227.628711][ T5951] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 227.677561][ T5951] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 227.707167][ T5951] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 227.904263][ T5951] 8021q: adding VLAN 0 to HW filter on device bond0
[ 227.936194][ T5951] 8021q: adding VLAN 0 to HW filter on device team0
[ 227.950898][ T1420] bridge0: port 1(bridge_slave_0) entered blocking state
[ 227.953327][ T1420] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 227.976598][ T1112] bridge0: port 2(bridge_slave_1) entered blocking state
[ 227.976944][ T1112] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 228.562947][ T5951] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 228.621601][ T5951] veth0_vlan: entered promiscuous mode
[ 228.628210][ T5951] veth1_vlan: entered promiscuous mode
[ 228.666959][ T5951] veth0_macvtap: entered promiscuous mode
[ 228.670144][ T5951] veth1_macvtap: entered promiscuous mode
[ 228.704018][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 228.710451][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 228.731044][ T1112] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 228.735818][ T1112] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 228.735859][ T1112] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 228.735891][ T1112] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 229.046587][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 229.046609][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 229.098656][ T1112] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 229.098677][ T1112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/02 22:55:33 executed programs: 2
[ 229.478205][ T6027] loop0: detected capacity change from 0 to 40427
[ 229.513354][ T6027] F2FS-fs (loop0): build fault injection rate: 771
[ 229.530814][ T6027] F2FS-fs (loop0): invalid crc value
[ 229.664848][ T6027] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 229.683313][ T6027] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 229.887652][ T5951] syz-executor: attempt to access beyond end of device
[ 229.887652][ T5951] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 229.888551][ T5951] CPU: 0 UID: 0 PID: 5951 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 229.888566][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 229.888576][ T5951] Call Trace:
[ 229.888583][ T5951]
[ 229.888589][ T5951] dump_stack_lvl+0x189/0x250
[ 229.888606][ T5951] ? reacquire_held_locks+0x127/0x1d0
[ 229.888618][ T5951] ? rt_spin_lock+0x1c1/0x3e0
[ 229.888633][ T5951] ? __pfx_dump_stack_lvl+0x10/0x10
[ 229.888643][ T5951] ? __pfx_queue_work_on+0x10/0x10
[ 229.888662][ T5951] ? rt_spin_unlock+0x150/0x200
[ 229.888679][ T5951] ? rt_spin_unlock+0x161/0x200
[ 229.888694][ T5951] f2fs_handle_critical_error+0x354/0x510
[ 229.888714][ T5951] f2fs_write_end_io+0x886/0xb60
[ 229.888737][ T5951] __submit_merged_bio+0x27a/0x6a0
[ 229.888756][ T5951] __submit_merged_write_cond+0x255/0x530
[ 229.888776][ T5951] f2fs_write_data_pages+0x261d/0x3000
[ 229.888809][ T5951] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 229.888855][ T5951] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 229.888866][ T5951] ? lockdep_hardirqs_on+0x9c/0x150
[ 229.888889][ T5951] ? rt_mutex_slowunlock+0x493/0x8a0
[ 229.888901][ T5951] ? reacquire_held_locks+0x127/0x1d0
[ 229.888911][ T5951] ? rt_spin_lock+0x1c1/0x3e0
[ 229.888931][ T5951] ? rt_spin_unlock+0x150/0x200
[ 229.888947][ T5951] ? rt_spin_unlock+0x161/0x200
[ 229.888960][ T5951] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 229.888976][ T5951] do_writepages+0x32e/0x550
[ 229.888989][ T5951] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 229.889004][ T5951] ? rt_spin_unlock+0x150/0x200
[ 229.889025][ T5951] filemap_fdatawrite+0x19c/0x240
[ 229.889038][ T5951] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 229.889074][ T5951] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 229.889093][ T5951] ? rt_spin_unlock+0x161/0x200
[ 229.889108][ T5951] f2fs_sync_dirty_inodes+0x31f/0x830
[ 229.889129][ T5951] f2fs_write_checkpoint+0x95a/0x1df0
[ 229.889156][ T5951] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 229.889192][ T5951] ? f2fs_stop_gc_thread+0x82/0xb0
[ 229.889204][ T5951] ? kfree+0x197/0x680
[ 229.889215][ T5951] ? f2fs_stop_gc_thread+0x82/0xb0
[ 229.889227][ T5951] ? kill_f2fs_super+0x298/0x6c0
[ 229.889241][ T5951] kill_f2fs_super+0x2c3/0x6c0
[ 229.889256][ T5951] ? __pfx_kill_f2fs_super+0x10/0x10
[ 229.889272][ T5951] ? shrinker_free+0x2ce/0x3e0
[ 229.889287][ T5951] deactivate_locked_super+0xbc/0x130
[ 229.889299][ T5951] cleanup_mnt+0x425/0x4c0
[ 229.889310][ T5951] ? lockdep_hardirqs_on+0x9c/0x150
[ 229.889322][ T5951] task_work_run+0x1d1/0x260
[ 229.889336][ T5951] ? __pfx_task_work_run+0x10/0x10
[ 229.889345][ T5951] ? __x64_sys_umount+0x122/0x160
[ 229.889361][ T5951] ? exit_to_user_mode_loop+0x40/0x110
[ 229.889380][ T5951] exit_to_user_mode_loop+0xe9/0x110
[ 229.889395][ T5951] do_syscall_64+0x2bd/0x3b0
[ 229.889406][ T5951] ? lockdep_hardirqs_on+0x9c/0x150
[ 229.889416][ T5951] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 229.889426][ T5951] ? clear_bhb_loop+0x60/0xb0
[ 229.889439][ T5951] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 229.889448][ T5951] RIP: 0033:0x7ff3058701f7
[ 229.889466][ T5951] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 229.889474][ T5951] RSP: 002b:00007ffc04f2dc38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 229.889489][ T5951] RAX: 0000000000000000 RBX: 00007ff3058f1d7d RCX: 00007ff3058701f7
[ 229.889496][ T5951] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc04f2dcf0
[ 229.889502][ T5951] RBP: 00007ffc04f2dcf0 R08: 0000000000000000 R09: 0000000000000000
[ 229.889508][ T5951] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc04f2ed80
[ 229.889514][ T5951] R13: 00007ff3058f1d7d R14: 00000000000380b3 R15: 00007ffc04f2edc0
[ 229.889532][ T5951]
[ 229.889537][ T5951] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 230.805504][ T6033] loop0: detected capacity change from 0 to 40427
[ 230.808014][ T6033] F2FS-fs (loop0): build fault injection rate: 771
[ 230.835392][ T6033] F2FS-fs (loop0): invalid crc value
[ 230.956963][ T6033] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 230.973112][ T6033] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 231.141684][ T5951] syz-executor: attempt to access beyond end of device
[ 231.141684][ T5951] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 231.141730][ T5951] CPU: 0 UID: 0 PID: 5951 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 231.141742][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 231.141749][ T5951] Call Trace:
[ 231.141753][ T5951]
[ 231.141758][ T5951] dump_stack_lvl+0x189/0x250
[ 231.141771][ T5951] ? reacquire_held_locks+0x127/0x1d0
[ 231.141783][ T5951] ? rt_spin_lock+0x1c1/0x3e0
[ 231.141798][ T5951] ? __pfx_dump_stack_lvl+0x10/0x10
[ 231.141808][ T5951] ? __pfx_queue_work_on+0x10/0x10
[ 231.141825][ T5951] ? rt_spin_unlock+0x150/0x200
[ 231.141842][ T5951] ? rt_spin_unlock+0x161/0x200
[ 231.141867][ T5951] f2fs_handle_critical_error+0x354/0x510
[ 231.141888][ T5951] f2fs_write_end_io+0x886/0xb60
[ 231.141911][ T5951] __submit_merged_bio+0x27a/0x6a0
[ 231.141930][ T5951] __submit_merged_write_cond+0x255/0x530
[ 231.141950][ T5951] f2fs_write_data_pages+0x261d/0x3000
[ 231.141982][ T5951] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 231.142024][ T5951] ? __lock_acquire+0xab9/0xd20
[ 231.142053][ T5951] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 231.142064][ T5951] ? lockdep_hardirqs_on+0x9c/0x150
[ 231.142076][ T5951] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 231.142097][ T5951] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 231.142108][ T5951] do_writepages+0x32e/0x550
[ 231.142121][ T5951] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 231.142136][ T5951] ? rt_spin_unlock+0x150/0x200
[ 231.142156][ T5951] filemap_fdatawrite+0x19c/0x240
[ 231.142170][ T5951] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 231.142206][ T5951] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 231.142225][ T5951] ? rt_spin_unlock+0x161/0x200
[ 231.142241][ T5951] f2fs_sync_dirty_inodes+0x31f/0x830
[ 231.142262][ T5951] f2fs_write_checkpoint+0x95a/0x1df0
[ 231.142288][ T5951] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 231.142324][ T5951] ? f2fs_stop_gc_thread+0x82/0xb0
[ 231.142336][ T5951] ? kfree+0x197/0x680
[ 231.142347][ T5951] ? f2fs_stop_gc_thread+0x82/0xb0
[ 231.142358][ T5951] ? kill_f2fs_super+0x298/0x6c0
[ 231.142372][ T5951] kill_f2fs_super+0x2c3/0x6c0
[ 231.142387][ T5951] ? __pfx_kill_f2fs_super+0x10/0x10
[ 231.142403][ T5951] ? shrinker_free+0x2ce/0x3e0
[ 231.142417][ T5951] deactivate_locked_super+0xbc/0x130
[ 231.142430][ T5951] cleanup_mnt+0x425/0x4c0
[ 231.142441][ T5951] ? lockdep_hardirqs_on+0x9c/0x150
[ 231.142453][ T5951] task_work_run+0x1d1/0x260
[ 231.142467][ T5951] ? __pfx_task_work_run+0x10/0x10
[ 231.142476][ T5951] ? __x64_sys_umount+0x122/0x160
[ 231.142492][ T5951] ? exit_to_user_mode_loop+0x40/0x110
[ 231.142510][ T5951] exit_to_user_mode_loop+0xe9/0x110
[ 231.142525][ T5951] do_syscall_64+0x2bd/0x3b0
[ 231.142536][ T5951] ? lockdep_hardirqs_on+0x9c/0x150
[ 231.142546][ T5951] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 231.142556][ T5951] ? clear_bhb_loop+0x60/0xb0
[ 231.142569][ T5951] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 231.142578][ T5951] RIP: 0033:0x7ff3058701f7
[ 231.142589][ T5951] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 231.142597][ T5951] RSP: 002b:00007ffc04f2dc38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 231.142608][ T5951] RAX: 0000000000000000 RBX: 00007ff3058f1d7d RCX: 00007ff3058701f7
[ 231.142615][ T5951] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc04f2dcf0
[ 231.142621][ T5951] RBP: 00007ffc04f2dcf0 R08: 0000000000000000 R09: 0000000000000000
[ 231.142627][ T5951] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc04f2ed80
[ 231.142633][ T5951] R13: 00007ff3058f1d7d R14: 00000000000385b2 R15: 00007ffc04f2edc0
[ 231.142651][ T5951]
[ 231.142655][ T5951] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 231.798026][ T6039] loop0: detected capacity change from 0 to 40427
[ 231.809978][ T6039] F2FS-fs (loop0): build fault injection rate: 771
[ 231.819024][ T6039] F2FS-fs (loop0): invalid crc value
[ 231.946569][ T6039] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 231.948628][ T6039] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 239.220146][ T6039] F2FS-fs (loop0): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[ 239.229642][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.229642][ T6039] loop0: rw=524288, sector=86016, nr_sectors = 8 limit=40427
[ 239.240683][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.240683][ T6039] loop0: rw=524288, sector=86024, nr_sectors = 8 limit=40427
[ 239.240871][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.240871][ T6039] loop0: rw=524288, sector=86032, nr_sectors = 8 limit=40427
[ 239.241028][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.241028][ T6039] loop0: rw=524288, sector=86040, nr_sectors = 8 limit=40427
[ 239.241901][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.241901][ T6039] loop0: rw=524288, sector=86048, nr_sectors = 8 limit=40427
[ 239.242075][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.242075][ T6039] loop0: rw=524288, sector=86056, nr_sectors = 8 limit=40427
[ 239.242232][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.242232][ T6039] loop0: rw=524288, sector=86064, nr_sectors = 8 limit=40427
[ 239.242402][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.242402][ T6039] loop0: rw=524288, sector=86072, nr_sectors = 8 limit=40427
[ 239.242582][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.242582][ T6039] loop0: rw=524288, sector=86080, nr_sectors = 8 limit=40427
[ 239.242742][ T6039] syz.0.19: attempt to access beyond end of device
[ 239.242742][ T6039] loop0: rw=524288, sector=86088, nr_sectors = 8 limit=40427
[ 244.231266][ T6039] bio_check_eod: 60031 callbacks suppressed
[ 244.231295][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.231295][ T6039] loop0: rw=524288, sector=88104, nr_sectors = 8 limit=40427
[ 244.231423][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.231423][ T6039] loop0: rw=524288, sector=88112, nr_sectors = 8 limit=40427
[ 244.231548][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.231548][ T6039] loop0: rw=524288, sector=88120, nr_sectors = 8 limit=40427
[ 244.231674][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.231674][ T6039] loop0: rw=524288, sector=88128, nr_sectors = 8 limit=40427
[ 244.231800][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.231800][ T6039] loop0: rw=524288, sector=88136, nr_sectors = 8 limit=40427
[ 244.231925][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.231925][ T6039] loop0: rw=524288, sector=88144, nr_sectors = 8 limit=40427
[ 244.232048][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.232048][ T6039] loop0: rw=524288, sector=88152, nr_sectors = 8 limit=40427
[ 244.232201][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.232201][ T6039] loop0: rw=524288, sector=88160, nr_sectors = 8 limit=40427
[ 244.232333][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.232333][ T6039] loop0: rw=524288, sector=88168, nr_sectors = 8 limit=40427
[ 244.232458][ T6039] syz.0.19: attempt to access beyond end of device
[ 244.232458][ T6039] loop0: rw=524288, sector=88176, nr_sectors = 8 limit=40427
[ 246.282881][ T59] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 246.284952][ T59] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 246.285773][ T59] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 246.287108][ T59] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 246.287851][ T59] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 246.677286][ T6048] chnl_net:caif_netlink_parms(): no params data found
[ 247.083632][ T6048] bridge0: port 1(bridge_slave_0) entered blocking state
[ 247.083842][ T6048] bridge0: port 1(bridge_slave_0) entered disabled state
[ 247.084024][ T6048] bridge_slave_0: entered allmulticast mode
[ 247.086691][ T6048] bridge_slave_0: entered promiscuous mode
[ 247.090521][ T6048] bridge0: port 2(bridge_slave_1) entered blocking state
[ 247.090737][ T6048] bridge0: port 2(bridge_slave_1) entered disabled state
[ 247.090897][ T6048] bridge_slave_1: entered allmulticast mode
[ 247.140038][ T6048] bridge_slave_1: entered promiscuous mode
[ 247.347221][ T6048] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 247.356639][ T6048] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 247.547595][ T6048] team0: Port device team_slave_0 added
[ 247.556203][ T6048] team0: Port device team_slave_1 added
[ 247.896119][ T6048] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 247.896136][ T6048] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 247.896159][ T6048] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 247.898582][ T6048] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 247.898595][ T6048] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 247.898619][ T6048] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 248.227376][ T6048] hsr_slave_0: entered promiscuous mode
[ 248.228621][ T6048] hsr_slave_1: entered promiscuous mode
[ 248.371322][ T59] Bluetooth: hci1: command tx timeout
[ 248.887733][ T6048] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 248.918765][ T6048] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 248.958963][ T6048] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 248.999240][ T6048] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 249.196575][ T6048] 8021q: adding VLAN 0 to HW filter on device bond0
[ 249.228331][ T6048] 8021q: adding VLAN 0 to HW filter on device team0
[ 249.239663][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 249.239866][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 249.254050][ T6039] bio_check_eod: 48376 callbacks suppressed
[ 249.254070][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254070][ T6039] loop0: rw=0, sector=87112, nr_sectors = 8 limit=40427
[ 249.254220][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254220][ T6039] loop0: rw=0, sector=87120, nr_sectors = 8 limit=40427
[ 249.254343][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254343][ T6039] loop0: rw=0, sector=87128, nr_sectors = 8 limit=40427
[ 249.254492][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254492][ T6039] loop0: rw=0, sector=87136, nr_sectors = 8 limit=40427
[ 249.254614][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254614][ T6039] loop0: rw=0, sector=87144, nr_sectors = 8 limit=40427
[ 249.254734][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254734][ T6039] loop0: rw=0, sector=87152, nr_sectors = 8 limit=40427
[ 249.254856][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254856][ T6039] loop0: rw=0, sector=87160, nr_sectors = 8 limit=40427
[ 249.254976][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.254976][ T6039] loop0: rw=0, sector=87168, nr_sectors = 8 limit=40427
[ 249.255096][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.255096][ T6039] loop0: rw=0, sector=87176, nr_sectors = 8 limit=40427
[ 249.255252][ T6039] syz.0.19: attempt to access beyond end of device
[ 249.255252][ T6039] loop0: rw=0, sector=87184, nr_sectors = 8 limit=40427
