./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor200959675 <...> Warning: Permanently added '10.128.1.102' (ED25519) to the list of known hosts. execve("./syz-executor200959675", ["./syz-executor200959675"], 0x7ffd5145f380 /* 10 vars */) = 0 brk(NULL) = 0x55557eebc000 brk(0x55557eebcd00) = 0x55557eebcd00 arch_prctl(ARCH_SET_FS, 0x55557eebc380) = 0 set_tid_address(0x55557eebc650) = 288 set_robust_list(0x55557eebc660, 24) = 0 rseq(0x55557eebcca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor200959675", 4096) = 27 getrandom("\xae\x3d\x3c\xb1\xab\x19\xb4\xa5", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557eebcd00 brk(0x55557eeddd00) = 0x55557eeddd00 brk(0x55557eede000) = 0x55557eede000 mprotect(0x7f7baa219000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557eebc650) = 289 ./strace-static-x86_64: Process 289 attached [pid 289] set_robust_list(0x55557eebc660, 24) = 0 [pid 289] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 289] getppid() = 0 [pid 289] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 289] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 289] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 289] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 289] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 289] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 289] unshare(CLONE_NEWNS) = 0 [pid 289] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 289] unshare(CLONE_NEWIPC) = -1 EINVAL (Invalid argument) [pid 289] unshare(CLONE_NEWCGROUP) = 0 [pid 289] unshare(CLONE_NEWUTS) = 0 [pid 289] unshare(CLONE_SYSVSEM) = 0 [pid 289] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 289] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 289] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 289] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 289] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 289] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 289] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 289] getpid() = 1 [pid 289] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [ 52.277685][ T289] __dump_stack+0x21/0x30 [ 52.282033][ T289] dump_stack_lvl+0xee/0x150 [ 52.286625][ T289] ? show_regs_print_info+0x20/0x20 [ 52.291825][ T289] ? f2fs_set_node_page_dirty+0x40f/0x590 [ 52.297558][ T289] ? set_page_dirty+0x1ae/0x310 [ 52.302413][ T289] dump_stack+0x15/0x20 [ 52.306581][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 52.311961][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 52.318140][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 52.323697][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 52.329424][ T289] ? __kasan_check_write+0x14/0x20 [ 52.334542][ T289] ? data_blkaddr+0x330/0x330 [ 52.339227][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 52.344697][ T289] ? addrs_per_block+0x110/0x110 [ 52.349641][ T289] ? dquot_initialize+0x20/0x20 [ 52.354500][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 52.359705][ T289] f2fs_truncate+0x1d7/0x3d0 [ 52.364299][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 52.369074][ T289] f2fs_setattr+0xaca/0x11b0 [ 52.373675][ T289] ? f2fs_getattr+0x670/0x670 [ 52.378364][ T289] notify_change+0xbca/0xe90 [ 52.382965][ T289] do_truncate+0x197/0x220 [ 52.387386][ T289] ? dquot_file_open+0x86/0xb0 [ 52.392316][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 52.397369][ T289] path_openat+0x2769/0x2f10 [ 52.401973][ T289] ? do_syscall_64+0x4c/0xa0 [ 52.406577][ T289] ? do_filp_open+0x3e0/0x3e0 [ 52.411265][ T289] do_filp_open+0x1b3/0x3e0 [ 52.415776][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 52.420387][ T289] do_sys_openat2+0x14c/0x7b0 [ 52.425071][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 52.430276][ T289] ? do_sys_open+0xe0/0xe0 [ 52.434696][ T289] ? do_notify_parent+0x800/0x800 [ 52.439730][ T289] __x64_sys_open+0x11c/0x140 [ 52.444409][ T289] x64_sys_call+0x3fc/0x9a0 [ 52.448917][ T289] do_syscall_64+0x4c/0xa0 [ 52.453447][ T289] ? clear_bhb_loop+0x50/0xa0 [ 52.458189][ T289] ? clear_bhb_loop+0x50/0xa0 [ 52.462890][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 52.468817][ T289] RIP: 0033:0x7f7baa194e19 [ 52.473250][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 52.492860][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 52.501281][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 52.509260][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 52.517236][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 52.525384][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 52.533376][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 52.541371][ T289] [ 52.544568][ T289] F2FS-fs (loop0): access invalid blkaddr:2054779695 [ 52.551268][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 52.561774][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 52.571832][ T289] Call Trace: [ 52.575112][ T289] [ 52.578051][ T289] __dump_stack+0x21/0x30 [ 52.582396][ T289] dump_stack_lvl+0xee/0x150 [ 52.587001][ T289] ? show_regs_print_info+0x20/0x20 [ 52.592204][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 52.597928][ T289] ? set_page_dirty+0x1ae/0x310 [ 52.602786][ T289] dump_stack+0x15/0x20 [ 52.606947][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 52.612328][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 52.618499][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 52.624083][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 52.629810][ T289] ? __kasan_check_write+0x14/0x20 [ 52.634928][ T289] ? data_blkaddr+0x330/0x330 [ 52.639616][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 52.645112][ T289] ? addrs_per_block+0x110/0x110 [ 52.650062][ T289] ? dquot_initialize+0x20/0x20 [ 52.654920][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 52.660124][ T289] f2fs_truncate+0x1d7/0x3d0 [ 52.664722][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 52.669496][ T289] f2fs_setattr+0xaca/0x11b0 [ 52.674093][ T289] ? f2fs_getattr+0x670/0x670 [ 52.678777][ T289] notify_change+0xbca/0xe90 [ 52.683373][ T289] do_truncate+0x197/0x220 [ 52.687803][ T289] ? dquot_file_open+0x86/0xb0 [ 52.692573][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 52.697607][ T289] path_openat+0x2769/0x2f10 [ 52.702209][ T289] ? do_syscall_64+0x4c/0xa0 [ 52.706803][ T289] ? do_filp_open+0x3e0/0x3e0 [ 52.711491][ T289] do_filp_open+0x1b3/0x3e0 [ 52.716000][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 52.720599][ T289] do_sys_openat2+0x14c/0x7b0 [ 52.725283][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 52.730492][ T289] ? do_sys_open+0xe0/0xe0 [ 52.734917][ T289] ? do_notify_parent+0x800/0x800 [ 52.739978][ T289] __x64_sys_open+0x11c/0x140 [ 52.744668][ T289] x64_sys_call+0x3fc/0x9a0 [ 52.749183][ T289] do_syscall_64+0x4c/0xa0 [ 52.753607][ T289] ? clear_bhb_loop+0x50/0xa0 [ 52.758288][ T289] ? clear_bhb_loop+0x50/0xa0 [ 52.762967][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 52.768874][ T289] RIP: 0033:0x7f7baa194e19 [ 52.773298][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 52.792916][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 52.801342][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 52.809318][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 52.817292][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 52.825265][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 52.833241][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 52.841221][ T289] [ 52.844308][ T289] F2FS-fs (loop0): access invalid blkaddr:1634560301 [ 52.851016][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 52.861527][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 52.871589][ T289] Call Trace: [ 52.874873][ T289] [ 52.877807][ T289] __dump_stack+0x21/0x30 [ 52.882151][ T289] dump_stack_lvl+0xee/0x150 [ 52.886749][ T289] ? show_regs_print_info+0x20/0x20 [ 52.891953][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 52.897687][ T289] ? set_page_dirty+0x1ae/0x310 [ 52.902549][ T289] dump_stack+0x15/0x20 [ 52.906734][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 52.912120][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 52.918289][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 52.923848][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 52.929577][ T289] ? __kasan_check_write+0x14/0x20 [ 52.934713][ T289] ? data_blkaddr+0x330/0x330 [ 52.939401][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 52.944869][ T289] ? addrs_per_block+0x110/0x110 [ 52.949822][ T289] ? dquot_initialize+0x20/0x20 [ 52.954680][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 52.959892][ T289] f2fs_truncate+0x1d7/0x3d0 [ 52.964488][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 52.969267][ T289] f2fs_setattr+0xaca/0x11b0 [ 52.973865][ T289] ? f2fs_getattr+0x670/0x670 [ 52.978547][ T289] notify_change+0xbca/0xe90 [ 52.983146][ T289] do_truncate+0x197/0x220 [ 52.987567][ T289] ? dquot_file_open+0x86/0xb0 [ 52.992348][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 52.997393][ T289] path_openat+0x2769/0x2f10 [ 53.002032][ T289] ? do_syscall_64+0x4c/0xa0 [ 53.006644][ T289] ? do_filp_open+0x3e0/0x3e0 [ 53.011327][ T289] do_filp_open+0x1b3/0x3e0 [ 53.015835][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 53.020466][ T289] do_sys_openat2+0x14c/0x7b0 [ 53.025152][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 53.030371][ T289] ? do_sys_open+0xe0/0xe0 [ 53.034804][ T289] ? do_notify_parent+0x800/0x800 [ 53.039836][ T289] __x64_sys_open+0x11c/0x140 [ 53.044520][ T289] x64_sys_call+0x3fc/0x9a0 [ 53.049054][ T289] do_syscall_64+0x4c/0xa0 [ 53.053475][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.058167][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.062858][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 53.068972][ T289] RIP: 0033:0x7f7baa194e19 [ 53.073444][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.093177][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 53.101611][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 53.109586][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 53.117566][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 53.125544][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 53.133532][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 53.141513][ T289] [ 53.144701][ T289] F2FS-fs (loop0): access invalid blkaddr:1701274983 [ 53.151401][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 53.161913][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 53.171968][ T289] Call Trace: [ 53.175250][ T289] [ 53.178176][ T289] __dump_stack+0x21/0x30 [ 53.182509][ T289] dump_stack_lvl+0xee/0x150 [ 53.187098][ T289] ? show_regs_print_info+0x20/0x20 [ 53.192312][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 53.198037][ T289] ? set_page_dirty+0x1ae/0x310 [ 53.202889][ T289] dump_stack+0x15/0x20 [ 53.207041][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 53.212410][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 53.218562][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 53.224118][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 53.229848][ T289] ? __kasan_check_write+0x14/0x20 [ 53.234961][ T289] ? data_blkaddr+0x330/0x330 [ 53.239641][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 53.245105][ T289] ? addrs_per_block+0x110/0x110 [ 53.250039][ T289] ? dquot_initialize+0x20/0x20 [ 53.254884][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 53.260215][ T289] f2fs_truncate+0x1d7/0x3d0 [ 53.264820][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 53.269603][ T289] f2fs_setattr+0xaca/0x11b0 [ 53.274235][ T289] ? f2fs_getattr+0x670/0x670 [ 53.278913][ T289] notify_change+0xbca/0xe90 [ 53.283508][ T289] do_truncate+0x197/0x220 [ 53.287930][ T289] ? dquot_file_open+0x86/0xb0 [ 53.292694][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 53.297719][ T289] path_openat+0x2769/0x2f10 [ 53.302308][ T289] ? do_syscall_64+0x4c/0xa0 [ 53.306904][ T289] ? do_filp_open+0x3e0/0x3e0 [ 53.311579][ T289] do_filp_open+0x1b3/0x3e0 [ 53.316085][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 53.320719][ T289] do_sys_openat2+0x14c/0x7b0 [ 53.325414][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 53.330633][ T289] ? do_sys_open+0xe0/0xe0 [ 53.335055][ T289] ? do_notify_parent+0x800/0x800 [ 53.340086][ T289] __x64_sys_open+0x11c/0x140 [ 53.344787][ T289] x64_sys_call+0x3fc/0x9a0 [ 53.349304][ T289] do_syscall_64+0x4c/0xa0 [ 53.353716][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.358388][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.363062][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 53.368956][ T289] RIP: 0033:0x7f7baa194e19 [ 53.373370][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.392973][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 53.401397][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 53.409369][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 53.417448][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 53.425574][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 53.433574][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 53.441559][ T289] [ 53.444664][ T289] F2FS-fs (loop0): access invalid blkaddr:875771502 [ 53.451274][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 53.461776][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 53.471841][ T289] Call Trace: [ 53.475135][ T289] [ 53.478069][ T289] __dump_stack+0x21/0x30 [ 53.482413][ T289] dump_stack_lvl+0xee/0x150 [ 53.487024][ T289] ? show_regs_print_info+0x20/0x20 [ 53.492236][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 53.497955][ T289] ? set_page_dirty+0x1ae/0x310 [ 53.502806][ T289] dump_stack+0x15/0x20 [ 53.506963][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 53.512352][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 53.518506][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 53.524049][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 53.529773][ T289] ? __kasan_check_write+0x14/0x20 [ 53.534923][ T289] ? data_blkaddr+0x330/0x330 [ 53.539617][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 53.545088][ T289] ? addrs_per_block+0x110/0x110 [ 53.550049][ T289] ? dquot_initialize+0x20/0x20 [ 53.554903][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 53.560105][ T289] f2fs_truncate+0x1d7/0x3d0 [ 53.564691][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 53.569453][ T289] f2fs_setattr+0xaca/0x11b0 [ 53.574043][ T289] ? f2fs_getattr+0x670/0x670 [ 53.578719][ T289] notify_change+0xbca/0xe90 [ 53.583309][ T289] do_truncate+0x197/0x220 [ 53.587732][ T289] ? dquot_file_open+0x86/0xb0 [ 53.592511][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 53.597537][ T289] path_openat+0x2769/0x2f10 [ 53.602127][ T289] ? do_syscall_64+0x4c/0xa0 [ 53.606718][ T289] ? do_filp_open+0x3e0/0x3e0 [ 53.611393][ T289] do_filp_open+0x1b3/0x3e0 [ 53.615891][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 53.620484][ T289] do_sys_openat2+0x14c/0x7b0 [ 53.625159][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 53.630377][ T289] ? do_sys_open+0xe0/0xe0 [ 53.634794][ T289] ? do_notify_parent+0x800/0x800 [ 53.639855][ T289] __x64_sys_open+0x11c/0x140 [ 53.644528][ T289] x64_sys_call+0x3fc/0x9a0 [ 53.649028][ T289] do_syscall_64+0x4c/0xa0 [ 53.653467][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.658143][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.662815][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 53.668707][ T289] RIP: 0033:0x7f7baa194e19 [ 53.673120][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.692727][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 53.701151][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 53.709125][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 53.717103][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 53.725082][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 53.733057][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 53.741038][ T289] [ 53.744151][ T289] F2FS-fs (loop0): access invalid blkaddr:892482097 [ 53.750761][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 53.761265][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 53.771329][ T289] Call Trace: [ 53.774614][ T289] [ 53.777548][ T289] __dump_stack+0x21/0x30 [ 53.781886][ T289] dump_stack_lvl+0xee/0x150 [ 53.786490][ T289] ? show_regs_print_info+0x20/0x20 [ 53.791695][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 53.797425][ T289] ? set_page_dirty+0x1ae/0x310 [ 53.802283][ T289] dump_stack+0x15/0x20 [ 53.806444][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 53.811820][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 53.817987][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 53.823563][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 53.829296][ T289] ? __kasan_check_write+0x14/0x20 [ 53.834417][ T289] ? data_blkaddr+0x330/0x330 [ 53.839100][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 53.844565][ T289] ? addrs_per_block+0x110/0x110 [ 53.849511][ T289] ? dquot_initialize+0x20/0x20 [ 53.854365][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 53.859570][ T289] f2fs_truncate+0x1d7/0x3d0 [ 53.864163][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 53.868931][ T289] f2fs_setattr+0xaca/0x11b0 [ 53.873528][ T289] ? f2fs_getattr+0x670/0x670 [ 53.878214][ T289] notify_change+0xbca/0xe90 [ 53.882809][ T289] do_truncate+0x197/0x220 [ 53.887227][ T289] ? dquot_file_open+0x86/0xb0 [ 53.891995][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 53.897029][ T289] path_openat+0x2769/0x2f10 [ 53.901627][ T289] ? do_syscall_64+0x4c/0xa0 [ 53.906225][ T289] ? do_filp_open+0x3e0/0x3e0 [ 53.910918][ T289] do_filp_open+0x1b3/0x3e0 [ 53.915424][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 53.920027][ T289] do_sys_openat2+0x14c/0x7b0 [ 53.924718][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 53.929926][ T289] ? do_sys_open+0xe0/0xe0 [ 53.934347][ T289] ? do_notify_parent+0x800/0x800 [ 53.939385][ T289] __x64_sys_open+0x11c/0x140 [ 53.944077][ T289] x64_sys_call+0x3fc/0x9a0 [ 53.948589][ T289] do_syscall_64+0x4c/0xa0 [ 53.953014][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.957695][ T289] ? clear_bhb_loop+0x50/0xa0 [ 53.962384][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 53.968294][ T289] RIP: 0033:0x7f7baa194e19 [ 53.972715][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.992422][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 54.000853][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 54.008832][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 54.016813][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 54.024798][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 54.032784][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 54.040776][ T289] [ 54.043885][ T289] F2FS-fs (loop0): access invalid blkaddr:1714370099 [ 54.050575][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 54.061083][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 54.071161][ T289] Call Trace: [ 54.074455][ T289] [ 54.077397][ T289] __dump_stack+0x21/0x30 [ 54.081742][ T289] dump_stack_lvl+0xee/0x150 [ 54.086342][ T289] ? show_regs_print_info+0x20/0x20 [ 54.091546][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 54.097278][ T289] ? set_page_dirty+0x1ae/0x310 [ 54.102138][ T289] dump_stack+0x15/0x20 [ 54.106300][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 54.111680][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 54.117845][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 54.123402][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 54.129134][ T289] ? __kasan_check_write+0x14/0x20 [ 54.134271][ T289] ? data_blkaddr+0x330/0x330 [ 54.138958][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 54.144423][ T289] ? addrs_per_block+0x110/0x110 [ 54.149381][ T289] ? dquot_initialize+0x20/0x20 [ 54.154254][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 54.159469][ T289] f2fs_truncate+0x1d7/0x3d0 [ 54.164096][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 54.168872][ T289] f2fs_setattr+0xaca/0x11b0 [ 54.173469][ T289] ? f2fs_getattr+0x670/0x670 [ 54.178155][ T289] notify_change+0xbca/0xe90 [ 54.182762][ T289] do_truncate+0x197/0x220 [ 54.187183][ T289] ? dquot_file_open+0x86/0xb0 [ 54.191965][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 54.197011][ T289] path_openat+0x2769/0x2f10 [ 54.201617][ T289] ? do_syscall_64+0x4c/0xa0 [ 54.206215][ T289] ? do_filp_open+0x3e0/0x3e0 [ 54.210901][ T289] do_filp_open+0x1b3/0x3e0 [ 54.215407][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 54.220009][ T289] do_sys_openat2+0x14c/0x7b0 [ 54.224699][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 54.229904][ T289] ? do_sys_open+0xe0/0xe0 [ 54.234331][ T289] ? do_notify_parent+0x800/0x800 [ 54.239368][ T289] __x64_sys_open+0x11c/0x140 [ 54.244072][ T289] x64_sys_call+0x3fc/0x9a0 [ 54.248587][ T289] do_syscall_64+0x4c/0xa0 [ 54.253009][ T289] ? clear_bhb_loop+0x50/0xa0 [ 54.257698][ T289] ? clear_bhb_loop+0x50/0xa0 [ 54.262385][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 54.268289][ T289] RIP: 0033:0x7f7baa194e19 [ 54.272711][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 54.292353][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 54.300774][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 54.308748][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 54.316729][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 54.324705][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 54.332682][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 54.340662][ T289] [ 54.343776][ T289] F2FS-fs (loop0): access invalid blkaddr:811953257 [ 54.350418][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 54.360915][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 54.370970][ T289] Call Trace: [ 54.374265][ T289] [ 54.377203][ T289] __dump_stack+0x21/0x30 [ 54.381547][ T289] dump_stack_lvl+0xee/0x150 [ 54.386139][ T289] ? show_regs_print_info+0x20/0x20 [ 54.391334][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 54.397058][ T289] ? set_page_dirty+0x1ae/0x310 [ 54.401919][ T289] dump_stack+0x15/0x20 [ 54.406073][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 54.411439][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 54.417590][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 54.423132][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 54.428851][ T289] ? __kasan_check_write+0x14/0x20 [ 54.433956][ T289] ? data_blkaddr+0x330/0x330 [ 54.438632][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 54.444102][ T289] ? addrs_per_block+0x110/0x110 [ 54.449044][ T289] ? dquot_initialize+0x20/0x20 [ 54.453892][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 54.459087][ T289] f2fs_truncate+0x1d7/0x3d0 [ 54.463685][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 54.468463][ T289] f2fs_setattr+0xaca/0x11b0 [ 54.473064][ T289] ? f2fs_getattr+0x670/0x670 [ 54.477745][ T289] notify_change+0xbca/0xe90 [ 54.482338][ T289] do_truncate+0x197/0x220 [ 54.486753][ T289] ? dquot_file_open+0x86/0xb0 [ 54.491514][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 54.496546][ T289] path_openat+0x2769/0x2f10 [ 54.501135][ T289] ? do_syscall_64+0x4c/0xa0 [ 54.505858][ T289] ? do_filp_open+0x3e0/0x3e0 [ 54.510551][ T289] do_filp_open+0x1b3/0x3e0 [ 54.515070][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 54.519661][ T289] do_sys_openat2+0x14c/0x7b0 [ 54.524335][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 54.529530][ T289] ? do_sys_open+0xe0/0xe0 [ 54.533975][ T289] ? do_notify_parent+0x800/0x800 [ 54.538998][ T289] __x64_sys_open+0x11c/0x140 [ 54.543675][ T289] x64_sys_call+0x3fc/0x9a0 [ 54.548174][ T289] do_syscall_64+0x4c/0xa0 [ 54.552585][ T289] ? clear_bhb_loop+0x50/0xa0 [ 54.557262][ T289] ? clear_bhb_loop+0x50/0xa0 [ 54.561944][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 54.567852][ T289] RIP: 0033:0x7f7baa194e19 [ 54.572292][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 54.591898][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 54.600310][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 54.608291][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 54.616263][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 54.624233][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 54.632207][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 54.640179][ T289] [ 54.643307][ T289] F2FS-fs (loop0): access invalid blkaddr:1818846767 [ 54.650020][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 54.660512][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 54.670558][ T289] Call Trace: [ 54.673832][ T289] [ 54.676777][ T289] __dump_stack+0x21/0x30 [ 54.681108][ T289] dump_stack_lvl+0xee/0x150 [ 54.685714][ T289] ? show_regs_print_info+0x20/0x20 [ 54.690910][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 54.696632][ T289] ? set_page_dirty+0x1ae/0x310 [ 54.701501][ T289] dump_stack+0x15/0x20 [ 54.705652][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 54.711020][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 54.717176][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 54.722718][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 54.728441][ T289] ? __kasan_check_write+0x14/0x20 [ 54.733550][ T289] ? data_blkaddr+0x330/0x330 [ 54.738339][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 54.743808][ T289] ? addrs_per_block+0x110/0x110 [ 54.748745][ T289] ? dquot_initialize+0x20/0x20 [ 54.753598][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 54.758794][ T289] f2fs_truncate+0x1d7/0x3d0 [ 54.763380][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 54.768143][ T289] f2fs_setattr+0xaca/0x11b0 [ 54.772730][ T289] ? f2fs_getattr+0x670/0x670 [ 54.777406][ T289] notify_change+0xbca/0xe90 [ 54.782060][ T289] do_truncate+0x197/0x220 [ 54.786493][ T289] ? dquot_file_open+0x86/0xb0 [ 54.791265][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 54.796290][ T289] path_openat+0x2769/0x2f10 [ 54.800889][ T289] ? do_syscall_64+0x4c/0xa0 [ 54.805476][ T289] ? do_filp_open+0x3e0/0x3e0 [ 54.810162][ T289] do_filp_open+0x1b3/0x3e0 [ 54.814659][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 54.819249][ T289] do_sys_openat2+0x14c/0x7b0 [ 54.823921][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 54.829115][ T289] ? do_sys_open+0xe0/0xe0 [ 54.833538][ T289] ? do_notify_parent+0x800/0x800 [ 54.838697][ T289] __x64_sys_open+0x11c/0x140 [ 54.843385][ T289] x64_sys_call+0x3fc/0x9a0 [ 54.847907][ T289] do_syscall_64+0x4c/0xa0 [ 54.852327][ T289] ? clear_bhb_loop+0x50/0xa0 [ 54.857003][ T289] ? clear_bhb_loop+0x50/0xa0 [ 54.861674][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 54.867568][ T289] RIP: 0033:0x7f7baa194e19 [ 54.871979][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 54.891688][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 54.900103][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 54.908090][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 54.916057][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 54.924021][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 54.931991][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 54.939983][ T289] [ 54.943239][ T289] F2FS-fs (loop0): Inconsistent error blkaddr:12389, sit bitmap:0 [ 54.951069][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 54.961568][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 54.971632][ T289] Call Trace: [ 54.974913][ T289] [ 54.977853][ T289] __dump_stack+0x21/0x30 [ 54.982192][ T289] dump_stack_lvl+0xee/0x150 [ 54.986790][ T289] ? show_regs_print_info+0x20/0x20 [ 54.992000][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 54.997729][ T289] ? set_page_dirty+0x1ae/0x310 [ 55.002590][ T289] dump_stack+0x15/0x20 [ 55.006845][ T289] f2fs_is_valid_blkaddr+0xc64/0x12a0 [ 55.012233][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 55.018408][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 55.023965][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 55.029695][ T289] ? __kasan_check_write+0x14/0x20 [ 55.034813][ T289] ? data_blkaddr+0x330/0x330 [ 55.039506][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 55.044979][ T289] ? addrs_per_block+0x110/0x110 [ 55.049929][ T289] ? dquot_initialize+0x20/0x20 [ 55.054796][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 55.060006][ T289] f2fs_truncate+0x1d7/0x3d0 [ 55.064603][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 55.069375][ T289] f2fs_setattr+0xaca/0x11b0 [ 55.073975][ T289] ? f2fs_getattr+0x670/0x670 [ 55.078661][ T289] notify_change+0xbca/0xe90 [ 55.083261][ T289] do_truncate+0x197/0x220 [ 55.087684][ T289] ? dquot_file_open+0x86/0xb0 [ 55.092455][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 55.097491][ T289] path_openat+0x2769/0x2f10 [ 55.102091][ T289] ? do_syscall_64+0x4c/0xa0 [ 55.106694][ T289] ? do_filp_open+0x3e0/0x3e0 [ 55.111375][ T289] do_filp_open+0x1b3/0x3e0 [ 55.115882][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 55.120483][ T289] do_sys_openat2+0x14c/0x7b0 [ 55.125172][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 55.130380][ T289] ? do_sys_open+0xe0/0xe0 [ 55.134815][ T289] ? do_notify_parent+0x800/0x800 [ 55.139846][ T289] __x64_sys_open+0x11c/0x140 [ 55.144532][ T289] x64_sys_call+0x3fc/0x9a0 [ 55.149035][ T289] do_syscall_64+0x4c/0xa0 [ 55.153453][ T289] ? clear_bhb_loop+0x50/0xa0 [ 55.158137][ T289] ? clear_bhb_loop+0x50/0xa0 [ 55.162817][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 55.168718][ T289] RIP: 0033:0x7f7baa194e19 [ 55.173135][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 55.192745][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 55.201165][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 55.209146][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 55.217128][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 55.225105][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 55.233076][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 55.241055][ T289] [ 55.244212][ T289] F2FS-fs (loop0): access invalid blkaddr:6 [ 55.250124][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 55.260649][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 55.270708][ T289] Call Trace: [ 55.273988][ T289] [ 55.276927][ T289] __dump_stack+0x21/0x30 [ 55.281269][ T289] dump_stack_lvl+0xee/0x150 [ 55.285862][ T289] ? show_regs_print_info+0x20/0x20 [ 55.291088][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 55.296814][ T289] ? set_page_dirty+0x1ae/0x310 [ 55.301671][ T289] dump_stack+0x15/0x20 [ 55.305926][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 55.311332][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 55.317508][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 55.323062][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 55.328787][ T289] ? __kasan_check_write+0x14/0x20 [ 55.333906][ T289] ? data_blkaddr+0x330/0x330 [ 55.338616][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 55.344098][ T289] ? addrs_per_block+0x110/0x110 [ 55.349051][ T289] ? dquot_initialize+0x20/0x20 [ 55.353909][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 55.359115][ T289] f2fs_truncate+0x1d7/0x3d0 [ 55.363709][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 55.368480][ T289] f2fs_setattr+0xaca/0x11b0 [ 55.373083][ T289] ? f2fs_getattr+0x670/0x670 [ 55.377766][ T289] notify_change+0xbca/0xe90 [ 55.382378][ T289] do_truncate+0x197/0x220 [ 55.386826][ T289] ? dquot_file_open+0x86/0xb0 [ 55.391597][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 55.396630][ T289] path_openat+0x2769/0x2f10 [ 55.401326][ T289] ? do_syscall_64+0x4c/0xa0 [ 55.405941][ T289] ? do_filp_open+0x3e0/0x3e0 [ 55.410630][ T289] do_filp_open+0x1b3/0x3e0 [ 55.415137][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 55.419741][ T289] do_sys_openat2+0x14c/0x7b0 [ 55.424422][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 55.429628][ T289] ? do_sys_open+0xe0/0xe0 [ 55.434050][ T289] ? do_notify_parent+0x800/0x800 [ 55.439084][ T289] __x64_sys_open+0x11c/0x140 [ 55.443768][ T289] x64_sys_call+0x3fc/0x9a0 [ 55.448273][ T289] do_syscall_64+0x4c/0xa0 [ 55.452696][ T289] ? clear_bhb_loop+0x50/0xa0 [ 55.457406][ T289] ? clear_bhb_loop+0x50/0xa0 [ 55.462090][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 55.467994][ T289] RIP: 0033:0x7f7baa194e19 [ 55.472423][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 55.492035][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 55.500453][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 55.508428][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 55.516401][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 55.524384][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 55.532369][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 55.540359][ T289] [ 55.546814][ T289] F2FS-fs (loop0): access invalid blkaddr:6 [ 55.552966][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 55.563495][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 55.573575][ T289] Call Trace: [ 55.576881][ T289] [ 55.579839][ T289] __dump_stack+0x21/0x30 [ 55.584205][ T289] dump_stack_lvl+0xee/0x150 [ 55.588822][ T289] ? show_regs_print_info+0x20/0x20 [ 55.594044][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 55.599813][ T289] ? set_page_dirty+0x1ae/0x310 [ 55.604690][ T289] dump_stack+0x15/0x20 [ 55.608864][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 55.614270][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 55.620458][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 55.626027][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 55.631771][ T289] ? __kasan_check_write+0x14/0x20 [ 55.636915][ T289] ? data_blkaddr+0x330/0x330 [ 55.641620][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 55.647086][ T289] ? addrs_per_block+0x110/0x110 [ 55.652022][ T289] ? dquot_initialize+0x20/0x20 [ 55.656869][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 55.662086][ T289] f2fs_truncate+0x1d7/0x3d0 [ 55.666679][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 55.671462][ T289] f2fs_setattr+0xaca/0x11b0 [ 55.676081][ T289] ? f2fs_getattr+0x670/0x670 [ 55.680840][ T289] notify_change+0xbca/0xe90 [ 55.685543][ T289] do_truncate+0x197/0x220 [ 55.689960][ T289] ? dquot_file_open+0x86/0xb0 [ 55.694722][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 55.699747][ T289] path_openat+0x2769/0x2f10 [ 55.704333][ T289] ? do_syscall_64+0x4c/0xa0 [ 55.708922][ T289] ? do_filp_open+0x3e0/0x3e0 [ 55.713598][ T289] do_filp_open+0x1b3/0x3e0 [ 55.718095][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 55.722704][ T289] do_sys_openat2+0x14c/0x7b0 [ 55.727379][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 55.732576][ T289] ? do_sys_open+0xe0/0xe0 [ 55.737007][ T289] ? do_notify_parent+0x800/0x800 [ 55.742035][ T289] __x64_sys_open+0x11c/0x140 [ 55.746708][ T289] x64_sys_call+0x3fc/0x9a0 [ 55.751211][ T289] do_syscall_64+0x4c/0xa0 [ 55.755626][ T289] ? clear_bhb_loop+0x50/0xa0 [ 55.760300][ T289] ? clear_bhb_loop+0x50/0xa0 [ 55.764974][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 55.770865][ T289] RIP: 0033:0x7f7baa194e19 [ 55.775285][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 55.794925][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 55.803336][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 55.811305][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 55.819275][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 55.827246][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 55.835228][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 55.843672][ T289] [ 55.849493][ T289] F2FS-fs (loop0): access invalid blkaddr:1 [ 55.856016][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 55.866546][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 55.876684][ T289] Call Trace: [ 55.880006][ T289] [ 55.882959][ T289] __dump_stack+0x21/0x30 [ 55.887318][ T289] dump_stack_lvl+0xee/0x150 [ 55.891934][ T289] ? show_regs_print_info+0x20/0x20 [ 55.897161][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 55.902907][ T289] ? set_page_dirty+0x1ae/0x310 [ 55.907820][ T289] dump_stack+0x15/0x20 [ 55.911981][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 55.917357][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 55.923517][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 55.929061][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 55.934798][ T289] ? __kasan_check_write+0x14/0x20 [ 55.939913][ T289] ? data_blkaddr+0x330/0x330 [ 55.944593][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 55.950052][ T289] ? addrs_per_block+0x110/0x110 [ 55.954989][ T289] ? dquot_initialize+0x20/0x20 [ 55.959850][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 55.965052][ T289] f2fs_truncate+0x1d7/0x3d0 [ 55.969640][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 55.974401][ T289] f2fs_setattr+0xaca/0x11b0 [ 55.979009][ T289] ? f2fs_getattr+0x670/0x670 [ 55.983687][ T289] notify_change+0xbca/0xe90 [ 55.988279][ T289] do_truncate+0x197/0x220 [ 55.992695][ T289] ? dquot_file_open+0x86/0xb0 [ 55.997455][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 56.002488][ T289] path_openat+0x2769/0x2f10 [ 56.007078][ T289] ? do_syscall_64+0x4c/0xa0 [ 56.011698][ T289] ? do_filp_open+0x3e0/0x3e0 [ 56.016376][ T289] do_filp_open+0x1b3/0x3e0 [ 56.020874][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 56.025465][ T289] do_sys_openat2+0x14c/0x7b0 [ 56.030143][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 56.035339][ T289] ? do_sys_open+0xe0/0xe0 [ 56.039754][ T289] ? do_notify_parent+0x800/0x800 [ 56.044807][ T289] __x64_sys_open+0x11c/0x140 [ 56.049483][ T289] x64_sys_call+0x3fc/0x9a0 [ 56.053984][ T289] do_syscall_64+0x4c/0xa0 [ 56.058402][ T289] ? clear_bhb_loop+0x50/0xa0 [ 56.063077][ T289] ? clear_bhb_loop+0x50/0xa0 [ 56.067893][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 56.073832][ T289] RIP: 0033:0x7f7baa194e19 [ 56.078260][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 56.097998][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 56.106420][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 56.114394][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 56.122368][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 56.130345][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 56.138321][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 56.146343][ T289] [ 56.150140][ T289] F2FS-fs (loop0): access invalid blkaddr:1219692001 [ 56.156910][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 56.167435][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 56.177498][ T289] Call Trace: [ 56.180784][ T289] [ 56.183723][ T289] __dump_stack+0x21/0x30 [ 56.188065][ T289] dump_stack_lvl+0xee/0x150 [ 56.192667][ T289] ? show_regs_print_info+0x20/0x20 [ 56.197886][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 56.203612][ T289] ? set_page_dirty+0x1ae/0x310 [ 56.208475][ T289] dump_stack+0x15/0x20 [ 56.212643][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 56.218034][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 56.224204][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 56.229789][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 56.235666][ T289] ? __kasan_check_write+0x14/0x20 [ 56.240805][ T289] ? data_blkaddr+0x330/0x330 [ 56.245491][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 56.250961][ T289] ? addrs_per_block+0x110/0x110 [ 56.255934][ T289] ? dquot_initialize+0x20/0x20 [ 56.260809][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 56.266182][ T289] f2fs_truncate+0x1d7/0x3d0 [ 56.270803][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 56.275591][ T289] f2fs_setattr+0xaca/0x11b0 [ 56.280202][ T289] ? f2fs_getattr+0x670/0x670 [ 56.284885][ T289] notify_change+0xbca/0xe90 [ 56.289485][ T289] do_truncate+0x197/0x220 [ 56.293914][ T289] ? dquot_file_open+0x86/0xb0 [ 56.298684][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 56.303712][ T289] path_openat+0x2769/0x2f10 [ 56.308311][ T289] ? do_syscall_64+0x4c/0xa0 [ 56.312905][ T289] ? do_filp_open+0x3e0/0x3e0 [ 56.317584][ T289] do_filp_open+0x1b3/0x3e0 [ 56.322092][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 56.326690][ T289] do_sys_openat2+0x14c/0x7b0 [ 56.331375][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 56.336586][ T289] ? do_sys_open+0xe0/0xe0 [ 56.341006][ T289] ? do_notify_parent+0x800/0x800 [ 56.346038][ T289] __x64_sys_open+0x11c/0x140 [ 56.350725][ T289] x64_sys_call+0x3fc/0x9a0 [ 56.355235][ T289] do_syscall_64+0x4c/0xa0 [ 56.359671][ T289] ? clear_bhb_loop+0x50/0xa0 [ 56.364353][ T289] ? clear_bhb_loop+0x50/0xa0 [ 56.369033][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 56.374933][ T289] RIP: 0033:0x7f7baa194e19 [ 56.379353][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 56.398966][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 56.407390][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 56.415363][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 56.423583][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 56.431585][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 56.439572][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 56.447552][ T289] [ 56.450733][ T289] ================================================================== [ 56.458815][ T289] BUG: KASAN: use-after-free in f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 56.467508][ T289] Read of size 4 at addr ffff88811f9d8000 by task syz-executor200/289 [ 56.475668][ T289] [ 56.478005][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 56.488559][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 56.498631][ T289] Call Trace: [ 56.501926][ T289] [ 56.504859][ T289] __dump_stack+0x21/0x30 [ 56.509199][ T289] dump_stack_lvl+0xee/0x150 [ 56.513802][ T289] ? show_regs_print_info+0x20/0x20 [ 56.519019][ T289] ? load_image+0x3a0/0x3a0 [ 56.523527][ T289] ? rwsem_write_trylock+0x130/0x300 [ 56.528824][ T289] print_address_description+0x7f/0x2c0 [ 56.534374][ T289] ? f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 56.540735][ T289] kasan_report+0xf1/0x140 [ 56.545157][ T289] ? up_write+0x7b/0x290 [ 56.549399][ T289] ? f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 56.555734][ T289] __asan_report_load4_noabort+0x14/0x20 [ 56.561373][ T289] f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 56.567534][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 56.573090][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 56.578819][ T289] ? __kasan_check_write+0x14/0x20 [ 56.583934][ T289] ? data_blkaddr+0x330/0x330 [ 56.588619][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 56.594095][ T289] ? addrs_per_block+0x110/0x110 [ 56.599044][ T289] ? dquot_initialize+0x20/0x20 [ 56.603924][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 56.609128][ T289] f2fs_truncate+0x1d7/0x3d0 [ 56.613734][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 56.618505][ T289] f2fs_setattr+0xaca/0x11b0 [ 56.623106][ T289] ? f2fs_getattr+0x670/0x670 [ 56.627812][ T289] notify_change+0xbca/0xe90 [ 56.632419][ T289] do_truncate+0x197/0x220 [ 56.636938][ T289] ? dquot_file_open+0x86/0xb0 [ 56.641717][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 56.646755][ T289] path_openat+0x2769/0x2f10 [ 56.651361][ T289] ? do_syscall_64+0x4c/0xa0 [ 56.655962][ T289] ? do_filp_open+0x3e0/0x3e0 [ 56.660645][ T289] do_filp_open+0x1b3/0x3e0 [ 56.665158][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 56.669760][ T289] do_sys_openat2+0x14c/0x7b0 [ 56.674445][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 56.679761][ T289] ? do_sys_open+0xe0/0xe0 [ 56.684196][ T289] ? do_notify_parent+0x800/0x800 [ 56.689234][ T289] __x64_sys_open+0x11c/0x140 [ 56.693919][ T289] x64_sys_call+0x3fc/0x9a0 [ 56.698427][ T289] do_syscall_64+0x4c/0xa0 [ 56.702852][ T289] ? clear_bhb_loop+0x50/0xa0 [ 56.707541][ T289] ? clear_bhb_loop+0x50/0xa0 [ 56.712226][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 56.718129][ T289] RIP: 0033:0x7f7baa194e19 [ 56.722553][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 56.742160][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 56.750578][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 56.758553][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 56.766538][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 56.774518][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 56.782515][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 56.790582][ T289] [ 56.793615][ T289] [ 56.795944][ T289] Allocated by task 90: [ 56.800095][ T289] __kasan_slab_alloc+0xbd/0xf0 [ 56.804960][ T289] slab_post_alloc_hook+0x4f/0x2b0 [ 56.810079][ T289] kmem_cache_alloc+0xf7/0x260 [ 56.814848][ T289] __alloc_skb+0xe0/0x740 [ 56.819186][ T289] alloc_skb_with_frags+0xa8/0x620 [ 56.824301][ T289] sock_alloc_send_pskb+0x853/0x980 [ 56.829503][ T289] unix_dgram_sendmsg+0x5ea/0x1880 [ 56.834621][ T289] __sys_sendto+0x423/0x580 [ 56.839131][ T289] __x64_sys_sendto+0xe5/0x100 [ 56.843906][ T289] x64_sys_call+0x178/0x9a0 [ 56.848411][ T289] do_syscall_64+0x4c/0xa0 [ 56.852832][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 56.858733][ T289] [ 56.861057][ T289] Freed by task 83: [ 56.864885][ T289] kasan_set_track+0x4a/0x70 [ 56.869479][ T289] kasan_set_free_info+0x23/0x40 [ 56.874425][ T289] ____kasan_slab_free+0x125/0x160 [ 56.879541][ T289] __kasan_slab_free+0x11/0x20 [ 56.884324][ T289] slab_free_freelist_hook+0xc2/0x190 [ 56.889707][ T289] kmem_cache_free+0x100/0x320 [ 56.894474][ T289] kfree_skbmem+0x10c/0x180 [ 56.898982][ T289] consume_skb+0xb3/0x1f0 [ 56.903320][ T289] skb_free_datagram+0x28/0xe0 [ 56.908092][ T289] __unix_dgram_recvmsg+0x9ca/0xd50 [ 56.913297][ T289] unix_dgram_recvmsg+0xc2/0xe0 [ 56.918154][ T289] sock_read_iter+0x2a2/0x340 [ 56.922862][ T289] vfs_read+0x68b/0xbe0 [ 56.927021][ T289] ksys_read+0x140/0x240 [ 56.931262][ T289] __x64_sys_read+0x7b/0x90 [ 56.935772][ T289] x64_sys_call+0x96d/0x9a0 [ 56.940288][ T289] do_syscall_64+0x4c/0xa0 [ 56.944716][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 56.950615][ T289] [ 56.952955][ T289] The buggy address belongs to the object at ffff88811f9d8000 [ 56.952955][ T289] which belongs to the cache skbuff_head_cache of size 248 [ 56.967530][ T289] The buggy address is located 0 bytes inside of [ 56.967530][ T289] 248-byte region [ffff88811f9d8000, ffff88811f9d80f8) [ 56.980634][ T289] The buggy address belongs to the page: [ 56.986263][ T289] page:ffffea00047e7600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11f9d8 [ 56.996520][ T289] flags: 0x4000000000000200(slab|zone=1) [ 57.002175][ T289] raw: 4000000000000200 0000000000000000 dead000000000122 ffff8881081aac00 [ 57.010763][ T289] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000 [ 57.019365][ T289] page dumped because: kasan: bad access detected [ 57.025776][ T289] page_owner tracks the page as allocated [ 57.031490][ T289] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 90, ts 54344119903, free_ts 52243382857 [ 57.047377][ T289] post_alloc_hook+0x192/0x1b0 [ 57.052176][ T289] prep_new_page+0x1c/0x110 [ 57.056686][ T289] get_page_from_freelist+0x2cc5/0x2d50 [ 57.062255][ T289] __alloc_pages+0x18f/0x440 [ 57.066847][ T289] new_slab+0xa1/0x4d0 [ 57.070921][ T289] ___slab_alloc+0x381/0x810 [ 57.075523][ T289] __slab_alloc+0x49/0x90 [ 57.079863][ T289] kmem_cache_alloc+0x138/0x260 [ 57.084720][ T289] __alloc_skb+0xe0/0x740 [ 57.089056][ T289] alloc_skb_with_frags+0xa8/0x620 [ 57.094170][ T289] sock_alloc_send_pskb+0x853/0x980 [ 57.099370][ T289] unix_dgram_sendmsg+0x5ea/0x1880 [ 57.104487][ T289] __sys_sendto+0x423/0x580 [ 57.108996][ T289] __x64_sys_sendto+0xe5/0x100 [ 57.113782][ T289] x64_sys_call+0x178/0x9a0 [ 57.118324][ T289] do_syscall_64+0x4c/0xa0 [ 57.122744][ T289] page last free stack trace: [ 57.127420][ T289] free_unref_page_prepare+0x542/0x550 [ 57.132887][ T289] free_unref_page_list+0x134/0x9d0 [ 57.138099][ T289] release_pages+0xfda/0x1030 [ 57.142780][ T289] __pagevec_release+0x71/0xe0 [ 57.147544][ T289] truncate_inode_pages_range+0x2f7/0xd60 [ 57.153264][ T289] truncate_setsize+0xbd/0xe0 [ 57.157968][ T289] f2fs_setattr+0xa8c/0x11b0 [ 57.162569][ T289] notify_change+0xbca/0xe90 [ 57.167174][ T289] do_truncate+0x197/0x220 [ 57.171606][ T289] path_openat+0x2769/0x2f10 [ 57.176195][ T289] do_filp_open+0x1b3/0x3e0 [ 57.180700][ T289] do_sys_openat2+0x14c/0x7b0 [ 57.185385][ T289] __x64_sys_open+0x11c/0x140 [ 57.190067][ T289] x64_sys_call+0x3fc/0x9a0 [ 57.194662][ T289] do_syscall_64+0x4c/0xa0 [ 57.199079][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 57.204976][ T289] [ 57.207300][ T289] Memory state around the buggy address: [ 57.212926][ T289] ffff88811f9d7f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 57.220988][ T289] ffff88811f9d7f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 57.229050][ T289] >ffff88811f9d8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 57.237109][ T289] ^ [ 57.241175][ T289] ffff88811f9d8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc [ 57.249262][ T289] ffff88811f9d8100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb [ 57.257332][ T289] ================================================================== [ 57.265403][ T289] Disabling lock debugging due to kernel taint [ 57.272240][ T289] F2FS-fs (loop0): access invalid blkaddr:469577728 [ 57.277161][ T30] kauditd_printk_skb: 14 callbacks suppressed [ 57.277179][ T30] audit: type=1400 audit(1756424638.524:88): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 57.278863][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 57.288450][ T30] audit: type=1400 audit(1756424638.524:89): avc: denied { search } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 57.306629][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 57.306644][ T289] Call Trace: [ 57.306651][ T289] [ 57.306658][ T289] __dump_stack+0x21/0x30 [ 57.318923][ T30] audit: type=1400 audit(1756424638.524:90): avc: denied { write } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 57.339738][ T289] dump_stack_lvl+0xee/0x150 [ 57.339773][ T289] ? show_regs_print_info+0x20/0x20 [ 57.368064][ T30] audit: type=1400 audit(1756424638.524:91): avc: denied { add_name } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 57.381567][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 57.381598][ T289] ? set_page_dirty+0x1ae/0x310 [ 57.386719][ T30] audit: type=1400 audit(1756424638.524:92): avc: denied { create } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 57.391583][ T289] dump_stack+0x15/0x20 [ 57.412246][ T30] audit: type=1400 audit(1756424638.524:93): avc: denied { append open } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 57.417673][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 57.422719][ T30] audit: type=1400 audit(1756424638.524:94): avc: denied { getattr } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 57.442815][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 57.442848][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 57.509101][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 57.514826][ T289] ? __kasan_check_write+0x14/0x20 [ 57.519935][ T289] ? data_blkaddr+0x330/0x330 [ 57.524608][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 57.530063][ T289] ? addrs_per_block+0x110/0x110 [ 57.534993][ T289] ? dquot_initialize+0x20/0x20 [ 57.539841][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 57.545036][ T289] f2fs_truncate+0x1d7/0x3d0 [ 57.549621][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 57.554379][ T289] f2fs_setattr+0xaca/0x11b0 [ 57.558966][ T289] ? f2fs_getattr+0x670/0x670 [ 57.563637][ T289] notify_change+0xbca/0xe90 [ 57.568242][ T289] do_truncate+0x197/0x220 [ 57.572650][ T289] ? dquot_file_open+0x86/0xb0 [ 57.577405][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 57.582424][ T289] path_openat+0x2769/0x2f10 [ 57.587009][ T289] ? do_syscall_64+0x4c/0xa0 [ 57.591595][ T289] ? do_filp_open+0x3e0/0x3e0 [ 57.596264][ T289] do_filp_open+0x1b3/0x3e0 [ 57.600759][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 57.605345][ T289] do_sys_openat2+0x14c/0x7b0 [ 57.610017][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 57.615210][ T289] ? do_sys_open+0xe0/0xe0 [ 57.619620][ T289] ? do_notify_parent+0x800/0x800 [ 57.624643][ T289] __x64_sys_open+0x11c/0x140 [ 57.629323][ T289] x64_sys_call+0x3fc/0x9a0 [ 57.633844][ T289] do_syscall_64+0x4c/0xa0 [ 57.638255][ T289] ? clear_bhb_loop+0x50/0xa0 [ 57.642925][ T289] ? clear_bhb_loop+0x50/0xa0 [ 57.647595][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 57.653482][ T289] RIP: 0033:0x7f7baa194e19 [ 57.657906][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 57.677505][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 57.685909][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 57.693875][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 57.701847][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 57.709836][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 57.717802][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 57.725789][ T289] [ 57.729226][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 57.736063][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 57.747950][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 57.757999][ T289] Call Trace: [ 57.761275][ T289] [ 57.764202][ T289] __dump_stack+0x21/0x30 [ 57.768531][ T289] dump_stack_lvl+0xee/0x150 [ 57.773143][ T289] ? show_regs_print_info+0x20/0x20 [ 57.778346][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 57.784070][ T289] ? set_page_dirty+0x1ae/0x310 [ 57.788931][ T289] dump_stack+0x15/0x20 [ 57.793094][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 57.798476][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 57.804642][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 57.810191][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 57.815918][ T289] ? __kasan_check_write+0x14/0x20 [ 57.821039][ T289] ? data_blkaddr+0x330/0x330 [ 57.825731][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 57.831192][ T289] ? addrs_per_block+0x110/0x110 [ 57.836137][ T289] ? dquot_initialize+0x20/0x20 [ 57.840995][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 57.846197][ T289] f2fs_truncate+0x1d7/0x3d0 [ 57.850796][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 57.855565][ T289] f2fs_setattr+0xaca/0x11b0 [ 57.860164][ T289] ? f2fs_getattr+0x670/0x670 [ 57.864842][ T289] notify_change+0xbca/0xe90 [ 57.869439][ T289] do_truncate+0x197/0x220 [ 57.873867][ T289] ? dquot_file_open+0x86/0xb0 [ 57.878641][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 57.883678][ T289] path_openat+0x2769/0x2f10 [ 57.888279][ T289] ? do_syscall_64+0x4c/0xa0 [ 57.892876][ T289] ? do_filp_open+0x3e0/0x3e0 [ 57.897557][ T289] do_filp_open+0x1b3/0x3e0 [ 57.902062][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 57.906662][ T289] do_sys_openat2+0x14c/0x7b0 [ 57.911346][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 57.916550][ T289] ? do_sys_open+0xe0/0xe0 [ 57.920977][ T289] ? do_notify_parent+0x800/0x800 [ 57.926031][ T289] __x64_sys_open+0x11c/0x140 [ 57.930723][ T289] x64_sys_call+0x3fc/0x9a0 [ 57.935235][ T289] do_syscall_64+0x4c/0xa0 [ 57.939660][ T289] ? clear_bhb_loop+0x50/0xa0 [ 57.944351][ T289] ? clear_bhb_loop+0x50/0xa0 [ 57.949029][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 57.954932][ T289] RIP: 0033:0x7f7baa194e19 [ 57.959354][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 57.978964][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 57.987823][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 57.995805][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 58.003780][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 58.011757][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 58.019736][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 58.027719][ T289] [ 58.030954][ T289] F2FS-fs (loop0): access invalid blkaddr:83 [ 58.037063][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 58.048998][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 58.059078][ T289] Call Trace: [ 58.062350][ T289] [ 58.065273][ T289] __dump_stack+0x21/0x30 [ 58.069600][ T289] dump_stack_lvl+0xee/0x150 [ 58.074190][ T289] ? show_regs_print_info+0x20/0x20 [ 58.079385][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 58.085100][ T289] ? set_page_dirty+0x1ae/0x310 [ 58.089957][ T289] dump_stack+0x15/0x20 [ 58.094112][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 58.099508][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 58.105677][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 58.111226][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 58.116965][ T289] ? __kasan_check_write+0x14/0x20 [ 58.122076][ T289] ? data_blkaddr+0x330/0x330 [ 58.126761][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 58.132216][ T289] ? addrs_per_block+0x110/0x110 [ 58.137155][ T289] ? dquot_initialize+0x20/0x20 [ 58.142011][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 58.147210][ T289] f2fs_truncate+0x1d7/0x3d0 [ 58.151799][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 58.156573][ T289] f2fs_setattr+0xaca/0x11b0 [ 58.161174][ T289] ? f2fs_getattr+0x670/0x670 [ 58.165866][ T289] notify_change+0xbca/0xe90 [ 58.170468][ T289] do_truncate+0x197/0x220 [ 58.174892][ T289] ? dquot_file_open+0x86/0xb0 [ 58.179658][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 58.184687][ T289] path_openat+0x2769/0x2f10 [ 58.189277][ T289] ? do_syscall_64+0x4c/0xa0 [ 58.193872][ T289] ? do_filp_open+0x3e0/0x3e0 [ 58.198571][ T289] do_filp_open+0x1b3/0x3e0 [ 58.203077][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 58.207669][ T289] do_sys_openat2+0x14c/0x7b0 [ 58.212345][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 58.217783][ T289] ? do_sys_open+0xe0/0xe0 [ 58.222213][ T289] ? do_notify_parent+0x800/0x800 [ 58.227258][ T289] __x64_sys_open+0x11c/0x140 [ 58.231936][ T289] x64_sys_call+0x3fc/0x9a0 [ 58.236444][ T289] do_syscall_64+0x4c/0xa0 [ 58.240856][ T289] ? clear_bhb_loop+0x50/0xa0 [ 58.245552][ T289] ? clear_bhb_loop+0x50/0xa0 [ 58.250231][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 58.256128][ T289] RIP: 0033:0x7f7baa194e19 [ 58.260546][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 58.280253][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 58.288674][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 58.296655][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 58.304627][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 58.312615][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 58.320698][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 58.328689][ T289] [ 58.331843][ T289] F2FS-fs (loop0): access invalid blkaddr:2757755108 [ 58.338547][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 58.350520][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 58.360584][ T289] Call Trace: [ 58.363856][ T289] [ 58.366781][ T289] __dump_stack+0x21/0x30 [ 58.371114][ T289] dump_stack_lvl+0xee/0x150 [ 58.375703][ T289] ? show_regs_print_info+0x20/0x20 [ 58.380899][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 58.386617][ T289] ? set_page_dirty+0x1ae/0x310 [ 58.391480][ T289] dump_stack+0x15/0x20 [ 58.395764][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 58.401277][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 58.407458][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 58.413013][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 58.418733][ T289] ? __kasan_check_write+0x14/0x20 [ 58.423839][ T289] ? data_blkaddr+0x330/0x330 [ 58.428537][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 58.434005][ T289] ? addrs_per_block+0x110/0x110 [ 58.438957][ T289] ? dquot_initialize+0x20/0x20 [ 58.443879][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 58.449083][ T289] f2fs_truncate+0x1d7/0x3d0 [ 58.453674][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 58.458582][ T289] f2fs_setattr+0xaca/0x11b0 [ 58.463199][ T289] ? f2fs_getattr+0x670/0x670 [ 58.467899][ T289] notify_change+0xbca/0xe90 [ 58.472489][ T289] do_truncate+0x197/0x220 [ 58.476915][ T289] ? dquot_file_open+0x86/0xb0 [ 58.481794][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 58.487098][ T289] path_openat+0x2769/0x2f10 [ 58.491686][ T289] ? do_syscall_64+0x4c/0xa0 [ 58.496274][ T289] ? do_filp_open+0x3e0/0x3e0 [ 58.500946][ T289] do_filp_open+0x1b3/0x3e0 [ 58.505449][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 58.510039][ T289] do_sys_openat2+0x14c/0x7b0 [ 58.514713][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 58.519906][ T289] ? do_sys_open+0xe0/0xe0 [ 58.524320][ T289] ? do_notify_parent+0x800/0x800 [ 58.529338][ T289] __x64_sys_open+0x11c/0x140 [ 58.534012][ T289] x64_sys_call+0x3fc/0x9a0 [ 58.538515][ T289] do_syscall_64+0x4c/0xa0 [ 58.542928][ T289] ? clear_bhb_loop+0x50/0xa0 [ 58.547604][ T289] ? clear_bhb_loop+0x50/0xa0 [ 58.552299][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 58.558208][ T289] RIP: 0033:0x7f7baa194e19 [ 58.562638][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 58.582325][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 58.590734][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 58.598699][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 58.606666][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 58.614630][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 58.622595][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 58.630565][ T289] [ 58.633760][ T289] F2FS-fs (loop0): access invalid blkaddr:204884608 [ 58.640366][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 58.652258][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 58.662311][ T289] Call Trace: [ 58.665591][ T289] [ 58.668526][ T289] __dump_stack+0x21/0x30 [ 58.672865][ T289] dump_stack_lvl+0xee/0x150 [ 58.677455][ T289] ? show_regs_print_info+0x20/0x20 [ 58.682680][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 58.688406][ T289] ? set_page_dirty+0x1ae/0x310 [ 58.693263][ T289] dump_stack+0x15/0x20 [ 58.697422][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 58.702801][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 58.708968][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 58.714517][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 58.720240][ T289] ? __kasan_check_write+0x14/0x20 [ 58.725367][ T289] ? data_blkaddr+0x330/0x330 [ 58.730055][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 58.735526][ T289] ? addrs_per_block+0x110/0x110 [ 58.740464][ T289] ? dquot_initialize+0x20/0x20 [ 58.745319][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 58.750524][ T289] f2fs_truncate+0x1d7/0x3d0 [ 58.755118][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 58.759890][ T289] f2fs_setattr+0xaca/0x11b0 [ 58.764488][ T289] ? f2fs_getattr+0x670/0x670 [ 58.769171][ T289] notify_change+0xbca/0xe90 [ 58.773765][ T289] do_truncate+0x197/0x220 [ 58.778189][ T289] ? dquot_file_open+0x86/0xb0 [ 58.782954][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 58.787985][ T289] path_openat+0x2769/0x2f10 [ 58.792582][ T289] ? do_syscall_64+0x4c/0xa0 [ 58.797181][ T289] ? do_filp_open+0x3e0/0x3e0 [ 58.801867][ T289] do_filp_open+0x1b3/0x3e0 [ 58.806375][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 58.810990][ T289] do_sys_openat2+0x14c/0x7b0 [ 58.815698][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 58.820934][ T289] ? do_sys_open+0xe0/0xe0 [ 58.825390][ T289] ? do_notify_parent+0x800/0x800 [ 58.830441][ T289] __x64_sys_open+0x11c/0x140 [ 58.835149][ T289] x64_sys_call+0x3fc/0x9a0 [ 58.839657][ T289] do_syscall_64+0x4c/0xa0 [ 58.844077][ T289] ? clear_bhb_loop+0x50/0xa0 [ 58.848758][ T289] ? clear_bhb_loop+0x50/0xa0 [ 58.853441][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 58.859346][ T289] RIP: 0033:0x7f7baa194e19 [ 58.863785][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 58.883447][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 58.891876][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 58.899881][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 58.907860][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 58.915832][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 58.923812][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 58.931801][ T289] [ 58.934881][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 58.941568][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 58.953469][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 58.963518][ T289] Call Trace: [ 58.966796][ T289] [ 58.969748][ T289] __dump_stack+0x21/0x30 [ 58.974079][ T289] dump_stack_lvl+0xee/0x150 [ 58.978667][ T289] ? show_regs_print_info+0x20/0x20 [ 58.983867][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 58.989583][ T289] ? set_page_dirty+0x1ae/0x310 [ 58.994435][ T289] dump_stack+0x15/0x20 [ 58.998588][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 59.003961][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 59.010116][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 59.015662][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 59.021384][ T289] ? __kasan_check_write+0x14/0x20 [ 59.026502][ T289] ? data_blkaddr+0x330/0x330 [ 59.031180][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 59.036653][ T289] ? addrs_per_block+0x110/0x110 [ 59.041614][ T289] ? dquot_initialize+0x20/0x20 [ 59.046467][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 59.051664][ T289] f2fs_truncate+0x1d7/0x3d0 [ 59.056254][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 59.061016][ T289] f2fs_setattr+0xaca/0x11b0 [ 59.065603][ T289] ? f2fs_getattr+0x670/0x670 [ 59.070277][ T289] notify_change+0xbca/0xe90 [ 59.074863][ T289] do_truncate+0x197/0x220 [ 59.079279][ T289] ? dquot_file_open+0x86/0xb0 [ 59.084040][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 59.089066][ T289] path_openat+0x2769/0x2f10 [ 59.093663][ T289] ? do_syscall_64+0x4c/0xa0 [ 59.098250][ T289] ? do_filp_open+0x3e0/0x3e0 [ 59.102924][ T289] do_filp_open+0x1b3/0x3e0 [ 59.107427][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 59.112018][ T289] do_sys_openat2+0x14c/0x7b0 [ 59.116692][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 59.121889][ T289] ? do_sys_open+0xe0/0xe0 [ 59.126303][ T289] ? do_notify_parent+0x800/0x800 [ 59.131327][ T289] __x64_sys_open+0x11c/0x140 [ 59.136002][ T289] x64_sys_call+0x3fc/0x9a0 [ 59.140504][ T289] do_syscall_64+0x4c/0xa0 [ 59.144918][ T289] ? clear_bhb_loop+0x50/0xa0 [ 59.149593][ T289] ? clear_bhb_loop+0x50/0xa0 [ 59.154285][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 59.160175][ T289] RIP: 0033:0x7f7baa194e19 [ 59.164607][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 59.184208][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 59.192617][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 59.200583][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 59.208549][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 59.216512][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 59.224479][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 59.232449][ T289] [ 59.235894][ T289] F2FS-fs (loop0): access invalid blkaddr:74 [ 59.241942][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 59.253847][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 59.264158][ T289] Call Trace: [ 59.267436][ T289] [ 59.270363][ T289] __dump_stack+0x21/0x30 [ 59.274721][ T289] dump_stack_lvl+0xee/0x150 [ 59.279304][ T289] ? show_regs_print_info+0x20/0x20 [ 59.284497][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 59.290652][ T289] ? set_page_dirty+0x1ae/0x310 [ 59.295499][ T289] dump_stack+0x15/0x20 [ 59.299655][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 59.305026][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 59.311181][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 59.316729][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 59.322446][ T289] ? __kasan_check_write+0x14/0x20 [ 59.327770][ T289] ? data_blkaddr+0x330/0x330 [ 59.332529][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 59.337996][ T289] ? addrs_per_block+0x110/0x110 [ 59.342968][ T289] ? dquot_initialize+0x20/0x20 [ 59.347866][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 59.353072][ T289] f2fs_truncate+0x1d7/0x3d0 [ 59.357662][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 59.362425][ T289] f2fs_setattr+0xaca/0x11b0 [ 