Warning: Permanently added '10.128.1.38' (ED25519) to the list of known hosts. 1970/01/01 00:01:16 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:17 parsed 1 programs [ 80.717566][ T6533] cgroup: Unknown subsys name 'net' [ 80.840061][ T6533] cgroup: Unknown subsys name 'cpuset' [ 80.843808][ T6533] cgroup: Unknown subsys name 'rlimit' [ 81.038309][ T6533] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 96.247341][ T6555] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.501519][ T6579] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 96.526032][ T6579] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 96.531257][ T6579] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 96.535217][ T6579] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 96.538868][ T6579] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 96.823884][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.823972][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.893802][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.893859][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.005051][ T6608] chnl_net:caif_netlink_parms(): no params data found [ 98.063723][ T6608] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.063866][ T6608] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.063981][ T6608] bridge_slave_0: entered allmulticast mode [ 98.064897][ T6608] bridge_slave_0: entered promiscuous mode [ 98.067037][ T6608] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.067113][ T6608] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.067233][ T6608] bridge_slave_1: entered allmulticast mode [ 98.068019][ T6608] bridge_slave_1: entered promiscuous mode [ 98.092259][ T6608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.093996][ T6608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.108307][ T6608] team0: Port device team_slave_0 added [ 98.111289][ T6608] team0: Port device team_slave_1 added [ 98.302643][ T6608] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.302699][ T6608] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.302732][ T6608] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.304102][ T6608] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.304131][ T6608] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.304179][ T6608] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.365935][ T6608] hsr_slave_0: entered promiscuous mode [ 98.366606][ T6608] hsr_slave_1: entered promiscuous mode [ 98.692547][ T6608] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 98.698408][ T6608] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 98.702116][ T6608] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 98.713218][ T6608] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 98.974458][ T6608] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.985782][ T6608] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.997751][ T14] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.997884][ T14] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.005977][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.006062][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.108158][ T6608] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.129251][ T6608] veth0_vlan: entered promiscuous mode [ 99.132523][ T6608] veth1_vlan: entered promiscuous mode [ 99.148000][ T6608] veth0_macvtap: entered promiscuous mode [ 99.150013][ T6608] veth1_macvtap: entered promiscuous mode [ 99.161438][ T6608] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.164771][ T6608] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.166375][ T6608] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.166430][ T6608] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.166460][ T6608] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.166491][ T6608] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:38 executed programs: 0 [ 99.348711][ T6645] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 99.349264][ T6645] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 99.353946][ T6647] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 99.356436][ T6647] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 99.356569][ T6647] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 99.361896][ T6647] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 99.364532][ T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 99.368202][ T6647] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 99.373761][ T6647] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 99.379102][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 99.414087][ T6084] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 99.434029][ T6645] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 99.434541][ T6654] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 99.435086][ T6654] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 99.435697][ T6654] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 99.435855][ T6654] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 99.436775][ T6654] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 99.448923][ T6645] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 99.450406][ T6647] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 99.451120][ T6647] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 99.451780][ T6645] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 99.463405][ T6084] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 99.463582][ T6084] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 99.464075][ T6084] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 99.470369][ T6084] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 99.620359][ T2056] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.698579][ T2056] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.780074][ T2056] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.934317][ T6642] chnl_net:caif_netlink_parms(): no params data found [ 99.962465][ T6643] chnl_net:caif_netlink_parms(): no params data found [ 100.093571][ T6655] chnl_net:caif_netlink_parms(): no params data found [ 100.149636][ T6642] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.149755][ T6642] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.149877][ T6642] bridge_slave_0: entered allmulticast mode [ 100.150736][ T6642] bridge_slave_0: entered promiscuous mode [ 100.152166][ T6642] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.152225][ T6642] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.152361][ T6642] bridge_slave_1: entered allmulticast mode [ 100.153286][ T6642] bridge_slave_1: entered promiscuous mode [ 100.189316][ T6649] chnl_net:caif_netlink_parms(): no params data found [ 100.207511][ T6642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.209486][ T6642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.216517][ T6643] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.217311][ T6643] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.217435][ T6643] bridge_slave_0: entered allmulticast mode [ 100.218303][ T6643] bridge_slave_0: entered promiscuous mode [ 100.220094][ T6643] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.220141][ T6643] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.220266][ T6643] bridge_slave_1: entered allmulticast mode [ 100.221094][ T6643] bridge_slave_1: entered promiscuous mode [ 100.232491][ T6651] chnl_net:caif_netlink_parms(): no params data found [ 100.302726][ T6642] team0: Port device team_slave_0 added [ 100.305674][ T6643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.327075][ T6642] team0: Port device team_slave_1 added [ 100.341064][ T6643] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.351607][ T6655] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.353730][ T6655] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.355860][ T6655] bridge_slave_0: entered allmulticast mode [ 100.359065][ T6655] bridge_slave_0: entered promiscuous mode [ 100.392980][ T6655] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.393084][ T6655] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.393207][ T6655] bridge_slave_1: entered allmulticast mode [ 100.394071][ T6655] bridge_slave_1: entered promiscuous mode [ 100.405610][ T6642] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.405663][ T6642] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.405988][ T6642] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.445908][ T6642] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.445969][ T6642] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.446324][ T6642] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.465375][ T6655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.466639][ T6651] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.466716][ T6651] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.472143][ T6651] bridge_slave_0: entered allmulticast mode [ 100.473831][ T6651] bridge_slave_0: entered promiscuous mode [ 100.475482][ T6651] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.475966][ T6651] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.476085][ T6651] bridge_slave_1: entered allmulticast mode [ 100.477613][ T6651] bridge_slave_1: entered promiscuous mode [ 100.480019][ T6643] team0: Port device team_slave_0 added [ 100.480337][ T6649] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.480395][ T6649] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.480500][ T6649] bridge_slave_0: entered allmulticast mode [ 100.481907][ T6649] bridge_slave_0: entered promiscuous mode [ 100.493803][ T6655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.502376][ T6643] team0: Port device team_slave_1 added [ 100.502950][ T6649] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.503021][ T6649] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.503133][ T6649] bridge_slave_1: entered allmulticast mode [ 100.504019][ T6649] bridge_slave_1: entered promiscuous mode [ 100.576242][ T6655] team0: Port device team_slave_0 added [ 100.580386][ T6651] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.591422][ T6643] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.591487][ T6643] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.591532][ T6643] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.592636][ T6643] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.592661][ T6643] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.592694][ T6643] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.599790][ T6649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.601710][ T6649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.637710][ T6642] hsr_slave_0: entered promiscuous mode [ 100.639285][ T6642] hsr_slave_1: entered promiscuous mode [ 100.639911][ T6642] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.640012][ T6642] Cannot create hsr debugfs directory [ 100.641034][ T6655] team0: Port device team_slave_1 added [ 100.654681][ T6651] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.676335][ T6649] team0: Port device team_slave_0 added [ 100.685194][ T6655] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.685452][ T6655] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.685496][ T6655] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.719911][ T6649] team0: Port device team_slave_1 added [ 100.729547][ T6655] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.731605][ T6655] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.731674][ T6655] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.736581][ T6651] team0: Port device team_slave_0 added [ 100.759712][ T6643] hsr_slave_0: entered promiscuous mode [ 100.761844][ T6643] hsr_slave_1: entered promiscuous mode [ 100.763840][ T6643] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.766045][ T6643] Cannot create hsr debugfs directory [ 100.784930][ T6651] team0: Port device team_slave_1 added [ 100.803089][ T6655] hsr_slave_0: entered promiscuous mode [ 100.803749][ T6655] hsr_slave_1: entered promiscuous mode [ 100.804449][ T6655] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.804481][ T6655] Cannot create hsr debugfs directory [ 100.825142][ T6649] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.827366][ T6649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.827416][ T6649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.828597][ T6649] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.828623][ T6649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.828658][ T6649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.885215][ T6649] hsr_slave_0: entered promiscuous mode [ 100.887745][ T6649] hsr_slave_1: entered promiscuous mode [ 100.888557][ T6649] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.888588][ T6649] Cannot create hsr debugfs directory [ 100.889015][ T6651] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.889039][ T6651] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.889081][ T6651] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.890345][ T6651] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.890371][ T6651] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.890408][ T6651] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 101.040872][ T6651] hsr_slave_0: entered promiscuous mode [ 101.043157][ T6651] hsr_slave_1: entered promiscuous mode [ 101.045231][ T6651] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 101.047628][ T6651] Cannot create hsr debugfs directory [ 101.231691][ T6642] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 101.249093][ T6642] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 101.260855][ T6642] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 101.268709][ T6642] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 101.319957][ T6642] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.331049][ T6642] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.334314][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.334398][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.354288][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.354391][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.398016][ T6084] Bluetooth: hci1: command tx timeout [ 101.441771][ T2056] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.477830][ T6084] Bluetooth: hci4: command tx timeout [ 101.477878][ T6579] Bluetooth: hci2: command tx timeout [ 101.477898][ T52] Bluetooth: hci0: command tx timeout [ 101.485497][ T6642] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.509920][ T6642] veth0_vlan: entered promiscuous mode [ 101.513415][ T6642] veth1_vlan: entered promiscuous mode [ 101.531311][ T6642] veth0_macvtap: entered promiscuous mode [ 101.533183][ T6642] veth1_macvtap: entered promiscuous mode [ 101.541095][ T6642] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.544339][ T6642] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.545858][ T6642] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.545898][ T6642] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.545929][ T6642] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.545958][ T6642] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.558070][ T6084] Bluetooth: hci3: command tx timeout [ 101.593487][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.593545][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.611165][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.611221][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.843057][ T6703] loop0: detected capacity change from 0 to 40427 [ 101.849087][ T6703] F2FS-fs (loop0): build fault injection rate: 771 [ 101.852711][ T6703] F2FS-fs (loop0): invalid crc value [ 101.875246][ T6703] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 102.084407][ T6642] F2FS-fs (loop0): access invalid blkaddr:2816 [ 102.084500][ T6642] CPU: 1 UID: 0 PID: 6642 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 102.084515][ T6642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.084522][ T6642] Call trace: [ 102.084526][ T6642] show_stack+0x2c/0x3c (C) [ 102.084546][ T6642] __dump_stack+0x30/0x40 [ 102.084561][ T6642] dump_stack_lvl+0xd8/0x12c [ 102.084574][ T6642] dump_stack+0x1c/0x28 [ 102.084587][ T6642] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 102.084602][ T6642] f2fs_is_valid_blkaddr+0x12c/0x294 [ 102.084616][ T6642] f2fs_map_blocks+0x8b4/0x32e0 [ 102.084627][ T6642] f2fs_mpage_readpages+0x960/0x14f8 [ 102.084640][ T6642] f2fs_readahead+0x184/0x388 [ 102.084651][ T6642] read_pages+0x13c/0x4c4 [ 102.084663][ T6642] page_cache_ra_unbounded+0x628/0x71c [ 102.084674][ T6642] page_cache_ra_order+0x938/0xb34 [ 102.084684][ T6642] page_cache_sync_ra+0x570/0x714 [ 102.084695][ T6642] f2fs_readdir+0x364/0x970 [ 102.084707][ T6642] iterate_dir+0x458/0x5e0 [ 102.084720][ T6642] __arm64_sys_getdents64+0x110/0x2fc [ 102.084733][ T6642] invoke_syscall+0x98/0x2b8 [ 102.084747][ T6642] el0_svc_common+0x130/0x23c [ 102.084760][ T6642] do_el0_svc+0x48/0x58 [ 102.084773][ T6642] el0_svc+0x58/0x17c [ 102.084787][ T6642] el0t_64_sync_handler+0x78/0x108 [ 102.084799][ T6642] el0t_64_sync+0x198/0x19c [ 102.090171][ T6642] F2FS-fs (loop0): access invalid blkaddr:2816 [ 102.090206][ T6642] CPU: 1 UID: 0 PID: 6642 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 