bcachefs (loop0): stripes_read... done bcachefs (loop0): snapshots_read... done bcachefs (loop0): going read-write bcachefs (loop0): journal_replay... done bcachefs (loop0): resume_logged_ops... done bcachefs (loop0): delete_dead_inodes... done bcachefs (loop0): done starting filesystem ============================= WARNING: suspicious RCU usage 6.9.0-rc6-syzkaller #0 Not tainted ----------------------------- fs/bcachefs/buckets.h:111 suspicious rcu_dereference_check() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 9 locks held by syz.0.15/3242: #0: ffff888100fea3f8 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x12/0x40 fs/namespace.c:409 #1: ffff888100fea708 (&type->s_vfs_rename_key){+.+.}-{3:3}, at: lock_rename fs/namei.c:3070 [inline] #1: ffff888100fea708 (&type->s_vfs_rename_key){+.+.}-{3:3}, at: do_renameat2+0x299/0x620 fs/namei.c:4972 #2: ffff88817dbd8150 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:830 [inline] #2: ffff88817dbd8150 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: lock_two_directories+0x8f/0x100 fs/namei.c:3036 #3: ffff88817dbd8820 (&type->i_mutex_dir_key#8/5){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:830 [inline] #3: ffff88817dbd8820 (&type->i_mutex_dir_key#8/5){+.+.}-{3:3}, at: lock_two_directories+0xa0/0x100 fs/namei.c:3037 #4: ffff88817a384250 (&c->btree_trans_barrier){.+.+}-{0:0}, at: srcu_lock_acquire include/linux/srcu.h:116 [inline] #4: ffff88817a384250 (&c->btree_trans_barrier){.+.+}-{0:0}, at: srcu_read_lock include/linux/srcu.h:215 [inline] #4: ffff88817a384250 (&c->btree_trans_barrier){.+.+}-{0:0}, at: __bch2_trans_get+0x29a/0x320 fs/bcachefs/btree_iter.c:3185 #5: ffff88810cb45070 (&dev->mutex){....}-{3:3}, at: six_relock_type fs/bcachefs/six.h:289 [inline] #5: ffff88810cb45070 (&dev->mutex){....}-{3:3}, at: __bch2_btree_node_relock+0x58/0x1e0 fs/bcachefs/btree_locking.c:506 #6: ffff88810cb45070 (&dev->mutex){....}-{3:3}, at: btree_node_lock_increment fs/bcachefs/btree_locking.h:248 [inline] #6: ffff88810cb45070 (&dev->mutex){....}-{3:3}, at: __bch2_btree_node_relock+0x18a/0x1e0 fs/bcachefs/btree_locking.c:508 #7: ffff88817dba2a48 (&dev->mutex){....}-{3:3}, at: six_relock_type fs/bcachefs/six.h:289 [inline] #7: ffff88817dba2a48 (&dev->mutex){....}-{3:3}, at: __bch2_btree_node_relock+0x58/0x1e0 fs/bcachefs/btree_locking.c:506 #8: ffff88810cb46070 (&dev->mutex){....}-{3:3}, at: six_relock_type fs/bcachefs/six.h:289 [inline] #8: ffff88810cb46070 (&dev->mutex){....}-{3:3}, at: __bch2_btree_node_relock+0x58/0x1e0 fs/bcachefs/btree_locking.c:506 stack backtrace: CPU: 1 PID: 3242 Comm: syz.0.15 Not tainted 6.9.0-rc6-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xa3/0x100 lib/dump_stack.c:114 lockdep_rcu_suspicious+0x15e/0x1b0 kernel/locking/lockdep.c:6712 bucket_gens fs/bcachefs/buckets.h:107 [inline] bucket_gen fs/bcachefs/buckets.h:116 [inline] bch2_check_bucket_ref+0x45d/0x570 fs/bcachefs/buckets.c:541 __mark_pointer fs/bcachefs/buckets.c:735 [inline] bch2_trigger_pointer fs/bcachefs/buckets.c:772 [inline] __trigger_extent+0x81b/0x1d30 fs/bcachefs/buckets.c:921 bch2_trigger_extent+0x1fc/0x270 fs/bcachefs/buckets.c:1003 bch2_key_trigger fs/bcachefs/bkey_methods.h:88 [inline] bch2_key_trigger_old fs/bcachefs/bkey_methods.h:102 [inline] run_one_trans_trigger fs/bcachefs/btree_trans_commit.c:514 [inline] run_btree_triggers+0x23d/0x4b0 fs/bcachefs/btree_trans_commit.c:544 bch2_trans_commit_run_triggers fs/bcachefs/btree_trans_commit.c:576 [inline] __bch2_trans_commit+0xb0/0x1cd0 fs/bcachefs/btree_trans_commit.c:1022 bch2_trans_commit fs/bcachefs/btree_update.h:170 [inline] bch2_inode_delete_keys+0x2e6/0x370 fs/bcachefs/inode.c:845 bch2_inode_rm+0x159/0x520 fs/bcachefs/inode.c:874 bch2_evict_inode+0xc1/0x120 fs/bcachefs/fs.c:1565 evict+0xd1/0x2a0 fs/inode.c:667 __dentry_kill+0xa2/0x1d0 fs/dcache.c:603 dput+0xff/0x1c0 fs/dcache.c:845 do_renameat2+0x492/0x620 fs/namei.c:5039 __do_sys_renameat2 fs/namei.c:5071 [inline] __se_sys_renameat2 fs/namei.c:5068 [inline] __x64_sys_renameat2+0x4f/0x60 fs/namei.c:5068 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xa2/0x1b0 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7f5ddc775bd9 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f5ddd614048 EFLAGS: 00000246 ORIG_RAX: 000000000000013c RAX: ffffffffffffffda RBX: 00007f5ddc903f60 RCX: 00007f5ddc775bd9 RDX: 0000000000000004 RSI: 0000000020000080 RDI: ffffffffffffff9c RBP: 00007f5ddc7e4e60 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000020000980 R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000000006 R14: 00007f5ddc903f60 R15: 00007ffcff0cf698 bucket 0:34 gen 7 (mem gen 0) data type user: stale dirty ptr (gen 0) while marking u64s 7 type extent 536870913:8:U32_MAX len 8 ver 0: durability: 1 crc: c_size 8 size 8 offset 0 nonce 0 csum crc32c compress incompressible ptr: 0:34:0 gen 0, shutting down bcachefs (loop0): inconsistency detected - emergency read only at journal seq 12 transaction updates for bch2_inode_rm journal seq 0 update: btree=extents cached=0 bch2_btree_insert_nonextent fs/bcachefs/btree_update.c:634 [inline] update: btree=extents cached=0 bch2_trans_update_extent_overwrite+0xaa6/0xe20 fs/bcachefs/btree_update.c:262 old u64s 7 type extent 536870913:8:U32_MAX len 8 ver 0: durability: 1 crc: c_size 8 size 8 offset 0 nonce 0 csum crc32c compress incompressible ptr: 0:34:0 gen 0 new u64s 5 type deleted 536870913:8:U32_MAX len 0 ver 0 syz.0.15 (3242) used greatest stack depth: 10480 bytes left