[  469.368296][ T1073] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  469.384030][ T5737] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  469.822332][T14163] loop0: detected capacity change from 0 to 32768
[  469.833257][T14163] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.476 (14163)
[  469.861525][T14163] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  469.884571][T14163] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  469.889756][T14163] BTRFS info (device loop0): using free-space-tree
[  470.016381][T14163] FAULT_INJECTION: forcing a failure.
[  470.016381][T14163] name failslab, interval 1, probability 0, space 0, times 0
[  470.037589][T14163] CPU: 0 UID: 0 PID: 14163 Comm: syz.0.476 Not tainted 6.14.0-rc1-syzkaller-g5c8c229261f1 #0
[  470.037611][T14163] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.037619][T14163] Call Trace:
[  470.037623][T14163]  <TASK>
[  470.037629][T14163]  dump_stack_lvl+0x241/0x360
[  470.037669][T14163]  ? __pfx_dump_stack_lvl+0x10/0x10
[  470.037680][T14163]  ? __pfx__printk+0x10/0x10
[  470.037697][T14163]  ? fs_reclaim_acquire+0x93/0x130
[  470.037713][T14163]  ? __pfx___might_resched+0x10/0x10
[  470.037730][T14163]  should_fail_ex+0x40a/0x550
[  470.037754][T14163]  should_failslab+0xac/0x100
[  470.037767][T14163]  ? alloc_extent_state+0x25/0x310
[  470.037783][T14163]  kmem_cache_alloc_noprof+0x70/0x380
[  470.037800][T14163]  alloc_extent_state+0x25/0x310
[  470.037818][T14163]  __set_extent_bit+0x1fd/0x1e60
[  470.037843][T14163]  ? __asan_memcpy+0x40/0x70
[  470.037859][T14163]  set_extent_bit+0x3b/0x50
[  470.037876][T14163]  btrfs_alloc_tree_block+0x96b/0x1440
[  470.037900][T14163]  ? __pfx_btrfs_alloc_tree_block+0x10/0x10
[  470.037915][T14163]  ? __lock_acquire+0x1397/0x2100
[  470.037933][T14163]  ? read_extent_buffer+0x11b/0x540
[  470.037955][T14163]  btrfs_force_cow_block+0x526/0x1fd0
[  470.037975][T14163]  ? __pfx_lock_acquire+0x10/0x10
[  470.038001][T14163]  ? __pfx_btrfs_force_cow_block+0x10/0x10
[  470.038015][T14163]  ? btrfs_qgroup_add_swapped_blocks+0x8d0/0x9b0
[  470.038033][T14163]  ? down_write_nested+0x195/0x220
[  470.038044][T14163]  ? __pfx_down_write_nested+0x10/0x10
[  470.038059][T14163]  btrfs_cow_block+0x371/0x830
[  470.038082][T14163]  btrfs_search_slot+0xc01/0x3180
[  470.038096][T14163]  ? unwind_get_return_address+0x4d/0x90
[  470.038131][T14163]  ? __pfx_btrfs_search_slot+0x10/0x10
[  470.038143][T14163]  ? btrfs_extent_root+0x2a1/0x3b0
[  470.038160][T14163]  ? __pfx_btrfs_extent_root+0x10/0x10
[  470.038174][T14163]  ? stack_depot_save_flags+0x37/0x940
[  470.038191][T14163]  ? __btrfs_free_extent+0x357/0x3980
[  470.038206][T14163]  lookup_inline_extent_backref+0x448/0x1b40
[  470.038218][T14163]  ? btrfs_commit_transaction+0x4b9/0x3760
[  470.038236][T14163]  ? try_flush_qgroup+0x1ec/0x340
[  470.038246][T14163]  ? btrfs_qgroup_reserve_data+0x68/0xb0
[  470.038259][T14163]  ? btrfs_buffered_write+0x519/0x1250
[  470.038273][T14163]  ? __se_sys_pwritev2+0x196/0x2b0
[  470.038289][T14163]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.038318][T14163]  ? __pfx_lookup_inline_extent_backref+0x10/0x10
[  470.038346][T14163]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  470.038360][T14163]  __btrfs_free_extent+0x436/0x3980
[  470.038389][T14163]  ? __pfx___btrfs_free_extent+0x10/0x10
[  470.038401][T14163]  ? __lock_acquire+0x2100/0x2100
[  470.038415][T14163]  ? do_raw_read_unlock+0x3c/0x80
[  470.038432][T14163]  ? do_raw_spin_unlock+0x58/0x8b0
[  470.038449][T14163]  __btrfs_run_delayed_refs+0xf9f/0x40f0
[  470.038476][T14163]  ? validate_chain+0x11e/0x5920