59.367017][ T289] ? f2fs_getattr+0x670/0x670 [ 59.371692][ T289] notify_change+0xbca/0xe90 [ 59.376300][ T289] do_truncate+0x197/0x220 [ 59.380713][ T289] ? dquot_file_open+0x86/0xb0 [ 59.385474][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 59.390503][ T289] path_openat+0x2769/0x2f10 [ 59.395095][ T289] ? do_syscall_64+0x4c/0xa0 [ 59.399687][ T289] ? do_filp_open+0x3e0/0x3e0 [ 59.404363][ T289] do_filp_open+0x1b3/0x3e0 [ 59.408868][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 59.413460][ T289] do_sys_openat2+0x14c/0x7b0 [ 59.418137][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 59.423334][ T289] ? do_sys_open+0xe0/0xe0 [ 59.427768][ T289] ? do_notify_parent+0x800/0x800 [ 59.432924][ T289] __x64_sys_open+0x11c/0x140 [ 59.437641][ T289] x64_sys_call+0x3fc/0x9a0 [ 59.442152][ T289] do_syscall_64+0x4c/0xa0 [ 59.446580][ T289] ? clear_bhb_loop+0x50/0xa0 [ 59.451259][ T289] ? clear_bhb_loop+0x50/0xa0 [ 59.455946][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 59.461849][ T289] RIP: 0033:0x7f7baa194e19 [ 59.466268][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 59.485879][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 59.494298][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 59.502285][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 59.510275][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 59.518254][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 59.526234][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 59.534217][ T289] [ 59.537324][ T289] F2FS-fs (loop0): access invalid blkaddr:2216398672 [ 59.544070][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 59.556583][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 59.566645][ T289] Call Trace: [ 59.569925][ T289] [ 59.572858][ T289] __dump_stack+0x21/0x30 [ 59.577195][ T289] dump_stack_lvl+0xee/0x150 [ 59.581795][ T289] ? show_regs_print_info+0x20/0x20 [ 59.586996][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 59.592720][ T289] ? set_page_dirty+0x1ae/0x310 [ 59.597580][ T289] dump_stack+0x15/0x20 [ 59.601741][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 59.607138][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 59.613411][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 59.618977][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 59.624716][ T289] ? __kasan_check_write+0x14/0x20 [ 59.629832][ T289] ? data_blkaddr+0x330/0x330 [ 59.634519][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 59.640006][ T289] ? addrs_per_block+0x110/0x110 [ 59.644967][ T289] ? dquot_initialize+0x20/0x20 [ 59.649830][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 59.655044][ T289] f2fs_truncate+0x1d7/0x3d0 [ 59.659656][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 59.664425][ T289] f2fs_setattr+0xaca/0x11b0 [ 59.669021][ T289] ? f2fs_getattr+0x670/0x670 [ 59.673699][ T289] notify_change+0xbca/0xe90 [ 59.678305][ T289] do_truncate+0x197/0x220 [ 59.682723][ T289] ? dquot_file_open+0x86/0xb0 [ 59.687494][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 59.692528][ T289] path_openat+0x2769/0x2f10 [ 59.697139][ T289] ? do_syscall_64+0x4c/0xa0 [ 59.701736][ T289] ? do_filp_open+0x3e0/0x3e0 [ 59.706434][ T289] do_filp_open+0x1b3/0x3e0 [ 59.710940][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 59.715538][ T289] do_sys_openat2+0x14c/0x7b0 [ 59.720225][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 59.725429][ T289] ? do_sys_open+0xe0/0xe0 [ 59.729850][ T289] ? do_notify_parent+0x800/0x800 [ 59.734882][ T289] __x64_sys_open+0x11c/0x140 [ 59.739566][ T289] x64_sys_call+0x3fc/0x9a0 [ 59.744069][ T289] do_syscall_64+0x4c/0xa0 [ 59.748495][ T289] ? clear_bhb_loop+0x50/0xa0 [ 59.753181][ T289] ? clear_bhb_loop+0x50/0xa0 [ 59.757871][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 59.763775][ T289] RIP: 0033:0x7f7baa194e19 [ 59.768194][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 59.787824][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 59.796246][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 59.804218][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 59.812194][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 59.820179][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 59.828165][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 59.836144][ T289] [ 59.839286][ T289] F2FS-fs (loop0): access invalid blkaddr:83 [ 59.845305][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 59.857190][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 59.867241][ T289] Call Trace: [ 59.870519][ T289] [ 59.873448][ T289] __dump_stack+0x21/0x30 [ 59.877782][ T289] dump_stack_lvl+0xee/0x150 [ 59.882490][ T289] ? show_regs_print_info+0x20/0x20 [ 59.887698][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 59.893430][ T289] ? set_page_dirty+0x1ae/0x310 [ 59.898296][ T289] dump_stack+0x15/0x20 [ 59.902450][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 59.907823][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 59.913978][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 59.919521][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 59.925240][ T289] ? __kasan_check_write+0x14/0x20 [ 59.930356][ T289] ? data_blkaddr+0x330/0x330 [ 59.935034][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 59.940531][ T289] ? addrs_per_block+0x110/0x110 [ 59.945496][ T289] ? dquot_initialize+0x20/0x20 [ 59.950468][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 59.955670][ T289] f2fs_truncate+0x1d7/0x3d0 [ 59.960256][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 59.965021][ T289] f2fs_setattr+0xaca/0x11b0 [ 59.969614][ T289] ? f2fs_getattr+0x670/0x670 [ 59.974289][ T289] notify_change+0xbca/0xe90 [ 59.978876][ T289] do_truncate+0x197/0x220 [ 59.983301][ T289] ? dquot_file_open+0x86/0xb0 [ 59.988063][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 59.993084][ T289] path_openat+0x2769/0x2f10 [ 59.997672][ T289] ? do_syscall_64+0x4c/0xa0 [ 60.002263][ T289] ? do_filp_open+0x3e0/0x3e0 [ 60.006936][ T289] do_filp_open+0x1b3/0x3e0 [ 60.011433][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 60.016026][ T289] do_sys_openat2+0x14c/0x7b0 [ 60.020702][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 60.025898][ T289] ? do_sys_open+0xe0/0xe0 [ 60.030317][ T289] ? do_notify_parent+0x800/0x800 [ 60.035351][ T289] __x64_sys_open+0x11c/0x140 [ 60.040025][ T289] x64_sys_call+0x3fc/0x9a0 [ 60.044524][ T289] do_syscall_64+0x4c/0xa0 [ 60.048939][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.053631][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.058411][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 60.064312][ T289] RIP: 0033:0x7f7baa194e19 [ 60.068726][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.088325][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 60.096745][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 60.104732][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 60.112705][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 60.120674][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 60.128639][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 60.136623][ T289] [ 60.139803][ T289] F2FS-fs (loop0): access invalid blkaddr:4294901760 [ 60.146531][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 60.158419][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 60.168473][ T289] Call Trace: [ 60.171754][ T289] [ 60.174682][ T289] __dump_stack+0x21/0x30 [ 60.179031][ T289] dump_stack_lvl+0xee/0x150 [ 60.183619][ T289] ? show_regs_print_info+0x20/0x20 [ 60.188812][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 60.194550][ T289] ? set_page_dirty+0x1ae/0x310 [ 60.199492][ T289] dump_stack+0x15/0x20 [ 60.203644][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 60.209015][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 60.215169][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 60.220714][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 60.226429][ T289] ? __kasan_check_write+0x14/0x20 [ 60.231542][ T289] ? data_blkaddr+0x330/0x330 [ 60.236217][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 60.241672][ T289] ? addrs_per_block+0x110/0x110 [ 60.246697][ T289] ? dquot_initialize+0x20/0x20 [ 60.251685][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 60.256918][ T289] f2fs_truncate+0x1d7/0x3d0 [ 60.261519][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 60.266291][ T289] f2fs_setattr+0xaca/0x11b0 [ 60.270884][ T289] ? f2fs_getattr+0x670/0x670 [ 60.275676][ T289] notify_change+0xbca/0xe90 [ 60.280264][ T289] do_truncate+0x197/0x220 [ 60.284673][ T289] ? dquot_file_open+0x86/0xb0 [ 60.289445][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 60.294483][ T289] path_openat+0x2769/0x2f10 [ 60.299085][ T289] ? do_syscall_64+0x4c/0xa0 [ 60.303673][ T289] ? do_filp_open+0x3e0/0x3e0 [ 60.308423][ T289] do_filp_open+0x1b3/0x3e0 [ 60.312920][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 60.317503][ T289] do_sys_openat2+0x14c/0x7b0 [ 60.322173][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 60.327488][ T289] ? do_sys_open+0xe0/0xe0 [ 60.331919][ T289] ? do_notify_parent+0x800/0x800 [ 60.336957][ T289] __x64_sys_open+0x11c/0x140 [ 60.341671][ T289] x64_sys_call+0x3fc/0x9a0 [ 60.346183][ T289] do_syscall_64+0x4c/0xa0 [ 60.350632][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.355320][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.360006][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 60.365909][ T289] RIP: 0033:0x7f7baa194e19 [ 60.370341][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.389957][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 60.398380][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 60.406359][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 60.414333][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 60.422310][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 60.430287][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 60.438283][ T289] [ 60.441399][ T289] F2FS-fs (loop0): access invalid blkaddr:4294901760 [ 60.448171][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 60.460072][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 60.470127][ T289] Call Trace: [ 60.473420][ T289] [ 60.476351][ T289] __dump_stack+0x21/0x30 [ 60.480680][ T289] dump_stack_lvl+0xee/0x150 [ 60.485274][ T289] ? show_regs_print_info+0x20/0x20 [ 60.490560][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 60.496282][ T289] ? set_page_dirty+0x1ae/0x310 [ 60.501153][ T289] dump_stack+0x15/0x20 [ 60.505303][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 60.510692][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 60.516845][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 60.522541][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 60.528256][ T289] ? __kasan_check_write+0x14/0x20 [ 60.533381][ T289] ? data_blkaddr+0x330/0x330 [ 60.538059][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 60.543517][ T289] ? addrs_per_block+0x110/0x110 [ 60.548571][ T289] ? dquot_initialize+0x20/0x20 [ 60.553441][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 60.558653][ T289] f2fs_truncate+0x1d7/0x3d0 [ 60.563244][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 60.568007][ T289] f2fs_setattr+0xaca/0x11b0 [ 60.572601][ T289] ? f2fs_getattr+0x670/0x670 [ 60.577278][ T289] notify_change+0xbca/0xe90 [ 60.581870][ T289] do_truncate+0x197/0x220 [ 60.586305][ T289] ? dquot_file_open+0x86/0xb0 [ 60.591072][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 60.596126][ T289] path_openat+0x2769/0x2f10 [ 60.600720][ T289] ? do_syscall_64+0x4c/0xa0 [ 60.605310][ T289] ? do_filp_open+0x3e0/0x3e0 [ 60.609986][ T289] do_filp_open+0x1b3/0x3e0 [ 60.614492][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 60.619090][ T289] do_sys_openat2+0x14c/0x7b0 [ 60.623782][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 60.628997][ T289] ? do_sys_open+0xe0/0xe0 [ 60.633576][ T289] ? do_notify_parent+0x800/0x800 [ 60.638626][ T289] __x64_sys_open+0x11c/0x140 [ 60.643312][ T289] x64_sys_call+0x3fc/0x9a0 [ 60.647819][ T289] do_syscall_64+0x4c/0xa0 [ 60.652240][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.656920][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.661601][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 60.667495][ T289] RIP: 0033:0x7f7baa194e19 [ 60.671913][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.691620][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 60.700055][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 60.708036][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 60.716010][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 60.723980][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 60.731949][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 60.739925][ T289] [ 60.743035][ T289] F2FS-fs (loop0): access invalid blkaddr:83 [ 60.749062][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 60.760944][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 60.771014][ T289] Call Trace: [ 60.774286][ T289] [ 60.777210][ T289] __dump_stack+0x21/0x30 [ 60.781639][ T289] dump_stack_lvl+0xee/0x150 [ 60.786237][ T289] ? show_regs_print_info+0x20/0x20 [ 60.791434][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 60.797157][ T289] ? set_page_dirty+0x1ae/0x310 [ 60.802006][ T289] dump_stack+0x15/0x20 [ 60.806162][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 60.811561][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 60.817717][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 60.823268][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 60.828986][ T289] ? __kasan_check_write+0x14/0x20 [ 60.834113][ T289] ? data_blkaddr+0x330/0x330 [ 60.838949][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 60.844421][ T289] ? addrs_per_block+0x110/0x110 [ 60.849362][ T289] ? dquot_initialize+0x20/0x20 [ 60.854215][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 60.859418][ T289] f2fs_truncate+0x1d7/0x3d0 [ 60.864010][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 60.868771][ T289] f2fs_setattr+0xaca/0x11b0 [ 60.873365][ T289] ? f2fs_getattr+0x670/0x670 [ 60.878042][ T289] notify_change+0xbca/0xe90 [ 60.882653][ T289] do_truncate+0x197/0x220 [ 60.887088][ T289] ? dquot_file_open+0x86/0xb0 [ 60.891878][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 60.896913][ T289] path_openat+0x2769/0x2f10 [ 60.901513][ T289] ? do_syscall_64+0x4c/0xa0 [ 60.906121][ T289] ? do_filp_open+0x3e0/0x3e0 [ 60.910803][ T289] do_filp_open+0x1b3/0x3e0 [ 60.915327][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 60.919919][ T289] do_sys_openat2+0x14c/0x7b0 [ 60.924606][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 60.929805][ T289] ? do_sys_open+0xe0/0xe0 [ 60.934234][ T289] ? do_notify_parent+0x800/0x800 [ 60.939280][ T289] __x64_sys_open+0x11c/0x140 [ 60.943958][ T289] x64_sys_call+0x3fc/0x9a0 [ 60.948457][ T289] do_syscall_64+0x4c/0xa0 [ 60.952878][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.957567][ T289] ? clear_bhb_loop+0x50/0xa0 [ 60.962251][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 60.968151][ T289] RIP: 0033:0x7f7baa194e19 [ 60.972586][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.992213][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 61.000649][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 61.008625][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 61.016747][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 61.024828][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 61.032825][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 61.040843][ T289] [ 61.043969][ T289] F2FS-fs (loop0): access invalid blkaddr:128 [ 61.050062][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 61.061957][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 61.072018][ T289] Call Trace: [ 61.075305][ T289] [ 61.078240][ T289] __dump_stack+0x21/0x30 [ 61.082583][ T289] dump_stack_lvl+0xee/0x150 [ 61.087177][ T289] ? show_regs_print_info+0x20/0x20 [ 61.092375][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 61.098126][ T289] ? set_page_dirty+0x1ae/0x310 [ 61.102981][ T289] dump_stack+0x15/0x20 [ 61.107170][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 61.112558][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 61.118750][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 61.124323][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 61.130081][ T289] ? __kasan_check_write+0x14/0x20 [ 61.135214][ T289] ? data_blkaddr+0x330/0x330 [ 61.139913][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 61.145390][ T289] ? addrs_per_block+0x110/0x110 [ 61.150334][ T289] ? dquot_initialize+0x20/0x20 [ 61.155197][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 61.160406][ T289] f2fs_truncate+0x1d7/0x3d0 [ 61.165000][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 61.169767][ T289] f2fs_setattr+0xaca/0x11b0 [ 61.174362][ T289] ? f2fs_getattr+0x670/0x670 [ 61.179049][ T289] notify_change+0xbca/0xe90 [ 61.183647][ T289] do_truncate+0x197/0x220 [ 61.188063][ T289] ? dquot_file_open+0x86/0xb0 [ 61.192837][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 61.197871][ T289] path_openat+0x2769/0x2f10 [ 61.202471][ T289] ? do_syscall_64+0x4c/0xa0 [ 61.207072][ T289] ? do_filp_open+0x3e0/0x3e0 [ 61.211761][ T289] do_filp_open+0x1b3/0x3e0 [ 61.216278][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 61.220880][ T289] do_sys_openat2+0x14c/0x7b0 [ 61.225678][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 61.230900][ T289] ? do_sys_open+0xe0/0xe0 [ 61.235326][ T289] ? do_notify_parent+0x800/0x800 [ 61.240372][ T289] __x64_sys_open+0x11c/0x140 [ 61.245081][ T289] x64_sys_call+0x3fc/0x9a0 [ 61.249593][ T289] do_syscall_64+0x4c/0xa0 [ 61.254015][ T289] ? clear_bhb_loop+0x50/0xa0 [ 61.258696][ T289] ? clear_bhb_loop+0x50/0xa0 [ 61.263380][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 61.269287][ T289] RIP: 0033:0x7f7baa194e19 [ 61.273746][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 61.293361][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 61.301798][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 61.309776][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 61.317748][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 61.325720][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 61.333694][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 61.341676][ T289] [ 61.344805][ T289] F2FS-fs (loop0): access invalid blkaddr:469580800 [ 61.351415][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 61.363310][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 61.373364][ T289] Call Trace: [ 61.376663][ T289] [ 61.379600][ T289] __dump_stack+0x21/0x30 [ 61.383939][ T289] dump_stack_lvl+0xee/0x150 [ 61.388537][ T289] ? show_regs_print_info+0x20/0x20 [ 61.393740][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 61.399465][ T289] ? set_page_dirty+0x1ae/0x310 [ 61.404321][ T289] dump_stack+0x15/0x20 [ 61.408484][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 61.413998][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 61.420175][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 61.425739][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 61.431472][ T289] ? __kasan_check_write+0x14/0x20 [ 61.436592][ T289] ? data_blkaddr+0x330/0x330 [ 61.441283][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 61.446756][ T289] ? addrs_per_block+0x110/0x110 [ 61.451700][ T289] ? dquot_initialize+0x20/0x20 [ 61.456561][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 61.461769][ T289] f2fs_truncate+0x1d7/0x3d0 [ 61.466376][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 61.471148][ T289] f2fs_setattr+0xaca/0x11b0 [ 61.475785][ T289] ? f2fs_getattr+0x670/0x670 [ 61.480477][ T289] notify_change+0xbca/0xe90 [ 61.485081][ T289] do_truncate+0x197/0x220 [ 61.489505][ T289] ? dquot_file_open+0x86/0xb0 [ 61.494276][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 61.499309][ T289] path_openat+0x2769/0x2f10 [ 61.503906][ T289] ? do_syscall_64+0x4c/0xa0 [ 61.508505][ T289] ? do_filp_open+0x3e0/0x3e0 [ 61.513208][ T289] do_filp_open+0x1b3/0x3e0 [ 61.517716][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 61.522323][ T289] do_sys_openat2+0x14c/0x7b0 [ 61.527098][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 61.532318][ T289] ? do_sys_open+0xe0/0xe0 [ 61.536769][ T289] ? do_notify_parent+0x800/0x800 [ 61.541800][ T289] __x64_sys_open+0x11c/0x140 [ 61.546676][ T289] x64_sys_call+0x3fc/0x9a0 [ 61.551207][ T289] do_syscall_64+0x4c/0xa0 [ 61.555740][ T289] ? clear_bhb_loop+0x50/0xa0 [ 61.560448][ T289] ? clear_bhb_loop+0x50/0xa0 [ 61.565142][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 61.571046][ T289] RIP: 0033:0x7f7baa194e19 [ 61.575475][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 61.595394][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 61.603818][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 61.612014][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 61.619987][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 61.627959][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 61.635937][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 61.643914][ T289] [ 61.647021][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 61.653752][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 61.665636][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 61.675686][ T289] Call Trace: [ 61.678966][ T289] [ 61.681894][ T289] __dump_stack+0x21/0x30 [ 61.686232][ T289] dump_stack_lvl+0xee/0x150 [ 61.690840][ T289] ? show_regs_print_info+0x20/0x20 [ 61.696034][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 61.701750][ T289] ? set_page_dirty+0x1ae/0x310 [ 61.706605][ T289] dump_stack+0x15/0x20 [ 61.710767][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 61.716159][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 61.722313][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 61.727870][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 61.733604][ T289] ? __kasan_check_write+0x14/0x20 [ 61.738712][ T289] ? data_blkaddr+0x330/0x330 [ 61.743396][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 61.748908][ T289] ? addrs_per_block+0x110/0x110 [ 61.753854][ T289] ? dquot_initialize+0x20/0x20 [ 61.758704][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 61.763898][ T289] f2fs_truncate+0x1d7/0x3d0 [ 61.768484][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 61.773245][ T289] f2fs_setattr+0xaca/0x11b0 [ 61.777833][ T289] ? f2fs_getattr+0x670/0x670 [ 61.782508][ T289] notify_change+0xbca/0xe90 [ 61.787102][ T289] do_truncate+0x197/0x220 [ 61.791520][ T289] ? dquot_file_open+0x86/0xb0 [ 61.796280][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 61.801308][ T289] path_openat+0x2769/0x2f10 [ 61.805908][ T289] ? do_syscall_64+0x4c/0xa0 [ 61.810496][ T289] ? do_filp_open+0x3e0/0x3e0 [ 61.815170][ T289] do_filp_open+0x1b3/0x3e0 [ 61.819672][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 61.824259][ T289] do_sys_openat2+0x14c/0x7b0 [ 61.828932][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 61.834144][ T289] ? do_sys_open+0xe0/0xe0 [ 61.838573][ T289] ? do_notify_parent+0x800/0x800 [ 61.843633][ T289] __x64_sys_open+0x11c/0x140 [ 61.848325][ T289] x64_sys_call+0x3fc/0x9a0 [ 61.852825][ T289] do_syscall_64+0x4c/0xa0 [ 61.857242][ T289] ? clear_bhb_loop+0x50/0xa0 [ 61.861926][ T289] ? clear_bhb_loop+0x50/0xa0 [ 61.866607][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 61.872506][ T289] RIP: 0033:0x7f7baa194e19 [ 61.876918][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 61.896518][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 61.904928][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 61.912892][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 61.920874][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 61.928842][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 61.936926][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 61.944911][ T289] [ 61.948022][ T289] F2FS-fs (loop0): access invalid blkaddr:469580800 [ 61.954652][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 61.966538][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 61.976603][ T289] Call Trace: [ 61.979879][ T289] [ 61.982806][ T289] __dump_stack+0x21/0x30 [ 61.987141][ T289] dump_stack_lvl+0xee/0x150 [ 61.991725][ T289] ? show_regs_print_info+0x20/0x20 [ 61.996939][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 62.002672][ T289] ? set_page_dirty+0x1ae/0x310 [ 62.007530][ T289] dump_stack+0x15/0x20 [ 62.011686][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 62.017145][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 62.023300][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 62.028843][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 62.034583][ T289] ? __kasan_check_write+0x14/0x20 [ 62.039693][ T289] ? data_blkaddr+0x330/0x330 [ 62.044367][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 62.049831][ T289] ? addrs_per_block+0x110/0x110 [ 62.054765][ T289] ? dquot_initialize+0x20/0x20 [ 62.059614][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 62.064926][ T289] f2fs_truncate+0x1d7/0x3d0 [ 62.069528][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 62.074424][ T289] f2fs_setattr+0xaca/0x11b0 [ 62.079025][ T289] ? f2fs_getattr+0x670/0x670 [ 62.083838][ T289] notify_change+0xbca/0xe90 [ 62.088437][ T289] do_truncate+0x197/0x220 [ 62.092854][ T289] ? dquot_file_open+0x86/0xb0 [ 62.097618][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 62.102666][ T289] path_openat+0x2769/0x2f10 [ 62.107266][ T289] ? do_syscall_64+0x4c/0xa0 [ 62.111858][ T289] ? do_filp_open+0x3e0/0x3e0 [ 62.116567][ T289] do_filp_open+0x1b3/0x3e0 [ 62.121076][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 62.125675][ T289] do_sys_openat2+0x14c/0x7b0 [ 62.130358][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 62.135564][ T289] ? do_sys_open+0xe0/0xe0 [ 62.140014][ T289] ? do_notify_parent+0x800/0x800 [ 62.145046][ T289] __x64_sys_open+0x11c/0x140 [ 62.149732][ T289] x64_sys_call+0x3fc/0x9a0 [ 62.154238][ T289] do_syscall_64+0x4c/0xa0 [ 62.158660][ T289] ? clear_bhb_loop+0x50/0xa0 [ 62.163358][ T289] ? clear_bhb_loop+0x50/0xa0 [ 62.168042][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 62.173940][ T289] RIP: 0033:0x7f7baa194e19 [ 62.178359][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 62.198081][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 62.206506][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 62.214491][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 62.222474][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 62.230457][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 62.238435][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 62.246428][ T289] [ 62.249579][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 62.256316][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 62.268213][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 62.278288][ T289] Call Trace: [ 62.281619][ T289] [ 62.284554][ T289] __dump_stack+0x21/0x30 [ 62.288901][ T289] dump_stack_lvl+0xee/0x150 [ 62.293499][ T289] ? show_regs_print_info+0x20/0x20 [ 62.298705][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 62.304461][ T289] ? set_page_dirty+0x1ae/0x310 [ 62.309319][ T289] dump_stack+0x15/0x20 [ 62.313487][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 62.319010][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 62.325206][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 62.330782][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 62.336532][ T289] ? __kasan_check_write+0x14/0x20 [ 62.341671][ T289] ? data_blkaddr+0x330/0x330 [ 62.346366][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 62.351927][ T289] ? addrs_per_block+0x110/0x110 [ 62.356874][ T289] ? dquot_initialize+0x20/0x20 [ 62.361736][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 62.366952][ T289] f2fs_truncate+0x1d7/0x3d0 [ 62.371570][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 62.376346][ T289] f2fs_setattr+0xaca/0x11b0 [ 62.380946][ T289] ? f2fs_getattr+0x670/0x670 [ 62.385625][ T289] notify_change+0xbca/0xe90 [ 62.390220][ T289] do_truncate+0x197/0x220 [ 62.394642][ T289] ? dquot_file_open+0x86/0xb0 [ 62.399413][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 62.404443][ T289] path_openat+0x2769/0x2f10 [ 62.409040][ T289] ? do_syscall_64+0x4c/0xa0 [ 62.413643][ T289] ? do_filp_open+0x3e0/0x3e0 [ 62.418325][ T289] do_filp_open+0x1b3/0x3e0 [ 62.422834][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 62.427434][ T289] do_sys_openat2+0x14c/0x7b0 [ 62.432124][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 62.437331][ T289] ? do_sys_open+0xe0/0xe0 [ 62.441764][ T289] ? do_notify_parent+0x800/0x800 [ 62.446817][ T289] __x64_sys_open+0x11c/0x140 [ 62.451506][ T289] x64_sys_call+0x3fc/0x9a0 [ 62.456029][ T289] do_syscall_64+0x4c/0xa0 [ 62.460469][ T289] ? clear_bhb_loop+0x50/0xa0 [ 62.465157][ T289] ? clear_bhb_loop+0x50/0xa0 [ 62.469847][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 62.475758][ T289] RIP: 0033:0x7f7baa194e19 [ 62.480180][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 62.500066][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 62.508508][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 62.516499][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 62.524476][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 62.532460][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 62.540529][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 62.548527][ T289] [ 62.551754][ T289] F2FS-fs (loop0): access invalid blkaddr:768 [ 62.557959][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 62.569936][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 62.579989][ T289] Call Trace: [ 62.583269][ T289] [ 62.586193][ T289] __dump_stack+0x21/0x30 [ 62.590522][ T289] dump_stack_lvl+0xee/0x150 [ 62.595113][ T289] ? show_regs_print_info+0x20/0x20 [ 62.600309][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 62.606030][ T289] ? set_page_dirty+0x1ae/0x310 [ 62.610894][ T289] dump_stack+0x15/0x20 [ 62.615084][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 62.620486][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 62.626650][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 62.632195][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 62.637917][ T289] ? __kasan_check_write+0x14/0x20 [ 62.643026][ T289] ? data_blkaddr+0x330/0x330 [ 62.647705][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 62.653161][ T289] ? addrs_per_block+0x110/0x110 [ 62.658118][ T289] ? dquot_initialize+0x20/0x20 [ 62.662966][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 62.668166][ T289] f2fs_truncate+0x1d7/0x3d0 [ 62.672752][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 62.677516][ T289] f2fs_setattr+0xaca/0x11b0 [ 62.682104][ T289] ? f2fs_getattr+0x670/0x670 [ 62.686777][ T289] notify_change+0xbca/0xe90 [ 62.691361][ T289] do_truncate+0x197/0x220 [ 62.695784][ T289] ? dquot_file_open+0x86/0xb0 [ 62.700543][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 62.705587][ T289] path_openat+0x2769/0x2f10 [ 62.710177][ T289] ? do_syscall_64+0x4c/0xa0 [ 62.714791][ T289] ? do_filp_open+0x3e0/0x3e0 [ 62.719464][ T289] do_filp_open+0x1b3/0x3e0 [ 62.723966][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 62.728555][ T289] do_sys_openat2+0x14c/0x7b0 [ 62.733229][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 62.738511][ T289] ? do_sys_open+0xe0/0xe0 [ 62.742936][ T289] ? do_notify_parent+0x800/0x800 [ 62.747971][ T289] __x64_sys_open+0x11c/0x140 [ 62.752662][ T289] x64_sys_call+0x3fc/0x9a0 [ 62.757313][ T289] do_syscall_64+0x4c/0xa0 [ 62.761755][ T289] ? clear_bhb_loop+0x50/0xa0 [ 62.766438][ T289] ? clear_bhb_loop+0x50/0xa0 [ 62.771120][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 62.777013][ T289] RIP: 0033:0x7f7baa194e19 [ 62.781426][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 62.801031][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 62.809531][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 62.817501][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 62.825471][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 62.833460][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 62.841448][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 62.849431][ T289] [ 62.852534][ T289] F2FS-fs (loop0): access invalid blkaddr:1 [ 62.858454][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 62.870340][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 62.880517][ T289] Call Trace: [ 62.883815][ T289] [ 62.886739][ T289] __dump_stack+0x21/0x30 [ 62.891072][ T289] dump_stack_lvl+0xee/0x150 [ 62.895660][ T289] ? show_regs_print_info+0x20/0x20 [ 62.900859][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 62.906576][ T289] ? set_page_dirty+0x1ae/0x310 [ 62.911442][ T289] dump_stack+0x15/0x20 [ 62.915598][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 62.921211][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 62.927536][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 62.933098][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 62.938818][ T289] ? __kasan_check_write+0x14/0x20 [ 62.943930][ T289] ? data_blkaddr+0x330/0x330 [ 62.948613][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 62.954078][ T289] ? addrs_per_block+0x110/0x110 [ 62.959018][ T289] ? dquot_initialize+0x20/0x20 [ 62.963868][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 62.969067][ T289] f2fs_truncate+0x1d7/0x3d0 [ 62.973658][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 62.978422][ T289] f2fs_setattr+0xaca/0x11b0 [ 62.983031][ T289] ? f2fs_getattr+0x670/0x670 [ 62.987722][ T289] notify_change+0xbca/0xe90 [ 62.992317][ T289] do_truncate+0x197/0x220 [ 62.996726][ T289] ? dquot_file_open+0x86/0xb0 [ 63.001486][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 63.006526][ T289] path_openat+0x2769/0x2f10 [ 63.011131][ T289] ? do_syscall_64+0x4c/0xa0 [ 63.015723][ T289] ? do_filp_open+0x3e0/0x3e0 [ 63.020398][ T289] do_filp_open+0x1b3/0x3e0 [ 