./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2980951670 <...> sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 12.496017][ T30] audit: type=1400 audit(1756425716.722:63): avc: denied { siginh } for pid=222 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '10.128.0.99' (ED25519) to the list of known hosts. execve("./syz-executor2980951670", ["./syz-executor2980951670"], 0x7fff93673710 /* 10 vars */) = 0 brk(NULL) = 0x555559f35000 brk(0x555559f35d40) = 0x555559f35d40 arch_prctl(ARCH_SET_FS, 0x555559f353c0) = 0 set_tid_address(0x555559f35690) = 288 set_robust_list(0x555559f356a0, 24) = 0 rseq(0x555559f35ce0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2980951670", 4096) = 28 getrandom("\xa6\xd5\xe7\x1d\x7b\xcc\xe9\x9b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555559f35d40 brk(0x555559f56d40) = 0x555559f56d40 brk(0x555559f57000) = 0x555559f57000 mprotect(0x7f1fca46e000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 write(1, "executing program\n", 18executing program ) = 18 futex(0x7f1fca4746cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 rt_sigaction(SIGRT_1, {sa_handler=0x7f1fca403180, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1fca3f4830}, NULL, 8) = 0 rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1fca37b000 mprotect(0x7f1fca37c000, 131072, PROT_READ|PROT_WRITE) = 0 rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1fca39b990, parent_tid=0x7f1fca39b990, exit_signal=0, stack=0x7f1fca37b000, stack_size=0x20300, tls=0x7f1fca39b6c0}./strace-static-x86_64: Process 289 attached => {parent_tid=[289]}, 88) = 289 [pid 289] set_robust_list(0x7f1fca39b9a0, 24) = 0 [pid 289] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 289] futex(0x7f1fca4746c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 288] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 288] futex(0x7f1fca4746c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 289] <... futex resumed>) = 0 [pid 288] futex(0x7f1fca4746cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 289] memfd_create("syzkaller", 0) = 3 [pid 289] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1fc1f7b000 [ 22.467244][ T30] audit: type=1400 audit(1756425726.722:64): avc: denied { execmem } for pid=288 comm="syz-executor298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [pid 289] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864) = 67108864 [pid 289] munmap(0x7f1fc1f7b000, 138412032) = 0 [pid 289] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 289] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 289] close(3) = 0 [ 22.726137][ T30] audit: type=1400 audit(1756425726.972:65): avc: denied { read write } for pid=288 comm="syz-executor298" name="loop0" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 22.726798][ T289] loop0: detected capacity change from 0 to 131072 [pid 289] close(4) = 0 [pid 289] mkdir("./file1", 0777) = 0 [ 22.750619][ T30] audit: type=1400 audit(1756425726.972:66): avc: denied { open } for pid=288 comm="syz-executor298" path="/dev/loop0" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 22.781088][ T30] audit: type=1400 audit(1756425726.972:67): avc: denied { ioctl } for pid=288 comm="syz-executor298" path="/dev/loop0" dev="devtmpfs" ino=116 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 22.829969][ T30] audit: type=1400 audit(1756425727.082:68): avc: denied { mounton } for pid=288 comm="syz-executor298" path="/root/file1" dev="sda1" ino=2024 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 22.831132][ T289] F2FS-fs (loop0): invalid crc value [ 22.860729][ T289] F2FS-fs (loop0): Found nat_bits in checkpoint [pid 289] mount("/dev/loop0", "./file1", "f2fs", 0, "") = 0 [pid 289] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 289] chdir("./file1") = 0 [pid 289] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 289] ioctl(4, LOOP_CLR_FD) = 0 [pid 289] close(4) = 0 [pid 289] futex(0x7f1fca4746cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 288] <... futex resumed>) = 0 [pid 288] futex(0x7f1fca4746c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 288] futex(0x7f1fca4746cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 289] <... futex resumed>) = 1 [pid 289] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_NONBLOCK|O_DIRECT, 0713) = 4 [pid 289] futex(0x7f1fca4746cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 288] <... futex resumed>) = 0 [pid 288] futex(0x7f1fca4746c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 288] futex(0x7f1fca4746cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 289] <... futex resumed>) = 1 [pid 289] writev(4, [{iov_base="\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=409600}], 1) = 409600 [pid 289] futex(0x7f1fca4746cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 288] <... futex resumed>) = 0 [pid 288] futex(0x7f1fca4746c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 288] futex(0x7f1fca4746cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 289] <... futex resumed>) = 1 [ 22.891570][ T289] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 22.899314][ T30] audit: type=1400 audit(1756425727.152:69): avc: denied { mount } for pid=288 comm="syz-executor298" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 22.919504][ T289] F2FS-fs (loop0): access invalid blkaddr:1886221359 [ 22.921910][ T30] audit: type=1400 audit(1756425727.162:70): avc: denied { write } for pid=288 comm="syz-executor298" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 22.928052][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 22.949911][ T30] audit: type=1400 audit(1756425727.162:71): avc: denied { add_name } for pid=288 comm="syz-executor298" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 22.960344][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 22.960356][ T289] Call Trace: [ 22.960362][ T289] [ 22.960368][ T289] __dump_stack+0x21/0x30 [ 22.981649][ T30] audit: type=1400 audit(1756425727.162:72): avc: denied { create } for pid=288 comm="syz-executor298" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 22.991333][ T289] dump_stack_lvl+0xee/0x150 [ 22.991355][ T289] ? show_regs_print_info+0x20/0x20 [ 22.994724][ T30] audit: type=1400 audit(1756425727.162:73): avc: denied { read write } for pid=288 comm="syz-executor298" name="file1" dev="loop0" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 22.997558][ T289] ? f2fs_set_node_page_dirty+0x40f/0x590 [ 22.997582][ T289] ? set_page_dirty+0x1ae/0x310 [ 23.065456][ T289] dump_stack+0x15/0x20 [ 23.069621][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 23.074984][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 23.081133][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 