[ 249.290099][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 249.306747][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 249.739464][ T6048] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 249.810235][ T6048] veth0_vlan: entered promiscuous mode
[ 249.830601][ T6048] veth1_vlan: entered promiscuous mode
[ 249.879877][ T6048] veth0_macvtap: entered promiscuous mode
[ 249.896435][ T6048] veth1_macvtap: entered promiscuous mode
[ 249.922256][ T6048] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 249.927087][ T6048] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 249.954222][ T1432] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 249.954498][ T1432] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 249.954534][ T1432] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 249.954566][ T1432] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 250.264689][ T1112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 250.264711][ T1112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 250.350174][ T1432] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 250.350195][ T1432] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/02 22:55:54 executed programs: 5
[ 250.461429][ T59] Bluetooth: hci1: command tx timeout
[ 251.110029][ T6073] loop1: detected capacity change from 0 to 40427
[ 251.145576][ T6073] F2FS-fs (loop1): build fault injection rate: 771
[ 251.152907][ T6073] F2FS-fs (loop1): invalid crc value
[ 251.420326][ T6073] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 251.426986][ T6073] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 252.534673][ T59] Bluetooth: hci1: command tx timeout
[ 254.261367][ T6039] bio_check_eod: 31301 callbacks suppressed
[ 254.261387][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.261387][ T6039] loop0: rw=0, sector=86720, nr_sectors = 8 limit=40427
[ 254.261522][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.261522][ T6039] loop0: rw=0, sector=86728, nr_sectors = 8 limit=40427
[ 254.261653][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.261653][ T6039] loop0: rw=0, sector=86736, nr_sectors = 8 limit=40427
[ 254.261784][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.261784][ T6039] loop0: rw=0, sector=86744, nr_sectors = 8 limit=40427
[ 254.261921][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.261921][ T6039] loop0: rw=0, sector=86752, nr_sectors = 8 limit=40427
[ 254.262051][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.262051][ T6039] loop0: rw=0, sector=86760, nr_sectors = 8 limit=40427
[ 254.262180][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.262180][ T6039] loop0: rw=0, sector=86768, nr_sectors = 8 limit=40427
[ 254.262339][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.262339][ T6039] loop0: rw=0, sector=86776, nr_sectors = 8 limit=40427
[ 254.262468][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.262468][ T6039] loop0: rw=0, sector=86784, nr_sectors = 8 limit=40427
[ 254.262598][ T6039] syz.0.19: attempt to access beyond end of device
[ 254.262598][ T6039] loop0: rw=0, sector=86792, nr_sectors = 8 limit=40427
[ 254.612136][ T59] Bluetooth: hci1: command tx timeout
[ 255.905383][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 255.905478][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 259.275326][ T6039] bio_check_eod: 31752 callbacks suppressed
[ 259.275353][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.275353][ T6039] loop0: rw=524288, sector=86016, nr_sectors = 8 limit=40427
[ 259.275491][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.275491][ T6039] loop0: rw=524288, sector=86024, nr_sectors = 8 limit=40427
[ 259.275617][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.275617][ T6039] loop0: rw=524288, sector=86032, nr_sectors = 8 limit=40427
[ 259.275743][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.275743][ T6039] loop0: rw=524288, sector=86040, nr_sectors = 8 limit=40427
[ 259.275868][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.275868][ T6039] loop0: rw=524288, sector=86048, nr_sectors = 8 limit=40427
[ 259.275994][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.275994][ T6039] loop0: rw=524288, sector=86056, nr_sectors = 8 limit=40427
[ 259.276120][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.276120][ T6039] loop0: rw=524288, sector=86064, nr_sectors = 8 limit=40427
[ 259.276245][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.276245][ T6039] loop0: rw=524288, sector=86072, nr_sectors = 8 limit=40427
[ 259.276377][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.276377][ T6039] loop0: rw=524288, sector=86080, nr_sectors = 8 limit=40427
[ 259.276503][ T6039] syz.0.19: attempt to access beyond end of device
[ 259.276503][ T6039] loop0: rw=524288, sector=86088, nr_sectors = 8 limit=40427
[ 264.282711][ T6039] bio_check_eod: 32013 callbacks suppressed
[ 264.282732][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.282732][ T6039] loop0: rw=0, sector=87400, nr_sectors = 8 limit=40427
[ 264.282869][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.282869][ T6039] loop0: rw=0, sector=87408, nr_sectors = 8 limit=40427
[ 264.283001][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283001][ T6039] loop0: rw=0, sector=87416, nr_sectors = 8 limit=40427
[ 264.283141][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283141][ T6039] loop0: rw=0, sector=87424, nr_sectors = 8 limit=40427
[ 264.283271][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283271][ T6039] loop0: rw=0, sector=87432, nr_sectors = 8 limit=40427
[ 264.283401][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283401][ T6039] loop0: rw=0, sector=87440, nr_sectors = 8 limit=40427
[ 264.283526][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283526][ T6039] loop0: rw=0, sector=87448, nr_sectors = 8 limit=40427
[ 264.283658][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283658][ T6039] loop0: rw=0, sector=87456, nr_sectors = 8 limit=40427
[ 264.283788][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283788][ T6039] loop0: rw=0, sector=87464, nr_sectors = 8 limit=40427
[ 264.283926][ T6039] syz.0.19: attempt to access beyond end of device
[ 264.283926][ T6039] loop0: rw=0, sector=87472, nr_sectors = 8 limit=40427
[ 265.668589][ T5132] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 265.672026][ T5132] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 265.681550][ T5132] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 265.698207][ T5132] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 265.699220][ T5132] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 266.432293][ T6079] chnl_net:caif_netlink_parms(): no params data found
[ 266.990797][ T6079] bridge0: port 1(bridge_slave_0) entered blocking state
[ 266.991006][ T6079] bridge0: port 1(bridge_slave_0) entered disabled state
[ 266.991837][ T6079] bridge_slave_0: entered allmulticast mode
[ 266.994364][ T6079] bridge_slave_0: entered promiscuous mode
[ 267.007793][ T6079] bridge0: port 2(bridge_slave_1) entered blocking state
[ 267.008413][ T6079] bridge0: port 2(bridge_slave_1) entered disabled state
[ 267.008607][ T6079] bridge_slave_1: entered allmulticast mode
[ 267.021283][ T6079] bridge_slave_1: entered promiscuous mode
[ 267.297254][ T6079] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 267.310574][ T6079] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 267.620784][ T6079] team0: Port device team_slave_0 added
[ 267.634865][ T6079] team0: Port device team_slave_1 added
[ 267.734987][ T5132] Bluetooth: hci2: command tx timeout
[ 267.853919][ T6079] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 267.853935][ T6079] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 267.853958][ T6079] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 267.856313][ T6079] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 267.856332][ T6079] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 267.856355][ T6079] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 268.171952][ T6079] hsr_slave_0: entered promiscuous mode
[ 268.175742][ T6079] hsr_slave_1: entered promiscuous mode
[ 268.176650][ T6079] debugfs: 'hsr0' already exists in 'hsr'
[ 268.176672][ T6079] Cannot create hsr debugfs directory
[ 268.531057][ T6073] F2FS-fs (loop1): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[ 269.252879][ T6079] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 269.286288][ T6079] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 269.294671][ T6073] bio_check_eod: 27243 callbacks suppressed
[ 269.294688][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.294688][ T6073] loop1: rw=0, sector=87632, nr_sectors = 8 limit=40427
[ 269.294841][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.294841][ T6073] loop1: rw=0, sector=87640, nr_sectors = 8 limit=40427
[ 269.294964][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.294964][ T6073] loop1: rw=0, sector=87648, nr_sectors = 8 limit=40427
[ 269.295094][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.295094][ T6073] loop1: rw=0, sector=87656, nr_sectors = 8 limit=40427
[ 269.295215][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.295215][ T6073] loop1: rw=0, sector=87664, nr_sectors = 8 limit=40427
[ 269.295336][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.295336][ T6073] loop1: rw=0, sector=87672, nr_sectors = 8 limit=40427
[ 269.295457][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.295457][ T6073] loop1: rw=0, sector=87680, nr_sectors = 8 limit=40427
[ 269.295578][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.295578][ T6073] loop1: rw=0, sector=87688, nr_sectors = 8 limit=40427
[ 269.295697][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.295697][ T6073] loop1: rw=0, sector=87696, nr_sectors = 8 limit=40427
[ 269.295816][ T6073] syz.1.20: attempt to access beyond end of device
[ 269.295816][ T6073] loop1: rw=0, sector=87704, nr_sectors = 8 limit=40427
[ 269.493114][ T6079] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 269.540099][ T6079] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 269.811271][ T5132] Bluetooth: hci2: command tx timeout
[ 269.895189][ T6079] 8021q: adding VLAN 0 to HW filter on device bond0
[ 269.969460][ T6079] 8021q: adding VLAN 0 to HW filter on device team0
[ 269.996903][ T1432] bridge0: port 1(bridge_slave_0) entered blocking state
[ 269.998815][ T1432] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 270.058451][ T1112] bridge0: port 2(bridge_slave_1) entered blocking state
[ 270.058674][ T1112] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 270.769342][ T6079] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 270.919704][ T6079] veth0_vlan: entered promiscuous mode
[ 270.964694][ T6079] veth1_vlan: entered promiscuous mode
[ 271.046828][ T6079] veth0_macvtap: entered promiscuous mode
[ 271.070744][ T6079] veth1_macvtap: entered promiscuous mode
[ 271.160419][ T6079] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 271.202293][ T6079] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 271.234686][ T1508] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 271.238949][ T1508] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 271.240370][ T1508] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 271.254236][ T1508] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 271.596213][ T1420] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 271.596234][ T1420] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 271.697837][ T1112] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 271.697858][ T1112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/02 22:56:16 executed programs: 6
[ 271.891269][ T5132] Bluetooth: hci2: command tx timeout
[ 273.022973][ T6102] loop2: detected capacity change from 0 to 40427
[ 273.073239][ T6102] F2FS-fs (loop2): build fault injection rate: 771
[ 273.076432][ T6102] F2FS-fs (loop2): invalid crc value
[ 273.458725][ T6102] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 273.494996][ T6102] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 273.971475][ T59] Bluetooth: hci2: command tx timeout
[ 274.301170][ T6039] bio_check_eod: 37473 callbacks suppressed
[ 274.301190][ T6039] syz.0.19: attempt to access beyond end of device
[ 274.301190][ T6039] loop0: rw=524288, sector=89048, nr_sectors = 8 limit=40427
[ 274.301242][ T6073] syz.1.20: attempt to access beyond end of device
[ 274.301242][ T6073] loop1: rw=524288, sector=88736, nr_sectors = 8 limit=40427
[ 274.301328][ T6039] syz.0.19: attempt to access beyond end of device
[ 274.301328][ T6039] loop0: rw=524288, sector=89056, nr_sectors = 8 limit=40427
[ 274.301367][ T6073] syz.1.20: attempt to access beyond end of device
[ 274.301367][ T6073] loop1: rw=524288, sector=88744, nr_sectors = 8 limit=40427
[ 274.301455][ T6039] syz.0.19: attempt to access beyond end of device
[ 274.301455][ T6039] loop0: rw=524288, sector=89064, nr_sectors = 8 limit=40427
[ 274.301493][ T6073] syz.1.20: attempt to access beyond end of device
[ 274.301493][ T6073] loop1: rw=524288, sector=88752, nr_sectors = 8 limit=40427
[ 274.301608][ T6039] syz.0.19: attempt to access beyond end of device
[ 274.301608][ T6039] loop0: rw=524288, sector=89072, nr_sectors = 8 limit=40427
[ 274.301651][ T6073] syz.1.20: attempt to access beyond end of device
[ 274.301651][ T6073] loop1: rw=524288, sector=88760, nr_sectors = 8 limit=40427
[ 274.301735][ T6039] syz.0.19: attempt to access beyond end of device
[ 274.301735][ T6039] loop0: rw=524288, sector=89080, nr_sectors = 8 limit=40427
[ 274.301777][ T6073] syz.1.20: attempt to access beyond end of device
[ 274.301777][ T6073] loop1: rw=524288, sector=88768, nr_sectors = 8 limit=40427
[ 279.311135][ T6039] bio_check_eod: 39675 callbacks suppressed
[ 279.311156][ T6039] syz.0.19: attempt to access beyond end of device
[ 279.311156][ T6039] loop0: rw=0, sector=86304, nr_sectors = 8 limit=40427
[ 279.311277][ T6039] syz.0.19: attempt to access beyond end of device
[ 279.311277][ T6039] loop0: rw=0, sector=86312, nr_sectors = 8 limit=40427
[ 279.311303][ T6073] syz.1.20: attempt to access beyond end of device
[ 279.311303][ T6073] loop1: rw=0, sector=87520, nr_sectors = 8 limit=40427
[ 279.311406][ T6039] syz.0.19: attempt to access beyond end of device
[ 279.311406][ T6039] loop0: rw=0, sector=86320, nr_sectors = 8 limit=40427
[ 279.311439][ T6073] syz.1.20: attempt to access beyond end of device
[ 279.311439][ T6073] loop1: rw=0, sector=87528, nr_sectors = 8 limit=40427
[ 279.311535][ T6039] syz.0.19: attempt to access beyond end of device
[ 279.311535][ T6039] loop0: rw=0, sector=86328, nr_sectors = 8 limit=40427
[ 279.311569][ T6073] syz.1.20: attempt to access beyond end of device
[ 279.311569][ T6073] loop1: rw=0, sector=87536, nr_sectors = 8 limit=40427
[ 279.311665][ T6039] syz.0.19: attempt to access beyond end of device
[ 279.311665][ T6039] loop0: rw=0, sector=86336, nr_sectors = 8 limit=40427
[ 279.311699][ T6073] syz.1.20: attempt to access beyond end of device
[ 279.311699][ T6073] loop1: rw=0, sector=87544, nr_sectors = 8 limit=40427
[ 279.311795][ T6039] syz.0.19: attempt to access beyond end of device
[ 279.311795][ T6039] loop0: rw=0, sector=86344, nr_sectors = 8 limit=40427
[ 284.321346][ T6039] bio_check_eod: 40772 callbacks suppressed
[ 284.321369][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.321369][ T6039] loop0: rw=524288, sector=87240, nr_sectors = 8 limit=40427
[ 284.321499][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.321499][ T6039] loop0: rw=524288, sector=87248, nr_sectors = 8 limit=40427
[ 284.321625][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.321625][ T6039] loop0: rw=524288, sector=87256, nr_sectors = 8 limit=40427
[ 284.321759][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.321759][ T6039] loop0: rw=524288, sector=87264, nr_sectors = 8 limit=40427
[ 284.321885][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.321885][ T6039] loop0: rw=524288, sector=87272, nr_sectors = 8 limit=40427
[ 284.322010][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.322010][ T6039] loop0: rw=524288, sector=87280, nr_sectors = 8 limit=40427
[ 284.322135][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.322135][ T6039] loop0: rw=524288, sector=87288, nr_sectors = 8 limit=40427
[ 284.322260][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.322260][ T6039] loop0: rw=524288, sector=87296, nr_sectors = 8 limit=40427
[ 284.322385][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.322385][ T6039] loop0: rw=524288, sector=87304, nr_sectors = 8 limit=40427
[ 284.322511][ T6039] syz.0.19: attempt to access beyond end of device
[ 284.322511][ T6039] loop0: rw=524288, sector=87312, nr_sectors = 8 limit=40427
[ 287.267737][ T5132] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 287.287920][ T5132] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 287.291534][ T5132] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 287.306345][ T5132] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 287.321384][ T5132] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 288.362431][ T6108] chnl_net:caif_netlink_parms(): no params data found
[ 289.116684][ T6108] bridge0: port 1(bridge_slave_0) entered blocking state
[ 289.116900][ T6108] bridge0: port 1(bridge_slave_0) entered disabled state
[ 289.117091][ T6108] bridge_slave_0: entered allmulticast mode
[ 289.119766][ T6108] bridge_slave_0: entered promiscuous mode
[ 289.165613][ T6108] bridge0: port 2(bridge_slave_1) entered blocking state
[ 289.165810][ T6108] bridge0: port 2(bridge_slave_1) entered disabled state
[ 289.166008][ T6108] bridge_slave_1: entered allmulticast mode
[ 289.168685][ T6108] bridge_slave_1: entered promiscuous mode
