w=0, sector=86312, nr_sectors = 8 limit=40427 [ 197.360192][ T6753] syz.0.19: attempt to access beyond end of device [ 197.360192][ T6753] loop0: rw=0, sector=86320, nr_sectors = 8 limit=40427 [ 197.360219][ T6753] syz.0.19: attempt to access beyond end of device [ 197.360219][ T6753] loop0: rw=0, sector=86328, nr_sectors = 8 limit=40427 [ 197.392821][ T6760] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.394208][ T6760] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.395436][ T6760] bridge_slave_0: entered allmulticast mode [ 197.397374][ T6760] bridge_slave_0: entered promiscuous mode [ 197.399115][ T6760] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.401191][ T6760] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.402465][ T6760] bridge_slave_1: entered allmulticast mode [ 197.403801][ T6760] bridge_slave_1: entered promiscuous mode [ 197.412787][ T6760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 197.415411][ T6760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 197.429721][ T6760] team0: Port device team_slave_0 added [ 197.431500][ T6760] team0: Port device team_slave_1 added [ 197.438614][ T6760] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 197.440314][ T6760] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 197.444023][ T6760] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 197.446402][ T6760] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 197.447672][ T6760] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 197.451986][ T6760] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 197.465505][ T6760] hsr_slave_0: entered promiscuous mode [ 197.467142][ T6760] hsr_slave_1: entered promiscuous mode [ 197.518274][ T6760] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 197.521841][ T6760] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 197.525101][ T6760] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 197.527350][ T6760] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 197.545137][ T6760] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.545191][ T6760] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.545266][ T6760] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.545292][ T6760] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.562088][ T6760] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.566217][ T1947] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.567592][ T1947] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.572973][ T6760] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.575152][ T4657] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.575200][ T4657] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.578323][ T4657] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.578516][ T4657] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.644381][ T6760] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 197.656601][ T6760] veth0_vlan: entered promiscuous mode [ 197.658370][ T6760] veth1_vlan: entered promiscuous mode [ 197.668142][ T6760] veth0_macvtap: entered promiscuous mode [ 197.669272][ T6760] veth1_macvtap: entered promiscuous mode [ 197.677584][ T6760] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 197.678573][ T6760] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 197.684555][ T1883] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.684601][ T1883] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.684629][ T1883] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.684645][ T1883] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.711934][ T4657] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.711963][ T4657] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 197.725823][ T1947] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.725855][ T1947] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:03:17 executed programs: 5 [ 197.886323][ T6780] loop1: detected capacity change from 0 to 40427 [ 197.909516][ T6780] F2FS-fs (loop1): build fault injection rate: 771 [ 197.912236][ T6780] F2FS-fs (loop1): invalid crc value [ 197.936280][ T6780] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 197.938558][ T6780] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 199.369490][ T52] Bluetooth: hci1: command tx timeout [ 201.450263][ T52] Bluetooth: hci1: command tx timeout [ 202.350075][ T6753] bio_check_eod: 200980 callbacks suppressed [ 202.351240][ T6753] syz.0.19: attempt to access beyond end of device [ 202.351240][ T6753] loop0: rw=0, sector=86976, nr_sectors = 8 limit=40427 [ 202.354853][ T6753] syz.0.19: attempt to access beyond end of device [ 202.354853][ T6753] loop0: rw=0, sector=86984, nr_sectors = 8 limit=40427 [ 202.356996][ T6753] syz.0.19: attempt to access beyond end of device [ 202.356996][ T6753] loop0: rw=0, sector=86992, nr_sectors = 8 limit=40427 [ 202.359182][ T6753] syz.0.19: attempt to access beyond end of device [ 202.359182][ T6753] loop0: rw=0, sector=87000, nr_sectors = 8 limit=40427 [ 202.361393][ T6753] syz.0.19: attempt to access beyond end of device [ 202.361393][ T6753] loop0: rw=0, sector=87008, nr_sectors = 8 limit=40427 [ 202.364240][ T6753] syz.0.19: attempt to access beyond end of device [ 202.364240][ T6753] loop0: rw=0, sector=87016, nr_sectors = 8 limit=40427 [ 202.366460][ T6753] syz.0.19: attempt to access beyond end of device [ 202.366460][ T6753] loop0: rw=0, sector=87024, nr_sectors = 8 limit=40427 [ 202.368625][ T6753] syz.0.19: attempt to access beyond end of device [ 202.368625][ T6753] loop0: rw=0, sector=87032, nr_sectors = 8 limit=40427 [ 202.371789][ T6753] syz.0.19: attempt to access beyond end of device [ 202.371789][ T6753] loop0: rw=0, sector=87040, nr_sectors = 8 limit=40427 [ 202.374077][ T6753] syz.0.19: attempt to access beyond end of device [ 202.374077][ T6753] loop0: rw=0, sector=87048, nr_sectors = 8 limit=40427 [ 203.314257][ T6780] F2FS-fs (loop1): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 203.530071][ T52] Bluetooth: hci1: command tx timeout [ 205.616868][ T52] Bluetooth: hci1: command tx timeout [ 207.359465][ T6780] bio_check_eod: 362637 callbacks suppressed [ 207.364050][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364050][ T6780] loop1: rw=0, sector=88344, nr_sectors = 8 limit=40427 [ 207.364182][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364182][ T6780] loop1: rw=0, sector=88352, nr_sectors = 8 limit=40427 [ 207.364226][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364226][ T6780] loop1: rw=0, sector=88360, nr_sectors = 8 limit=40427 [ 207.364253][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364253][ T6780] loop1: rw=0, sector=88368, nr_sectors = 8 limit=40427 [ 207.364277][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364277][ T6780] loop1: rw=0, sector=88376, nr_sectors = 8 limit=40427 [ 207.364301][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364301][ T6780] loop1: rw=0, sector=88384, nr_sectors = 8 limit=40427 [ 207.364323][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364323][ T6780] loop1: rw=0, sector=88392, nr_sectors = 8 limit=40427 [ 207.364346][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364346][ T6780] loop1: rw=0, sector=88400, nr_sectors = 8 limit=40427 [ 207.364368][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364368][ T6780] loop1: rw=0, sector=88408, nr_sectors = 8 limit=40427 [ 207.364390][ T6780] syz.1.20: attempt to access beyond end of device [ 207.364390][ T6780] loop1: rw=0, sector=88416, nr_sectors = 8 limit=40427 [ 212.370704][ T6753] bio_check_eod: 401677 callbacks suppressed [ 212.371811][ T6753] syz.0.19: attempt to access beyond end of device [ 212.371811][ T6753] loop0: rw=0, sector=86448, nr_sectors = 8 limit=40427 [ 212.373923][ T6753] syz.0.19: attempt to access beyond end of device [ 212.373923][ T6753] loop0: rw=0, sector=86456, nr_sectors = 8 limit=40427 [ 212.375666][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375666][ T6780] loop1: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 212.375725][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375725][ T6780] loop1: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 212.375757][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375757][ T6780] loop1: rw=524288, sector=86032, nr_sectors = 8 limit=40427 [ 212.375783][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375783][ T6780] loop1: rw=524288, sector=86040, nr_sectors = 8 limit=40427 [ 212.375808][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375808][ T6780] loop1: rw=524288, sector=86048, nr_sectors = 8 limit=40427 [ 212.375832][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375832][ T6780] loop1: rw=524288, sector=86056, nr_sectors = 8 limit=40427 [ 212.375855][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375855][ T6780] loop1: rw=524288, sector=86064, nr_sectors = 8 limit=40427 [ 212.375882][ T6780] syz.1.20: attempt to access beyond end of device [ 212.375882][ T6780] loop1: rw=524288, sector=86072, nr_sectors = 8 limit=40427 [ 213.205771][ T6125] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 213.207510][ T6125] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 213.209026][ T6125] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 213.214049][ T6125] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 213.215813][ T6125] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 213.352558][ T6790] chnl_net:caif_netlink_parms(): no params data found [ 213.465198][ T6790] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.465281][ T6790] bridge0: port 1(bridge_slave_0) entered disabled state [ 213.465346][ T6790] bridge_slave_0: entered allmulticast mode [ 213.465783][ T6790] bridge_slave_0: entered promiscuous mode [ 213.466959][ T6790] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.467003][ T6790] bridge0: port 2(bridge_slave_1) entered disabled state [ 213.467047][ T6790] bridge_slave_1: entered allmulticast mode [ 213.467453][ T6790] bridge_slave_1: entered promiscuous mode [ 213.501992][ T6790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 213.502836][ T6790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 213.531392][ T6790] team0: Port device team_slave_0 added [ 213.532119][ T6790] team0: Port device team_slave_1 added [ 213.543426][ T6790] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 213.543455][ T6790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 213.543468][ T6790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 213.544000][ T6790] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 213.544007][ T6790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 213.544019][ T6790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 213.565478][ T6790] hsr_slave_0: entered promiscuous mode [ 213.565775][ T6790] hsr_slave_1: entered promiscuous mode [ 213.565959][ T6790] debugfs: 'hsr0' already exists in 'hsr' [ 213.565971][ T6790] Cannot create hsr debugfs directory [ 213.685428][ T6790] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 213.688371][ T6790] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 213.700965][ T6790] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 213.704814][ T6790] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 213.728625][ T6790] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.728677][ T6790] bridge0: port 2(bridge_slave_1) entered forwarding state [ 213.728752][ T6790] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.728777][ T6790] bridge0: port 1(bridge_slave_0) entered forwarding state [ 213.783647][ T6790] 8021q: adding VLAN 0 to HW filter on device bond0 [ 213.786599][ T6790] 8021q: adding VLAN 0 to HW filter on device team0 [ 213.790228][ T2169] bridge0: port 1(bridge_slave_0) entered disabled state [ 213.794157][ T2169] bridge0: port 2(bridge_slave_1) entered disabled state [ 213.803252][ T4657] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.803305][ T4657] bridge0: port 1(bridge_slave_0) entered forwarding state [ 213.825400][ T6790] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 213.825450][ T6790] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 213.827333][ T2169] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.827351][ T2169] bridge0: port 2(bridge_slave_1) entered forwarding state [ 213.938142][ T6790] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 213.965306][ T6790] veth0_vlan: entered promiscuous mode [ 213.966797][ T6790] veth1_vlan: entered promiscuous mode [ 213.987494][ T6790] veth0_macvtap: entered promiscuous mode [ 213.988478][ T6790] veth1_macvtap: entered promiscuous mode [ 214.006169][ T6790] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 214.007246][ T6790] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 214.008673][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.009217][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.009260][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.009280][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.074283][ T1947] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.074323][ T1947] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.112286][ T2169] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.112319][ T2169] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:03:34 executed programs: 6 [ 214.452699][ T6811] loop2: detected capacity change from 0 to 40427 [ 214.460513][ T6811] F2FS-fs (loop2): build fault injection rate: 771 [ 214.462321][ T6811] F2FS-fs (loop2): invalid crc value [ 214.492057][ T6811] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 214.502229][ T6811] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 215.289513][ T6125] Bluetooth: hci2: command tx timeout [ 217.369548][ T6125] Bluetooth: hci2: command tx timeout [ 217.379536][ T6753] bio_check_eod: 286663 callbacks suppressed [ 217.379559][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379559][ T6753] loop0: rw=0, sector=88568, nr_sectors = 8 limit=40427 [ 217.379613][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379613][ T6753] loop0: rw=0, sector=88576, nr_sectors = 8 limit=40427 [ 217.379648][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379648][ T6753] loop0: rw=0, sector=88584, nr_sectors = 8 limit=40427 [ 217.379674][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379674][ T6753] loop0: rw=0, sector=88592, nr_sectors = 8 limit=40427 [ 217.379698][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379698][ T6753] loop0: rw=0, sector=88600, nr_sectors = 8 limit=40427 [ 217.379722][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379722][ T6753] loop0: rw=0, sector=88608, nr_sectors = 8 limit=40427 [ 217.379745][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379745][ T6753] loop0: rw=0, sector=88616, nr_sectors = 8 limit=40427 [ 217.379767][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379767][ T6753] loop0: rw=0, sector=88624, nr_sectors = 8 limit=40427 [ 217.379790][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379790][ T6753] loop0: rw=0, sector=88632, nr_sectors = 8 limit=40427 [ 217.379811][ T6753] syz.0.19: attempt to access beyond end of device [ 217.379811][ T6753] loop0: rw=0, sector=88640, nr_sectors = 8 limit=40427 [ 219.449501][ T6125] Bluetooth: hci2: command tx timeout [ 221.537043][ T6125] Bluetooth: hci2: command tx timeout [ 222.390640][ T6780] bio_check_eod: 290434 callbacks suppressed [ 222.395419][ T6780] syz.1.20: attempt to access beyond end of device [ 222.395419][ T6780] loop1: rw=524288, sector=87904, nr_sectors = 8 limit=40427 [ 222.398101][ T6780] syz.1.20: attempt to access beyond end of device [ 222.398101][ T6780] loop1: rw=524288, sector=87912, nr_sectors = 8 limit=40427 [ 222.399085][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399085][ T6753] loop0: rw=524288, sector=87664, nr_sectors = 8 limit=40427 [ 222.399116][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399116][ T6753] loop0: rw=524288, sector=87672, nr_sectors = 8 limit=40427 [ 222.399141][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399141][ T6753] loop0: rw=524288, sector=87680, nr_sectors = 8 limit=40427 [ 222.399164][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399164][ T6753] loop0: rw=524288, sector=87688, nr_sectors = 8 limit=40427 [ 222.399187][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399187][ T6753] loop0: rw=524288, sector=87696, nr_sectors = 8 limit=40427 [ 222.399210][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399210][ T6753] loop0: rw=524288, sector=87704, nr_sectors = 8 limit=40427 [ 222.399232][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399232][ T6753] loop0: rw=524288, sector=87712, nr_sectors = 8 limit=40427 [ 222.399254][ T6753] syz.0.19: attempt to access beyond end of device [ 222.399254][ T6753] loop0: rw=524288, sector=87720, nr_sectors = 8 limit=40427 [ 224.687137][ T6811] F2FS-fs (loop2): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 227.399516][ T6811] bio_check_eod: 346931 callbacks suppressed [ 227.399559][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399559][ T6811] loop2: rw=0, sector=89168, nr_sectors = 8 limit=40427 [ 227.399610][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399610][ T6811] loop2: rw=0, sector=89176, nr_sectors = 8 limit=40427 [ 227.399657][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399657][ T6811] loop2: rw=0, sector=89184, nr_sectors = 8 limit=40427 [ 227.399698][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399698][ T6811] loop2: rw=0, sector=89192, nr_sectors = 8 limit=40427 [ 227.399737][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399737][ T6811] loop2: rw=0, sector=89200, nr_sectors = 8 limit=40427 [ 227.399771][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399771][ T6811] loop2: rw=0, sector=89208, nr_sectors = 8 limit=40427 [ 227.399801][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399801][ T6811] loop2: rw=0, sector=89216, nr_sectors = 8 limit=40427 [ 227.399829][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399829][ T6811] loop2: rw=0, sector=89224, nr_sectors = 8 limit=40427 [ 227.399855][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399855][ T6811] loop2: rw=0, sector=89232, nr_sectors = 8 limit=40427 [ 227.399887][ T6811] syz.2.21: attempt to access beyond end of device [ 227.399887][ T6811] loop2: rw=0, sector=89240, nr_sectors = 8 limit=40427 [ 229.895042][ T52] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 229.897174][ T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 229.899515][ T52] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 229.904654][ T52] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 229.908419][ T52] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 230.023319][ T6817] chnl_net:caif_netlink_parms(): no params data found [ 230.164391][ T6817] bridge0: port 1(bridge_slave_0) entered blocking state [ 230.164480][ T6817] bridge0: port 1(bridge_slave_0) entered disabled state [ 230.164535][ T6817] bridge_slave_0: entered allmulticast mode [ 230.164952][ T6817] bridge_slave_0: entered promiscuous mode [ 230.165702][ T6817] bridge0: port 2(bridge_slave_1) entered blocking state [ 230.172004][ T6817] bridge0: port 2(bridge_slave_1) entered disabled state [ 230.172115][ T6817] bridge_slave_1: entered allmulticast mode [ 230.172747][ T6817] bridge_slave_1: entered promiscuous mode [ 230.212656][ T6817] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 230.213535][ T6817] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 230.253695][ T6817] team0: Port device team_slave_0 added [ 230.255575][ T6817] team0: Port device team_slave_1 added [ 230.286638][ T6817] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 230.286671][ T6817] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.286694][ T6817] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 230.287196][ T6817] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 230.287202][ T6817] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.287213][ T6817] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 230.371275][ T6817] hsr_slave_0: entered promiscuous mode [ 230.371580][ T6817] hsr_slave_1: entered promiscuous mode [ 230.371751][ T6817] debugfs: 'hsr0' already exists in 'hsr' [ 230.371761][ T6817] Cannot create hsr debugfs directory [ 230.571735][ T6817] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 230.574558][ T6817] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 230.575548][ T6817] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 230.576807][ T6817] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 230.589630][ T6817] bridge0: port 2(bridge_slave_1) entered blocking state [ 230.589683][ T6817] bridge0: port 2(bridge_slave_1) entered forwarding state [ 230.589774][ T6817] bridge0: port 1(bridge_slave_0) entered blocking state [ 230.589809][ T6817] bridge0: port 1(bridge_slave_0) entered forwarding state [ 230.651572][ T6817] 8021q: adding VLAN 0 to HW filter on device bond0 [ 230.654987][ T15] bridge0: port 1(bridge_slave_0) entered disabled state [ 230.656300][ T15] bridge0: port 2(bridge_slave_1) entered disabled state [ 230.675201][ T6817] 8021q: adding VLAN 0 to HW filter on device team0 [ 230.696013][ T2169] bridge0: port 1(bridge_slave_0) entered blocking state [ 230.696076][ T2169] bridge0: port 1(bridge_slave_0) entered forwarding state [ 230.696372][ T2169] bridge0: port 2(bridge_slave_1) entered blocking state [ 230.696395][ T2169] bridge0: port 2(bridge_slave_1) entered forwarding state [ 230.750873][ T6817] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 230.905991][ T6817] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 230.939241][ T6817] veth0_vlan: entered promiscuous mode [ 230.972388][ T6817] veth1_vlan: entered promiscuous mode [ 230.977223][ T6817] veth0_macvtap: entered promiscuous mode [ 231.001037][ T6817] veth1_macvtap: entered promiscuous mode [ 231.005835][ T6817] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 231.038519][ T6817] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 231.055745][ T2169] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.055802][ T2169] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.055817][ T2169] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.055830][ T2169] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.108346][ T2169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 231.108363][ T2169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 231.168063][ T2169] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 231.168101][ T2169] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:03:51 executed programs: 7 [ 231.555181][ T6838] loop3: detected capacity change from 0 to 40427 [ 231.581554][ T6838] F2FS-fs (loop3): build fault injection rate: 771 [ 231.585664][ T6838] F2FS-fs (loop3): invalid crc value [ 231.624057][ T6838] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 231.628932][ T6838] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 231.929558][ T52] Bluetooth: hci3: command tx timeout [ 232.409514][ T6811] bio_check_eod: 325924 callbacks suppressed [ 232.410291][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410291][ T6811] loop2: rw=524288, sector=86464, nr_sectors = 8 limit=40427 [ 232.410335][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410335][ T6811] loop2: rw=524288, sector=86472, nr_sectors = 8 limit=40427 [ 232.410362][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410362][ T6811] loop2: rw=524288, sector=86480, nr_sectors = 8 limit=40427 [ 232.410388][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410388][ T6811] loop2: rw=524288, sector=86488, nr_sectors = 8 limit=40427 [ 232.410420][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410420][ T6811] loop2: rw=524288, sector=86496, nr_sectors = 8 limit=40427 [ 232.410450][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410450][ T6811] loop2: rw=524288, sector=86504, nr_sectors = 8 limit=40427 [ 232.410477][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410477][ T6811] loop2: rw=524288, sector=86512, nr_sectors = 8 limit=40427 [ 232.410500][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410500][ T6811] loop2: rw=524288, sector=86520, nr_sectors = 8 limit=40427 [ 232.410524][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410524][ T6811] loop2: rw=524288, sector=86528, nr_sectors = 8 limit=40427 [ 232.410554][ T6811] syz.2.21: attempt to access beyond end of device [ 232.410554][ T6811] loop2: rw=524288, sector=86536, nr_sectors = 8 limit=40427 [ 234.011010][ T52] Bluetooth: hci3: command tx timeout [ 236.089605][ T52] Bluetooth: hci3: command tx timeout [ 237.421322][ T6811] bio_check_eod: 304548 callbacks suppressed [ 237.426106][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426106][ T6780] loop1: rw=524288, sector=86680, nr_sectors = 8 limit=40427 [ 237.426188][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426188][ T6780] loop1: rw=524288, sector=86688, nr_sectors = 8 limit=40427 [ 237.426216][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426216][ T6780] loop1: rw=524288, sector=86696, nr_sectors = 8 limit=40427 [ 237.426242][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426242][ T6780] loop1: rw=524288, sector=86704, nr_sectors = 8 limit=40427 [ 237.426267][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426267][ T6780] loop1: rw=524288, sector=86712, nr_sectors = 8 limit=40427 [ 237.426291][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426291][ T6780] loop1: rw=524288, sector=86720, nr_sectors = 8 limit=40427 [ 237.426314][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426314][ T6780] loop1: rw=524288, sector=86728, nr_sectors = 8 limit=40427 [ 237.426336][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426336][ T6780] loop1: rw=524288, sector=86736, nr_sectors = 8 limit=40427 [ 237.426358][ T6780] syz.1.20: attempt to access beyond end of device [ 237.426358][ T6780] loop1: rw=524288, sector=86744, nr_sectors = 8 limit=40427 [ 237.449500][ T6811] syz.2.21: attempt to access beyond end of device [ 237.449500][ T6811] loop2: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 238.169553][ T52] Bluetooth: hci3: command tx timeout [ 242.430261][ T6780] bio_check_eod: 307530 callbacks suppressed [ 242.430310][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430310][ T6780] loop1: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 242.430356][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430356][ T6780] loop1: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 242.430388][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430388][ T6780] loop1: rw=524288, sector=86032, nr_sectors = 8 limit=40427 [ 242.430414][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430414][ T6780] loop1: rw=524288, sector=86040, nr_sectors = 8 limit=40427 [ 242.430447][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430447][ T6780] loop1: rw=524288, sector=86048, nr_sectors = 8 limit=40427 [ 242.430476][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430476][ T6780] loop1: rw=524288, sector=86056, nr_sectors = 8 limit=40427 [ 242.430505][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430505][ T6780] loop1: rw=524288, sector=86064, nr_sectors = 8 limit=40427 [ 242.430536][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430536][ T6780] loop1: rw=524288, sector=86072, nr_sectors = 8 limit=40427 [ 242.430559][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430559][ T6780] loop1: rw=524288, sector=86080, nr_sectors = 8 limit=40427 [ 242.430582][ T6780] syz.1.20: attempt to access beyond end of device [ 242.430582][ T6780] loop1: rw=524288, sector=86088, nr_sectors = 8 limit=40427 [ 245.137465][ T6838] F2FS-fs (loop3): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 247.268789][ T6125] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 247.273517][ T6125] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 247.291253][ T6125] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 247.291635][ T6125] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 247.291820][ T6125] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 247.439494][ T6780] bio_check_eod: 322924 callbacks suppressed [ 247.441212][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441212][ T6780] loop1: rw=524288, sector=87216, nr_sectors = 8 limit=40427 [ 247.441287][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441287][ T6780] loop1: rw=524288, sector=87224, nr_sectors = 8 limit=40427 [ 247.441336][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441336][ T6780] loop1: rw=524288, sector=87232, nr_sectors = 8 limit=40427 [ 247.441379][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441379][ T6780] loop1: rw=524288, sector=87240, nr_sectors = 8 limit=40427 [ 247.441422][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441422][ T6780] loop1: rw=524288, sector=87248, nr_sectors = 8 limit=40427 [ 247.441458][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441458][ T6780] loop1: rw=524288, sector=87256, nr_sectors = 8 limit=40427 [ 247.441494][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441494][ T6780] loop1: rw=524288, sector=87264, nr_sectors = 8 limit=40427 [ 247.441523][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441523][ T6780] loop1: rw=524288, sector=87272, nr_sectors = 8 limit=40427 [ 247.441551][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441551][ T6780] loop1: rw=524288, sector=87280, nr_sectors = 8 limit=40427 [ 247.441580][ T6780] syz.1.20: attempt to access beyond end of device [ 247.441580][ T6780] loop1: rw=524288, sector=87288, nr_sectors = 8 limit=40427 [ 247.826350][ T6844] chnl_net:caif_netlink_parms(): no params data found [ 248.029474][ T6844] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.030818][ T6844] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.030927][ T6844] bridge_slave_0: entered allmulticast mode [ 248.031366][ T6844] bridge_slave_0: entered promiscuous mode [ 248.032004][ T6844] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.032031][ T6844] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.032086][ T6844] bridge_slave_1: entered allmulticast mode [ 248.032645][ T6844] bridge_slave_1: entered promiscuous mode [ 248.165449][ T6844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 248.166335][ T6844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 248.225321][ T6844] team0: Port device team_slave_0 added [ 248.226065][ T6844] team0: Port device team_slave_1 added [ 248.284695][ T6844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 248.284727][ T6844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 248.284743][ T6844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 248.285890][ T6844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 248.285897][ T6844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 248.285909][ T6844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 248.316084][ T6844] hsr_slave_0: entered promiscuous mode [ 248.316405][ T6844] hsr_slave_1: entered promiscuous mode [ 248.316588][ T6844] debugfs: 'hsr0' already exists in 'hsr' [ 248.316598][ T6844] Cannot create hsr debugfs directory [ 248.637909][ T6844] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 248.652232][ T6844] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 248.661401][ T6844] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 248.671941][ T6844] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 248.793744][ T6844] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.793798][ T6844] bridge0: port 2(bridge_slave_1) entered forwarding state [ 248.793874][ T6844] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.793901][ T6844] bridge0: port 1(bridge_slave_0) entered forwarding state [ 248.810539][ T2414] ieee802154 phy0 wpan0: encryption failed: -22 [ 248.811584][ T2414] ieee802154 phy1 wpan1: encryption failed: -22 [ 248.813550][ T15] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.813970][ T15] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.864886][ T6844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 248.868745][ T6844] 8021q: adding VLAN 0 to HW filter on device team0 [ 248.917971][ T2169] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.918026][ T2169] bridge0: port 1(bridge_slave_0) entered forwarding state [ 248.918542][ T2169] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.918556][ T2169] bridge0: port 2(bridge_slave_1) entered forwarding state [ 249.117669][ T6844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 249.356910][ T6844] veth0_vlan: entered promiscuous mode [ 249.358473][ T6844] veth1_vlan: entered promiscuous mode [ 249.372309][ T6125] Bluetooth: hci4: command tx timeout [ 249.379255][ T6844] veth0_macvtap: entered promiscuous mode [ 249.403108][ T6844] veth1_macvtap: entered promiscuous mode [ 249.406201][ T6844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 249.416242][ T6844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 249.477370][ T15] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.477428][ T15] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.477448][ T15] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.477461][ T15] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.571625][ T2107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 249.571705][ T2107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 249.587891][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 249.587921][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:04:09 executed programs: 8 [ 250.063955][ T6875] loop4: detected capacity change from 0 to 40427 [ 250.095186][ T6875] F2FS-fs (loop4): build fault injection rate: 771 [ 250.100682][ T6875] F2FS-fs (loop4): invalid crc value [ 250.150505][ T6875] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 250.165790][ T6875] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 251.449876][ T6125] Bluetooth: hci4: command tx timeout [ 252.452357][ T6780] bio_check_eod: 310848 callbacks suppressed [ 252.452444][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452444][ T6811] loop2: rw=0, sector=89048, nr_sectors = 8 limit=40427 [ 252.452479][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452479][ T6811] loop2: rw=0, sector=89056, nr_sectors = 8 limit=40427 [ 252.452504][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452504][ T6811] loop2: rw=0, sector=89064, nr_sectors = 8 limit=40427 [ 252.452527][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452527][ T6811] loop2: rw=0, sector=89072, nr_sectors = 8 limit=40427 [ 252.452551][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452551][ T6811] loop2: rw=0, sector=89080, nr_sectors = 8 limit=40427 [ 252.452573][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452573][ T6811] loop2: rw=0, sector=89088, nr_sectors = 8 limit=40427 [ 252.452596][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452596][ T6811] loop2: rw=0, sector=89096, nr_sectors = 8 limit=40427 [ 252.452618][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452618][ T6811] loop2: rw=0, sector=89104, nr_sectors = 8 limit=40427 [ 252.452640][ T6811] syz.2.21: attempt to access beyond end of device [ 252.452640][ T6811] loop2: rw=0, sector=89112, nr_sectors = 8 limit=40427 [ 252.474179][ T6780] syz.1.20: attempt to access beyond end of device [ 252.474179][ T6780] loop1: rw=0, sector=89464, nr_sectors = 8 limit=40427 [ 253.529602][ T6125] Bluetooth: hci4: command tx timeout [ 255.609719][ T6125] Bluetooth: hci4: command tx timeout [ 257.459565][ T6780] bio_check_eod: 312682 callbacks suppressed [ 257.460345][ T6780] syz.1.20: attempt to access beyond end of device [ 257.460345][ T6780] loop1: rw=524288, sector=87328, nr_sectors = 8 limit=40427 [ 257.461136][ T6780] syz.1.20: attempt to access beyond end of device [ 257.461136][ T6780] loop1: rw=524288, sector=87336, nr_sectors = 8 limit=40427 [ 257.461879][ T6780] syz.1.20: attempt to access beyond end of device [ 257.461879][ T6780] loop1: rw=524288, sector=87344, nr_sectors = 8 limit=40427 [ 257.462504][ T6780] syz.1.20: attempt to access beyond end of device [ 257.462504][ T6780] loop1: rw=524288, sector=87352, nr_sectors = 8 limit=40427 [ 257.462532][ T6780] syz.1.20: attempt to access beyond end of device [ 257.462532][ T6780] loop1: rw=524288, sector=87360, nr_sectors = 8 limit=40427 [ 257.462560][ T6780] syz.1.20: attempt to access beyond end of device [ 257.462560][ T6780] loop1: rw=524288, sector=87368, nr_sectors = 8 limit=40427 [ 257.462587][ T6780] syz.1.20: attempt to access beyond end of device [ 257.462587][ T6780] loop1: rw=524288, sector=87376, nr_sectors = 8 limit=40427 [ 257.462613][ T6780] syz.1.20: attempt to access beyond end of device [ 257.462613][ T6780] loop1: rw=524288, sector=87384, nr_sectors = 8 limit=40427 [ 257.462639][ T6780] syz.1.20: attempt to access beyond end of device [ 257.462639][ T6780] loop1: rw=524288, sector=87392, nr_sectors = 8 limit=40427 [ 257.462671][ T6780] syz.1.20: attempt to access beyond end of device [ 257.462671][ T6780] loop1: rw=524288, sector=87400, nr_sectors = 8 limit=40427 [ 262.469508][ T6838] bio_check_eod: 305929 callbacks suppressed [ 262.470248][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470248][ T6838] loop3: rw=0, sector=87056, nr_sectors = 8 limit=40427 [ 262.470310][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470310][ T6838] loop3: rw=0, sector=87064, nr_sectors = 8 limit=40427 [ 262.470346][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470346][ T6838] loop3: rw=0, sector=87072, nr_sectors = 8 limit=40427 [ 262.470373][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470373][ T6838] loop3: rw=0, sector=87080, nr_sectors = 8 limit=40427 [ 262.470399][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470399][ T6838] loop3: rw=0, sector=87088, nr_sectors = 8 limit=40427 [ 262.470428][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470428][ T6838] loop3: rw=0, sector=87096, nr_sectors = 8 limit=40427 [ 262.470456][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470456][ T6838] loop3: rw=0, sector=87104, nr_sectors = 8 limit=40427 [ 262.470481][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470481][ T6838] loop3: rw=0, sector=87112, nr_sectors = 8 limit=40427 [ 262.470512][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470512][ T6838] loop3: rw=0, sector=87120, nr_sectors = 8 limit=40427 [ 262.470535][ T6838] syz.3.22: attempt to access beyond end of device [ 262.470535][ T6838] loop3: rw=0, sector=87128, nr_sectors = 8 limit=40427 [ 264.941000][ T52] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 264.942636][ T52] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 264.943999][ T52] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 264.945999][ T52] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 264.946250][ T52] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 265.394412][ T6886] chnl_net:caif_netlink_parms(): no params data found [ 265.692885][ T6886] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.692926][ T6886] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.693014][ T6886] bridge_slave_0: entered allmulticast mode [ 265.693472][ T6886] bridge_slave_0: entered promiscuous mode [ 265.694111][ T6886] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.694134][ T6886] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.694194][ T6886] bridge_slave_1: entered allmulticast mode [ 265.694614][ T6886] bridge_slave_1: entered promiscuous mode [ 265.792484][ T6886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 265.795011][ T6886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 266.055026][ T6886] team0: Port device team_slave_0 added [ 266.055817][ T6886] team0: Port device team_slave_1 added [ 266.093169][ T6886] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 266.094442][ T6886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 266.094488][ T6886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 266.095060][ T6886] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 266.095074][ T6886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 266.095093][ T6886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 266.198859][ T6886] hsr_slave_0: entered promiscuous mode [ 266.200329][ T6886] hsr_slave_1: entered promiscuous mode [ 266.201649][ T6886] debugfs: 'hsr0' already exists in 'hsr' [ 266.209479][ T6886] Cannot create hsr debugfs directory [ 266.285185][ T6886] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 266.323084][ T6886] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 266.349869][ T6886] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 266.352118][ T6886] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 266.490363][ T6886] 8021q: adding VLAN 0 to HW filter on device bond0 [ 266.495342][ T6886] 8021q: adding VLAN 0 to HW filter on device team0 [ 266.506159][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.506207][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 266.506721][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 266.506743][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 266.796696][ T6886] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 266.969761][ T52] Bluetooth: hci5: command tx timeout [ 267.039365][ T6886] veth0_vlan: entered promiscuous mode [ 267.055898][ T6886] veth1_vlan: entered promiscuous mode [ 267.084943][ T6886] veth0_macvtap: entered promiscuous mode [ 267.090769][ T6886] veth1_macvtap: entered promiscuous mode [ 267.095014][ T6886] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 267.142531][ T6886] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 267.145462][ T42] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.145609][ T42] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.145688][ T42] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.145736][ T42] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.177521][ T4657] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.177535][ T4657] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 267.195011][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.195046][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:04:27 executed programs: 9 [ 267.479439][ T6811] bio_check_eod: 287102 callbacks suppressed [ 267.480505][ T6811] syz.2.21: attempt to access beyond end of device [ 267.480505][ T6811] loop2: rw=0, sector=87352, nr_sectors = 8 limit=40427 [ 267.482577][ T6811] syz.2.21: attempt to access beyond end of device [ 267.482577][ T6811] loop2: rw=0, sector=87360, nr_sectors = 8 limit=40427 [ 267.484560][ T6811] syz.2.21: attempt to access beyond end of device [ 267.484560][ T6811] loop2: rw=0, sector=87368, nr_sectors = 8 limit=40427 [ 267.485057][ T6838] syz.3.22: attempt to access beyond end of device [ 267.485057][ T6838] loop3: rw=0, sector=89408, nr_sectors = 8 limit=40427 [ 267.485099][ T6838] syz.3.22: attempt to access beyond end of device [ 267.485099][ T6838] loop3: rw=0, sector=89416, nr_sectors = 8 limit=40427 [ 267.485126][ T6838] syz.3.22: attempt to access beyond end of device [ 267.485126][ T6838] loop3: rw=0, sector=89424, nr_sectors = 8 limit=40427 [ 267.485153][ T6838] syz.3.22: attempt to access beyond end of device [ 267.485153][ T6838] loop3: rw=0, sector=89432, nr_sectors = 8 limit=40427 [ 267.485177][ T6838] syz.3.22: attempt to access beyond end of device [ 267.485177][ T6838] loop3: rw=0, sector=89440, nr_sectors = 8 limit=40427 [ 267.485200][ T6838] syz.3.22: attempt to access beyond end of device [ 267.485200][ T6838] loop3: rw=0, sector=89448, nr_sectors = 8 limit=40427 [ 267.485224][ T6838] syz.3.22: attempt to access beyond end of device [ 267.485224][ T6838] loop3: rw=0, sector=89456, nr_sectors = 8 limit=40427 [ 267.806346][ T6917] loop5: detected capacity change from 0 to 40427 [ 267.808996][ T6917] F2FS-fs (loop5): build fault injection rate: 771 [ 267.833800][ T6917] F2FS-fs (loop5): invalid crc value [ 267.900895][ T6917] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 267.919841][ T6917] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 268.132439][ T6875] F2FS-fs (loop4): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 269.049752][ T52] Bluetooth: hci5: command tx timeout [ 271.129587][ T52] Bluetooth: hci5: command tx timeout [ 272.497673][ T6838] bio_check_eod: 311670 callbacks suppressed [ 272.498727][ T6838] syz.3.22: attempt to access beyond end of device [ 272.498727][ T6838] loop3: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 272.501032][ T6838] syz.3.22: attempt to access beyond end of device [ 272.501032][ T6838] loop3: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 272.509935][ T6780] syz.1.20: attempt to access beyond end of device [ 272.509935][ T6780] loop1: rw=0, sector=88408, nr_sectors = 8 limit=40427 [ 272.512171][ T6780] syz.1.20: attempt to access beyond end of device [ 272.512171][ T6780] loop1: rw=0, sector=88416, nr_sectors = 8 limit=40427 [ 272.514261][ T6780] syz.1.20: attempt to access beyond end of device [ 272.514261][ T6780] loop1: rw=0, sector=88424, nr_sectors = 8 limit=40427 [ 272.516385][ T6780] syz.1.20: attempt to access beyond end of device [ 272.516385][ T6780] loop1: rw=0, sector=88432, nr_sectors = 8 limit=40427 [ 272.518475][ T6780] syz.1.20: attempt to access beyond end of device [ 272.518475][ T6780] loop1: rw=0, sector=88440, nr_sectors = 8 limit=40427 [ 272.518480][ T6875] syz.4.23: attempt to access beyond end of device [ 272.518480][ T6875] loop4: rw=524288, sector=87704, nr_sectors = 8 limit=40427 [ 272.518580][ T6875] syz.4.23: attempt to access beyond end of device [ 272.518580][ T6875] loop4: rw=524288, sector=87712, nr_sectors = 8 limit=40427 [ 272.518627][ T6875] syz.4.23: attempt to access beyond end of device [ 272.518627][ T6875] loop4: rw=524288, sector=87720, nr_sectors = 8 limit=40427 [ 273.209467][ T52] Bluetooth: hci5: command tx timeout [ 277.504843][ T6875] bio_check_eod: 326254 callbacks suppressed [ 277.505845][ T6875] syz.4.23: attempt to access beyond end of device [ 277.505845][ T6875] loop4: rw=0, sector=86416, nr_sectors = 8 limit=40427 [ 277.508236][ T6875] syz.4.23: attempt to access beyond end of device [ 277.508236][ T6875] loop4: rw=0, sector=86424, nr_sectors = 8 limit=40427 [ 277.509666][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509666][ T6838] loop3: rw=0, sector=87136, nr_sectors = 8 limit=40427 [ 277.509699][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509699][ T6838] loop3: rw=0, sector=87144, nr_sectors = 8 limit=40427 [ 277.509733][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509733][ T6838] loop3: rw=0, sector=87152, nr_sectors = 8 limit=40427 [ 277.509757][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509757][ T6838] loop3: rw=0, sector=87160, nr_sectors = 8 limit=40427 [ 277.509780][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509780][ T6838] loop3: rw=0, sector=87168, nr_sectors = 8 limit=40427 [ 277.509803][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509803][ T6838] loop3: rw=0, sector=87176, nr_sectors = 8 limit=40427 [ 277.509825][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509825][ T6838] loop3: rw=0, sector=87184, nr_sectors = 8 limit=40427 [ 277.509847][ T6838] syz.3.22: attempt to access beyond end of device [ 277.509847][ T6838] loop3: rw=0, sector=87192, nr_sectors = 8 limit=40427 [ 282.519632][ T6875] bio_check_eod: 327150 callbacks suppressed [ 282.519912][ T6875] syz.4.23: attempt to access beyond end of device [ 282.519912][ T6875] loop4: rw=0, sector=86464, nr_sectors = 8 limit=40427 [ 282.519982][ T6875] syz.4.23: attempt to access beyond end of device [ 282.519982][ T6875] loop4: rw=0, sector=86472, nr_sectors = 8 limit=40427 [ 282.520021][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520021][ T6875] loop4: rw=0, sector=86480, nr_sectors = 8 limit=40427 [ 282.520053][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520053][ T6875] loop4: rw=0, sector=86488, nr_sectors = 8 limit=40427 [ 282.520082][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520082][ T6875] loop4: rw=0, sector=86496, nr_sectors = 8 limit=40427 [ 282.520110][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520110][ T6875] loop4: rw=0, sector=86504, nr_sectors = 8 limit=40427 [ 282.520137][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520137][ T6875] loop4: rw=0, sector=86512, nr_sectors = 8 limit=40427 [ 282.520164][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520164][ T6875] loop4: rw=0, sector=86520, nr_sectors = 8 limit=40427 [ 282.520190][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520190][ T6875] loop4: rw=0, sector=86528, nr_sectors = 8 limit=40427 [ 282.520216][ T6875] syz.4.23: attempt to access beyond end of device [ 282.520216][ T6875] loop4: rw=0, sector=86536, nr_sectors = 8 limit=40427 [ 283.922937][ T6125] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 283.940255][ T6125] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 283.943137][ T6125] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 283.952053][ T6125] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 283.960633][ T6125] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 284.502773][ T6923] chnl_net:caif_netlink_parms(): no params data found [ 284.883956][ T6923] bridge0: port 1(bridge_slave_0) entered blocking state [ 284.884003][ T6923] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.884075][ T6923] bridge_slave_0: entered allmulticast mode [ 284.884528][ T6923] bridge_slave_0: entered promiscuous mode [ 284.885145][ T6923] bridge0: port 2(bridge_slave_1) entered blocking state [ 284.885164][ T6923] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.885213][ T6923] bridge_slave_1: entered allmulticast mode [ 284.885638][ T6923] bridge_slave_1: entered promiscuous mode [ 284.961349][ T6923] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 284.962308][ T6923] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 285.036709][ T6923] team0: Port device team_slave_0 added [ 285.037473][ T6923] team0: Port device team_slave_1 added [ 285.180569][ T6923] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 285.180600][ T6923] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 285.180629][ T6923] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 285.181184][ T6923] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 285.181198][ T6923] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 285.181217][ T6923] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 285.415673][ T6923] hsr_slave_0: entered promiscuous mode [ 285.415997][ T6923] hsr_slave_1: entered promiscuous mode [ 285.416177][ T6923] debugfs: 'hsr0' already exists in 'hsr' [ 285.416186][ T6923] Cannot create hsr debugfs directory [ 286.010928][ T6125] Bluetooth: hci6: command tx timeout [ 286.083085][ T6923] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 286.103901][ T6923] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 286.106973][ T6923] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 286.109551][ T6923] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 286.260856][ T6923] 8021q: adding VLAN 0 to HW filter on device bond0 [ 286.267223][ T6923] 8021q: adding VLAN 0 to HW filter on device team0 [ 286.287924][ T6923] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 286.299612][ T6923] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 286.302944][ T4657] bridge0: port 1(bridge_slave_0) entered blocking state [ 286.302988][ T4657] bridge0: port 1(bridge_slave_0) entered forwarding state [ 286.303505][ T4657] bridge0: port 2(bridge_slave_1) entered blocking state [ 286.303525][ T4657] bridge0: port 2(bridge_slave_1) entered forwarding state [ 286.506134][ T6923] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 286.786058][ T6923] veth0_vlan: entered promiscuous mode [ 286.825782][ T6923] veth1_vlan: entered promiscuous mode [ 286.847603][ T6923] veth0_macvtap: entered promiscuous mode [ 286.860858][ T6923] veth1_macvtap: entered promiscuous mode [ 286.865292][ T6923] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 286.874543][ T6923] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 286.940330][ T2169] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 286.947054][ T2169] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 286.947116][ T2169] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 286.947294][ T2169] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.033602][ T4657] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 287.035594][ T4657] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 287.126295][ T4657] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 287.126331][ T4657] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:04:47 executed programs: 10 [ 287.531683][ T6838] bio_check_eod: 282110 callbacks suppressed [ 287.532474][ T6838] syz.3.22: attempt to access beyond end of device [ 287.532474][ T6838] loop3: rw=0, sector=86520, nr_sectors = 8 limit=40427 [ 287.533234][ T6838] syz.3.22: attempt to access beyond end of device [ 287.533234][ T6838] loop3: rw=0, sector=86528, nr_sectors = 8 limit=40427 [ 287.533989][ T6838] syz.3.22: attempt to access beyond end of device [ 287.533989][ T6838] loop3: rw=0, sector=86536, nr_sectors = 8 limit=40427 [ 287.534722][ T6838] syz.3.22: attempt to access beyond end of device [ 287.534722][ T6838] loop3: rw=0, sector=86544, nr_sectors = 8 limit=40427 [ 287.535439][ T6838] syz.3.22: attempt to access beyond end of device [ 287.535439][ T6838] loop3: rw=0, sector=86552, nr_sectors = 8 limit=40427 [ 287.535463][ T6838] syz.3.22: attempt to access beyond end of device [ 287.535463][ T6838] loop3: rw=0, sector=86560, nr_sectors = 8 limit=40427 [ 287.535487][ T6838] syz.3.22: attempt to access beyond end of device [ 287.535487][ T6838] loop3: rw=0, sector=86568, nr_sectors = 8 limit=40427 [ 287.535509][ T6838] syz.3.22: attempt to access beyond end of device [ 287.535509][ T6838] loop3: rw=0, sector=86576, nr_sectors = 8 limit=40427 [ 287.535536][ T6838] syz.3.22: attempt to access beyond end of device [ 287.535536][ T6838] loop3: rw=0, sector=86584, nr_sectors = 8 limit=40427 [ 287.535558][ T6838] syz.3.22: attempt to access beyond end of device [ 287.535558][ T6838] loop3: rw=0, sector=86592, nr_sectors = 8 limit=40427 [ 287.794111][ T6954] loop6: detected capacity change from 0 to 40427 [ 287.817649][ T6954] F2FS-fs (loop6): build fault injection rate: 771 [ 287.822869][ T6954] F2FS-fs (loop6): invalid crc value [ 287.911338][ T6954] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 287.913537][ T6954] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 288.090007][ T6125] Bluetooth: hci6: command tx timeout [ 288.096250][ T6923] CPU: 1 UID: 0 PID: 6923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 288.096266][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 288.096272][ T6923] Call trace: [ 288.096275][ T6923] show_stack+0x2c/0x3c (C) [ 288.096290][ T6923] __dump_stack+0x30/0x40 [ 288.096297][ T6923] dump_stack_lvl+0xd8/0x12c [ 288.096303][ T6923] dump_stack+0x1c/0x28 [ 288.096308][ T6923] f2fs_handle_critical_error+0x34c/0x4b8 [ 288.096316][ T6923] f2fs_stop_checkpoint+0x5c/0x70 [ 288.096322][ T6923] f2fs_write_end_io+0x768/0xa70 [ 288.096329][ T6923] bio_endio+0x858/0x894 [ 288.096336][ T6923] submit_bio_noacct+0x158/0x177c [ 288.096342][ T6923] submit_bio+0x3b4/0x550 [ 288.096347][ T6923] f2fs_submit_write_bio+0x13c/0x324 [ 288.096353][ T6923] __submit_merged_bio+0x254/0x704 [ 288.096359][ T6923] __submit_merged_write_cond+0x23c/0x4ac [ 288.096365][ T6923] f2fs_write_data_pages+0x1d28/0x2634 [ 288.096372][ T6923] do_writepages+0x270/0x468 [ 288.096380][ T6923] filemap_fdatawrite+0x14c/0x1f4 [ 288.096387][ T6923] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 288.096392][ T6923] f2fs_write_checkpoint+0x690/0x16a0 [ 288.096398][ T6923] kill_f2fs_super+0x21c/0x584 [ 288.096404][ T6923] deactivate_locked_super+0xc4/0x12c [ 288.096409][ T6923] deactivate_super+0xe0/0x100 [ 288.096414][ T6923] cleanup_mnt+0x31c/0x3ac [ 288.096420][ T6923] __cleanup_mnt+0x20/0x30 [ 288.096425][ T6923] task_work_run+0x1dc/0x260 [ 288.096436][ T6923] exit_to_user_mode_loop+0xfc/0x168 [ 288.096444][ T6923] el0_svc+0x170/0x254 [ 288.096452][ T6923] el0t_64_sync_handler+0x84/0x12c [ 288.096459][ T6923] el0t_64_sync+0x198/0x19c [ 288.096488][ T6923] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 289.019180][ T6960] loop6: detected capacity change from 0 to 40427 [ 289.069498][ T6960] F2FS-fs (loop6): build fault injection rate: 771 [ 289.083563][ T6960] F2FS-fs (loop6): invalid crc value [ 289.212882][ T6960] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 289.229585][ T6960] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 289.555702][ T6923] CPU: 1 UID: 0 PID: 6923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 289.555724][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 289.555729][ T6923] Call trace: [ 289.555732][ T6923] show_stack+0x2c/0x3c (C) [ 289.555749][ T6923] __dump_stack+0x30/0x40 [ 289.555759][ T6923] dump_stack_lvl+0xd8/0x12c [ 289.555766][ T6923] dump_stack+0x1c/0x28 [ 289.555771][ T6923] f2fs_handle_critical_error+0x34c/0x4b8 [ 289.555779][ T6923] f2fs_stop_checkpoint+0x5c/0x70 [ 289.555785][ T6923] f2fs_write_end_io+0x768/0xa70 [ 289.555791][ T6923] bio_endio+0x858/0x894 [ 289.555799][ T6923] submit_bio_noacct+0x158/0x177c [ 289.555805][ T6923] submit_bio+0x3b4/0x550 [ 289.555810][ T6923] f2fs_submit_write_bio+0x13c/0x324 [ 289.555816][ T6923] __submit_merged_bio+0x254/0x704 [ 289.555822][ T6923] __submit_merged_write_cond+0x23c/0x4ac [ 289.555828][ T6923] f2fs_write_data_pages+0x1d28/0x2634 [ 289.555835][ T6923] do_writepages+0x270/0x468 [ 289.555843][ T6923] filemap_fdatawrite+0x14c/0x1f4 [ 289.555850][ T6923] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 289.555855][ T6923] f2fs_write_checkpoint+0x690/0x16a0 [ 289.555861][ T6923] kill_f2fs_super+0x21c/0x584 [ 289.555867][ T6923] deactivate_locked_super+0xc4/0x12c [ 289.555873][ T6923] deactivate_super+0xe0/0x100 [ 289.555877][ T6923] cleanup_mnt+0x31c/0x3ac [ 289.555883][ T6923] __cleanup_mnt+0x20/0x30 [ 289.555888][ T6923] task_work_run+0x1dc/0x260 [ 289.555895][ T6923] exit_to_user_mode_loop+0xfc/0x168 [ 289.555901][ T6923] el0_svc+0x170/0x254 [ 289.555910][ T6923] el0t_64_sync_handler+0x84/0x12c [ 289.555917][ T6923] el0t_64_sync+0x198/0x19c [ 289.555944][ T6923] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 290.179499][ T6125] Bluetooth: hci6: command tx timeout [ 290.364243][ T6966] loop6: detected capacity change from 0 to 40427 [ 290.366212][ T6966] F2FS-fs (loop6): build fault injection rate: 771 [ 290.392465][ T6966] F2FS-fs (loop6): invalid crc value [ 290.446388][ T6966] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 290.459566][ T6966] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 290.709936][ T6923] CPU: 1 UID: 0 PID: 6923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 290.709959][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 290.709965][ T6923] Call trace: [ 290.709968][ T6923] show_stack+0x2c/0x3c (C) [ 290.709986][ T6923] __dump_stack+0x30/0x40 [ 290.709996][ T6923] dump_stack_lvl+0xd8/0x12c [ 290.710003][ T6923] dump_stack+0x1c/0x28 [ 290.710008][ T6923] f2fs_handle_critical_error+0x34c/0x4b8 [ 290.710017][ T6923] f2fs_stop_checkpoint+0x5c/0x70 [ 290.710022][ T6923] f2fs_write_end_io+0x768/0xa70 [ 290.710029][ T6923] bio_endio+0x858/0x894 [ 290.710036][ T6923] submit_bio_noacct+0x158/0x177c [ 290.710042][ T6923] submit_bio+0x3b4/0x550 [ 290.710048][ T6923] f2fs_submit_write_bio+0x13c/0x324 [ 290.710054][ T6923] __submit_merged_bio+0x254/0x704 [ 290.710060][ T6923] __submit_merged_write_cond+0x23c/0x4ac [ 290.710066][ T6923] f2fs_write_data_pages+0x1d28/0x2634 [ 290.710072][ T6923] do_writepages+0x270/0x468 [ 290.710080][ T6923] filemap_fdatawrite+0x14c/0x1f4 [ 290.710087][ T6923] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 290.710093][ T6923] f2fs_write_checkpoint+0x690/0x16a0 [ 290.710099][ T6923] kill_f2fs_super+0x21c/0x584 [ 290.710105][ T6923] deactivate_locked_super+0xc4/0x12c [ 290.710110][ T6923] deactivate_super+0xe0/0x100 [ 290.710115][ T6923] cleanup_mnt+0x31c/0x3ac [ 290.710121][ T6923] __cleanup_mnt+0x20/0x30 [ 290.710126][ T6923] task_work_run+0x1dc/0x260 [ 290.710132][ T6923] exit_to_user_mode_loop+0xfc/0x168 [ 290.710139][ T6923] el0_svc+0x170/0x254 [ 290.710147][ T6923] el0t_64_sync_handler+0x84/0x12c [ 290.710154][ T6923] el0t_64_sync+0x198/0x19c [ 290.710178][ T6923] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 291.198152][ T6917] F2FS-fs (loop5): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 291.504631][ T6972] loop6: detected capacity change from 0 to 40427 [ 291.529294][ T6972] F2FS-fs (loop6): build fault injection rate: 771 [ 291.569766][ T6972] F2FS-fs (loop6): invalid crc value [ 291.620528][ T6972] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 291.679478][ T6972] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 291.992099][ T6923] CPU: 1 UID: 0 PID: 6923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 291.992124][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 291.992129][ T6923] Call trace: [ 291.992133][ T6923] show_stack+0x2c/0x3c (C) [ 291.992149][ T6923] __dump_stack+0x30/0x40 [ 291.992159][ T6923] dump_stack_lvl+0xd8/0x12c [ 291.992166][ T6923] dump_stack+0x1c/0x28 [ 291.992172][ T6923] f2fs_handle_critical_error+0x34c/0x4b8 [ 291.992180][ T6923] f2fs_stop_checkpoint+0x5c/0x70 [ 291.992186][ T6923] f2fs_write_end_io+0x768/0xa70 [ 291.992192][ T6923] bio_endio+0x858/0x894 [ 291.992200][ T6923] submit_bio_noacct+0x158/0x177c [ 291.992205][ T6923] submit_bio+0x3b4/0x550 [ 291.992210][ T6923] f2fs_submit_write_bio+0x13c/0x324 [ 291.992216][ T6923] __submit_merged_bio+0x254/0x704 [ 291.992222][ T6923] __submit_merged_write_cond+0x23c/0x4ac [ 291.992228][ T6923] f2fs_write_data_pages+0x1d28/0x2634 [ 291.992235][ T6923] do_writepages+0x270/0x468 [ 291.992242][ T6923] filemap_fdatawrite+0x14c/0x1f4 [ 291.992249][ T6923] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 291.992254][ T6923] f2fs_write_checkpoint+0x690/0x16a0 [ 291.992260][ T6923] kill_f2fs_super+0x21c/0x584 [ 291.992266][ T6923] deactivate_locked_super+0xc4/0x12c [ 291.992271][ T6923] deactivate_super+0xe0/0x100 [ 291.992276][ T6923] cleanup_mnt+0x31c/0x3ac [ 291.992281][ T6923] __cleanup_mnt+0x20/0x30 [ 291.992286][ T6923] task_work_run+0x1dc/0x260 [ 291.992292][ T6923] exit_to_user_mode_loop+0xfc/0x168 [ 291.992299][ T6923] el0_svc+0x170/0x254 [ 291.992307][ T6923] el0t_64_sync_handler+0x84/0x12c [ 291.992313][ T6923] el0t_64_sync+0x198/0x19c [ 291.992338][ T6923] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 292.259556][ T6125] Bluetooth: hci6: command tx timeout [ 292.539666][ T6875] bio_check_eod: 290017 callbacks suppressed [ 