capacity change from 0 to 32768
[  239.043792][ T7886] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.142 (7886)
[  239.062756][ T7886] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  239.072881][ T7886] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  239.084663][ T7886] BTRFS info (device loop0): using free-space-tree
[  239.191968][ T7886] FAULT_INJECTION: forcing a failure.
[  239.191968][ T7886] name failslab, interval 1, probability 0, space 0, times 0
[  239.210985][ T3079] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  239.215105][ T7886] CPU: 0 UID: 0 PID: 7886 Comm: syz.0.142 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  239.215124][ T7886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  239.215132][ T7886] Call Trace:
[  239.215138][ T7886]  <TASK>
[  239.215144][ T7886]  dump_stack_lvl+0x241/0x360
[  239.215167][ T7886]  ? __pfx_dump_stack_lvl+0x10/0x10
[  239.215181][ T7886]  ? __pfx__printk+0x10/0x10
[  239.215199][ T7886]  ? __pfx___might_resched+0x10/0x10
[  239.215215][ T7886]  should_fail_ex+0x424/0x570
[  239.215232][ T7886]  should_failslab+0xac/0x100
[  239.215249][ T7886]  kmem_cache_alloc_noprof+0x78/0x390
[  239.215264][ T7886]  ? add_to_free_space_tree+0xc9/0x320
[  239.215284][ T7886]  add_to_free_space_tree+0xc9/0x320
[  239.215304][ T7886]  __btrfs_free_extent+0x1cf7/0x3990
[  239.215332][ T7886]  ? __pfx___btrfs_free_extent+0x10/0x10
[  239.215342][ T7886]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  239.215355][ T7886]  ? do_raw_read_unlock+0x3c/0x80
[  239.215376][ T7886]  ? do_raw_spin_unlock+0x58/0x8b0
[  239.215397][ T7886]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  239.215413][ T7886]  ? __lock_acquire+0xad5/0xd80
[  239.215456][ T7886]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  239.215481][ T7886]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  239.215498][ T7886]  ? __kernel_text_address+0xd/0x40
[  239.215508][ T7886]  ? unwind_get_return_address+0x4d/0x90
[  239.215523][ T7886]  ? arch_stack_walk+0xff/0x150
[  239.215546][ T7886]  ? stack_trace_save+0x11a/0x1d0
[  239.215563][ T7886]  ? __lock_acquire+0xad5/0xd80
[  239.215577][ T7886]  ? stack_depot_save_flags+0x44/0x940
[  239.215599][ T7886]  btrfs_run_delayed_refs+0xe3/0x2f0
[  239.215620][ T7886]  btrfs_commit_transaction+0x4ae/0x3650
[  239.215634][ T7886]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.215649][ T7886]  ? btrfs_commit_transaction+0x167/0x3650
[  239.215667][ T7886]  ? __lock_acquire+0xad5/0xd80
[  239.215680][ T7886]  ? do_raw_spin_lock+0x151/0x370
[  239.215699][ T7886]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  239.215730][ T7886]  ? btrfs_record_root_in_trans+0x12d/0x190
[  239.215746][ T7886]  ? start_transaction+0x45f/0x16b0
[  239.215784][ T7886]  try_flush_qgroup+0x1fc/0x3a0
[  239.215797][ T7886]  ? kfree+0x198/0x430
[  239.215809][ T7886]  ? qgroup_reserve_data+0x6b2/0x8d0
[  239.215821][ T7886]  ? __pfx_try_flush_qgroup+0x10/0x10
[  239.215835][ T7886]  ? qgroup_reserve_data+0x6b2/0x8d0
[  239.215860][ T7886]  btrfs_qgroup_reserve_data+0x68/0xb0
[  239.215875][ T7886]  btrfs_check_data_free_space+0x14b/0x240
[  239.215893][ T7886]  btrfs_buffered_write+0x509/0x1310
[  239.215922][ T7886]  ? __lock_acquire+0xad5/0xd80
[  239.215937][ T7886]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  239.215959][ T7886]  ? aa_file_perm+0x139/0xf60
[  239.215998][ T7886]  ? aa_file_perm+0x139/0xf60
[  239.216015][ T7886]  ? aa_file_perm+0x3f1/0xf60
[  239.216036][ T7886]  btrfs_do_write_iter+0x27b/0x7c0
[  239.216054][ T7886]  ? kstrtouint+0xfc/0x190
[  239.216068][ T7886]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  239.216092][ T7886]  do_iter_readv_writev+0x71f/0x9d0
[  239.216112][ T7886]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  239.216124][ T7886]  ? rcu_read_lock_any_held+0xbb/0x160
[  239.216151][ T7886]  vfs_writev+0x38d/0xbc0
[  239.216175][ T7886]  ? __lock_acquire+0xad5/0xd80
[  239.216186][ T7886]  ? __pfx_vfs_writev+0x10/0x10
[  239.216213][ T7886]  ? __fget_files+0x2a/0x420
[  239.216225][ T7886]  ? __fget_files+0x39d/0x420
[  239.216234][ T7886]  ? __fget_files+0x2a/0x420
[  239.216251][ T7886]  __se_sys_pwritev2+0x1b8/0x2d0
[  239.216268][ T7886]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  239.216285][ T7886]  ? __x64_sys_pwritev2+0x21/0xf0
[  239.216301][ T7886]  do_syscall_64+0xf3/0x230
[  239.216316][ T7886]  ? clear_bhb_loop+0x45/0xa0
[  239.216330][ T7886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.216341][ T7886] RIP: 0033:0x7fe207b7e719
[  239.216354][ T7886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.216364][ T7886] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  239.216378][ T7886] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  239.216385][ T7886] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  239.216393][ T7886] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  239.216400][ T7886] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  239.216407][ T7886] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  239.216427][ T7886]  </TASK>
[  239.421997][ T7886] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  239.425421][ T7886] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  239.432639][ T7886] BTRFS info (device loop0 state EA): forced readonly
[  239.435431][ T7886] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  239.441633][ T7886] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  239.448115][ T7886] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  239.460839][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  239.466892][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  239.470946][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  239.849494][ T7904] loop0: detected capacity change from 0 to 32768
[  239.859395][ T7904] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.143 (7904)
[  239.881084][ T7904] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  239.885053][ T7904] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  239.898782][ T7904] BTRFS info (device loop0): using free-space-tree
[  239.995025][ T7904] FAULT_INJECTION: forcing a failure.