[ 289.331469][ T6039] bio_check_eod: 34686 callbacks suppressed
[ 289.331489][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.331489][ T6039] loop0: rw=0, sector=89696, nr_sectors = 8 limit=40427
[ 289.331626][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.331626][ T6039] loop0: rw=0, sector=89704, nr_sectors = 8 limit=40427
[ 289.331756][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.331756][ T6039] loop0: rw=0, sector=89712, nr_sectors = 8 limit=40427
[ 289.331884][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.331884][ T6039] loop0: rw=0, sector=89720, nr_sectors = 8 limit=40427
[ 289.332015][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.332015][ T6039] loop0: rw=0, sector=89728, nr_sectors = 8 limit=40427
[ 289.332152][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.332152][ T6039] loop0: rw=0, sector=89736, nr_sectors = 8 limit=40427
[ 289.332282][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.332282][ T6039] loop0: rw=0, sector=89744, nr_sectors = 8 limit=40427
[ 289.332411][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.332411][ T6039] loop0: rw=0, sector=89752, nr_sectors = 8 limit=40427
[ 289.332575][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.332575][ T6039] loop0: rw=0, sector=89760, nr_sectors = 8 limit=40427
[ 289.332705][ T6039] syz.0.19: attempt to access beyond end of device
[ 289.332705][ T6039] loop0: rw=0, sector=89768, nr_sectors = 8 limit=40427
[ 289.411337][ T59] Bluetooth: hci3: command tx timeout
[ 289.566847][ T6108] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 289.571017][ T6108] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 290.026563][ T6108] team0: Port device team_slave_0 added
[ 290.052850][ T6108] team0: Port device team_slave_1 added
[ 290.355032][ T6108] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 290.355049][ T6108] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 290.355073][ T6108] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 290.357417][ T6108] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 290.357430][ T6108] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 290.357454][ T6108] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 291.088562][ T6108] hsr_slave_0: entered promiscuous mode
[ 291.089909][ T6108] hsr_slave_1: entered promiscuous mode
[ 291.090769][ T6108] debugfs: 'hsr0' already exists in 'hsr'
[ 291.090792][ T6108] Cannot create hsr debugfs directory
[ 291.491225][ T59] Bluetooth: hci3: command tx timeout
[ 292.536370][ T6108] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 292.615232][ T6108] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 292.721923][ T6108] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 292.761760][ T6108] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 293.146757][ T6108] 8021q: adding VLAN 0 to HW filter on device bond0
[ 293.216402][ T6108] 8021q: adding VLAN 0 to HW filter on device team0
[ 293.275968][ T1508] bridge0: port 1(bridge_slave_0) entered blocking state
[ 293.292092][ T1508] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 293.368774][ T1432] bridge0: port 2(bridge_slave_1) entered blocking state
[ 293.368931][ T1432] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 293.581607][ T59] Bluetooth: hci3: command tx timeout
[ 294.276278][ T6108] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 294.341466][ T6039] bio_check_eod: 31139 callbacks suppressed
[ 294.341486][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.341486][ T6039] loop0: rw=0, sector=89416, nr_sectors = 8 limit=40427
[ 294.341616][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.341616][ T6039] loop0: rw=0, sector=89424, nr_sectors = 8 limit=40427
[ 294.341741][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.341741][ T6039] loop0: rw=0, sector=89432, nr_sectors = 8 limit=40427
[ 294.341859][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.341859][ T6039] loop0: rw=0, sector=89440, nr_sectors = 8 limit=40427
[ 294.341980][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.341980][ T6039] loop0: rw=0, sector=89448, nr_sectors = 8 limit=40427
[ 294.342135][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.342135][ T6039] loop0: rw=0, sector=89456, nr_sectors = 8 limit=40427
[ 294.342262][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.342262][ T6039] loop0: rw=0, sector=89464, nr_sectors = 8 limit=40427
[ 294.342383][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.342383][ T6039] loop0: rw=0, sector=89472, nr_sectors = 8 limit=40427
[ 294.342518][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.342518][ T6039] loop0: rw=0, sector=89480, nr_sectors = 8 limit=40427
[ 294.342641][ T6039] syz.0.19: attempt to access beyond end of device
[ 294.342641][ T6039] loop0: rw=0, sector=89488, nr_sectors = 8 limit=40427
[ 294.552836][ T6108] veth0_vlan: entered promiscuous mode
[ 294.615245][ T6108] veth1_vlan: entered promiscuous mode
[ 294.789923][ T6108] veth0_macvtap: entered promiscuous mode
[ 294.807659][ T6108] veth1_macvtap: entered promiscuous mode
[ 294.846732][ T6108] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 294.864748][ T6108] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 294.882781][ T1432] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 294.911407][ T1432] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 294.918510][ T1432] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 294.946920][ T1432] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 295.442607][ T1112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 295.442630][ T1112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 295.653583][ T59] Bluetooth: hci3: command tx timeout
[ 295.662461][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 295.662481][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/02 22:56:40 executed programs: 7
[ 297.466723][ T6131] loop3: detected capacity change from 0 to 40427
[ 297.562473][ T6131] F2FS-fs (loop3): build fault injection rate: 771
[ 297.578566][ T6131] F2FS-fs (loop3): invalid crc value
[ 297.889069][ T6131] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 297.922926][ T6131] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 298.728176][ T6108] CPU: 0 UID: 0 PID: 6108 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 298.728204][ T6108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 298.728227][ T6108] Call Trace:
[ 298.728235][ T6108]
[ 298.728244][ T6108] dump_stack_lvl+0x189/0x250
[ 298.728266][ T6108] ? reacquire_held_locks+0x127/0x1d0
[ 298.728288][ T6108] ? rt_spin_lock+0x1c1/0x3e0
[ 298.728314][ T6108] ? __pfx_dump_stack_lvl+0x10/0x10
[ 298.728333][ T6108] ? __pfx_queue_work_on+0x10/0x10
[ 298.728363][ T6108] ? rt_spin_unlock+0x150/0x200
[ 298.728394][ T6108] ? rt_spin_unlock+0x161/0x200
[ 298.728423][ T6108] f2fs_handle_critical_error+0x354/0x510
[ 298.728458][ T6108] f2fs_write_end_io+0x886/0xb60
[ 298.728497][ T6108] __submit_merged_bio+0x27a/0x6a0
[ 298.728532][ T6108] __submit_merged_write_cond+0x255/0x530
[ 298.728568][ T6108] f2fs_write_data_pages+0x261d/0x3000
[ 298.728623][ T6108] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 298.728715][ T6108] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 298.728737][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 298.728776][ T6108] ? rt_mutex_slowunlock+0x493/0x8a0
[ 298.728801][ T6108] ? reacquire_held_locks+0x127/0x1d0
[ 298.728820][ T6108] ? rt_spin_lock+0x1c1/0x3e0
[ 298.728855][ T6108] ? rt_spin_unlock+0x150/0x200
[ 298.728886][ T6108] ? rt_spin_unlock+0x161/0x200
[ 298.728910][ T6108] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 298.728936][ T6108] do_writepages+0x32e/0x550
[ 298.728961][ T6108] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 298.728989][ T6108] ? rt_spin_unlock+0x150/0x200
[ 298.729026][ T6108] filemap_fdatawrite+0x19c/0x240
[ 298.729050][ T6108] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 298.729113][ T6108] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 298.729149][ T6108] ? rt_spin_unlock+0x161/0x200
[ 298.729177][ T6108] f2fs_sync_dirty_inodes+0x31f/0x830
[ 298.729214][ T6108] f2fs_write_checkpoint+0x95a/0x1df0
[ 298.729259][ T6108] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 298.729322][ T6108] ? f2fs_stop_gc_thread+0x82/0xb0
[ 298.729344][ T6108] ? kfree+0x197/0x680
[ 298.729365][ T6108] ? f2fs_stop_gc_thread+0x82/0xb0
[ 298.729387][ T6108] ? kill_f2fs_super+0x298/0x6c0
[ 298.729413][ T6108] kill_f2fs_super+0x2c3/0x6c0
[ 298.729441][ T6108] ? __pfx_kill_f2fs_super+0x10/0x10
[ 298.729469][ T6108] ? shrinker_free+0x2ce/0x3e0
[ 298.729495][ T6108] deactivate_locked_super+0xbc/0x130
[ 298.729518][ T6108] cleanup_mnt+0x425/0x4c0
[ 298.729536][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 298.729559][ T6108] task_work_run+0x1d1/0x260
[ 298.729584][ T6108] ? __pfx_task_work_run+0x10/0x10
[ 298.729603][ T6108] ? __x64_sys_umount+0x122/0x160
[ 298.729631][ T6108] ? exit_to_user_mode_loop+0x40/0x110
[ 298.729664][ T6108] exit_to_user_mode_loop+0xe9/0x110
[ 298.729692][ T6108] do_syscall_64+0x2bd/0x3b0
[ 298.729713][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 298.729732][ T6108] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.729751][ T6108] ? clear_bhb_loop+0x60/0xb0
[ 298.729774][ T6108] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.729793][ T6108] RIP: 0033:0x7f560fa301f7
[ 298.729811][ T6108] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 298.729827][ T6108] RSP: 002b:00007fff216d8748 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 298.729847][ T6108] RAX: 0000000000000000 RBX: 00007f560fab1d7d RCX: 00007f560fa301f7
[ 298.729860][ T6108] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff216d8800
[ 298.729871][ T6108] RBP: 00007fff216d8800 R08: 0000000000000000 R09: 0000000000000000
[ 298.729883][ T6108] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff216d9890
[ 298.729895][ T6108] R13: 00007f560fab1d7d R14: 0000000000048be0 R15: 00007fff216d98d0
[ 298.729934][ T6108]
[ 298.729942][ T6108] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 299.351900][ T6039] bio_check_eod: 28638 callbacks suppressed
[ 299.351921][ T6039] syz.0.19: attempt to access beyond end of device
[ 299.351921][ T6039] loop0: rw=524288, sector=87608, nr_sectors = 8 limit=40427
[ 299.351985][ T6073] syz.1.20: attempt to access beyond end of device
[ 299.351985][ T6073] loop1: rw=524288, sector=86488, nr_sectors = 8 limit=40427
[ 299.352049][ T6039] syz.0.19: attempt to access beyond end of device
[ 299.352049][ T6039] loop0: rw=524288, sector=87616, nr_sectors = 8 limit=40427
[ 299.352143][ T6073] syz.1.20: attempt to access beyond end of device
[ 299.352143][ T6073] loop1: rw=524288, sector=86496, nr_sectors = 8 limit=40427
[ 299.352174][ T6039] syz.0.19: attempt to access beyond end of device
[ 299.352174][ T6039] loop0: rw=524288, sector=87624, nr_sectors = 8 limit=40427
[ 299.352269][ T6073] syz.1.20: attempt to access beyond end of device
[ 299.352269][ T6073] loop1: rw=524288, sector=86504, nr_sectors = 8 limit=40427
[ 299.352300][ T6039] syz.0.19: attempt to access beyond end of device
[ 299.352300][ T6039] loop0: rw=524288, sector=87632, nr_sectors = 8 limit=40427
[ 299.352394][ T6073] syz.1.20: attempt to access beyond end of device
[ 299.352394][ T6073] loop1: rw=524288, sector=86512, nr_sectors = 8 limit=40427
[ 299.352426][ T6039] syz.0.19: attempt to access beyond end of device
[ 299.352426][ T6039] loop0: rw=524288, sector=87640, nr_sectors = 8 limit=40427
[ 299.352519][ T6073] syz.1.20: attempt to access beyond end of device
[ 299.352519][ T6073] loop1: rw=524288, sector=86520, nr_sectors = 8 limit=40427
[ 301.393429][ T6137] loop3: detected capacity change from 0 to 40427
[ 301.451167][ T6137] F2FS-fs (loop3): build fault injection rate: 771
[ 301.454398][ T6137] F2FS-fs (loop3): invalid crc value
[ 301.872981][ T6137] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 301.911238][ T6137] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
2025/10/02 22:56:47 executed programs: 9
[ 302.573425][ T6108] CPU: 1 UID: 0 PID: 6108 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 302.573455][ T6108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 302.573466][ T6108] Call Trace:
[ 302.573474][ T6108]
[ 302.573482][ T6108] dump_stack_lvl+0x189/0x250
[ 302.573505][ T6108] ? reacquire_held_locks+0x127/0x1d0
[ 302.573526][ T6108] ? rt_spin_lock+0x1c1/0x3e0
[ 302.573551][ T6108] ? __pfx_dump_stack_lvl+0x10/0x10
[ 302.573570][ T6108] ? __pfx_queue_work_on+0x10/0x10
[ 302.573600][ T6108] ? rt_spin_unlock+0x150/0x200
[ 302.573630][ T6108] ? rt_spin_unlock+0x161/0x200
[ 302.573659][ T6108] f2fs_handle_critical_error+0x354/0x510
[ 302.573693][ T6108] f2fs_write_end_io+0x886/0xb60
[ 302.573732][ T6108] __submit_merged_bio+0x27a/0x6a0
[ 302.573767][ T6108] __submit_merged_write_cond+0x255/0x530
[ 302.573801][ T6108] f2fs_write_data_pages+0x261d/0x3000
[ 302.573857][ T6108] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 302.573932][ T6108] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 302.573953][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 302.573992][ T6108] ? rt_mutex_slowunlock+0x493/0x8a0
[ 302.574016][ T6108] ? reacquire_held_locks+0x127/0x1d0
[ 302.574036][ T6108] ? rt_spin_lock+0x1c1/0x3e0
[ 302.574070][ T6108] ? rt_spin_unlock+0x150/0x200
[ 302.574101][ T6108] ? rt_spin_unlock+0x161/0x200
[ 302.574125][ T6108] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 302.574145][ T6108] do_writepages+0x32e/0x550
[ 302.574169][ T6108] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 302.574197][ T6108] ? rt_spin_unlock+0x150/0x200
[ 302.574233][ T6108] filemap_fdatawrite+0x19c/0x240
[ 302.574257][ T6108] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 302.574327][ T6108] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 302.574362][ T6108] ? rt_spin_unlock+0x161/0x200
[ 302.574391][ T6108] f2fs_sync_dirty_inodes+0x31f/0x830
[ 302.574428][ T6108] f2fs_write_checkpoint+0x95a/0x1df0
[ 302.574475][ T6108] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 302.574537][ T6108] ? f2fs_stop_gc_thread+0x82/0xb0
[ 302.574558][ T6108] ? kfree+0x197/0x680
[ 302.574580][ T6108] ? f2fs_stop_gc_thread+0x82/0xb0
[ 302.574600][ T6108] ? kill_f2fs_super+0x298/0x6c0
[ 302.574623][ T6108] kill_f2fs_super+0x2c3/0x6c0
[ 302.574650][ T6108] ? __pfx_kill_f2fs_super+0x10/0x10
[ 302.574679][ T6108] ? shrinker_free+0x2ce/0x3e0
[ 302.574705][ T6108] deactivate_locked_super+0xbc/0x130
[ 302.574728][ T6108] cleanup_mnt+0x425/0x4c0
[ 302.574747][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 302.574770][ T6108] task_work_run+0x1d1/0x260
[ 302.574795][ T6108] ? __pfx_task_work_run+0x10/0x10
[ 302.574813][ T6108] ? __x64_sys_umount+0x122/0x160
[ 302.574841][ T6108] ? exit_to_user_mode_loop+0x40/0x110
[ 302.574872][ T6108] exit_to_user_mode_loop+0xe9/0x110
[ 302.574900][ T6108] do_syscall_64+0x2bd/0x3b0
[ 302.574920][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 302.574939][ T6108] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.574957][ T6108] ? clear_bhb_loop+0x60/0xb0
[ 302.574981][ T6108] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.574998][ T6108] RIP: 0033:0x7f560fa301f7
[ 302.575016][ T6108] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 302.575032][ T6108] RSP: 002b:00007fff216d8748 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 302.575052][ T6108] RAX: 0000000000000000 RBX: 00007f560fab1d7d RCX: 00007f560fa301f7
[ 302.575065][ T6108] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff216d8800
[ 302.575076][ T6108] RBP: 00007fff216d8800 R08: 0000000000000000 R09: 0000000000000000
[ 302.575088][ T6108] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff216d9890
[ 302.575100][ T6108] R13: 00007f560fab1d7d R14: 0000000000049b83 R15: 00007fff216d98d0
[ 302.575133][ T6108]
[ 302.575140][ T6108] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 304.364111][ T6039] bio_check_eod: 27093 callbacks suppressed
[ 304.364132][ T6039] syz.0.19: attempt to access beyond end of device
[ 304.364132][ T6039] loop0: rw=0, sector=89624, nr_sectors = 8 limit=40427
[ 304.364260][ T6039] syz.0.19: attempt to access beyond end of device
[ 304.364260][ T6039] loop0: rw=0, sector=89632, nr_sectors = 8 limit=40427
[ 304.364327][ T6073] syz.1.20: attempt to access beyond end of device
[ 304.364327][ T6073] loop1: rw=0, sector=89608, nr_sectors = 8 limit=40427
[ 304.364386][ T6039] syz.0.19: attempt to access beyond end of device
[ 304.364386][ T6039] loop0: rw=0, sector=89640, nr_sectors = 8 limit=40427
[ 304.364460][ T6073] syz.1.20: attempt to access beyond end of device
[ 304.364460][ T6073] loop1: rw=0, sector=89616, nr_sectors = 8 limit=40427
[ 304.364515][ T6039] syz.0.19: attempt to access beyond end of device
[ 304.364515][ T6039] loop0: rw=0, sector=89648, nr_sectors = 8 limit=40427
[ 304.364600][ T6073] syz.1.20: attempt to access beyond end of device
[ 304.364600][ T6073] loop1: rw=0, sector=89624, nr_sectors = 8 limit=40427
[ 304.364641][ T6039] syz.0.19: attempt to access beyond end of device
[ 304.364641][ T6039] loop0: rw=0, sector=89656, nr_sectors = 8 limit=40427
[ 304.364764][ T6073] syz.1.20: attempt to access beyond end of device
[ 304.364764][ T6073] loop1: rw=0, sector=89632, nr_sectors = 8 limit=40427
[ 304.364771][ T6039] syz.0.19: attempt to access beyond end of device
[ 304.364771][ T6039] loop0: rw=0, sector=89664, nr_sectors = 8 limit=40427
[ 304.756061][ T6143] loop3: detected capacity change from 0 to 40427
[ 304.788790][ T6143] F2FS-fs (loop3): build fault injection rate: 771