292.540657][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540657][ T6875] loop4: rw=0, sector=88248, nr_sectors = 8 limit=40427 [ 292.540707][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540707][ T6875] loop4: rw=0, sector=88256, nr_sectors = 8 limit=40427 [ 292.540748][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540748][ T6875] loop4: rw=0, sector=88264, nr_sectors = 8 limit=40427 [ 292.540778][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540778][ T6875] loop4: rw=0, sector=88272, nr_sectors = 8 limit=40427 [ 292.540806][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540806][ T6875] loop4: rw=0, sector=88280, nr_sectors = 8 limit=40427 [ 292.540831][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540831][ T6875] loop4: rw=0, sector=88288, nr_sectors = 8 limit=40427 [ 292.540858][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540858][ T6875] loop4: rw=0, sector=88296, nr_sectors = 8 limit=40427 [ 292.540881][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540881][ T6875] loop4: rw=0, sector=88304, nr_sectors = 8 limit=40427 [ 292.540904][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540904][ T6875] loop4: rw=0, sector=88312, nr_sectors = 8 limit=40427 [ 292.540926][ T6875] syz.4.23: attempt to access beyond end of device [ 292.540926][ T6875] loop4: rw=0, sector=88320, nr_sectors = 8 limit=40427 [ 292.943675][ T6978] loop6: detected capacity change from 0 to 40427 [ 292.975370][ T6978] F2FS-fs (loop6): build fault injection rate: 771 [ 292.998814][ T6978] F2FS-fs (loop6): invalid crc value [ 293.065042][ T6978] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 293.075362][ T6978] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 1970/01/01 00:04:53 executed programs: 15 [ 293.429686][ T6923] CPU: 1 UID: 0 PID: 6923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 293.429708][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 293.429714][ T6923] Call trace: [ 293.429717][ T6923] show_stack+0x2c/0x3c (C) [ 293.429734][ T6923] __dump_stack+0x30/0x40 [ 293.429744][ T6923] dump_stack_lvl+0xd8/0x12c [ 293.429752][ T6923] dump_stack+0x1c/0x28 [ 293.429759][ T6923] f2fs_handle_critical_error+0x34c/0x4b8 [ 293.429769][ T6923] f2fs_stop_checkpoint+0x5c/0x70 [ 293.429774][ T6923] f2fs_write_end_io+0x768/0xa70 [ 293.429781][ T6923] bio_endio+0x858/0x894 [ 293.429789][ T6923] submit_bio_noacct+0x158/0x177c [ 293.429794][ T6923] submit_bio+0x3b4/0x550 [ 293.429800][ T6923] f2fs_submit_write_bio+0x13c/0x324 [ 293.429806][ T6923] __submit_merged_bio+0x254/0x704 [ 293.429811][ T6923] __submit_merged_write_cond+0x23c/0x4ac [ 293.429817][ T6923] f2fs_write_data_pages+0x1d28/0x2634 [ 293.429824][ T6923] do_writepages+0x270/0x468 [ 293.429831][ T6923] filemap_fdatawrite+0x14c/0x1f4 [ 293.429838][ T6923] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 293.429843][ T6923] f2fs_write_checkpoint+0x690/0x16a0 [ 293.429848][ T6923] kill_f2fs_super+0x21c/0x584 [ 293.429855][ T6923] deactivate_locked_super+0xc4/0x12c [ 293.429860][ T6923] deactivate_super+0xe0/0x100 [ 293.429864][ T6923] cleanup_mnt+0x31c/0x3ac [ 293.429870][ T6923] __cleanup_mnt+0x20/0x30 [ 293.429875][ T6923] task_work_run+0x1dc/0x260 [ 293.429881][ T6923] exit_to_user_mode_loop+0xfc/0x168 [ 293.429888][ T6923] el0_svc+0x170/0x254 [ 293.429895][ T6923] el0t_64_sync_handler+0x84/0x12c [ 293.429902][ T6923] el0t_64_sync+0x198/0x19c [ 293.429929][ T6923] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 294.530347][ T6984] loop6: detected capacity change from 0 to 40427 [ 294.539814][ T6984] F2FS-fs (loop6): build fault injection rate: 771 [ 294.540479][ T6984] F2FS-fs (loop6): invalid crc value [ 294.621085][ T6984] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 294.669673][ T6984] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 294.913681][ T6923] CPU: 1 UID: 0 PID: 6923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 294.913705][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 294.913710][ T6923] Call trace: [ 294.913714][ T6923] show_stack+0x2c/0x3c (C) [ 294.913730][ T6923] __dump_stack+0x30/0x40 [ 294.913740][ T6923] dump_stack_lvl+0xd8/0x12c [ 294.913746][ T6923] dump_stack+0x1c/0x28 [ 294.913751][ T6923] f2fs_handle_critical_error+0x34c/0x4b8 [ 294.913761][ T6923] f2fs_stop_checkpoint+0x5c/0x70 [ 294.913766][ T6923] f2fs_write_end_io+0x768/0xa70 [ 294.913774][ T6923] bio_endio+0x858/0x894 [ 294.913782][ T6923] submit_bio_noacct+0x158/0x177c [ 294.913788][ T6923] submit_bio+0x3b4/0x550 [ 294.913793][ T6923] f2fs_submit_write_bio+0x13c/0x324 [ 294.913799][ T6923] __submit_merged_bio+0x254/0x704 [ 294.913806][ T6923] __submit_merged_write_cond+0x23c/0x4ac [ 294.913812][ T6923] f2fs_write_data_pages+0x1d28/0x2634 [ 294.913818][ T6923] do_writepages+0x270/0x468 [ 294.913826][ T6923] filemap_fdatawrite+0x14c/0x1f4 [ 294.913834][ T6923] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 294.913840][ T6923] f2fs_write_checkpoint+0x690/0x16a0 [ 294.913845][ T6923] kill_f2fs_super+0x21c/0x584 [ 294.913852][ T6923] deactivate_locked_super+0xc4/0x12c [ 294.913858][ T6923] deactivate_super+0xe0/0x100 [ 294.913863][ T6923] cleanup_mnt+0x31c/0x3ac [ 294.913869][ T6923] __cleanup_mnt+0x20/0x30 [ 294.913874][ T6923] task_work_run+0x1dc/0x260 [ 294.913881][ T6923] exit_to_user_mode_loop+0xfc/0x168 [ 294.913888][ T6923] el0_svc+0x170/0x254 [ 294.913897][ T6923] el0t_64_sync_handler+0x84/0x12c [ 294.913904][ T6923] el0t_64_sync+0x198/0x19c [ 294.913938][ T6923] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 296.029074][ T6990] loop6: detected capacity change from 0 to 40427 [ 296.094806][ T6990] F2FS-fs (loop6): build fault injection rate: 771 [ 296.095811][ T6990] F2FS-fs (loop6): invalid crc value [ 296.200036][ T6990] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 296.209535][ T6990] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 297.557910][ T6838] bio_check_eod: 324374 callbacks suppressed [ 297.557969][ T6838] syz.3.22: attempt to access beyond end of device [ 297.557969][ T6838] loop3: rw=0, sector=87264, nr_sectors = 8 limit=40427 [ 297.558028][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558028][ T6838] loop3: rw=0, sector=87272, nr_sectors = 8 limit=40427 [ 297.558069][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558069][ T6838] loop3: rw=0, sector=87280, nr_sectors = 8 limit=40427 [ 297.558102][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558102][ T6838] loop3: rw=0, sector=87288, nr_sectors = 8 limit=40427 [ 297.558132][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558132][ T6838] loop3: rw=0, sector=87296, nr_sectors = 8 limit=40427 [ 297.558161][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558161][ T6838] loop3: rw=0, sector=87304, nr_sectors = 8 limit=40427 [ 297.558188][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558188][ T6838] loop3: rw=0, sector=87312, nr_sectors = 8 limit=40427 [ 297.558214][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558214][ T6838] loop3: rw=0, sector=87320, nr_sectors = 8 limit=40427 [ 297.558240][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558240][ T6838] loop3: rw=0, sector=87328, nr_sectors = 8 limit=40427 [ 297.558266][ T6838] syz.3.22: attempt to access beyond end of device [ 297.558266][ T6838] loop3: rw=0, sector=87336, nr_sectors = 8 limit=40427 [ 302.092904][ T6125] Bluetooth: hci0: command 0x0406 tx timeout [ 302.559801][ T6875] bio_check_eod: 324634 callbacks suppressed [ 302.561046][ T6875] syz.4.23: attempt to access beyond end of device [ 302.561046][ T6875] loop4: rw=0, sector=87456, nr_sectors = 8 limit=40427 [ 302.562225][ T6875] syz.4.23: attempt to access beyond end of device [ 302.562225][ T6875] loop4: rw=0, sector=87464, nr_sectors = 8 limit=40427 [ 302.563307][ T6875] syz.4.23: attempt to access beyond end of device [ 302.563307][ T6875] loop4: rw=0, sector=87472, nr_sectors = 8 limit=40427 [ 302.564339][ T6875] syz.4.23: attempt to access beyond end of device [ 302.564339][ T6875] loop4: rw=0, sector=87480, nr_sectors = 8 limit=40427 [ 302.565297][ T6875] syz.4.23: attempt to access beyond end of device [ 302.565297][ T6875] loop4: rw=0, sector=87488, nr_sectors = 8 limit=40427 [ 302.566189][ T6875] syz.4.23: attempt to access beyond end of device [ 302.566189][ T6875] loop4: rw=0, sector=87496, nr_sectors = 8 limit=40427 [ 302.567021][ T6875] syz.4.23: attempt to access beyond end of device [ 302.567021][ T6875] loop4: rw=0, sector=87504, nr_sectors = 8 limit=40427 [ 302.567774][ T6875] syz.4.23: attempt to access beyond end of device [ 302.567774][ T6875] loop4: rw=0, sector=87512, nr_sectors = 8 limit=40427 [ 302.568515][ T6875] syz.4.23: attempt to access beyond end of device [ 302.568515][ T6875] loop4: rw=0, sector=87520, nr_sectors = 8 limit=40427 [ 302.569222][ T6875] syz.4.23: attempt to access beyond end of device [ 302.569222][ T6875] loop4: rw=0, sector=87528, nr_sectors = 8 limit=40427 [ 307.569611][ T6875] bio_check_eod: 328405 callbacks suppressed [ 307.570485][ T6875] syz.4.23: attempt to access beyond end of device [ 307.570485][ T6875] loop4: rw=524288, sector=87896, nr_sectors = 8 limit=40427 [ 307.571281][ T6875] syz.4.23: attempt to access beyond end of device [ 307.571281][ T6875] loop4: rw=524288, sector=87904, nr_sectors = 8 limit=40427 [ 307.572010][ T6875] syz.4.23: attempt to access beyond end of device [ 307.572010][ T6875] loop4: rw=524288, sector=87912, nr_sectors = 8 limit=40427 [ 307.572735][ T6875] syz.4.23: attempt to access beyond end of device [ 307.572735][ T6875] loop4: rw=524288, sector=87920, nr_sectors = 8 limit=40427 [ 307.573450][ T6875] syz.4.23: attempt to access beyond end of device [ 307.573450][ T6875] loop4: rw=524288, sector=87928, nr_sectors = 8 limit=40427 [ 307.574225][ T6875] syz.4.23: attempt to access beyond end of device [ 307.574225][ T6875] loop4: rw=524288, sector=87936, nr_sectors = 8 limit=40427 [ 307.574919][ T6875] syz.4.23: attempt to access beyond end of device [ 307.574919][ T6875] loop4: rw=524288, sector=87944, nr_sectors = 8 limit=40427 [ 307.575639][ T6875] syz.4.23: attempt to access beyond end of device [ 307.575639][ T6875] loop4: rw=524288, sector=87952, nr_sectors = 8 limit=40427 [ 307.576369][ T6875] syz.4.23: attempt to access beyond end of device [ 307.576369][ T6875] loop4: rw=524288, sector=87960, nr_sectors = 8 limit=40427 [ 307.577059][ T6875] syz.4.23: attempt to access beyond end of device [ 307.577059][ T6875] loop4: rw=524288, sector=87968, nr_sectors = 8 limit=40427 [ 310.294218][ T2414] ieee802154 phy0 wpan0: encryption failed: -22 [ 310.294281][ T2414] ieee802154 phy1 wpan1: encryption failed: -22 [ 311.466835][ T6125] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 311.469616][ T6125] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 311.472023][ T6125] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 311.475083][ T6125] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 311.475995][ T6125] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 312.151076][ T6997] chnl_net:caif_netlink_parms(): no params data found [ 312.550319][ T6997] bridge0: port 1(bridge_slave_0) entered blocking state [ 312.550369][ T6997] bridge0: port 1(bridge_slave_0) entered disabled state [ 312.550463][ T6997] bridge_slave_0: entered allmulticast mode [ 312.550926][ T6997] bridge_slave_0: entered promiscuous mode [ 312.551612][ T6997] bridge0: port 2(bridge_slave_1) entered blocking state [ 312.551637][ T6997] bridge0: port 2(bridge_slave_1) entered disabled state [ 312.551707][ T6997] bridge_slave_1: entered allmulticast mode [ 312.552126][ T6997] bridge_slave_1: entered promiscuous mode [ 312.581746][ T6753] bio_check_eod: 299231 callbacks suppressed [ 312.582242][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582242][ T6838] loop3: rw=524288, sector=89352, nr_sectors = 8 limit=40427 [ 312.582342][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582342][ T6838] loop3: rw=524288, sector=89360, nr_sectors = 8 limit=40427 [ 312.582378][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582378][ T6838] loop3: rw=524288, sector=89368, nr_sectors = 8 limit=40427 [ 312.582407][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582407][ T6838] loop3: rw=524288, sector=89376, nr_sectors = 8 limit=40427 [ 312.582442][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582442][ T6838] loop3: rw=524288, sector=89384, nr_sectors = 8 limit=40427 [ 312.582470][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582470][ T6838] loop3: rw=524288, sector=89392, nr_sectors = 8 limit=40427 [ 312.582495][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582495][ T6838] loop3: rw=524288, sector=89400, nr_sectors = 8 limit=40427 [ 312.582518][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582518][ T6838] loop3: rw=524288, sector=89408, nr_sectors = 8 limit=40427 [ 312.582541][ T6838] syz.3.22: attempt to access beyond end of device [ 312.582541][ T6838] loop3: rw=524288, sector=89416, nr_sectors = 8 limit=40427 [ 312.589485][ T6753] syz.0.19: attempt to access beyond end of device [ 312.589485][ T6753] loop0: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 313.008388][ T6997] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 313.021093][ T6997] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 313.276732][ T6997] team0: Port device team_slave_0 added [ 313.293255][ T6997] team0: Port device team_slave_1 added [ 313.417364][ T6997] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 313.429465][ T6997] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.430093][ T6997] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 313.433099][ T6997] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 313.433117][ T6997] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.433135][ T6997] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 313.559463][ T6125] Bluetooth: hci7: command tx timeout [ 313.685449][ T6997] hsr_slave_0: entered promiscuous mode [ 313.711874][ T6997] hsr_slave_1: entered promiscuous mode [ 313.712125][ T6997] debugfs: 'hsr0' already exists in 'hsr' [ 313.712136][ T6997] Cannot create hsr debugfs directory [ 314.071588][ T6997] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 314.085342][ T6997] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 314.106509][ T6997] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 314.166130][ T6997] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 314.515568][ T6997] 8021q: adding VLAN 0 to HW filter on device bond0 [ 314.567379][ T6997] 8021q: adding VLAN 0 to HW filter on device team0 [ 314.604545][ T7008] bridge0: port 1(bridge_slave_0) entered blocking state [ 314.604604][ T7008] bridge0: port 1(bridge_slave_0) entered forwarding state [ 314.628728][ T6997] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 314.628772][ T6997] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 314.685132][ T4657] bridge0: port 2(bridge_slave_1) entered blocking state [ 314.685185][ T4657] bridge0: port 2(bridge_slave_1) entered forwarding state [ 315.055353][ T6997] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 315.438914][ T6997] veth0_vlan: entered promiscuous mode [ 315.501206][ T6997] veth1_vlan: entered promiscuous mode [ 315.508492][ T6997] veth0_macvtap: entered promiscuous mode [ 315.581003][ T6997] veth1_macvtap: entered promiscuous mode [ 315.598643][ T6997] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 315.622103][ T6997] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 315.647770][ T6125] Bluetooth: hci7: command tx timeout [ 315.733511][ T2169] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.736704][ T2169] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.738340][ T2169] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.806826][ T2169] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.933086][ T354] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 315.933124][ T354] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 316.000834][ T4657] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 316.002243][ T4657] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:05:16 executed programs: 17 [ 316.874891][ T7031] loop7: detected capacity change from 0 to 40427 [ 316.922550][ T7031] F2FS-fs (loop7): build fault injection rate: 771 [ 316.927242][ T7031] F2FS-fs (loop7): invalid crc value [ 317.069128][ T7031] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 317.109633][ T7031] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 317.460284][ T6997] CPU: 1 UID: 0 PID: 6997 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 317.460308][ T6997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 317.460313][ T6997] Call trace: [ 317.460317][ T6997] show_stack+0x2c/0x3c (C) [ 317.460334][ T6997] __dump_stack+0x30/0x40 [ 317.460345][ T6997] dump_stack_lvl+0xd8/0x12c [ 317.460353][ T6997] dump_stack+0x1c/0x28 [ 317.460359][ T6997] f2fs_handle_critical_error+0x34c/0x4b8 [ 317.460367][ T6997] f2fs_stop_checkpoint+0x5c/0x70 [ 317.460373][ T6997] f2fs_write_end_io+0x768/0xa70 [ 317.460380][ T6997] bio_endio+0x858/0x894 [ 317.460387][ T6997] submit_bio_noacct+0x158/0x177c [ 317.460393][ T6997] submit_bio+0x3b4/0x550 [ 317.460399][ T6997] f2fs_submit_write_bio+0x13c/0x324 [ 317.460405][ T6997] __submit_merged_bio+0x254/0x704 [ 317.460411][ T6997] __submit_merged_write_cond+0x23c/0x4ac [ 317.460417][ T6997] f2fs_write_data_pages+0x1d28/0x2634 [ 317.460424][ T6997] do_writepages+0x270/0x468 [ 317.460437][ T6997] filemap_fdatawrite+0x14c/0x1f4 [ 317.460445][ T6997] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 317.460450][ T6997] f2fs_write_checkpoint+0x690/0x16a0 [ 317.460456][ T6997] kill_f2fs_super+0x21c/0x584 [ 317.460463][ T6997] deactivate_locked_super+0xc4/0x12c [ 317.460469][ T6997] deactivate_super+0xe0/0x100 [ 317.460473][ T6997] cleanup_mnt+0x31c/0x3ac [ 317.460479][ T6997] __cleanup_mnt+0x20/0x30 [ 317.460484][ T6997] task_work_run+0x1dc/0x260 [ 317.460491][ T6997] exit_to_user_mode_loop+0xfc/0x168 [ 317.460498][ T6997] el0_svc+0x170/0x254 [ 317.460506][ T6997] el0t_64_sync_handler+0x84/0x12c [ 317.460513][ T6997] el0t_64_sync+0x198/0x19c [ 317.460550][ T6997] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 317.590557][ T6780] bio_check_eod: 278291 callbacks suppressed [ 317.590889][ T6780] syz.1.20: attempt to access beyond end of device [ 317.590889][ T6780] loop1: rw=524288, sector=87736, nr_sectors = 8 limit=40427 [ 317.590974][ T6780] syz.1.20: attempt to access beyond end of device [ 317.590974][ T6780] loop1: rw=524288, sector=87744, nr_sectors = 8 limit=40427 [ 317.591609][ T6780] syz.1.20: attempt to access beyond end of device [ 317.591609][ T6780] loop1: rw=524288, sector=87752, nr_sectors = 8 limit=40427 [ 317.591997][ T6780] syz.1.20: attempt to access beyond end of device [ 317.591997][ T6780] loop1: rw=524288, sector=87760, nr_sectors = 8 limit=40427 [ 317.592379][ T6780] syz.1.20: attempt to access beyond end of device [ 317.592379][ T6780] loop1: rw=524288, sector=87768, nr_sectors = 8 limit=40427 [ 317.592794][ T6780] syz.1.20: attempt to access beyond end of device [ 317.592794][ T6780] loop1: rw=524288, sector=87776, nr_sectors = 8 limit=40427 [ 317.593223][ T6780] syz.1.20: attempt to access beyond end of device [ 317.593223][ T6780] loop1: rw=524288, sector=87784, nr_sectors = 8 limit=40427 [ 317.593257][ T6780] syz.1.20: attempt to access beyond end of device [ 317.593257][ T6780] loop1: rw=524288, sector=87792, nr_sectors = 8 limit=40427 [ 317.593297][ T6780] syz.1.20: attempt to access beyond end of device [ 317.593297][ T6780] loop1: rw=524288, sector=87800, nr_sectors = 8 limit=40427 [ 317.593330][ T6780] syz.1.20: attempt to access beyond end of device [ 317.593330][ T6780] loop1: rw=524288, sector=87808, nr_sectors = 8 limit=40427 [ 317.689528][ T6125] Bluetooth: hci7: command tx timeout [ 318.616556][ T7037] loop7: detected capacity change from 0 to 40427 [ 318.710983][ T7037] F2FS-fs (loop7): build fault injection rate: 771 [ 318.714549][ T7037] F2FS-fs (loop7): invalid crc value [ 318.770550][ T7037] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 318.813552][ T7037] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 318.993212][ T6997] CPU: 1 UID: 0 PID: 6997 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 318.993232][ T6997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 318.993237][ T6997] Call trace: [ 318.993240][ T6997] show_stack+0x2c/0x3c (C) [ 318.993258][ T6997] __dump_stack+0x30/0x40 [ 318.993268][ T6997] dump_stack_lvl+0xd8/0x12c [ 318.993276][ T6997] dump_stack+0x1c/0x28 [ 318.993282][ T6997] f2fs_handle_critical_error+0x34c/0x4b8 [ 318.993291][ T6997] f2fs_stop_checkpoint+0x5c/0x70 [ 318.993298][ T6997] f2fs_write_end_io+0x768/0xa70 [ 318.993305][ T6997] bio_endio+0x858/0x894 [ 318.993313][ T6997] submit_bio_noacct+0x158/0x177c [ 318.993319][ T6997] submit_bio+0x3b4/0x550 [ 318.993324][ T6997] f2fs_submit_write_bio+0x13c/0x324 [ 318.993330][ T6997] __submit_merged_bio+0x254/0x704 [ 318.993336][ T6997] __submit_merged_write_cond+0x23c/0x4ac [ 318.993342][ T6997] f2fs_write_data_pages+0x1d28/0x2634 [ 318.993349][ T6997] do_writepages+0x270/0x468 [ 318.993357][ T6997] filemap_fdatawrite+0x14c/0x1f4 [ 318.993365][ T6997] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 318.993370][ T6997] f2fs_write_checkpoint+0x690/0x16a0 [ 318.993376][ T6997] kill_f2fs_super+0x21c/0x584 [ 318.993382][ T6997] deactivate_locked_super+0xc4/0x12c [ 318.993388][ T6997] deactivate_super+0xe0/0x100 [ 318.993392][ T6997] cleanup_mnt+0x31c/0x3ac [ 318.993398][ T6997] __cleanup_mnt+0x20/0x30 [ 318.993403][ T6997] task_work_run+0x1dc/0x260 [ 318.993409][ T6997] exit_to_user_mode_loop+0xfc/0x168 [ 318.993416][ T6997] el0_svc+0x170/0x254 [ 318.993424][ T6997] el0t_64_sync_handler+0x84/0x12c [ 318.993437][ T6997] el0t_64_sync+0x198/0x19c [ 318.993471][ T6997] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 319.819470][ T6125] Bluetooth: hci7: command tx timeout [ 320.069158][ T7043] loop7: detected capacity change from 0 to 40427 [ 320.153152][ T7043] F2FS-fs (loop7): build fault injection rate: 771 [ 320.154796][ T7043] F2FS-fs (loop7): invalid crc value [ 320.270619][ T7043] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 320.284869][ T7043] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 320.539903][ T6997] CPU: 0 UID: 0 PID: 6997 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 320.539926][ T6997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 320.539931][ T6997] Call trace: [ 320.539935][ T6997] show_stack+0x2c/0x3c (C) [ 320.539951][ T6997] __dump_stack+0x30/0x40 [ 320.539960][ T6997] dump_stack_lvl+0xd8/0x12c [ 320.539966][ T6997] dump_stack+0x1c/0x28 [ 320.539971][ T6997] f2fs_handle_critical_error+0x34c/0x4b8 [ 320.539980][ T6997] f2fs_stop_checkpoint+0x5c/0x70 [ 320.539986][ T6997] f2fs_write_end_io+0x768/0xa70 [ 320.539993][ T6997] bio_endio+0x858/0x894 [ 320.540001][ T6997] submit_bio_noacct+0x158/0x177c [ 320.540008][ T6997] submit_bio+0x3b4/0x550 [ 320.540013][ T6997] f2fs_submit_write_bio+0x13c/0x324 [ 320.540019][ T6997] __submit_merged_bio+0x254/0x704 [ 320.540025][ T6997] __submit_merged_write_cond+0x23c/0x4ac [ 320.540031][ T6997] f2fs_write_data_pages+0x1d28/0x2634 [ 320.540037][ T6997] do_writepages+0x270/0x468 [ 320.540046][ T6997] filemap_fdatawrite+0x14c/0x1f4 [ 320.540053][ T6997] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 320.540058][ T6997] f2fs_write_checkpoint+0x690/0x16a0 [ 320.540064][ T6997] kill_f2fs_super+0x21c/0x584 [ 320.540070][ T6997] deactivate_locked_super+0xc4/0x12c [ 320.540076][ T6997] deactivate_super+0xe0/0x100 [ 320.540081][ T6997] cleanup_mnt+0x31c/0x3ac [ 320.540087][ T6997] __cleanup_mnt+0x20/0x30 [ 320.540092][ T6997] task_work_run+0x1dc/0x260 [ 320.540099][ T6997] exit_to_user_mode_loop+0xfc/0x168 [ 320.540106][ T6997] el0_svc+0x170/0x254 [ 320.540115][ T6997] el0t_64_sync_handler+0x84/0x12c [ 320.540122][ T6997] el0t_64_sync+0x198/0x19c [ 320.540149][ T6997] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 321.651940][ T7049] loop7: detected capacity change from 0 to 40427 [ 321.700367][ T7049] F2FS-fs (loop7): build fault injection rate: 771 [ 321.714999][ T7049] F2FS-fs (loop7): invalid crc value [ 321.820526][ T7049] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 321.849206][ T7049] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 322.577157][ T52] Bluetooth: hci1: command 0x0406 tx timeout [ 322.579076][ T6990] F2FS-fs (loop6): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 322.599771][ T6875] bio_check_eod: 288707 callbacks suppressed [ 322.600661][ T6875] syz.4.23: attempt to access beyond end of device [ 322.600661][ T6875] loop4: rw=0, sector=89800, nr_sectors = 8 limit=40427 [ 322.601527][ T6875] syz.4.23: attempt to access beyond end of device [ 322.601527][ T6875] loop4: rw=0, sector=89808, nr_sectors = 8 limit=40427 [ 322.602303][ T6875] syz.4.23: attempt to access beyond end of device [ 322.602303][ T6875] loop4: rw=0, sector=89816, nr_sectors = 8 limit=40427 [ 322.603021][ T6875] syz.4.23: attempt to access beyond end of device [ 322.603021][ T6875] loop4: rw=0, sector=89824, nr_sectors = 8 limit=40427 [ 322.603728][ T6875] syz.4.23: attempt to access beyond end of device [ 322.603728][ T6875] loop4: rw=0, sector=89832, nr_sectors = 8 limit=40427 [ 322.604426][ T6875] syz.4.23: attempt to access beyond end of device [ 322.604426][ T6875] loop4: rw=0, sector=89840, nr_sectors = 8 limit=40427 [ 322.605160][ T6875] syz.4.23: attempt to access beyond end of device [ 322.605160][ T6875] loop4: rw=0, sector=89848, nr_sectors = 8 limit=40427 [ 322.605911][ T6875] syz.4.23: attempt to access beyond end of device [ 322.605911][ T6875] loop4: rw=0, sector=89856, nr_sectors = 8 limit=40427 [ 322.606643][ T6875] syz.4.23: attempt to access beyond end of device [ 322.606643][ T6875] loop4: rw=0, sector=89864, nr_sectors = 8 limit=40427 [ 322.607334][ T6875] syz.4.23: attempt to access beyond end of device [ 322.607334][ T6875] loop4: rw=0, sector=89872, nr_sectors = 8 limit=40427 [ 327.615160][ T6811] bio_check_eod: 321055 callbacks suppressed [ 327.615226][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615226][ T6811] loop2: rw=524288, sector=89424, nr_sectors = 8 limit=40427 [ 327.615303][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615303][ T6811] loop2: rw=524288, sector=89432, nr_sectors = 8 limit=40427 [ 327.615347][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615347][ T6811] loop2: rw=524288, sector=89440, nr_sectors = 8 limit=40427 [ 327.615385][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615385][ T6811] loop2: rw=524288, sector=89448, nr_sectors = 8 limit=40427 [ 327.615424][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615424][ T6811] loop2: rw=524288, sector=89456, nr_sectors = 8 limit=40427 [ 327.615457][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615457][ T6811] loop2: rw=524288, sector=89464, nr_sectors = 8 limit=40427 [ 327.615487][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615487][ T6811] loop2: rw=524288, sector=89472, nr_sectors = 8 limit=40427 [ 327.615524][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615524][ T6811] loop2: rw=524288, sector=89480, nr_sectors = 8 limit=40427 [ 327.615552][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615552][ T6811] loop2: rw=524288, sector=89488, nr_sectors = 8 limit=40427 [ 327.615578][ T6811] syz.2.21: attempt to access beyond end of device [ 327.615578][ T6811] loop2: rw=524288, sector=89496, nr_sectors = 8 limit=40427 [ 332.619537][ T6780] bio_check_eod: 334048 callbacks suppressed [ 332.619581][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619581][ T6780] loop1: rw=0, sector=89152, nr_sectors = 8 limit=40427 [ 332.619626][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619626][ T6780] loop1: rw=0, sector=89160, nr_sectors = 8 limit=40427 [ 332.619654][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619654][ T6780] loop1: rw=0, sector=89168, nr_sectors = 8 limit=40427 [ 332.619680][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619680][ T6780] loop1: rw=0, sector=89176, nr_sectors = 8 limit=40427 [ 332.619704][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619704][ T6780] loop1: rw=0, sector=89184, nr_sectors = 8 limit=40427 [ 332.619727][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619727][ T6780] loop1: rw=0, sector=89192, nr_sectors = 8 limit=40427 [ 332.619749][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619749][ T6780] loop1: rw=0, sector=89200, nr_sectors = 8 limit=40427 [ 332.619772][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619772][ T6780] loop1: rw=0, sector=89208, nr_sectors = 8 limit=40427 [ 332.619794][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619794][ T6780] loop1: rw=0, sector=89216, nr_sectors = 8 limit=40427 [ 332.619816][ T6780] syz.1.20: attempt to access beyond end of device [ 332.619816][ T6780] loop1: rw=0, sector=89224, nr_sectors = 8 limit=40427 [ 337.629512][ T6753] bio_check_eod: 307618 callbacks suppressed [ 337.629530][ T6917] syz.5.24: attempt to access beyond end of device [ 337.629530][ T6917] loop5: rw=524288, sector=87952, nr_sectors = 8 limit=40427 [ 337.629557][ T6753] syz.0.19: attempt to access beyond end of device [ 337.629557][ T6753] loop0: rw=0, sector=86648, nr_sectors = 8 limit=40427 [ 337.629594][ T6917] syz.5.24: attempt to access beyond end of device [ 337.629594][ T6917] loop5: rw=524288, sector=87960, nr_sectors = 8 limit=40427 [ 337.629602][ T6753] syz.0.19: attempt to access beyond end of device [ 337.629602][ T6753] loop0: rw=0, sector=86656, nr_sectors = 8 limit=40427 [ 337.629638][ T6917] syz.5.24: attempt to access beyond end of device [ 337.629638][ T6917] loop5: rw=524288, sector=87968, nr_sectors = 8 limit=40427 [ 337.629639][ T6753] syz.0.19: attempt to access beyond end of device [ 337.629639][ T6753] loop0: rw=0, sector=86664, nr_sectors = 8 limit=40427 [ 337.629672][ T6753] syz.0.19: attempt to access beyond end of device [ 337.629672][ T6753] loop0: rw=0, sector=86672, nr_sectors = 8 limit=40427 [ 337.629676][ T6917] syz.5.24: attempt to access beyond end of device [ 337.629676][ T6917] loop5: rw=524288, sector=87976, nr_sectors = 8 limit=40427 [ 337.629706][ T6753] syz.0.19: attempt to access beyond end of device [ 337.629706][ T6753] loop0: rw=0, sector=86680, nr_sectors = 8 limit=40427 [ 337.629721][ T6917] syz.5.24: attempt to access beyond end of device [ 337.629721][ T6917] loop5: rw=524288, sector=87984, nr_sectors = 8 limit=40427 [ 337.653239][ T7063] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 337.654286][ T7063] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 337.677047][ T7063] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 337.702761][ T7063] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 337.711306][ T7063] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 337.943703][ T52] Bluetooth: hci2: command 0x0406 tx timeout [ 338.391226][ T7060] chnl_net:caif_netlink_parms(): no params data found [ 339.040787][ T7060] bridge0: port 1(bridge_slave_0) entered blocking state [ 339.040832][ T7060] bridge0: port 1(bridge_slave_0) entered disabled state [ 339.040920][ T7060] bridge_slave_0: entered allmulticast mode [ 339.041434][ T7060] bridge_slave_0: entered promiscuous mode [ 339.042098][ T7060] bridge0: port 2(bridge_slave_1) entered blocking state [ 