23.086342][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 23.091869][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 23.097696][ T289] ? __kasan_check_write+0x14/0x20 [ 23.102852][ T289] ? data_blkaddr+0x330/0x330 [ 23.107963][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 23.113500][ T289] ? addrs_per_block+0x110/0x110 [ 23.118435][ T289] ? dquot_initialize+0x20/0x20 [ 23.123274][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 23.128481][ T289] f2fs_truncate+0x1d7/0x3d0 [ 23.133072][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 23.137824][ T289] f2fs_setattr+0xaca/0x11b0 [ 23.142412][ T289] ? f2fs_getattr+0x670/0x670 [ 23.147075][ T289] notify_change+0xbca/0xe90 [ 23.151695][ T289] do_truncate+0x197/0x220 [ 23.156107][ T289] ? dquot_file_open+0x86/0xb0 [ 23.160877][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 23.165934][ T289] path_openat+0x2769/0x2f10 [ 23.170508][ T289] ? do_syscall_64+0x4c/0xa0 [ 23.175084][ T289] ? do_filp_open+0x3e0/0x3e0 [ 23.179744][ T289] do_filp_open+0x1b3/0x3e0 [ 23.184230][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 23.188809][ T289] do_sys_openat2+0x14c/0x7b0 [ 23.193469][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.198656][ T289] ? do_sys_open+0xe0/0xe0 [ 23.203061][ T289] ? do_notify_parent+0x800/0x800 [ 23.208070][ T289] __x64_sys_open+0x11c/0x140 [ 23.212730][ T289] x64_sys_call+0x3fc/0x9a0 [ 23.217258][ T289] do_syscall_64+0x4c/0xa0 [ 23.221700][ T289] ? clear_bhb_loop+0x50/0xa0 [ 23.226381][ T289] ? clear_bhb_loop+0x50/0xa0 [ 23.231069][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 23.236981][ T289] RIP: 0033:0x7f1fca3dd329 [ 23.241397][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 23.260990][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 23.269408][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 23.277383][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 23.285355][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [pid 289] open("./file1", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_NOATIME, 0100 [pid 288] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 23.293311][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 23.301267][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 23.309247][ T289] [ 23.313320][ T289] F2FS-fs (loop0): access invalid blkaddr:2054779695 [ 23.320090][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 23.331034][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 23.341074][ T289] Call Trace: [ 23.344351][ T289] [ 23.347281][ T289] __dump_stack+0x21/0x30 [ 23.351714][ T289] dump_stack_lvl+0xee/0x150 [ 23.356298][ T289] ? show_regs_print_info+0x20/0x20 [ 23.361482][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 23.367189][ T289] ? set_page_dirty+0x1ae/0x310 [ 23.372030][ T289] dump_stack+0x15/0x20 [ 23.376182][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 23.381563][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 23.387702][ T289] ? f2fs_inode_dirtied+0x308/0x360 [pid 288] exit_group(0) = ? [ 23.392892][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 23.398446][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 23.404165][ T289] ? __kasan_check_write+0x14/0x20 [ 23.409281][ T289] ? data_blkaddr+0x330/0x330 [ 23.413966][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 23.419516][ T289] ? addrs_per_block+0x110/0x110 [ 23.424762][ T289] ? dquot_initialize+0x20/0x20 [ 23.429622][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 23.434819][ T289] f2fs_truncate+0x1d7/0x3d0 [ 23.439412][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 23.444164][ T289] f2fs_setattr+0xaca/0x11b0 [ 23.448747][ T289] ? f2fs_getattr+0x670/0x670 [ 23.453409][ T289] notify_change+0xbca/0xe90 [ 23.457985][ T289] do_truncate+0x197/0x220 [ 23.462474][ T289] ? dquot_file_open+0x86/0xb0 [ 23.467221][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 23.472229][ T289] path_openat+0x2769/0x2f10 [ 23.476862][ T289] ? do_syscall_64+0x4c/0xa0 [ 23.481459][ T289] ? do_filp_open+0x3e0/0x3e0 [ 23.486138][ T289] do_filp_open+0x1b3/0x3e0 [ 23.490630][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 23.495208][ T289] do_sys_openat2+0x14c/0x7b0 [ 23.499871][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.505062][ T289] ? do_sys_open+0xe0/0xe0 [ 23.509463][ T289] ? do_notify_parent+0x800/0x800 [ 23.514481][ T289] __x64_sys_open+0x11c/0x140 [ 23.519158][ T289] x64_sys_call+0x3fc/0x9a0 [ 23.523649][ T289] do_syscall_64+0x4c/0xa0 [ 23.528059][ T289] ? clear_bhb_loop+0x50/0xa0 [ 23.532739][ T289] ? clear_bhb_loop+0x50/0xa0 [ 23.537405][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 23.543282][ T289] RIP: 0033:0x7f1fca3dd329 [ 23.547683][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 23.567385][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 23.575798][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 23.583768][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 23.591831][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 23.599794][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 23.607757][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 23.615856][ T289] [ 23.618957][ T289] F2FS-fs (loop0): access invalid blkaddr:1634560301 [ 23.625908][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 23.636720][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 23.646774][ T289] Call Trace: [ 23.650061][ T289] [ 23.652983][ T289] __dump_stack+0x21/0x30 [ 23.657303][ T289] dump_stack_lvl+0xee/0x150 [ 23.661874][ T289] ? show_regs_print_info+0x20/0x20 [ 23.667068][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 23.672771][ T289] ? set_page_dirty+0x1ae/0x310 [ 23.677619][ T289] dump_stack+0x15/0x20 [ 23.681759][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 23.687114][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 23.693252][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 23.698433][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 23.703971][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 23.709673][ T289] ? __kasan_check_write+0x14/0x20 [ 23.714782][ T289] ? data_blkaddr+0x330/0x330 [ 23.719548][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 23.724992][ T289] ? addrs_per_block+0x110/0x110 [ 23.730000][ T289] ? dquot_initialize+0x20/0x20 [ 23.734840][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 23.740033][ T289] f2fs_truncate+0x1d7/0x3d0 [ 23.744605][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 23.749353][ T289] f2fs_setattr+0xaca/0x11b0 [ 23.754031][ T289] ? f2fs_getattr+0x670/0x670 [ 23.758706][ T289] notify_change+0xbca/0xe90 [ 23.763452][ T289] do_truncate+0x197/0x220 [ 23.767849][ T289] ? dquot_file_open+0x86/0xb0 [ 23.772604][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 23.777612][ T289] path_openat+0x2769/0x2f10 [ 23.782204][ T289] ? do_syscall_64+0x4c/0xa0 [ 23.786803][ T289] ? do_filp_open+0x3e0/0x3e0 [ 23.791473][ T289] do_filp_open+0x1b3/0x3e0 [ 23.795962][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 23.800541][ T289] do_sys_openat2+0x14c/0x7b0 [ 23.805217][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.810397][ T289] ? do_sys_open+0xe0/0xe0 [ 23.814794][ T289] ? do_notify_parent+0x800/0x800 [ 23.819809][ T289] __x64_sys_open+0x11c/0x140 [ 23.824490][ T289] x64_sys_call+0x3fc/0x9a0 [ 23.828999][ T289] do_syscall_64+0x4c/0xa0 [ 23.833409][ T289] ? clear_bhb_loop+0x50/0xa0 [ 23.838079][ T289] ? clear_bhb_loop+0x50/0xa0 [ 23.842800][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 23.848699][ T289] RIP: 0033:0x7f1fca3dd329 [ 23.853124][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 23.873249][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 23.881658][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 23.889624][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 23.897709][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 23.905692][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 23.913661][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 23.921632][ T289] [ 23.924832][ T289] F2FS-fs (loop0): access invalid blkaddr:1701274983 [ 23.931656][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 23.942160][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 23.952293][ T289] Call Trace: [ 23.955665][ T289] [ 23.958599][ T289] __dump_stack+0x21/0x30 [ 23.962927][ T289] dump_stack_lvl+0xee/0x150 [ 23.967508][ T289] ? show_regs_print_info+0x20/0x20 [ 23.972700][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 23.978423][ T289] ? set_page_dirty+0x1ae/0x310 [ 23.983279][ T289] dump_stack+0x15/0x20 [ 23.987628][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 23.993015][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 23.999175][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 24.004465][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 24.010017][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 24.015745][ T289] ? __kasan_check_write+0x14/0x20 [ 24.020849][ T289] ? data_blkaddr+0x330/0x330 [ 24.025521][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 24.031061][ T289] ? addrs_per_block+0x110/0x110 [ 24.036014][ T289] ? dquot_initialize+0x20/0x20 [ 24.040870][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 24.046065][ T289] f2fs_truncate+0x1d7/0x3d0 [ 24.050709][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 24.055496][ T289] f2fs_setattr+0xaca/0x11b0 [ 24.060096][ T289] ? f2fs_getattr+0x670/0x670 [ 24.064772][ T289] notify_change+0xbca/0xe90 [ 24.069359][ T289] do_truncate+0x197/0x220 [ 24.073871][ T289] ? dquot_file_open+0x86/0xb0 [ 24.078652][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 24.083694][ T289] path_openat+0x2769/0x2f10 [ 24.088286][ T289] ? do_syscall_64+0x4c/0xa0 [ 24.092895][ T289] ? do_filp_open+0x3e0/0x3e0 [ 24.097569][ T289] do_filp_open+0x1b3/0x3e0 [ 24.102069][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 24.106670][ T289] do_sys_openat2+0x14c/0x7b0 [ 24.111484][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.116710][ T289] ? do_sys_open+0xe0/0xe0 [ 24.121120][ T289] ? do_notify_parent+0x800/0x800 [ 24.126142][ T289] __x64_sys_open+0x11c/0x140 [ 24.130911][ T289] x64_sys_call+0x3fc/0x9a0 [ 24.135416][ T289] do_syscall_64+0x4c/0xa0 [ 24.140109][ T289] ? clear_bhb_loop+0x50/0xa0 [ 24.144781][ T289] ? clear_bhb_loop+0x50/0xa0 [ 24.149538][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 24.155444][ T289] RIP: 0033:0x7f1fca3dd329 [ 24.159853][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 24.179648][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 24.188086][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 24.196059][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 24.204039][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 24.212183][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 24.220154][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 24.228123][ T289] [ 24.231261][ T289] F2FS-fs (loop0): access invalid blkaddr:875771502 [ 24.238144][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 24.248673][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 24.258731][ T289] Call Trace: [ 24.262019][ T289] [ 24.264937][ T289] __dump_stack+0x21/0x30 [ 24.269372][ T289] dump_stack_lvl+0xee/0x150 [ 24.273964][ T289] ? show_regs_print_info+0x20/0x20 [ 24.279176][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 24.284984][ T289] ? set_page_dirty+0x1ae/0x310 [ 24.289840][ T289] dump_stack+0x15/0x20 [ 24.294000][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 24.299357][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 24.305498][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 24.310680][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 24.316210][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 24.321921][ T289] ? __kasan_check_write+0x14/0x20 [ 24.327200][ T289] ? data_blkaddr+0x330/0x330 [ 24.331860][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 24.337392][ T289] ? addrs_per_block+0x110/0x110 [ 24.342494][ T289] ? dquot_initialize+0x20/0x20 [ 24.347327][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 24.352549][ T289] f2fs_truncate+0x1d7/0x3d0 [ 24.357128][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 24.361961][ T289] f2fs_setattr+0xaca/0x11b0 [ 24.366653][ T289] ? f2fs_getattr+0x670/0x670 [ 24.371504][ T289] notify_change+0xbca/0xe90 [ 24.376101][ T289] do_truncate+0x197/0x220 [ 24.380523][ T289] ? dquot_file_open+0x86/0xb0 [ 24.385289][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 24.390313][ T289] path_openat+0x2769/0x2f10 [ 24.394889][ T289] ? do_syscall_64+0x4c/0xa0 [ 24.399464][ T289] ? do_filp_open+0x3e0/0x3e0 [ 24.404134][ T289] do_filp_open+0x1b3/0x3e0 [ 24.408620][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 24.413634][ T289] do_sys_openat2+0x14c/0x7b0 [ 24.418424][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.423639][ T289] ? do_sys_open+0xe0/0xe0 [ 24.428063][ T289] ? do_notify_parent+0x800/0x800 [ 24.433083][ T289] __x64_sys_open+0x11c/0x140 [ 24.437785][ T289] x64_sys_call+0x3fc/0x9a0 [ 24.442322][ T289] do_syscall_64+0x4c/0xa0 [ 24.446747][ T289] ? clear_bhb_loop+0x50/0xa0 [ 24.451665][ T289] ? clear_bhb_loop+0x50/0xa0 [ 24.456352][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 24.462234][ T289] RIP: 0033:0x7f1fca3dd329 [ 