[ 304.797257][ T6143] F2FS-fs (loop3): invalid crc value
[ 305.264181][ T6143] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 305.280717][ T6143] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 305.981980][ T6108] CPU: 0 UID: 0 PID: 6108 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 305.982009][ T6108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 305.982019][ T6108] Call Trace:
[ 305.982027][ T6108]
[ 305.982035][ T6108] dump_stack_lvl+0x189/0x250
[ 305.982057][ T6108] ? reacquire_held_locks+0x127/0x1d0
[ 305.982078][ T6108] ? rt_spin_lock+0x1c1/0x3e0
[ 305.982104][ T6108] ? __pfx_dump_stack_lvl+0x10/0x10
[ 305.982120][ T6108] ? __pfx_queue_work_on+0x10/0x10
[ 305.982167][ T6108] ? rt_spin_unlock+0x150/0x200
[ 305.982198][ T6108] ? rt_spin_unlock+0x161/0x200
[ 305.982226][ T6108] f2fs_handle_critical_error+0x354/0x510
[ 305.982261][ T6108] f2fs_write_end_io+0x886/0xb60
[ 305.982301][ T6108] __submit_merged_bio+0x27a/0x6a0
[ 305.982336][ T6108] __submit_merged_write_cond+0x255/0x530
[ 305.982371][ T6108] f2fs_write_data_pages+0x261d/0x3000
[ 305.982428][ T6108] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 305.982504][ T6108] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 305.982525][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 305.982566][ T6108] ? rt_mutex_slowunlock+0x493/0x8a0
[ 305.982590][ T6108] ? reacquire_held_locks+0x127/0x1d0
[ 305.982610][ T6108] ? rt_spin_lock+0x1c1/0x3e0
[ 305.982645][ T6108] ? rt_spin_unlock+0x150/0x200
[ 305.982676][ T6108] ? rt_spin_unlock+0x161/0x200
[ 305.982701][ T6108] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 305.982721][ T6108] do_writepages+0x32e/0x550
[ 305.982745][ T6108] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 305.982773][ T6108] ? rt_spin_unlock+0x150/0x200
[ 305.982811][ T6108] filemap_fdatawrite+0x19c/0x240
[ 305.982835][ T6108] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 305.982897][ T6108] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 305.982932][ T6108] ? rt_spin_unlock+0x161/0x200
[ 305.982961][ T6108] f2fs_sync_dirty_inodes+0x31f/0x830
[ 305.982999][ T6108] f2fs_write_checkpoint+0x95a/0x1df0
[ 305.983046][ T6108] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 305.983111][ T6108] ? f2fs_stop_gc_thread+0x82/0xb0
[ 305.983132][ T6108] ? kfree+0x197/0x680
[ 305.983158][ T6108] ? f2fs_stop_gc_thread+0x82/0xb0
[ 305.983181][ T6108] ? kill_f2fs_super+0x298/0x6c0
[ 305.983207][ T6108] kill_f2fs_super+0x2c3/0x6c0
[ 305.983235][ T6108] ? __pfx_kill_f2fs_super+0x10/0x10
[ 305.983264][ T6108] ? shrinker_free+0x2ce/0x3e0
[ 305.983291][ T6108] deactivate_locked_super+0xbc/0x130
[ 305.983315][ T6108] cleanup_mnt+0x425/0x4c0
[ 305.983333][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 305.983356][ T6108] task_work_run+0x1d1/0x260
[ 305.983382][ T6108] ? __pfx_task_work_run+0x10/0x10
[ 305.983401][ T6108] ? __x64_sys_umount+0x122/0x160
[ 305.983429][ T6108] ? exit_to_user_mode_loop+0x40/0x110
[ 305.983463][ T6108] exit_to_user_mode_loop+0xe9/0x110
[ 305.983491][ T6108] do_syscall_64+0x2bd/0x3b0
[ 305.983511][ T6108] ? lockdep_hardirqs_on+0x9c/0x150
[ 305.983531][ T6108] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.983550][ T6108] ? clear_bhb_loop+0x60/0xb0
[ 305.983573][ T6108] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.983592][ T6108] RIP: 0033:0x7f560fa301f7
[ 305.983609][ T6108] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 305.983625][ T6108] RSP: 002b:00007fff216d8748 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 305.983646][ T6108] RAX: 0000000000000000 RBX: 00007f560fab1d7d RCX: 00007f560fa301f7
[ 305.983659][ T6108] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff216d8800
[ 305.983671][ T6108] RBP: 00007fff216d8800 R08: 0000000000000000 R09: 0000000000000000
[ 305.983683][ T6108] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff216d9890
[ 305.983695][ T6108] R13: 00007f560fab1d7d R14: 000000000004a87e R15: 00007fff216d98d0
[ 305.983728][ T6108]
[ 305.983736][ T6108] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 306.365584][ T6102] F2FS-fs (loop2): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[ 308.799421][ T6149] loop3: detected capacity change from 0 to 40427
[ 308.840852][ T6149] F2FS-fs (loop3): build fault injection rate: 771
[ 308.853908][ T6149] F2FS-fs (loop3): invalid crc value
[ 309.279189][ T6149] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 309.318252][ T6149] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 309.371272][ T6102] bio_check_eod: 35562 callbacks suppressed
[ 309.371292][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.371292][ T6102] loop2: rw=0, sector=88056, nr_sectors = 8 limit=40427
[ 309.371442][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.371442][ T6102] loop2: rw=0, sector=88064, nr_sectors = 8 limit=40427
[ 309.371559][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.371559][ T6102] loop2: rw=0, sector=88072, nr_sectors = 8 limit=40427
[ 309.371683][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.371683][ T6102] loop2: rw=0, sector=88080, nr_sectors = 8 limit=40427
[ 309.371814][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.371814][ T6102] loop2: rw=0, sector=88088, nr_sectors = 8 limit=40427
[ 309.371938][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.371938][ T6102] loop2: rw=0, sector=88096, nr_sectors = 8 limit=40427
[ 309.372065][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.372065][ T6102] loop2: rw=0, sector=88104, nr_sectors = 8 limit=40427
[ 309.372189][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.372189][ T6102] loop2: rw=0, sector=88112, nr_sectors = 8 limit=40427
[ 309.372312][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.372312][ T6102] loop2: rw=0, sector=88120, nr_sectors = 8 limit=40427
[ 309.372465][ T6102] syz.2.21: attempt to access beyond end of device
[ 309.372465][ T6102] loop2: rw=0, sector=88128, nr_sectors = 8 limit=40427
[ 314.381321][ T6039] bio_check_eod: 42039 callbacks suppressed
[ 314.381341][ T6039] syz.0.19: attempt to access beyond end of device
[ 314.381341][ T6039] loop0: rw=0, sector=86184, nr_sectors = 8 limit=40427
[ 314.381458][ T6102] syz.2.21: attempt to access beyond end of device
[ 314.381458][ T6102] loop2: rw=524288, sector=87528, nr_sectors = 8 limit=40427
[ 314.381471][ T6039] syz.0.19: attempt to access beyond end of device
[ 314.381471][ T6039] loop0: rw=0, sector=86192, nr_sectors = 8 limit=40427
[ 314.381588][ T6102] syz.2.21: attempt to access beyond end of device
[ 314.381588][ T6102] loop2: rw=524288, sector=87536, nr_sectors = 8 limit=40427
[ 314.381601][ T6039] syz.0.19: attempt to access beyond end of device
[ 314.381601][ T6039] loop0: rw=0, sector=86200, nr_sectors = 8 limit=40427
[ 314.381715][ T6102] syz.2.21: attempt to access beyond end of device
[ 314.381715][ T6102] loop2: rw=524288, sector=87544, nr_sectors = 8 limit=40427
[ 314.381731][ T6039] syz.0.19: attempt to access beyond end of device
[ 314.381731][ T6039] loop0: rw=0, sector=86208, nr_sectors = 8 limit=40427
[ 314.381842][ T6102] syz.2.21: attempt to access beyond end of device
[ 314.381842][ T6102] loop2: rw=524288, sector=87552, nr_sectors = 8 limit=40427
[ 314.381891][ T6039] syz.0.19: attempt to access beyond end of device
[ 314.381891][ T6039] loop0: rw=0, sector=86216, nr_sectors = 8 limit=40427
[ 314.381967][ T6102] syz.2.21: attempt to access beyond end of device
[ 314.381967][ T6102] loop2: rw=524288, sector=87560, nr_sectors = 8 limit=40427
[ 317.337094][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 317.337986][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 319.391161][ T6102] bio_check_eod: 41756 callbacks suppressed
[ 319.391181][ T6102] syz.2.21: attempt to access beyond end of device
[ 319.391181][ T6102] loop2: rw=524288, sector=87984, nr_sectors = 8 limit=40427
[ 319.391303][ T6102] syz.2.21: attempt to access beyond end of device
[ 319.391303][ T6102] loop2: rw=524288, sector=87992, nr_sectors = 8 limit=40427
[ 319.391432][ T6039] syz.0.19: attempt to access beyond end of device
[ 319.391432][ T6039] loop0: rw=524288, sector=89800, nr_sectors = 8 limit=40427
[ 319.391453][ T6102] syz.2.21: attempt to access beyond end of device
[ 319.391453][ T6102] loop2: rw=524288, sector=88000, nr_sectors = 8 limit=40427
[ 319.391564][ T6039] syz.0.19: attempt to access beyond end of device
[ 319.391564][ T6039] loop0: rw=524288, sector=89808, nr_sectors = 8 limit=40427
[ 319.391581][ T6102] syz.2.21: attempt to access beyond end of device
[ 319.391581][ T6102] loop2: rw=524288, sector=88008, nr_sectors = 8 limit=40427
[ 319.391691][ T6039] syz.0.19: attempt to access beyond end of device
[ 319.391691][ T6039] loop0: rw=524288, sector=89816, nr_sectors = 8 limit=40427
[ 319.391716][ T6102] syz.2.21: attempt to access beyond end of device
[ 319.391716][ T6102] loop2: rw=524288, sector=88016, nr_sectors = 8 limit=40427
[ 319.391818][ T6039] syz.0.19: attempt to access beyond end of device
[ 319.391818][ T6039] loop0: rw=524288, sector=89824, nr_sectors = 8 limit=40427
[ 319.391843][ T6102] syz.2.21: attempt to access beyond end of device
[ 319.391843][ T6102] loop2: rw=524288, sector=88024, nr_sectors = 8 limit=40427
[ 321.264610][ T5132] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 321.267542][ T5132] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 321.268734][ T5132] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 321.269809][ T5132] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 321.270575][ T5132] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 322.305884][ T6161] chnl_net:caif_netlink_parms(): no params data found
[ 323.103971][ T6161] bridge0: port 1(bridge_slave_0) entered blocking state
[ 323.115064][ T6161] bridge0: port 1(bridge_slave_0) entered disabled state
[ 323.115301][ T6161] bridge_slave_0: entered allmulticast mode
[ 323.117865][ T6161] bridge_slave_0: entered promiscuous mode
[ 323.167044][ T6161] bridge0: port 2(bridge_slave_1) entered blocking state
[ 323.170621][ T6161] bridge0: port 2(bridge_slave_1) entered disabled state
[ 323.170856][ T6161] bridge_slave_1: entered allmulticast mode
[ 323.188992][ T6161] bridge_slave_1: entered promiscuous mode
[ 323.341341][ T5132] Bluetooth: hci4: command tx timeout
[ 323.665406][ T6161] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 323.669712][ T6161] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 324.180841][ T6161] team0: Port device team_slave_0 added
[ 324.204888][ T6161] team0: Port device team_slave_1 added
[ 324.403485][ T6102] bio_check_eod: 37749 callbacks suppressed
[ 324.403506][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.403506][ T6102] loop2: rw=524288, sector=87816, nr_sectors = 8 limit=40427
[ 324.403639][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.403639][ T6102] loop2: rw=524288, sector=87824, nr_sectors = 8 limit=40427
[ 324.403772][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.403772][ T6102] loop2: rw=524288, sector=87832, nr_sectors = 8 limit=40427
[ 324.403899][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.403899][ T6102] loop2: rw=524288, sector=87840, nr_sectors = 8 limit=40427
[ 324.404023][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.404023][ T6102] loop2: rw=524288, sector=87848, nr_sectors = 8 limit=40427
[ 324.404149][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.404149][ T6102] loop2: rw=524288, sector=87856, nr_sectors = 8 limit=40427
[ 324.404273][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.404273][ T6102] loop2: rw=524288, sector=87864, nr_sectors = 8 limit=40427
[ 324.404402][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.404402][ T6102] loop2: rw=524288, sector=87872, nr_sectors = 8 limit=40427
[ 324.404532][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.404532][ T6102] loop2: rw=524288, sector=87880, nr_sectors = 8 limit=40427
[ 324.404657][ T6102] syz.2.21: attempt to access beyond end of device
[ 324.404657][ T6102] loop2: rw=524288, sector=87888, nr_sectors = 8 limit=40427
[ 325.098745][ T6161] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 325.098761][ T6161] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 325.098785][ T6161] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 325.147487][ T6161] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 325.147503][ T6161] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 325.147528][ T6161] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 325.411359][ T5132] Bluetooth: hci4: command tx timeout
[ 325.723155][ T6161] hsr_slave_0: entered promiscuous mode
[ 325.724420][ T6161] hsr_slave_1: entered promiscuous mode
[ 325.725258][ T6161] debugfs: 'hsr0' already exists in 'hsr'
[ 325.725281][ T6161] Cannot create hsr debugfs directory
[ 327.404176][ T6161] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 327.466077][ T6161] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 327.491550][ T5132] Bluetooth: hci4: command tx timeout
[ 327.601461][ T6161] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 327.731365][ T6161] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 328.325247][ T6161] 8021q: adding VLAN 0 to HW filter on device bond0
[ 328.379862][ T6161] 8021q: adding VLAN 0 to HW filter on device team0
[ 328.445692][ T1181] bridge0: port 1(bridge_slave_0) entered blocking state
[ 328.445942][ T1181] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 328.449713][ T1181] bridge0: port 2(bridge_slave_1) entered blocking state
[ 328.449852][ T1181] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 329.405930][ T6161] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 329.421421][ T6073] bio_check_eod: 33994 callbacks suppressed
[ 329.421439][ T6073] syz.1.20: attempt to access beyond end of device
[ 329.421439][ T6073] loop1: rw=0, sector=89920, nr_sectors = 8 limit=40427
[ 329.421576][ T6073] syz.1.20: attempt to access beyond end of device
[ 329.421576][ T6073] loop1: rw=0, sector=89928, nr_sectors = 8 limit=40427
[ 329.423044][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423044][ T6102] loop2: rw=524288, sector=87640, nr_sectors = 8 limit=40427
[ 329.423186][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423186][ T6102] loop2: rw=524288, sector=87648, nr_sectors = 8 limit=40427
[ 329.423314][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423314][ T6102] loop2: rw=524288, sector=87656, nr_sectors = 8 limit=40427
[ 329.423440][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423440][ T6102] loop2: rw=524288, sector=87664, nr_sectors = 8 limit=40427
[ 329.423566][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423566][ T6102] loop2: rw=524288, sector=87672, nr_sectors = 8 limit=40427
[ 329.423725][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423725][ T6102] loop2: rw=524288, sector=87680, nr_sectors = 8 limit=40427
[ 329.423851][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423851][ T6102] loop2: rw=524288, sector=87688, nr_sectors = 8 limit=40427
[ 329.423976][ T6102] syz.2.21: attempt to access beyond end of device
[ 329.423976][ T6102] loop2: rw=524288, sector=87696, nr_sectors = 8 limit=40427
[ 329.572628][ T5132] Bluetooth: hci4: command tx timeout
[ 330.680519][ T6161] veth0_vlan: entered promiscuous mode
[ 330.705607][ T6161] veth1_vlan: entered promiscuous mode
[ 330.842022][ T6161] veth0_macvtap: entered promiscuous mode
[ 330.858994][ T6161] veth1_macvtap: entered promiscuous mode
[ 330.897272][ T6161] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 330.914909][ T6161] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 331.051327][ T1138] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 331.081274][ T1138] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 331.131448][ T1508] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 331.172001][ T1508] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 331.783120][ T1124] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 331.783141][ T1124] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 332.007661][ T1181] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 332.007680][ T1181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/02 22:57:16 executed programs: 11
[ 334.025503][ T6190] loop4: detected capacity change from 0 to 40427
[ 334.114354][ T6190] F2FS-fs (loop4): build fault injection rate: 771
[ 334.117366][ T6190] F2FS-fs (loop4): invalid crc value
[ 334.436396][ T6039] bio_check_eod: 33081 callbacks suppressed
[ 334.436418][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.436418][ T6039] loop0: rw=524288, sector=87760, nr_sectors = 8 limit=40427
[ 334.436575][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.436575][ T6039] loop0: rw=524288, sector=87768, nr_sectors = 8 limit=40427
[ 334.436702][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.436702][ T6039] loop0: rw=524288, sector=87776, nr_sectors = 8 limit=40427
[ 334.436828][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.436828][ T6039] loop0: rw=524288, sector=87784, nr_sectors = 8 limit=40427
[ 334.436965][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.436965][ T6039] loop0: rw=524288, sector=87792, nr_sectors = 8 limit=40427
[ 334.437092][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.437092][ T6039] loop0: rw=524288, sector=87800, nr_sectors = 8 limit=40427
[ 334.437218][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.437218][ T6039] loop0: rw=524288, sector=87808, nr_sectors = 8 limit=40427
[ 334.437343][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.437343][ T6039] loop0: rw=524288, sector=87816, nr_sectors = 8 limit=40427