339.042127][ T7060] bridge0: port 2(bridge_slave_1) entered disabled state [ 339.042192][ T7060] bridge_slave_1: entered allmulticast mode [ 339.042610][ T7060] bridge_slave_1: entered promiscuous mode [ 339.292836][ T7060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 339.295536][ T7060] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 339.536002][ T7060] team0: Port device team_slave_0 added [ 339.546516][ T7060] team0: Port device team_slave_1 added [ 339.773385][ T7060] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 339.780705][ T6125] Bluetooth: hci8: command tx timeout [ 339.781988][ T7060] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 339.782898][ T7060] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 339.784972][ T7060] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 339.784988][ T7060] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 339.785008][ T7060] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 340.105576][ T7060] hsr_slave_0: entered promiscuous mode [ 340.105933][ T7060] hsr_slave_1: entered promiscuous mode [ 340.106122][ T7060] debugfs: 'hsr0' already exists in 'hsr' [ 340.106133][ T7060] Cannot create hsr debugfs directory [ 340.645967][ T7060] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 340.690884][ T7060] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 340.727270][ T7060] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 340.781854][ T7060] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 341.121147][ T7060] 8021q: adding VLAN 0 to HW filter on device bond0 [ 341.124159][ T7060] 8021q: adding VLAN 0 to HW filter on device team0 [ 341.127003][ T2169] bridge0: port 1(bridge_slave_0) entered blocking state [ 341.127044][ T2169] bridge0: port 1(bridge_slave_0) entered forwarding state [ 341.128366][ T2169] bridge0: port 2(bridge_slave_1) entered blocking state [ 341.128395][ T2169] bridge0: port 2(bridge_slave_1) entered forwarding state [ 341.207669][ T7060] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 341.229487][ T7060] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 341.537971][ T7060] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 341.855148][ T6125] Bluetooth: hci8: command tx timeout [ 342.109360][ T7060] veth0_vlan: entered promiscuous mode [ 342.171819][ T7060] veth1_vlan: entered promiscuous mode [ 342.204186][ T7060] veth0_macvtap: entered promiscuous mode [ 342.205184][ T7060] veth1_macvtap: entered promiscuous mode [ 342.208246][ T7060] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 342.209306][ T7060] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 342.358223][ T7075] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.358291][ T7075] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.361657][ T7075] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.364224][ T7075] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.485664][ T7020] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 342.485697][ T7020] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 342.577575][ T7075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 342.577608][ T7075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 342.640256][ T6780] bio_check_eod: 302108 callbacks suppressed [ 342.640325][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640325][ T6780] loop1: rw=524288, sector=86760, nr_sectors = 8 limit=40427 [ 342.640385][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640385][ T6780] loop1: rw=524288, sector=86768, nr_sectors = 8 limit=40427 [ 342.640420][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640420][ T6780] loop1: rw=524288, sector=86776, nr_sectors = 8 limit=40427 [ 342.640451][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640451][ T6780] loop1: rw=524288, sector=86784, nr_sectors = 8 limit=40427 [ 342.640485][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640485][ T6780] loop1: rw=524288, sector=86792, nr_sectors = 8 limit=40427 [ 342.640510][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640510][ T6780] loop1: rw=524288, sector=86800, nr_sectors = 8 limit=40427 [ 342.640534][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640534][ T6780] loop1: rw=524288, sector=86808, nr_sectors = 8 limit=40427 [ 342.640557][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640557][ T6780] loop1: rw=524288, sector=86816, nr_sectors = 8 limit=40427 [ 342.640580][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640580][ T6780] loop1: rw=524288, sector=86824, nr_sectors = 8 limit=40427 [ 342.640602][ T6780] syz.1.20: attempt to access beyond end of device [ 342.640602][ T6780] loop1: rw=524288, sector=86832, nr_sectors = 8 limit=40427 1970/01/01 00:05:42 executed programs: 21 [ 343.484964][ T7095] loop8: detected capacity change from 0 to 40427 [ 343.554604][ T7095] F2FS-fs (loop8): build fault injection rate: 771 [ 343.603749][ T7095] F2FS-fs (loop8): invalid crc value [ 343.711442][ T7095] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 343.739679][ T7095] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 344.003029][ T6125] Bluetooth: hci8: command tx timeout [ 344.054016][ T7060] CPU: 0 UID: 0 PID: 7060 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 344.054037][ T7060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 344.054043][ T7060] Call trace: [ 344.054046][ T7060] show_stack+0x2c/0x3c (C) [ 344.054063][ T7060] __dump_stack+0x30/0x40 [ 344.054073][ T7060] dump_stack_lvl+0xd8/0x12c [ 344.054080][ T7060] dump_stack+0x1c/0x28 [ 344.054085][ T7060] f2fs_handle_critical_error+0x34c/0x4b8 [ 344.054095][ T7060] f2fs_stop_checkpoint+0x5c/0x70 [ 344.054101][ T7060] f2fs_write_end_io+0x768/0xa70 [ 344.054108][ T7060] bio_endio+0x858/0x894 [ 344.054117][ T7060] submit_bio_noacct+0x158/0x177c [ 344.054123][ T7060] submit_bio+0x3b4/0x550 [ 344.054128][ T7060] f2fs_submit_write_bio+0x13c/0x324 [ 344.054134][ T7060] __submit_merged_bio+0x254/0x704 [ 344.054140][ T7060] __submit_merged_write_cond+0x23c/0x4ac [ 344.054146][ T7060] f2fs_write_data_pages+0x1d28/0x2634 [ 344.054152][ T7060] do_writepages+0x270/0x468 [ 344.054160][ T7060] filemap_fdatawrite+0x14c/0x1f4 [ 344.054168][ T7060] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 344.054173][ T7060] f2fs_write_checkpoint+0x690/0x16a0 [ 344.054179][ T7060] kill_f2fs_super+0x21c/0x584 [ 344.054185][ T7060] deactivate_locked_super+0xc4/0x12c [ 344.054191][ T7060] deactivate_super+0xe0/0x100 [ 344.054195][ T7060] cleanup_mnt+0x31c/0x3ac [ 344.054201][ T7060] __cleanup_mnt+0x20/0x30 [ 344.054206][ T7060] task_work_run+0x1dc/0x260 [ 344.054213][ T7060] exit_to_user_mode_loop+0xfc/0x168 [ 344.054220][ T7060] el0_svc+0x170/0x254 [ 344.054228][ T7060] el0t_64_sync_handler+0x84/0x12c [ 344.054235][ T7060] el0t_64_sync+0x198/0x19c [ 344.054263][ T7060] F2FS-fs (loop8): Stopped filesystem due to reason: 3 [ 345.228498][ T7101] loop8: detected capacity change from 0 to 40427 [ 345.282527][ T7101] F2FS-fs (loop8): build fault injection rate: 771 [ 345.283186][ T7101] F2FS-fs (loop8): invalid crc value [ 345.403336][ T7101] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 345.450112][ T7101] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 346.009599][ T6125] Bluetooth: hci8: command tx timeout [ 347.658077][ T6875] bio_check_eod: 289141 callbacks suppressed [ 347.658140][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658140][ T6875] loop4: rw=524288, sector=86992, nr_sectors = 8 limit=40427 [ 347.658202][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658202][ T6875] loop4: rw=524288, sector=87000, nr_sectors = 8 limit=40427 [ 347.658222][ T6753] syz.0.19: attempt to access beyond end of device [ 347.658222][ T6753] loop0: rw=524288, sector=86728, nr_sectors = 8 limit=40427 [ 347.658245][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658245][ T6875] loop4: rw=524288, sector=87008, nr_sectors = 8 limit=40427 [ 347.658286][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658286][ T6875] loop4: rw=524288, sector=87016, nr_sectors = 8 limit=40427 [ 347.658322][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658322][ T6875] loop4: rw=524288, sector=87024, nr_sectors = 8 limit=40427 [ 347.658354][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658354][ T6875] loop4: rw=524288, sector=87032, nr_sectors = 8 limit=40427 [ 347.658392][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658392][ T6875] loop4: rw=524288, sector=87040, nr_sectors = 8 limit=40427 [ 347.658424][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658424][ T6875] loop4: rw=524288, sector=87048, nr_sectors = 8 limit=40427 [ 347.658461][ T6875] syz.4.23: attempt to access beyond end of device [ 347.658461][ T6875] loop4: rw=524288, sector=87056, nr_sectors = 8 limit=40427 [ 352.231086][ T7049] F2FS-fs (loop7): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 352.659693][ T6753] bio_check_eod: 298905 callbacks suppressed [ 352.661162][ T6753] syz.0.19: attempt to access beyond end of device [ 352.661162][ T6753] loop0: rw=524288, sector=86400, nr_sectors = 8 limit=40427 [ 352.662588][ T6753] syz.0.19: attempt to access beyond end of device [ 352.662588][ T6753] loop0: rw=524288, sector=86408, nr_sectors = 8 limit=40427 [ 352.663857][ T6753] syz.0.19: attempt to access beyond end of device [ 352.663857][ T6753] loop0: rw=524288, sector=86416, nr_sectors = 8 limit=40427 [ 352.665054][ T6753] syz.0.19: attempt to access beyond end of device [ 352.665054][ T6753] loop0: rw=524288, sector=86424, nr_sectors = 8 limit=40427 [ 352.666184][ T6753] syz.0.19: attempt to access beyond end of device [ 352.666184][ T6753] loop0: rw=524288, sector=86432, nr_sectors = 8 limit=40427 [ 352.667200][ T6753] syz.0.19: attempt to access beyond end of device [ 352.667200][ T6753] loop0: rw=524288, sector=86440, nr_sectors = 8 limit=40427 [ 352.668190][ T6753] syz.0.19: attempt to access beyond end of device [ 352.668190][ T6753] loop0: rw=524288, sector=86448, nr_sectors = 8 limit=40427 [ 352.669051][ T6753] syz.0.19: attempt to access beyond end of device [ 352.669051][ T6753] loop0: rw=524288, sector=86456, nr_sectors = 8 limit=40427 [ 352.669526][ T6753] syz.0.19: attempt to access beyond end of device [ 352.669526][ T6753] loop0: rw=524288, sector=86464, nr_sectors = 8 limit=40427 [ 352.670357][ T6753] syz.0.19: attempt to access beyond end of device [ 352.670357][ T6753] loop0: rw=524288, sector=86472, nr_sectors = 8 limit=40427 [ 353.329619][ T52] Bluetooth: hci3: command 0x0406 tx timeout [ 357.669558][ T6753] bio_check_eod: 321954 callbacks suppressed [ 357.670081][ T6917] syz.5.24: attempt to access beyond end of device [ 357.670081][ T6917] loop5: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 357.670332][ T6753] syz.0.19: attempt to access beyond end of device [ 357.670332][ T6753] loop0: rw=524288, sector=88408, nr_sectors = 8 limit=40427 [ 357.671098][ T6753] syz.0.19: attempt to access beyond end of device [ 357.671098][ T6753] loop0: rw=524288, sector=88416, nr_sectors = 8 limit=40427 [ 357.671373][ T6917] syz.5.24: attempt to access beyond end of device [ 357.671373][ T6917] loop5: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 357.671401][ T6753] syz.0.19: attempt to access beyond end of device [ 357.671401][ T6753] loop0: rw=524288, sector=88424, nr_sectors = 8 limit=40427 [ 357.671438][ T6753] syz.0.19: attempt to access beyond end of device [ 357.671438][ T6753] loop0: rw=524288, sector=88432, nr_sectors = 8 limit=40427 [ 357.671467][ T6753] syz.0.19: attempt to access beyond end of device [ 357.671467][ T6753] loop0: rw=524288, sector=88440, nr_sectors = 8 limit=40427 [ 357.671494][ T6753] syz.0.19: attempt to access beyond end of device [ 357.671494][ T6753] loop0: rw=524288, sector=88448, nr_sectors = 8 limit=40427 [ 357.671521][ T6753] syz.0.19: attempt to access beyond end of device [ 357.671521][ T6753] loop0: rw=524288, sector=88456, nr_sectors = 8 limit=40427 [ 357.671548][ T6753] syz.0.19: attempt to access beyond end of device [ 357.671548][ T6753] loop0: rw=524288, sector=88464, nr_sectors = 8 limit=40427 [ 360.143292][ T52] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 360.144102][ T52] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 360.144294][ T52] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 360.144608][ T52] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 360.146308][ T52] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 361.093485][ T7108] chnl_net:caif_netlink_parms(): no params data found [ 361.750151][ T7108] bridge0: port 1(bridge_slave_0) entered blocking state [ 361.750197][ T7108] bridge0: port 1(bridge_slave_0) entered disabled state [ 361.750289][ T7108] bridge_slave_0: entered allmulticast mode [ 361.750775][ T7108] bridge_slave_0: entered promiscuous mode [ 361.751405][ T7108] bridge0: port 2(bridge_slave_1) entered blocking state [ 361.751435][ T7108] bridge0: port 2(bridge_slave_1) entered disabled state [ 361.751498][ T7108] bridge_slave_1: entered allmulticast mode [ 361.751909][ T7108] bridge_slave_1: entered promiscuous mode [ 361.784462][ T7108] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 361.839011][ T7108] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 362.027761][ T7108] team0: Port device team_slave_0 added [ 362.028645][ T7108] team0: Port device team_slave_1 added [ 362.179503][ T52] Bluetooth: hci9: command tx timeout [ 362.258860][ T7108] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 362.261935][ T7108] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 362.261976][ T7108] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 362.262681][ T7108] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 362.262696][ T7108] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 362.262716][ T7108] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 362.603009][ T7108] hsr_slave_0: entered promiscuous mode [ 362.608206][ T7108] hsr_slave_1: entered promiscuous mode [ 362.610905][ T7108] debugfs: 'hsr0' already exists in 'hsr' [ 362.610926][ T7108] Cannot create hsr debugfs directory [ 362.679513][ T6875] bio_check_eod: 308980 callbacks suppressed [ 362.682104][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682104][ T6811] loop2: rw=524288, sector=86768, nr_sectors = 8 limit=40427 [ 362.682165][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682165][ T6811] loop2: rw=524288, sector=86776, nr_sectors = 8 limit=40427 [ 362.682195][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682195][ T6811] loop2: rw=524288, sector=86784, nr_sectors = 8 limit=40427 [ 362.682221][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682221][ T6811] loop2: rw=524288, sector=86792, nr_sectors = 8 limit=40427 [ 362.682246][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682246][ T6811] loop2: rw=524288, sector=86800, nr_sectors = 8 limit=40427 [ 362.682271][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682271][ T6811] loop2: rw=524288, sector=86808, nr_sectors = 8 limit=40427 [ 362.682294][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682294][ T6811] loop2: rw=524288, sector=86816, nr_sectors = 8 limit=40427 [ 362.682317][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682317][ T6811] loop2: rw=524288, sector=86824, nr_sectors = 8 limit=40427 [ 362.682339][ T6811] syz.2.21: attempt to access beyond end of device [ 362.682339][ T6811] loop2: rw=524288, sector=86832, nr_sectors = 8 limit=40427 [ 362.701400][ T6875] syz.4.23: attempt to access beyond end of device [ 362.701400][ T6875] loop4: rw=0, sector=86352, nr_sectors = 8 limit=40427 [ 363.484124][ T7108] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 363.542222][ T7108] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 363.604588][ T7108] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 363.671480][ T7108] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 363.835830][ T7108] 8021q: adding VLAN 0 to HW filter on device bond0 [ 363.909215][ T7108] 8021q: adding VLAN 0 to HW filter on device team0 [ 363.927101][ T2169] bridge0: port 1(bridge_slave_0) entered blocking state [ 363.927151][ T2169] bridge0: port 1(bridge_slave_0) entered forwarding state [ 363.927720][ T2169] bridge0: port 2(bridge_slave_1) entered blocking state [ 363.927745][ T2169] bridge0: port 2(bridge_slave_1) entered forwarding state [ 364.253993][ T52] Bluetooth: hci9: command tx timeout [ 364.287274][ T7108] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 364.818826][ T7108] veth0_vlan: entered promiscuous mode [ 364.850460][ T7108] veth1_vlan: entered promiscuous mode [ 364.867247][ T7108] veth0_macvtap: entered promiscuous mode [ 364.893266][ T7108] veth1_macvtap: entered promiscuous mode [ 364.898544][ T7108] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 365.001459][ T7108] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 365.009638][ T7008] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 365.010743][ T7008] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 365.011727][ T7008] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 365.012717][ T7008] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 365.199566][ T7008] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 365.199595][ T7008] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 365.252877][ T7008] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 365.252917][ T7008] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:06:05 executed programs: 23 [ 366.147668][ T7139] loop9: detected capacity change from 0 to 40427 [ 366.239551][ T7139] F2FS-fs (loop9): build fault injection rate: 771 [ 366.282267][ T7139] F2FS-fs (loop9): invalid crc value [ 366.370053][ T52] Bluetooth: hci9: command tx timeout [ 366.450756][ T7139] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 366.459695][ T7139] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 367.031627][ T7108] CPU: 0 UID: 0 PID: 7108 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 367.031656][ T7108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 367.031665][ T7108] Call trace: [ 367.031669][ T7108] show_stack+0x2c/0x3c (C) [ 367.031684][ T7108] __dump_stack+0x30/0x40 [ 367.031690][ T7108] dump_stack_lvl+0xd8/0x12c [ 367.031696][ T7108] dump_stack+0x1c/0x28 [ 367.031701][ T7108] f2fs_handle_critical_error+0x34c/0x4b8 [ 367.031709][ T7108] f2fs_stop_checkpoint+0x5c/0x70 [ 367.031714][ T7108] f2fs_write_end_io+0x768/0xa70 [ 367.031721][ T7108] bio_endio+0x858/0x894 [ 367.031728][ T7108] submit_bio_noacct+0x158/0x177c [ 367.031734][ T7108] submit_bio+0x3b4/0x550 [ 367.031739][ T7108] f2fs_submit_write_bio+0x13c/0x324 [ 367.031745][ T7108] __submit_merged_bio+0x254/0x704 [ 367.031751][ T7108] __submit_merged_write_cond+0x23c/0x4ac [ 367.031757][ T7108] f2fs_write_data_pages+0x1d28/0x2634 [ 367.031763][ T7108] do_writepages+0x270/0x468 [ 367.031771][ T7108] filemap_fdatawrite+0x14c/0x1f4 [ 367.031778][ T7108] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 367.031783][ T7108] f2fs_write_checkpoint+0x690/0x16a0 [ 367.031788][ T7108] kill_f2fs_super+0x21c/0x584 [ 367.031794][ T7108] deactivate_locked_super+0xc4/0x12c [ 367.031800][ T7108] deactivate_super+0xe0/0x100 [ 367.031804][ T7108] cleanup_mnt+0x31c/0x3ac [ 367.031810][ T7108] __cleanup_mnt+0x20/0x30 [ 367.031815][ T7108] task_work_run+0x1dc/0x260 [ 367.031821][ T7108] exit_to_user_mode_loop+0xfc/0x168 [ 367.031828][ T7108] el0_svc+0x170/0x254 [ 367.031836][ T7108] el0t_64_sync_handler+0x84/0x12c [ 367.031843][ T7108] el0t_64_sync+0x198/0x19c [ 367.032603][ T7108] F2FS-fs (loop9): Stopped filesystem due to reason: 3 [ 367.690092][ T6811] bio_check_eod: 292864 callbacks suppressed [ 367.690129][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690129][ T6811] loop2: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 367.690173][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690173][ T6811] loop2: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 367.690208][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690208][ T6811] loop2: rw=524288, sector=86032, nr_sectors = 8 limit=40427 [ 367.690238][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690238][ T6811] loop2: rw=524288, sector=86040, nr_sectors = 8 limit=40427 [ 367.690266][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690266][ T6811] loop2: rw=524288, sector=86048, nr_sectors = 8 limit=40427 [ 367.690300][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690300][ T6811] loop2: rw=524288, sector=86056, nr_sectors = 8 limit=40427 [ 367.690327][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690327][ T6811] loop2: rw=524288, sector=86064, nr_sectors = 8 limit=40427 [ 367.690353][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690353][ T6811] loop2: rw=524288, sector=86072, nr_sectors = 8 limit=40427 [ 367.690379][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690379][ T6811] loop2: rw=524288, sector=86080, nr_sectors = 8 limit=40427 [ 367.690405][ T6811] syz.2.21: attempt to access beyond end of device [ 367.690405][ T6811] loop2: rw=524288, sector=86088, nr_sectors = 8 limit=40427 [ 368.392790][ T7145] loop9: detected capacity change from 0 to 40427 [ 368.439566][ T52] Bluetooth: hci9: command tx timeout [ 368.459161][ T7145] F2FS-fs (loop9): build fault injection rate: 771 [ 368.482154][ T7145] F2FS-fs (loop9): invalid crc value [ 368.600603][ T7145] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 368.639585][ T7145] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 369.063679][ T7108] CPU: 0 UID: 0 PID: 7108 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 369.063702][ T7108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 369.063707][ T7108] Call trace: [ 369.063710][ T7108] show_stack+0x2c/0x3c (C) [ 369.063728][ T7108] __dump_stack+0x30/0x40 [ 369.063739][ T7108] dump_stack_lvl+0xd8/0x12c [ 369.063745][ T7108] dump_stack+0x1c/0x28 [ 369.063751][ T7108] f2fs_handle_critical_error+0x34c/0x4b8 [ 369.063759][ T7108] f2fs_stop_checkpoint+0x5c/0x70 [ 369.063765][ T7108] f2fs_write_end_io+0x768/0xa70 [ 369.063771][ T7108] bio_endio+0x858/0x894 [ 369.063779][ T7108] submit_bio_noacct+0x158/0x177c [ 369.063784][ T7108] submit_bio+0x3b4/0x550 [ 369.063790][ T7108] f2fs_submit_write_bio+0x13c/0x324 [ 369.063796][ T7108] __submit_merged_bio+0x254/0x704 [ 369.063802][ T7108] __submit_merged_write_cond+0x23c/0x4ac [ 369.063808][ T7108] f2fs_write_data_pages+0x1d28/0x2634 [ 369.063814][ T7108] do_writepages+0x270/0x468 [ 369.063822][ T7108] filemap_fdatawrite+0x14c/0x1f4 [ 369.063829][ T7108] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 369.063834][ T7108] f2fs_write_checkpoint+0x690/0x16a0 [ 369.063840][ T7108] kill_f2fs_super+0x21c/0x584 [ 369.063846][ T7108] deactivate_locked_super+0xc4/0x12c [ 369.063852][ T7108] deactivate_super+0xe0/0x100 [ 369.063856][ T7108] cleanup_mnt+0x31c/0x3ac [ 369.063862][ T7108] __cleanup_mnt+0x20/0x30 [ 369.063867][ T7108] task_work_run+0x1dc/0x260 [ 369.063873][ T7108] exit_to_user_mode_loop+0xfc/0x168 [ 369.063880][ T7108] el0_svc+0x170/0x254 [ 369.063888][ T7108] el0t_64_sync_handler+0x84/0x12c [ 369.063895][ T7108] el0t_64_sync+0x198/0x19c [ 369.063926][ T7108] F2FS-fs (loop9): Stopped filesystem due to reason: 3 [ 370.657416][ T7151] loop9: detected capacity change from 0 to 40427 [ 370.839566][ T7151] F2FS-fs (loop9): build fault injection rate: 771 [ 370.887955][ T7151] F2FS-fs (loop9): invalid crc value [ 371.032973][ T7151] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 371.089566][ T7151] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 371.712740][ T2414] ieee802154 phy0 wpan0: encryption failed: -22 [ 371.713369][ T2414] ieee802154 phy1 wpan1: encryption failed: -22 [ 372.330248][ T32] INFO: task kworker/u8:0:12 blocked for more than 143 seconds. [ 372.330283][ T32] Not tainted syzkaller #0 [ 372.330303][ T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 372.330314][ T32] task:kworker/u8:0 state:D stack:0 pid:12 tgid:12 ppid:2 task_flags:0x4208060 flags:0x00000010 [ 372.330341][ T32] Workqueue: writeback wb_workfn (flush-7:1) [ 372.330371][ T32] Call trace: [ 372.330378][ T32] __switch_to+0x418/0x87c (T) [ 372.330395][ T32] __schedule+0x13b0/0x2864 [ 372.330405][ T32] schedule+0xb4/0x230 [ 372.330419][ T32] schedule_preempt_disabled+0x18/0x2c [ 372.330432][ T32] rwsem_down_write_slowpath+0x6b4/0x10f4 [ 372.330447][ T32] down_write+0xb4/0xc0 [ 372.330458][ T32] f2fs_balance_fs+0x4b8/0x6ec [ 372.330469][ T32] f2fs_write_inode+0x3a8/0x684 [ 372.330478][ T32] __writeback_single_inode+0x5ac/0x13e8 [ 372.330489][ T32] writeback_sb_inodes+0x55c/0xe40 [ 372.330500][ T32] __writeback_inodes_wb+0xec/0x228 [ 372.330510][ T32] wb_writeback+0x3e0/0xd70 [ 372.330521][ T32] wb_workfn+0xa08/0xdc0 [ 372.330531][ T32] process_one_work+0x7e8/0x155c [ 372.330541][ T32] worker_thread+0x958/0xed8 [ 372.330550][ T32] kthread+0x5fc/0x75c [ 372.330561][ T32] ret_from_fork+0x10/0x20 [ 372.330594][ T32] INFO: task kworker/u8:5:1883 blocked for more than 143 seconds. [ 372.330602][ T32] Not tainted syzkaller #0 [ 372.330608][ T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 372.330614][ T32] task:kworker/u8:5 state:D stack:0 pid:1883 tgid:1883 ppid:2 task_flags:0x4208060 flags:0x00000010 [ 372.330630][ T32] Workqueue: writeback wb_workfn (flush-7:0) [ 372.330649][ T32] Call trace: [ 372.330655][ T32] __switch_to+0x418/0x87c (T) [ 372.330665][ T32] __schedule+0x13b0/0x2864 [ 372.330675][ T32] schedule+0xb4/0x230 [ 372.330684][ T32] schedule_preempt_disabled+0x18/0x2c [ 372.330694][ T32] rwsem_down_write_slowpath+0x6b4/0x10f4 [ 372.330705][ T32] down_write+0xb4/0xc0 [ 372.330715][ T32] f2fs_balance_fs+0x4b8/0x6ec [ 372.330724][ T32] f2fs_write_inode+0x3a8/0x684 [ 372.330733][ T32] __writeback_single_inode+0x5ac/0x13e8 [ 372.330744][ T32] writeback_sb_inodes+0x55c/0xe40 [ 372.330754][ T32] __writeback_inodes_wb+0xec/0x228 [ 372.330764][ T32] wb_writeback+0x3e0/0xd70 [ 372.330774][ T32] wb_workfn+0xa08/0xdc0 [ 372.330784][ T32] process_one_work+0x7e8/0x155c [ 372.330793][ T32] worker_thread+0x958/0xed8 [ 372.330802][ T32] kthread+0x5fc/0x75c [ 372.330812][ T32] ret_from_fork+0x10/0x20 [ 372.330871][ T32] [ 372.330871][ T32] Showing all locks held in the system: [ 372.330878][ T32] 4 locks held by kworker/u8:0/12: [ 372.330885][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.330924][ T32] #1: ffff800097c77be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.330962][ T32] #2: ffff0000cc7340e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.331002][ T32] #3: ffff0000cd4ed410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.331037][ T32] 4 locks held by kworker/u8:1/15: [ 372.331045][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.331081][ T32] #1: ffff800097ca7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.331114][ T32] #2: ffff0000d90f60e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.331153][ T32] #3: ffff0000f4765410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.331187][ T32] 1 lock held by khungtaskd/32: [ 372.331194][ T32] #0: ffff80008f9d9620 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x48 [ 372.331230][ T32] 4 locks held by kworker/u8:3/42: [ 372.331237][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.331270][ T32] #1: ffff8000992e7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.331304][ T32] #2: ffff0000e22dc0e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.331343][ T32] #3: ffff0000f5bb9410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.331377][ T32] 3 locks held by kworker/u9:0/52: [ 372.331383][ T32] #0: ffff0000cda28948 ((wq_completion)hci4){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.331421][ T32] #1: ffff800099387be0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.331455][ T32] #2: ffff0000d6aa4dc0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x184/0x33c [ 372.331494][ T32] 4 locks held by kworker/u8:5/1883: [ 372.331501][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.331535][ T32] #1: ffff8000a0da7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.331568][ T32] #2: ffff0000c1d980e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.331607][ T32] #3: ffff0000c8fc9410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.331641][ T32] 4 locks held by kworker/u8:6/1947: [ 372.331648][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.331681][ T32] #1: ffff8000a1007be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.331715][ T32] #2: ffff0000d8fa40e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.331754][ T32] #3: ffff0000cefe9410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.331787][ T32] 4 locks held by kworker/u8:7/2107: [ 372.331794][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.331827][ T32] #1: ffff8000a0f77be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.331861][ T32] #2: ffff0000f28ee0e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.331900][ T32] #3: ffff0000d6aa1410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.331936][ T32] 4 locks held by kworker/u8:10/4657: [ 372.331942][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.331976][ T32] #1: ffff8000a5ad7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.332010][ T32] #2: ffff0000ce7e60e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.332048][ T32] #3: ffff0000cadc1410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.332082][ T32] 2 locks held by getty/6316: [ 372.332089][ T32] #0: ffff0000d82000a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 372.332125][ T32] #1: ffff800099e8e2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x34c/0xfa4 [ 372.332162][ T32] 6 locks held by syz.0.19/6753: [ 372.332170][ T32] 7 locks held by syz.1.20/6780: [ 372.332177][ T32] 5 locks held by syz.2.21/6811: [ 372.332184][ T32] 6 locks held by syz.3.22/6838: [ 372.332190][ T32] 7 locks held by syz.4.23/6875: [ 372.332198][ T32] 7 locks held by syz.5.24/6917: [ 372.332205][ T32] 6 locks held by syz.6.31/6990: [ 372.332212][ T32] 4 locks held by kworker/u8:9/7020: [ 372.332219][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 372.332252][ T32] #1: ffff8000a1d67be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 372.332286][ T32] #2: ffff0000d34600e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 372.332324][ T32] #3: ffff0001087d1410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 372.332358][ T32] 4 locks held by syz.7.35/7049: [ 372.332365][ T32] 4 locks held by syz.8.37/7101: [ 372.332372][ T32] 5 locks held by syz.9.40/7151: [ 372.332379][ T32] [ 372.332384][ T32] ============================================= [ 372.332384][ T32] [ 372.332391][ T32] Kernel panic - not syncing: hung_task: blocked tasks [ 372.448124][ T32] CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 372.449453][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 372.450881][ T32] Call trace: [ 372.451369][ T32] show_stack+0x2c/0x3c (C) [ 372.452024][ T32] __dump_stack+0x30/0x40 [ 372.452692][ T32] dump_stack_lvl+0x30/0x12c [ 372.453359][ T32] dump_stack+0x1c/0x28 [ 372.453947][ T32] vpanic+0x280/0x780 [ 372.454507][ T32] vpanic+0x0/0x780 [ 372.455124][ T32] hung_task_panic+0x0/0x2c [ 372.455803][ T32] kthread+0x5fc/0x75c [ 372.456441][ T32] ret_from_fork+0x10/0x20 [ 372.457137][ T32] SMP: stopping secondary CPUs [ 372.457890][ T32] Kernel Offset: disabled [ 372.458675][ T32] CPU features: 0x080000,0000f000,21381141,5427fea7 [ 372.459652][ T32] Memory Limit: none [ 372.760389][ T32] Rebooting in 86400 seconds..