[  239.995025][ T7904] name failslab, interval 1, probability 0, space 0, times 0
[  240.008473][ T7904] CPU: 0 UID: 0 PID: 7904 Comm: syz.0.143 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  240.008496][ T7904] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  240.008503][ T7904] Call Trace:
[  240.008509][ T7904]  <TASK>
[  240.008514][ T7904]  dump_stack_lvl+0x241/0x360
[  240.008539][ T7904]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.008555][ T7904]  ? __pfx__printk+0x10/0x10
[  240.008575][ T7904]  ? __pfx___might_resched+0x10/0x10
[  240.008592][ T7904]  should_fail_ex+0x424/0x570
[  240.008610][ T7904]  should_failslab+0xac/0x100
[  240.008628][ T7904]  kmem_cache_alloc_noprof+0x78/0x390
[  240.008642][ T7904]  ? alloc_extent_state+0x25/0x310
[  240.008659][ T7904]  alloc_extent_state+0x25/0x310
[  240.008673][ T7904]  __set_extent_bit+0x1f4/0x1bc0
[  240.008699][ T7904]  set_extent_bit+0x3b/0x50
[  240.008714][ T7904]  btrfs_alloc_tree_block+0xa37/0x15d0
[  240.008737][ T7904]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  240.008752][ T7904]  ? __kernel_text_address+0xd/0x40
[  240.008772][ T7904]  ? __lock_acquire+0xad5/0xd80
[  240.008786][ T7904]  ? read_extent_buffer+0x10d/0x550
[  240.008804][ T7904]  btrfs_force_cow_block+0x530/0x2010
[  240.008837][ T7904]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  240.008851][ T7904]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  240.008869][ T7904]  ? down_write_nested+0x195/0x220
[  240.008885][ T7904]  ? __pfx_down_write_nested+0x10/0x10
[  240.008903][ T7904]  btrfs_cow_block+0x377/0x840
[  240.008925][ T7904]  btrfs_search_slot+0xc12/0x31c0
[  240.008957][ T7904]  ? __pfx_btrfs_search_slot+0x10/0x10
[  240.008970][ T7904]  ? btrfs_extent_root+0x2a3/0x3b0
[  240.008988][ T7904]  ? __pfx_btrfs_extent_root+0x10/0x10
[  240.009010][ T7904]  ? kasan_save_track+0x51/0x80
[  240.009021][ T7904]  ? kasan_save_track+0x3f/0x80
[  240.009035][ T7904]  lookup_inline_extent_backref+0x44a/0x1b60
[  240.009047][ T7904]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  240.009059][ T7904]  ? btrfs_check_data_free_space+0x14b/0x240
[  240.009073][ T7904]  ? btrfs_buffered_write+0x509/0x1310
[  240.009089][ T7904]  ? do_iter_readv_writev+0x71f/0x9d0
[  240.009104][ T7904]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.009131][ T7904]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  240.009157][ T7904]  ? rcu_is_watching+0x15/0xb0
[  240.009172][ T7904]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  240.009186][ T7904]  ? kmem_cache_alloc_noprof+0x237/0x390
[  240.009203][ T7904]  __btrfs_free_extent+0x438/0x3990
[  240.009232][ T7904]  ? __pfx___btrfs_free_extent+0x10/0x10
[  240.009243][ T7904]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  240.009256][ T7904]  ? do_raw_read_unlock+0x3c/0x80
[  240.009277][ T7904]  ? do_raw_spin_unlock+0x58/0x8b0
[  240.009298][ T7904]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  240.009314][ T7904]  ? __lock_acquire+0xad5/0xd80
[  240.009359][ T7904]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  240.009378][ T7904]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  240.009394][ T7904]  ? __kernel_text_address+0xd/0x40
[  240.009404][ T7904]  ? unwind_get_return_address+0x4d/0x90
[  240.009420][ T7904]  ? arch_stack_walk+0xff/0x150
[  240.009449][ T7904]  ? stack_trace_save+0x11a/0x1d0
[  240.009467][ T7904]  ? __lock_acquire+0xad5/0xd80
[  240.009481][ T7904]  ? stack_depot_save_flags+0x44/0x940
[  240.009503][ T7904]  btrfs_run_delayed_refs+0xe3/0x2f0
[  240.009522][ T7904]  btrfs_commit_transaction+0x4ae/0x3650
[  240.009537][ T7904]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.009552][ T7904]  ? btrfs_commit_transaction+0x167/0x3650
[  240.009570][ T7904]  ? __lock_acquire+0xad5/0xd80
[  240.009584][ T7904]  ? do_raw_spin_lock+0x151/0x370
[  240.009603][ T7904]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  240.009632][ T7904]  ? btrfs_record_root_in_trans+0x12d/0x190
[  240.009648][ T7904]  ? start_transaction+0x45f/0x16b0
[  240.009677][ T7904]  try_flush_qgroup+0x1fc/0x3a0
[  240.009690][ T7904]  ? kfree+0x198/0x430
[  240.009702][ T7904]  ? qgroup_reserve_data+0x6b2/0x8d0
[  240.009716][ T7904]  ? __pfx_try_flush_qgroup+0x10/0x10
[  240.009731][ T7904]  ? qgroup_reserve_data+0x6b2/0x8d0
[  240.009752][ T7904]  btrfs_qgroup_reserve_data+0x68/0xb0
[  240.009768][ T7904]  btrfs_check_data_free_space+0x14b/0x240
[  240.009786][ T7904]  btrfs_buffered_write+0x509/0x1310
[  240.009814][ T7904]  ? __lock_acquire+0xad5/0xd80
[  240.009829][ T7904]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  240.009851][ T7904]  ? aa_file_perm+0x139/0xf60
[  240.009866][ T7904]  ? aa_file_perm+0x139/0xf60
[  240.009881][ T7904]  ? aa_file_perm+0x3f1/0xf60
[  240.009902][ T7904]  btrfs_do_write_iter+0x27b/0x7c0
[  240.009921][ T7904]  ? kstrtouint+0xfc/0x190
[  240.009936][ T7904]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  240.009961][ T7904]  do_iter_readv_writev+0x71f/0x9d0
[  240.009979][ T7904]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  240.009992][ T7904]  ? rcu_read_lock_any_held+0xbb/0x160
[  240.010019][ T7904]  vfs_writev+0x38d/0xbc0
[  240.010046][ T7904]  ? __lock_acquire+0xad5/0xd80
[  240.010058][ T7904]  ? __pfx_vfs_writev+0x10/0x10
[  240.010087][ T7904]  ? __fget_files+0x2a/0x420
[  240.010100][ T7904]  ? __fget_files+0x39d/0x420
[  240.010108][ T7904]  ? __fget_files+0x2a/0x420
[  240.010126][ T7904]  __se_sys_pwritev2+0x1b8/0x2d0
[  240.010143][ T7904]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  240.010162][ T7904]  ? __x64_sys_pwritev2+0x21/0xf0
[  240.010179][ T7904]  do_syscall_64+0xf3/0x230
[  240.010194][ T7904]  ? clear_bhb_loop+0x45/0xa0
[  240.010208][ T7904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.010219][ T7904] RIP: 0033:0x7fe207b7e719
[  240.010230][ T7904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.010239][ T7904] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  240.010252][ T7904] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  240.010261][ T7904] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  240.010269][ T7904] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  240.010276][ T7904] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  240.010282][ T7904] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  240.010303][ T7904]  </TASK>
[  240.265206][   T12] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  240.291397][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  240.707304][ T7922] loop0: detected capacity change from 0 to 32768
[  240.715184][ T7922] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.144 (7922)
[  240.732873][ T7922] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  240.746471][ T7922] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  240.750059][ T7922] BTRFS info (device loop0): using free-space-tree
[  240.843537][ T7922] FAULT_INJECTION: forcing a failure.
