PREEMPT [ 286.437468][ T6858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 286.437475][ T6858] Call trace: [ 286.437480][ T6858] show_stack+0x2c/0x3c (C) [ 286.437500][ T6858] __dump_stack+0x30/0x40 [ 286.437507][ T6858] dump_stack_lvl+0xd8/0x12c [ 286.437512][ T6858] dump_stack+0x1c/0x28 [ 286.437518][ T6858] f2fs_handle_critical_error+0x34c/0x4b8 [ 286.437525][ T6858] f2fs_stop_checkpoint+0x5c/0x70 [ 286.437531][ T6858] f2fs_write_end_io+0x768/0xa70 [ 286.437541][ T6858] bio_endio+0x858/0x894 [ 286.437549][ T6858] submit_bio_noacct+0x158/0x177c [ 286.437555][ T6858] submit_bio+0x3b4/0x550 [ 286.437560][ T6858] f2fs_submit_write_bio+0x13c/0x324 [ 286.437567][ T6858] __submit_merged_bio+0x254/0x704 [ 286.437573][ T6858] __submit_merged_write_cond+0x23c/0x4ac [ 286.437579][ T6858] f2fs_write_data_pages+0x1d28/0x2634 [ 286.437585][ T6858] do_writepages+0x270/0x468 [ 286.437593][ T6858] filemap_fdatawrite+0x14c/0x1f4 [ 286.437600][ T6858] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 286.437605][ T6858] f2fs_write_checkpoint+0x690/0x16a0 [ 286.437611][ T6858] kill_f2fs_super+0x21c/0x584 [ 286.437617][ T6858] deactivate_locked_super+0xc4/0x12c [ 286.437623][ T6858] deactivate_super+0xe0/0x100 [ 286.437627][ T6858] cleanup_mnt+0x31c/0x3ac [ 286.437633][ T6858] __cleanup_mnt+0x20/0x30 [ 286.437638][ T6858] task_work_run+0x1dc/0x260 [ 286.437645][ T6858] exit_to_user_mode_loop+0xfc/0x168 [ 286.437652][ T6858] el0_svc+0x170/0x254 [ 286.437660][ T6858] el0t_64_sync_handler+0x84/0x12c [ 286.437667][ T6858] el0t_64_sync+0x198/0x19c [ 286.437719][ T6858] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 286.846274][ T6884] loop2: detected capacity change from 0 to 40427 [ 286.881892][ T6884] F2FS-fs (loop2): build fault injection rate: 771 [ 286.886778][ T6884] F2FS-fs (loop2): invalid crc value [ 286.937488][ T6884] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 286.954040][ T6884] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 287.026361][ T6858] CPU: 0 UID: 0 PID: 6858 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 287.026381][ T6858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 287.026386][ T6858] Call trace: [ 287.026389][ T6858] show_stack+0x2c/0x3c (C) [ 287.026403][ T6858] __dump_stack+0x30/0x40 [ 287.026410][ T6858] dump_stack_lvl+0xd8/0x12c [ 287.026415][ T6858] dump_stack+0x1c/0x28 [ 287.026420][ T6858] f2fs_handle_critical_error+0x34c/0x4b8 [ 287.026428][ T6858] f2fs_stop_checkpoint+0x5c/0x70 [ 287.026434][ T6858] f2fs_write_end_io+0x768/0xa70 [ 287.026441][ T6858] bio_endio+0x858/0x894 [ 287.026448][ T6858] submit_bio_noacct+0x158/0x177c [ 287.026453][ T6858] submit_bio+0x3b4/0x550 [ 287.026459][ T6858] f2fs_submit_write_bio+0x13c/0x324 [ 287.026465][ T6858] __submit_merged_bio+0x254/0x704 [ 287.026471][ T6858] __submit_merged_write_cond+0x23c/0x4ac [ 287.026477][ T6858] f2fs_write_data_pages+0x1d28/0x2634 [ 287.026483][ T6858] do_writepages+0x270/0x468 [ 287.026491][ T6858] filemap_fdatawrite+0x14c/0x1f4 [ 287.026497][ T6858] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 287.026503][ T6858] f2fs_write_checkpoint+0x690/0x16a0 [ 287.026508][ T6858] kill_f2fs_super+0x21c/0x584 [ 287.026514][ T6858] deactivate_locked_super+0xc4/0x12c [ 287.026520][ T6858] deactivate_super+0xe0/0x100 [ 287.026524][ T6858] cleanup_mnt+0x31c/0x3ac [ 287.026530][ T6858] __cleanup_mnt+0x20/0x30 [ 287.026535][ T6858] task_work_run+0x1dc/0x260 [ 287.026541][ T6858] exit_to_user_mode_loop+0xfc/0x168 [ 287.026548][ T6858] el0_svc+0x170/0x254 [ 287.026556][ T6858] el0t_64_sync_handler+0x84/0x12c [ 287.026563][ T6858] el0t_64_sync+0x198/0x19c [ 287.026591][ T6858] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 287.153039][ T6124] Bluetooth: hci2: command tx timeout [ 287.522566][ T6890] loop2: detected capacity change from 0 to 40427 [ 287.559951][ T6890] F2FS-fs (loop2): build fault injection rate: 771 [ 287.570793][ T6890] F2FS-fs (loop2): invalid crc value [ 287.584458][ T6890] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 287.599782][ T6890] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 288.598814][ T6852] bio_check_eod: 293652 callbacks suppressed [ 288.599943][ T6852] syz.1.33: attempt to access beyond end of device [ 288.599943][ T6852] loop1: rw=0, sector=86192, nr_sectors = 8 limit=40427 [ 288.602312][ T6852] syz.1.33: attempt to access beyond end of device [ 288.602312][ T6852] loop1: rw=0, sector=86200, nr_sectors = 8 limit=40427 [ 288.604452][ T6852] syz.1.33: attempt to access beyond end of device [ 288.604452][ T6852] loop1: rw=0, sector=86208, nr_sectors = 8 limit=40427 [ 288.606599][ T6852] syz.1.33: attempt to access beyond end of device [ 288.606599][ T6852] loop1: rw=0, sector=86216, nr_sectors = 8 limit=40427 [ 288.607678][ T6809] syz.0.30: attempt to access beyond end of device [ 288.607678][ T6809] loop0: rw=524288, sector=88584, nr_sectors = 8 limit=40427 [ 288.607748][ T6809] syz.0.30: attempt to access beyond end of device [ 288.607748][ T6809] loop0: rw=524288, sector=88592, nr_sectors = 8 limit=40427 [ 288.607783][ T6809] syz.0.30: attempt to access beyond end of device [ 288.607783][ T6809] loop0: rw=524288, sector=88600, nr_sectors = 8 limit=40427 [ 288.607810][ T6809] syz.0.30: attempt to access beyond end of device [ 288.607810][ T6809] loop0: rw=524288, sector=88608, nr_sectors = 8 limit=40427 [ 288.607835][ T6809] syz.0.30: attempt to access beyond end of device [ 288.607835][ T6809] loop0: rw=524288, sector=88616, nr_sectors = 8 limit=40427 [ 288.607858][ T6809] syz.0.30: attempt to access beyond end of device [ 288.607858][ T6809] loop0: rw=524288, sector=88624, nr_sectors = 8 limit=40427 [ 289.233819][ T6124] Bluetooth: hci2: command tx timeout [ 291.307990][ T6124] Bluetooth: hci2: command tx timeout [ 293.390110][ T6124] Bluetooth: hci2: command tx timeout [ 293.609303][ T6809] bio_check_eod: 285616 callbacks suppressed [ 293.609350][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609350][ T6809] loop0: rw=524288, sector=88280, nr_sectors = 8 limit=40427 [ 293.609396][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609396][ T6809] loop0: rw=524288, sector=88288, nr_sectors = 8 limit=40427 [ 293.609431][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609431][ T6809] loop0: rw=524288, sector=88296, nr_sectors = 8 limit=40427 [ 293.609458][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609458][ T6809] loop0: rw=524288, sector=88304, nr_sectors = 8 limit=40427 [ 293.609483][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609483][ T6809] loop0: rw=524288, sector=88312, nr_sectors = 8 limit=40427 [ 293.609507][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609507][ T6809] loop0: rw=524288, sector=88320, nr_sectors = 8 limit=40427 [ 293.609530][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609530][ T6809] loop0: rw=524288, sector=88328, nr_sectors = 8 limit=40427 [ 293.609552][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609552][ T6809] loop0: rw=524288, sector=88336, nr_sectors = 8 limit=40427 [ 293.609575][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609575][ T6809] loop0: rw=524288, sector=88344, nr_sectors = 8 limit=40427 [ 293.609597][ T6809] syz.0.30: attempt to access beyond end of device [ 293.609597][ T6809] loop0: rw=524288, sector=88352, nr_sectors = 8 limit=40427 [ 296.944179][ T6890] F2FS-fs (loop2): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 298.617567][ T6852] bio_check_eod: 317070 callbacks suppressed [ 298.618628][ T6852] syz.1.33: attempt to access beyond end of device [ 298.618628][ T6852] loop1: rw=524288, sector=88400, nr_sectors = 8 limit=40427 [ 298.620766][ T6852] syz.1.33: attempt to access beyond end of device [ 298.620766][ T6852] loop1: rw=524288, sector=88408, nr_sectors = 8 limit=40427 [ 298.622983][ T6852] syz.1.33: attempt to access beyond end of device [ 298.622983][ T6852] loop1: rw=524288, sector=88416, nr_sectors = 8 limit=40427 [ 298.625144][ T6852] syz.1.33: attempt to access beyond end of device [ 298.625144][ T6852] loop1: rw=524288, sector=88424, nr_sectors = 8 limit=40427 [ 298.630953][ T6809] syz.0.30: attempt to access beyond end of device [ 298.630953][ T6809] loop0: rw=524288, sector=87184, nr_sectors = 8 limit=40427 [ 298.631040][ T6809] syz.0.30: attempt to access beyond end of device [ 298.631040][ T6809] loop0: rw=524288, sector=87192, nr_sectors = 8 limit=40427 [ 298.631073][ T6809] syz.0.30: attempt to access beyond end of device [ 298.631073][ T6809] loop0: rw=524288, sector=87200, nr_sectors = 8 limit=40427 [ 298.631101][ T6809] syz.0.30: attempt to access beyond end of device [ 298.631101][ T6809] loop0: rw=524288, sector=87208, nr_sectors = 8 limit=40427 [ 298.631126][ T6809] syz.0.30: attempt to access beyond end of device [ 298.631126][ T6809] loop0: rw=524288, sector=87216, nr_sectors = 8 limit=40427 [ 298.631151][ T6809] syz.0.30: attempt to access beyond end of device [ 298.631151][ T6809] loop0: rw=524288, sector=87224, nr_sectors = 8 limit=40427 [ 302.860602][ T6580] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 302.861007][ T6580] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 302.861192][ T6580] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 302.861495][ T6580] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 302.861680][ T6580] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 303.067024][ T6896] chnl_net:caif_netlink_parms(): no params data found [ 303.188394][ T6896] bridge0: port 1(bridge_slave_0) entered blocking state [ 303.188443][ T6896] bridge0: port 1(bridge_slave_0) entered disabled state [ 303.188509][ T6896] bridge_slave_0: entered allmulticast mode [ 303.188926][ T6896] bridge_slave_0: entered promiscuous mode [ 303.189518][ T6896] bridge0: port 2(bridge_slave_1) entered blocking state [ 303.189533][ T6896] bridge0: port 2(bridge_slave_1) entered disabled state [ 303.189580][ T6896] bridge_slave_1: entered allmulticast mode [ 303.189960][ T6896] bridge_slave_1: entered promiscuous mode [ 303.236074][ T6896] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 303.237039][ T6896] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 303.277242][ T6896] team0: Port device team_slave_0 added [ 303.279216][ T6896] team0: Port device team_slave_1 added [ 303.334116][ T6896] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 303.334154][ T6896] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 303.334169][ T6896] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 303.334719][ T6896] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 303.334726][ T6896] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 303.334736][ T6896] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 303.368110][ T6896] hsr_slave_0: entered promiscuous mode [ 303.368484][ T6896] hsr_slave_1: entered promiscuous mode [ 303.368685][ T6896] debugfs: 'hsr0' already exists in 'hsr' [ 303.368695][ T6896] Cannot create hsr debugfs directory [ 303.585921][ T6896] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 303.604109][ T6896] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 303.622271][ T6896] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 303.627974][ T6890] bio_check_eod: 358678 callbacks suppressed [ 303.628003][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628003][ T6890] loop2: rw=524288, sector=86360, nr_sectors = 8 limit=40427 [ 303.628050][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628050][ T6890] loop2: rw=524288, sector=86368, nr_sectors = 8 limit=40427 [ 303.628091][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628091][ T6890] loop2: rw=524288, sector=86376, nr_sectors = 8 limit=40427 [ 303.628116][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628116][ T6890] loop2: rw=524288, sector=86384, nr_sectors = 8 limit=40427 [ 303.628145][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628145][ T6890] loop2: rw=524288, sector=86392, nr_sectors = 8 limit=40427 [ 303.628171][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628171][ T6890] loop2: rw=524288, sector=86400, nr_sectors = 8 limit=40427 [ 303.628206][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628206][ T6890] loop2: rw=524288, sector=86408, nr_sectors = 8 limit=40427 [ 303.628235][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628235][ T6890] loop2: rw=524288, sector=86416, nr_sectors = 8 limit=40427 [ 303.628257][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628257][ T6890] loop2: rw=524288, sector=86424, nr_sectors = 8 limit=40427 [ 303.628280][ T6890] syz.2.36: attempt to access beyond end of device [ 303.628280][ T6890] loop2: rw=524288, sector=86432, nr_sectors = 8 limit=40427 [ 303.645904][ T6896] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 303.760319][ T6896] bridge0: port 2(bridge_slave_1) entered blocking state [ 303.760369][ T6896] bridge0: port 2(bridge_slave_1) entered forwarding state [ 303.760436][ T6896] bridge0: port 1(bridge_slave_0) entered blocking state [ 303.760460][ T6896] bridge0: port 1(bridge_slave_0) entered forwarding state [ 303.805850][ T6896] 8021q: adding VLAN 0 to HW filter on device bond0 [ 303.838001][ T5594] bridge0: port 1(bridge_slave_0) entered disabled state [ 303.852317][ T5594] bridge0: port 2(bridge_slave_1) entered disabled state [ 303.880999][ T6896] 8021q: adding VLAN 0 to HW filter on device team0 [ 303.910537][ T5594] bridge0: port 1(bridge_slave_0) entered blocking state [ 303.910587][ T5594] bridge0: port 1(bridge_slave_0) entered forwarding state [ 303.910918][ T5594] bridge0: port 2(bridge_slave_1) entered blocking state [ 303.910935][ T5594] bridge0: port 2(bridge_slave_1) entered forwarding state [ 304.076694][ T6896] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 304.105994][ T6896] veth0_vlan: entered promiscuous mode [ 304.129448][ T6896] veth1_vlan: entered promiscuous mode [ 304.136161][ T6896] veth0_macvtap: entered promiscuous mode [ 304.165432][ T6896] veth1_macvtap: entered promiscuous mode [ 304.211531][ T6896] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 304.212680][ T6896] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 304.233991][ T2125] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 304.234057][ T2125] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 304.234079][ T2125] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 304.234094][ T2125] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 304.293884][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 304.293925][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 304.316708][ T5594] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 304.316743][ T5594] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:05:04 executed programs: 22 [ 304.681132][ T6919] loop3: detected capacity change from 0 to 40427 [ 304.683781][ T6919] F2FS-fs (loop3): build fault injection rate: 771 [ 304.686173][ T6919] F2FS-fs (loop3): invalid crc value [ 304.733104][ T6919] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 304.737641][ T6919] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 304.907720][ T6124] Bluetooth: hci3: command tx timeout [ 304.915678][ T6896] CPU: 1 UID: 0 PID: 6896 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 304.915695][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 304.915700][ T6896] Call trace: [ 304.915704][ T6896] show_stack+0x2c/0x3c (C) [ 304.915721][ T6896] __dump_stack+0x30/0x40 [ 304.915733][ T6896] dump_stack_lvl+0xd8/0x12c [ 304.915740][ T6896] dump_stack+0x1c/0x28 [ 304.915746][ T6896] f2fs_handle_critical_error+0x34c/0x4b8 [ 304.915755][ T6896] f2fs_stop_checkpoint+0x5c/0x70 [ 304.915760][ T6896] f2fs_write_end_io+0x768/0xa70 [ 304.915767][ T6896] bio_endio+0x858/0x894 [ 304.915774][ T6896] submit_bio_noacct+0x158/0x177c [ 304.915780][ T6896] submit_bio+0x3b4/0x550 [ 304.915785][ T6896] f2fs_submit_write_bio+0x13c/0x324 [ 304.915791][ T6896] __submit_merged_bio+0x254/0x704 [ 304.915797][ T6896] __submit_merged_write_cond+0x23c/0x4ac [ 304.915803][ T6896] f2fs_write_data_pages+0x1d28/0x2634 [ 304.915810][ T6896] do_writepages+0x270/0x468 [ 304.915817][ T6896] filemap_fdatawrite+0x14c/0x1f4 [ 304.915824][ T6896] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 304.915829][ T6896] f2fs_write_checkpoint+0x690/0x16a0 [ 304.915835][ T6896] kill_f2fs_super+0x21c/0x584 [ 304.915841][ T6896] deactivate_locked_super+0xc4/0x12c [ 304.915847][ T6896] deactivate_super+0xe0/0x100 [ 304.915851][ T6896] cleanup_mnt+0x31c/0x3ac [ 304.915857][ T6896] __cleanup_mnt+0x20/0x30 [ 304.915862][ T6896] task_work_run+0x1dc/0x260 [ 304.915868][ T6896] exit_to_user_mode_loop+0xfc/0x168 [ 304.915875][ T6896] el0_svc+0x170/0x254 [ 304.915883][ T6896] el0t_64_sync_handler+0x84/0x12c [ 304.915890][ T6896] el0t_64_sync+0x198/0x19c [ 304.945193][ T6896] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 305.383474][ T6925] loop3: detected capacity change from 0 to 40427 [ 305.407852][ T6925] F2FS-fs (loop3): build fault injection rate: 771 [ 305.425250][ T6925] F2FS-fs (loop3): invalid crc value [ 305.472072][ T6925] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 305.472533][ T6925] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 305.647890][ T6896] CPU: 1 UID: 0 PID: 6896 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 305.647913][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 305.647919][ T6896] Call trace: [ 305.647922][ T6896] show_stack+0x2c/0x3c (C) [ 305.647942][ T6896] __dump_stack+0x30/0x40 [ 305.647952][ T6896] dump_stack_lvl+0xd8/0x12c [ 305.647958][ T6896] dump_stack+0x1c/0x28 [ 305.647964][ T6896] f2fs_handle_critical_error+0x34c/0x4b8 [ 305.647974][ T6896] f2fs_stop_checkpoint+0x5c/0x70 [ 305.647981][ T6896] f2fs_write_end_io+0x768/0xa70 [ 305.647989][ T6896] bio_endio+0x858/0x894 [ 305.647997][ T6896] submit_bio_noacct+0x158/0x177c [ 305.648003][ T6896] submit_bio+0x3b4/0x550 [ 305.648009][ T6896] f2fs_submit_write_bio+0x13c/0x324 [ 305.648015][ T6896] __submit_merged_bio+0x254/0x704 [ 305.648021][ T6896] __submit_merged_write_cond+0x23c/0x4ac [ 305.648027][ T6896] f2fs_write_data_pages+0x1d28/0x2634 [ 305.648034][ T6896] do_writepages+0x270/0x468 [ 305.648042][ T6896] filemap_fdatawrite+0x14c/0x1f4 [ 305.648050][ T6896] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 305.648056][ T6896] f2fs_write_checkpoint+0x690/0x16a0 [ 305.648061][ T6896] kill_f2fs_super+0x21c/0x584 [ 305.648068][ T6896] deactivate_locked_super+0xc4/0x12c [ 305.648073][ T6896] deactivate_super+0xe0/0x100 [ 305.648078][ T6896] cleanup_mnt+0x31c/0x3ac [ 305.648084][ T6896] __cleanup_mnt+0x20/0x30 [ 305.648089][ T6896] task_work_run+0x1dc/0x260 [ 305.648096][ T6896] exit_to_user_mode_loop+0xfc/0x168 [ 305.648103][ T6896] el0_svc+0x170/0x254 [ 305.648111][ T6896] el0t_64_sync_handler+0x84/0x12c [ 305.648118][ T6896] el0t_64_sync+0x198/0x19c [ 305.648146][ T6896] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 306.047173][ T6931] loop3: detected capacity change from 0 to 40427 [ 306.049372][ T6931] F2FS-fs (loop3): build fault injection rate: 771 [ 306.065032][ T6931] F2FS-fs (loop3): invalid crc value [ 306.089463][ T6931] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 306.095459][ T6931] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 306.232912][ T6896] CPU: 1 UID: 0 PID: 6896 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 306.232931][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 306.232936][ T6896] Call trace: [ 306.232940][ T6896] show_stack+0x2c/0x3c (C) [ 306.232957][ T6896] __dump_stack+0x30/0x40 [ 306.232967][ T6896] dump_stack_lvl+0xd8/0x12c [ 306.232974][ T6896] dump_stack+0x1c/0x28 [ 306.232980][ T6896] f2fs_handle_critical_error+0x34c/0x4b8 [ 306.232990][ T6896] f2fs_stop_checkpoint+0x5c/0x70 [ 306.232996][ T6896] f2fs_write_end_io+0x768/0xa70 [ 306.233003][ T6896] bio_endio+0x858/0x894 [ 306.233011][ T6896] submit_bio_noacct+0x158/0x177c [ 306.233017][ T6896] submit_bio+0x3b4/0x550 [ 306.233022][ T6896] f2fs_submit_write_bio+0x13c/0x324 [ 306.233028][ T6896] __submit_merged_bio+0x254/0x704 [ 306.233034][ T6896] __submit_merged_write_cond+0x23c/0x4ac [ 306.233040][ T6896] f2fs_write_data_pages+0x1d28/0x2634 [ 306.233047][ T6896] do_writepages+0x270/0x468 [ 306.233054][ T6896] filemap_fdatawrite+0x14c/0x1f4 [ 306.233062][ T6896] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 306.233067][ T6896] f2fs_write_checkpoint+0x690/0x16a0 [ 306.233073][ T6896] kill_f2fs_super+0x21c/0x584 [ 306.233079][ T6896] deactivate_locked_super+0xc4/0x12c [ 306.233084][ T6896] deactivate_super+0xe0/0x100 [ 306.233089][ T6896] cleanup_mnt+0x31c/0x3ac [ 306.233094][ T6896] __cleanup_mnt+0x20/0x30 [ 306.233099][ T6896] task_work_run+0x1dc/0x260 [ 306.233106][ T6896] exit_to_user_mode_loop+0xfc/0x168 [ 306.233112][ T6896] el0_svc+0x170/0x254 [ 306.233121][ T6896] el0t_64_sync_handler+0x84/0x12c [ 306.233128][ T6896] el0t_64_sync+0x198/0x19c [ 306.258094][ T6896] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 306.700888][ T6937] loop3: detected capacity change from 0 to 40427 [ 306.717655][ T6937] F2FS-fs (loop3): build fault injection rate: 771 [ 306.731313][ T6937] F2FS-fs (loop3): invalid crc value [ 306.752848][ T6937] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 306.757668][ T6937] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 306.942398][ T6896] CPU: 1 UID: 0 PID: 6896 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 306.942419][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 306.942425][ T6896] Call trace: [ 306.942428][ T6896] show_stack+0x2c/0x3c (C) [ 306.942447][ T6896] __dump_stack+0x30/0x40 [ 306.942457][ T6896] dump_stack_lvl+0xd8/0x12c [ 306.942464][ T6896] dump_stack+0x1c/0x28 [ 306.942470][ T6896] f2fs_handle_critical_error+0x34c/0x4b8 [ 306.942478][ T6896] f2fs_stop_checkpoint+0x5c/0x70 [ 306.942483][ T6896] f2fs_write_end_io+0x768/0xa70 [ 306.942490][ T6896] bio_endio+0x858/0x894 [ 306.942498][ T6896] submit_bio_noacct+0x158/0x177c [ 306.942503][ T6896] submit_bio+0x3b4/0x550 [ 306.942508][ T6896] f2fs_submit_write_bio+0x13c/0x324 [ 306.942515][ T6896] __submit_merged_bio+0x254/0x704 [ 306.942521][ T6896] __submit_merged_write_cond+0x23c/0x4ac [ 306.942527][ T6896] f2fs_write_data_pages+0x1d28/0x2634 [ 306.942533][ T6896] do_writepages+0x270/0x468 [ 306.942541][ T6896] filemap_fdatawrite+0x14c/0x1f4 [ 306.942548][ T6896] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 306.942553][ T6896] f2fs_write_checkpoint+0x690/0x16a0 [ 306.942559][ T6896] kill_f2fs_super+0x21c/0x584 [ 306.942565][ T6896] deactivate_locked_super+0xc4/0x12c [ 306.942571][ T6896] deactivate_super+0xe0/0x100 [ 306.942575][ T6896] cleanup_mnt+0x31c/0x3ac [ 306.942581][ T6896] __cleanup_mnt+0x20/0x30 [ 306.942586][ T6896] task_work_run+0x1dc/0x260 [ 306.942593][ T6896] exit_to_user_mode_loop+0xfc/0x168 [ 306.942599][ T6896] el0_svc+0x170/0x254 [ 306.942607][ T6896] el0t_64_sync_handler+0x84/0x12c [ 306.942615][ T6896] el0t_64_sync+0x198/0x19c [ 306.942641][ T6896] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 306.989138][ T6124] Bluetooth: hci3: command tx timeout [ 307.344784][ T6943] loop3: detected capacity change from 0 to 40427 [ 307.363858][ T6943] F2FS-fs (loop3): build fault injection rate: 771 [ 307.365745][ T6943] F2FS-fs (loop3): invalid crc value [ 307.408684][ T6943] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 307.413169][ T6943] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 307.571771][ T6896] CPU: 0 UID: 0 PID: 6896 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 307.571796][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 307.571805][ T6896] Call trace: [ 307.571809][ T6896] show_stack+0x2c/0x3c (C) [ 307.571824][ T6896] __dump_stack+0x30/0x40 [ 307.571831][ T6896] dump_stack_lvl+0xd8/0x12c [ 307.571837][ T6896] dump_stack+0x1c/0x28 [ 307.571841][ T6896] f2fs_handle_critical_error+0x34c/0x4b8 [ 307.571850][ T6896] f2fs_stop_checkpoint+0x5c/0x70 [ 307.571855][ T6896] f2fs_write_end_io+0x768/0xa70 [ 307.571862][ T6896] bio_endio+0x858/0x894 [ 307.571869][ T6896] submit_bio_noacct+0x158/0x177c [ 307.571875][ T6896] submit_bio+0x3b4/0x550 [ 307.571881][ T6896] f2fs_submit_write_bio+0x13c/0x324 [ 307.571887][ T6896] __submit_merged_bio+0x254/0x704 [ 307.571893][ T6896] __submit_merged_write_cond+0x23c/0x4ac [ 307.571899][ T6896] f2fs_write_data_pages+0x1d28/0x2634 [ 307.571906][ T6896] do_writepages+0x270/0x468 [ 307.571914][ T6896] filemap_fdatawrite+0x14c/0x1f4 [ 307.571921][ T6896] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 307.571926][ T6896] f2fs_write_checkpoint+0x690/0x16a0 [ 307.571932][ T6896] kill_f2fs_super+0x21c/0x584 [ 307.571938][ T6896] deactivate_locked_super+0xc4/0x12c [ 307.571944][ T6896] deactivate_super+0xe0/0x100 [ 307.571949][ T6896] cleanup_mnt+0x31c/0x3ac [ 307.571955][ T6896] __cleanup_mnt+0x20/0x30 [ 307.571960][ T6896] task_work_run+0x1dc/0x260 [ 307.571967][ T6896] exit_to_user_mode_loop+0xfc/0x168 [ 307.571974][ T6896] el0_svc+0x170/0x254 [ 307.571982][ T6896] el0t_64_sync_handler+0x84/0x12c [ 307.571989][ T6896] el0t_64_sync+0x198/0x19c [ 307.572017][ T6896] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 307.887490][ T6949] loop3: detected capacity change from 0 to 40427 [ 307.906867][ T6949] F2FS-fs (loop3): build fault injection rate: 771 [ 307.925077][ T6949] F2FS-fs (loop3): invalid crc value [ 307.978741][ T6949] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 307.995836][ T6949] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 308.175795][ T6896] CPU: 1 UID: 0 PID: 6896 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 308.175814][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 308.175820][ T6896] Call trace: [ 308.175823][ T6896] show_stack+0x2c/0x3c (C) [ 308.175840][ T6896] __dump_stack+0x30/0x40 [ 308.175849][ T6896] dump_stack_lvl+0xd8/0x12c [ 308.175857][ T6896] dump_stack+0x1c/0x28 [ 308.175862][ T6896] f2fs_handle_critical_error+0x34c/0x4b8 [ 308.175870][ T6896] f2fs_stop_checkpoint+0x5c/0x70 [ 308.175876][ T6896] f2fs_write_end_io+0x768/0xa70 [ 308.175883][ T6896] bio_endio+0x858/0x894 [ 308.175890][ T6896] submit_bio_noacct+0x158/0x177c [ 308.175896][ T6896] submit_bio+0x3b4/0x550 [ 308.175902][ T6896] f2fs_submit_write_bio+0x13c/0x324 [ 308.175908][ T6896] __submit_merged_bio+0x254/0x704 [ 308.175914][ T6896] __submit_merged_write_cond+0x23c/0x4ac [ 308.175920][ T6896] f2fs_write_data_pages+0x1d28/0x2634 [ 308.175927][ T6896] do_writepages+0x270/0x468 [ 308.175934][ T6896] filemap_fdatawrite+0x14c/0x1f4 [ 308.175942][ T6896] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 308.175947][ T6896] f2fs_write_checkpoint+0x690/0x16a0 [ 308.175953][ T6896] kill_f2fs_super+0x21c/0x584 [ 308.175959][ T6896] deactivate_locked_super+0xc4/0x12c [ 308.175964][ T6896] deactivate_super+0xe0/0x100 [ 308.175969][ T6896] cleanup_mnt+0x31c/0x3ac [ 308.175975][ T6896] __cleanup_mnt+0x20/0x30 [ 308.175980][ T6896] task_work_run+0x1dc/0x260 [ 308.175987][ T6896] exit_to_user_mode_loop+0xfc/0x168 [ 308.175994][ T6896] el0_svc+0x170/0x254 [ 308.176002][ T6896] el0t_64_sync_handler+0x84/0x12c [ 308.176009][ T6896] el0t_64_sync+0x198/0x19c [ 308.176035][ T6896] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 308.637618][ T6890] bio_check_eod: 286361 callbacks suppressed [ 308.637680][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637680][ T6890] loop2: rw=524288, sector=87784, nr_sectors = 8 limit=40427 [ 308.637759][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637759][ T6890] loop2: rw=524288, sector=87792, nr_sectors = 8 limit=40427 [ 308.637806][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637806][ T6890] loop2: rw=524288, sector=87800, nr_sectors = 8 limit=40427 [ 308.637855][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637855][ T6890] loop2: rw=524288, sector=87808, nr_sectors = 8 limit=40427 [ 308.637897][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637897][ T6890] loop2: rw=524288, sector=87816, nr_sectors = 8 limit=40427 [ 308.637933][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637933][ T6890] loop2: rw=524288, sector=87824, nr_sectors = 8 limit=40427 [ 308.637966][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637966][ T6890] loop2: rw=524288, sector=87832, nr_sectors = 8 limit=40427 [ 308.637995][ T6890] syz.2.36: attempt to access beyond end of device [ 308.637995][ T6890] loop2: rw=524288, sector=87840, nr_sectors = 8 limit=40427 [ 308.638024][ T6890] syz.2.36: attempt to access beyond end of device [ 308.638024][ T6890] loop2: rw=524288, sector=87848, nr_sectors = 8 limit=40427 [ 308.638051][ T6890] syz.2.36: attempt to access beyond end of device [ 308.638051][ T6890] loop2: rw=524288, sector=87856, nr_sectors = 8 limit=40427 [ 308.852961][ T6955] loop3: detected capacity change from 0 to 40427 [ 308.882533][ T6955] F2FS-fs (loop3): build fault injection rate: 771 [ 308.884067][ T6955] F2FS-fs (loop3): invalid crc value [ 308.928179][ T6955] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 308.939885][ T6955] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 309.067760][ T6124] Bluetooth: hci3: command tx timeout [ 309.139085][ T6896] CPU: 0 UID: 0 PID: 6896 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 309.139109][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 309.139114][ T6896] Call trace: [ 309.139117][ T6896] show_stack+0x2c/0x3c (C) [ 309.139135][ T6896] __dump_stack+0x30/0x40 [ 309.139145][ T6896] dump_stack_lvl+0xd8/0x12c [ 309.139153][ T6896] dump_stack+0x1c/0x28 [ 309.139158][ T6896] f2fs_handle_critical_error+0x34c/0x4b8 [ 309.139167][ T6896] f2fs_stop_checkpoint+0x5c/0x70 [ 309.139173][ T6896] f2fs_write_end_io+0x768/0xa70 [ 309.139185][ T6896] bio_endio+0x858/0x894 [ 309.139193][ T6896] submit_bio_noacct+0x158/0x177c [ 309.139200][ T6896] submit_bio+0x3b4/0x550 [ 309.139206][ T6896] f2fs_submit_write_bio+0x13c/0x324 [ 309.139213][ T6896] __submit_merged_bio+0x254/0x704 [ 309.139220][ T6896] __submit_merged_write_cond+0x23c/0x4ac [ 309.139226][ T6896] f2fs_write_data_pages+0x1d28/0x2634 [ 309.139232][ T6896] do_writepages+0x270/0x468 [ 309.139240][ T6896] filemap_fdatawrite+0x14c/0x1f4 [ 309.139247][ T6896] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 309.139252][ T6896] f2fs_write_checkpoint+0x690/0x16a0 [ 309.139257][ T6896] kill_f2fs_super+0x21c/0x584 [ 309.139264][ T6896] deactivate_locked_super+0xc4/0x12c [ 309.139269][ T6896] deactivate_super+0xe0/0x100 [ 309.139274][ T6896] cleanup_mnt+0x31c/0x3ac [ 309.139279][ T6896] __cleanup_mnt+0x20/0x30 [ 309.139284][ T6896] task_work_run+0x1dc/0x260 [ 309.139291][ T6896] exit_to_user_mode_loop+0xfc/0x168 [ 309.139298][ T6896] el0_svc+0x170/0x254 [ 309.139306][ T6896] el0t_64_sync_handler+0x84/0x12c [ 309.139313][ T6896] el0t_64_sync+0x198/0x19c [ 309.139345][ T6896] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 309.660215][ T6961] loop3: detected capacity change from 0 to 40427 [ 309.661570][ T6961] F2FS-fs (loop3): build fault injection rate: 771 [ 309.662638][ T6961] F2FS-fs (loop3): invalid crc value [ 309.748581][ T6961] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 309.772990][ T6961] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 310.275549][ T2413] ieee802154 phy0 wpan0: encryption failed: -22 [ 310.276250][ T2413] ieee802154 phy1 wpan1: encryption failed: -22 [ 311.151908][ T6124] Bluetooth: hci3: command tx timeout [ 313.652718][ T6890] bio_check_eod: 302381 callbacks suppressed [ 313.652766][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652766][ T6890] loop2: rw=0, sector=87856, nr_sectors = 8 limit=40427 [ 313.652803][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652803][ T6890] loop2: rw=0, sector=87864, nr_sectors = 8 limit=40427 [ 313.652833][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652833][ T6890] loop2: rw=0, sector=87872, nr_sectors = 8 limit=40427 [ 313.652863][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652863][ T6890] loop2: rw=0, sector=87880, nr_sectors = 8 limit=40427 [ 313.652895][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652895][ T6890] loop2: rw=0, sector=87888, nr_sectors = 8 limit=40427 [ 313.652919][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652919][ T6890] loop2: rw=0, sector=87896, nr_sectors = 8 limit=40427 [ 313.652942][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652942][ T6890] loop2: rw=0, sector=87904, nr_sectors = 8 limit=40427 [ 313.652965][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652965][ T6890] loop2: rw=0, sector=87912, nr_sectors = 8 limit=40427 [ 313.652987][ T6890] syz.2.36: attempt to access beyond end of device [ 313.652987][ T6890] loop2: rw=0, sector=87920, nr_sectors = 8 limit=40427 [ 313.653009][ T6890] syz.2.36: attempt to access beyond end of device [ 313.653009][ T6890] loop2: rw=0, sector=87928, nr_sectors = 8 limit=40427 [ 318.661407][ T6809] bio_check_eod: 297979 callbacks suppressed [ 318.661467][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661467][ T6809] loop0: rw=0, sector=86800, nr_sectors = 8 limit=40427 [ 318.661515][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661515][ T6809] loop0: rw=0, sector=86808, nr_sectors = 8 limit=40427 [ 318.661546][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661546][ T6809] loop0: rw=0, sector=86816, nr_sectors = 8 limit=40427 [ 318.661572][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661572][ T6809] loop0: rw=0, sector=86824, nr_sectors = 8 limit=40427 [ 318.661596][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661596][ T6809] loop0: rw=0, sector=86832, nr_sectors = 8 limit=40427 [ 318.661620][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661620][ T6809] loop0: rw=0, sector=86840, nr_sectors = 8 limit=40427 [ 318.661643][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661643][ T6809] loop0: rw=0, sector=86848, nr_sectors = 8 limit=40427 [ 318.661671][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661671][ T6809] loop0: rw=0, sector=86856, nr_sectors = 8 limit=40427 [ 318.661694][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661694][ T6809] loop0: rw=0, sector=86864, nr_sectors = 8 limit=40427 [ 318.661716][ T6809] syz.0.30: attempt to access beyond end of device [ 318.661716][ T6809] loop0: rw=0, sector=86872, nr_sectors = 8 limit=40427 [ 323.233885][ T6961] F2FS-fs (loop3): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 323.669185][ T6809] bio_check_eod: 298952 callbacks suppressed [ 323.670340][ T6809] syz.0.30: attempt to access beyond end of device [ 323.670340][ T6809] loop0: rw=0, sector=89552, nr_sectors = 8 limit=40427 [ 323.672270][ T6809] syz.0.30: attempt to access beyond end of device [ 323.672270][ T6809] loop0: rw=0, sector=89560, nr_sectors = 8 limit=40427 [ 323.674402][ T6809] syz.0.30: attempt to access beyond end of device [ 323.674402][ T6809] loop0: rw=0, sector=89568, nr_sectors = 8 limit=40427 [ 323.676033][ T6890] syz.2.36: attempt to access beyond end of device [ 323.676033][ T6890] loop2: rw=0, sector=87968, nr_sectors = 8 limit=40427 [ 323.676072][ T6890] syz.2.36: attempt to access beyond end of device [ 323.676072][ T6890] loop2: rw=0, sector=87976, nr_sectors = 8 limit=40427 [ 323.676102][ T6890] syz.2.36: attempt to access beyond end of device [ 323.676102][ T6890] loop2: rw=0, sector=87984, nr_sectors = 8 limit=40427 [ 323.676128][ T6890] syz.2.36: attempt to access beyond end of device [ 323.676128][ T6890] loop2: rw=0, sector=87992, nr_sectors = 8 limit=40427 [ 323.676160][ T6890] syz.2.36: attempt to access beyond end of device [ 323.676160][ T6890] loop2: rw=0, sector=88000, nr_sectors = 8 limit=40427 [ 323.676192][ T6890] syz.2.36: attempt to access beyond end of device [ 323.676192][ T6890] loop2: rw=0, sector=88008, nr_sectors = 8 limit=40427 [ 323.676220][ T6890] syz.2.36: attempt to access beyond end of device [ 323.676220][ T6890] loop2: rw=0, sector=88016, nr_sectors = 8 limit=40427 [ 324.341786][ T6580] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 324.345645][ T6580] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 324.347383][ T6580] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 324.352186][ T6580] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 324.353755][ T6580] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 324.795448][ T6968] chnl_net:caif_netlink_parms(): no params data found [ 325.065094][ T6968] bridge0: port 1(bridge_slave_0) entered blocking state [ 325.065144][ T6968] bridge0: port 1(bridge_slave_0) entered disabled state [ 325.065225][ T6968] bridge_slave_0: entered allmulticast mode [ 325.077475][ T6968] bridge_slave_0: entered promiscuous mode [ 325.102637][ T6968] bridge0: port 2(bridge_slave_1) entered blocking state [ 325.119782][ T6968] bridge0: port 2(bridge_slave_1) entered disabled state [ 325.121820][ T6968] bridge_slave_1: entered allmulticast mode [ 325.123639][ T6968] bridge_slave_1: entered promiscuous mode [ 325.154703][ T6968] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 325.155578][ T6968] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 325.240094][ T6968] team0: Port device team_slave_0 added [ 325.241940][ T6968] team0: Port device team_slave_1 added [ 325.305572][ T6968] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 325.306842][ T6968] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 325.311660][ T6968] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 325.314394][ T6968] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 325.317607][ T6968] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 325.322132][ T6968] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 325.401039][ T6968] hsr_slave_0: entered promiscuous mode [ 325.401401][ T6968] hsr_slave_1: entered promiscuous mode [ 325.401580][ T6968] debugfs: 'hsr0' already exists in 'hsr' [ 325.401592][ T6968] Cannot create hsr debugfs directory [ 325.648467][ T6968] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 325.651182][ T6968] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 325.653604][ T6968] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 325.661891][ T6968] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 325.861098][ T6968] 8021q: adding VLAN 0 to HW filter on device bond0 [ 325.874477][ T6968] 8021q: adding VLAN 0 to HW filter on device team0 [ 325.920948][ T2125] bridge0: port 1(bridge_slave_0) entered blocking state [ 325.920999][ T2125] bridge0: port 1(bridge_slave_0) entered forwarding state [ 325.921501][ T2125] bridge0: port 2(bridge_slave_1) entered blocking state [ 325.921521][ T2125] bridge0: port 2(bridge_slave_1) entered forwarding state [ 326.125715][ T6968] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 326.418767][ T6968] veth0_vlan: entered promiscuous mode [ 326.437644][ T6580] Bluetooth: hci4: command tx timeout [ 326.449721][ T6968] veth1_vlan: entered promiscuous mode [ 326.455681][ T6968] veth0_macvtap: entered promiscuous mode [ 326.456645][ T6968] veth1_macvtap: entered promiscuous mode [ 326.481295][ T6968] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 326.490448][ T6968] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 326.495355][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.495454][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.495473][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.495484][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.555674][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.555710][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.635658][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.635698][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:05:26 executed programs: 30 [ 327.142900][ T7000] loop4: detected capacity change from 0 to 40427 [ 327.167779][ T7000] F2FS-fs (loop4): build fault injection rate: 771 [ 327.186103][ T7000] F2FS-fs (loop4): invalid crc value [ 327.214360][ T7000] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 327.227649][ T7000] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 327.410358][ T6968] CPU: 0 UID: 0 PID: 6968 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 327.410379][ T6968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 327.410384][ T6968] Call trace: [ 327.410387][ T6968] show_stack+0x2c/0x3c (C) [ 327.410401][ T6968] __dump_stack+0x30/0x40 [ 327.410407][ T6968] dump_stack_lvl+0xd8/0x12c [ 327.410412][ T6968] dump_stack+0x1c/0x28 [ 327.410417][ T6968] f2fs_handle_critical_error+0x34c/0x4b8 [ 327.410425][ T6968] f2fs_stop_checkpoint+0x5c/0x70 [ 327.410431][ T6968] f2fs_write_end_io+0x768/0xa70 [ 327.410437][ T6968] bio_endio+0x858/0x894 [ 327.410444][ T6968] submit_bio_noacct+0x158/0x177c [ 327.410450][ T6968] submit_bio+0x3b4/0x550 [ 327.410455][ T6968] f2fs_submit_write_bio+0x13c/0x324 [ 327.410461][ T6968] __submit_merged_bio+0x254/0x704 [ 327.410467][ T6968] __submit_merged_write_cond+0x23c/0x4ac [ 327.410473][ T6968] f2fs_write_data_pages+0x1d28/0x2634 [ 327.410479][ T6968] do_writepages+0x270/0x468 [ 327.410487][ T6968] filemap_fdatawrite+0x14c/0x1f4 [ 327.410494][ T6968] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 327.410499][ T6968] f2fs_write_checkpoint+0x690/0x16a0 [ 327.410504][ T6968] kill_f2fs_super+0x21c/0x584 [ 327.410510][ T6968] deactivate_locked_super+0xc4/0x12c [ 327.410516][ T6968] deactivate_super+0xe0/0x100 [ 327.410521][ T6968] cleanup_mnt+0x31c/0x3ac [ 327.410526][ T6968] __cleanup_mnt+0x20/0x30 [ 327.410531][ T6968] task_work_run+0x1dc/0x260 [ 327.410537][ T6968] exit_to_user_mode_loop+0xfc/0x168 [ 327.410544][ T6968] el0_svc+0x170/0x254 [ 327.410552][ T6968] el0t_64_sync_handler+0x84/0x12c [ 327.410559][ T6968] el0t_64_sync+0x198/0x19c [ 327.410585][ T6968] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 328.124145][ T7007] loop4: detected capacity change from 0 to 40427 [ 328.138979][ T7007] F2FS-fs (loop4): build fault injection rate: 771 [ 328.140702][ T7007] F2FS-fs (loop4): invalid crc value [ 328.186970][ T7007] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 328.224864][ T7007] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 328.308016][ T6968] CPU: 1 UID: 0 PID: 6968 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 328.308041][ T6968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 328.308050][ T6968] Call trace: [ 328.308054][ T6968] show_stack+0x2c/0x3c (C) [ 328.308069][ T6968] __dump_stack+0x30/0x40 [ 328.308076][ T6968] dump_stack_lvl+0xd8/0x12c [ 328.308082][ T6968] dump_stack+0x1c/0x28 [ 328.308087][ T6968] f2fs_handle_critical_error+0x34c/0x4b8 [ 328.308095][ T6968] f2fs_stop_checkpoint+0x5c/0x70 [ 328.308100][ T6968] f2fs_write_end_io+0x768/0xa70 [ 328.308107][ T6968] bio_endio+0x858/0x894 [ 328.308114][ T6968] submit_bio_noacct+0x158/0x177c [ 328.308120][ T6968] submit_bio+0x3b4/0x550 [ 328.308125][ T6968] f2fs_submit_write_bio+0x13c/0x324 [ 328.308131][ T6968] __submit_merged_bio+0x254/0x704 [ 328.308137][ T6968] __submit_merged_write_cond+0x23c/0x4ac [ 328.308143][ T6968] f2fs_write_data_pages+0x1d28/0x2634 [ 328.308150][ T6968] do_writepages+0x270/0x468 [ 328.308158][ T6968] filemap_fdatawrite+0x14c/0x1f4 [ 328.308164][ T6968] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 328.308170][ T6968] f2fs_write_checkpoint+0x690/0x16a0 [ 328.308175][ T6968] kill_f2fs_super+0x21c/0x584 [ 328.308182][ T6968] deactivate_locked_super+0xc4/0x12c [ 328.308191][ T6968] deactivate_super+0xe0/0x100 [ 328.308197][ T6968] cleanup_mnt+0x31c/0x3ac [ 328.308203][ T6968] __cleanup_mnt+0x20/0x30 [ 328.308209][ T6968] task_work_run+0x1dc/0x260 [ 328.308216][ T6968] exit_to_user_mode_loop+0xfc/0x168 [ 328.308223][ T6968] el0_svc+0x170/0x254 [ 328.308231][ T6968] el0t_64_sync_handler+0x84/0x12c [ 328.308238][ T6968] el0t_64_sync+0x198/0x19c [ 328.308264][ T6968] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 328.509063][ T6580] Bluetooth: hci4: command tx timeout [ 328.677900][ T6890] bio_check_eod: 313744 callbacks suppressed [ 328.680104][ T6890] syz.2.36: attempt to access beyond end of device [ 328.680104][ T6890] loop2: rw=0, sector=88616, nr_sectors = 8 limit=40427 [ 328.682282][ T6890] syz.2.36: attempt to access beyond end of device [ 328.682282][ T6890] loop2: rw=0, sector=88624, nr_sectors = 8 limit=40427 [ 328.682950][ T6961] syz.3.44: attempt to access beyond end of device [ 328.682950][ T6961] loop3: rw=524288, sector=89320, nr_sectors = 8 limit=40427 [ 328.683011][ T6961] syz.3.44: attempt to access beyond end of device [ 328.683011][ T6961] loop3: rw=524288, sector=89328, nr_sectors = 8 limit=40427 [ 328.683041][ T6961] syz.3.44: attempt to access beyond end of device [ 328.683041][ T6961] loop3: rw=524288, sector=89336, nr_sectors = 8 limit=40427 [ 328.683067][ T6961] syz.3.44: attempt to access beyond end of device [ 328.683067][ T6961] loop3: rw=524288, sector=89344, nr_sectors = 8 limit=40427 [ 328.683093][ T6961] syz.3.44: attempt to access beyond end of device [ 328.683093][ T6961] loop3: rw=524288, sector=89352, nr_sectors = 8 limit=40427 [ 328.683119][ T6961] syz.3.44: attempt to access beyond end of device [ 328.683119][ T6961] loop3: rw=524288, sector=89360, nr_sectors = 8 limit=40427 [ 328.683142][ T6961] syz.3.44: attempt to access beyond end of device [ 328.683142][ T6961] loop3: rw=524288, sector=89368, nr_sectors = 8 limit=40427 [ 328.683165][ T6961] syz.3.44: attempt to access beyond end of device [ 328.683165][ T6961] loop3: rw=524288, sector=89376, nr_sectors = 8 limit=40427 [ 328.777440][ T7013] loop4: detected capacity change from 0 to 40427 [ 328.799414][ T7013] F2FS-fs (loop4): build fault injection rate: 771 [ 328.821760][ T7013] F2FS-fs (loop4): invalid crc value [ 328.878678][ T7013] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 328.921404][ T7013] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 330.591963][ T6580] Bluetooth: hci4: command tx timeout [ 332.669601][ T6580] Bluetooth: hci4: command tx timeout [ 333.689356][ T6890] bio_check_eod: 314266 callbacks suppressed [ 333.689415][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689415][ T6890] loop2: rw=524288, sector=87920, nr_sectors = 8 limit=40427 [ 333.689473][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689473][ T6890] loop2: rw=524288, sector=87928, nr_sectors = 8 limit=40427 [ 333.689507][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689507][ T6890] loop2: rw=524288, sector=87936, nr_sectors = 8 limit=40427 [ 333.689536][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689536][ T6890] loop2: rw=524288, sector=87944, nr_sectors = 8 limit=40427 [ 333.689561][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689561][ T6890] loop2: rw=524288, sector=87952, nr_sectors = 8 limit=40427 [ 333.689585][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689585][ T6890] loop2: rw=524288, sector=87960, nr_sectors = 8 limit=40427 [ 333.689609][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689609][ T6890] loop2: rw=524288, sector=87968, nr_sectors = 8 limit=40427 [ 333.689631][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689631][ T6890] loop2: rw=524288, sector=87976, nr_sectors = 8 limit=40427 [ 333.689654][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689654][ T6890] loop2: rw=524288, sector=87984, nr_sectors = 8 limit=40427 [ 333.689676][ T6890] syz.2.36: attempt to access beyond end of device [ 333.689676][ T6890] loop2: rw=524288, sector=87992, nr_sectors = 8 limit=40427 [ 338.697597][ T6852] bio_check_eod: 321749 callbacks suppressed [ 