[ 334.437469][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.437469][ T6039] loop0: rw=524288, sector=87824, nr_sectors = 8 limit=40427
[ 334.437595][ T6039] syz.0.19: attempt to access beyond end of device
[ 334.437595][ T6039] loop0: rw=524288, sector=87832, nr_sectors = 8 limit=40427
[ 334.688586][ T6190] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 334.741657][ T6190] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 335.632036][ T6161] CPU: 1 UID: 0 PID: 6161 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 335.632064][ T6161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 335.632075][ T6161] Call Trace:
[ 335.632083][ T6161]
[ 335.632091][ T6161] dump_stack_lvl+0x189/0x250
[ 335.632113][ T6161] ? reacquire_held_locks+0x127/0x1d0
[ 335.632135][ T6161] ? rt_spin_lock+0x1c1/0x3e0
[ 335.632161][ T6161] ? __pfx_dump_stack_lvl+0x10/0x10
[ 335.632179][ T6161] ? __pfx_queue_work_on+0x10/0x10
[ 335.632209][ T6161] ? rt_spin_unlock+0x150/0x200
[ 335.632240][ T6161] ? rt_spin_unlock+0x161/0x200
[ 335.632269][ T6161] f2fs_handle_critical_error+0x354/0x510
[ 335.632303][ T6161] f2fs_write_end_io+0x886/0xb60
[ 335.632341][ T6161] __submit_merged_bio+0x27a/0x6a0
[ 335.632376][ T6161] __submit_merged_write_cond+0x255/0x530
[ 335.632410][ T6161] f2fs_write_data_pages+0x261d/0x3000
[ 335.632465][ T6161] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 335.632546][ T6161] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 335.632566][ T6161] ? lockdep_hardirqs_on+0x9c/0x150
[ 335.632599][ T6161] ? rt_mutex_slowunlock+0x493/0x8a0
[ 335.632623][ T6161] ? reacquire_held_locks+0x127/0x1d0
[ 335.632643][ T6161] ? rt_spin_lock+0x1c1/0x3e0
[ 335.632675][ T6161] ? rt_spin_unlock+0x150/0x200
[ 335.632705][ T6161] ? rt_spin_unlock+0x161/0x200
[ 335.632728][ T6161] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 335.632745][ T6161] do_writepages+0x32e/0x550
[ 335.632764][ T6161] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 335.632786][ T6161] ? rt_spin_unlock+0x150/0x200
[ 335.632814][ T6161] filemap_fdatawrite+0x19c/0x240
[ 335.632833][ T6161] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 335.632882][ T6161] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 335.632909][ T6161] ? rt_spin_unlock+0x161/0x200
[ 335.632931][ T6161] f2fs_sync_dirty_inodes+0x31f/0x830
[ 335.632960][ T6161] f2fs_write_checkpoint+0x95a/0x1df0
[ 335.632996][ T6161] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 335.633044][ T6161] ? f2fs_stop_gc_thread+0x82/0xb0
[ 335.633060][ T6161] ? kfree+0x197/0x680
[ 335.633077][ T6161] ? f2fs_stop_gc_thread+0x82/0xb0
[ 335.633094][ T6161] ? kill_f2fs_super+0x298/0x6c0
[ 335.633114][ T6161] kill_f2fs_super+0x2c3/0x6c0
[ 335.633135][ T6161] ? __pfx_kill_f2fs_super+0x10/0x10
[ 335.633158][ T6161] ? shrinker_free+0x2ce/0x3e0
[ 335.633179][ T6161] deactivate_locked_super+0xbc/0x130
[ 335.633197][ T6161] cleanup_mnt+0x425/0x4c0
[ 335.633212][ T6161] ? lockdep_hardirqs_on+0x9c/0x150
[ 335.633229][ T6161] task_work_run+0x1d1/0x260
[ 335.633249][ T6161] ? __pfx_task_work_run+0x10/0x10
[ 335.633263][ T6161] ? __x64_sys_umount+0x122/0x160
[ 335.633285][ T6161] ? exit_to_user_mode_loop+0x40/0x110
[ 335.633311][ T6161] exit_to_user_mode_loop+0xe9/0x110
[ 335.633333][ T6161] do_syscall_64+0x2bd/0x3b0
[ 335.633349][ T6161] ? lockdep_hardirqs_on+0x9c/0x150
[ 335.633363][ T6161] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.633379][ T6161] ? clear_bhb_loop+0x60/0xb0
[ 335.633397][ T6161] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.633412][ T6161] RIP: 0033:0x7effbe9101f7
[ 335.633427][ T6161] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 335.633440][ T6161] RSP: 002b:00007ffd85070838 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 335.633456][ T6161] RAX: 0000000000000000 RBX: 00007effbe991d7d RCX: 00007effbe9101f7
[ 335.633466][ T6161] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd850708f0
[ 335.633481][ T6161] RBP: 00007ffd850708f0 R08: 0000000000000000 R09: 0000000000000000
[ 335.633491][ T6161] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd85071980
[ 335.633501][ T6161] R13: 00007effbe991d7d R14: 0000000000051bbc R15: 00007ffd850719c0
[ 335.633525][ T6161]
[ 335.633537][ T6161] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 338.810059][ T6196] loop4: detected capacity change from 0 to 40427
[ 338.882121][ T6196] F2FS-fs (loop4): build fault injection rate: 771
[ 338.901969][ T6196] F2FS-fs (loop4): invalid crc value
[ 339.438447][ T6196] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 339.441602][ T6102] bio_check_eod: 31821 callbacks suppressed
[ 339.441617][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.441617][ T6102] loop2: rw=0, sector=88472, nr_sectors = 8 limit=40427
[ 339.441750][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.441750][ T6102] loop2: rw=0, sector=88480, nr_sectors = 8 limit=40427
[ 339.441875][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.441875][ T6102] loop2: rw=0, sector=88488, nr_sectors = 8 limit=40427
[ 339.442001][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.442001][ T6102] loop2: rw=0, sector=88496, nr_sectors = 8 limit=40427
[ 339.442127][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.442127][ T6102] loop2: rw=0, sector=88504, nr_sectors = 8 limit=40427
[ 339.442248][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.442248][ T6102] loop2: rw=0, sector=88512, nr_sectors = 8 limit=40427
[ 339.442377][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.442377][ T6102] loop2: rw=0, sector=88520, nr_sectors = 8 limit=40427
[ 339.442498][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.442498][ T6102] loop2: rw=0, sector=88528, nr_sectors = 8 limit=40427
[ 339.442619][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.442619][ T6102] loop2: rw=0, sector=88536, nr_sectors = 8 limit=40427
[ 339.442760][ T6102] syz.2.21: attempt to access beyond end of device
[ 339.442760][ T6102] loop2: rw=0, sector=88544, nr_sectors = 8 limit=40427
[ 339.541709][ T6196] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
2025/10/02 22:57:25 executed programs: 13
[ 340.600134][ T6161] CPU: 0 UID: 0 PID: 6161 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 340.600162][ T6161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 340.600174][ T6161] Call Trace:
[ 340.600181][ T6161]
[ 340.600189][ T6161] dump_stack_lvl+0x189/0x250
[ 340.600211][ T6161] ? reacquire_held_locks+0x127/0x1d0
[ 340.600233][ T6161] ? rt_spin_lock+0x1c1/0x3e0
[ 340.600260][ T6161] ? __pfx_dump_stack_lvl+0x10/0x10
[ 340.600279][ T6161] ? __pfx_queue_work_on+0x10/0x10
[ 340.600309][ T6161] ? rt_spin_unlock+0x150/0x200
[ 340.600338][ T6161] ? rt_spin_unlock+0x161/0x200
[ 340.600367][ T6161] f2fs_handle_critical_error+0x354/0x510
[ 340.600402][ T6161] f2fs_write_end_io+0x886/0xb60
[ 340.600441][ T6161] __submit_merged_bio+0x27a/0x6a0
[ 340.600475][ T6161] __submit_merged_write_cond+0x255/0x530
[ 340.600510][ T6161] f2fs_write_data_pages+0x261d/0x3000
[ 340.600566][ T6161] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 340.600642][ T6161] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 340.600663][ T6161] ? lockdep_hardirqs_on+0x9c/0x150
[ 340.600703][ T6161] ? rt_mutex_slowunlock+0x493/0x8a0
[ 340.600727][ T6161] ? reacquire_held_locks+0x127/0x1d0
[ 340.600746][ T6161] ? rt_spin_lock+0x1c1/0x3e0
[ 340.600782][ T6161] ? rt_spin_unlock+0x150/0x200
[ 340.600812][ T6161] ? rt_spin_unlock+0x161/0x200
[ 340.600836][ T6161] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 340.600857][ T6161] do_writepages+0x32e/0x550
[ 340.600881][ T6161] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 340.600909][ T6161] ? rt_spin_unlock+0x150/0x200
[ 340.600946][ T6161] filemap_fdatawrite+0x19c/0x240
[ 340.600970][ T6161] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 340.601033][ T6161] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 340.601069][ T6161] ? rt_spin_unlock+0x161/0x200
[ 340.601099][ T6161] f2fs_sync_dirty_inodes+0x31f/0x830
[ 340.601136][ T6161] f2fs_write_checkpoint+0x95a/0x1df0
[ 340.601177][ T6161] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 340.601196][ T6161] ? do_raw_spin_lock+0x121/0x290
[ 340.601260][ T6161] ? f2fs_stop_gc_thread+0x82/0xb0
[ 340.601281][ T6161] ? kfree+0x468/0x680
[ 340.601306][ T6161] ? kill_f2fs_super+0x298/0x6c0
[ 340.601332][ T6161] kill_f2fs_super+0x2c3/0x6c0
[ 340.601359][ T6161] ? __pfx_kill_f2fs_super+0x10/0x10
[ 340.601387][ T6161] ? shrinker_free+0x2ce/0x3e0
[ 340.601414][ T6161] deactivate_locked_super+0xbc/0x130
[ 340.601437][ T6161] cleanup_mnt+0x425/0x4c0
[ 340.601455][ T6161] ? lockdep_hardirqs_on+0x9c/0x150
[ 340.601477][ T6161] task_work_run+0x1d1/0x260
[ 340.601502][ T6161] ? __pfx_task_work_run+0x10/0x10
[ 340.601521][ T6161] ? __x64_sys_umount+0x122/0x160
[ 340.601549][ T6161] ? exit_to_user_mode_loop+0x40/0x110
[ 340.601581][ T6161] exit_to_user_mode_loop+0xe9/0x110
[ 340.601609][ T6161] do_syscall_64+0x2bd/0x3b0
[ 340.601629][ T6161] ? lockdep_hardirqs_on+0x9c/0x150
[ 340.601648][ T6161] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.601667][ T6161] ? clear_bhb_loop+0x60/0xb0
[ 340.601690][ T6161] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.601708][ T6161] RIP: 0033:0x7effbe9101f7
[ 340.601726][ T6161] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 340.601742][ T6161] RSP: 002b:00007ffd85070838 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 340.601762][ T6161] RAX: 0000000000000000 RBX: 00007effbe991d7d RCX: 00007effbe9101f7
[ 340.601774][ T6161] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd850708f0
[ 340.601785][ T6161] RBP: 00007ffd850708f0 R08: 0000000000000000 R09: 0000000000000000
[ 340.601797][ T6161] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd85071980
[ 340.601809][ T6161] R13: 00007effbe991d7d R14: 0000000000052ea4 R15: 00007ffd850719c0
[ 340.601841][ T6161]
[ 340.604928][ T6161] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 343.347501][ T6202] loop4: detected capacity change from 0 to 40427
[ 343.396090][ T6202] F2FS-fs (loop4): build fault injection rate: 771
[ 343.444662][ T6202] F2FS-fs (loop4): invalid crc value
[ 343.970522][ T6202] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 344.019397][ T6202] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 344.471443][ T6073] bio_check_eod: 31952 callbacks suppressed
[ 344.471464][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.471464][ T6073] loop1: rw=0, sector=86832, nr_sectors = 8 limit=40427
[ 344.471570][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.471570][ T6073] loop1: rw=0, sector=86840, nr_sectors = 8 limit=40427
[ 344.471707][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.471707][ T6073] loop1: rw=0, sector=86848, nr_sectors = 8 limit=40427
[ 344.471837][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.471837][ T6073] loop1: rw=0, sector=86856, nr_sectors = 8 limit=40427
[ 344.471973][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.471973][ T6073] loop1: rw=0, sector=86864, nr_sectors = 8 limit=40427
[ 344.472103][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.472103][ T6073] loop1: rw=0, sector=86872, nr_sectors = 8 limit=40427
[ 344.472231][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.472231][ T6073] loop1: rw=0, sector=86880, nr_sectors = 8 limit=40427
[ 344.472360][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.472360][ T6073] loop1: rw=0, sector=86888, nr_sectors = 8 limit=40427
[ 344.472495][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.472495][ T6073] loop1: rw=0, sector=86896, nr_sectors = 8 limit=40427
[ 344.472629][ T6073] syz.1.20: attempt to access beyond end of device
[ 344.472629][ T6073] loop1: rw=0, sector=86904, nr_sectors = 8 limit=40427
[ 345.019593][ T59] Bluetooth: hci0: command 0x0406 tx timeout
[ 349.481199][ T6039] bio_check_eod: 34737 callbacks suppressed
[ 349.481220][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.481220][ T6039] loop0: rw=524288, sector=88024, nr_sectors = 8 limit=40427
[ 349.481351][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.481351][ T6039] loop0: rw=524288, sector=88032, nr_sectors = 8 limit=40427
[ 349.481477][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.481477][ T6039] loop0: rw=524288, sector=88040, nr_sectors = 8 limit=40427
[ 349.481602][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.481602][ T6039] loop0: rw=524288, sector=88048, nr_sectors = 8 limit=40427
[ 349.481727][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.481727][ T6039] loop0: rw=524288, sector=88056, nr_sectors = 8 limit=40427
[ 349.481859][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.481859][ T6039] loop0: rw=524288, sector=88064, nr_sectors = 8 limit=40427
[ 349.481984][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.481984][ T6039] loop0: rw=524288, sector=88072, nr_sectors = 8 limit=40427
[ 349.482108][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.482108][ T6039] loop0: rw=524288, sector=88080, nr_sectors = 8 limit=40427
[ 349.482227][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.482227][ T6039] loop0: rw=524288, sector=88088, nr_sectors = 8 limit=40427
[ 349.482354][ T6039] syz.0.19: attempt to access beyond end of device
[ 349.482354][ T6039] loop0: rw=524288, sector=88096, nr_sectors = 8 limit=40427
[ 352.170038][ T6149] F2FS-fs (loop3): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[ 354.492754][ T6149] bio_check_eod: 39847 callbacks suppressed
[ 354.492775][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.492775][ T6149] loop3: rw=524288, sector=88248, nr_sectors = 8 limit=40427
[ 354.492907][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.492907][ T6149] loop3: rw=524288, sector=88256, nr_sectors = 8 limit=40427
[ 354.493031][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493031][ T6149] loop3: rw=524288, sector=88264, nr_sectors = 8 limit=40427
[ 354.493156][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493156][ T6149] loop3: rw=524288, sector=88272, nr_sectors = 8 limit=40427
[ 354.493281][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493281][ T6149] loop3: rw=524288, sector=88280, nr_sectors = 8 limit=40427
[ 354.493404][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493404][ T6149] loop3: rw=524288, sector=88288, nr_sectors = 8 limit=40427
[ 354.493529][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493529][ T6149] loop3: rw=524288, sector=88296, nr_sectors = 8 limit=40427
[ 354.493667][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493667][ T6149] loop3: rw=524288, sector=88304, nr_sectors = 8 limit=40427
[ 354.493793][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493793][ T6149] loop3: rw=524288, sector=88312, nr_sectors = 8 limit=40427
[ 354.493918][ T6149] syz.3.25: attempt to access beyond end of device
[ 354.493918][ T6149] loop3: rw=524288, sector=88320, nr_sectors = 8 limit=40427
[ 355.852664][ T59] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 355.865115][ T59] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 355.878741][ T59] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 355.886792][ T59] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 355.887523][ T59] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 357.372850][ T6208] chnl_net:caif_netlink_parms(): no params data found
[ 357.971323][ T5132] Bluetooth: hci5: command tx timeout
[ 358.665121][ T6208] bridge0: port 1(bridge_slave_0) entered blocking state
[ 358.681373][ T6208] bridge0: port 1(bridge_slave_0) entered disabled state
[ 358.681634][ T6208] bridge_slave_0: entered allmulticast mode
[ 358.714650][ T6208] bridge_slave_0: entered promiscuous mode
[ 358.720516][ T6208] bridge0: port 2(bridge_slave_1) entered blocking state
[ 358.740320][ T6208] bridge0: port 2(bridge_slave_1) entered disabled state
[ 358.740572][ T6208] bridge_slave_1: entered allmulticast mode
[ 358.759537][ T6208] bridge_slave_1: entered promiscuous mode
[ 359.406275][ T6208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 359.444351][ T6208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 359.501191][ T6149] bio_check_eod: 40425 callbacks suppressed
[ 359.501211][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.501211][ T6149] loop3: rw=0, sector=89472, nr_sectors = 8 limit=40427
[ 359.501342][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.501342][ T6149] loop3: rw=0, sector=89480, nr_sectors = 8 limit=40427
[ 359.501477][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.501477][ T6149] loop3: rw=0, sector=89488, nr_sectors = 8 limit=40427
[ 359.501605][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.501605][ T6149] loop3: rw=0, sector=89496, nr_sectors = 8 limit=40427
[ 359.501757][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.501757][ T6149] loop3: rw=0, sector=89504, nr_sectors = 8 limit=40427
[ 359.501886][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.501886][ T6149] loop3: rw=0, sector=89512, nr_sectors = 8 limit=40427
[ 359.502015][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.502015][ T6149] loop3: rw=0, sector=89520, nr_sectors = 8 limit=40427
[ 359.502143][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.502143][ T6149] loop3: rw=0, sector=89528, nr_sectors = 8 limit=40427
[ 359.502301][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.502301][ T6149] loop3: rw=0, sector=89536, nr_sectors = 8 limit=40427
[ 359.502432][ T6149] syz.3.25: attempt to access beyond end of device
[ 359.502432][ T6149] loop3: rw=0, sector=89544, nr_sectors = 8 limit=40427