[  240.843537][ T7922] name failslab, interval 1, probability 0, space 0, times 0
[  240.859682][   T56] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  240.863484][ T7922] CPU: 0 UID: 0 PID: 7922 Comm: syz.0.144 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  240.863503][ T7922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  240.863511][ T7922] Call Trace:
[  240.863517][ T7922]  <TASK>
[  240.863523][ T7922]  dump_stack_lvl+0x241/0x360
[  240.863547][ T7922]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.863562][ T7922]  ? __pfx__printk+0x10/0x10
[  240.863576][ T7922]  ? __pfx___might_resched+0x10/0x10
[  240.863587][ T7922]  should_fail_ex+0x424/0x570
[  240.863598][ T7922]  should_failslab+0xac/0x100
[  240.863615][ T7922]  kmem_cache_alloc_noprof+0x78/0x390
[  240.863636][ T7922]  ? alloc_extent_state+0x25/0x310
[  240.863650][ T7922]  alloc_extent_state+0x25/0x310
[  240.863663][ T7922]  __set_extent_bit+0x1f4/0x1bc0
[  240.863685][ T7922]  set_extent_bit+0x3b/0x50
[  240.863699][ T7922]  btrfs_alloc_tree_block+0xa37/0x15d0
[  240.863722][ T7922]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  240.863734][ T7922]  ? __kernel_text_address+0xd/0x40
[  240.863753][ T7922]  ? __lock_acquire+0xad5/0xd80
[  240.863767][ T7922]  ? read_extent_buffer+0x10d/0x550
[  240.863784][ T7922]  btrfs_force_cow_block+0x530/0x2010
[  240.863816][ T7922]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  240.863830][ T7922]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  240.863848][ T7922]  ? down_write_nested+0x195/0x220
[  240.863865][ T7922]  ? __pfx_down_write_nested+0x10/0x10
[  240.863883][ T7922]  btrfs_cow_block+0x377/0x840
[  240.863905][ T7922]  btrfs_search_slot+0xc12/0x31c0
[  240.863938][ T7922]  ? __pfx_btrfs_search_slot+0x10/0x10
[  240.863951][ T7922]  ? btrfs_extent_root+0x2a3/0x3b0
[  240.863970][ T7922]  ? __pfx_btrfs_extent_root+0x10/0x10
[  240.863991][ T7922]  ? kasan_save_track+0x51/0x80
[  240.864004][ T7922]  ? kasan_save_track+0x3f/0x80
[  240.864020][ T7922]  lookup_inline_extent_backref+0x44a/0x1b60
[  240.864032][ T7922]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  240.864045][ T7922]  ? btrfs_check_data_free_space+0x14b/0x240
[  240.864059][ T7922]  ? btrfs_buffered_write+0x509/0x1310
[  240.864075][ T7922]  ? do_iter_readv_writev+0x71f/0x9d0
[  240.864091][ T7922]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.864119][ T7922]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  240.864144][ T7922]  ? rcu_is_watching+0x15/0xb0
[  240.864161][ T7922]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  240.864176][ T7922]  ? kmem_cache_alloc_noprof+0x237/0x390
[  240.864193][ T7922]  __btrfs_free_extent+0x438/0x3990
[  240.864222][ T7922]  ? __pfx___btrfs_free_extent+0x10/0x10
[  240.864234][ T7922]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  240.864247][ T7922]  ? do_raw_read_unlock+0x3c/0x80
[  240.864269][ T7922]  ? do_raw_spin_unlock+0x58/0x8b0
[  240.864291][ T7922]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  240.864309][ T7922]  ? __lock_acquire+0xad5/0xd80
[  240.864353][ T7922]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  240.864372][ T7922]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  240.864401][ T7922]  ? __kernel_text_address+0xd/0x40
[  240.864413][ T7922]  ? unwind_get_return_address+0x4d/0x90
[  240.864430][ T7922]  ? arch_stack_walk+0xff/0x150
[  240.864455][ T7922]  ? stack_trace_save+0x11a/0x1d0
[  240.864473][ T7922]  ? __lock_acquire+0xad5/0xd80
[  240.864488][ T7922]  ? stack_depot_save_flags+0x44/0x940
[  240.864510][ T7922]  btrfs_run_delayed_refs+0xe3/0x2f0
[  240.864530][ T7922]  btrfs_commit_transaction+0x4ae/0x3650
[  240.864544][ T7922]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.864559][ T7922]  ? btrfs_commit_transaction+0x167/0x3650
[  240.864577][ T7922]  ? __lock_acquire+0xad5/0xd80
[  240.864591][ T7922]  ? do_raw_spin_lock+0x151/0x370
[  240.864609][ T7922]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  240.864636][ T7922]  ? btrfs_record_root_in_trans+0x12d/0x190
[  240.864652][ T7922]  ? start_transaction+0x45f/0x16b0
[  240.864678][ T7922]  try_flush_qgroup+0x1fc/0x3a0
[  240.864691][ T7922]  ? kfree+0x198/0x430
[  240.864704][ T7922]  ? qgroup_reserve_data+0x6b2/0x8d0
[  240.864718][ T7922]  ? __pfx_try_flush_qgroup+0x10/0x10
[  240.864733][ T7922]  ? qgroup_reserve_data+0x6b2/0x8d0
[  240.864753][ T7922]  btrfs_qgroup_reserve_data+0x68/0xb0
[  240.864767][ T7922]  btrfs_check_data_free_space+0x14b/0x240
[  240.864784][ T7922]  btrfs_buffered_write+0x509/0x1310
[  240.864814][ T7922]  ? __lock_acquire+0xad5/0xd80
[  240.864829][ T7922]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  240.864852][ T7922]  ? aa_file_perm+0x139/0xf60
[  240.864870][ T7922]  ? aa_file_perm+0x139/0xf60
[  240.864886][ T7922]  ? aa_file_perm+0x3f1/0xf60
[  240.864906][ T7922]  btrfs_do_write_iter+0x27b/0x7c0
[  240.864926][ T7922]  ? kstrtouint+0xfc/0x190
[  240.864941][ T7922]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  240.864963][ T7922]  do_iter_readv_writev+0x71f/0x9d0
[  240.864981][ T7922]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  240.864994][ T7922]  ? rcu_read_lock_any_held+0xbb/0x160
[  240.865021][ T7922]  vfs_writev+0x38d/0xbc0
[  240.865047][ T7922]  ? __lock_acquire+0xad5/0xd80
[  240.865059][ T7922]  ? __pfx_vfs_writev+0x10/0x10
[  240.865087][ T7922]  ? __fget_files+0x2a/0x420
[  240.865099][ T7922]  ? __fget_files+0x39d/0x420
[  240.865108][ T7922]  ? __fget_files+0x2a/0x420
[  240.865125][ T7922]  __se_sys_pwritev2+0x1b8/0x2d0
[  240.865142][ T7922]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  240.865160][ T7922]  ? __x64_sys_pwritev2+0x21/0xf0
[  240.865176][ T7922]  do_syscall_64+0xf3/0x230
[  240.865192][ T7922]  ? clear_bhb_loop+0x45/0xa0
[  240.865206][ T7922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.865218][ T7922] RIP: 0033:0x7fe207b7e719
[  240.865232][ T7922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.865242][ T7922] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  240.865255][ T7922] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  240.865263][ T7922] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  240.865270][ T7922] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  240.865277][ T7922] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  240.865284][ T7922] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  240.865302][ T7922]  </TASK>
[  241.184576][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  241.554166][ T7940] loop0: detected capacity change from 0 to 32768
[  241.566389][ T7940] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.145 (7940)