[  470.038510][T14163]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  470.038529][T14163]  ? unwind_get_return_address+0x4d/0x90
[  470.038544][T14163]  ? arch_stack_walk+0xfd/0x150
[  470.038576][T14163]  ? __pfx_lock_acquire+0x10/0x10
[  470.038597][T14163]  ? __lock_acquire+0x1397/0x2100
[  470.038615][T14163]  btrfs_run_delayed_refs+0xe3/0x2f0
[  470.038633][T14163]  btrfs_commit_transaction+0x4b9/0x3760
[  470.038651][T14163]  ? btrfs_commit_transaction+0x177/0x3760
[  470.038674][T14163]  ? __asan_memset+0x23/0x50
[  470.038688][T14163]  ? lockdep_init_map_type+0xa1/0x910
[  470.038705][T14163]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  470.038720][T14163]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[  470.038741][T14163]  ? join_transaction+0x405/0xda0
[  470.038759][T14163]  ? btrfs_record_root_in_trans+0x12d/0x190
[  470.038774][T14163]  ? start_transaction+0x45f/0x16b0
[  470.038798][T14163]  try_flush_qgroup+0x1ec/0x340
[  470.038809][T14163]  ? kfree+0x196/0x430
[  470.038845][T14163]  ? __pfx_try_flush_qgroup+0x10/0x10
[  470.038858][T14163]  ? qgroup_reserve_data+0x6ab/0x8c0
[  470.038878][T14163]  btrfs_qgroup_reserve_data+0x68/0xb0
[  470.038892][T14163]  btrfs_check_data_free_space+0x149/0x240
[  470.038909][T14163]  btrfs_buffered_write+0x519/0x1250
[  470.038942][T14163]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  470.038967][T14163]  ? __lock_acquire+0x1397/0x2100
[  470.038986][T14163]  btrfs_do_write_iter+0x279/0x7b0
[  470.039007][T14163]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  470.039027][T14163]  do_iter_readv_writev+0x71a/0x9d0
[  470.039044][T14163]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  470.039056][T14163]  ? rcu_read_lock_any_held+0xb7/0x160
[  470.039077][T14163]  vfs_writev+0x38b/0xbc0
[  470.039098][T14163]  ? __pfx_vfs_writev+0x10/0x10
[  470.039108][T14163]  ? vfs_write+0x7fa/0xd10
[  470.039130][T14163]  ? __fget_files+0x2a/0x410
[  470.039142][T14163]  ? __fget_files+0x395/0x410
[  470.039151][T14163]  ? __fget_files+0x2a/0x410
[  470.039168][T14163]  __se_sys_pwritev2+0x196/0x2b0
[  470.039184][T14163]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  470.039199][T14163]  ? do_syscall_64+0x100/0x230
[  470.039227][T14163]  ? __x64_sys_pwritev2+0x21/0xf0
[  470.039243][T14163]  do_syscall_64+0xf3/0x230
[  470.039256][T14163]  ? clear_bhb_loop+0x35/0x90
[  470.039272][T14163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.039284][T14163] RIP: 0033:0x7fd34bf7e719
[  470.039295][T14163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  470.039304][T14163] RSP: 002b:00007fd34cd95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  470.039318][T14163] RAX: ffffffffffffffda RBX: 00007fd34c135f80 RCX: 00007fd34bf7e719
[  470.039325][T14163] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  470.039332][T14163] RBP: 00007fd34cd95090 R08: 0000000000000009 R09: 0000000000000008
[  470.039338][T14163] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  470.039344][T14163] R13: 0000000000000000 R14: 00007fd34c135f80 R15: 00007ffdb3dd9da8
[  470.039362][T14163]  </TASK>
[  470.297919][ T1073] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  470.315690][ T5737] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  470.905070][T14184] loop0: detected capacity change from 0 to 32768
[  470.914457][T14184] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.477 (14184)
[  470.938095][T14184] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  470.942255][T14184] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  470.963129][T14184] BTRFS info (device loop0): using free-space-tree
[  471.028586][T14184] FAULT_INJECTION: forcing a failure.