338.704338][ T6852] syz.1.33: attempt to access beyond end of device [ 338.704338][ T6852] loop1: rw=0, sector=88416, nr_sectors = 8 limit=40427 [ 338.706540][ T6852] syz.1.33: attempt to access beyond end of device [ 338.706540][ T6852] loop1: rw=0, sector=88424, nr_sectors = 8 limit=40427 [ 338.712755][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712755][ T6890] loop2: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 338.712796][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712796][ T6890] loop2: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 338.712822][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712822][ T6890] loop2: rw=524288, sector=86032, nr_sectors = 8 limit=40427 [ 338.712846][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712846][ T6890] loop2: rw=524288, sector=86040, nr_sectors = 8 limit=40427 [ 338.712870][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712870][ T6890] loop2: rw=524288, sector=86048, nr_sectors = 8 limit=40427 [ 338.712893][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712893][ T6890] loop2: rw=524288, sector=86056, nr_sectors = 8 limit=40427 [ 338.712915][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712915][ T6890] loop2: rw=524288, sector=86064, nr_sectors = 8 limit=40427 [ 338.712943][ T6890] syz.2.36: attempt to access beyond end of device [ 338.712943][ T6890] loop2: rw=524288, sector=86072, nr_sectors = 8 limit=40427 [ 343.707615][ T6961] bio_check_eod: 316858 callbacks suppressed [ 343.709545][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709545][ T6852] loop1: rw=524288, sector=86224, nr_sectors = 8 limit=40427 [ 343.709616][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709616][ T6852] loop1: rw=524288, sector=86232, nr_sectors = 8 limit=40427 [ 343.709659][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709659][ T6852] loop1: rw=524288, sector=86240, nr_sectors = 8 limit=40427 [ 343.709700][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709700][ T6852] loop1: rw=524288, sector=86248, nr_sectors = 8 limit=40427 [ 343.709733][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709733][ T6852] loop1: rw=524288, sector=86256, nr_sectors = 8 limit=40427 [ 343.709765][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709765][ T6852] loop1: rw=524288, sector=86264, nr_sectors = 8 limit=40427 [ 343.709794][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709794][ T6852] loop1: rw=524288, sector=86272, nr_sectors = 8 limit=40427 [ 343.709822][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709822][ T6852] loop1: rw=524288, sector=86280, nr_sectors = 8 limit=40427 [ 343.709849][ T6852] syz.1.33: attempt to access beyond end of device [ 343.709849][ T6852] loop1: rw=524288, sector=86288, nr_sectors = 8 limit=40427 [ 343.755486][ T6961] syz.3.44: attempt to access beyond end of device [ 343.755486][ T6961] loop3: rw=524288, sector=87096, nr_sectors = 8 limit=40427 [ 344.628001][ T6124] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 344.630501][ T6124] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 344.634816][ T6124] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 344.651068][ T6124] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 344.652747][ T6124] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 345.129283][ T7021] chnl_net:caif_netlink_parms(): no params data found [ 345.400108][ T7021] bridge0: port 1(bridge_slave_0) entered blocking state [ 345.400194][ T7021] bridge0: port 1(bridge_slave_0) entered disabled state [ 345.400279][ T7021] bridge_slave_0: entered allmulticast mode [ 345.400738][ T7021] bridge_slave_0: entered promiscuous mode [ 345.402024][ T7021] bridge0: port 2(bridge_slave_1) entered blocking state [ 345.402056][ T7021] bridge0: port 2(bridge_slave_1) entered disabled state [ 345.407814][ T7021] bridge_slave_1: entered allmulticast mode [ 345.408335][ T7021] bridge_slave_1: entered promiscuous mode [ 345.562236][ T7021] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 345.563278][ T7021] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 345.591853][ T7021] team0: Port device team_slave_0 added [ 345.592647][ T7021] team0: Port device team_slave_1 added [ 345.660645][ T7021] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 345.660675][ T7021] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 345.660691][ T7021] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 345.661237][ T7021] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 345.661243][ T7021] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 345.661254][ T7021] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 345.733585][ T7021] hsr_slave_0: entered promiscuous mode [ 345.750191][ T7021] hsr_slave_1: entered promiscuous mode [ 345.753145][ T7021] debugfs: 'hsr0' already exists in 'hsr' [ 345.753870][ T7021] Cannot create hsr debugfs directory [ 346.054353][ T7021] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 346.057056][ T7021] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 346.109211][ T7021] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 346.145774][ T7021] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 346.286556][ T7021] 8021q: adding VLAN 0 to HW filter on device bond0 [ 346.312792][ T7021] 8021q: adding VLAN 0 to HW filter on device team0 [ 346.318244][ T2125] bridge0: port 1(bridge_slave_0) entered blocking state [ 346.318292][ T2125] bridge0: port 1(bridge_slave_0) entered forwarding state [ 346.335155][ T7035] bridge0: port 2(bridge_slave_1) entered blocking state [ 346.335204][ T7035] bridge0: port 2(bridge_slave_1) entered forwarding state [ 346.367328][ T7021] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 346.367376][ T7021] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 346.590106][ T7021] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 346.676228][ T6124] Bluetooth: hci5: command tx timeout [ 346.895275][ T7021] veth0_vlan: entered promiscuous mode [ 346.896958][ T7021] veth1_vlan: entered promiscuous mode [ 346.917115][ T7021] veth0_macvtap: entered promiscuous mode [ 346.968925][ T7021] veth1_macvtap: entered promiscuous mode [ 346.972155][ T7021] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 346.973164][ T7021] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 346.982535][ T2125] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.985606][ T5594] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.986094][ T5594] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.986526][ T5594] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.134449][ T2125] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.134479][ T2125] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 347.173798][ T2125] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.173835][ T2125] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:05:47 executed programs: 33 [ 347.709692][ T7053] loop5: detected capacity change from 0 to 40427 [ 347.715040][ T7053] F2FS-fs (loop5): build fault injection rate: 771 [ 347.715683][ T7053] F2FS-fs (loop5): invalid crc value [ 347.745105][ T7053] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 347.758886][ T7053] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 348.087863][ T7021] CPU: 0 UID: 0 PID: 7021 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 348.087893][ T7021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 348.087902][ T7021] Call trace: [ 348.087906][ T7021] show_stack+0x2c/0x3c (C) [ 348.087921][ T7021] __dump_stack+0x30/0x40 [ 348.087928][ T7021] dump_stack_lvl+0xd8/0x12c [ 348.087933][ T7021] dump_stack+0x1c/0x28 [ 348.087938][ T7021] f2fs_handle_critical_error+0x34c/0x4b8 [ 348.087946][ T7021] f2fs_stop_checkpoint+0x5c/0x70 [ 348.087952][ T7021] f2fs_write_end_io+0x768/0xa70 [ 348.087958][ T7021] bio_endio+0x858/0x894 [ 348.087966][ T7021] submit_bio_noacct+0x158/0x177c [ 348.087971][ T7021] submit_bio+0x3b4/0x550 [ 348.087976][ T7021] f2fs_submit_write_bio+0x13c/0x324 [ 348.087982][ T7021] __submit_merged_bio+0x254/0x704 [ 348.087988][ T7021] __submit_merged_write_cond+0x23c/0x4ac [ 348.087994][ T7021] f2fs_write_data_pages+0x1d28/0x2634 [ 348.088000][ T7021] do_writepages+0x270/0x468 [ 348.088008][ T7021] filemap_fdatawrite+0x14c/0x1f4 [ 348.088014][ T7021] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 348.088020][ T7021] f2fs_write_checkpoint+0x690/0x16a0 [ 348.088025][ T7021] kill_f2fs_super+0x21c/0x584 [ 348.088031][ T7021] deactivate_locked_super+0xc4/0x12c [ 348.088036][ T7021] deactivate_super+0xe0/0x100 [ 348.088041][ T7021] cleanup_mnt+0x31c/0x3ac [ 348.088046][ T7021] __cleanup_mnt+0x20/0x30 [ 348.088051][ T7021] task_work_run+0x1dc/0x260 [ 348.088057][ T7021] exit_to_user_mode_loop+0xfc/0x168 [ 348.088063][ T7021] el0_svc+0x170/0x254 [ 348.088071][ T7021] el0t_64_sync_handler+0x84/0x12c [ 348.088078][ T7021] el0t_64_sync+0x198/0x19c [ 348.088104][ T7021] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 348.557522][ T7013] F2FS-fs (loop4): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 348.717805][ T6890] bio_check_eod: 268384 callbacks suppressed [ 348.717845][ T6890] syz.2.36: attempt to access beyond end of device [ 348.717845][ T6890] loop2: rw=0, sector=89248, nr_sectors = 8 limit=40427 [ 348.718725][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718725][ T6961] loop3: rw=524288, sector=88320, nr_sectors = 8 limit=40427 [ 348.718777][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718777][ T6961] loop3: rw=524288, sector=88328, nr_sectors = 8 limit=40427 [ 348.718810][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718810][ T6961] loop3: rw=524288, sector=88336, nr_sectors = 8 limit=40427 [ 348.718837][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718837][ T6961] loop3: rw=524288, sector=88344, nr_sectors = 8 limit=40427 [ 348.718862][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718862][ T6961] loop3: rw=524288, sector=88352, nr_sectors = 8 limit=40427 [ 348.718886][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718886][ T6961] loop3: rw=524288, sector=88360, nr_sectors = 8 limit=40427 [ 348.718909][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718909][ T6961] loop3: rw=524288, sector=88368, nr_sectors = 8 limit=40427 [ 348.718933][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718933][ T6961] loop3: rw=524288, sector=88376, nr_sectors = 8 limit=40427 [ 348.718955][ T6961] syz.3.44: attempt to access beyond end of device [ 348.718955][ T6961] loop3: rw=524288, sector=88384, nr_sectors = 8 limit=40427 [ 348.756587][ T6124] Bluetooth: hci5: command tx timeout [ 348.808826][ T7059] loop5: detected capacity change from 0 to 40427 [ 348.838416][ T7059] F2FS-fs (loop5): build fault injection rate: 771 [ 348.848147][ T7059] F2FS-fs (loop5): invalid crc value [ 348.891422][ T7059] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 348.898087][ T7059] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 349.073513][ T7021] CPU: 0 UID: 0 PID: 7021 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 349.073533][ T7021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 349.073539][ T7021] Call trace: [ 349.073542][ T7021] show_stack+0x2c/0x3c (C) [ 349.073561][ T7021] __dump_stack+0x30/0x40 [ 349.073571][ T7021] dump_stack_lvl+0xd8/0x12c [ 349.073578][ T7021] dump_stack+0x1c/0x28 [ 349.073584][ T7021] f2fs_handle_critical_error+0x34c/0x4b8 [ 349.073592][ T7021] f2fs_stop_checkpoint+0x5c/0x70 [ 349.073598][ T7021] f2fs_write_end_io+0x768/0xa70 [ 349.073605][ T7021] bio_endio+0x858/0x894 [ 349.073613][ T7021] submit_bio_noacct+0x158/0x177c [ 349.073618][ T7021] submit_bio+0x3b4/0x550 [ 349.073624][ T7021] f2fs_submit_write_bio+0x13c/0x324 [ 349.073630][ T7021] __submit_merged_bio+0x254/0x704 [ 349.073636][ T7021] __submit_merged_write_cond+0x23c/0x4ac [ 349.073643][ T7021] f2fs_write_data_pages+0x1d28/0x2634 [ 349.073649][ T7021] do_writepages+0x270/0x468 [ 349.073657][ T7021] filemap_fdatawrite+0x14c/0x1f4 [ 349.073664][ T7021] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 349.073670][ T7021] f2fs_write_checkpoint+0x690/0x16a0 [ 349.073675][ T7021] kill_f2fs_super+0x21c/0x584 [ 349.073682][ T7021] deactivate_locked_super+0xc4/0x12c [ 349.073688][ T7021] deactivate_super+0xe0/0x100 [ 349.073693][ T7021] cleanup_mnt+0x31c/0x3ac [ 349.073698][ T7021] __cleanup_mnt+0x20/0x30 [ 349.073704][ T7021] task_work_run+0x1dc/0x260 [ 349.073710][ T7021] exit_to_user_mode_loop+0xfc/0x168 [ 349.073717][ T7021] el0_svc+0x170/0x254 [ 349.073726][ T7021] el0t_64_sync_handler+0x84/0x12c [ 349.073733][ T7021] el0t_64_sync+0x198/0x19c [ 349.073759][ T7021] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 349.844786][ T7065] loop5: detected capacity change from 0 to 40427 [ 349.857758][ T7065] F2FS-fs (loop5): build fault injection rate: 771 [ 349.858500][ T7065] F2FS-fs (loop5): invalid crc value [ 349.958792][ T7065] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 349.980924][ T7065] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 350.177760][ T7021] CPU: 0 UID: 0 PID: 7021 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 350.177781][ T7021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 350.177787][ T7021] Call trace: [ 350.177791][ T7021] show_stack+0x2c/0x3c (C) [ 350.177810][ T7021] __dump_stack+0x30/0x40 [ 350.177821][ T7021] dump_stack_lvl+0xd8/0x12c [ 350.177827][ T7021] dump_stack+0x1c/0x28 [ 350.177832][ T7021] f2fs_handle_critical_error+0x34c/0x4b8 [ 350.177841][ T7021] f2fs_stop_checkpoint+0x5c/0x70 [ 350.177846][ T7021] f2fs_write_end_io+0x768/0xa70 [ 350.177853][ T7021] bio_endio+0x858/0x894 [ 350.177860][ T7021] submit_bio_noacct+0x158/0x177c [ 350.177866][ T7021] submit_bio+0x3b4/0x550 [ 350.177871][ T7021] f2fs_submit_write_bio+0x13c/0x324 [ 350.177877][ T7021] __submit_merged_bio+0x254/0x704 [ 350.177883][ T7021] __submit_merged_write_cond+0x23c/0x4ac [ 350.177889][ T7021] f2fs_write_data_pages+0x1d28/0x2634 [ 350.177895][ T7021] do_writepages+0x270/0x468 [ 350.177903][ T7021] filemap_fdatawrite+0x14c/0x1f4 [ 350.177909][ T7021] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 350.177915][ T7021] f2fs_write_checkpoint+0x690/0x16a0 [ 350.177920][ T7021] kill_f2fs_super+0x21c/0x584 [ 350.177926][ T7021] deactivate_locked_super+0xc4/0x12c [ 350.177931][ T7021] deactivate_super+0xe0/0x100 [ 350.177936][ T7021] cleanup_mnt+0x31c/0x3ac [ 350.177941][ T7021] __cleanup_mnt+0x20/0x30 [ 350.177946][ T7021] task_work_run+0x1dc/0x260 [ 350.177953][ T7021] exit_to_user_mode_loop+0xfc/0x168 [ 350.177959][ T7021] el0_svc+0x170/0x254 [ 350.177967][ T7021] el0t_64_sync_handler+0x84/0x12c [ 350.177974][ T7021] el0t_64_sync+0x198/0x19c [ 350.178006][ T7021] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 350.838279][ T6124] Bluetooth: hci5: command tx timeout [ 350.899395][ T7071] loop5: detected capacity change from 0 to 40427 [ 350.921643][ T7071] F2FS-fs (loop5): build fault injection rate: 771 [ 350.923577][ T7071] F2FS-fs (loop5): invalid crc value [ 350.988726][ T7071] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 350.993446][ T7071] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 352.907645][ T6124] Bluetooth: hci5: command tx timeout [ 353.727628][ T6852] bio_check_eod: 314412 callbacks suppressed [ 353.728374][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728374][ T6852] loop1: rw=524288, sector=89744, nr_sectors = 8 limit=40427 [ 353.728414][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728414][ T6852] loop1: rw=524288, sector=89752, nr_sectors = 8 limit=40427 [ 353.728439][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728439][ T6852] loop1: rw=524288, sector=89760, nr_sectors = 8 limit=40427 [ 353.728466][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728466][ T6852] loop1: rw=524288, sector=89768, nr_sectors = 8 