24.466726][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 24.486498][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 24.495002][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 24.502978][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 24.510946][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 24.518916][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 24.526883][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 24.534846][ T289] [ 24.537973][ T289] F2FS-fs (loop0): access invalid blkaddr:892482097 [ 24.544657][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 24.555136][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 24.565174][ T289] Call Trace: [ 24.568437][ T289] [ 24.571371][ T289] __dump_stack+0x21/0x30 [ 24.575694][ T289] dump_stack_lvl+0xee/0x150 [ 24.580266][ T289] ? show_regs_print_info+0x20/0x20 [ 24.585448][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 24.591171][ T289] ? set_page_dirty+0x1ae/0x310 [ 24.596013][ T289] dump_stack+0x15/0x20 [ 24.600154][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 24.605596][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 24.611735][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 24.616917][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 24.622446][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 24.628149][ T289] ? __kasan_check_write+0x14/0x20 [ 24.633256][ T289] ? data_blkaddr+0x330/0x330 [ 24.637922][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 24.643364][ T289] ? addrs_per_block+0x110/0x110 [ 24.648390][ T289] ? dquot_initialize+0x20/0x20 [ 24.653225][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 24.658407][ T289] f2fs_truncate+0x1d7/0x3d0 [ 24.662981][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 24.668168][ T289] f2fs_setattr+0xaca/0x11b0 [ 24.672828][ T289] ? f2fs_getattr+0x670/0x670 [ 24.677485][ T289] notify_change+0xbca/0xe90 [ 24.682066][ T289] do_truncate+0x197/0x220 [ 24.686471][ T289] ? dquot_file_open+0x86/0xb0 [ 24.691227][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 24.696320][ T289] path_openat+0x2769/0x2f10 [ 24.700900][ T289] ? do_syscall_64+0x4c/0xa0 [ 24.705483][ T289] ? do_filp_open+0x3e0/0x3e0 [ 24.710142][ T289] do_filp_open+0x1b3/0x3e0 [ 24.714639][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 24.719224][ T289] do_sys_openat2+0x14c/0x7b0 [ 24.723885][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.729155][ T289] ? do_sys_open+0xe0/0xe0 [ 24.733726][ T289] ? do_notify_parent+0x800/0x800 [ 24.738737][ T289] __x64_sys_open+0x11c/0x140 [ 24.743396][ T289] x64_sys_call+0x3fc/0x9a0 [ 24.747887][ T289] do_syscall_64+0x4c/0xa0 [ 24.752302][ T289] ? clear_bhb_loop+0x50/0xa0 [ 24.756973][ T289] ? clear_bhb_loop+0x50/0xa0 [ 24.761659][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 24.767553][ T289] RIP: 0033:0x7f1fca3dd329 [ 24.771978][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 24.791663][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 24.800079][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 24.808059][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 24.816041][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 24.824182][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 24.832148][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 24.840118][ T289] [ 24.843318][ T289] F2FS-fs (loop0): access invalid blkaddr:1714370099 [ 24.850026][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 24.860520][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 24.870577][ T289] Call Trace: [ 24.873854][ T289] [ 24.876888][ T289] __dump_stack+0x21/0x30 [ 24.881217][ T289] dump_stack_lvl+0xee/0x150 [ 24.885802][ T289] ? show_regs_print_info+0x20/0x20 [ 24.891021][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 24.896828][ T289] ? set_page_dirty+0x1ae/0x310 [ 24.901680][ T289] dump_stack+0x15/0x20 [ 24.905833][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 24.911202][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 24.917355][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 24.922551][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 24.928102][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 24.933821][ T289] ? __kasan_check_write+0x14/0x20 [ 24.938925][ T289] ? data_blkaddr+0x330/0x330 [ 24.943601][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 24.949053][ T289] ? addrs_per_block+0x110/0x110 [ 24.953985][ T289] ? dquot_initialize+0x20/0x20 [ 24.958844][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 24.964036][ T289] f2fs_truncate+0x1d7/0x3d0 [ 24.968691][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 24.973448][ T289] f2fs_setattr+0xaca/0x11b0 [ 24.978035][ T289] ? f2fs_getattr+0x670/0x670 [ 24.982707][ T289] notify_change+0xbca/0xe90 [ 24.987297][ T289] do_truncate+0x197/0x220 [ 24.991719][ T289] ? dquot_file_open+0x86/0xb0 [ 24.996488][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 25.001531][ T289] path_openat+0x2769/0x2f10 [ 25.006118][ T289] ? do_syscall_64+0x4c/0xa0 [ 25.010724][ T289] ? do_filp_open+0x3e0/0x3e0 [ 25.015429][ T289] do_filp_open+0x1b3/0x3e0 [ 25.020081][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 25.024676][ T289] do_sys_openat2+0x14c/0x7b0 [ 25.029349][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.034542][ T289] ? do_sys_open+0xe0/0xe0 [ 25.038953][ T289] ? do_notify_parent+0x800/0x800 [ 25.043977][ T289] __x64_sys_open+0x11c/0x140 [ 25.048737][ T289] x64_sys_call+0x3fc/0x9a0 [ 25.053245][ T289] do_syscall_64+0x4c/0xa0 [ 25.057748][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.062435][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.067110][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 25.073175][ T289] RIP: 0033:0x7f1fca3dd329 [ 25.077584][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 25.097271][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 25.105774][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 25.113837][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 25.121806][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 25.129773][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 25.137742][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 25.145818][ T289] [ 25.148977][ T289] F2FS-fs (loop0): access invalid blkaddr:811953257 [ 25.155596][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 25.166282][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 25.176336][ T289] Call Trace: [ 25.179604][ T289] [ 25.182520][ T289] __dump_stack+0x21/0x30 [ 25.187212][ T289] dump_stack_lvl+0xee/0x150 [ 25.191804][ T289] ? show_regs_print_info+0x20/0x20 [ 25.196995][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 