[ 360.061225][ T5132] Bluetooth: hci5: command tx timeout
[ 360.243215][ T6208] team0: Port device team_slave_0 added
[ 360.246920][ T6208] team0: Port device team_slave_1 added
[ 361.266111][ T6208] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 361.266127][ T6208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 361.266151][ T6208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 361.269009][ T6208] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 361.269022][ T6208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 361.269046][ T6208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 362.105029][ T6208] hsr_slave_0: entered promiscuous mode
[ 362.106303][ T6208] hsr_slave_1: entered promiscuous mode
[ 362.107199][ T6208] debugfs: 'hsr0' already exists in 'hsr'
[ 362.107221][ T6208] Cannot create hsr debugfs directory
[ 362.131680][ T5132] Bluetooth: hci5: command tx timeout
[ 364.212728][ T59] Bluetooth: hci5: command tx timeout
[ 364.265110][ T6208] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 364.392995][ T6208] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 364.511159][ T6073] bio_check_eod: 39191 callbacks suppressed
[ 364.511179][ T6073] syz.1.20: attempt to access beyond end of device
[ 364.511179][ T6073] loop1: rw=524288, sector=87448, nr_sectors = 8 limit=40427
[ 364.511302][ T6073] syz.1.20: attempt to access beyond end of device
[ 364.511302][ T6073] loop1: rw=524288, sector=87456, nr_sectors = 8 limit=40427
[ 364.511399][ T6102] syz.2.21: attempt to access beyond end of device
[ 364.511399][ T6102] loop2: rw=0, sector=87184, nr_sectors = 8 limit=40427
[ 364.511456][ T6073] syz.1.20: attempt to access beyond end of device
[ 364.511456][ T6073] loop1: rw=524288, sector=87464, nr_sectors = 8 limit=40427
[ 364.511532][ T6102] syz.2.21: attempt to access beyond end of device
[ 364.511532][ T6102] loop2: rw=0, sector=87192, nr_sectors = 8 limit=40427
[ 364.511583][ T6073] syz.1.20: attempt to access beyond end of device
[ 364.511583][ T6073] loop1: rw=524288, sector=87472, nr_sectors = 8 limit=40427
[ 364.511663][ T6102] syz.2.21: attempt to access beyond end of device
[ 364.511663][ T6102] loop2: rw=0, sector=87200, nr_sectors = 8 limit=40427
[ 364.511710][ T6073] syz.1.20: attempt to access beyond end of device
[ 364.511710][ T6073] loop1: rw=524288, sector=87480, nr_sectors = 8 limit=40427
[ 364.511794][ T6102] syz.2.21: attempt to access beyond end of device
[ 364.511794][ T6102] loop2: rw=0, sector=87208, nr_sectors = 8 limit=40427
[ 364.511836][ T6073] syz.1.20: attempt to access beyond end of device
[ 364.511836][ T6073] loop1: rw=524288, sector=87488, nr_sectors = 8 limit=40427
[ 364.686948][ T6208] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 364.833672][ T6208] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 365.509455][ T6208] 8021q: adding VLAN 0 to HW filter on device bond0
[ 365.586562][ T6208] 8021q: adding VLAN 0 to HW filter on device team0
[ 365.723414][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 365.745692][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 365.767134][ T1124] bridge0: port 2(bridge_slave_1) entered blocking state
[ 365.767402][ T1124] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 366.959905][ T6208] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 368.473489][ T6208] veth0_vlan: entered promiscuous mode
[ 368.513897][ T6208] veth1_vlan: entered promiscuous mode
[ 368.832718][ T6208] veth0_macvtap: entered promiscuous mode
[ 368.927516][ T6208] veth1_macvtap: entered promiscuous mode
[ 369.085869][ T6208] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 369.143685][ T6208] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 369.208396][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 369.208626][ T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 369.209084][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 369.209357][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 369.521332][ T6073] bio_check_eod: 37930 callbacks suppressed
[ 369.521353][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.521353][ T6073] loop1: rw=524288, sector=86792, nr_sectors = 8 limit=40427
[ 369.521480][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.521480][ T6073] loop1: rw=524288, sector=86800, nr_sectors = 8 limit=40427
[ 369.521606][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.521606][ T6073] loop1: rw=524288, sector=86808, nr_sectors = 8 limit=40427
[ 369.521730][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.521730][ T6073] loop1: rw=524288, sector=86816, nr_sectors = 8 limit=40427
[ 369.521863][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.521863][ T6073] loop1: rw=524288, sector=86824, nr_sectors = 8 limit=40427
[ 369.521988][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.521988][ T6073] loop1: rw=524288, sector=86832, nr_sectors = 8 limit=40427
[ 369.522113][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.522113][ T6073] loop1: rw=524288, sector=86840, nr_sectors = 8 limit=40427
[ 369.522238][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.522238][ T6073] loop1: rw=524288, sector=86848, nr_sectors = 8 limit=40427
[ 369.522362][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.522362][ T6073] loop1: rw=524288, sector=86856, nr_sectors = 8 limit=40427
[ 369.522488][ T6073] syz.1.20: attempt to access beyond end of device
[ 369.522488][ T6073] loop1: rw=524288, sector=86864, nr_sectors = 8 limit=40427
[ 370.132076][ T1508] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 370.132097][ T1508] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 370.415754][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 370.415774][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 370.624863][ T5132] Bluetooth: hci1: command 0x0406 tx timeout
2025/10/02 22:57:55 executed programs: 14
[ 372.913786][ T6238] loop5: detected capacity change from 0 to 40427
[ 372.939881][ T6238] F2FS-fs (loop5): build fault injection rate: 771
[ 373.051515][ T6238] F2FS-fs (loop5): invalid crc value
[ 373.703065][ T6238] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 373.706982][ T6238] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 374.531358][ T6149] bio_check_eod: 36209 callbacks suppressed
[ 374.531378][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.531378][ T6149] loop3: rw=0, sector=88896, nr_sectors = 8 limit=40427
[ 374.531528][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.531528][ T6149] loop3: rw=0, sector=88904, nr_sectors = 8 limit=40427
[ 374.531628][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.531628][ T6149] loop3: rw=0, sector=88912, nr_sectors = 8 limit=40427
[ 374.531728][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.531728][ T6149] loop3: rw=0, sector=88920, nr_sectors = 8 limit=40427
[ 374.531842][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.531842][ T6149] loop3: rw=0, sector=88928, nr_sectors = 8 limit=40427
[ 374.531970][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.531970][ T6149] loop3: rw=0, sector=88936, nr_sectors = 8 limit=40427
[ 374.532089][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.532089][ T6149] loop3: rw=0, sector=88944, nr_sectors = 8 limit=40427
[ 374.532212][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.532212][ T6149] loop3: rw=0, sector=88952, nr_sectors = 8 limit=40427
[ 374.532340][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.532340][ T6149] loop3: rw=0, sector=88960, nr_sectors = 8 limit=40427
[ 374.532471][ T6149] syz.3.25: attempt to access beyond end of device
[ 374.532471][ T6149] loop3: rw=0, sector=88968, nr_sectors = 8 limit=40427
[ 375.023441][ T6208] CPU: 0 UID: 0 PID: 6208 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 375.023470][ T6208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 375.023485][ T6208] Call Trace:
[ 375.023496][ T6208]
[ 375.023504][ T6208] dump_stack_lvl+0x189/0x250
[ 375.023526][ T6208] ? reacquire_held_locks+0x127/0x1d0
[ 375.023546][ T6208] ? rt_spin_lock+0x1c1/0x3e0
[ 375.023572][ T6208] ? __pfx_dump_stack_lvl+0x10/0x10
[ 375.023590][ T6208] ? __pfx_queue_work_on+0x10/0x10
[ 375.023621][ T6208] ? rt_spin_unlock+0x150/0x200
[ 375.023651][ T6208] ? rt_spin_unlock+0x161/0x200
[ 375.023679][ T6208] f2fs_handle_critical_error+0x354/0x510
[ 375.023714][ T6208] f2fs_write_end_io+0x886/0xb60
[ 375.023753][ T6208] __submit_merged_bio+0x27a/0x6a0
[ 375.023788][ T6208] __submit_merged_write_cond+0x255/0x530
[ 375.023824][ T6208] f2fs_write_data_pages+0x261d/0x3000
[ 375.023886][ T6208] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 375.023962][ T6208] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 375.023982][ T6208] ? lockdep_hardirqs_on+0x9c/0x150
[ 375.024019][ T6208] ? rt_mutex_slowunlock+0x493/0x8a0
[ 375.024042][ T6208] ? reacquire_held_locks+0x127/0x1d0
[ 375.024061][ T6208] ? rt_spin_lock+0x1c1/0x3e0
[ 375.024096][ T6208] ? rt_spin_unlock+0x150/0x200
[ 375.024126][ T6208] ? rt_spin_unlock+0x161/0x200
[ 375.024150][ T6208] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 375.024170][ T6208] do_writepages+0x32e/0x550
[ 375.024194][ T6208] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 375.024222][ T6208] ? rt_spin_unlock+0x150/0x200
[ 375.024259][ T6208] filemap_fdatawrite+0x19c/0x240
[ 375.024282][ T6208] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 375.024346][ T6208] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 375.024381][ T6208] ? rt_spin_unlock+0x161/0x200
[ 375.024409][ T6208] f2fs_sync_dirty_inodes+0x31f/0x830
[ 375.024447][ T6208] f2fs_write_checkpoint+0x95a/0x1df0
[ 375.024493][ T6208] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 375.024557][ T6208] ? f2fs_stop_gc_thread+0x82/0xb0
[ 375.024578][ T6208] ? kfree+0x197/0x680
[ 375.024599][ T6208] ? f2fs_stop_gc_thread+0x82/0xb0
[ 375.024621][ T6208] ? kill_f2fs_super+0x298/0x6c0
[ 375.024647][ T6208] kill_f2fs_super+0x2c3/0x6c0
[ 375.024674][ T6208] ? __pfx_kill_f2fs_super+0x10/0x10
[ 375.024703][ T6208] ? shrinker_free+0x2ce/0x3e0
[ 375.024729][ T6208] deactivate_locked_super+0xbc/0x130
[ 375.024752][ T6208] cleanup_mnt+0x425/0x4c0
[ 375.024771][ T6208] ? lockdep_hardirqs_on+0x9c/0x150
[ 375.024793][ T6208] task_work_run+0x1d1/0x260
[ 375.024818][ T6208] ? __pfx_task_work_run+0x10/0x10
[ 375.024837][ T6208] ? __x64_sys_umount+0x122/0x160
[ 375.024865][ T6208] ? exit_to_user_mode_loop+0x40/0x110
[ 375.024904][ T6208] exit_to_user_mode_loop+0xe9/0x110
[ 375.024932][ T6208] do_syscall_64+0x2bd/0x3b0
[ 375.024952][ T6208] ? lockdep_hardirqs_on+0x9c/0x150
[ 375.024971][ T6208] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 375.024991][ T6208] ? clear_bhb_loop+0x60/0xb0
[ 375.025014][ T6208] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 375.025032][ T6208] RIP: 0033:0x7fc9ca9101f7
[ 375.025052][ T6208] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 375.025068][ T6208] RSP: 002b:00007fff5e170a78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 375.025088][ T6208] RAX: 0000000000000000 RBX: 00007fc9ca991d7d RCX: 00007fc9ca9101f7
[ 375.025101][ T6208] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff5e170b30
[ 375.025112][ T6208] RBP: 00007fff5e170b30 R08: 0000000000000000 R09: 0000000000000000
[ 375.025123][ T6208] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff5e171bc0
[ 375.025136][ T6208] R13: 00007fc9ca991d7d R14: 000000000005b3c4 R15: 00007fff5e171c00
[ 375.025168][ T6208]
[ 375.025176][ T6208] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 378.640099][ T6249] loop5: detected capacity change from 0 to 40427
[ 378.688335][ T6249] F2FS-fs (loop5): build fault injection rate: 771
[ 378.775534][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 378.775628][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 378.787220][ T6249] F2FS-fs (loop5): invalid crc value
[ 379.448247][ T6249] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 379.481259][ T6249] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 379.544707][ T6073] bio_check_eod: 35266 callbacks suppressed
[ 379.544728][ T6073] syz.1.20: attempt to access beyond end of device
[ 379.544728][ T6073] loop1: rw=524288, sector=86584, nr_sectors = 8 limit=40427
[ 379.564116][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.564116][ T6149] loop3: rw=524288, sector=88896, nr_sectors = 8 limit=40427
[ 379.564323][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.564323][ T6149] loop3: rw=524288, sector=88904, nr_sectors = 8 limit=40427
[ 379.564455][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.564455][ T6149] loop3: rw=524288, sector=88912, nr_sectors = 8 limit=40427
[ 379.564575][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.564575][ T6149] loop3: rw=524288, sector=88920, nr_sectors = 8 limit=40427
[ 379.564696][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.564696][ T6149] loop3: rw=524288, sector=88928, nr_sectors = 8 limit=40427
[ 379.564816][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.564816][ T6149] loop3: rw=524288, sector=88936, nr_sectors = 8 limit=40427
[ 379.564941][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.564941][ T6149] loop3: rw=524288, sector=88944, nr_sectors = 8 limit=40427
[ 379.565060][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.565060][ T6149] loop3: rw=524288, sector=88952, nr_sectors = 8 limit=40427
[ 379.565179][ T6149] syz.3.25: attempt to access beyond end of device
[ 379.565179][ T6149] loop3: rw=524288, sector=88960, nr_sectors = 8 limit=40427
[ 384.551366][ T6102] bio_check_eod: 37816 callbacks suppressed
[ 384.551387][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.551387][ T6102] loop2: rw=0, sector=86072, nr_sectors = 8 limit=40427
[ 384.551519][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.551519][ T6102] loop2: rw=0, sector=86080, nr_sectors = 8 limit=40427
[ 384.551649][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.551649][ T6102] loop2: rw=0, sector=86088, nr_sectors = 8 limit=40427
[ 384.551779][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.551779][ T6102] loop2: rw=0, sector=86096, nr_sectors = 8 limit=40427
[ 384.551917][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.551917][ T6102] loop2: rw=0, sector=86104, nr_sectors = 8 limit=40427
[ 384.552045][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.552045][ T6102] loop2: rw=0, sector=86112, nr_sectors = 8 limit=40427
[ 384.552203][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.552203][ T6102] loop2: rw=0, sector=86120, nr_sectors = 8 limit=40427
[ 384.552333][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.552333][ T6102] loop2: rw=0, sector=86128, nr_sectors = 8 limit=40427
[ 384.552463][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.552463][ T6102] loop2: rw=0, sector=86136, nr_sectors = 8 limit=40427
[ 384.552592][ T6102] syz.2.21: attempt to access beyond end of device
[ 384.552592][ T6102] loop2: rw=0, sector=86144, nr_sectors = 8 limit=40427
[ 389.561406][ T6149] bio_check_eod: 37368 callbacks suppressed
[ 389.561426][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.561426][ T6149] loop3: rw=0, sector=87384, nr_sectors = 8 limit=40427
[ 389.561573][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.561573][ T6149] loop3: rw=0, sector=87392, nr_sectors = 8 limit=40427
[ 389.563841][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.563841][ T6149] loop3: rw=0, sector=87400, nr_sectors = 8 limit=40427
[ 389.563977][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.563977][ T6149] loop3: rw=0, sector=87408, nr_sectors = 8 limit=40427
[ 389.564107][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.564107][ T6149] loop3: rw=0, sector=87416, nr_sectors = 8 limit=40427
[ 389.564236][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.564236][ T6149] loop3: rw=0, sector=87424, nr_sectors = 8 limit=40427
[ 389.564366][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.564366][ T6149] loop3: rw=0, sector=87432, nr_sectors = 8 limit=40427
[ 389.564502][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.564502][ T6149] loop3: rw=0, sector=87440, nr_sectors = 8 limit=40427
[ 389.564631][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.564631][ T6149] loop3: rw=0, sector=87448, nr_sectors = 8 limit=40427
[ 389.564760][ T6149] syz.3.25: attempt to access beyond end of device
[ 389.564760][ T6149] loop3: rw=0, sector=87456, nr_sectors = 8 limit=40427
[ 390.398448][ T6260] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 390.403046][ T6260] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 390.403943][ T6260] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 390.405035][ T6260] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 390.405752][ T6260] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 391.092043][ T5132] Bluetooth: hci2: command 0x0406 tx timeout
[ 392.329008][ T6257] chnl_net:caif_netlink_parms(): no params data found
[ 392.451347][ T59] Bluetooth: hci6: command tx timeout
[ 393.911834][ T6257] bridge0: port 1(bridge_slave_0) entered blocking state
[ 393.911968][ T6257] bridge0: port 1(bridge_slave_0) entered disabled state
[ 393.912207][ T6257] bridge_slave_0: entered allmulticast mode
[ 393.915006][ T6257] bridge_slave_0: entered promiscuous mode
[ 393.949486][ T6257] bridge0: port 2(bridge_slave_1) entered blocking state
[ 393.949693][ T6257] bridge0: port 2(bridge_slave_1) entered disabled state
[ 393.949942][ T6257] bridge_slave_1: entered allmulticast mode
[ 393.973895][ T6257] bridge_slave_1: entered promiscuous mode
[ 394.541231][ T59] Bluetooth: hci6: command tx timeout
[ 394.571278][ T6102] bio_check_eod: 32433 callbacks suppressed