limit=40427 [ 353.728489][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728489][ T6852] loop1: rw=524288, sector=89776, nr_sectors = 8 limit=40427 [ 353.728519][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728519][ T6852] loop1: rw=524288, sector=89784, nr_sectors = 8 limit=40427 [ 353.728542][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728542][ T6852] loop1: rw=524288, sector=89792, nr_sectors = 8 limit=40427 [ 353.728564][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728564][ T6852] loop1: rw=524288, sector=89800, nr_sectors = 8 limit=40427 [ 353.728586][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728586][ T6852] loop1: rw=524288, sector=89808, nr_sectors = 8 limit=40427 [ 353.728608][ T6852] syz.1.33: attempt to access beyond end of device [ 353.728608][ T6852] loop1: rw=524288, sector=89816, nr_sectors = 8 limit=40427 [ 358.737754][ T6890] bio_check_eod: 322103 callbacks suppressed [ 358.738491][ T6890] syz.2.36: attempt to access beyond end of device [ 358.738491][ T6890] loop2: rw=524288, sector=86584, nr_sectors = 8 limit=40427 [ 358.739235][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739235][ T6890] loop2: rw=524288, sector=86592, nr_sectors = 8 limit=40427 [ 358.739698][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739698][ T6890] loop2: rw=524288, sector=86600, nr_sectors = 8 limit=40427 [ 358.739728][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739728][ T6890] loop2: rw=524288, sector=86608, nr_sectors = 8 limit=40427 [ 358.739756][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739756][ T6890] loop2: rw=524288, sector=86616, nr_sectors = 8 limit=40427 [ 358.739788][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739788][ T6890] loop2: rw=524288, sector=86624, nr_sectors = 8 limit=40427 [ 358.739824][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739824][ T6890] loop2: rw=524288, sector=86632, nr_sectors = 8 limit=40427 [ 358.739850][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739850][ T6890] loop2: rw=524288, sector=86640, nr_sectors = 8 limit=40427 [ 358.739876][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739876][ T6890] loop2: rw=524288, sector=86648, nr_sectors = 8 limit=40427 [ 358.739902][ T6890] syz.2.36: attempt to access beyond end of device [ 358.739902][ T6890] loop2: rw=524288, sector=86656, nr_sectors = 8 limit=40427 [ 363.748709][ T6890] bio_check_eod: 326687 callbacks suppressed [ 363.753312][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753312][ T7013] loop4: rw=0, sector=88264, nr_sectors = 8 limit=40427 [ 363.753373][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753373][ T7013] loop4: rw=0, sector=88272, nr_sectors = 8 limit=40427 [ 363.753418][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753418][ T7013] loop4: rw=0, sector=88280, nr_sectors = 8 limit=40427 [ 363.753457][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753457][ T7013] loop4: rw=0, sector=88288, nr_sectors = 8 limit=40427 [ 363.753489][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753489][ T7013] loop4: rw=0, sector=88296, nr_sectors = 8 limit=40427 [ 363.753519][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753519][ T7013] loop4: rw=0, sector=88304, nr_sectors = 8 limit=40427 [ 363.753547][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753547][ T7013] loop4: rw=0, sector=88312, nr_sectors = 8 limit=40427 [ 363.753574][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753574][ T7013] loop4: rw=0, sector=88320, nr_sectors = 8 limit=40427 [ 363.753600][ T7013] syz.4.47: attempt to access beyond end of device [ 363.753600][ T7013] loop4: rw=0, sector=88328, nr_sectors = 8 limit=40427 [ 363.755666][ T6890] syz.2.36: attempt to access beyond end of device [ 363.755666][ T6890] loop2: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 367.246914][ T6580] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 367.248121][ T6580] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 367.248312][ T6580] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 367.248584][ T6580] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 367.248784][ T6580] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 367.901567][ T7077] chnl_net:caif_netlink_parms(): no params data found [ 368.304634][ T7077] bridge0: port 1(bridge_slave_0) entered blocking state [ 368.304678][ T7077] bridge0: port 1(bridge_slave_0) entered disabled state [ 368.304760][ T7077] bridge_slave_0: entered allmulticast mode [ 368.305219][ T7077] bridge_slave_0: entered promiscuous mode [ 368.305849][ T7077] bridge0: port 2(bridge_slave_1) entered blocking state [ 368.305874][ T7077] bridge0: port 2(bridge_slave_1) entered disabled state [ 368.305935][ T7077] bridge_slave_1: entered allmulticast mode [ 368.306378][ T7077] bridge_slave_1: entered promiscuous mode [ 368.559532][ T7077] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 368.593994][ T7077] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 368.666124][ T7077] team0: Port device team_slave_0 added [ 368.671604][ T7077] team0: Port device team_slave_1 added [ 368.757660][ T6961] bio_check_eod: 293134 callbacks suppressed [ 368.757721][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757721][ T6961] loop3: rw=0, sector=87064, nr_sectors = 8 limit=40427 [ 368.757776][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757776][ T6961] loop3: rw=0, sector=87072, nr_sectors = 8 limit=40427 [ 368.757805][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757805][ T6961] loop3: rw=0, sector=87080, nr_sectors = 8 limit=40427 [ 368.757831][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757831][ T6961] loop3: rw=0, sector=87088, nr_sectors = 8 limit=40427 [ 368.757861][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757861][ T6961] loop3: rw=0, sector=87096, nr_sectors = 8 limit=40427 [ 368.757885][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757885][ T6961] loop3: rw=0, sector=87104, nr_sectors = 8 limit=40427 [ 368.757908][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757908][ T6961] loop3: rw=0, sector=87112, nr_sectors = 8 limit=40427 [ 368.757931][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757931][ T6961] loop3: rw=0, sector=87120, nr_sectors = 8 limit=40427 [ 368.757953][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757953][ T6961] loop3: rw=0, sector=87128, nr_sectors = 8 limit=40427 [ 368.757975][ T6961] syz.3.44: attempt to access beyond end of device [ 368.757975][ T6961] loop3: rw=0, sector=87136, nr_sectors = 8 limit=40427 [ 368.798940][ T7077] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 368.798967][ T7077] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 368.798999][ T7077] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 368.800136][ T7077] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 368.800155][ T7077] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 368.800183][ T7077] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 369.252843][ T7077] hsr_slave_0: entered promiscuous mode [ 369.253180][ T7077] hsr_slave_1: entered promiscuous mode [ 369.253362][ T7077] debugfs: 'hsr0' already exists in 'hsr' [ 369.253373][ T7077] Cannot create hsr debugfs directory [ 369.307692][ T6124] Bluetooth: hci6: command tx timeout [ 369.707851][ T7077] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 369.711259][ T7077] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 369.713548][ T7077] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 369.742467][ T7077] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 369.959153][ T7077] 8021q: adding VLAN 0 to HW filter on device bond0 [ 369.963681][ T7077] 8021q: adding VLAN 0 to HW filter on device team0 [ 370.016372][ T2228] bridge0: port 1(bridge_slave_0) entered blocking state [ 370.016418][ T2228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 370.034048][ T2125] bridge0: port 2(bridge_slave_1) entered blocking state [ 370.034088][ T2125] bridge0: port 2(bridge_slave_1) entered forwarding state [ 370.413689][ T7077] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 370.675529][ T7077] veth0_vlan: entered promiscuous mode [ 370.709894][ T7077] veth1_vlan: entered promiscuous mode [ 370.737144][ T7077] veth0_macvtap: entered promiscuous mode [ 370.770011][ T7077] veth1_macvtap: entered promiscuous mode [ 370.781093][ T7077] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 370.803926][ T7077] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 370.823511][ T12] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.824283][ T12] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.824298][ T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.824312][ T12] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.997610][ T7109] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 370.997647][ T7109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 371.029055][ T2228] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 371.029085][ T2228] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:06:11 executed programs: 37 [ 371.402345][ T6124] Bluetooth: hci6: command tx timeout [ 371.712169][ T2413] ieee802154 phy0 wpan0: encryption failed: -22 [ 371.712227][ T2413] ieee802154 phy1 wpan1: encryption failed: -22 [ 371.737090][ T7111] loop6: detected capacity change from 0 to 40427 [ 371.824629][ T7111] F2FS-fs (loop6): build fault injection rate: 771 [ 371.858998][ T7111] F2FS-fs (loop6): invalid crc value [ 371.931633][ T7111] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 371.940602][ T7111] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 372.257926][ T7077] CPU: 0 UID: 0 PID: 7077 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 372.257950][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 372.257956][ T7077] Call trace: [ 372.257960][ T7077] show_stack+0x2c/0x3c (C) [ 372.257978][ T7077] __dump_stack+0x30/0x40 [ 372.257990][ T7077] dump_stack_lvl+0xd8/0x12c [ 372.258001][ T7077] dump_stack+0x1c/0x28 [ 372.258007][ T7077] f2fs_handle_critical_error+0x34c/0x4b8 [ 372.258017][ T7077] f2fs_stop_checkpoint+0x5c/0x70 [ 372.258024][ T7077] f2fs_write_end_io+0x768/0xa70 [ 372.258031][ T7077] bio_endio+0x858/0x894 [ 372.258039][ T7077] submit_bio_noacct+0x158/0x177c [ 372.258046][ T7077] submit_bio+0x3b4/0x550 [ 372.258051][ T7077] f2fs_submit_write_bio+0x13c/0x324 [ 372.258058][ T7077] __submit_merged_bio+0x254/0x704 [ 372.258064][ T7077] __submit_merged_write_cond+0x23c/0x4ac [ 372.258070][ T7077] f2fs_write_data_pages+0x1d28/0x2634 [ 372.258077][ T7077] do_writepages+0x270/0x468 [ 372.258085][ T7077] filemap_fdatawrite+0x14c/0x1f4 [ 372.258093][ T7077] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 372.258099][ T7077] f2fs_write_checkpoint+0x690/0x16a0 [ 372.258104][ T7077] kill_f2fs_super+0x21c/0x584 [ 372.258111][ T7077] deactivate_locked_super+0xc4/0x12c [ 372.258117][ T7077] deactivate_super+0xe0/0x100 [ 372.258122][ T7077] cleanup_mnt+0x31c/0x3ac [ 372.258128][ T7077] __cleanup_mnt+0x20/0x30 [ 372.258133][ T7077] task_work_run+0x1dc/0x260 [ 372.258139][ T7077] exit_to_user_mode_loop+0xfc/0x168 [ 372.258147][ T7077] el0_svc+0x170/0x254 [ 372.258155][ T7077] el0t_64_sync_handler+0x84/0x12c [ 372.258162][ T7077] el0t_64_sync+0x198/0x19c [ 372.258890][ T7077] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 372.854980][ T7071] F2FS-fs (loop5): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 373.212653][ T7117] loop6: detected capacity change from 0 to 40427 [ 373.278381][ T7117] F2FS-fs (loop6): build fault injection rate: 771 [ 373.310357][ T7117] F2FS-fs (loop6): invalid crc value [ 373.381979][ T7117] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 373.427644][ T7117] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 373.486595][ T6580] Bluetooth: hci6: command tx timeout [ 373.657010][ T7077] CPU: 1 UID: 0 PID: 7077 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 373.657030][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 373.657036][ T7077] Call trace: [ 373.657039][ T7077] show_stack+0x2c/0x3c (C) [ 373.657056][ T7077] __dump_stack+0x30/0x40 [ 373.657067][ T7077] dump_stack_lvl+0xd8/0x12c [ 373.657073][ T7077] dump_stack+0x1c/0x28 [ 373.657079][ T7077] f2fs_handle_critical_error+0x34c/0x4b8 [ 373.657088][ T7077] f2fs_stop_checkpoint+0x5c/0x70 [ 373.657094][ T7077] f2fs_write_end_io+0x768/0xa70 [ 373.657100][ T7077] bio_endio+0x858/0x894 [ 373.657107][ T7077] submit_bio_noacct+0x158/0x177c [ 373.657113][ T7077] submit_bio+0x3b4/0x550 [ 373.657119][ T7077] f2fs_submit_write_bio+0x13c/0x324 [ 373.657125][ T7077] __submit_merged_bio+0x254/0x704 [ 373.657131][ T7077] __submit_merged_write_cond+0x23c/0x4ac [ 373.657136][ T7077] f2fs_write_data_pages+0x1d28/0x2634 [ 373.657143][ T7077] do_writepages+0x270/0x468 [ 373.657151][ T7077] filemap_fdatawrite+0x14c/0x1f4 [ 373.657157][ T7077] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 373.657163][ T7077] f2fs_write_checkpoint+0x690/0x16a0 [ 373.657168][ T7077] kill_f2fs_super+0x21c/0x584 [ 373.657175][ T7077] deactivate_locked_super+0xc4/0x12c [ 373.657180][ T7077] deactivate_super+0xe0/0x100 [ 373.657185][ T7077] cleanup_mnt+0x31c/0x3ac [ 373.657198][ T7077] __cleanup_mnt+0x20/0x30 [ 373.657203][ T7077] task_work_run+0x1dc/0x260 [ 373.657210][ T7077] exit_to_user_mode_loop+0xfc/0x168 [ 373.657217][ T7077] el0_svc+0x170/0x254 [ 373.657226][ T7077] el0t_64_sync_handler+0x84/0x12c [ 373.657233][ T7077] el0t_64_sync+0x198/0x19c [ 373.657601][ T7077] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 373.768220][ T6809] bio_check_eod: 279465 callbacks suppressed [ 373.769279][ T6809] syz.0.30: attempt to access beyond end of device [ 373.769279][ T6809] loop0: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 373.771465][ T6809] syz.0.30: attempt to access beyond end of device [ 373.771465][ T6809] loop0: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 373.773628][ T6809] syz.0.30: attempt to access beyond end of device [ 373.773628][ T6809] loop0: rw=524288, sector=86032, nr_sectors = 8 limit=40427 [ 373.775860][ T6809] syz.0.30: attempt to access beyond end of device [ 373.775860][ T6809] loop0: rw=524288, sector=86040, nr_sectors = 8 limit=40427 [ 373.778199][ T6809] syz.0.30: attempt to access beyond end of device [ 373.778199][ T6809] loop0: rw=524288, sector=86048, nr_sectors = 8 limit=40427 [ 373.780263][ T6852] syz.1.33: attempt to access beyond end of device [ 373.780263][ T6852] loop1: rw=0, sector=87568, nr_sectors = 8 limit=40427 [ 373.780303][ T6852] syz.1.33: attempt to access beyond end of device [ 373.780303][ T6852] loop1: rw=0, sector=87576, nr_sectors = 8 limit=40427 [ 373.780329][ T6852] syz.1.33: attempt to access beyond end of device [ 373.780329][ T6852] loop1: rw=0, sector=87584, nr_sectors = 8 limit=40427 [ 373.780354][ T6852] syz.1.33: attempt to access beyond end of device [ 373.780354][ T6852] loop1: rw=0, sector=87592, nr_sectors = 8 limit=40427 [ 373.780377][ T6852] syz.1.33: attempt to access beyond end of device [ 373.780377][ T6852] loop1: rw=0, sector=87600, nr_sectors = 8 limit=40427 [ 373.789640][ T6580] Bluetooth: hci0: command 0x0406 tx timeout [ 374.787446][ T7123] loop6: detected capacity change from 0 to 40427 [ 374.875026][ T7123] F2FS-fs (loop6): build fault injection rate: 771 [ 374.897618][ T7123] F2FS-fs (loop6): invalid crc value [ 374.956122][ T7123] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 374.980430][ T7123] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 375.178080][ T7077] CPU: 0 UID: 0 PID: 7077 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 375.178105][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 375.178111][ T7077] Call trace: [ 375.178114][ T7077] show_stack+0x2c/0x3c (C) [ 375.178132][ T7077] __dump_stack+0x30/0x40 [ 375.178142][ T7077] dump_stack_lvl+0xd8/0x12c [ 375.178150][ T7077] dump_stack+0x1c/0x28 [ 375.178155][ T7077] f2fs_handle_critical_error+0x34c/0x4b8 [ 375.178164][ T7077] f2fs_stop_checkpoint+0x5c/0x70 [ 375.178170][ T7077] f2fs_write_end_io+0x768/0xa70 [ 375.178182][ T7077] bio_endio+0x858/0x894 [ 375.178190][ T7077] submit_bio_noacct+0x158/0x177c [ 375.178196][ T7077] submit_bio+0x3b4/0x550 [ 375.178202][ T7077] f2fs_submit_write_bio+0x13c/0x324 [ 375.178209][ T7077] __submit_merged_bio+0x254/0x704 [ 375.178216][ T7077] __submit_merged_write_cond+0x23c/0x4ac [ 375.178222][ T7077] f2fs_write_data_pages+0x1d28/0x2634 [ 375.178228][ T7077] do_writepages+0x270/0x468 [ 375.178236][ T7077] filemap_fdatawrite+0x14c/0x1f4 [ 375.178243][ T7077] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 375.178248][ T7077] f2fs_write_checkpoint+0x690/0x16a0 [ 375.178253][ T7077] kill_f2fs_super+0x21c/0x584 [ 375.178260][ T7077] deactivate_locked_super+0xc4/0x12c [ 375.178265][ T7077] deactivate_super+0xe0/0x100 [ 375.178270][ T7077] cleanup_mnt+0x31c/0x3ac [ 375.178275][ T7077] __cleanup_mnt+0x20/0x30 [ 375.178280][ T7077] task_work_run+0x1dc/0x260 [ 375.178286][ T7077] exit_to_user_mode_loop+0xfc/0x168 [ 375.178293][ T7077] el0_svc+0x170/0x254 [ 375.178301][ T7077] el0t_64_sync_handler+0x84/0x12c [ 375.178308][ T7077] el0t_64_sync+0x198/0x19c [ 375.179425][ T7077] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 375.552001][ T6124] Bluetooth: hci6: command tx timeout [ 376.059381][ T7129] loop6: detected capacity change from 0 to 40427 [ 376.065276][ T7129] F2FS-fs (loop6): build fault injection rate: 771 [ 376.112820][ T7129] F2FS-fs (loop6): invalid crc value [ 376.168587][ T7129] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 376.176091][ T7129] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 376.427017][ T7077] CPU: 0 UID: 0 PID: 7077 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 376.427039][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 376.427045][ T7077] Call trace: [ 376.427048][ T7077] show_stack+0x2c/0x3c (C) [ 376.427065][ T7077] __dump_stack+0x30/0x40 [ 376.427075][ T7077] dump_stack_lvl+0xd8/0x12c [ 376.427082][ T7077] dump_stack+0x1c/0x28 [ 376.427088][ T7077] f2fs_handle_critical_error+0x34c/0x4b8 [ 376.427098][ T7077] f2fs_stop_checkpoint+0x5c/0x70 [ 376.427104][ T7077] f2fs_write_end_io+0x768/0xa70 [ 376.427112][ T7077] bio_endio+0x858/0x894 [ 376.427120][ T7077] submit_bio_noacct+0x158/0x177c [ 376.427127][ T7077] submit_bio+0x3b4/0x550 [ 376.427132][ T7077] f2fs_submit_write_bio+0x13c/0x324 [ 376.427138][ T7077] __submit_merged_bio+0x254/0x704 [ 376.427145][ T7077] __submit_merged_write_cond+0x23c/0x4ac [ 376.427151][ T7077] f2fs_write_data_pages+0x1d28/0x2634 [ 376.427157][ T7077] do_writepages+0x270/0x468 [ 376.427166][ T7077] filemap_fdatawrite+0x14c/0x1f4 [ 376.427178][ T7077] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 376.427185][ T7077] f2fs_write_checkpoint+0x690/0x16a0 [ 376.427191][ T7077] kill_f2fs_super+0x21c/0x584 [ 376.427198][ T7077] deactivate_locked_super+0xc4/0x12c [ 376.427205][ T7077] deactivate_super+0xe0/0x100 [ 376.427211][ T7077] cleanup_mnt+0x31c/0x3ac [ 376.427217][ T7077] __cleanup_mnt+0x20/0x30 [ 376.427223][ T7077] task_work_run+0x1dc/0x260 [ 376.427230][ T7077] exit_to_user_mode_loop+0xfc/0x168 [ 376.427237][ T7077] el0_svc+0x170/0x254 [ 376.427246][ T7077] el0t_64_sync_handler+0x84/0x12c [ 376.427253][ T7077] el0t_64_sync+0x198/0x19c [ 376.427599][ T7077] F2FS-fs (loop6): Stopped filesystem due to reason: 3 1970/01/01 00:06:16 executed programs: 41 [ 377.565684][ T7135] loop6: detected capacity change from 0 to 40427 [ 377.585820][ T7135] F2FS-fs (loop6): build fault injection rate: 771 [ 377.593567][ T7135] F2FS-fs (loop6): invalid crc value [ 377.712476][ T7135] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 377.730491][ T7135] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 377.986559][ T7077] CPU: 0 UID: 0 PID: 7077 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 377.986579][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 377.986586][ T7077] Call trace: [ 377.986589][ T7077] show_stack+0x2c/0x3c (C) [ 377.986608][ T7077] __dump_stack+0x30/0x40 [ 377.986619][ T7077] dump_stack_lvl+0xd8/0x12c [ 377.986625][ T7077] dump_stack+0x1c/0x28 [ 377.986630][ T7077] f2fs_handle_critical_error+0x34c/0x4b8 [ 377.986640][ T7077] f2fs_stop_checkpoint+0x5c/0x70 [ 377.986645][ T7077] f2fs_write_end_io+0x768/0xa70 [ 377.986652][ T7077] bio_endio+0x858/0x894 [ 377.986660][ T7077] submit_bio_noacct+0x158/0x177c [ 377.986665][ T7077] submit_bio+0x3b4/0x550 [ 377.986671][ T7077] f2fs_submit_write_bio+0x13c/0x324 [ 377.986677][ T7077] __submit_merged_bio+0x254/0x704 [ 377.986683][ T7077] __submit_merged_write_cond+0x23c/0x4ac [ 377.986689][ T7077] f2fs_write_data_pages+0x1d28/0x2634 [ 377.986696][ T7077] do_writepages+0x270/0x468 [ 377.986703][ T7077] filemap_fdatawrite+0x14c/0x1f4 [ 377.986710][ T7077] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 377.986716][ T7077] f2fs_write_checkpoint+0x690/0x16a0 [ 377.986721][ T7077] kill_f2fs_super+0x21c/0x584 [ 377.986728][ T7077] deactivate_locked_super+0xc4/0x12c [ 377.986733][ T7077] deactivate_super+0xe0/0x100 [ 377.986738][ T7077] cleanup_mnt+0x31c/0x3ac [ 377.986744][ T7077] __cleanup_mnt+0x20/0x30 [ 377.986749][ T7077] task_work_run+0x1dc/0x260 [ 377.986755][ T7077] exit_to_user_mode_loop+0xfc/0x168 [ 377.986762][ T7077] el0_svc+0x170/0x254 [ 377.986770][ T7077] el0t_64_sync_handler+0x84/0x12c [ 377.986777][ T7077] el0t_64_sync+0x198/0x19c [ 377.987625][ T7077] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 378.779887][ T7071] bio_check_eod: 308568 callbacks suppressed [ 378.779942][ T7071] syz.5.51: attempt to access beyond end of device [ 378.779942][ T7071] loop5: rw=0, sector=88280, nr_sectors = 8 limit=40427 [ 378.780016][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780016][ T7071] loop5: rw=0, sector=88288, nr_sectors = 8 limit=40427 [ 378.780048][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780048][ T7071] loop5: rw=0, sector=88296, nr_sectors = 8 limit=40427 [ 378.780075][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780075][ T7071] loop5: rw=0, sector=88304, nr_sectors = 8 limit=40427 [ 378.780099][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780099][ T7071] loop5: rw=0, sector=88312, nr_sectors = 8 limit=40427 [ 378.780123][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780123][ T7071] loop5: rw=0, sector=88320, nr_sectors = 8 limit=40427 [ 378.780146][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780146][ T7071] loop5: rw=0, sector=88328, nr_sectors = 8 limit=40427 [ 378.780169][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780169][ T7071] loop5: rw=0, sector=88336, nr_sectors = 8 limit=40427 [ 378.780195][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780195][ T7071] loop5: rw=0, sector=88344, nr_sectors = 8 limit=40427 [ 378.780223][ T7071] syz.5.51: attempt to access beyond end of device [ 378.780223][ T7071] loop5: rw=0, sector=88352, nr_sectors = 8 limit=40427 [ 378.905856][ T7141] loop6: detected capacity change from 0 to 40427 [ 378.915916][ T7141] F2FS-fs (loop6): build fault injection rate: 771 [ 378.945302][ T7141] F2FS-fs (loop6): invalid crc value [ 379.082018][ T7141] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 379.090501][ T7141] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 379.206246][ T7077] CPU: 1 UID: 0 PID: 7077 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 379.206275][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 379.206284][ T7077] Call trace: [ 379.206288][ T7077] show_stack+0x2c/0x3c (C) [ 379.206304][ T7077] __dump_stack+0x30/0x40 [ 379.206311][ T7077] dump_stack_lvl+0xd8/0x12c [ 379.206317][ T7077] dump_stack+0x1c/0x28 [ 379.206322][ T7077] f2fs_handle_critical_error+0x34c/0x4b8 [ 379.206330][ T7077] f2fs_stop_checkpoint+0x5c/0x70 [ 379.206335][ T7077] f2fs_write_end_io+0x768/0xa70 [ 379.206342][ T7077] bio_endio+0x858/0x894 [ 379.206349][ T7077] submit_bio_noacct+0x158/0x177c [ 379.206355][ T7077] submit_bio+0x3b4/0x550 [ 379.206360][ T7077] f2fs_submit_write_bio+0x13c/0x324 [ 379.206366][ T7077] __submit_merged_bio+0x254/0x704 [ 379.206372][ T7077] __submit_merged_write_cond+0x23c/0x4ac [ 379.206378][ T7077] f2fs_write_data_pages+0x1d28/0x2634 [ 379.206384][ T7077] do_writepages+0x270/0x468 [ 379.206392][ T7077] filemap_fdatawrite+0x14c/0x1f4 [ 379.206399][ T7077] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 379.206404][ T7077] f2fs_write_checkpoint+0x690/0x16a0 [ 379.206410][ T7077] kill_f2fs_super+0x21c/0x584 [ 379.206416][ T7077] deactivate_locked_super+0xc4/0x12c [ 379.206421][ T7077] deactivate_super+0xe0/0x100 [ 379.206426][ T7077] cleanup_mnt+0x31c/0x3ac [ 379.206431][ T7077] __cleanup_mnt+0x20/0x30 [ 379.206436][ T7077] task_work_run+0x1dc/0x260 [ 379.206442][ T7077] exit_to_user_mode_loop+0xfc/0x168 [ 379.206449][ T7077] el0_svc+0x170/0x254 [ 379.206457][ T7077] el0t_64_sync_handler+0x84/0x12c [ 379.206464][ T7077] el0t_64_sync+0x198/0x19c [ 379.206491][ T7077] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 380.344636][ T7147] loop6: detected capacity change from 0 to 40427 [ 380.387701][ T7147] F2FS-fs (loop6): build fault injection rate: 771 [ 380.388472][ T7147] F2FS-fs (loop6): invalid crc value [ 380.427296][ T7147] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 380.504930][ T7147] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 380.767830][ T7077] CPU: 0 UID: 0 PID: 7077 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 380.767853][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 380.767860][ T7077] Call trace: [ 380.767863][ T7077] show_stack+0x2c/0x3c (C) [ 380.767882][ T7077] __dump_stack+0x30/0x40 [ 380.767892][ T7077] dump_stack_lvl+0xd8/0x12c [ 380.767900][ T7077] dump_stack+0x1c/0x28 [ 380.767906][ T7077] f2fs_handle_critical_error+0x34c/0x4b8 [ 380.767915][ T7077] f2fs_stop_checkpoint+0x5c/0x70 [ 380.767921][ T7077] f2fs_write_end_io+0x768/0xa70 [ 380.767928][ T7077] bio_endio+0x858/0x894 [ 380.767936][ T7077] submit_bio_noacct+0x158/0x177c [ 380.767941][ T7077] submit_bio+0x3b4/0x550 [ 380.767947][ T7077] f2fs_submit_write_bio+0x13c/0x324 [ 380.767953][ T7077] __submit_merged_bio+0x254/0x704 [ 380.767960][ T7077] __submit_merged_write_cond+0x23c/0x4ac [ 380.767966][ T7077] f2fs_write_data_pages+0x1d28/0x2634 [ 380.767972][ T7077] do_writepages+0x270/0x468 [ 380.767980][ T7077] filemap_fdatawrite+0x14c/0x1f4 [ 380.767987][ T7077] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 380.767993][ T7077] f2fs_write_checkpoint+0x690/0x16a0 [ 380.767999][ T7077] kill_f2fs_super+0x21c/0x584 [ 380.768005][ T7077] deactivate_locked_super+0xc4/0x12c [ 380.768011][ T7077] deactivate_super+0xe0/0x100 [ 380.768016][ T7077] cleanup_mnt+0x31c/0x3ac [ 380.768022][ T7077] __cleanup_mnt+0x20/0x30 [ 380.768027][ T7077] task_work_run+0x1dc/0x260 [ 380.768034][ T7077] exit_to_user_mode_loop+0xfc/0x168 [ 380.768041][ T7077] el0_svc+0x170/0x254 [ 380.768050][ T7077] el0t_64_sync_handler+0x84/0x12c [ 380.768057][ T7077] el0t_64_sync+0x198/0x19c [ 380.768977][ T7077] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 381.880798][ T7153] loop6: detected capacity change from 0 to 40427 [ 381.923389][ T7153] F2FS-fs (loop6): build fault injection rate: 771 [ 381.949404][ T7153] F2FS-fs (loop6): invalid crc value [ 382.003325][ T7153] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 382.013535][ T7153] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 383.792337][ T6890] bio_check_eod: 321025 callbacks suppressed [ 383.792380][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792380][ T6890] loop2: rw=524288, sector=88360, nr_sectors = 8 limit=40427 [ 383.792431][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792431][ T6890] loop2: rw=524288, sector=88368, nr_sectors = 8 limit=40427 [ 383.792478][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792478][ T6890] loop2: rw=524288, sector=88376, nr_sectors = 8 limit=40427 [ 383.792517][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792517][ T6890] loop2: rw=524288, sector=88384, nr_sectors = 8 limit=40427 [ 383.792554][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792554][ T6890] loop2: rw=524288, sector=88392, nr_sectors = 8 limit=40427 [ 383.792585][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792585][ T6890] loop2: rw=524288, sector=88400, nr_sectors = 8 limit=40427 [ 383.792614][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792614][ T6890] loop2: rw=524288, sector=88408, nr_sectors = 8 limit=40427 [ 383.792642][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792642][ T6890] loop2: rw=524288, sector=88416, nr_sectors = 8 limit=40427 [ 383.792669][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792669][ T6890] loop2: rw=524288, sector=88424, nr_sectors = 8 limit=40427 [ 383.792702][ T6890] syz.2.36: attempt to access beyond end of device [ 383.792702][ T6890] loop2: rw=524288, sector=88432, nr_sectors = 8 limit=40427 [ 388.797763][ T6890] bio_check_eod: 316171 callbacks suppressed [ 388.799883][ T6961] syz.3.44: attempt to access beyond end of device [ 388.799883][ T6961] loop3: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 388.800775][ T6961] syz.3.44: attempt to access beyond end of device [ 388.800775][ T6961] loop3: rw=524288, sector=86024, nr_sectors = 8 limit=40427 [ 388.801570][ T6961] syz.3.44: attempt to access beyond end of device [ 388.801570][ T6961] loop3: rw=524288, sector=86032, nr_sectors = 8 limit=40427 [ 388.802323][ T6961] syz.3.44: attempt to access beyond end of device [ 388.802323][ T6961] loop3: rw=524288, sector=86040, nr_sectors = 8 limit=40427 [ 388.803044][ T6961] syz.3.44: attempt to access beyond end of device [ 388.803044][ T6961] loop3: rw=524288, sector=86048, nr_sectors = 8 limit=40427 [ 388.803762][ T6961] syz.3.44: attempt to access beyond end of device [ 388.803762][ T6961] loop3: rw=524288, sector=86056, nr_sectors = 8 limit=40427 [ 388.804470][ T6961] syz.3.44: attempt to access beyond end of device [ 388.804470][ T6961] loop3: rw=524288, sector=86064, nr_sectors = 8 limit=40427 [ 388.805184][ T6961] syz.3.44: attempt to access beyond end of device [ 388.805184][ T6961] loop3: rw=524288, sector=86072, nr_sectors = 8 limit=40427 [ 388.805899][ T6961] syz.3.44: attempt to access beyond end of device [ 388.805899][ T6961] loop3: rw=524288, sector=86080, nr_sectors = 8 limit=40427 [ 388.826365][ T6890] syz.2.36: attempt to access beyond end of device [ 388.826365][ T6890] loop2: rw=524288, sector=86376, nr_sectors = 8 limit=40427 [ 393.807614][ T7071] bio_check_eod: 317346 callbacks suppressed [ 393.807669][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807669][ T7071] loop5: rw=524288, sector=87912, nr_sectors = 8 limit=40427 [ 393.807731][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807731][ T7071] loop5: rw=524288, sector=87920, nr_sectors = 8 limit=40427 [ 393.807773][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807773][ T7071] loop5: rw=524288, sector=87928, nr_sectors = 8 limit=40427 [ 393.807810][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807810][ T7071] loop5: rw=524288, sector=87936, nr_sectors = 8 limit=40427 [ 393.807842][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807842][ T7071] loop5: rw=524288, sector=87944, nr_sectors = 8 limit=40427 [ 393.807872][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807872][ T7071] loop5: rw=524288, sector=87952, nr_sectors = 8 limit=40427 [ 393.807900][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807900][ T7071] loop5: rw=524288, sector=87960, nr_sectors = 8 limit=40427 [ 393.807928][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807928][ T7071] loop5: rw=524288, sector=87968, nr_sectors = 8 limit=40427 [ 393.807954][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807954][ T7071] loop5: rw=524288, sector=87976, nr_sectors = 8 limit=40427 [ 393.807980][ T7071] syz.5.51: attempt to access beyond end of device [ 393.807980][ T7071] loop5: rw=524288, sector=87984, nr_sectors = 8 limit=40427 [ 394.280324][ T6124] Bluetooth: hci1: command 0x0406 tx timeout [ 396.513429][ T6124] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 396.514877][ T6124] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 396.516197][ T6124] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 396.517038][ T6124] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 396.517271][ T6124] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 397.274294][ T7165] chnl_net:caif_netlink_parms(): no params data found [ 397.581522][ T7165] bridge0: port 1(bridge_slave_0) entered blocking state [ 397.581562][ T7165] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.581644][ T7165] bridge_slave_0: entered allmulticast mode [ 397.582093][ T7165] bridge_slave_0: entered promiscuous mode [ 397.582753][ T7165] bridge0: port 2(bridge_slave_1) entered blocking state [ 397.582776][ T7165] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.582843][ T7165] bridge_slave_1: entered allmulticast mode [ 397.583271][ T7165] bridge_slave_1: entered promiscuous mode [ 397.723741][ T7165] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 397.724880][ T7165] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 397.880737][ T7165] team0: Port device team_slave_0 added [ 397.881539][ T7165] team0: Port device team_slave_1 added [ 398.104762][ T7165] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 398.105950][ T7165] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 398.105991][ T7165] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 398.106640][ T7165] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 398.106655][ T7165] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 398.106680][ T7165] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 398.333933][ T7165] hsr_slave_0: entered promiscuous mode [ 398.334294][ T7165] hsr_slave_1: entered promiscuous mode [ 398.334519][ T7165] debugfs: 'hsr0' already exists in 'hsr' [ 398.334538][ T7165] Cannot create hsr debugfs directory [ 398.592587][ T6124] Bluetooth: hci7: command tx timeout [ 398.817602][ T7013] bio_check_eod: 304315 callbacks suppressed [ 398.817644][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817644][ T7013] loop4: rw=0, sector=89288, nr_sectors = 8 limit=40427 [ 398.817679][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817679][ T7013] loop4: rw=0, sector=89296, nr_sectors = 8 limit=40427 [ 398.817707][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817707][ T7013] loop4: rw=0, sector=89304, nr_sectors = 8 limit=40427 [ 398.817733][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817733][ T7013] loop4: rw=0, sector=89312, nr_sectors = 8 limit=40427 [ 398.817759][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817759][ T7013] loop4: rw=0, sector=89320, nr_sectors = 8 limit=40427 [ 398.817784][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817784][ T7013] loop4: rw=0, sector=89328, nr_sectors = 8 limit=40427 [ 398.817809][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817809][ T7013] loop4: rw=0, sector=89336, nr_sectors = 8 limit=40427 [ 398.817835][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817835][ T7013] loop4: rw=0, sector=89344, nr_sectors = 8 limit=40427 [ 398.817860][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817860][ T7013] loop4: rw=0, sector=89352, nr_sectors = 8 limit=40427 [ 398.817889][ T7013] syz.4.47: attempt to access beyond end of device [ 398.817889][ T7013] loop4: rw=0, sector=89360, nr_sectors = 8 limit=40427 [ 398.891201][ T7165] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 398.899167][ T7165] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 398.938920][ T7165] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 398.999532][ T7165] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 399.184587][ T7165] 8021q: adding VLAN 0 to HW filter on device bond0 [ 399.313734][ T7165] 8021q: adding VLAN 0 to HW filter on device team0 [ 399.388296][ T2228] bridge0: port 1(bridge_slave_0) entered blocking state [ 399.388342][ T2228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 399.389024][ T2228] bridge0: port 2(bridge_slave_1) entered blocking state [ 399.389041][ T2228] bridge0: port 2(bridge_slave_1) entered forwarding state [ 399.416948][ T7165] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 399.684166][ T7165] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 400.097099][ T7165] veth0_vlan: entered promiscuous mode [ 400.161384][ T7165] veth1_vlan: entered promiscuous mode [ 400.186639][ T7165] veth0_macvtap: entered promiscuous mode [ 400.225025][ T7165] veth1_macvtap: entered promiscuous mode [ 400.252305][ T7165] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 400.282627][ T7165] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 400.426852][ T2125] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.540090][ T2228] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.541651][ T2228] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.542053][ T2228] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.625571][ T2125] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 400.625617][ T2125] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 400.665368][ T2228] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 400.665400][ T2228] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 400.679188][ T6124] Bluetooth: hci7: command tx timeout 1970/01/01 00:06:40 executed programs: 45 [ 401.157242][ T7195] loop7: detected capacity change from 0 to 40427 [ 401.267850][ T7195] F2FS-fs (loop7): build fault injection rate: 771 [ 401.269056][ T7195] F2FS-fs (loop7): invalid crc value [ 401.310629][ T7195] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 401.337215][ T7195] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 401.637960][ T7165] CPU: 1 UID: 0 PID: 7165 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 401.637983][ T7165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 401.637988][ T7165] Call trace: [ 401.637992][ T7165] show_stack+0x2c/0x3c (C) [ 401.638008][ T7165] __dump_stack+0x30/0x40 [ 401.638017][ T7165] dump_stack_lvl+0xd8/0x12c [ 401.638024][ T7165] dump_stack+0x1c/0x28 [ 401.638030][ T7165] f2fs_handle_critical_error+0x34c/0x4b8 [ 401.638039][ T7165] f2fs_stop_checkpoint+0x5c/0x70 [ 401.638045][ T7165] f2fs_write_end_io+0x768/0xa70 [ 401.638052][ T7165] bio_endio+0x858/0x894 [ 401.638059][ T7165] submit_bio_noacct+0x158/0x177c [ 401.638065][ T7165] submit_bio+0x3b4/0x550 [ 401.638070][ T7165] f2fs_submit_write_bio+0x13c/0x324 [ 401.638077][ T7165] __submit_merged_bio+0x254/0x704 [ 401.638082][ T7165] __submit_merged_write_cond+0x23c/0x4ac [ 401.638088][ T7165] f2fs_write_data_pages+0x1d28/0x2634 [ 401.638095][ T7165] do_writepages+0x270/0x468 [ 401.638103][ T7165] filemap_fdatawrite+0x14c/0x1f4 [ 401.638110][ T7165] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 401.638116][ T7165] f2fs_write_checkpoint+0x690/0x16a0 [ 401.638121][ T7165] kill_f2fs_super+0x21c/0x584 [ 401.638127][ T7165] deactivate_locked_super+0xc4/0x12c [ 401.638133][ T7165] deactivate_super+0xe0/0x100 [ 401.638137][ T7165] cleanup_mnt+0x31c/0x3ac [ 401.638143][ T7165] __cleanup_mnt+0x20/0x30 [ 401.638148][ T7165] task_work_run+0x1dc/0x260 [ 401.638154][ T7165] exit_to_user_mode_loop+0xfc/0x168 [ 401.638161][ T7165] el0_svc+0x170/0x254 [ 401.638169][ T7165] el0t_64_sync_handler+0x84/0x12c [ 401.638176][ T7165] el0t_64_sync+0x198/0x19c [ 401.639162][ T7165] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 402.760472][ T6124] Bluetooth: hci7: command tx timeout [ 402.783367][ T7201] loop7: detected capacity change from 0 to 40427 [ 402.871969][ T7201] F2FS-fs (loop7): build fault injection rate: 771 [ 402.873956][ T7201] F2FS-fs (loop7): invalid crc value [ 402.989490][ T7201] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 403.010816][ T7201] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 403.827674][ T6809] bio_check_eod: 281290 callbacks suppressed [ 403.834015][ T6809] syz.0.30: attempt to access beyond end of device [ 403.834015][ T6809] loop0: rw=524288, sector=86240, nr_sectors = 8 limit=40427 [ 403.834808][ T6809] syz.0.30: attempt to access beyond end of device [ 403.834808][ T6809] loop0: rw=524288, sector=86248, nr_sectors = 8 limit=40427 [ 403.835537][ T6809] syz.0.30: attempt to access beyond end of device [ 403.835537][ T6809] loop0: rw=524288, sector=86256, nr_sectors = 8 limit=40427 [ 403.836258][ T6809] syz.0.30: attempt to access beyond end of device [ 403.836258][ T6809] loop0: rw=524288, sector=86264, nr_sectors = 8 limit=40427 [ 403.836990][ T6809] syz.0.30: attempt to access beyond end of device [ 403.836990][ T6809] loop0: rw=524288, sector=86272, nr_sectors = 8 limit=40427 [ 403.837602][ T6809] syz.0.30: attempt to access beyond end of device [ 403.837602][ T6809] loop0: rw=524288, sector=86280, nr_sectors = 8 limit=40427 [ 403.838400][ T6809] syz.0.30: attempt to access beyond end of device [ 403.838400][ T6809] loop0: rw=524288, sector=86288, nr_sectors = 8 limit=40427 [ 403.839164][ T6809] syz.0.30: attempt to access beyond end of device [ 403.839164][ T6809] loop0: rw=524288, sector=86296, nr_sectors = 8 limit=40427 [ 403.839887][ T6809] syz.0.30: attempt to access beyond end of device [ 403.839887][ T6809] loop0: rw=524288, sector=86304, nr_sectors = 8 limit=40427 [ 403.840091][ T6961] syz.3.44: attempt to access beyond end of device [ 403.840091][ T6961] loop3: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 404.828031][ T6124] Bluetooth: hci7: command tx timeout [ 408.558956][ T7153] F2FS-fs (loop6): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 408.841760][ T6809] bio_check_eod: 291723 callbacks suppressed [ 408.841801][ T6809] syz.0.30: attempt to access beyond end of device [ 408.841801][ T6809] loop0: rw=0, sector=89592, nr_sectors = 8 limit=40427 [ 408.841849][ T6809] syz.0.30: attempt to access beyond end of device [ 408.841849][ T6809] loop0: rw=0, sector=89600, nr_sectors = 8 limit=40427 [ 408.841891][ T6809] syz.0.30: attempt to access beyond end of device [ 408.841891][ T6809] loop0: rw=0, sector=89608, nr_sectors = 8 limit=40427 [ 408.841928][ T6809] syz.0.30: attempt to access beyond end of device [ 408.841928][ T6809] loop0: rw=0, sector=89616, nr_sectors = 8 limit=40427 [ 408.841962][ T6809] syz.0.30: attempt to access beyond end of device [ 408.841962][ T6809] loop0: rw=0, sector=89624, nr_sectors = 8 limit=40427 [ 408.841992][ T6809] syz.0.30: attempt to access beyond end of device [ 408.841992][ T6809] loop0: rw=0, sector=89632, nr_sectors = 8 limit=40427 [ 408.842020][ T6809] syz.0.30: attempt to access beyond end of device [ 408.842020][ T6809] loop0: rw=0, sector=89640, nr_sectors = 8 limit=40427 [ 408.842047][ T6809] syz.0.30: attempt to access beyond end of device [ 408.842047][ T6809] loop0: rw=0, sector=89648, nr_sectors = 8 limit=40427 [ 408.842074][ T6809] syz.0.30: attempt to access beyond end of device [ 408.842074][ T6809] loop0: rw=0, sector=89656, nr_sectors = 8 limit=40427 [ 408.842109][ T6809] syz.0.30: attempt to access beyond end of device [ 408.842109][ T6809] loop0: rw=0, sector=89664, nr_sectors = 8 limit=40427 [ 409.633228][ T6124] Bluetooth: hci2: command 0x0406 tx timeout [ 413.847691][ T6852] bio_check_eod: 321121 callbacks suppressed [ 413.848996][ T6852] syz.1.33: attempt to access beyond end of device [ 413.848996][ T6852] loop1: rw=0, sector=86336, nr_sectors = 8 limit=40427 [ 413.851262][ T6852] syz.1.33: attempt to access beyond end of device [ 413.851262][ T6852] loop1: rw=0, sector=86344, nr_sectors = 8 limit=40427 [ 413.853618][ T6852] syz.1.33: attempt to access beyond end of device [ 413.853618][ T6852] loop1: rw=0, sector=86352, nr_sectors = 8 limit=40427 [ 413.855608][ T6852] syz.1.33: attempt to access beyond end of device [ 413.855608][ T6852] loop1: rw=0, sector=86360, nr_sectors = 8 limit=40427 [ 413.857688][ T6809] syz.0.30: attempt to access beyond end of device [ 413.857688][ T6809] loop0: rw=524288, sector=87424, nr_sectors = 8 limit=40427 [ 413.857751][ T6809] syz.0.30: attempt to access beyond end of device [ 413.857751][ T6809] loop0: rw=524288, sector=87432, nr_sectors = 8 limit=40427 [ 413.857782][ T6809] syz.0.30: attempt to access beyond end of device [ 413.857782][ T6809] loop0: rw=524288, sector=87440, nr_sectors = 8 limit=40427 [ 413.857810][ T6809] syz.0.30: attempt to access beyond end of device [ 413.857810][ T6809] loop0: rw=524288, sector=87448, nr_sectors = 8 limit=40427 [ 413.857834][ T6809] syz.0.30: attempt to access beyond end of device [ 413.857834][ T6809] loop0: rw=524288, sector=87456, nr_sectors = 8 limit=40427 [ 413.857858][ T6809] syz.0.30: attempt to access beyond end of device [ 413.857858][ T6809] loop0: rw=524288, sector=87464, nr_sectors = 8 limit=40427 [ 418.466662][ T6124] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 418.487682][ T6124] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 418.527695][ T6124] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 418.547881][ T6124] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 418.553377][ T6124] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 418.858333][ T6852] bio_check_eod: 310498 callbacks suppressed [ 418.858348][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858348][ T7153] loop6: rw=0, sector=88632, nr_sectors = 8 limit=40427 [ 418.858400][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858400][ T7153] loop6: rw=0, sector=88640, nr_sectors = 8 limit=40427 [ 418.858439][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858439][ T7153] loop6: rw=0, sector=88648, nr_sectors = 8 limit=40427 [ 418.858472][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858472][ T7153] loop6: rw=0, sector=88656, nr_sectors = 8 limit=40427 [ 418.858502][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858502][ T7153] loop6: rw=0, sector=88664, nr_sectors = 8 limit=40427 [ 418.858530][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858530][ T7153] loop6: rw=0, sector=88672, nr_sectors = 8 limit=40427 [ 418.858559][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858559][ T7153] loop6: rw=0, sector=88680, nr_sectors = 8 limit=40427 [ 418.858587][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858587][ T7153] loop6: rw=0, sector=88688, nr_sectors = 8 limit=40427 [ 418.858613][ T7153] syz.6.59: attempt to access beyond end of device [ 418.858613][ T7153] loop6: rw=0, sector=88696, nr_sectors = 8 limit=40427 [ 418.859038][ T6852] syz.1.33: attempt to access beyond end of device [ 418.859038][ T6852] loop1: rw=524288, sector=86016, nr_sectors = 8 limit=40427 [ 419.539578][ T7208] chnl_net:caif_netlink_parms(): no params data found [ 420.004558][ T7208] bridge0: port 1(bridge_slave_0) entered blocking state [ 420.007703][ T7208] bridge0: port 1(bridge_slave_0) entered disabled state [ 420.007885][ T7208] bridge_slave_0: entered allmulticast mode [ 420.008376][ T7208] bridge_slave_0: entered promiscuous mode [ 420.018122][ T7208] bridge0: port 2(bridge_slave_1) entered blocking state [ 420.018167][ T7208] bridge0: port 2(bridge_slave_1) entered disabled state [ 420.018334][ T7208] bridge_slave_1: entered allmulticast mode [ 420.018805][ T7208] bridge_slave_1: entered promiscuous mode [ 420.361728][ T7208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 420.366528][ T7208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 420.494620][ T7208] team0: Port device team_slave_0 added [ 420.495446][ T7208] team0: Port