[  471.028586][T14184] name failslab, interval 1, probability 0, space 0, times 0
[  471.038867][ T1038] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  471.053582][T14184] CPU: 0 UID: 0 PID: 14184 Comm: syz.0.477 Not tainted 6.14.0-rc1-syzkaller-g5c8c229261f1 #0
[  471.053600][T14184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  471.053608][T14184] Call Trace:
[  471.053613][T14184]  <TASK>
[  471.053618][T14184]  dump_stack_lvl+0x241/0x360
[  471.053661][T14184]  ? __pfx_dump_stack_lvl+0x10/0x10
[  471.053672][T14184]  ? __pfx__printk+0x10/0x10
[  471.053690][T14184]  ? fs_reclaim_acquire+0x93/0x130
[  471.053706][T14184]  ? __pfx___might_resched+0x10/0x10
[  471.053723][T14184]  should_fail_ex+0x40a/0x550
[  471.053747][T14184]  should_failslab+0xac/0x100
[  471.053759][T14184]  ? add_to_free_space_tree+0xc9/0x320
[  471.053775][T14184]  kmem_cache_alloc_noprof+0x70/0x380
[  471.053791][T14184]  add_to_free_space_tree+0xc9/0x320
[  471.053809][T14184]  __btrfs_free_extent+0x1ce9/0x3980
[  471.053834][T14184]  ? __pfx___btrfs_free_extent+0x10/0x10
[  471.053844][T14184]  ? __lock_acquire+0x2100/0x2100
[  471.053859][T14184]  ? do_raw_read_unlock+0x3c/0x80
[  471.053877][T14184]  ? do_raw_spin_unlock+0x58/0x8b0
[  471.053894][T14184]  __btrfs_run_delayed_refs+0xf9f/0x40f0
[  471.053923][T14184]  ? validate_chain+0x11e/0x5920
[  471.053956][T14184]  ? __pfx___btrfs_run_delayed_refs+0x10/0x10
[  471.053974][T14184]  ? unwind_get_return_address+0x4d/0x90
[  471.053990][T14184]  ? arch_stack_walk+0xfd/0x150
[  471.054019][T14184]  ? __pfx_lock_acquire+0x10/0x10
[  471.054039][T14184]  ? __lock_acquire+0x1397/0x2100
[  471.054056][T14184]  btrfs_run_delayed_refs+0xe3/0x2f0
[  471.054078][T14184]  btrfs_commit_transaction+0x4b9/0x3760
[  471.054094][T14184]  ? btrfs_commit_transaction+0x177/0x3760
[  471.054114][T14184]  ? __asan_memset+0x23/0x50
[  471.054128][T14184]  ? lockdep_init_map_type+0xa1/0x910
[  471.054144][T14184]  ? __pfx_btrfs_commit_transaction+0x10/0x10
[  471.054158][T14184]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[  471.054178][T14184]  ? join_transaction+0x405/0xda0
[  471.054204][T14184]  ? btrfs_record_root_in_trans+0x12d/0x190
[  471.054220][T14184]  ? start_transaction+0x45f/0x16b0
[  471.054247][T14184]  try_flush_qgroup+0x1ec/0x340
[  471.054259][T14184]  ? kfree+0x196/0x430
[  471.054271][T14184]  ? __pfx_try_flush_qgroup+0x10/0x10
[  471.054284][T14184]  ? qgroup_reserve_data+0x6ab/0x8c0
[  471.054305][T14184]  btrfs_qgroup_reserve_data+0x68/0xb0
[  471.054319][T14184]  btrfs_check_data_free_space+0x149/0x240
[  471.054336][T14184]  btrfs_buffered_write+0x519/0x1250
[  471.054371][T14184]  ? __pfx_btrfs_buffered_write+0x10/0x10
[  471.054396][T14184]  ? __lock_acquire+0x1397/0x2100
[  471.054414][T14184]  btrfs_do_write_iter+0x279/0x7b0
[  471.054435][T14184]  ? __pfx_btrfs_do_write_iter+0x10/0x10
[  471.054456][T14184]  do_iter_readv_writev+0x71a/0x9d0
[  471.054475][T14184]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  471.054488][T14184]  ? rcu_read_lock_any_held+0xb7/0x160
[  471.054510][T14184]  vfs_writev+0x38b/0xbc0
[  471.054532][T14184]  ? __pfx_vfs_writev+0x10/0x10
[  471.054542][T14184]  ? vfs_write+0x7fa/0xd10
[  471.054566][T14184]  ? __fget_files+0x2a/0x410
[  471.054580][T14184]  ? __fget_files+0x395/0x410
[  471.054590][T14184]  ? __fget_files+0x2a/0x410
[  471.054608][T14184]  __se_sys_pwritev2+0x196/0x2b0
[  471.054625][T14184]  ? __pfx___se_sys_pwritev2+0x10/0x10