25.202814][ T289] ? set_page_dirty+0x1ae/0x310 [ 25.207749][ T289] dump_stack+0x15/0x20 [ 25.211912][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 25.217267][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 25.223406][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 25.228588][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 25.234224][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 25.239935][ T289] ? __kasan_check_write+0x14/0x20 [ 25.245114][ T289] ? data_blkaddr+0x330/0x330 [ 25.249925][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 25.255394][ T289] ? addrs_per_block+0x110/0x110 [ 25.260431][ T289] ? dquot_initialize+0x20/0x20 [ 25.265278][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 25.270483][ T289] f2fs_truncate+0x1d7/0x3d0 [ 25.275142][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 25.279890][ T289] f2fs_setattr+0xaca/0x11b0 [ 25.284476][ T289] ? f2fs_getattr+0x670/0x670 [ 25.289157][ T289] notify_change+0xbca/0xe90 [ 25.293754][ T289] do_truncate+0x197/0x220 [ 25.298259][ T289] ? dquot_file_open+0x86/0xb0 [ 25.303093][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 25.308199][ T289] path_openat+0x2769/0x2f10 [ 25.312875][ T289] ? do_syscall_64+0x4c/0xa0 [ 25.317707][ T289] ? do_filp_open+0x3e0/0x3e0 [ 25.322376][ T289] do_filp_open+0x1b3/0x3e0 [ 25.326865][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 25.331450][ T289] do_sys_openat2+0x14c/0x7b0 [ 25.336373][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.341556][ T289] ? do_sys_open+0xe0/0xe0 [ 25.345957][ T289] ? do_notify_parent+0x800/0x800 [ 25.350979][ T289] __x64_sys_open+0x11c/0x140 [ 25.355640][ T289] x64_sys_call+0x3fc/0x9a0 [ 25.360127][ T289] do_syscall_64+0x4c/0xa0 [ 25.364640][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.369303][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.373962][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 25.379844][ T289] RIP: 0033:0x7f1fca3dd329 [ 25.384257][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 25.403861][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 25.412269][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 25.420228][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 25.428184][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 25.436140][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 25.444103][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 25.452158][ T289] [ 25.455243][ T289] F2FS-fs (loop0): access invalid blkaddr:1818846767 [ 25.461934][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 25.472441][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 25.482490][ T289] Call Trace: [ 25.485753][ T289] [ 25.488692][ T289] __dump_stack+0x21/0x30 [ 25.493029][ T289] dump_stack_lvl+0xee/0x150 [ 25.497602][ T289] ? show_regs_print_info+0x20/0x20 [ 25.502917][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 25.508623][ T289] ? set_page_dirty+0x1ae/0x310 [ 25.513460][ T289] dump_stack+0x15/0x20 [ 25.517599][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 25.522955][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 25.529354][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 25.534534][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 25.540063][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 25.545764][ T289] ? __kasan_check_write+0x14/0x20 [ 25.550863][ T289] ? data_blkaddr+0x330/0x330 [ 25.555523][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 25.560966][ T289] ? addrs_per_block+0x110/0x110 [ 25.565885][ T289] ? dquot_initialize+0x20/0x20 [ 25.570721][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 25.575901][ T289] f2fs_truncate+0x1d7/0x3d0 [ 25.580487][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 25.585257][ T289] f2fs_setattr+0xaca/0x11b0 [ 25.589834][ T289] ? f2fs_getattr+0x670/0x670 [ 25.594494][ T289] notify_change+0xbca/0xe90 [ 25.599070][ T289] do_truncate+0x197/0x220 [ 25.603653][ T289] ? dquot_file_open+0x86/0xb0 [ 25.608499][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 25.613521][ T289] path_openat+0x2769/0x2f10 [ 25.618099][ T289] ? do_syscall_64+0x4c/0xa0 [ 25.622688][ T289] ? do_filp_open+0x3e0/0x3e0 [ 25.627434][ T289] do_filp_open+0x1b3/0x3e0 [ 25.631940][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 25.636530][ T289] do_sys_openat2+0x14c/0x7b0 [ 25.641189][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.646373][ T289] ? do_sys_open+0xe0/0xe0 [ 25.650770][ T289] ? do_notify_parent+0x800/0x800 [ 25.655786][ T289] __x64_sys_open+0x11c/0x140 [ 25.660455][ T289] x64_sys_call+0x3fc/0x9a0 [ 25.664950][ T289] do_syscall_64+0x4c/0xa0 [ 25.669358][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.674024][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.678693][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 25.684579][ T289] RIP: 0033:0x7f1fca3dd329 [ 25.688991][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 25.708588][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 25.716999][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 25.724966][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 25.732932][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 25.740902][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 25.748915][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 25.757322][ T289] [ 25.760413][ T289] F2FS-fs (loop0): Inconsistent error blkaddr:12389, sit bitmap:0 [ 25.768244][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 25.778741][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 25.788795][ T289] Call Trace: [ 25.792276][ T289] [ 25.795200][ T289] __dump_stack+0x21/0x30 [ 25.799526][ T289] dump_stack_lvl+0xee/0x150 [ 25.804111][ T289] ? show_regs_print_info+0x20/0x20 [ 25.809302][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 25.815190][ T289] ? set_page_dirty+0x1ae/0x310 [ 25.820036][ T289] dump_stack+0x15/0x20 [ 25.824188][ T289] f2fs_is_valid_blkaddr+0xc64/0x12a0 [ 25.829563][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 25.835913][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 25.841130][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 25.846783][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 25.852704][ T289] ? __kasan_check_write+0x14/0x20 [ 25.857815][ T289] ? data_blkaddr+0x330/0x330 [ 25.862494][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 25.868046][ T289] ? addrs_per_block+0x110/0x110 [ 25.872987][ T289] ? dquot_initialize+0x20/0x20 [ 25.877835][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 25.883029][ T289] f2fs_truncate+0x1d7/0x3d0 [ 25.887631][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 