device team_slave_1 added [ 420.602042][ T6124] Bluetooth: hci8: command tx timeout [ 420.889157][ T7208] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 420.890159][ T7208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 420.891015][ T7208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 420.908411][ T7208] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 420.909132][ T7208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 420.909847][ T7208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 421.258922][ T7208] hsr_slave_0: entered promiscuous mode [ 421.259296][ T7208] hsr_slave_1: entered promiscuous mode [ 421.259487][ T7208] debugfs: 'hsr0' already exists in 'hsr' [ 421.259499][ T7208] Cannot create hsr debugfs directory [ 421.908669][ T7208] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 421.972750][ T7208] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 422.054529][ T7208] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 422.118812][ T7208] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 422.500778][ T7208] 8021q: adding VLAN 0 to HW filter on device bond0 [ 422.511749][ T7208] 8021q: adding VLAN 0 to HW filter on device team0 [ 422.558565][ T2125] bridge0: port 1(bridge_slave_0) entered blocking state [ 422.558613][ T2125] bridge0: port 1(bridge_slave_0) entered forwarding state [ 422.559121][ T2125] bridge0: port 2(bridge_slave_1) entered blocking state [ 422.559152][ T2125] bridge0: port 2(bridge_slave_1) entered forwarding state [ 422.574066][ T7208] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 422.673572][ T6124] Bluetooth: hci8: command tx timeout [ 423.001857][ T7208] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 423.594806][ T7208] veth0_vlan: entered promiscuous mode [ 423.613165][ T7208] veth1_vlan: entered promiscuous mode [ 423.667119][ T7208] veth0_macvtap: entered promiscuous mode [ 423.707459][ T7208] veth1_macvtap: entered promiscuous mode [ 423.712497][ T7208] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 423.729661][ T7208] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 423.871003][ T2228] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.871073][ T2228] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.871112][ T2228] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.871131][ T2228] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.871614][ T7013] bio_check_eod: 303281 callbacks suppressed [ 423.871625][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871625][ T7013] loop4: rw=524288, sector=89608, nr_sectors = 8 limit=40427 [ 423.871674][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871674][ T7013] loop4: rw=524288, sector=89616, nr_sectors = 8 limit=40427 [ 423.871703][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871703][ T7013] loop4: rw=524288, sector=89624, nr_sectors = 8 limit=40427 [ 423.871730][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871730][ T7013] loop4: rw=524288, sector=89632, nr_sectors = 8 limit=40427 [ 423.871755][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871755][ T7013] loop4: rw=524288, sector=89640, nr_sectors = 8 limit=40427 [ 423.871779][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871779][ T7013] loop4: rw=524288, sector=89648, nr_sectors = 8 limit=40427 [ 423.871802][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871802][ T7013] loop4: rw=524288, sector=89656, nr_sectors = 8 limit=40427 [ 423.871825][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871825][ T7013] loop4: rw=524288, sector=89664, nr_sectors = 8 limit=40427 [ 423.871847][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871847][ T7013] loop4: rw=524288, sector=89672, nr_sectors = 8 limit=40427 [ 423.871872][ T7013] syz.4.47: attempt to access beyond end of device [ 423.871872][ T7013] loop4: rw=524288, sector=89680, nr_sectors = 8 limit=40427 [ 424.069264][ T2228] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 424.069300][ T2228] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 424.180011][ T2125] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 424.207804][ T2125] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:07:04 executed programs: 47 [ 424.755600][ T6580] Bluetooth: hci8: command tx timeout [ 424.889838][ T7239] loop8: detected capacity change from 0 to 40427 [ 424.927709][ T7239] F2FS-fs (loop8): build fault injection rate: 771 [ 424.946309][ T7239] F2FS-fs (loop8): invalid crc value [ 424.988151][ T6580] Bluetooth: hci3: command 0x0406 tx timeout [ 425.049540][ T7239] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 425.108517][ T7239] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 426.844635][ T6124] Bluetooth: hci8: command tx timeout [ 428.877629][ T6890] bio_check_eod: 288594 callbacks suppressed [ 428.877685][ T6890] syz.2.36: attempt to access beyond end of device [ 428.877685][ T6890] loop2: rw=0, sector=87592, nr_sectors = 8 limit=40427 [ 428.877774][ T6890] syz.2.36: attempt to access beyond end of device [ 428.877774][ T6890] loop2: rw=0, sector=87600, nr_sectors = 8 limit=40427 [ 428.877804][ T7013] syz.4.47: attempt to access beyond end of device [ 428.877804][ T7013] loop4: rw=0, sector=87472, nr_sectors = 8 limit=40427 [ 428.877833][ T6890] syz.2.36: attempt to access beyond end of device [ 428.877833][ T6890] loop2: rw=0, sector=87608, nr_sectors = 8 limit=40427 [ 428.877872][ T6890] syz.2.36: attempt to access beyond end of device [ 428.877872][ T6890] loop2: rw=0, sector=87616, nr_sectors = 8 limit=40427 [ 428.877909][ T6890] syz.2.36: attempt to access beyond end of device [ 428.877909][ T6890] loop2: rw=0, sector=87624, nr_sectors = 8 limit=40427 [ 428.877945][ T6890] syz.2.36: attempt to access beyond end of device [ 428.877945][ T6890] loop2: rw=0, sector=87632, nr_sectors = 8 limit=40427 [ 428.877974][ T6890] syz.2.36: attempt to access beyond end of device [ 428.877974][ T6890] loop2: rw=0, sector=87640, nr_sectors = 8 limit=40427 [ 428.878001][ T6890] syz.2.36: attempt to access beyond end of device [ 428.878001][ T6890] loop2: rw=0, sector=87648, nr_sectors = 8 limit=40427 [ 428.878029][ T6890] syz.2.36: attempt to access beyond end of device [ 428.878029][ T6890] loop2: rw=0, sector=87656, nr_sectors = 8 limit=40427 [ 433.177781][ T2413] ieee802154 phy0 wpan0: encryption failed: -22 [ 433.177839][ T2413] ieee802154 phy1 wpan1: encryption failed: -22 [ 433.820181][ T7201] F2FS-fs (loop7): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials [ 433.887689][ T7153] bio_check_eod: 297850 callbacks suppressed [ 433.887726][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887726][ T7153] loop6: rw=524288, sector=86872, nr_sectors = 8 limit=40427 [ 433.887777][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887777][ T7153] loop6: rw=524288, sector=86880, nr_sectors = 8 limit=40427 [ 433.887814][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887814][ T7153] loop6: rw=524288, sector=86888, nr_sectors = 8 limit=40427 [ 433.887850][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887850][ T7153] loop6: rw=524288, sector=86896, nr_sectors = 8 limit=40427 [ 433.887883][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887883][ T7153] loop6: rw=524288, sector=86904, nr_sectors = 8 limit=40427 [ 433.887927][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887927][ T7153] loop6: rw=524288, sector=86912, nr_sectors = 8 limit=40427 [ 433.887960][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887960][ T7153] loop6: rw=524288, sector=86920, nr_sectors = 8 limit=40427 [ 433.887993][ T7153] syz.6.59: attempt to access beyond end of device [ 433.887993][ T7153] loop6: rw=524288, sector=86928, nr_sectors = 8 limit=40427 [ 433.888020][ T7153] syz.6.59: attempt to access beyond end of device [ 433.888020][ T7153] loop6: rw=524288, sector=86936, nr_sectors = 8 limit=40427 [ 433.888047][ T7153] syz.6.59: attempt to access beyond end of device [ 433.888047][ T7153] loop6: rw=524288, sector=86944, nr_sectors = 8 limit=40427 [ 438.897701][ T6852] bio_check_eod: 327985 callbacks suppressed [ 438.897746][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897746][ T6852] loop1: rw=0, sector=86016, nr_sectors = 8 limit=40427 [ 438.897793][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897793][ T6852] loop1: rw=0, sector=86024, nr_sectors = 8 limit=40427 [ 438.897837][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897837][ T6852] loop1: rw=0, sector=86032, nr_sectors = 8 limit=40427 [ 438.897873][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897873][ T6852] loop1: rw=0, sector=86040, nr_sectors = 8 limit=40427 [ 438.897906][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897906][ T6852] loop1: rw=0, sector=86048, nr_sectors = 8 limit=40427 [ 438.897937][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897937][ T6852] loop1: rw=0, sector=86056, nr_sectors = 8 limit=40427 [ 438.897965][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897965][ T6852] loop1: rw=0, sector=86064, nr_sectors = 8 limit=40427 [ 438.897992][ T6852] syz.1.33: attempt to access beyond end of device [ 438.897992][ T6852] loop1: rw=0, sector=86072, nr_sectors = 8 limit=40427 [ 438.898018][ T6852] syz.1.33: attempt to access beyond end of device [ 438.898018][ T6852] loop1: rw=0, sector=86080, nr_sectors = 8 limit=40427 [ 438.898044][ T6852] syz.1.33: attempt to access beyond end of device [ 438.898044][ T6852] loop1: rw=0, sector=86088, nr_sectors = 8 limit=40427 [ 442.749108][ T32] INFO: task kworker/u8:1:15 blocked for more than 143 seconds. [ 442.749138][ T32] Not tainted syzkaller #0 [ 442.749156][ T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 442.749164][ T32] task:kworker/u8:1 state:D stack:0 pid:15 tgid:15 ppid:2 task_flags:0x4208060 flags:0x00000010 [ 442.749185][ T32] Workqueue: writeback wb_workfn (flush-7:0) [ 442.749219][ T32] Call trace: [ 442.749225][ T32] __switch_to+0x418/0x87c (T) [ 442.749242][ T32] __schedule+0x13b0/0x2864 [ 442.749252][ T32] schedule+0xb4/0x230 [ 442.749262][ T32] schedule_preempt_disabled+0x18/0x2c [ 442.749273][ T32] rwsem_down_write_slowpath+0x6b4/0x10f4 [ 442.749283][ T32] down_write+0xb4/0xc0 [ 442.749294][ T32] f2fs_balance_fs+0x4b8/0x6ec [ 442.749304][ T32] f2fs_write_inode+0x3a8/0x684 [ 442.749314][ T32] __writeback_single_inode+0x5ac/0x13e8 [ 442.749325][ T32] writeback_sb_inodes+0x55c/0xe40 [ 442.749335][ T32] __writeback_inodes_wb+0xec/0x228 [ 442.749345][ T32] wb_writeback+0x3e0/0xd70 [ 442.749355][ T32] wb_workfn+0xa08/0xdc0 [ 442.749365][ T32] process_one_work+0x7e8/0x155c [ 442.749375][ T32] worker_thread+0x958/0xed8 [ 442.749384][ T32] kthread+0x5fc/0x75c [ 442.749395][ T32] ret_from_fork+0x10/0x20 [ 442.749482][ T32] [ 442.749482][ T32] Showing all locks held in the system: [ 442.749490][ T32] 4 locks held by kworker/u8:0/12: [ 442.749498][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.749534][ T32] #1: ffff800097c77be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.749569][ T32] #2: ffff0000cc5ac0e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.749608][ T32] #3: ffff0000fb939410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.749642][ T32] 4 locks held by kworker/u8:1/15: [ 442.749649][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.749682][ T32] #1: ffff800097ca7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.749719][ T32] #2: ffff0000d42180e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.749757][ T32] #3: ffff0000c71dd410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.749791][ T32] 1 lock held by khungtaskd/32: [ 442.749797][ T32] #0: ffff80008f9d9620 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x48 [ 442.749832][ T32] 4 locks held by kworker/u8:3/42: [ 442.749839][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.749875][ T32] #1: ffff8000992e7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.749908][ T32] #2: ffff0000dce880e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.749945][ T32] #3: ffff0000d5441410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.749980][ T32] 4 locks held by kworker/u8:4/211: [ 442.749987][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.750020][ T32] #1: ffff800099ec7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.750053][ T32] #2: ffff0000c4b1e0e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.750090][ T32] #3: ffff0000cd785410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.750123][ T32] 4 locks held by kworker/u8:5/532: [ 442.750130][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.750163][ T32] #1: ffff80009ca97be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.750198][ T32] #2: ffff0000c45320e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.750236][ T32] #3: ffff0000d6359410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.750270][ T32] 4 locks held by kworker/u8:7/2125: [ 442.750276][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.750310][ T32] #1: ffff8000a1be7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.750343][ T32] #2: ffff0000d606e0e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.750380][ T32] #3: ffff0000d6139410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.750417][ T32] 2 locks held by getty/6315: [ 442.750423][ T32] #0: ffff0000d31cc0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 442.750459][ T32] #1: ffff800099e8e2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x34c/0xfa4 [ 442.750496][ T32] 5 locks held by syz.0.30/6809: [ 442.750504][ T32] 5 locks held by syz.1.33/6852: [ 442.750511][ T32] 6 locks held by syz.2.36/6890: [ 442.750518][ T32] 4 locks held by syz.3.44/6961: [ 442.750525][ T32] 4 locks held by syz.4.47/7013: [ 442.750532][ T32] 4 locks held by kworker/u8:2/7035: [ 442.750538][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.750572][ T32] #1: ffff80009ebb7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.750605][ T32] #2: ffff0000dc2800e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.750642][ T32] #3: ffff0000c7681410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.750676][ T32] 5 locks held by syz.5.51/7071: [ 442.750683][ T32] 2 locks held by kworker/u8:6/7092: [ 442.750690][ T32] 4 locks held by kworker/u8:10/7109: [ 442.750696][ T32] #0: ffff0000c1f7a948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x63c/0x155c [ 442.750729][ T32] #1: ffff80009e9b7be0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6d4/0x155c [ 442.750763][ T32] #2: ffff0000c8e500e0 (&type->s_umount_key#54){++++}-{4:4}, at: super_trylock_shared+0x24/0xdc [ 442.750800][ T32] #3: ffff0000de12d410 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x4b8/0x6ec [ 442.750833][ T32] 4 locks held by syz.6.59/7153: [ 442.750841][ T32] 4 locks held by syz.7.61/7201: [ 442.750849][ T32] 4 locks held by syz.8.62/7239: [ 442.750856][ T32] 3 locks held by syz-executor/7245: [ 442.750862][ T32] [ 442.750868][ T32] ============================================= [ 442.750868][ T32] [ 442.750875][ T32] Kernel panic - not syncing: hung_task: blocked tasks [ 442.841387][ T32] CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 442.842725][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 442.844257][ T32] Call trace: [ 442.844738][ T32] show_stack+0x2c/0x3c (C) [ 442.845380][ T32] __dump_stack+0x30/0x40 [ 442.846041][ T32] dump_stack_lvl+0x30/0x12c [ 442.846705][ T32] dump_stack+0x1c/0x28 [ 442.847308][ T32] vpanic+0x280/0x780 [ 442.847930][ T32] vpanic+0x0/0x780 [ 442.848512][ T32] hung_task_panic+0x0/0x2c [ 442.849165][ T32] kthread+0x5fc/0x75c [ 442.849753][ T32] ret_from_fork+0x10/0x20 [ 442.850360][ T32] SMP: stopping secondary CPUs [ 442.851031][ T32] Kernel Offset: disabled [ 442.851631][ T32] CPU features: 0x080000,0000f000,21381141,5427fea7 [ 442.852596][ T32] Memory Limit: none [ 443.298526][ T32] Rebooting in 86400 seconds..