[ 394.571297][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.571297][ T6102] loop2: rw=0, sector=87208, nr_sectors = 8 limit=40427
[ 394.571447][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.571447][ T6102] loop2: rw=0, sector=87216, nr_sectors = 8 limit=40427
[ 394.571578][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.571578][ T6102] loop2: rw=0, sector=87224, nr_sectors = 8 limit=40427
[ 394.571701][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.571701][ T6102] loop2: rw=0, sector=87232, nr_sectors = 8 limit=40427
[ 394.571831][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.571831][ T6102] loop2: rw=0, sector=87240, nr_sectors = 8 limit=40427
[ 394.571999][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.571999][ T6102] loop2: rw=0, sector=87248, nr_sectors = 8 limit=40427
[ 394.572128][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.572128][ T6102] loop2: rw=0, sector=87256, nr_sectors = 8 limit=40427
[ 394.572256][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.572256][ T6102] loop2: rw=0, sector=87264, nr_sectors = 8 limit=40427
[ 394.572385][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.572385][ T6102] loop2: rw=0, sector=87272, nr_sectors = 8 limit=40427
[ 394.572514][ T6102] syz.2.21: attempt to access beyond end of device
[ 394.572514][ T6102] loop2: rw=0, sector=87280, nr_sectors = 8 limit=40427
[ 394.994743][ T6257] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 394.998886][ T6257] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 396.018798][ T6257] team0: Port device team_slave_0 added
[ 396.053989][ T6257] team0: Port device team_slave_1 added
[ 396.611560][ T59] Bluetooth: hci6: command tx timeout
[ 396.764738][ T6202] F2FS-fs (loop4): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[ 397.051348][ T6257] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 397.051365][ T6257] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 397.051389][ T6257] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 397.053882][ T6257] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 397.053895][ T6257] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 397.053919][ T6257] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 398.133518][ T6257] hsr_slave_0: entered promiscuous mode
[ 398.147664][ T6257] hsr_slave_1: entered promiscuous mode
[ 398.148661][ T6257] debugfs: 'hsr0' already exists in 'hsr'
[ 398.148684][ T6257] Cannot create hsr debugfs directory
[ 398.691827][ T59] Bluetooth: hci6: command tx timeout
[ 399.590826][ T6149] bio_check_eod: 41026 callbacks suppressed
[ 399.590846][ T6149] syz.3.25: attempt to access beyond end of device
[ 399.590846][ T6149] loop3: rw=0, sector=87392, nr_sectors = 8 limit=40427
[ 399.591004][ T6149] syz.3.25: attempt to access beyond end of device
[ 399.591004][ T6149] loop3: rw=0, sector=87400, nr_sectors = 8 limit=40427
[ 399.598410][ T6039] syz.0.19: attempt to access beyond end of device
[ 399.598410][ T6039] loop0: rw=0, sector=89176, nr_sectors = 8 limit=40427
[ 399.598566][ T6039] syz.0.19: attempt to access beyond end of device
[ 399.598566][ T6039] loop0: rw=0, sector=89184, nr_sectors = 8 limit=40427
[ 399.598697][ T6039] syz.0.19: attempt to access beyond end of device
[ 399.598697][ T6039] loop0: rw=0, sector=89192, nr_sectors = 8 limit=40427
[ 399.598826][ T6039] syz.0.19: attempt to access beyond end of device
[ 399.598826][ T6039] loop0: rw=0, sector=89200, nr_sectors = 8 limit=40427
[ 399.598948][ T6039] syz.0.19: attempt to access beyond end of device
[ 399.598948][ T6039] loop0: rw=0, sector=89208, nr_sectors = 8 limit=40427
[ 399.598970][ T6149] syz.3.25: attempt to access beyond end of device
[ 399.598970][ T6149] loop3: rw=0, sector=87408, nr_sectors = 8 limit=40427
[ 399.599115][ T6039] syz.0.19: attempt to access beyond end of device
[ 399.599115][ T6039] loop0: rw=0, sector=89216, nr_sectors = 8 limit=40427
[ 399.599139][ T6149] syz.3.25: attempt to access beyond end of device
[ 399.599139][ T6149] loop3: rw=0, sector=87416, nr_sectors = 8 limit=40427
[ 400.919203][ T6257] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 401.160214][ T6257] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 401.351918][ T6257] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 401.523679][ T6257] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 402.342506][ T6257] 8021q: adding VLAN 0 to HW filter on device bond0
[ 402.416969][ T6257] 8021q: adding VLAN 0 to HW filter on device team0
[ 402.524471][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 402.524682][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 402.613771][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 402.631624][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 404.164075][ T6257] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 404.601353][ T6073] bio_check_eod: 41228 callbacks suppressed
[ 404.601374][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.601374][ T6073] loop1: rw=524288, sector=88096, nr_sectors = 8 limit=40427
[ 404.601511][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.601511][ T6073] loop1: rw=524288, sector=88104, nr_sectors = 8 limit=40427
[ 404.601636][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.601636][ T6073] loop1: rw=524288, sector=88112, nr_sectors = 8 limit=40427
[ 404.601766][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.601766][ T6073] loop1: rw=524288, sector=88120, nr_sectors = 8 limit=40427
[ 404.601889][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.601889][ T6073] loop1: rw=524288, sector=88128, nr_sectors = 8 limit=40427
[ 404.602014][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.602014][ T6073] loop1: rw=524288, sector=88136, nr_sectors = 8 limit=40427
[ 404.602139][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.602139][ T6073] loop1: rw=524288, sector=88144, nr_sectors = 8 limit=40427
[ 404.602264][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.602264][ T6073] loop1: rw=524288, sector=88152, nr_sectors = 8 limit=40427
[ 404.602398][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.602398][ T6073] loop1: rw=524288, sector=88160, nr_sectors = 8 limit=40427
[ 404.602522][ T6073] syz.1.20: attempt to access beyond end of device
[ 404.602522][ T6073] loop1: rw=524288, sector=88168, nr_sectors = 8 limit=40427
[ 405.990967][ T6257] veth0_vlan: entered promiscuous mode
[ 406.038867][ T6257] veth1_vlan: entered promiscuous mode
[ 406.286356][ T6257] veth0_macvtap: entered promiscuous mode
[ 406.312585][ T6257] veth1_macvtap: entered promiscuous mode
[ 406.416970][ T6257] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 406.474872][ T6257] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 406.582250][ T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 406.612953][ T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 406.623949][ T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 406.624157][ T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 407.545057][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 407.545076][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 407.804076][ T6275] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 407.804106][ T6275] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/02 22:58:32 executed programs: 16
[ 409.611285][ T6073] bio_check_eod: 38420 callbacks suppressed
[ 409.611306][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.611306][ T6073] loop1: rw=0, sector=89312, nr_sectors = 8 limit=40427
[ 409.611446][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.611446][ T6073] loop1: rw=0, sector=89320, nr_sectors = 8 limit=40427
[ 409.611594][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.611594][ T6073] loop1: rw=0, sector=89328, nr_sectors = 8 limit=40427
[ 409.611693][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.611693][ T6073] loop1: rw=0, sector=89336, nr_sectors = 8 limit=40427
[ 409.611787][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.611787][ T6073] loop1: rw=0, sector=89344, nr_sectors = 8 limit=40427
[ 409.611881][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.611881][ T6073] loop1: rw=0, sector=89352, nr_sectors = 8 limit=40427
[ 409.611984][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.611984][ T6073] loop1: rw=0, sector=89360, nr_sectors = 8 limit=40427
[ 409.612078][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.612078][ T6073] loop1: rw=0, sector=89368, nr_sectors = 8 limit=40427
[ 409.612173][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.612173][ T6073] loop1: rw=0, sector=89376, nr_sectors = 8 limit=40427
[ 409.612269][ T6073] syz.1.20: attempt to access beyond end of device
[ 409.612269][ T6073] loop1: rw=0, sector=89384, nr_sectors = 8 limit=40427
[ 410.692301][ T6290] loop6: detected capacity change from 0 to 40427
[ 410.813452][ T6290] F2FS-fs (loop6): build fault injection rate: 771
[ 410.852122][ T6290] F2FS-fs (loop6): invalid crc value
[ 411.434100][ T6290] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 411.479478][ T6290] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 411.594476][ T59] Bluetooth: hci3: command 0x0406 tx timeout
[ 414.623150][ T6202] bio_check_eod: 39077 callbacks suppressed
[ 414.623171][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.623171][ T6202] loop4: rw=524288, sector=86016, nr_sectors = 8 limit=40427
[ 414.623349][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.623349][ T6202] loop4: rw=524288, sector=86024, nr_sectors = 8 limit=40427
[ 414.623476][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.623476][ T6202] loop4: rw=524288, sector=86032, nr_sectors = 8 limit=40427
[ 414.623597][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.623597][ T6202] loop4: rw=524288, sector=86040, nr_sectors = 8 limit=40427
[ 414.623722][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.623722][ T6202] loop4: rw=524288, sector=86048, nr_sectors = 8 limit=40427
[ 414.623847][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.623847][ T6202] loop4: rw=524288, sector=86056, nr_sectors = 8 limit=40427
[ 414.623970][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.623970][ T6202] loop4: rw=524288, sector=86064, nr_sectors = 8 limit=40427
[ 414.624093][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.624093][ T6202] loop4: rw=524288, sector=86072, nr_sectors = 8 limit=40427
[ 414.624216][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.624216][ T6202] loop4: rw=524288, sector=86080, nr_sectors = 8 limit=40427
[ 414.624361][ T6202] syz.4.28: attempt to access beyond end of device
[ 414.624361][ T6202] loop4: rw=524288, sector=86088, nr_sectors = 8 limit=40427
[ 419.634255][ T6149] bio_check_eod: 40373 callbacks suppressed
[ 419.634277][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.634277][ T6149] loop3: rw=0, sector=86888, nr_sectors = 8 limit=40427
[ 419.634416][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.634416][ T6149] loop3: rw=0, sector=86896, nr_sectors = 8 limit=40427
[ 419.634575][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.634575][ T6149] loop3: rw=0, sector=86904, nr_sectors = 8 limit=40427
[ 419.634726][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.634726][ T6149] loop3: rw=0, sector=86912, nr_sectors = 8 limit=40427
[ 419.634857][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.634857][ T6149] loop3: rw=0, sector=86920, nr_sectors = 8 limit=40427
[ 419.634987][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.634987][ T6149] loop3: rw=0, sector=86928, nr_sectors = 8 limit=40427
[ 419.635124][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.635124][ T6149] loop3: rw=0, sector=86936, nr_sectors = 8 limit=40427
[ 419.635255][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.635255][ T6149] loop3: rw=0, sector=86944, nr_sectors = 8 limit=40427
[ 419.635386][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.635386][ T6149] loop3: rw=0, sector=86952, nr_sectors = 8 limit=40427
[ 419.635517][ T6149] syz.3.25: attempt to access beyond end of device
[ 419.635517][ T6149] loop3: rw=0, sector=86960, nr_sectors = 8 limit=40427
[ 424.212321][ T59] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 424.226039][ T59] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 424.233314][ T59] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 424.309633][ T59] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 424.352343][ T59] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 424.641251][ T6039] bio_check_eod: 37999 callbacks suppressed
[ 424.641271][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.641271][ T6039] loop0: rw=524288, sector=87368, nr_sectors = 8 limit=40427
[ 424.641428][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.641428][ T6039] loop0: rw=524288, sector=87376, nr_sectors = 8 limit=40427
[ 424.641557][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.641557][ T6039] loop0: rw=524288, sector=87384, nr_sectors = 8 limit=40427
[ 424.641689][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.641689][ T6039] loop0: rw=524288, sector=87392, nr_sectors = 8 limit=40427
[ 424.641816][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.641816][ T6039] loop0: rw=524288, sector=87400, nr_sectors = 8 limit=40427
[ 424.641942][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.641942][ T6039] loop0: rw=524288, sector=87408, nr_sectors = 8 limit=40427
[ 424.642068][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.642068][ T6039] loop0: rw=524288, sector=87416, nr_sectors = 8 limit=40427
[ 424.642194][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.642194][ T6039] loop0: rw=524288, sector=87424, nr_sectors = 8 limit=40427
[ 424.642320][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.642320][ T6039] loop0: rw=524288, sector=87432, nr_sectors = 8 limit=40427
[ 424.642451][ T6039] syz.0.19: attempt to access beyond end of device
[ 424.642451][ T6039] loop0: rw=524288, sector=87440, nr_sectors = 8 limit=40427
[ 425.975463][ T6296] chnl_net:caif_netlink_parms(): no params data found
[ 426.461374][ T59] Bluetooth: hci7: command tx timeout
[ 427.418438][ T38] INFO: task kworker/u8:5:141 blocked for more than 143 seconds.
[ 427.418463][ T38] Not tainted syzkaller #0
[ 427.418474][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 427.418483][ T38] task:kworker/u8:5 state:D stack:19848 pid:141 tgid:1[ 427.418483][ T38] task:kworker/u8:5 state:D stack:19848 pid:141 tgid:141 ppid:2 task_flags:0x4208060 flags:0x00080000
[ 427.418534][ T38] Workqueue: writeback wb_workfn (flush-7:0)
[ 427.418572][ T38] Call Trace:
[ 427.418579][ T38]
[ 427.418593][ T38] __schedule+0x16f3/0x4c20
[ 427.418619][ T38] ? kvm_sched_clock_read+0x11/0x20
[ 427.418643][ T38] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 427.418684][ T38] ? __pfx___schedule+0x10/0x10
[ 427.418729][ T38] rt_mutex_schedule+0x77/0xf0
[ 427.418750][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 427.418776][ T38] __rt_mutex_slowlock_locked+0x1e04/0x25e0
[ 427.418814][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 427.418849][ T38] ? __pfx___rt_mutex_slowlock_locked+0x10/0x10
[ 427.418886][ T38] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 427.418913][ T38] ? rt_mutex_pre_schedule+0x7d/0x1d0
[ 427.418940][ T38] rt_mutex_slowlock+0xb5/0x160
[ 427.418967][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 427.419010][ T38] rwbase_write_lock+0x14f/0x750
[ 427.419046][ T38] f2fs_balance_fs+0x5af/0x7f0
[ 427.419084][ T38] ? f2fs_update_inode+0x13df/0x2620
[ 427.419112][ T38] ? f2fs_write_inode+0x3fb/0x5f0
[ 427.419139][ T38] ? __pfx_f2fs_balance_fs+0x10/0x10
[ 427.419189][ T38] f2fs_write_inode+0x3fb/0x5f0
[ 427.419221][ T38] __writeback_single_inode+0x6f1/0x1000
[ 427.419261][ T38] writeback_sb_inodes+0x6b7/0xf60
[ 427.419288][ T38] ? stack_trace_save+0x9c/0xe0
[ 427.419319][ T38] ? mark_lock_irq+0x31a/0x390
[ 427.419350][ T38] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 427.419412][ T38] ? __pfx_down_read_trylock+0x10/0x10
[ 427.419441][ T38] ? __pfx_move_expired_inodes+0x10/0x10
[ 427.419461][ T38] ? preempt_count_add+0x91/0x1a0
[ 427.419495][ T38] __writeback_inodes_wb+0x111/0x240
[ 427.419527][ T38] wb_writeback+0x44f/0xaf0
[ 427.419549][ T38] ? __lock_acquire+0xab9/0xd20
[ 427.419584][ T38] ? queue_io+0x3c1/0x560
[ 427.419610][ T38] ? __pfx_wb_writeback+0x10/0x10
[ 427.419650][ T38] wb_workfn+0xaf4/0xf00
[ 427.419695][ T38] ? __pfx_wb_workfn+0x10/0x10
[ 427.419730][ T38] ? __lock_acquire+0xab9/0xd20
[ 427.419770][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 427.419805][ T38] ? _raw_spin_unlock_irq+0x23/0x50
[ 427.419823][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 427.419848][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 427.419876][ T38] process_scheduled_works+0xae1/0x17b0
[ 427.419943][ T38] ? __pfx_process_scheduled_works+0x10/0x10
[ 427.419989][ T38] worker_thread+0x8a0/0xda0
[ 427.420044][ T38] kthread+0x711/0x8a0
[ 427.420073][ T38] ? __pfx_worker_thread+0x10/0x10
[ 427.420100][ T38] ? __pfx_kthread+0x10/0x10
[ 427.420117][ T38] ? rt_spin_unlock+0x150/0x200
[ 427.420148][ T38] ? rt_spin_unlock+0x161/0x200
[ 427.420172][ T38] ? __pfx_kthread+0x10/0x10
[ 427.420194][ T38] ret_from_fork+0x439/0x7d0
[ 427.420224][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 427.420259][ T38] ? __switch_to_asm+0x39/0x70
[ 427.420279][ T38] ? __switch_to_asm+0x33/0x70
[ 427.420298][ T38] ? __pfx_kthread+0x10/0x10
[ 427.420319][ T38] ret_from_fork_asm+0x1a/0x30
[ 427.420358][ T38]
[ 427.420390][ T38] INFO: task kworker/u8:11:1420 blocked for more than 143 seconds.