[  241.598748][ T7940] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  241.613651][ T7940] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  241.624018][ T7940] BTRFS info (device loop0): using free-space-tree
[  241.720263][ T1035] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  241.745857][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
2025/04/16 04:53:09 executed programs: 133
[  242.125411][ T7958] loop0: detected capacity change from 0 to 32768
[  242.139791][ T7958] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.146 (7958)
[  242.166650][ T7958] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  242.186224][ T7958] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  242.189685][ T7958] BTRFS info (device loop0): using free-space-tree
[  242.275139][ T7958] FAULT_INJECTION: forcing a failure.
[  242.275139][ T7958] name failslab, interval 1, probability 0, space 0, times 0
[  242.284595][ T1035] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  242.297884][ T7958] CPU: 0 UID: 0 PID: 7958 Comm: syz.0.146 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  242.297904][ T7958] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  242.297911][ T7958] Call Trace:
[  242.297917][ T7958]  <TASK>
[  242.297922][ T7958]  dump_stack_lvl+0x241/0x360
[  242.297946][ T7958]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.297961][ T7958]  ? __pfx__printk+0x10/0x10
[  242.297979][ T7958]  ? __pfx___might_resched+0x10/0x10
[  242.297995][ T7958]  should_fail_ex+0x424/0x570
[  242.298011][ T7958]  should_failslab+0xac/0x100
[  242.298028][ T7958]  kmem_cache_alloc_noprof+0x78/0x390
[  242.298042][ T7958]  ? add_to_free_space_tree+0xc9/0x320
[  242.298061][ T7958]  add_to_free_space_tree+0xc9/0x320
[  242.298080][ T7958]  __btrfs_free_extent+0x1cf7/0x3990
[  242.298106][ T7958]  ? __pfx___btrfs_free_extent+0x10/0x10
[  242.298116][ T7958]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  242.298129][ T7958]  ? do_raw_read_unlock+0x3c/0x80
[  242.298150][ T7958]  ? do_raw_spin_unlock+0x58/0x8b0
[  242.298170][ T7958]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  242.298185][ T7958]  ? __lock_acquire+0xad5/0xd80
[  242.298227][ T7958]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  242.298243][ T7958]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  242.298259][ T7958]  ? __kernel_text_address+0xd/0x40
[  242.298269][ T7958]  ? unwind_get_return_address+0x4d/0x90
[  242.298283][ T7958]  ? arch_stack_walk+0xff/0x150
[  242.298306][ T7958]  ? stack_trace_save+0x11a/0x1d0
[  242.298323][ T7958]  ? __lock_acquire+0xad5/0xd80
[  242.298336][ T7958]  ? stack_depot_save_flags+0x44/0x940
[  242.298356][ T7958]  btrfs_run_delayed_refs+0xe3/0x2f0
[  242.298375][ T7958]  btrfs_commit_transaction+0x4ae/0x3650
[  242.298389][ T7958]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.298404][ T7958]  ? btrfs_commit_transaction+0x167/0x3650
[  242.298433][ T7958]  ? __lock_acquire+0xad5/0xd80
[  242.298446][ T7958]  ? do_raw_spin_lock+0x151/0x370
[  242.298464][ T7958]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  242.298491][ T7958]  ? btrfs_record_root_in_trans+0x12d/0x190
[  242.298506][ T7958]  ? start_transaction+0x45f/0x16b0
[  242.298533][ T7958]  try_flush_qgroup+0x1fc/0x3a0
[  242.298545][ T7958]  ? kfree+0x198/0x430
[  242.298558][ T7958]  ? qgroup_reserve_data+0x6b2/0x8d0
[  242.298570][ T7958]  ? __pfx_try_flush_qgroup+0x10/0x10
[  242.298583][ T7958]  ? qgroup_reserve_data+0x6b2/0x8d0
[  242.298604][ T7958]  btrfs_qgroup_reserve_data+0x68/0xb0
[  242.298619][ T7958]  btrfs_check_data_free_space+0x14b/0x240
[  242.298637][ T7958]  btrfs_buffered_write+0x509/0x1310
[  242.298665][ T7958]  ? __lock_acquire+0xad5/0xd80
[  242.298679][ T7958]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  242.298701][ T7958]  ? aa_file_perm+0x139/0xf60
[  242.298717][ T7958]  ? aa_file_perm+0x139/0xf60
[  242.298732][ T7958]  ? aa_file_perm+0x3f1/0xf60
[  242.298751][ T7958]  btrfs_do_write_iter+0x27b/0x7c0
[  242.298769][ T7958]  ? kstrtouint+0xfc/0x190
[  242.298783][ T7958]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  242.298805][ T7958]  do_iter_readv_writev+0x71f/0x9d0
[  242.298823][ T7958]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  242.298834][ T7958]  ? rcu_read_lock_any_held+0xbb/0x160
[  242.298860][ T7958]  vfs_writev+0x38d/0xbc0
[  242.298884][ T7958]  ? __lock_acquire+0xad5/0xd80
[  242.298896][ T7958]  ? __pfx_vfs_writev+0x10/0x10
[  242.298929][ T7958]  ? __fget_files+0x2a/0x420
[  242.298941][ T7958]  ? __fget_files+0x39d/0x420
[  242.298949][ T7958]  ? __fget_files+0x2a/0x420
[  242.298966][ T7958]  __se_sys_pwritev2+0x1b8/0x2d0
[  242.298981][ T7958]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  242.298999][ T7958]  ? __x64_sys_pwritev2+0x21/0xf0
[  242.299014][ T7958]  do_syscall_64+0xf3/0x230
[  242.299059][ T7958]  ? clear_bhb_loop+0x45/0xa0
[  242.299073][ T7958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.299084][ T7958] RIP: 0033:0x7fe207b7e719
[  242.299096][ T7958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.299105][ T7958] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  242.299118][ T7958] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  242.299126][ T7958] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  242.299133][ T7958] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  242.299140][ T7958] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  242.299147][ T7958] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  242.299166][ T7958]  </TASK>
[  242.299175][ T7958] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  242.529720][ T7958] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  242.534249][ T7958] BTRFS info (device loop0 state EA): forced readonly
[  242.538596][ T7958] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2973: errno=-12 Out of memory
[  242.542966][ T7958] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  242.552018][ T7958] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2154: errno=-12 Out of memory
[  242.562996][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  242.570219][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  242.574285][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  242.962259][ T7976] loop0: detected capacity change from 0 to 32768
[  242.976314][ T7976] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.147 (7976)
[  243.000955][ T7976] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  243.004799][ T7976] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  243.026346][ T7976] BTRFS info (device loop0): using free-space-tree
[  243.100435][ T7976] FAULT_INJECTION: forcing a failure.