25.892391][ T289] f2fs_setattr+0xaca/0x11b0 [ 25.896984][ T289] ? f2fs_getattr+0x670/0x670 [ 25.901655][ T289] notify_change+0xbca/0xe90 [ 25.906246][ T289] do_truncate+0x197/0x220 [ 25.910660][ T289] ? dquot_file_open+0x86/0xb0 [ 25.915420][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 25.920441][ T289] path_openat+0x2769/0x2f10 [ 25.925031][ T289] ? do_syscall_64+0x4c/0xa0 [ 25.929665][ T289] ? do_filp_open+0x3e0/0x3e0 [ 25.934340][ T289] do_filp_open+0x1b3/0x3e0 [ 25.938837][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 25.943426][ T289] do_sys_openat2+0x14c/0x7b0 [ 25.948107][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.953303][ T289] ? do_sys_open+0xe0/0xe0 [ 25.957715][ T289] ? do_notify_parent+0x800/0x800 [ 25.962740][ T289] __x64_sys_open+0x11c/0x140 [ 25.967432][ T289] x64_sys_call+0x3fc/0x9a0 [ 25.971945][ T289] do_syscall_64+0x4c/0xa0 [ 25.976363][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.981032][ T289] ? clear_bhb_loop+0x50/0xa0 [ 25.985711][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 25.991626][ T289] RIP: 0033:0x7f1fca3dd329 [ 25.996048][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.015653][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 26.024063][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 26.032034][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 26.040003][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 26.047967][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 26.055934][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 26.063903][ T289] [ 26.069377][ T289] F2FS-fs (loop0): access invalid blkaddr:6 [ 26.075299][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 26.085784][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 26.095828][ T289] Call Trace: [ 26.099097][ T289] [ 26.102185][ T289] __dump_stack+0x21/0x30 [ 26.106516][ T289] dump_stack_lvl+0xee/0x150 [ 26.111098][ T289] ? show_regs_print_info+0x20/0x20 [ 26.116282][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 26.121994][ T289] ? set_page_dirty+0x1ae/0x310 [ 26.127011][ T289] dump_stack+0x15/0x20 [ 26.131170][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 26.136543][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 26.142685][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 26.147866][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 26.153400][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 26.159123][ T289] ? __kasan_check_write+0x14/0x20 [ 26.164237][ T289] ? data_blkaddr+0x330/0x330 [ 26.168914][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 26.174367][ T289] ? addrs_per_block+0x110/0x110 [ 26.179376][ T289] ? dquot_initialize+0x20/0x20 [ 26.184301][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 26.189488][ T289] f2fs_truncate+0x1d7/0x3d0 [ 26.194067][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 26.198814][ T289] f2fs_setattr+0xaca/0x11b0 [ 26.203394][ T289] ? f2fs_getattr+0x670/0x670 [ 26.208171][ T289] notify_change+0xbca/0xe90 [ 26.212790][ T289] do_truncate+0x197/0x220 [ 26.217188][ T289] ? dquot_file_open+0x86/0xb0 [ 26.221935][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 26.226955][ T289] path_openat+0x2769/0x2f10 [ 26.231550][ T289] ? do_syscall_64+0x4c/0xa0 [ 26.236132][ T289] ? do_filp_open+0x3e0/0x3e0 [ 26.240799][ T289] do_filp_open+0x1b3/0x3e0 [ 26.245287][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 26.249943][ T289] do_sys_openat2+0x14c/0x7b0 [ 26.254616][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.259813][ T289] ? do_sys_open+0xe0/0xe0 [ 26.264234][ T289] ? do_notify_parent+0x800/0x800 [ 26.269249][ T289] __x64_sys_open+0x11c/0x140 [ 26.273948][ T289] x64_sys_call+0x3fc/0x9a0 [ 26.278450][ T289] do_syscall_64+0x4c/0xa0 [ 26.282881][ T289] ? clear_bhb_loop+0x50/0xa0 [ 26.287632][ T289] ? clear_bhb_loop+0x50/0xa0 [ 26.292378][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 26.298256][ T289] RIP: 0033:0x7f1fca3dd329 [ 26.302760][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.322521][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 26.331098][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 26.339059][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 26.347134][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 26.355179][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 26.363142][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 26.371094][ T289] [ 26.374196][ T289] F2FS-fs (loop0): access invalid blkaddr:6 [ 26.380120][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 26.390685][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 26.400721][ T289] Call Trace: [ 26.403983][ T289] [ 26.406895][ T289] __dump_stack+0x21/0x30 [ 26.411211][ T289] dump_stack_lvl+0xee/0x150 [ 26.415790][ T289] ? show_regs_print_info+0x20/0x20 [ 26.420989][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 26.426735][ T289] ? set_page_dirty+0x1ae/0x310 [ 26.431598][ T289] dump_stack+0x15/0x20 [ 26.435744][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 26.441400][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 26.447540][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 26.452860][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 26.458409][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 26.464424][ T289] ? __kasan_check_write+0x14/0x20 [ 26.469656][ T289] ? data_blkaddr+0x330/0x330 [ 26.474328][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 26.479778][ T289] ? addrs_per_block+0x110/0x110 [ 26.484707][ T289] ? dquot_initialize+0x20/0x20 [ 26.489571][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 26.494898][ T289] f2fs_truncate+0x1d7/0x3d0 [ 26.499488][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 26.504238][ T289] f2fs_setattr+0xaca/0x11b0 [ 26.508914][ T289] ? f2fs_getattr+0x670/0x670 [ 26.513581][ T289] notify_change+0xbca/0xe90 [ 26.518172][ T289] do_truncate+0x197/0x220 [ 26.522659][ T289] ? dquot_file_open+0x86/0xb0 [ 26.527410][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 26.532433][ T289] path_openat+0x2769/0x2f10 [ 26.537006][ T289] ? do_syscall_64+0x4c/0xa0 [ 26.541696][ T289] ? do_filp_open+0x3e0/0x3e0 [ 26.546354][ T289] do_filp_open+0x1b3/0x3e0 [ 26.550855][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 26.555429][ T289] do_sys_openat2+0x14c/0x7b0 [ 26.560098][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.565284][ T289] ? do_sys_open+0xe0/0xe0 [ 26.569681][ T289] ? do_notify_parent+0x800/0x800 [ 26.574687][ T289] __x64_sys_open+0x11c/0x140 [ 26.579371][ T289] x64_sys_call+0x3fc/0x9a0 [ 26.583856][ T289] do_syscall_64+0x4c/0xa0 [ 26.588252][ T289] ? clear_bhb_loop+0x50/0xa0 [ 26.592912][ T289] ? clear_bhb_loop+0x50/0xa0 [ 26.597573][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 26.603457][ T289] RIP: 0033:0x7f1fca3dd329 [ 26.607871][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.627563][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 26.635970][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 26.644230][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 26.652313][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 26.660276][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 26.668230][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 26.676286][ T289] [ 26.679476][ T289] F2FS-fs (loop0): access invalid blkaddr:1 [ 26.685379][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 26.695924][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 26.705986][ T289] Call Trace: [ 26.709259][ T289] [ 26.712182][ T289] __dump_stack+0x21/0x30 [ 26.716509][ T289] dump_stack_lvl+0xee/0x150 [ 26.721092][ T289] ? show_regs_print_info+0x20/0x20 [ 26.726284][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 26.732003][ T289] ? set_page_dirty+0x1ae/0x310 [ 26.736859][ T289] dump_stack+0x15/0x20 [ 26.741009][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 26.746383][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 26.752530][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 26.757722][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 26.763351][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 26.769068][ T289] ? __kasan_check_write+0x14/0x20 [ 26.774529][ T289] ? data_blkaddr+0x330/0x330 [ 26.779204][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 26.784669][ T289] ? addrs_per_block+0x110/0x110 [ 26.789605][ T289] ? dquot_initialize+0x20/0x20 [ 26.794452][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 26.799651][ T289] f2fs_truncate+0x1d7/0x3d0 [ 26.804234][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 26.808989][ T289] f2fs_setattr+0xaca/0x11b0 [ 26.813592][ T289] ? f2fs_getattr+0x670/0x670 [ 26.818279][ T289] notify_change+0xbca/0xe90 [ 26.822876][ T289] do_truncate+0x197/0x220 [ 26.827386][ T289] ? dquot_file_open+0x86/0xb0 [ 26.832161][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 26.837180][ T289] path_openat+0x2769/0x2f10 [ 26.841862][ T289] ? do_syscall_64+0x4c/0xa0 [ 26.846468][ T289] ? do_filp_open+0x3e0/0x3e0 [ 26.851137][ T289] do_filp_open+0x1b3/0x3e0 [ 26.855700][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 26.860289][ T289] do_sys_openat2+0x14c/0x7b0 [ 26.864961][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.870177][ T289] ? do_sys_open+0xe0/0xe0 [ 26.874587][ T289] ? do_notify_parent+0x800/0x800 [ 26.879607][ T289] __x64_sys_open+0x11c/0x140 [ 26.884285][ T289] x64_sys_call+0x3fc/0x9a0 [ 26.888784][ T289] do_syscall_64+0x4c/0xa0 [ 26.893282][ T289] ? clear_bhb_loop+0x50/0xa0 [ 26.897960][ T289] ? clear_bhb_loop+0x50/0xa0 [ 26.902644][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 26.908530][ T289] RIP: 0033:0x7f1fca3dd329 [ 26.913033][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.932907][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 26.941332][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 26.949301][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 26.957265][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 26.965228][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 26.973207][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 26.981176][ T289] [ 26.984265][ T289] F2FS-fs (loop0): access invalid blkaddr:1219692001 [ 26.991395][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 27.001915][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 27.011982][ T289] Call Trace: [ 27.015456][ T289] [ 27.018372][ T289] __dump_stack+0x21/0x30 [ 27.022689][ T289] dump_stack_lvl+0xee/0x150 [ 27.027357][ T289] ? show_regs_print_info+0x20/0x20 [ 27.032543][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 27.038271][ T289] ? set_page_dirty+0x1ae/0x310 [ 27.043111][ T289] dump_stack+0x15/0x20 [ 27.047283][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 27.052683][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 27.058829][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 27.064024][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 27.069651][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 27.075368][ T289] ? __kasan_check_write+0x14/0x20 [ 27.080552][ T289] ? data_blkaddr+0x330/0x330 [ 27.085212][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 27.090660][ T289] ? addrs_per_block+0x110/0x110 [ 27.095590][ T289] ? dquot_initialize+0x20/0x20 [ 27.100429][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 27.105701][ T289] f2fs_truncate+0x1d7/0x3d0 [ 27.110293][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 27.115150][ T289] f2fs_setattr+0xaca/0x11b0 [ 27.119996][ T289] ? f2fs_getattr+0x670/0x670 [ 27.124738][ T289] notify_change+0xbca/0xe90 [ 27.129328][ T289] do_truncate+0x197/0x220 [ 27.133900][ T289] ? dquot_file_open+0x86/0xb0 [ 27.138731][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 27.143745][ T289] path_openat+0x2769/0x2f10 [ 27.148333][ T289] ? do_syscall_64+0x4c/0xa0 [ 27.152906][ T289] ? do_filp_open+0x3e0/0x3e0 [ 27.157568][ T289] do_filp_open+0x1b3/0x3e0 [ 27.162049][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 27.166722][ T289] do_sys_openat2+0x14c/0x7b0 [ 27.171393][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 27.176574][ T289] ? do_sys_open+0xe0/0xe0 [ 27.180989][ T289] ? do_notify_parent+0x800/0x800 [ 27.186011][ T289] __x64_sys_open+0x11c/0x140 [ 27.190684][ T289] x64_sys_call+0x3fc/0x9a0 [ 27.195186][ T289] do_syscall_64+0x4c/0xa0 [ 27.199585][ T289] ? clear_bhb_loop+0x50/0xa0 [ 27.204243][ T289] ? clear_bhb_loop+0x50/0xa0 [ 27.208912][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 27.214809][ T289] RIP: 0033:0x7f1fca3dd329 [ 27.219223][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 27.238819][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 27.247224][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 27.255190][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 27.263244][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 27.271296][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 27.279511][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 27.287468][ T289] [ 27.290602][ T289] ================================================================== [ 27.298672][ T289] BUG: KASAN: use-after-free in f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 27.307360][ T289] Read of size 4 at addr ffff88812438b000 by task syz-executor298/289 [ 27.315518][ T289] [ 