[  471.054642][T14184]  ? do_syscall_64+0x100/0x230
[  471.054668][T14184]  ? __x64_sys_pwritev2+0x21/0xf0
[  471.054683][T14184]  do_syscall_64+0xf3/0x230
[  471.054696][T14184]  ? clear_bhb_loop+0x35/0x90
[  471.054714][T14184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.054727][T14184] RIP: 0033:0x7fd34bf7e719
[  471.054738][T14184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  471.054748][T14184] RSP: 002b:00007fd34cd95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  471.054761][T14184] RAX: ffffffffffffffda RBX: 00007fd34c135f80 RCX: 00007fd34bf7e719
[  471.054768][T14184] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000005
[  471.054775][T14184] RBP: 00007fd34cd95090 R08: 0000000000000009 R09: 0000000000000008
[  471.054782][T14184] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  471.054789][T14184] R13: 0000000000000000 R14: 00007fd34c135f80 R15: 00007ffdb3dd9da8
[  471.054807][T14184]  </TASK>
[  471.054847][T14184] BTRFS error (device loop0 state A): Transaction aborted (error -12)
[  471.244427][T14184] BTRFS: error (device loop0 state A) in add_to_free_space_tree:1052: errno=-12 Out of memory
[  471.248581][T14184] BTRFS info (device loop0 state EA): forced readonly
[  471.251383][T14184] BTRFS: error (device loop0 state EA) in do_free_extent_accounting:2971: errno=-12 Out of memory
[  471.257576][T14184] BTRFS error (device loop0 state EA): failed to run delayed ref for logical 1052672 num_bytes 4096 type 176 action 2 ref_mod 1: -12
[  471.263532][T14184] BTRFS: error (device loop0 state EA) in btrfs_run_delayed_refs:2160: errno=-12 Out of memory
[  471.272567][ T5737] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  471.278557][ T5737] BTRFS warning (device loop0 state EA): qgroup 0/5 has unreleased space, type 0 rsv 1052672
[  471.282395][ T5737] BTRFS error (device loop0 state EA): qgroup reserved space leaked
[  472.087725][ T1038] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.152633][ T1038] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.195836][ T1038] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.228707][ T1038] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.350792][ T1038] bridge_slave_1: left allmulticast mode
[  472.354318][ T1038] bridge_slave_1: left promiscuous mode
[  472.356650][ T1038] bridge0: port 2(bridge_slave_1) entered disabled state
[  472.385766][ T1038] bridge_slave_0: left allmulticast mode
[  472.387934][ T1038] bridge_slave_0: left promiscuous mode
[  472.391385][ T1038] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.772544][ T1038] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.778151][ T1038] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.782483][ T1038] bond0 (unregistering): Released all slaves
[  472.968282][ T1038] hsr_slave_0: left promiscuous mode
[  472.970773][ T1038] hsr_slave_1: left promiscuous mode
[  472.981068][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  472.985673][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_0
[  473.004625][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  473.007513][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_1
[  473.027005][ T1038] veth1_macvtap: left promiscuous mode
[  473.029228][ T1038] veth0_macvtap: left promiscuous mode
[  473.031452][ T1038] veth1_vlan: left promiscuous mode
[  473.034132][ T1038] veth0_vlan: left promiscuous mode
[  473.351823][ T1038] team0 (unregistering): Port device team_slave_1 removed
[  473.372172][ T1038] team0 (unregistering): Port device team_slave_0 removed