[  243.100435][ T7976] name failslab, interval 1, probability 0, space 0, times 0
[  243.105211][ T7976] CPU: 0 UID: 0 PID: 7976 Comm: syz.0.147 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  243.105229][ T7976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  243.105238][ T7976] Call Trace:
[  243.105243][ T7976]  <TASK>
[  243.105249][ T7976]  dump_stack_lvl+0x241/0x360
[  243.105273][ T7976]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.105289][ T7976]  ? __pfx__printk+0x10/0x10
[  243.105307][ T7976]  ? __pfx___might_resched+0x10/0x10
[  243.105323][ T7976]  should_fail_ex+0x424/0x570
[  243.105340][ T7976]  should_failslab+0xac/0x100
[  243.105358][ T7976]  kmem_cache_alloc_noprof+0x78/0x390
[  243.105373][ T7976]  ? alloc_extent_state+0x25/0x310
[  243.105387][ T7976]  alloc_extent_state+0x25/0x310
[  243.105409][ T7976]  __set_extent_bit+0x1f4/0x1bc0
[  243.105435][ T7976]  set_extent_bit+0x3b/0x50
[  243.105450][ T7976]  btrfs_alloc_tree_block+0xa37/0x15d0
[  243.105473][ T7976]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  243.105487][ T7976]  ? __kernel_text_address+0xd/0x40
[  243.105505][ T7976]  ? __lock_acquire+0xad5/0xd80
[  243.105519][ T7976]  ? read_extent_buffer+0x10d/0x550
[  243.105536][ T7976]  btrfs_force_cow_block+0x530/0x2010
[  243.105567][ T7976]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  243.105581][ T7976]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  243.105598][ T7976]  ? down_write_nested+0x195/0x220
[  243.105613][ T7976]  ? __pfx_down_write_nested+0x10/0x10
[  243.105630][ T7976]  btrfs_cow_block+0x377/0x840
[  243.105652][ T7976]  btrfs_search_slot+0xc12/0x31c0
[  243.105682][ T7976]  ? __pfx_btrfs_search_slot+0x10/0x10
[  243.105694][ T7976]  ? btrfs_extent_root+0x2a3/0x3b0
[  243.105712][ T7976]  ? __pfx_btrfs_extent_root+0x10/0x10
[  243.105733][ T7976]  ? kasan_save_track+0x51/0x80
[  243.105744][ T7976]  ? kasan_save_track+0x3f/0x80
[  243.105757][ T7976]  lookup_inline_extent_backref+0x44a/0x1b60
[  243.105768][ T7976]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  243.105778][ T7976]  ? btrfs_check_data_free_space+0x14b/0x240
[  243.105791][ T7976]  ? btrfs_buffered_write+0x509/0x1310
[  243.105806][ T7976]  ? do_iter_readv_writev+0x71f/0x9d0
[  243.105820][ T7976]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.105845][ T7976]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  243.105864][ T7976]  ? rcu_is_watching+0x15/0xb0
[  243.105878][ T7976]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  243.105891][ T7976]  ? kmem_cache_alloc_noprof+0x237/0x390
[  243.105908][ T7976]  __btrfs_free_extent+0x438/0x3990
[  243.105934][ T7976]  ? __pfx___btrfs_free_extent+0x10/0x10
[  243.105944][ T7976]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  243.105957][ T7976]  ? do_raw_read_unlock+0x3c/0x80
[  243.105997][ T7976]  ? do_raw_spin_unlock+0x58/0x8b0
[  243.106019][ T7976]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  243.106035][ T7976]  ? __lock_acquire+0xad5/0xd80
[  243.106077][ T7976]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  243.106095][ T7976]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  243.106110][ T7976]  ? __kernel_text_address+0xd/0x40
[  243.106120][ T7976]  ? unwind_get_return_address+0x4d/0x90
[  243.106135][ T7976]  ? arch_stack_walk+0xff/0x150
[  243.106158][ T7976]  ? stack_trace_save+0x11a/0x1d0
[  243.106175][ T7976]  ? __lock_acquire+0xad5/0xd80
[  243.106189][ T7976]  ? stack_depot_save_flags+0x44/0x940
[  243.106209][ T7976]  btrfs_run_delayed_refs+0xe3/0x2f0
[  243.106229][ T7976]  btrfs_commit_transaction+0x4ae/0x3650
[  243.106242][ T7976]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.106257][ T7976]  ? btrfs_commit_transaction+0x167/0x3650
[  243.106275][ T7976]  ? __lock_acquire+0xad5/0xd80
[  243.106287][ T7976]  ? do_raw_spin_lock+0x151/0x370
[  243.106306][ T7976]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  243.106333][ T7976]  ? btrfs_record_root_in_trans+0x12d/0x190
[  243.106349][ T7976]  ? start_transaction+0x45f/0x16b0
[  243.106377][ T7976]  try_flush_qgroup+0x1fc/0x3a0
[  243.106389][ T7976]  ? kfree+0x198/0x430
[  243.106408][ T7976]  ? qgroup_reserve_data+0x6b2/0x8d0
[  243.106421][ T7976]  ? __pfx_try_flush_qgroup+0x10/0x10
[  243.106435][ T7976]  ? qgroup_reserve_data+0x6b2/0x8d0
[  243.106455][ T7976]  btrfs_qgroup_reserve_data+0x68/0xb0
[  243.106469][ T7976]  btrfs_check_data_free_space+0x14b/0x240
[  243.106488][ T7976]  btrfs_buffered_write+0x509/0x1310
[  243.106517][ T7976]  ? __lock_acquire+0xad5/0xd80
[  243.106532][ T7976]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  243.106552][ T7976]  ? aa_file_perm+0x139/0xf60
[  243.106569][ T7976]  ? aa_file_perm+0x139/0xf60
[  243.106584][ T7976]  ? aa_file_perm+0x3f1/0xf60
[  243.106602][ T7976]  btrfs_do_write_iter+0x27b/0x7c0
[  243.106619][ T7976]  ? kstrtouint+0xfc/0x190
[  243.106634][ T7976]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  243.106657][ T7976]  do_iter_readv_writev+0x71f/0x9d0
[  243.106676][ T7976]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  243.106688][ T7976]  ? rcu_read_lock_any_held+0xbb/0x160
[  243.106712][ T7976]  vfs_writev+0x38d/0xbc0
[  243.106737][ T7976]  ? __lock_acquire+0xad5/0xd80
[  243.106750][ T7976]  ? __pfx_vfs_writev+0x10/0x10
[  243.106775][ T7976]  ? __fget_files+0x2a/0x420
[  243.106786][ T7976]  ? __fget_files+0x39d/0x420