[ 427.420402][ T38] Not tainted syzkaller #0
[ 427.420411][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 427.420419][ T38] task:kworker/u8:11 state:D stack:23528 pid:1420 tgid:1420 ppid:2 task_flags:0x4208060 flags:0x00080000
[ 427.420468][ T38] Workqueue: writeback wb_workfn (flush-7:1)
[ 427.420500][ T38] Call Trace:
[ 427.420506][ T38]
[ 427.420518][ T38] __schedule+0x16f3/0x4c20
[ 427.420547][ T38] ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[ 427.420580][ T38] ? rcu_is_watching+0x15/0xb0
[ 427.420611][ T38] ? __pfx___schedule+0x10/0x10
[ 427.420627][ T38] ? rcu_read_unlock_special+0x35b/0x470
[ 427.420657][ T38] ? __pfx_rcu_read_unlock_special+0x10/0x10
[ 427.420684][ T38] ? lockdep_hardirqs_on+0x9c/0x150
[ 427.420723][ T38] rt_mutex_schedule+0x77/0xf0
[ 427.420743][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 427.420768][ T38] __rt_mutex_slowlock_locked+0x1e04/0x25e0
[ 427.420807][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 427.420841][ T38] ? __pfx___rt_mutex_slowlock_locked+0x10/0x10
[ 427.420879][ T38] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 427.420905][ T38] ? rt_mutex_pre_schedule+0x7d/0x1d0
[ 427.420932][ T38] rt_mutex_slowlock+0xb5/0x160
[ 427.420959][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 427.420997][ T38] rwbase_write_lock+0x14f/0x750
[ 427.421034][ T38] f2fs_balance_fs+0x5af/0x7f0
[ 427.421070][ T38] ? f2fs_update_inode+0x13df/0x2620
[ 427.443624][ T38] ? f2fs_write_inode+0x3fb/0x5f0
[ 427.443661][ T38] ? __pfx_f2fs_balance_fs+0x10/0x10
[ 427.443710][ T38] f2fs_write_inode+0x3fb/0x5f0
[ 427.443741][ T38] __writeback_single_inode+0x6f1/0x1000
[ 427.443773][ T38] writeback_sb_inodes+0x6b7/0xf60
[ 427.443821][ T38] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 427.443878][ T38] ? __pfx_down_read_trylock+0x10/0x10
[ 427.443906][ T38] ? __pfx_move_expired_inodes+0x10/0x10
[ 427.443926][ T38] ? preempt_count_add+0x91/0x1a0
[ 427.443958][ T38] __writeback_inodes_wb+0x111/0x240
[ 427.443988][ T38] wb_writeback+0x44f/0xaf0
[ 427.444009][ T38] ? __lock_acquire+0xab9/0xd20
[ 427.444043][ T38] ? queue_io+0x3c1/0x560
[ 427.444073][ T38] ? __pfx_wb_writeback+0x10/0x10
[ 427.444111][ T38] wb_workfn+0xaf4/0xf00
[ 427.444155][ T38] ? __pfx_wb_workfn+0x10/0x10
[ 427.444188][ T38] ? __lock_acquire+0xab9/0xd20
[ 427.444225][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 427.444258][ T38] ? _raw_spin_unlock_irq+0x23/0x50
[ 427.444278][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 427.444302][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 427.444328][ T38] process_scheduled_works+0xae1/0x17b0
[ 427.444383][ T38] ? __pfx_process_scheduled_works+0x10/0x10
[ 427.444425][ T38] worker_thread+0x8a0/0xda0
[ 427.444478][ T38] kthread+0x711/0x8a0
[ 427.444500][ T38] ? __pfx_worker_thread+0x10/0x10
[ 427.444525][ T38] ? __pfx_kthread+0x10/0x10
[ 427.444541][ T38] ? rt_spin_unlock+0x150/0x200
[ 427.444571][ T38] ? rt_spin_unlock+0x161/0x200
[ 427.444594][ T38] ? __pfx_kthread+0x10/0x10
[ 427.444614][ T38] ret_from_fork+0x439/0x7d0
[ 427.444643][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 427.444675][ T38] ? __switch_to_asm+0x39/0x70
[ 427.444695][ T38] ? __switch_to_asm+0x33/0x70
[ 427.444713][ T38] ? __pfx_kthread+0x10/0x10
[ 427.444732][ T38] ret_from_fork_asm+0x1a/0x30
[ 427.444769][ T38]
[ 427.444893][ T38]
[ 427.444893][ T38] Showing all locks held in the system:
[ 427.444903][ T38] 4 locks held by kworker/u8:0/12:
[ 427.444918][ T38] #0: ffff8881404ba938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 427.444971][ T38] #1: ffffc90000117bc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 427.445020][ T38] #2: ffff8880562040d0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 427.445074][ T38] #3: ffff888056595990 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5af/0x7f0
[ 427.445125][ T38] 4 locks held by pr/legacy/17:
[ 427.445136][ T38] 3 locks held by rcuc/0/20:
[ 427.445147][ T38] 1 lock held by khungtaskd/38:
[ 427.445158][ T38] #0: ffffffff8d3a9a40 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 427.445215][ T38] 4 locks held by kworker/u8:5/141:
[ 427.445225][ T38] #0: ffff8881404ba938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 427.445274][ T38] #1: ffffc90003a0fbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 427.445323][ T38] #2: ffff8880355d80d0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 427.445370][ T38] #3: ffff8880308b5990 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5af/0x7f0
[ 427.445424][ T38] 4 locks held by kworker/u8:7/1112:
[ 427.445434][ T38] #0: ffff8881404ba938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 427.445483][ T38] #1: ffffc90004db7bc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 427.445532][ T38] #2: ffff8880363340d0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 427.445578][ T38] #3: ffff888034ba5990 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5af/0x7f0
[ 427.445628][ T38] 2 locks held by kworker/u8:9/1138:
[ 427.445641][ T38] 4 locks held by kworker/u8:11/1420:
[ 427.445652][ T38] #0: ffff8881404ba938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 427.445699][ T38] #1: ffffc900058c7bc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 427.445749][ T38] #2: ffff8880287140d0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 427.445795][ T38] #3: ffff88803a189990 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5af/0x7f0
[ 427.445844][ T38] 4 locks held by kworker/u8:12/1432:
[ 427.445854][ T38] #0: ffff8881404ba938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 427.445903][ T38] #1: ffffc90005957bc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 427.445952][ T38] #2: ffff88802e3aa0d0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 427.445999][ T38] #3: ffff888031955990 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5af/0x7f0
[ 427.446067][ T38] 2 locks held by getty/5574:
[ 427.446077][ T38] #0: ffff88823bf3a8a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 427.446120][ T38] #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1400
[ 427.446171][ T38] 7 locks held by syz.0.19/6039:
[ 427.446183][ T38] 4 locks held by syz.1.20/6073:
[ 427.446195][ T38] 5 locks held by syz.2.21/6102:
[ 427.446206][ T38] 7 locks held by syz.3.25/6149:
[ 427.446218][ T38] 5 locks held by syz.4.28/6202:
[ 427.446230][ T38] 4 locks held by kworker/u8:2/6240:
[ 427.446241][ T38] 4 locks held by syz.5.30/6249:
[ 427.446253][ T38] 4 locks held by kworker/u8:3/6275:
[ 427.446263][ T38] #0: ffff8881404ba938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 427.446312][ T38] #1: ffffc90004e87bc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 427.446362][ T38] #2: ffff88803358c0d0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 427.446408][ T38] #3: ffff88802f7b5990 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5af/0x7f0
[ 427.446457][ T38] 5 locks held by syz.6.31/6290:
[ 427.446468][ T38] 2 locks held by syz-executor/6296:
[ 427.446477][ T38] #0: ffffffff8ddcfa80 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 427.446525][ T38] #1: ffffffff8e65b578 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 427.446576][ T38]
[ 427.446582][ T38] =============================================
[ 427.446582][ T38]
[ 427.446600][ T38] NMI backtrace for cpu 0
[ 427.446616][ T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 427.446637][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 427.446648][ T38] Call Trace:
[ 427.446656][ T38]
[ 427.446663][ T38] dump_stack_lvl+0x189/0x250
[ 427.446684][ T38] ? __pfx_dump_stack_lvl+0x10/0x10
[ 427.446702][ T38] ? __pfx__printk+0x10/0x10
[ 427.446736][ T38] nmi_cpu_backtrace+0x39e/0x3d0
[ 427.446765][ T38] ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 427.446793][ T38] ? __pfx__printk+0x10/0x10
[ 427.446820][ T38] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 427.446847][ T38] nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 427.446876][ T38] watchdog+0xf93/0xfe0
[ 427.446898][ T38] ? watchdog+0x1de/0xfe0
[ 427.446921][ T38] kthread+0x711/0x8a0
[ 427.446942][ T38] ? __pfx_watchdog+0x10/0x10
[ 427.446957][ T38] ? __pfx_kthread+0x10/0x10
[ 427.446973][ T38] ? rt_spin_unlock+0x150/0x200
[ 427.447002][ T38] ? rt_spin_unlock+0x161/0x200
[ 427.447025][ T38] ? __pfx_kthread+0x10/0x10
[ 427.447044][ T38] ret_from_fork+0x439/0x7d0
[ 427.447077][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 427.447109][ T38] ? __switch_to_asm+0x39/0x70
[ 427.447127][ T38] ? __switch_to_asm+0x33/0x70
[ 427.447144][ T38] ? __pfx_kthread+0x10/0x10
[ 427.447164][ T38] ret_from_fork_asm+0x1a/0x30
[ 427.447205][ T38]
[ 427.447212][ T38] Sending NMI from CPU 0 to CPUs 1:
[ 427.447240][ C1] NMI backtrace for cpu 1
[ 427.447253][ C1] CPU: 1 UID: 0 PID: 17 Comm: pr/legacy Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 427.447272][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 427.447283][ C1] RIP: 0010:io_serial_in+0x77/0xc0
[ 427.447305][ C1] Code: e8 fe 36 c0 fc 44 89 f9 d3 e3 49 83 ee 80 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 cf 12 21 fd 41 03 1e 89 da ec <0f> b6 c0 5b 41 5c 41 5e 41 5f c3 cc cc cc cc cc 44 89 f9 80 e1 07
[ 427.447320][ C1] RSP: 0018:ffffc90000167890 EFLAGS: 00000202
[ 427.447335][ C1] RAX: 1ffffffff3188900 RBX: 00000000000003fd RCX: 0000000000000000
[ 427.447347][ C1] RDX: 00000000000003fd RSI: 0000000000000000 RDI: 0000000000000000
[ 427.447357][ C1] RBP: ffffffff98c45170 R08: 0000000000000000 R09: 0000000000000000
[ 427.447369][ C1] R10: dffffc0000000000 R11: ffffffff84fcf820 R12: dffffc0000000000
[ 427.447382][ C1] R13: 0000000000000000 R14: ffffffff98c44ee0 R15: 0000000000000000
[ 427.447393][ C1] FS: 0000000000000000(0000) GS:ffff888127122000(0000) knlGS:0000000000000000
[ 427.447408][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 427.447420][ C1] CR2: 00007f7e05ac7d60 CR3: 0000000026c54000 CR4: 00000000003526f0
[ 427.447435][ C1] Call Trace:
[ 427.447442][ C1]
[ 427.447449][ C1] wait_for_lsr+0x1aa/0x2f0
[ 427.447475][ C1] serial8250_console_write+0x11bd/0x1b40
[ 427.447502][ C1] ? __pfx_serial8250_console_write+0x10/0x10
[ 427.447520][ C1] ? console_flush_all+0x13a/0xcd0
[ 427.447544][ C1] ? console_flush_all+0x476/0xcd0
[ 427.447567][ C1] console_flush_all+0x698/0xcd0
[ 427.447590][ C1] ? console_flush_all+0x13a/0xcd0
[ 427.447613][ C1] ? __pfx_console_flush_all+0x10/0x10
[ 427.447634][ C1] ? __lock_acquire+0xab9/0xd20
[ 427.447664][ C1] __console_flush_and_unlock+0xa4/0x240
[ 427.447687][ C1] ? __pfx___console_flush_and_unlock+0x10/0x10
[ 427.447713][ C1] legacy_kthread_func+0x13b/0x1a0
[ 427.447738][ C1] ? __pfx_legacy_kthread_func+0x10/0x10
[ 427.447762][ C1] ? __pfx_autoremove_wake_function+0x10/0x10
[ 427.447786][ C1] ? __kthread_parkme+0x7b/0x200
[ 427.447818][ C1] ? __kthread_parkme+0x1a1/0x200
[ 427.447844][ C1] kthread+0x711/0x8a0
[ 427.447862][ C1] ? __pfx_legacy_kthread_func+0x10/0x10
[ 427.447885][ C1] ? __pfx_kthread+0x10/0x10
[ 427.447900][ C1] ? rt_spin_unlock+0x150/0x200
[ 427.447924][ C1] ? rt_spin_unlock+0x161/0x200
[ 427.447945][ C1] ? __pfx_kthread+0x10/0x10
[ 427.447962][ C1] ret_from_fork+0x439/0x7d0
[ 427.447985][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 427.448011][ C1] ? __switch_to_asm+0x39/0x70
[ 427.448028][ C1] ? __switch_to_asm+0x33/0x70
[ 427.448045][ C1] ? __pfx_kthread+0x10/0x10
[ 427.448061][ C1] ret_from_fork_asm+0x1a/0x30
[ 427.448085][ C1]
[ 427.448237][ T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 427.448254][ T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 427.448274][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 427.448284][ T38] Call Trace:
[ 427.448291][ T38]
[ 427.448299][ T38] dump_stack_lvl+0x99/0x250
[ 427.448317][ T38] ? __asan_memcpy+0x40/0x70
[ 427.448337][ T38] ? __pfx_dump_stack_lvl+0x10/0x10
[ 427.448354][ T38] ? __pfx__printk+0x10/0x10
[ 427.448388][ T38] vpanic+0x281/0x750
[ 427.448410][ T38] ? __pfx_vpanic+0x10/0x10
[ 427.448426][ T38] ? __x2apic_send_IPI_mask+0x1e4/0x260
[ 427.448447][ T38] ? lockdep_hardirqs_on+0x9c/0x150
[ 427.448476][ T38] panic+0xb9/0xc0
[ 427.448494][ T38] ? __pfx_panic+0x10/0x10
[ 427.448515][ T38] ? irq_work_queue+0xc3/0x140
[ 427.448546][ T38] ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 427.448575][ T38] watchdog+0xfd2/0xfe0
[ 427.448597][ T38] ? watchdog+0x1de/0xfe0
[ 427.448619][ T38] kthread+0x711/0x8a0
[ 427.448640][ T38] ? __pfx_watchdog+0x10/0x10
[ 427.448656][ T38] ? __pfx_kthread+0x10/0x10
[ 427.448672][ T38] ? rt_spin_unlock+0x150/0x200
[ 427.448706][ T38] ? rt_spin_unlock+0x161/0x200
[ 427.448729][ T38] ? __pfx_kthread+0x10/0x10
[ 427.448749][ T38] ret_from_fork+0x439/0x7d0
[ 427.448776][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 427.448807][ T38] ? __switch_to_asm+0x39/0x70
[ 427.448825][ T38] ? __switch_to_asm+0x33/0x70
[ 427.448843][ T38] ? __pfx_kthread+0x10/0x10
[ 427.448862][ T38] ret_from_fork_asm+0x1a/0x30
[ 427.448895][ T38]
[ 427.449165][ T38] Kernel Offset: disabled