102.090220][ T6642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.090227][ T6642] Call trace: [ 102.090232][ T6642] show_stack+0x2c/0x3c (C) [ 102.090251][ T6642] __dump_stack+0x30/0x40 [ 102.090265][ T6642] dump_stack_lvl+0xd8/0x12c [ 102.090279][ T6642] dump_stack+0x1c/0x28 [ 102.090291][ T6642] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 102.090306][ T6642] f2fs_is_valid_blkaddr+0x12c/0x294 [ 102.090320][ T6642] f2fs_map_blocks+0x8b4/0x32e0 [ 102.090331][ T6642] f2fs_mpage_readpages+0x960/0x14f8 [ 102.090344][ T6642] f2fs_readahead+0x184/0x388 [ 102.090355][ T6642] read_pages+0x13c/0x4c4 [ 102.090366][ T6642] page_cache_ra_unbounded+0x628/0x71c [ 102.090377][ T6642] page_cache_ra_order+0x938/0xb34 [ 102.090388][ T6642] page_cache_sync_ra+0x570/0x714 [ 102.090398][ T6642] f2fs_readdir+0x364/0x970 [ 102.090411][ T6642] iterate_dir+0x458/0x5e0 [ 102.090424][ T6642] __arm64_sys_getdents64+0x110/0x2fc [ 102.090437][ T6642] invoke_syscall+0x98/0x2b8 [ 102.090451][ T6642] el0_svc_common+0x130/0x23c [ 102.090465][ T6642] do_el0_svc+0x48/0x58 [ 102.090478][ T6642] el0_svc+0x58/0x17c [ 102.090491][ T6642] el0t_64_sync_handler+0x78/0x108 [ 102.090503][ T6642] el0t_64_sync+0x198/0x19c [ 102.090763][ T6642] syz-executor: attempt to access beyond end of device [ 102.090763][ T6642] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 103.187465][ T2056] bridge_slave_1: left allmulticast mode [ 103.187558][ T2056] bridge_slave_1: left promiscuous mode [ 103.188033][ T2056] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.193461][ T2056] bridge_slave_0: left allmulticast mode [ 103.193497][ T2056] bridge_slave_0: left promiscuous mode [ 103.193634][ T2056] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.477455][ T6084] Bluetooth: hci1: command tx timeout [ 103.557073][ T6084] Bluetooth: hci2: command tx timeout [ 103.557109][ T52] Bluetooth: hci4: command tx timeout [ 103.647798][ T52] Bluetooth: hci3: command tx timeout [ 104.612620][ T2056] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 104.649521][ T2056] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 104.698503][ T2056] bond0 (unregistering): Released all slaves [ 104.803517][ T2056] hsr_slave_0: left promiscuous mode [ 104.805676][ T2056] hsr_slave_1: left promiscuous mode [ 104.814950][ T2056] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 104.817838][ T2056] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 104.822647][ T2056] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 104.825012][ T2056] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 104.844219][ T2056] veth1_macvtap: left promiscuous mode [ 104.846267][ T2056] veth0_macvtap: left promiscuous mode [ 104.848937][ T2056] veth1_vlan: left promiscuous mode [ 104.850681][ T2056] veth0_vlan: left promiscuous mode [ 105.566961][ T52] Bluetooth: hci1: command tx timeout [ 105.636963][ T6084] Bluetooth: hci4: command tx timeout [ 105.637129][ T52] Bluetooth: hci2: command tx timeout [ 105.717034][ T52] Bluetooth: hci3: command tx timeout [ 106.729137][ T2056] team0 (unregistering): Port device team_slave_1 removed [ 106.902500][ T2056] team0 (unregistering): Port device team_slave_0 removed [ 107.646930][ T52] Bluetooth: hci1: command tx timeout [ 107.726984][ T6084] Bluetooth: hci4: command tx timeout [ 107.728739][ T52] Bluetooth: hci2: command tx timeout [ 107.796944][ T52] Bluetooth: hci3: command tx timeout [ 109.451710][ T6642] syz-executor: attempt to access beyond end of device [ 109.451710][ T6642] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 109.456696][ T6642] CPU: 1 UID: 0 PID: 6642 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 109.456723][ T6642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.456730][ T6642] Call trace: [ 109.456735][ T6642] show_stack+0x2c/0x3c (C) [ 109.456755][ T6642] __dump_stack+0x30/0x40 [ 109.456770][ T6642] dump_stack_lvl+0xd8/0x12c [ 109.456783][ T6642] dump_stack+0x1c/0x28 [ 109.456801][ T6642] f2fs_handle_critical_error+0x34c/0x4b8 [ 109.456814][ T6642] f2fs_stop_checkpoint+0x5c/0x70 [ 109.456828][ T6642] f2fs_write_end_io+0x58c/0x818 [ 109.456840][ T6642] bio_endio+0x804/0x840 [ 109.456852][ T6642] submit_bio_noacct+0x158/0x176c [ 109.456865][ T6642] submit_bio+0x354/0x4d4 [ 109.456878][ T6642] f2fs_submit_write_bio+0x13c/0x324 [ 109.456889][ T6642] __submit_merged_bio+0x254/0x704 [ 109.456901][ T6642] __submit_merged_write_cond+0x23c/0x4ac [ 109.456912][ T6642] f2fs_write_data_pages+0x1d28/0x2634 [ 109.456924][ T6642] do_writepages+0x270/0x468 [ 109.456938][ T6642] filemap_fdatawrite+0x144/0x1e8 [ 109.456953][ T6642] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 109.456967][ T6642] f2fs_write_checkpoint+0x684/0x1694 [ 109.456981][ T6642] kill_f2fs_super+0x21c/0x584 [ 109.456993][ T6642] deactivate_locked_super+0xc4/0x12c [ 109.457004][ T6642] deactivate_super+0xe0/0x100 [ 109.457015][ T6642] cleanup_mnt+0x31c/0x3ac [ 109.457027][ T6642] __cleanup_mnt+0x20/0x30 [ 109.457038][ T6642] task_work_run+0x1dc/0x260 [ 109.457050][ T6642] do_exit+0x51c/0x19fc [ 109.457062][ T6642] do_group_exit+0x194/0x22c [ 109.457073][ T6642] pid_child_should_wake+0x0/0x1dc [ 109.457086][ T6642] invoke_syscall+0x98/0x2b8 [ 109.457100][ T6642] el0_svc_common+0x130/0x23c [ 109.457113][ T6642] do_el0_svc+0x48/0x58 [ 109.457126][ T6642] el0_svc+0x58/0x17c [ 109.457139][ T6642] el0t_64_sync_handler+0x78/0x108 [ 109.457162][ T6642] el0t_64_sync+0x198/0x19c [ 109.461372][ T6643] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 109.506933][ T6642] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 109.532314][ T6643] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 109.570788][ T6643] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 109.582194][ T6643] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 109.722508][ T6084] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 109.723417][ T6084] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 109.723815][ T6084] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 109.724703][ T6084] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 109.725333][ T6084] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:01:49 executed programs: 12 [ 109.871893][ T6649] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 109.940705][ T2056] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.944639][ T6649] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 109.957591][ T6649] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 109.973969][ T6649] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 110.028706][ T2056] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.067985][ T6651] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 110.073807][ T6651] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 110.110105][ T6651] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 110.117681][ T6651] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 110.200737][ T2056] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.249996][ T6655] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 110.255432][ T6655] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 110.288730][ T6655] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 110.292540][ T6655] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 110.330343][ T2056] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.365929][ T6649] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.397578][ T6643] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.419942][ T6776] chnl_net:caif_netlink_parms(): no params data found [ 110.443475][ T6649] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.449246][ T6643] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.509767][ T6776] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.509875][ T6776] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.510000][ T6776] bridge_slave_0: entered allmulticast mode [ 110.510902][ T6776] bridge_slave_0: entered promiscuous mode [ 110.512305][ T6776] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.512350][ T6776] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.512464][ T6776] bridge_slave_1: entered allmulticast mode [ 110.513395][ T6776] bridge_slave_1: entered promiscuous mode [ 110.529632][ T482] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.529719][ T482] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.531236][ T482] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.531306][ T482] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.532363][ T482] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.532431][ T482] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.534269][ T482] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.534348][ T482] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.563637][ T6651] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.612817][ T6776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 110.614593][ T6776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 110.676138][ T6649] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 110.681403][ T6649] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 110.685985][ T6651] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.700772][ T6776] team0: Port device team_slave_0 added [ 110.706466][ T6776] team0: Port device team_slave_1 added [ 110.725807][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.725886][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.765787][ T2056] bridge_slave_1: left allmulticast mode [ 110.765855][ T2056] bridge_slave_1: left promiscuous mode [ 110.765966][ T2056] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.778631][ T2056] bridge_slave_0: left allmulticast mode [ 110.778697][ T2056] bridge_slave_0: left promiscuous mode [ 110.778804][ T2056] bridge0: port 1(bridge_slave_0) entered disabled state [ 111.796995][ T6084] Bluetooth: hci0: command tx timeout [ 112.341744][ T2056] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 112.379271][ T2056] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 112.428562][ T2056] bond0 (unregistering): Released all slaves [ 112.535885][ T6776] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 112.535952][ T6776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 112.536002][ T6776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 112.555950][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.556050][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 112.606471][ T6776] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 112.606529][ T6776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 112.606587][ T6776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 112.628938][ T6655] 8021q: adding VLAN 0 to HW filter on device bond0 [ 112.657083][ T6776] hsr_slave_0: entered promiscuous mode [ 112.659285][ T6776] hsr_slave_1: entered promiscuous mode [ 112.693102][ T6655] 8021q: adding VLAN 0 to HW filter on device team0 [ 112.898399][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 112.898480][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 112.899782][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.899844][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 112.909732][ T6649] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 113.030009][ T6649] veth0_vlan: entered promiscuous mode [ 113.034902][ T6649] veth1_vlan: entered promiscuous mode [ 113.312230][ T2056] hsr_slave_0: left promiscuous mode [ 113.314305][ T2056] hsr_slave_1: left promiscuous mode [ 113.316483][ T2056] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 113.321534][ T2056] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 113.324340][ T2056] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 113.324408][ T2056] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 113.343089][ T2056] veth1_macvtap: left promiscuous mode [ 113.343211][ T2056] veth0_macvtap: left promiscuous mode [ 113.343308][ T2056] veth1_vlan: left promiscuous mode [ 113.343381][ T2056] veth0_vlan: left promiscuous mode [ 113.877024][ T6084] Bluetooth: hci0: command tx timeout [ 115.260211][ T2056] team0 (unregistering): Port device team_slave_1 removed [ 115.419458][ T2056] team0 (unregistering): Port device team_slave_0 removed [ 115.956983][ T6084] Bluetooth: hci0: command tx timeout [ 117.675908][ T6643] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.685944][ T6655] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.758983][ T6651] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.791828][ T6649] veth0_macvtap: entered promiscuous mode [ 117.808877][ T6776] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 117.814115][ T6649] veth1_macvtap: entered promiscuous mode [ 117.844645][ T6776] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 117.848503][ T6776] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 117.856135][ T6649] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 117.890240][ T6776] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 117.931068][ T6649] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 117.942187][ T6649] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.942270][ T6649] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.942302][ T6649] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.942334][ T6649] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.034390][ T6651] veth0_vlan: entered promiscuous mode [ 118.037388][ T6084] Bluetooth: hci0: command tx timeout [ 118.142859][ T6651] veth1_vlan: entered promiscuous mode [ 118.240427][ T6643] veth0_vlan: entered promiscuous mode [ 118.271927][ T6651] veth0_macvtap: entered promiscuous mode [ 118.308196][ T6651] veth1_macvtap: entered promiscuous mode [ 118.315110][ T6643] veth1_vlan: entered promiscuous mode [ 118.336004][ T6655] veth0_vlan: entered promiscuous mode [ 118.365730][ T6776] 8021q: adding VLAN 0 to HW filter on device bond0 [ 118.372108][ T482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.372180][ T482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.378830][ T6655] veth1_vlan: entered promiscuous mode [ 118.390242][ T6776] 8021q: adding VLAN 0 to HW filter on device team0 [ 118.409438][ T6643] veth0_macvtap: entered promiscuous mode [ 118.413161][ T482] bridge0: port 1(bridge_slave_0) entered blocking state [ 118.413260][ T482] bridge0: port 1(bridge_slave_0) entered forwarding state [ 118.415420][ T482] bridge0: port 2(bridge_slave_1) entered blocking state [ 118.415470][ T482] bridge0: port 2(bridge_slave_1) entered forwarding state [ 118.457183][ T6643] veth1_macvtap: entered promiscuous mode [ 118.472077][ T6651] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 118.476078][ T6651] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 118.481370][ T6651] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.483894][ T6651] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.486380][ T6651] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.490973][ T6651] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.512907][ T6655] veth0_macvtap: entered promiscuous mode [ 118.513447][ T5229] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.513478][ T5229] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.537175][ T6655] veth1_macvtap: entered promiscuous mode [ 118.569136][ T6655] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 118.583415][ T6655] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 118.584952][ T6655] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.584993][ T6655] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.585024][ T6655] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.585054][ T6655] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.626589][ T6776] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network 1970/01/01 00:01:58 executed programs: 13 [ 118.691868][ T6643] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 118.693881][ T6643] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 118.695476][ T6643] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.695517][ T6643] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.695548][ T6643] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.695578][ T6643] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.788473][ T500] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.788549][ T500] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.908481][ T500] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.908555][ T500] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.976629][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.976688][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.040298][ T6920] loop3: detected capacity change from 0 to 40427 [ 119.048938][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.048995][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.053310][ T6920] F2FS-fs (loop3): build fault injection rate: 771 [ 119.078417][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.078470][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.086045][ T6920] F2FS-fs (loop3): invalid crc value [ 119.130870][ T6776] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 119.133895][ T6920] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 119.202101][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.202166][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.649854][ T6649] F2FS-fs (loop3): access invalid blkaddr:2816 [ 119.649926][ T6649] CPU: 1 UID: 0 PID: 6649 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 119.649942][ T6649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 119.649949][ T6649] Call trace: [ 119.649954][ T6649] show_stack+0x2c/0x3c (C) [ 119.649974][ T6649] __dump_stack+0x30/0x40 [ 119.649990][ T6649] dump_stack_lvl+0xd8/0x12c [ 119.650003][ T6649] dump_stack+0x1c/0x28 [ 119.650016][ T6649] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 119.650031][ T6649] f2fs_is_valid_blkaddr+0x12c/0x294 [ 119.650044][ T6649] f2fs_map_blocks+0x8b4/0x32e0 [ 119.650056][ T6649] f2fs_mpage_readpages+0x960/0x14f8 [ 119.650068][ T6649] f2fs_readahead+0x184/0x388 [ 119.650079][ T6649] read_pages+0x13c/0x4c4 [ 119.650091][ T6649] page_cache_ra_unbounded+0x628/0x71c [ 119.650102][ T6649] page_cache_ra_order+0x938/0xb34 [ 119.650112][ T6649] page_cache_sync_ra+0x570/0x714 [ 119.650123][ T6649] f2fs_readdir+0x364/0x970 [ 119.650135][ T6649] iterate_dir+0x458/0x5e0 [ 119.650155][ T6649] __arm64_sys_getdents64+0x110/0x2fc [ 119.650169][ T6649] invoke_syscall+0x98/0x2b8 [ 119.650188][ T6649] el0_svc_common+0x130/0x23c [ 119.650202][ T6649] do_el0_svc+0x48/0x58 [ 119.650215][ T6649] el0_svc+0x58/0x17c [ 119.650228][ T6649] el0t_64_sync_handler+0x78/0x108 [ 119.650240][ T6649] el0t_64_sync+0x198/0x19c [ 119.710629][ T6776] veth0_vlan: entered promiscuous mode [ 119.714485][ T6649] F2FS-fs (loop3): access invalid blkaddr:2816 [ 119.714555][ T6649] CPU: 1 UID: 0 PID: 6649 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 119.714572][ T6649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 119.714579][ T6649] Call trace: [ 119.714584][ T6649] show_stack+0x2c/0x3c (C) [ 119.714604][ T6649] __dump_stack+0x30/0x40 [ 119.714619][ T6649] dump_stack_lvl+0xd8/0x12c [ 119.714632][ T6649] dump_stack+0x1c/0x28 [ 119.714645][ T6649] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 119.714660][ T6649] f2fs_is_valid_blkaddr+0x12c/0x294 [ 119.714673][ T6649] f2fs_map_blocks+0x8b4/0x32e0 [ 119.714685][ T6649] f2fs_mpage_readpages+0x960/0x14f8 [ 119.714697][ T6649] f2fs_readahead+0x184/0x388 [ 119.714709][ T6649] read_pages+0x13c/0x4c4 [ 119.714720][ T6649] page_cache_ra_unbounded+0x628/0x71c [ 119.714731][ T6649] page_cache_ra_order+0x938/0xb34 [ 119.714742][ T6649] page_cache_sync_ra+0x570/0x714 [ 119.714753][ T6649] f2fs_readdir+0x364/0x970 [ 119.714765][ T6649] iterate_dir+0x458/0x5e0 [ 119.714778][ T6649] __arm64_sys_getdents64+0x110/0x2fc [ 119.714791][ T6649] invoke_syscall+0x98/0x2b8 [ 119.714805][ T6649] el0_svc_common+0x130/0x23c [ 119.714818][ T6649] do_el0_svc+0x48/0x58 [ 119.714831][ T6649] el0_svc+0x58/0x17c [ 119.714844][ T6649] el0t_64_sync_handler+0x78/0x108 [ 119.714856][ T6649] el0t_64_sync+0x198/0x19c [ 119.715099][ T6649] syz-executor: attempt to access beyond end of device [ 119.715099][ T6649] loop3: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 119.757928][ T6776] veth1_vlan: entered promiscuous mode [ 119.832720][ T6776] veth0_macvtap: entered promiscuous mode [ 119.841542][ T6934] loop4: detected capacity change from 0 to 40427 [ 119.862313][ T6934] F2FS-fs (loop4): build fault injection rate: 771 [ 119.863472][ T6776] veth1_macvtap: entered promiscuous mode [ 119.922575][ T6934] F2FS-fs (loop4): invalid crc value [ 119.926512][ T6776] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 119.940012][ T6776] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 120.005478][ T6928] loop2: detected capacity change from 0 to 40427 [ 120.012116][ T6928] F2FS-fs (loop2): build fault injection rate: 771 [ 120.013411][ T6928] F2FS-fs (loop2): invalid crc value [ 120.026949][ T6939] loop1: detected capacity change from 0 to 40427 [ 120.030856][ T6939] F2FS-fs (loop1): build fault injection rate: 771 [ 120.031307][ T6934] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 120.045963][ T6939] F2FS-fs (loop1): invalid crc value [ 120.084694][ T6928] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 120.132547][ T6776] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.132623][ T6776] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.132655][ T6776] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.132685][ T6776] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.193319][ T6939] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 120.298392][ T6649] syz-executor: attempt to access beyond end of device [ 120.298392][ T6649] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 120.298484][ T6649] CPU: 0 UID: 0 PID: 6649 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 120.298501][ T6649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 120.298509][ T6649] Call trace: [ 120.298513][ T6649] show_stack+0x2c/0x3c (C) [ 120.298534][ T6649] __dump_stack+0x30/0x40 [ 120.298548][ T6649] dump_stack_lvl+0xd8/0x12c [ 120.298561][ T6649] dump_stack+0x1c/0x28 [ 120.298574][ T6649] f2fs_handle_critical_error+0x34c/0x4b8 [ 120.298587][ T6649] f2fs_stop_checkpoint+0x5c/0x70 [ 120.298600][ T6649] f2fs_write_end_io+0x58c/0x818 [ 120.298613][ T6649] bio_endio+0x804/0x840 [ 120.298624][ T6649] submit_bio_noacct+0x158/0x176c [ 120.298638][ T6649] submit_bio+0x354/0x4d4 [ 120.298651][ T6649] f2fs_submit_write_bio+0x13c/0x324 [ 120.298662][ T6649] __submit_merged_bio+0x254/0x704 [ 120.298673][ T6649] __submit_merged_write_cond+0x23c/0x4ac [ 120.298684][ T6649] f2fs_write_data_pages+0x1d28/0x2634 [ 120.298696][ T6649] do_writepages+0x270/0x468 [ 120.298711][ T6649] filemap_fdatawrite+0x144/0x1e8 [ 120.298726][ T6649] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 120.298739][ T6649] f2fs_write_checkpoint+0x684/0x1694 [ 120.298753][ T6649] kill_f2fs_super+0x21c/0x584 [ 120.298765][ T6649] deactivate_locked_super+0xc4/0x12c [ 120.298777][ T6649] deactivate_super+0xe0/0x100 [ 120.298787][ T6649] cleanup_mnt+0x31c/0x3ac [ 120.298799][ T6649] __cleanup_mnt+0x20/0x30 [ 120.298810][ T6649] task_work_run+0x1dc/0x260 [ 120.298821][ T6649] do_exit+0x51c/0x19fc [ 120.298834][ T6649] do_group_exit+0x194/0x22c [ 120.298845][ T6649] pid_child_should_wake+0x0/0x1dc [ 120.298857][ T6649] invoke_syscall+0x98/0x2b8 [ 120.298871][ T6649] el0_svc_common+0x130/0x23c [ 120.298885][ T6649] do_el0_svc+0x48/0x58 [ 120.298898][ T6649] el0_svc+0x58/0x17c [ 120.298910][ T6649] el0t_64_sync_handler+0x78/0x108 [ 120.298922][ T6649] el0t_64_sync+0x198/0x19c [ 120.299139][ T6649] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 120.426336][ T6651] F2FS-fs (loop2): access invalid blkaddr:2816 [ 120.428660][ T6651] CPU: 0 UID: 0 PID: 6651 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 120.428683][ T6651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 120.428692][ T6651] Call trace: [ 120.428696][ T6651] show_stack+0x2c/0x3c (C) [ 120.428716][ T6651] __dump_stack+0x30/0x40 [ 120.428731][ T6651] dump_stack_lvl+0xd8/0x12c [ 120.428744][ T6651] dump_stack+0x1c/0x28 [ 120.428757][ T6651] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 120.428772][ T6651] f2fs_is_valid_blkaddr+0x12c/0x294 [ 120.428785][ T6651] f2fs_map_blocks+0x8b4/0x32e0 [ 120.428796][ T6651] f2fs_mpage_readpages+0x960/0x14f8 [ 120.428809][ T6651] f2fs_readahead+0x184/0x388 [ 120.428820][ T6651] read_pages+0x13c/0x4c4 [ 120.428832][ T6651] page_cache_ra_unbounded+0x628/0x71c [ 120.428843][ T6651] page_cache_ra_order+0x938/0xb34 [ 120.428853][ T6651] page_cache_sync_ra+0x570/0x714 [ 120.428864][ T6651] f2fs_readdir+0x364/0x970 [ 120.428876][ T6651] iterate_dir+0x458/0x5e0 [ 120.428889][ T6651] __arm64_sys_getdents64+0x110/0x2fc [ 120.428902][ T6651] invoke_syscall+0x98/0x2b8 [ 120.428915][ T6651] el0_svc_common+0x130/0x23c [ 120.428929][ T6651] do_el0_svc+0x48/0x58 [ 120.428942][ T6651] el0_svc+0x58/0x17c [ 120.428954][ T6651] el0t_64_sync_handler+0x78/0x108 [ 120.428967][ T6651] el0t_64_sync+0x198/0x19c [ 120.500378][ T6651] F2FS-fs (loop2): access invalid blkaddr:2816 [ 120.500452][ T6651] CPU: 1 UID: 0 PID: 6651 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 120.500467][ T6651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 120.500474][ T6651] Call trace: [ 120.500479][ T6651] show_stack+0x2c/0x3c (C) [ 120.500499][ T6651] __dump_stack+0x30/0x40 [ 120.500514][ T6651] dump_stack_lvl+0xd8/0x12c [ 120.500527][ T6651] dump_stack+0x1c/0x28 [ 120.500540][ T6651] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 120.500555][ T6651] f2fs_is_valid_blkaddr+0x12c/0x294 [ 120.500568][ T6651] f2fs_map_blocks+0x8b4/0x32e0 [ 120.500580][ T6651] f2fs_mpage_readpages+0x960/0x14f8 [ 120.500601][ T6651] f2fs_readahead+0x184/0x388 [ 120.500613][ T6651] read_pages+0x13c/0x4c4 [ 120.500624][ T6651] page_cache_ra_unbounded+0x628/0x71c [ 120.500635][ T6651] page_cache_ra_order+0x938/0xb34 [ 120.500646][ T6651] page_cache_sync_ra+0x570/0x714 [ 120.500657][ T6651] f2fs_readdir+0x364/0x970 [ 120.500669][ T6651] iterate_dir+0x458/0x5e0 [ 120.500682][ T6651] __arm64_sys_getdents64+0x110/0x2fc [ 120.500695][ T6651] invoke_syscall+0x98/0x2b8 [ 120.500709][ T6651] el0_svc_common+0x130/0x23c [ 120.500722][ T6651] do_el0_svc+0x48/0x58 [ 120.500736][ T6651] el0_svc+0x58/0x17c [ 120.500748][ T6651] el0t_64_sync_handler+0x78/0x108 [ 120.500760][ T6651] el0t_64_sync+0x198/0x19c [ 120.500872][ T6651] syz-executor: attempt to access beyond end of device [ 120.500872][ T6651] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 120.621928][ T2056] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.680284][ T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 120.684504][ T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 120.685084][ T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 120.685733][ T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 120.686145][ T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 120.721430][ T6655] F2FS-fs (loop4): access invalid blkaddr:2816 [ 120.725938][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 120.725961][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 120.725969][ T6655] Call trace: [ 120.725973][ T6655] show_stack+0x2c/0x3c (C) [ 120.725994][ T6655] __dump_stack+0x30/0x40 [ 120.726009][ T6655] dump_stack_lvl+0xd8/0x12c [ 120.726022][ T6655] dump_stack+0x1c/0x28 [ 120.726035][ T6655] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 120.726050][ T6655] f2fs_is_valid_blkaddr+0x12c/0x294 [ 120.726063][ T6655] f2fs_map_blocks+0x8b4/0x32e0 [ 120.726075][ T6655] f2fs_mpage_readpages+0x960/0x14f8 [ 120.726087][ T6655] f2fs_readahead+0x184/0x388 [ 120.726099][ T6655] read_pages+0x13c/0x4c4 [ 120.726110][ T6655] page_cache_ra_unbounded+0x628/0x71c [ 120.726121][ T6655] page_cache_ra_order+0x938/0xb34 [ 120.726131][ T6655] page_cache_sync_ra+0x570/0x714 [ 120.726142][ T6655] f2fs_readdir+0x364/0x970 [ 120.726163][ T6655] iterate_dir+0x458/0x5e0 [ 120.726176][ T6655] __arm64_sys_getdents64+0x110/0x2fc [ 120.726194][ T6655] invoke_syscall+0x98/0x2b8 [ 120.726208][ T6655] el0_svc_common+0x130/0x23c [ 120.726221][ T6655] do_el0_svc+0x48/0x58 [ 120.726234][ T6655] el0_svc+0x58/0x17c [ 120.726247][ T6655] el0t_64_sync_handler+0x78/0x108 [ 120.726259][ T6655] el0t_64_sync+0x198/0x19c [ 120.781072][ T6655] F2FS-fs (loop4): access invalid blkaddr:2816 [ 120.781142][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 120.781168][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 120.781176][ T6655] Call trace: [ 120.781180][ T6655] show_stack+0x2c/0x3c (C) [ 120.781200][ T6655] __dump_stack+0x30/0x40 [ 120.781215][ T6655] dump_stack_lvl+0xd8/0x12c [ 120.781228][ T6655] dump_stack+0x1c/0x28 [ 120.781241][ T6655] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 120.781256][ T6655] f2fs_is_valid_blkaddr+0x12c/0x294 [ 120.781269][ T6655] f2fs_map_blocks+0x8b4/0x32e0 [ 120.781280][ T6655] f2fs_mpage_readpages+0x960/0x14f8 [ 120.781293][ T6655] f2fs_readahead+0x184/0x388 [ 120.781304][ T6655] read_pages+0x13c/0x4c4 [ 120.781316][ T6655] page_cache_ra_unbounded+0x628/0x71c [ 120.781327][ T6655] page_cache_ra_order+0x938/0xb34 [ 120.781338][ T6655] page_cache_sync_ra+0x570/0x714 [ 120.781349][ T6655] f2fs_readdir+0x364/0x970 [ 120.781361][ T6655] iterate_dir+0x458/0x5e0 [ 120.781374][ T6655] __arm64_sys_getdents64+0x110/0x2fc [ 120.781387][ T6655] invoke_syscall+0x98/0x2b8 [ 120.781401][ T6655] el0_svc_common+0x130/0x23c [ 120.781414][ T6655] do_el0_svc+0x48/0x58 [ 120.781427][ T6655] el0_svc+0x58/0x17c [ 120.781440][ T6655] el0t_64_sync_handler+0x78/0x108 [ 120.781452][ T6655] el0t_64_sync+0x198/0x19c [ 120.781564][ T6655] syz-executor: attempt to access beyond end of device [ 120.781564][ T6655] loop4: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 120.822943][ T2056] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.010044][ T2056] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.022716][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.024870][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.049861][ T6643] F2FS-fs (loop1): access invalid blkaddr:2816 [ 121.049933][ T6643] CPU: 1 UID: 0 PID: 6643 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 121.049947][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 121.049955][ T6643] Call trace: [ 121.049959][ T6643] show_stack+0x2c/0x3c (C) [ 121.049979][ T6643] __dump_stack+0x30/0x40 [ 121.049994][ T6643] dump_stack_lvl+0xd8/0x12c [ 121.050007][ T6643] dump_stack+0x1c/0x28 [ 121.050020][ T6643] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 121.050035][ T6643] f2fs_is_valid_blkaddr+0x12c/0x294 [ 121.050048][ T6643] f2fs_map_blocks+0x8b4/0x32e0 [ 121.050060][ T6643] f2fs_mpage_readpages+0x960/0x14f8 [ 121.050073][ T6643] f2fs_readahead+0x184/0x388 [ 121.050084][ T6643] read_pages+0x13c/0x4c4 [ 121.050096][ T6643] page_cache_ra_unbounded+0x628/0x71c [ 121.050107][ T6643] page_cache_ra_order+0x938/0xb34 [ 121.050117][ T6643] page_cache_sync_ra+0x570/0x714 [ 121.050128][ T6643] f2fs_readdir+0x364/0x970 [ 121.050140][ T6643] iterate_dir+0x458/0x5e0 [ 121.050161][ T6643] __arm64_sys_getdents64+0x110/0x2fc [ 121.050174][ T6643] invoke_syscall+0x98/0x2b8 [ 121.050188][ T6643] el0_svc_common+0x130/0x23c [ 121.050201][ T6643] do_el0_svc+0x48/0x58 [ 121.050215][ T6643] el0_svc+0x58/0x17c [ 121.050227][ T6643] el0t_64_sync_handler+0x78/0x108 [ 121.050239][ T6643] el0t_64_sync+0x198/0x19c [ 121.055799][ T6643] F2FS-fs (loop1): access invalid blkaddr:2816 [ 121.056007][ T6643] CPU: 1 UID: 0 PID: 6643 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 121.056021][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 121.056028][ T6643] Call trace: [ 121.056032][ T6643] show_stack+0x2c/0x3c (C) [ 121.056051][ T6643] __dump_stack+0x30/0x40 [ 121.056066][ T6643] dump_stack_lvl+0xd8/0x12c [ 121.056079][ T6643] dump_stack+0x1c/0x28 [ 121.056092][ T6643] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 121.056107][ T6643] f2fs_is_valid_blkaddr+0x12c/0x294 [ 121.056120][ T6643] f2fs_map_blocks+0x8b4/0x32e0 [ 121.056131][ T6643] f2fs_mpage_readpages+0x960/0x14f8 [ 121.056144][ T6643] f2fs_readahead+0x184/0x388 [ 121.056161][ T6643] read_pages+0x13c/0x4c4 [ 121.056173][ T6643] page_cache_ra_unbounded+0x628/0x71c [ 121.056184][ T6643] page_cache_ra_order+0x938/0xb34 [ 121.056194][ T6643] page_cache_sync_ra+0x570/0x714 [ 121.056205][ T6643] f2fs_readdir+0x364/0x970 [ 121.056217][ T6643] iterate_dir+0x458/0x5e0 [ 121.056230][ T6643] __arm64_sys_getdents64+0x110/0x2fc [ 121.056270][ T6643] invoke_syscall+0x98/0x2b8 [ 121.056284][ T6643] el0_svc_common+0x130/0x23c [ 121.056298][ T6643] do_el0_svc+0x48/0x58 [ 121.056311][ T6643] el0_svc+0x58/0x17c [ 121.056324][ T6643] el0t_64_sync_handler+0x78/0x108 [ 121.056336][ T6643] el0t_64_sync+0x198/0x19c [ 121.056447][ T6643] syz-executor: attempt to access beyond end of device [ 121.056447][ T6643] loop1: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 121.104888][ T6651] syz-executor: attempt to access beyond end of device [ 121.104888][ T6651] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 121.104957][ T6651] CPU: 1 UID: 0 PID: 6651 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 121.104971][ T6651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 121.104979][ T6651] Call trace: [ 121.104983][ T6651] show_stack+0x2c/0x3c (C) [ 121.105003][ T6651] __dump_stack+0x30/0x40 [ 121.105017][ T6651] dump_stack_lvl+0xd8/0x12c [ 121.105030][ T6651] dump_stack+0x1c/0x28 [ 121.105043][ T6651] f2fs_handle_critical_error+0x34c/0x4b8 [ 121.105056][ T6651] f2fs_stop_checkpoint+0x5c/0x70 [ 121.105069][ T6651] f2fs_write_end_io+0x58c/0x818 [ 121.105081][ T6651] bio_endio+0x804/0x840 [ 121.105092][ T6651] submit_bio_noacct+0x158/0x176c [ 121.105106][ T6651] submit_bio+0x354/0x4d4 [ 121.105119][ T6651] f2fs_submit_write_bio+0x13c/0x324 [ 121.105130][ T6651] __submit_merged_bio+0x254/0x704 [ 121.105141][ T6651] __submit_merged_write_cond+0x23c/0x4ac [ 121.105162][ T6651] f2fs_write_data_pages+0x1d28/0x2634 [ 121.105174][ T6651] do_writepages+0x270/0x468 [ 121.105189][ T6651] filemap_fdatawrite+0x144/0x1e8 [ 121.105204][ T6651] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 121.105218][ T6651] f2fs_write_checkpoint+0x684/0x1694 [ 121.105231][ T6651] kill_f2fs_super+0x21c/0x584 [ 121.105248][ T6651] deactivate_locked_super+0xc4/0x12c [ 121.105260][ T6651] deactivate_super+0xe0/0x100 [ 121.105271][ T6651] cleanup_mnt+0x31c/0x3ac [ 121.105282][ T6651] __cleanup_mnt+0x20/0x30 [ 121.105293][ T6651] task_work_run+0x1dc/0x260 [ 121.105305][ T6651] do_exit+0x51c/0x19fc [ 121.105317][ T6651] do_group_exit+0x194/0x22c [ 121.105328][ T6651] pid_child_should_wake+0x0/0x1dc [ 121.105340][ T6651] invoke_syscall+0x98/0x2b8 [ 121.105354][ T6651] el0_svc_common+0x130/0x23c [ 121.105368][ T6651] do_el0_svc+0x48/0x58 [ 121.105381][ T6651] el0_svc+0x58/0x17c [ 121.105393][ T6651] el0t_64_sync_handler+0x78/0x108 [ 121.105405][ T6651] el0t_64_sync+0x198/0x19c [ 121.105420][ T6651] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 121.209564][ T6655] syz-executor: attempt to access beyond end of device [ 121.209564][ T6655] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 121.209652][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 121.209667][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 121.209674][ T6655] Call trace: [ 121.209678][ T6655] show_stack+0x2c/0x3c (C) [ 121.209699][ T6655] __dump_stack+0x30/0x40 [ 121.209713][ T6655] dump_stack_lvl+0xd8/0x12c [ 121.209727][ T6655] dump_stack+0x1c/0x28 [ 121.209740][ T6655] f2fs_handle_critical_error+0x34c/0x4b8 [ 121.209752][ T6655] f2fs_stop_checkpoint+0x5c/0x70 [ 121.209766][ T6655] f2fs_write_end_io+0x58c/0x818 [ 121.209778][ T6655] bio_endio+0x804/0x840 [ 121.209789][ T6655] submit_bio_noacct+0x158/0x176c [ 121.209803][ T6655] submit_bio+0x354/0x4d4 [ 121.209816][ T6655] f2fs_submit_write_bio+0x13c/0x324 [ 121.209827][ T6655] __submit_merged_bio+0x254/0x704 [ 121.209838][ T6655] __submit_merged_write_cond+0x23c/0x4ac [ 121.209850][ T6655] f2fs_write_data_pages+0x1d28/0x2634 [ 121.209861][ T6655] do_writepages+0x270/0x468 [ 121.209876][ T6655] filemap_fdatawrite+0x144/0x1e8 [ 121.209891][ T6655] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 121.209905][ T6655] f2fs_write_checkpoint+0x684/0x1694 [ 121.209929][ T6655] kill_f2fs_super+0x21c/0x584 [ 121.209941][ T6655] deactivate_locked_super+0xc4/0x12c [ 121.209953][ T6655] deactivate_super+0xe0/0x100 [ 121.209963][ T6655] cleanup_mnt+0x31c/0x3ac [ 121.209975][ T6655] __cleanup_mnt+0x20/0x30 [ 121.209986][ T6655] task_work_run+0x1dc/0x260 [ 121.209998][ T6655] do_exit+0x51c/0x19fc [ 121.210010][ T6655] do_group_exit+0x194/0x22c [ 121.210022][ T6655] pid_child_should_wake+0x0/0x1dc [ 121.210034][ T6655] invoke_syscall+0x98/0x2b8 [ 121.210048][ T6655] el0_svc_common+0x130/0x23c [ 121.210062][ T6655] do_el0_svc+0x48/0x58 [ 121.210075][ T6655] el0_svc+0x58/0x17c [ 121.210088][ T6655] el0t_64_sync_handler+0x78/0x108 [ 121.210100][ T6655] el0t_64_sync+0x198/0x19c [ 121.210335][ T6655] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 121.255685][ T2056] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.272265][ T500] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.272325][ T500] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.412992][ T6084] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 121.427770][ T6084] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 121.428377][ T6084] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 121.429050][ T6084] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 121.429524][ T6084] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 121.529702][ T6084] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 121.530560][ T6084] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 121.530999][ T6084] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 121.531874][ T6084] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 121.532331][ T6084] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 121.542129][ T6643] syz-executor: attempt to access beyond end of device [ 121.542129][ T6643] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 121.542210][ T6643] CPU: 1 UID: 0 PID: 6643 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 121.542224][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 121.542232][ T6643] Call trace: [ 121.542236][ T6643] show_stack+0x2c/0x3c (C) [ 121.542256][ T6643] __dump_stack+0x30/0x40 [ 121.542271][ T6643] dump_stack_lvl+0xd8/0x12c [ 121.542284][ T6643] dump_stack+0x1c/0x28 [ 121.542297][ T6643] f2fs_handle_critical_error+0x34c/0x4b8 [ 121.542309][ T6643] f2fs_stop_checkpoint+0x5c/0x70 [ 121.542323][ T6643] f2fs_write_end_io+0x58c/0x818 [ 121.542335][ T6643] bio_endio+0x804/0x840 [ 121.542347][ T6643] submit_bio_noacct+0x158/0x176c [ 121.542361][ T6643] submit_bio+0x354/0x4d4 [ 121.542373][ T6643] f2fs_submit_write_bio+0x13c/0x324 [ 121.542384][ T6643] __submit_merged_bio+0x254/0x704 [ 121.542395][ T6643] __submit_merged_write_cond+0x23c/0x4ac [ 121.542407][ T6643] f2fs_write_data_pages+0x1d28/0x2634 [ 121.542419][ T6643] do_writepages+0x270/0x468 [ 121.542433][ T6643] filemap_fdatawrite+0x144/0x1e8 [ 121.542448][ T6643] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 121.542462][ T6643] f2fs_write_checkpoint+0x684/0x1694 [ 121.542476][ T6643] kill_f2fs_super+0x21c/0x584 [ 121.542488][ T6643] deactivate_locked_super+0xc4/0x12c [ 121.542499][ T6643] deactivate_super+0xe0/0x100 [ 121.542509][ T6643] cleanup_mnt+0x31c/0x3ac [ 121.542521][ T6643] __cleanup_mnt+0x20/0x30 [ 121.542532][ T6643] task_work_run+0x1dc/0x260 [ 121.542543][ T6643] do_exit+0x51c/0x19fc [ 121.542555][ T6643] do_group_exit+0x194/0x22c [ 121.542567][ T6643] pid_child_should_wake+0x0/0x1dc [ 121.542579][ T6643] invoke_syscall+0x98/0x2b8 [ 121.542593][ T6643] el0_svc_common+0x130/0x23c [ 121.542606][ T6643] do_el0_svc+0x48/0x58 [ 121.542619][ T6643] el0_svc+0x58/0x17c [ 121.542632][ T6643] el0t_64_sync_handler+0x78/0x108 [ 121.542644][ T6643] el0t_64_sync+0x198/0x19c [ 121.542658][ T6643] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 121.770501][ T2056] bridge_slave_1: left allmulticast mode [ 121.770567][ T2056] bridge_slave_1: left promiscuous mode [ 121.770710][ T2056] bridge0: port 2(bridge_slave_1) entered disabled state [ 121.804067][ T2056] bridge_slave_0: left allmulticast mode [ 121.807796][ T2056] bridge_slave_0: left promiscuous mode [ 121.810015][ T2056] bridge0: port 1(bridge_slave_0) entered disabled state [ 121.863052][ T6993] loop5: detected capacity change from 0 to 40427 [ 121.878437][ T6993] F2FS-fs (loop5): build fault injection rate: 771 [ 121.880062][ T6993] F2FS-fs (loop5): invalid crc value [ 121.918832][ T52] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 121.919605][ T52] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 121.920084][ T52] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 121.920782][ T52] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 121.921270][ T52] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 121.930656][ T6993] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 122.160365][ T6776] F2FS-fs (loop5): access invalid blkaddr:2816 [ 122.160430][ T6776] CPU: 1 UID: 0 PID: 6776 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 122.160447][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 122.160455][ T6776] Call trace: [ 122.160459][ T6776] show_stack+0x2c/0x3c (C) [ 122.160479][ T6776] __dump_stack+0x30/0x40 [ 122.160494][ T6776] dump_stack_lvl+0xd8/0x12c [ 122.160508][ T6776] dump_stack+0x1c/0x28 [ 122.160521][ T6776] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 122.160536][ T6776] f2fs_is_valid_blkaddr+0x12c/0x294 [ 122.160550][ T6776] f2fs_map_blocks+0x8b4/0x32e0 [ 122.160561][ T6776] f2fs_mpage_readpages+0x960/0x14f8 [ 122.160574][ T6776] f2fs_readahead+0x184/0x388 [ 122.160586][ T6776] read_pages+0x13c/0x4c4 [ 122.160598][ T6776] page_cache_ra_unbounded+0x628/0x71c [ 122.160609][ T6776] page_cache_ra_order+0x938/0xb34 [ 122.160620][ T6776] page_cache_sync_ra+0x570/0x714 [ 122.160630][ T6776] f2fs_readdir+0x364/0x970 [ 122.160643][ T6776] iterate_dir+0x458/0x5e0 [ 122.160656][ T6776] __arm64_sys_getdents64+0x110/0x2fc [ 122.160669][ T6776] invoke_syscall+0x98/0x2b8 [ 122.160683][ T6776] el0_svc_common+0x130/0x23c [ 122.160697][ T6776] do_el0_svc+0x48/0x58 [ 122.160710][ T6776] el0_svc+0x58/0x17c [ 122.160722][ T6776] el0t_64_sync_handler+0x78/0x108 [ 122.160746][ T6776] el0t_64_sync+0x198/0x19c [ 122.163832][ T6776] F2FS-fs (loop5): access invalid blkaddr:2816 [ 122.163870][ T6776] CPU: 0 UID: 0 PID: 6776 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 122.163884][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 122.163891][ T6776] Call trace: [ 122.163896][ T6776] show_stack+0x2c/0x3c (C) [ 122.163914][ T6776] __dump_stack+0x30/0x40 [ 122.163929][ T6776] dump_stack_lvl+0xd8/0x12c [ 122.163942][ T6776] dump_stack+0x1c/0x28 [ 122.163954][ T6776] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 122.163969][ T6776] f2fs_is_valid_blkaddr+0x12c/0x294 [ 122.163982][ T6776] f2fs_map_blocks+0x8b4/0x32e0 [ 122.163993][ T6776] f2fs_mpage_readpages+0x960/0x14f8 [ 122.164006][ T6776] f2fs_readahead+0x184/0x388 [ 122.164017][ T6776] read_pages+0x13c/0x4c4 [ 122.164028][ T6776] page_cache_ra_unbounded+0x628/0x71c [ 122.164039][ T6776] page_cache_ra_order+0x938/0xb34 [ 122.164050][ T6776] page_cache_sync_ra+0x570/0x714 [ 122.164061][ T6776] f2fs_readdir+0x364/0x970 [ 122.164072][ T6776] iterate_dir+0x458/0x5e0 [ 122.164085][ T6776] __arm64_sys_getdents64+0x110/0x2fc [ 122.164098][ T6776] invoke_syscall+0x98/0x2b8 [ 122.164111][ T6776] el0_svc_common+0x130/0x23c [ 122.164125][ T6776] do_el0_svc+0x48/0x58 [ 122.164138][ T6776] el0_svc+0x58/0x17c [ 122.164165][ T6776] el0t_64_sync_handler+0x78/0x108 [ 122.164177][ T6776] el0t_64_sync+0x198/0x19c [ 122.164298][ T6776] syz-executor: attempt to access beyond end of device [ 122.164298][ T6776] loop5: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 122.757421][ T52] Bluetooth: hci2: command tx timeout [ 123.393549][ T2056] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 123.430453][ T2056] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 123.477522][ T52] Bluetooth: hci1: command tx timeout [ 123.488680][ T2056] bond0 (unregistering): Released all slaves [ 123.560438][ T52] Bluetooth: hci3: command tx timeout [ 123.566677][ T6975] chnl_net:caif_netlink_parms(): no params data found [ 123.861442][ T6776] syz-executor: attempt to access beyond end of device [ 123.861442][ T6776] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 123.875127][ T6776] CPU: 0 UID: 0 PID: 6776 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 123.875157][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 123.875166][ T6776] Call trace: [ 123.875170][ T6776] show_stack+0x2c/0x3c (C) [ 123.875191][ T6776] __dump_stack+0x30/0x40 [ 123.875206][ T6776] dump_stack_lvl+0xd8/0x12c [ 123.875219][ T6776] dump_stack+0x1c/0x28 [ 123.875232][ T6776] f2fs_handle_critical_error+0x34c/0x4b8 [ 123.875245][ T6776] f2fs_stop_checkpoint+0x5c/0x70 [ 123.875259][ T6776] f2fs_write_end_io+0x58c/0x818 [ 123.875271][ T6776] bio_endio+0x804/0x840 [ 123.875283][ T6776] submit_bio_noacct+0x158/0x176c [ 123.875292][ T6975] bridge0: port 1(bridge_slave_0) entered blocking state [ 123.875296][ T6776] submit_bio+0x354/0x4d4 [ 123.875309][ T6776] f2fs_submit_write_bio+0x13c/0x324 [ 123.875321][ T6776] __submit_merged_bio+0x254/0x704 [ 123.875332][ T6776] __submit_merged_write_cond+0x23c/0x4ac [ 123.875344][ T6776] f2fs_write_data_pages+0x1d28/0x2634 [ 123.875356][ T6776] do_writepages+0x270/0x468 [ 123.875371][ T6776] filemap_fdatawrite+0x144/0x1e8 [ 123.875386][ T6776] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 123.875400][ T6776] f2fs_write_checkpoint+0x684/0x1694 [ 123.875414][ T6776] kill_f2fs_super+0x21c/0x584 [ 123.875426][ T6776] deactivate_locked_super+0xc4/0x12c [ 123.875438][ T6776] deactivate_super+0xe0/0x100 [ 123.875448][ T6776] cleanup_mnt+0x31c/0x3ac [ 123.875460][ T6776] __cleanup_mnt+0x20/0x30 [ 123.875471][ T6776] task_work_run+0x1dc/0x260 [ 123.875483][ T6776] do_exit+0x51c/0x19fc [ 123.875495][ T6776] do_group_exit+0x194/0x22c [ 123.875507][ T6776] pid_child_should_wake+0x0/0x1dc [ 123.875520][ T6776] invoke_syscall+0x98/0x2b8 [ 123.875534][ T6776] el0_svc_common+0x130/0x23c [ 123.875547][ T6776] do_el0_svc+0x48/0x58 [ 123.875560][ T6776] el0_svc+0x58/0x17c [ 123.875567][ T6975] bridge0: port 1(bridge_slave_0) entered disabled state [ 123.875573][ T6776] el0t_64_sync_handler+0x78/0x108 [ 123.875586][ T6776] el0t_64_sync+0x198/0x19c [ 123.875749][ T6975] bridge_slave_0: entered allmulticast mode [ 123.876663][ T6975] bridge_slave_0: entered promiscuous mode [ 123.878108][ T6975] bridge0: port 2(bridge_slave_1) entered blocking state [ 123.878165][ T6975] bridge0: port 2(bridge_slave_1) entered disabled state [ 123.878285][ T6975] bridge_slave_1: entered allmulticast mode [ 123.880264][ T6975] bridge_slave_1: entered promiscuous mode [ 123.907576][ T6776] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 123.957259][ T52] Bluetooth: hci4: command tx timeout [ 124.026003][ T6084] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 124.027614][ T6084] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 124.028270][ T6084] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 124.029358][ T6084] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 124.029813][ T6084] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:02:03 executed programs: 27 [ 124.114899][ T6975] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 124.119395][ T6975] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 124.259885][ T6975] team0: Port device team_slave_0 added [ 124.265472][ T2056] hsr_slave_0: left promiscuous mode [ 124.267796][ T2056] hsr_slave_1: left promiscuous mode [ 124.269693][ T2056] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 124.271981][ T2056] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 124.274808][ T2056] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 124.277106][ T2056] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 124.310224][ T2056] veth1_macvtap: left promiscuous mode [ 124.310326][ T2056] veth0_macvtap: left promiscuous mode [ 124.310421][ T2056] veth1_vlan: left promiscuous mode [ 124.310503][ T2056] veth0_vlan: left promiscuous mode [ 124.757569 ** replaying previous printk message ** [ 124.757569][ T6847] Unable to handle kernel paging request at virtual address dfff80000000004b [ 124.757664][ T6847] KASAN: null-ptr-deref in range [0x0000000000000258-0x000000000000025f] [ 124.757687][ T6847] Mem abort info: [ 124.757703][ T6847] ESR = 0x0000000096000005 [ 124.757721][ T6847] EC = 0x25: DABT (current EL), IL = 32 bits [ 124.757741][ T6847] SET = 0, FnV = 0 [ 124.757759][ T6847] EA = 0, S1PTW = 0 [ 124.757777][ T6847] FSC = 0x05: level 1 translation fault [ 124.757796][ T6847] Data abort info: [ 124.757812][ T6847] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 124.757831][ T6847] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 124.757851][ T6847] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 124.757872][ T6847] [dfff80000000004b] address between user and kernel address ranges [ 124.757994][ T6847] Internal error: Oops: 0000000096000005 [#1] SMP [ 124.780425][ T6847] Modules linked in: [ 124.781453][ T6847] CPU: 1 UID: 0 PID: 6847 Comm: kworker/1:5 Not tainted 6.16.0-rc1-syzkaller-g39dfc971e42d #0 PREEMPT [ 124.784422][ T6847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 124.787114][ T6847] Workqueue: events l2cap_info_timeout [ 124.788798][ T6847] pstate: 20400005 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 124.791010][ T6847] pc : kasan_byte_accessible+0x10/0x20 [ 124.792541][ T6847] lr : __kasan_check_byte+0x20/0x54 [ 124.793971][ T6847] sp : ffff80009c917770 [ 124.795055][ T6847] x29: ffff80009c917770 x28: ffff80008f631000 x27: ffff0000cb38db80 [ 124.797207][ T6847] x26: ffff80008917da20 x25: 0000000000000000 x24: 0000000000000001 [ 124.799310][ T6847] x23: 0000000000000000 x22: 0000000000000258 x21: 0000000000000258 [ 124.801427][ T6847] x20: 0000000000000000 x19: ffff80008917da20 x18: 00000000ffffffff [ 124.803579][ T6847] x17: ffff80009331f000 x16: ffff80008aec8e2c x15: 0000000000000001 [ 124.805725][ T6847] x14: 1fffe0001a29b021 x13: 0000000000000000 x12: 0000000000000000 [ 124.807853][ T6847] x11: ffff80009311ec08 x10: 0000000000000003 x9 : dfff800000000000 [ 124.810042][ T6847] x8 : 000000000000004b x7 : ffff80008308f3c4 x6 : ffff80008a19e68c [ 124.812346][ T6847] x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000 [ 124.814542][ T6847] x2 : 0000000000000000 x1 : ffff80008917da20 x0 : 0000000000000258 [ 124.816712][ T6847] Call trace: [ 124.817580][ T6847] kasan_byte_accessible+0x10/0x20 (P) [ 124.819075][ T6847] lock_acquire+0xb0/0x2e0 [ 124.820242][ T6847] lock_sock_nested+0x58/0x118 [ 124.821542][ T6847] l2cap_sock_ready_cb+0x4c/0x130 [ 124.822925][ T6847] l2cap_conn_start+0x588/0xba4 [ 124.824261][ T6847] l2cap_info_timeout+0x78/0xb0 [ 124.825547][ T6847] process_one_work+0x7e8/0x155c [ 124.826862][ T6847] worker_thread+0x958/0xed8 [ 124.828068][ T6847] kthread+0x5fc/0x75c [ 124.829126][ T6847] ret_from_fork+0x10/0x20 [ 124.830361][ T6847] Code: d503245f d343fc08 d2d00009 f2fbffe9 (38696908) [ 124.832187][ T6847] ---[ end trace 0000000000000000 ]--- [ 125.223025][ T6847] Kernel panic - not syncing: Oops: Fatal exception [ 125.224914][ T6847] SMP: stopping secondary CPUs [ 125.226226][ T6847] Kernel Offset: disabled [ 125.227440][ T6847] CPU features: 0x2000,000081c0,020004a1,04017203 [ 125.229173][ T6847] Memory Limit: none [ 125.612614][ T6847] Rebooting in 86400 seconds..