[  243.106794][ T7976]  ? __fget_files+0x2a/0x420
[  243.106811][ T7976]  __se_sys_pwritev2+0x1b8/0x2d0
[  243.106828][ T7976]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  243.106845][ T7976]  ? __x64_sys_pwritev2+0x21/0xf0
[  243.106861][ T7976]  do_syscall_64+0xf3/0x230
[  243.106876][ T7976]  ? clear_bhb_loop+0x45/0xa0
[  243.106889][ T7976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.106900][ T7976] RIP: 0033:0x7fe207b7e719
[  243.106913][ T7976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.106923][ T7976] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  243.106935][ T7976] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  243.106943][ T7976] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  243.106950][ T7976] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  243.106957][ T7976] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  243.106963][ T7976] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  243.106980][ T7976]  </TASK>
[  243.408427][ T1035] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  243.435201][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  243.799981][ T7994] loop0: detected capacity change from 0 to 32768
[  243.809588][ T7994] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.148 (7994)
[  243.829067][ T7994] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  243.833153][ T7994] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  243.846776][ T7994] BTRFS info (device loop0): using free-space-tree
[  243.915355][ T7994] FAULT_INJECTION: forcing a failure.
[  243.915355][ T7994] name failslab, interval 1, probability 0, space 0, times 0
[  243.927652][ T7994] CPU: 0 UID: 0 PID: 7994 Comm: syz.0.148 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  243.927674][ T7994] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  243.927682][ T7994] Call Trace:
[  243.927688][ T7994]  <TASK>
[  243.927693][ T7994]  dump_stack_lvl+0x241/0x360
[  243.927717][ T7994]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.927733][ T7994]  ? __pfx__printk+0x10/0x10
[  243.927751][ T7994]  ? __pfx___might_resched+0x10/0x10
[  243.927767][ T7994]  should_fail_ex+0x424/0x570
[  243.927783][ T7994]  should_failslab+0xac/0x100
[  243.927799][ T7994]  kmem_cache_alloc_noprof+0x78/0x390
[  243.927813][ T7994]  ? __btrfs_run_delayed_items+0x92/0x4b0
[  243.927827][ T7994]  __btrfs_run_delayed_items+0x92/0x4b0
[  243.927838][ T7994]  ? schedule+0x90/0x360
[  243.927850][ T7994]  ? schedule+0x90/0x360
[  243.927860][ T7994]  ? schedule+0x16d/0x360
[  243.927872][ T7994]  btrfs_commit_transaction+0xa1b/0x3650
[  243.927886][ T7994]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.927901][ T7994]  ? btrfs_commit_transaction+0x167/0x3650
[  243.927921][ T7994]  ? do_raw_spin_lock+0x151/0x370
[  243.927941][ T7994]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  243.927967][ T7994]  ? __pfx_autoremove_wake_function+0x10/0x10
[  243.927983][ T7994]  ? start_transaction+0x45f/0x16b0
[  243.928003][ T7994]  try_flush_qgroup+0x1fc/0x3a0
[  243.928015][ T7994]  ? kfree+0x198/0x430
[  243.928027][ T7994]  ? qgroup_reserve_data+0x6b2/0x8d0
[  243.928039][ T7994]  ? __pfx_try_flush_qgroup+0x10/0x10
[  243.928053][ T7994]  ? qgroup_reserve_data+0x6b2/0x8d0
[  243.928073][ T7994]  btrfs_qgroup_reserve_data+0x68/0xb0
[  243.928088][ T7994]  btrfs_check_data_free_space+0x14b/0x240
[  243.928105][ T7994]  btrfs_buffered_write+0x509/0x1310
[  243.928133][ T7994]  ? __lock_acquire+0xad5/0xd80
[  243.928147][ T7994]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  243.928168][ T7994]  ? aa_file_perm+0x139/0xf60
[  243.928187][ T7994]  ? aa_file_perm+0x139/0xf60
[  243.928203][ T7994]  ? aa_file_perm+0x3f1/0xf60
[  243.928221][ T7994]  btrfs_do_write_iter+0x27b/0x7c0
[  243.928238][ T7994]  ? kstrtouint+0xfc/0x190
[  243.928252][ T7994]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  243.928274][ T7994]  do_iter_readv_writev+0x71f/0x9d0
[  243.928291][ T7994]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  243.928303][ T7994]  ? rcu_read_lock_any_held+0xbb/0x160
[  243.928327][ T7994]  vfs_writev+0x38d/0xbc0
[  243.928353][ T7994]  ? __lock_acquire+0xad5/0xd80
[  243.928365][ T7994]  ? __pfx_vfs_writev+0x10/0x10
[  243.928391][ T7994]  ? __fget_files+0x2a/0x420
[  243.928403][ T7994]  ? __fget_files+0x39d/0x420
[  243.928412][ T7994]  ? __fget_files+0x2a/0x420
[  243.928428][ T7994]  __se_sys_pwritev2+0x1b8/0x2d0
[  243.928443][ T7994]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  243.928461][ T7994]  ? __x64_sys_pwritev2+0x21/0xf0
[  243.928477][ T7994]  do_syscall_64+0xf3/0x230
[  243.928491][ T7994]  ? clear_bhb_loop+0x45/0xa0
[  243.928505][ T7994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.928515][ T7994] RIP: 0033:0x7fe207b7e719
[  243.928528][ T7994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.928537][ T7994] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  243.928550][ T7994] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  243.928557][ T7994] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  243.928564][ T7994] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  243.928571][ T7994] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  243.928578][ T7994] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  243.928598][ T7994]  </TASK>
[  243.928608][ T7994] BTRFS warning (device loop0): Skipping commit of aborted transaction.