63.025026][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 63.029773][ T289] do_sys_openat2+0x14c/0x7b0 [ 63.034471][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 63.039708][ T289] ? do_sys_open+0xe0/0xe0 [ 63.044139][ T289] ? do_notify_parent+0x800/0x800 [ 63.049170][ T289] __x64_sys_open+0x11c/0x140 [ 63.053849][ T289] x64_sys_call+0x3fc/0x9a0 [ 63.058347][ T289] do_syscall_64+0x4c/0xa0 [ 63.062760][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.067435][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.072113][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 63.078004][ T289] RIP: 0033:0x7f7baa194e19 [ 63.082418][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 63.102019][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 63.110432][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 63.118402][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 63.126479][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 63.134473][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 63.142550][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 63.150531][ T289] [ 63.153783][ T289] F2FS-fs (loop0): access invalid blkaddr:90 [ 63.159805][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 63.171700][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 63.181769][ T289] Call Trace: [ 63.185054][ T289] [ 63.187989][ T289] __dump_stack+0x21/0x30 [ 63.192331][ T289] dump_stack_lvl+0xee/0x150 [ 63.196933][ T289] ? show_regs_print_info+0x20/0x20 [ 63.202143][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 63.207880][ T289] ? set_page_dirty+0x1ae/0x310 [ 63.212764][ T289] dump_stack+0x15/0x20 [ 63.217074][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 63.222478][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 63.228648][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 63.234208][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 63.239949][ T289] ? __kasan_check_write+0x14/0x20 [ 63.245120][ T289] ? data_blkaddr+0x330/0x330 [ 63.249828][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 63.255320][ T289] ? addrs_per_block+0x110/0x110 [ 63.260411][ T289] ? dquot_initialize+0x20/0x20 [ 63.265299][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 63.270531][ T289] f2fs_truncate+0x1d7/0x3d0 [ 63.275131][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 63.279907][ T289] f2fs_setattr+0xaca/0x11b0 [ 63.284513][ T289] ? f2fs_getattr+0x670/0x670 [ 63.289195][ T289] notify_change+0xbca/0xe90 [ 63.293795][ T289] do_truncate+0x197/0x220 [ 63.298217][ T289] ? dquot_file_open+0x86/0xb0 [ 63.302991][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 63.308023][ T289] path_openat+0x2769/0x2f10 [ 63.312623][ T289] ? do_syscall_64+0x4c/0xa0 [ 63.317226][ T289] ? do_filp_open+0x3e0/0x3e0 [ 63.321909][ T289] do_filp_open+0x1b3/0x3e0 [ 63.326417][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 63.331022][ T289] do_sys_openat2+0x14c/0x7b0 [ 63.335707][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 63.340917][ T289] ? do_sys_open+0xe0/0xe0 [ 63.345347][ T289] ? do_notify_parent+0x800/0x800 [ 63.350393][ T289] __x64_sys_open+0x11c/0x140 [ 63.355098][ T289] x64_sys_call+0x3fc/0x9a0 [ 63.359630][ T289] do_syscall_64+0x4c/0xa0 [ 63.364090][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.368786][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.373474][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 63.379391][ T289] RIP: 0033:0x7f7baa194e19 [ 63.383819][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 63.403676][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 63.412143][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 63.420122][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 63.428099][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 63.436075][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 63.444054][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 63.452035][ T289] [ 63.455138][ T289] F2FS-fs (loop0): access invalid blkaddr:2483028196 [ 63.461854][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 63.473764][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 63.483858][ T289] Call Trace: [ 63.487162][ T289] [ 63.490101][ T289] __dump_stack+0x21/0x30 [ 63.494443][ T289] dump_stack_lvl+0xee/0x150 [ 63.499041][ T289] ? show_regs_print_info+0x20/0x20 [ 63.504258][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 63.509986][ T289] ? set_page_dirty+0x1ae/0x310 [ 63.514951][ T289] dump_stack+0x15/0x20 [ 63.519121][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 63.524504][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 63.530880][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 63.536575][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 63.542317][ T289] ? __kasan_check_write+0x14/0x20 [ 63.547443][ T289] ? data_blkaddr+0x330/0x330 [ 63.552136][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 63.557612][ T289] ? addrs_per_block+0x110/0x110 [ 63.562556][ T289] ? dquot_initialize+0x20/0x20 [ 63.567417][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 63.572633][ T289] f2fs_truncate+0x1d7/0x3d0 [ 63.577234][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 63.582002][ T289] f2fs_setattr+0xaca/0x11b0 [ 63.586610][ T289] ? f2fs_getattr+0x670/0x670 [ 63.591290][ T289] notify_change+0xbca/0xe90 [ 63.595886][ T289] do_truncate+0x197/0x220 [ 63.600317][ T289] ? dquot_file_open+0x86/0xb0 [ 63.605098][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 63.610155][ T289] path_openat+0x2769/0x2f10 [ 63.614770][ T289] ? do_syscall_64+0x4c/0xa0 [ 63.619393][ T289] ? do_filp_open+0x3e0/0x3e0 [ 63.624096][ T289] do_filp_open+0x1b3/0x3e0 [ 63.628619][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 63.633248][ T289] do_sys_openat2+0x14c/0x7b0 [ 63.638171][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 63.643397][ T289] ? do_sys_open+0xe0/0xe0 [ 63.647839][ T289] ? do_notify_parent+0x800/0x800 [ 63.652887][ T289] __x64_sys_open+0x11c/0x140 [ 63.657593][ T289] x64_sys_call+0x3fc/0x9a0 [ 63.662180][ T289] do_syscall_64+0x4c/0xa0 [ 63.666632][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.671331][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.676028][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 63.681945][ T289] RIP: 0033:0x7f7baa194e19 [ 63.686374][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 63.705984][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 63.714409][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 63.722383][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 63.730359][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 63.738340][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 63.746322][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 63.754320][ T289] [ 63.757636][ T289] F2FS-fs (loop0): access invalid blkaddr:469045248 [ 63.764301][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 63.776312][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 63.786468][ T289] Call Trace: [ 63.789754][ T289] [ 63.792705][ T289] __dump_stack+0x21/0x30 [ 63.797039][ T289] dump_stack_lvl+0xee/0x150 [ 63.801625][ T289] ? show_regs_print_info+0x20/0x20 [ 63.806840][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 63.812560][ T289] ? set_page_dirty+0x1ae/0x310 [ 63.817410][ T289] dump_stack+0x15/0x20 [ 63.821569][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 63.826940][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 63.833105][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 63.838654][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 63.844379][ T289] ? __kasan_check_write+0x14/0x20 [ 63.849488][ T289] ? data_blkaddr+0x330/0x330 [ 63.854173][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 63.859634][ T289] ? addrs_per_block+0x110/0x110 [ 63.864585][ T289] ? dquot_initialize+0x20/0x20 [ 63.869436][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 63.874631][ T289] f2fs_truncate+0x1d7/0x3d0 [ 63.879219][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 63.883975][ T289] f2fs_setattr+0xaca/0x11b0 [ 63.888649][ T289] ? f2fs_getattr+0x670/0x670 [ 63.893341][ T289] notify_change+0xbca/0xe90 [ 63.897928][ T289] do_truncate+0x197/0x220 [ 63.902338][ T289] ? dquot_file_open+0x86/0xb0 [ 63.907099][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 63.912148][ T289] path_openat+0x2769/0x2f10 [ 63.916755][ T289] ? do_syscall_64+0x4c/0xa0 [ 63.921356][ T289] ? do_filp_open+0x3e0/0x3e0 [ 63.926054][ T289] do_filp_open+0x1b3/0x3e0 [ 63.930559][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 63.935153][ T289] do_sys_openat2+0x14c/0x7b0 [ 63.939835][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 63.945035][ T289] ? do_sys_open+0xe0/0xe0 [ 63.949462][ T289] ? do_notify_parent+0x800/0x800 [ 63.954487][ T289] __x64_sys_open+0x11c/0x140 [ 63.959163][ T289] x64_sys_call+0x3fc/0x9a0 [ 63.963666][ T289] do_syscall_64+0x4c/0xa0 [ 63.968083][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.972757][ T289] ? clear_bhb_loop+0x50/0xa0 [ 63.977435][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 63.983326][ T289] RIP: 0033:0x7f7baa194e19 [ 63.987743][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.007366][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 64.015805][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 64.023796][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 64.031763][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 64.039728][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 64.047701][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 64.055674][ T289] [ 64.058780][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 64.065500][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 64.077504][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 64.087570][ T289] Call Trace: [ 64.090843][ T289] [ 64.093782][ T289] __dump_stack+0x21/0x30 [ 64.098116][ T289] dump_stack_lvl+0xee/0x150 [ 64.102711][ T289] ? show_regs_print_info+0x20/0x20 [ 64.107924][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 64.113672][ T289] ? set_page_dirty+0x1ae/0x310 [ 64.118525][ T289] dump_stack+0x15/0x20 [ 64.122677][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 64.128048][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 64.134199][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 64.139740][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 64.145457][ T289] ? __kasan_check_write+0x14/0x20 [ 64.150563][ T289] ? data_blkaddr+0x330/0x330 [ 64.155253][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 64.160717][ T289] ? addrs_per_block+0x110/0x110 [ 64.165656][ T289] ? dquot_initialize+0x20/0x20 [ 64.170504][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 64.175696][ T289] f2fs_truncate+0x1d7/0x3d0 [ 64.180283][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 64.185045][ T289] f2fs_setattr+0xaca/0x11b0 [ 64.189631][ T289] ? f2fs_getattr+0x670/0x670 [ 64.194313][ T289] notify_change+0xbca/0xe90 [ 64.198901][ T289] do_truncate+0x197/0x220 [ 64.203311][ T289] ? dquot_file_open+0x86/0xb0 [ 64.208070][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 64.213090][ T289] path_openat+0x2769/0x2f10 [ 64.217678][ T289] ? do_syscall_64+0x4c/0xa0 [ 64.222264][ T289] ? do_filp_open+0x3e0/0x3e0 [ 64.227027][ T289] do_filp_open+0x1b3/0x3e0 [ 64.231524][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 64.236120][ T289] do_sys_openat2+0x14c/0x7b0 [ 64.240821][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 64.246025][ T289] ? do_sys_open+0xe0/0xe0 [ 64.250448][ T289] ? do_notify_parent+0x800/0x800 [ 64.255487][ T289] __x64_sys_open+0x11c/0x140 [ 64.260171][ T289] x64_sys_call+0x3fc/0x9a0 [ 64.264676][ T289] do_syscall_64+0x4c/0xa0 [ 64.269223][ T289] ? clear_bhb_loop+0x50/0xa0 [ 64.273942][ T289] ? clear_bhb_loop+0x50/0xa0 [ 64.278657][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 64.284571][ T289] RIP: 0033:0x7f7baa194e19 [ 64.289004][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.308622][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 64.317043][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 64.325029][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 64.333017][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 64.340994][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 64.348969][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 64.356950][ T289] [ 64.360121][ T289] F2FS-fs (loop0): access invalid blkaddr:83 [ 64.366158][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 64.378057][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 64.388114][ T289] Call Trace: [ 64.391396][ T289] [ 64.394337][ T289] __dump_stack+0x21/0x30 [ 64.398674][ T289] dump_stack_lvl+0xee/0x150 [ 64.403270][ T289] ? show_regs_print_info+0x20/0x20 [ 64.408592][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 64.414368][ T289] ? set_page_dirty+0x1ae/0x310 [ 64.419251][ T289] dump_stack+0x15/0x20 [ 64.423426][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 64.428824][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 64.435000][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 64.440563][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 64.446294][ T289] ? __kasan_check_write+0x14/0x20 [ 64.451413][ T289] ? data_blkaddr+0x330/0x330 [ 64.456101][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 64.461660][ T289] ? addrs_per_block+0x110/0x110 [ 64.466602][ T289] ? dquot_initialize+0x20/0x20 [ 64.471462][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 64.476756][ T289] f2fs_truncate+0x1d7/0x3d0 [ 64.481365][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 64.486245][ T289] f2fs_setattr+0xaca/0x11b0 [ 64.490877][ T289] ? f2fs_getattr+0x670/0x670 [ 64.495579][ T289] notify_change+0xbca/0xe90 [ 64.500191][ T289] do_truncate+0x197/0x220 [ 64.504611][ T289] ? dquot_file_open+0x86/0xb0 [ 64.509382][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 64.514415][ T289] path_openat+0x2769/0x2f10 [ 64.519013][ T289] ? do_syscall_64+0x4c/0xa0 [ 64.523617][ T289] ? do_filp_open+0x3e0/0x3e0 [ 64.528300][ T289] do_filp_open+0x1b3/0x3e0 [ 64.532811][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 64.537409][ T289] do_sys_openat2+0x14c/0x7b0 [ 64.542092][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 64.547309][ T289] ? do_sys_open+0xe0/0xe0 [ 64.551735][ T289] ? do_notify_parent+0x800/0x800 [ 64.556800][ T289] __x64_sys_open+0x11c/0x140 [ 64.561486][ T289] x64_sys_call+0x3fc/0x9a0 [ 64.566007][ T289] do_syscall_64+0x4c/0xa0 [ 64.570433][ T289] ? clear_bhb_loop+0x50/0xa0 [ 64.575120][ T289] ? clear_bhb_loop+0x50/0xa0 [ 64.579803][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 64.585702][ T289] RIP: 0033:0x7f7baa194e19 [ 64.590131][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.609755][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 64.618184][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 64.626165][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 64.634146][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 64.642123][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 64.650110][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 64.658094][ T289] [ 64.661216][ T289] F2FS-fs (loop0): access invalid blkaddr:2757755108 [ 64.667949][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 64.679837][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 64.689899][ T289] Call Trace: [ 64.693182][ T289] [ 64.696109][ T289] __dump_stack+0x21/0x30 [ 64.700453][ T289] dump_stack_lvl+0xee/0x150 [ 64.705062][ T289] ? show_regs_print_info+0x20/0x20 [ 64.710269][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 64.715987][ T289] ? set_page_dirty+0x1ae/0x310 [ 64.720837][ T289] dump_stack+0x15/0x20 [ 64.724994][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 64.730367][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 64.736528][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 64.742081][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 64.747801][ T289] ? __kasan_check_write+0x14/0x20 [ 64.752910][ T289] ? data_blkaddr+0x330/0x330 [ 64.757589][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 64.763049][ T289] ? addrs_per_block+0x110/0x110 [ 64.767987][ T289] ? dquot_initialize+0x20/0x20 [ 64.772837][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 64.778035][ T289] f2fs_truncate+0x1d7/0x3d0 [ 64.782716][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 64.787480][ T289] f2fs_setattr+0xaca/0x11b0 [ 64.792071][ T289] ? f2fs_getattr+0x670/0x670 [ 64.796748][ T289] notify_change+0xbca/0xe90 [ 64.801341][ T289] do_truncate+0x197/0x220 [ 64.805760][ T289] ? dquot_file_open+0x86/0xb0 [ 64.810524][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 64.815548][ T289] path_openat+0x2769/0x2f10 [ 64.820152][ T289] ? do_syscall_64+0x4c/0xa0 [ 64.824744][ T289] ? do_filp_open+0x3e0/0x3e0 [ 64.829421][ T289] do_filp_open+0x1b3/0x3e0 [ 64.834039][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 64.838660][ T289] do_sys_openat2+0x14c/0x7b0 [ 64.843372][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 64.848570][ T289] ? do_sys_open+0xe0/0xe0 [ 64.852988][ T289] ? do_notify_parent+0x800/0x800 [ 64.858015][ T289] __x64_sys_open+0x11c/0x140 [ 64.862804][ T289] x64_sys_call+0x3fc/0x9a0 [ 64.867303][ T289] do_syscall_64+0x4c/0xa0 [ 64.871720][ T289] ? clear_bhb_loop+0x50/0xa0 [ 64.876395][ T289] ? clear_bhb_loop+0x50/0xa0 [ 64.881084][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 64.886976][ T289] RIP: 0033:0x7f7baa194e19 [ 64.891388][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.910991][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 64.919414][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 64.927398][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 64.935367][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 64.943457][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 64.951438][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 64.959423][ T289] [ 64.962534][ T289] F2FS-fs (loop0): access invalid blkaddr:204884608 [ 64.969145][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 64.981030][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 64.991079][ T289] Call Trace: [ 64.994358][ T289] [ 64.997316][ T289] __dump_stack+0x21/0x30 [ 65.001643][ T289] dump_stack_lvl+0xee/0x150 [ 65.006247][ T289] ? show_regs_print_info+0x20/0x20 [ 65.011445][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 65.017163][ T289] ? set_page_dirty+0x1ae/0x310 [ 65.022015][ T289] dump_stack+0x15/0x20 [ 65.026282][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 65.031683][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 65.037960][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 65.043527][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 65.049263][ T289] ? __kasan_check_write+0x14/0x20 [ 65.054376][ T289] ? data_blkaddr+0x330/0x330 [ 65.059054][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 65.064513][ T289] ? addrs_per_block+0x110/0x110 [ 65.069475][ T289] ? dquot_initialize+0x20/0x20 [ 65.074327][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 65.079561][ T289] f2fs_truncate+0x1d7/0x3d0 [ 65.084147][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 65.088937][ T289] f2fs_setattr+0xaca/0x11b0 [ 65.093525][ T289] ? f2fs_getattr+0x670/0x670 [ 65.098211][ T289] notify_change+0xbca/0xe90 [ 65.102834][ T289] do_truncate+0x197/0x220 [ 65.107253][ T289] ? dquot_file_open+0x86/0xb0 [ 65.112015][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 65.117037][ T289] path_openat+0x2769/0x2f10 [ 65.121622][ T289] ? do_syscall_64+0x4c/0xa0 [ 65.126296][ T289] ? do_filp_open+0x3e0/0x3e0 [ 65.130969][ T289] do_filp_open+0x1b3/0x3e0 [ 65.135487][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 65.140075][ T289] do_sys_openat2+0x14c/0x7b0 [ 65.144755][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 65.149951][ T289] ? do_sys_open+0xe0/0xe0 [ 65.154368][ T289] ? do_notify_parent+0x800/0x800 [ 65.159400][ T289] __x64_sys_open+0x11c/0x140 [ 65.164226][ T289] x64_sys_call+0x3fc/0x9a0 [ 65.168723][ T289] do_syscall_64+0x4c/0xa0 [ 65.173135][ T289] ? clear_bhb_loop+0x50/0xa0 [ 65.177806][ T289] ? clear_bhb_loop+0x50/0xa0 [ 65.182478][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 65.188368][ T289] RIP: 0033:0x7f7baa194e19 [ 65.192787][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 65.212408][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 65.220832][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 65.228815][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 65.236788][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 65.244776][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 65.252742][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 65.260715][ T289] [ 65.263937][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 65.270646][ T289] CPU: 1 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 65.282549][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 65.292617][ T289] Call Trace: [ 65.295902][ T289] [ 65.298842][ T289] __dump_stack+0x21/0x30 [ 65.303183][ T289] dump_stack_lvl+0xee/0x150 [ 65.307786][ T289] ? show_regs_print_info+0x20/0x20 [ 65.313000][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 65.318858][ T289] ? set_page_dirty+0x1ae/0x310 [ 65.323730][ T289] dump_stack+0x15/0x20 [ 65.327895][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 65.333280][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 65.339448][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 65.345012][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 65.350743][ T289] ? __kasan_check_write+0x14/0x20 [ 65.355860][ T289] ? data_blkaddr+0x330/0x330 [ 65.360548][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 65.366016][ T289] ? addrs_per_block+0x110/0x110 [ 65.370970][ T289] ? dquot_initialize+0x20/0x20 [ 65.375829][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 65.381036][ T289] f2fs_truncate+0x1d7/0x3d0 [ 65.385641][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 65.390409][ T289] f2fs_setattr+0xaca/0x11b0 [ 65.395011][ T289] ? f2fs_getattr+0x670/0x670 [ 65.399698][ T289] notify_change+0xbca/0xe90 [ 65.404294][ T289] do_truncate+0x197/0x220 [ 65.408718][ T289] ? dquot_file_open+0x86/0xb0 [ 65.413490][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 65.418529][ T289] path_openat+0x2769/0x2f10 [ 65.423125][ T289] ? do_syscall_64+0x4c/0xa0 [ 65.427722][ T289] ? do_filp_open+0x3e0/0x3e0 [ 65.432405][ T289] do_filp_open+0x1b3/0x3e0 [ 65.436930][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 65.441530][ T289] do_sys_openat2+0x14c/0x7b0 [ 65.446215][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 65.451415][ T289] ? do_sys_open+0xe0/0xe0 [ 65.455836][ T289] ? do_notify_parent+0x800/0x800 [ 65.460867][ T289] __x64_sys_open+0x11c/0x140 [ 65.465549][ T289] x64_sys_call+0x3fc/0x9a0 [ 65.470075][ T289] do_syscall_64+0x4c/0xa0 [ 65.474496][ T289] ? clear_bhb_loop+0x50/0xa0 [ 65.479180][ T289] ? clear_bhb_loop+0x50/0xa0 [ 65.483867][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 65.489768][ T289] RIP: 0033:0x7f7baa194e19 [ 65.494193][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 65.513934][ T289] RSP: 002b:00007ffd943e3ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 65.522382][ T289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7baa194e19 [ 65.530362][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [pid 289] open("./file1", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_NOATIME, 0100) = 5 [pid 289] close(3) = 0 [pid 289] close(4) = 0 [pid 289] close(5) = 0 [pid 289] close(6) = -1 EBADF (Bad file descriptor) [pid 289] close(7) = -1 EBADF (Bad file descriptor) [pid 289] close(8) = -1 EBADF (Bad file descriptor) [pid 289] close(9) = -1 EBADF (Bad file descriptor) [pid 289] close(10) = -1 EBADF (Bad file descriptor) [pid 289] close(11) = -1 EBADF (Bad file descriptor) [pid 289] close(12) = -1 EBADF (Bad file descriptor) [pid 289] close(13) = -1 EBADF (Bad file descriptor) [pid 289] close(14) = -1 EBADF (Bad file descriptor) [pid 289] close(15) = -1 EBADF (Bad file descriptor) [pid 289] close(16) = -1 EBADF (Bad file descriptor) [pid 289] close(17) = -1 EBADF (Bad file descriptor) [pid 289] close(18) = -1 EBADF (Bad file descriptor) [pid 289] close(19) = -1 EBADF (Bad file descriptor) [pid 289] close(20) = -1 EBADF (Bad file descriptor) [pid 289] close(21) = -1 EBADF (Bad file descriptor) [pid 289] close(22) = -1 EBADF (Bad file descriptor) [pid 289] close(23) = -1 EBADF (Bad file descriptor) [pid 289] close(24) = -1 EBADF (Bad file descriptor) [pid 289] close(25) = -1 EBADF (Bad file descriptor) [pid 289] close(26) = -1 EBADF (Bad file descriptor) [pid 289] close(27) = -1 EBADF (Bad file descriptor) [pid 289] close(28) = -1 EBADF (Bad file descriptor) [pid 289] close(29) = -1 EBADF (Bad file descriptor) [pid 289] exit_group(1) = ? [ 65.538341][ T289] RBP: 00007f7baa1de166 R08: 0000000000000006 R09: 0000000000000006 [ 65.546318][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa1f3abc [ 65.554303][ T289] R13: 00007f7baa1de0ce R14: 0000000000000001 R15: 0000000000000001 [ 65.562495][ T289] [ 65.565684][ T289] F2FS-fs (loop0): Inconsistent i_blocks, ino:7, iblocks:0, sectors:40 [ 65.574015][ T289] F2FS-fs (loop0): dec_valid_node_count: inconsistent i_blocks, ino:7, iblocks:0 [ 65.593605][ T289] F2FS-fs (loop0): Inconsistent error blkaddr:15362, sit bitmap:0 [ 65.601520][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 65.613410][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 65.623464][ T289] Call Trace: [ 65.626741][ T289] [ 65.629670][ T289] __dump_stack+0x21/0x30 [ 65.634016][ T289] dump_stack_lvl+0xee/0x150 [ 65.638605][ T289] ? show_regs_print_info+0x20/0x20 [ 65.643805][ T289] ? f2fs_down_read+0x9f/0x190 [ 65.648718][ T289] ? f2fs_need_dentry_mark+0xe0/0xe0 [ 65.654123][ T289] ? up_read+0x56/0x1d0 [ 65.658298][ T289] dump_stack+0x15/0x20 [ 65.662458][ T289] f2fs_is_valid_blkaddr+0xc64/0x12a0 [ 65.667837][ T289] __write_node_page+0x750/0x1490 [ 65.672866][ T289] ? __kasan_check_write+0x14/0x20 [ 65.677983][ T289] ? f2fs_move_node_page+0x310/0x310 [ 65.683274][ T289] ? wait_on_page_writeback+0x1e0/0x1e0 [ 65.688822][ T289] ? f2fs_wait_on_page_writeback+0xad/0x3b0 [ 65.694861][ T289] f2fs_sync_node_pages+0xe5c/0x1350 [ 65.700206][ T289] ? flush_inline_data+0x490/0x490 [ 65.705342][ T289] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 65.711317][ T289] f2fs_write_checkpoint+0xcab/0x1f00 [ 65.716724][ T289] ? __kasan_check_read+0x11/0x20 [ 65.721751][ T289] ? preempt_schedule_common+0xbe/0xf0 [ 65.727217][ T289] ? f2fs_get_sectors_written+0x4e0/0x4e0 [ 65.732941][ T289] ? try_to_wake_up+0x633/0x1160 [ 65.737889][ T289] ? __kasan_check_write+0x14/0x20 [ 65.743019][ T289] ? kthread_stop+0x17d/0x3e0 [ 65.747695][ T289] ? memcpy+0x56/0x70 [ 65.751680][ T289] kill_f2fs_super+0x231/0x390 [ 65.756555][ T289] ? radix_tree_delete_item+0x2c8/0x410 [ 65.762118][ T289] ? f2fs_mount+0x40/0x40 [ 65.766439][ T289] ? unregister_shrinker+0x201/0x290 [ 65.771726][ T289] deactivate_locked_super+0xa0/0x100 [ 65.777128][ T289] deactivate_super+0xaf/0xe0 [ 65.781807][ T289] cleanup_mnt+0x446/0x500 [ 65.786232][ T289] __cleanup_mnt+0x19/0x20 [ 65.790652][ T289] task_work_run+0x127/0x190 [ 65.795313][ T289] do_exit+0xa7e/0x27a0 [ 65.799590][ T289] ? ptrace_stop+0x6f4/0xa80 [ 65.804281][ T289] ? put_task_struct+0x90/0x90 [ 65.809148][ T289] ? ptrace_notify+0x1c4/0x250 [ 65.813914][ T289] ? do_notify_parent+0x800/0x800 [ 65.818948][ T289] do_group_exit+0x141/0x310 [ 65.823538][ T289] ? debug_smp_processor_id+0x17/0x20 [ 65.828909][ T289] __x64_sys_exit_group+0x3f/0x40 [ 65.833948][ T289] x64_sys_call+0x832/0x9a0 [ 65.838458][ T289] do_syscall_64+0x4c/0xa0 [ 65.842886][ T289] ? clear_bhb_loop+0x50/0xa0 [ 65.847558][ T289] ? clear_bhb_loop+0x50/0xa0 [ 65.852294][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 65.858201][ T289] RIP: 0033:0x7f7baa192e89 [ 65.862613][ T289] Code: Unable to access opcode bytes at RIP 0x7f7baa192e5f. [ 65.870156][ T289] RSP: 002b:00007ffd943e3e48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 65.878576][ T289] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f7baa192e89 [ 65.886548][ T289] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 65.894517][ T289] RBP: 00007f7baa21f390 R08: ffffffffffffffb8 R09: 0000000000000006 [ 65.902494][ T289] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7baa21f390 [ 65.910462][ T289] R13: 0000000000000000 R14: 00007f7baa220100 R15: 00007f7baa161160 [ 65.918440][ T289] [ 65.921825][ T45] F2FS-fs (loop0): Inconsistent error blkaddr:15362, sit bitmap:0 [ 65.929667][ T45] CPU: 0 PID: 45 Comm: kworker/u4:2 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 65.941440][ T45] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 65.951636][ T45] Workqueue: writeback wb_workfn (flush-7:0) [ 65.957649][ T45] Call Trace: [ 65.960934][ T45] [ 65.963862][ T45] __dump_stack+0x21/0x30 [ 65.968253][ T45] dump_stack_lvl+0xee/0x150 [ 65.972935][ T45] ? show_regs_print_info+0x20/0x20 [ 65.978248][ T45] ? f2fs_down_read+0x9f/0x190 [ 65.983019][ T45] ? f2fs_need_dentry_mark+0xe0/0xe0 [ 65.988314][ T45] ? up_read+0x56/0x1d0 [ 65.992464][ T45] dump_stack+0x15/0x20 [ 65.996620][ T45] f2fs_is_valid_blkaddr+0xc64/0x12a0 [ 66.002163][ T45] __write_node_page+0x750/0x1490 [ 66.007212][ T45] ? __kasan_check_read+0x11/0x20 [ 66.012242][ T45] ? page_mapped+0xe6/0x320 [ 66.016753][ T45] ? f2fs_move_node_page+0x310/0x310 [ 66.022055][ T45] ? wait_on_page_writeback+0x1e0/0x1e0 [ 66.027604][ T45] ? f2fs_wait_on_page_writeback+0xad/0x3b0 [ 66.033496][ T45] f2fs_sync_node_pages+0xe5c/0x1350 [ 66.039017][ T45] ? flush_inline_data+0x490/0x490 [ 66.044153][ T45] ? f2fs_balance_fs_bg+0x7b8/0x970 [ 66.049394][ T45] ? enqueue_task_fair+0xaa7/0x2120 [ 66.054606][ T45] ? blk_start_plug+0x50/0x170 [ 66.059370][ T45] f2fs_write_node_pages+0x2f7/0x890 [ 66.064741][ T45] ? f2fs_write_node_page+0x40/0x40 [ 66.069947][ T45] ? _raw_spin_trylock_bh+0x130/0x130 [ 66.075324][ T45] ? resched_curr+0x102/0x310 [ 66.079999][ T45] ? psi_task_change+0x212/0x370 [ 66.084942][ T45] ? wake_up_process+0x20/0x20 [ 66.089728][ T45] ? f2fs_write_node_page+0x40/0x40 [ 66.094933][ T45] do_writepages+0x48a/0x6c0 [ 66.099529][ T45] ? fprop_fraction_percpu+0x1a7/0x200 [ 66.105003][ T45] ? __writepage+0x130/0x130 [ 66.109595][ T45] ? __kasan_check_write+0x14/0x20 [ 66.114701][ T45] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 66.120165][ T45] ? _raw_spin_lock+0xe0/0xe0 [ 66.124863][ T45] ? __wb_calc_thresh+0x257/0x390 [ 66.129984][ T45] ? __kasan_check_write+0x14/0x20 [ 66.135094][ T45] __writeback_single_inode+0xd5/0x9c0 [ 66.140548][ T45] ? wbc_attach_and_unlock_inode+0x3e0/0x5f0 [ 66.146527][ T45] writeback_sb_inodes+0x9c0/0x1590 [ 66.151729][ T45] ? down_read_trylock+0x341/0x660 [ 66.156839][ T45] ? queue_io+0x4c0/0x4c0 [ 66.161167][ T45] ? __kasan_check_read+0x11/0x20 [ 66.166186][ T45] ? queue_io+0x382/0x4c0 [ 66.170512][ T45] wb_writeback+0x3f1/0x980 [ 66.175119][ T45] ? inode_cgwb_move_to_attached+0x3e0/0x3e0 [ 66.181116][ T45] ? set_worker_desc+0x155/0x1c0 [ 66.186073][ T45] ? __kasan_check_write+0x14/0x20 [ 66.191195][ T45] wb_workfn+0x38f/0xe20 [ 66.195437][ T45] ? inode_wait_for_writeback+0x200/0x200 [ 66.201156][ T45] ? compat_start_thread+0x20/0x20 [ 66.206268][ T45] ? _raw_spin_unlock+0x4d/0x70 [ 66.211124][ T45] ? finish_task_switch+0x16b/0x780 [ 66.216714][ T45] ? __switch_to_asm+0x3a/0x60 [ 66.221493][ T45] ? __schedule+0xb76/0x14c0 [ 66.226083][ T45] process_one_work+0x6be/0xba0 [ 66.230959][ T45] worker_thread+0xa59/0x1200 [ 66.235638][ T45] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 66.241103][ T45] kthread+0x411/0x500 [ 66.245171][ T45] ? worker_clr_flags+0x190/0x190 [ 66.250196][ T45] ? kthread_blkcg+0xd0/0xd0 [ 66.254790][ T45] ret_from_fork+0x1f/0x30 [ 66.259208][ T45] [ 66.262617][ T289] F2FS-fs (loop0): Inconsistent error blkaddr:15362, sit bitmap:0 [ 66.270451][ T289] CPU: 0 PID: 289 Comm: syz-executor200 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 66.282649][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 66.292719][ T289] Call Trace: [ 66.296003][ T289] [ 66.298926][ T289] __dump_stack+0x21/0x30 [ 66.303285][ T289] dump_stack_lvl+0xee/0x150 [ 66.307877][ T289] ? show_regs_print_info+0x20/0x20 [ 66.313076][ T289] ? f2fs_down_read+0x9f/0x190 [ 66.317833][ T289] ? f2fs_need_dentry_mark+0xe0/0xe0 [ 66.323114][ T289] ? up_read+0x56/0x1d0 [ 66.327266][ T289] dump_stack+0x15/0x20 [ 66.331417][ T289] f2fs_is_valid_blkaddr+0xc64/0x12a0 [ 66.336786][ T289] __write_node_page+0x750/0x1490 [ 66.342010][ T289] ? __kasan_check_read+0x11/0x20 [ 66.347079][ T289] ? page_mapped+0xe6/0x320 [ 66.351589][ T289] ? f2fs_move_node_page+0x310/0x310 [ 66.356874][ T289] ? wait_on_page_writeback+0x1e0/0x1e0 [ 66.362457][ T289] ? f2fs_wait_on_page_writeback+0xad/0x3b0 [ 66.368367][ T289] f2fs_sync_node_pages+0xe5c/0x1350 [ 66.373672][ T289] ? flush_inline_data+0x490/0x490 [ 66.378827][ T289] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 66.384783][ T289] f2fs_write_checkpoint+0xcab/0x1f00 [ 66.390172][ T289] ? f2fs_get_sectors_written+0x4e0/0x4e0 [ 66.395930][ T289] ? rwsem_write_trylock+0x130/0x300 [ 66.401333][ T289] f2fs_issue_checkpoint+0x2e5/0x470 [ 66.406645][ T289] ? f2fs_destroy_checkpoint_caches+0x30/0x30 [ 66.412733][ T289] ? sync_inodes_sb+0x655/0x6c0 [ 66.417582][ T289] ? try_to_writeback_inodes_sb+0xc0/0xc0 [ 66.423333][ T289] ? cpumask_next+0x7c/0xa0 [ 66.427846][ T289] f2fs_sync_fs+0x16f/0x2c0 [ 66.432360][ T289] sync_filesystem+0x1cb/0x240 [ 66.437145][ T289] generic_shutdown_super+0x6e/0x330 [ 66.442427][ T289] kill_block_super+0x7f/0xf0 [ 66.447106][ T289] kill_f2fs_super+0x2e7/0x390 [ 66.451873][ T289] ? radix_tree_delete_item+0x2c8/0x410 [ 66.457423][ T289] ? f2fs_mount+0x40/0x40 [ 66.461753][ T289] ? unregister_shrinker+0x201/0x290 [ 66.467053][ T289] deactivate_locked_super+0xa0/0x100 [ 66.472424][ T289] deactivate_super+0xaf/0xe0 [ 66.477107][ T289] cleanup_mnt+0x446/0x500 [ 66.481539][ T289] __cleanup_mnt+0x19/0x20 [ 66.485968][ T289] task_work_run+0x127/0x190 [ 66.490569][ T289] do_exit+0xa7e/0x27a0