[  244.133751][ T7994] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  244.137682][ T7994] BTRFS: error (device loop0 state A) in cleanup_transaction:2022: errno=-12 Out of memory
[  244.141765][ T7994] BTRFS info (device loop0 state EA): forced readonly
[  244.145558][ T3079] BTRFS error (device loop0 state EA): fail to start transaction for status update: -30
[  244.160712][ T5588] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  244.165887][ T5588] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  244.172310][ T5588] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  244.554029][ T8012] loop0: detected capacity change from 0 to 32768
[  244.562377][ T8012] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.149 (8012)
[  244.581054][ T8012] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  244.584944][ T8012] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  244.602102][ T8012] BTRFS info (device loop0): using free-space-tree
[  244.729184][   T12] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  244.736315][ T8012] FAULT_INJECTION: forcing a failure.
[  244.736315][ T8012] name failslab, interval 1, probability 0, space 0, times 0
[  244.741077][ T8012] CPU: 0 UID: 0 PID: 8012 Comm: syz.0.149 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  244.741094][ T8012] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  244.741101][ T8012] Call Trace:
[  244.741106][ T8012]  <TASK>
[  244.741110][ T8012]  dump_stack_lvl+0x241/0x360
[  244.741125][ T8012]  ? __pfx_dump_stack_lvl+0x10/0x10
[  244.741140][ T8012]  ? __pfx__printk+0x10/0x10
[  244.741156][ T8012]  ? __kmalloc_cache_noprof+0x236/0x370
[  244.741172][ T8012]  ? __pfx___might_resched+0x10/0x10
[  244.741189][ T8012]  should_fail_ex+0x424/0x570
[  244.741204][ T8012]  should_failslab+0xac/0x100
[  244.741221][ T8012]  kmem_cache_alloc_noprof+0x78/0x390
[  244.741235][ T8012]  ? alloc_extent_state+0x25/0x310
[  244.741248][ T8012]  alloc_extent_state+0x25/0x310
[  244.741261][ T8012]  __set_extent_bit+0x1f4/0x1bc0
[  244.741281][ T8012]  ? __kasan_kmalloc+0x9d/0xb0
[  244.741297][ T8012]  set_record_extent_bits+0x51/0x90
[  244.741311][ T8012]  qgroup_reserve_data+0x280/0x8d0
[  244.741332][ T8012]  btrfs_check_data_free_space+0x14b/0x240
[  244.741349][ T8012]  btrfs_buffered_write+0x509/0x1310
[  244.741377][ T8012]  ? __lock_acquire+0xad5/0xd80
[  244.741392][ T8012]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  244.741413][ T8012]  ? aa_file_perm+0x139/0xf60
[  244.741430][ T8012]  ? aa_file_perm+0x139/0xf60
[  244.741445][ T8012]  ? aa_file_perm+0x3f1/0xf60
[  244.741464][ T8012]  btrfs_do_write_iter+0x27b/0x7c0
[  244.741482][ T8012]  ? kstrtouint+0xfc/0x190
[  244.741496][ T8012]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  244.741518][ T8012]  do_iter_readv_writev+0x71f/0x9d0
[  244.741536][ T8012]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  244.741548][ T8012]  ? rcu_read_lock_any_held+0xbb/0x160
[  244.741572][ T8012]  vfs_writev+0x38d/0xbc0
[  244.741601][ T8012]  ? __lock_acquire+0xad5/0xd80
[  244.741613][ T8012]  ? __pfx_vfs_writev+0x10/0x10
[  244.741638][ T8012]  ? __fget_files+0x2a/0x420
[  244.741650][ T8012]  ? __fget_files+0x39d/0x420
[  244.741659][ T8012]  ? __fget_files+0x2a/0x420
[  244.741675][ T8012]  __se_sys_pwritev2+0x1b8/0x2d0
[  244.741691][ T8012]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  244.741706][ T8012]  ? __x64_sys_pwritev2+0x21/0xf0
[  244.741716][ T8012]  do_syscall_64+0xf3/0x230
[  244.741726][ T8012]  ? clear_bhb_loop+0x45/0xa0
[  244.741734][ T8012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.741741][ T8012] RIP: 0033:0x7fe207b7e719
[  244.741751][ T8012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.741757][ T8012] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  244.741767][ T8012] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  244.741772][ T8012] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  244.741777][ T8012] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  244.741781][ T8012] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  244.741786][ T8012] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  244.741796][ T8012]  </TASK>
[  244.891464][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  245.279404][ T8031] loop0: detected capacity change from 0 to 32768
[  245.289379][ T8031] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.150 (8031)
[  245.310117][ T8031] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  245.313736][ T8031] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  245.328525][ T8031] BTRFS info (device loop0): using free-space-tree
[  245.397279][ T8031] FAULT_INJECTION: forcing a failure.
[  245.397279][ T8031] name failslab, interval 1, probability 0, space 0, times 0
[  245.403030][ T8031] CPU: 0 UID: 0 PID: 8031 Comm: syz.0.150 Not tainted 6.15.0-rc2-syzkaller-g1a1d569a75f3 #0 PREEMPT(full) 
[  245.403049][ T8031] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  245.403057][ T8031] Call Trace:
[  245.403064][ T8031]  <TASK>
[  245.403070][ T8031]  dump_stack_lvl+0x241/0x360
[  245.403094][ T8031]  ? __pfx_dump_stack_lvl+0x10/0x10
[  245.403111][ T8031]  ? __pfx__printk+0x10/0x10
[  245.403131][ T8031]  ? __pfx___might_resched+0x10/0x10
[  245.403150][ T8031]  should_fail_ex+0x424/0x570
[  245.403166][ T8031]  should_failslab+0xac/0x100
[  245.403185][ T8031]  kmem_cache_alloc_noprof+0x78/0x390
[  245.403200][ T8031]  ? alloc_extent_state+0x25/0x310
[  245.403215][ T8031]  alloc_extent_state+0x25/0x310
[  245.403229][ T8031]  __set_extent_bit+0x1f4/0x1bc0
[  245.403254][ T8031]  set_extent_bit+0x3b/0x50
[  245.403269][ T8031]  btrfs_alloc_tree_block+0xa37/0x15d0
[  245.403294][ T8031]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  245.403308][ T8031]  ? __kernel_text_address+0xd/0x40
[  245.403334][ T8031]  ? __lock_acquire+0xad5/0xd80
[  245.403347][ T8031]  ? read_extent_buffer+0x10d/0x550
[  245.403364][ T8031]  btrfs_force_cow_block+0x530/0x2010
[  245.403396][ T8031]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  245.403410][ T8031]  ? btrfs_qgroup_add_swapped_blocks+0x8e0/0x9c0
[  245.403427][ T8031]  ? down_write_nested+0x195/0x220
[  245.403442][ T8031]  ? __pfx_down_write_nested+0x10/0x10
[  245.403459][ T8031]  btrfs_cow_block+0x377/0x840
[  245.403479][ T8031]  btrfs_search_slot+0xc12/0x31c0
[  245.403514][ T8031]  ? __pfx_btrfs_search_slot+0x10/0x10
[  245.403526][ T8031]  ? btrfs_extent_root+0x2a3/0x3b0
[  245.403543][ T8031]  ? __pfx_btrfs_extent_root+0x10/0x10
[  245.403565][ T8031]  ? kasan_save_track+0x51/0x80
[  245.403577][ T8031]  ? kasan_save_track+0x3f/0x80
[  245.403591][ T8031]  lookup_inline_extent_backref+0x44a/0x1b60
[  245.403603][ T8031]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  245.403615][ T8031]  ? btrfs_check_data_free_space+0x14b/0x240
[  245.403628][ T8031]  ? btrfs_buffered_write+0x509/0x1310
[  245.403643][ T8031]  ? do_iter_readv_writev+0x71f/0x9d0
[  245.403658][ T8031]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.403684][ T8031]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  245.403711][ T8031]  ? rcu_is_watching+0x15/0xb0
[  245.403726][ T8031]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  245.403740][ T8031]  ? kmem_cache_alloc_noprof+0x237/0x390
[  245.403757][ T8031]  __btrfs_free_extent+0x438/0x3990
[  245.403788][ T8031]  ? __pfx___btrfs_free_extent+0x10/0x10
[  245.403799][ T8031]  ? btrfs_tree_mod_log_lowest_seq+0x84/0xa0
[  245.403811][ T8031]  ? do_raw_read_unlock+0x3c/0x80
[  245.403833][ T8031]  ? do_raw_spin_unlock+0x58/0x8b0
[  245.403853][ T8031]  __btrfs_run_delayed_refs+0xfa3/0x4160
[  245.403870][ T8031]  ? __lock_acquire+0xad5/0xd80
[  245.403915][ T8031]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  245.403933][ T8031]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  245.403949][ T8031]  ? __kernel_text_address+0xd/0x40
[  245.403960][ T8031]  ? unwind_get_return_address+0x4d/0x90
[  245.403975][ T8031]  ? arch_stack_walk+0xff/0x150
[  245.404000][ T8031]  ? stack_trace_save+0x11a/0x1d0
[  245.404018][ T8031]  ? __lock_acquire+0xad5/0xd80
[  245.404031][ T8031]  ? stack_depot_save_flags+0x44/0x940
[  245.404054][ T8031]  btrfs_run_delayed_refs+0xe3/0x2f0
[  245.404074][ T8031]  btrfs_commit_transaction+0x4ae/0x3650
[  245.404087][ T8031]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.404103][ T8031]  ? btrfs_commit_transaction+0x167/0x3650
[  245.404122][ T8031]  ? __lock_acquire+0xad5/0xd80
[  245.404134][ T8031]  ? do_raw_spin_lock+0x151/0x370
[  245.404155][ T8031]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  245.404182][ T8031]  ? btrfs_record_root_in_trans+0x12d/0x190
[  245.404199][ T8031]  ? start_transaction+0x45f/0x16b0
[  245.404228][ T8031]  try_flush_qgroup+0x1fc/0x3a0
[  245.404241][ T8031]  ? kfree+0x198/0x430
[  245.404253][ T8031]  ? qgroup_reserve_data+0x6b2/0x8d0
[  245.404265][ T8031]  ? __pfx_try_flush_qgroup+0x10/0x10
[  245.404281][ T8031]  ? qgroup_reserve_data+0x6b2/0x8d0
[  245.404303][ T8031]  btrfs_qgroup_reserve_data+0x68/0xb0
[  245.404332][ T8031]  btrfs_check_data_free_space+0x14b/0x240
[  245.404350][ T8031]  btrfs_buffered_write+0x509/0x1310
[  245.404388][ T8031]  ? __lock_acquire+0xad5/0xd80
[  245.404404][ T8031]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  245.404427][ T8031]  ? aa_file_perm+0x139/0xf60
[  245.404445][ T8031]  ? aa_file_perm+0x139/0xf60
[  245.404460][ T8031]  ? aa_file_perm+0x3f1/0xf60
[  245.404482][ T8031]  btrfs_do_write_iter+0x27b/0x7c0
[  245.404500][ T8031]  ? kstrtouint+0xfc/0x190
[  245.404515][ T8031]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  245.404538][ T8031]  do_iter_readv_writev+0x71f/0x9d0
[  245.404558][ T8031]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  245.404570][ T8031]  ? rcu_read_lock_any_held+0xbb/0x160
[  245.404595][ T8031]  vfs_writev+0x38d/0xbc0
[  245.404621][ T8031]  ? __lock_acquire+0xad5/0xd80
[  245.404632][ T8031]  ? __pfx_vfs_writev+0x10/0x10
[  245.404662][ T8031]  ? __fget_files+0x2a/0x420
[  245.404674][ T8031]  ? __fget_files+0x39d/0x420
[  245.404683][ T8031]  ? __fget_files+0x2a/0x420
[  245.404701][ T8031]  __se_sys_pwritev2+0x1b8/0x2d0
[  245.404720][ T8031]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  245.404740][ T8031]  ? __x64_sys_pwritev2+0x21/0xf0
[  245.404756][ T8031]  do_syscall_64+0xf3/0x230
[  245.404770][ T8031]  ? clear_bhb_loop+0x45/0xa0
[  245.404785][ T8031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.404797][ T8031] RIP: 0033:0x7fe207b7e719
[  245.404808][ T8031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.404819][ T8031] RSP: 002b:00007fe208899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  245.404833][ T8031] RAX: ffffffffffffffda RBX: 00007fe207d35f80 RCX: 00007fe207b7e719
[  245.404841][ T8031] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  245.404848][ T8031] RBP: 00007fe208899090 R08: 0000000000000009 R09: 0000000000000008
[  245.404855][ T8031] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  245.404862][ T8031] R13: 0000000000000000 R14: 00007fe207d35f80 R15: 00007ffdb17f4018
[  245.404882][ T8031]  </TASK>
[  245.740098][ T3079] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  245.760832][ T5588] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  246.127870][ T8050] loop0: detected capacity change from 0 to 32768
[  246.155833][ T8050] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.151 (8050)
[  246.184842][ T8050] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  246.194217][ T8050] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  246.204345][ T8050] BTRFS info (device loop0): using free-space-tree