27.317828][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 27.328314][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 27.338362][ T289] Call Trace: [ 27.341672][ T289] [ 27.344794][ T289] __dump_stack+0x21/0x30 [ 27.349121][ T289] dump_stack_lvl+0xee/0x150 [ 27.353741][ T289] ? show_regs_print_info+0x20/0x20 [ 27.358952][ T289] ? load_image+0x3a0/0x3a0 [ 27.363466][ T289] ? rwsem_write_trylock+0x130/0x300 [ 27.368827][ T289] print_address_description+0x7f/0x2c0 [ 27.374461][ T289] ? f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 27.380805][ T289] kasan_report+0xf1/0x140 [ 27.385219][ T289] ? up_write+0x7b/0x290 [ 27.389471][ T289] ? f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 27.395991][ T289] __asan_report_load4_noabort+0x14/0x20 [ 27.401621][ T289] f2fs_truncate_data_blocks_range+0x826/0xeb0 [ 27.407765][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 27.412962][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 27.418493][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 27.424197][ T289] ? __kasan_check_write+0x14/0x20 [ 27.429388][ T289] ? data_blkaddr+0x330/0x330 [ 27.434068][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 27.439527][ T289] ? addrs_per_block+0x110/0x110 [ 27.444565][ T289] ? dquot_initialize+0x20/0x20 [ 27.449414][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 27.454605][ T289] f2fs_truncate+0x1d7/0x3d0 [ 27.459179][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 27.463928][ T289] f2fs_setattr+0xaca/0x11b0 [ 27.468606][ T289] ? f2fs_getattr+0x670/0x670 [ 27.473269][ T289] notify_change+0xbca/0xe90 [ 27.477844][ T289] do_truncate+0x197/0x220 [ 27.482244][ T289] ? dquot_file_open+0x86/0xb0 [ 27.486989][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 27.491998][ T289] path_openat+0x2769/0x2f10 [ 27.496591][ T289] ? do_syscall_64+0x4c/0xa0 [ 27.501282][ T289] ? do_filp_open+0x3e0/0x3e0 [ 27.505946][ T289] do_filp_open+0x1b3/0x3e0 [ 27.510433][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 27.515267][ T289] do_sys_openat2+0x14c/0x7b0 [ 27.519939][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 27.525133][ T289] ? do_sys_open+0xe0/0xe0 [ 27.529531][ T289] ? do_notify_parent+0x800/0x800 [ 27.534554][ T289] __x64_sys_open+0x11c/0x140 [ 27.539238][ T289] x64_sys_call+0x3fc/0x9a0 [ 27.543763][ T289] do_syscall_64+0x4c/0xa0 [ 27.548304][ T289] ? clear_bhb_loop+0x50/0xa0 [ 27.552983][ T289] ? clear_bhb_loop+0x50/0xa0 [ 27.557783][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 27.563672][ T289] RIP: 0033:0x7f1fca3dd329 [ 27.568085][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 27.587774][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 27.596191][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 27.604343][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 27.612311][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 27.620278][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 27.628331][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 27.636300][ T289] [ 27.639313][ T289] [ 27.641649][ T289] Allocated by task 90: [ 27.645789][ T289] __kasan_slab_alloc+0xbd/0xf0 [ 27.650635][ T289] slab_post_alloc_hook+0x4f/0x2b0 [ 27.655740][ T289] kmem_cache_alloc+0xf7/0x260 [ 27.660523][ T289] __alloc_skb+0xe0/0x740 [ 27.664844][ T289] alloc_skb_with_frags+0xa8/0x620 [ 27.669948][ T289] sock_alloc_send_pskb+0x853/0x980 [ 27.675138][ T289] unix_dgram_sendmsg+0x5ea/0x1880 [ 27.680330][ T289] __sys_sendto+0x423/0x580 [ 27.684828][ T289] __x64_sys_sendto+0xe5/0x100 [ 27.689584][ T289] x64_sys_call+0x178/0x9a0 [ 27.694084][ T289] do_syscall_64+0x4c/0xa0 [ 27.698495][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 27.704381][ T289] [ 27.706696][ T289] Freed by task 83: [ 27.710496][ T289] kasan_set_track+0x4a/0x70 [ 27.715074][ T289] kasan_set_free_info+0x23/0x40 [ 27.720002][ T289] ____kasan_slab_free+0x125/0x160 [ 27.725103][ T289] __kasan_slab_free+0x11/0x20 [ 27.729856][ T289] slab_free_freelist_hook+0xc2/0x190 [ 27.735227][ T289] kmem_cache_free+0x100/0x320 [ 27.739981][ T289] kfree_skbmem+0x10c/0x180 [ 27.744480][ T289] consume_skb+0xb3/0x1f0 [ 27.748905][ T289] skb_free_datagram+0x28/0xe0 [ 27.753664][ T289] __unix_dgram_recvmsg+0x9ca/0xd50 [ 27.758876][ T289] unix_dgram_recvmsg+0xc2/0xe0 [ 27.763723][ T289] sock_read_iter+0x2a2/0x340 [ 27.768491][ T289] vfs_read+0x68b/0xbe0 [ 27.772634][ T289] ksys_read+0x140/0x240 [ 27.776980][ T289] __x64_sys_read+0x7b/0x90 [ 27.781483][ T289] x64_sys_call+0x96d/0x9a0 [ 27.786081][ T289] do_syscall_64+0x4c/0xa0 [ 27.790671][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 27.796573][ T289] [ 27.798894][ T289] The buggy address belongs to the object at ffff88812438b000 [ 27.798894][ T289] which belongs to the cache skbuff_head_cache of size 248 [ 27.813460][ T289] The buggy address is located 0 bytes inside of [ 27.813460][ T289] 248-byte region [ffff88812438b000, ffff88812438b0f8) [ 27.826554][ T289] The buggy address belongs to the page: [ 27.832177][ T289] page:ffffea000490e2c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x12438b [ 27.842407][ T289] flags: 0x4000000000000200(slab|zone=1) [ 27.848055][ T289] raw: 4000000000000200 0000000000000000 dead000000000122 ffff8881081ab980 [ 27.856630][ T289] raw: 0000000000000000 00000000800c000c 00000001ffffffff 0000000000000000 [ 27.865206][ T289] page dumped because: kasan: bad access detected [ 27.871605][ T289] page_owner tracks the page as allocated [ 27.877665][ T289] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 90, ts 26375750334, free_ts 26069683710 [ 27.893726][ T289] post_alloc_hook+0x192/0x1b0 [ 27.898673][ T289] prep_new_page+0x1c/0x110 [ 27.903173][ T289] get_page_from_freelist+0x2cc5/0x2d50 [ 27.908716][ T289] __alloc_pages+0x18f/0x440 [ 27.913311][ T289] new_slab+0xa1/0x4d0 [ 27.917375][ T289] ___slab_alloc+0x381/0x810 [ 27.921961][ T289] __slab_alloc+0x49/0x90 [ 27.926283][ T289] kmem_cache_alloc+0x138/0x260 [ 27.931128][ T289] __alloc_skb+0xe0/0x740 [ 27.935450][ T289] alloc_skb_with_frags+0xa8/0x620 [ 27.940550][ T289] sock_alloc_send_pskb+0x853/0x980 [ 27.945761][ T289] unix_dgram_sendmsg+0x5ea/0x1880 [ 27.950865][ T289] __sys_sendto+0x423/0x580 [ 27.955360][ T289] __x64_sys_sendto+0xe5/0x100 [ 27.960117][ T289] x64_sys_call+0x178/0x9a0 [ 27.964611][ T289] do_syscall_64+0x4c/0xa0 [ 27.969020][ T289] page last free stack trace: [ 27.973776][ T289] free_unref_page_prepare+0x542/0x550 [ 27.979227][ T289] free_unref_page+0xa2/0x550 [ 27.983904][ T289] __free_pages+0x6c/0x100 [ 27.988320][ T289] free_pages+0x82/0x90 [ 27.992471][ T289] tlb_finish_mmu+0x248/0x300 [ 27.997352][ T289] exit_mmap+0x40f/0x860 [ 28.001614][ T289] __mmput+0x93/0x320 [ 28.005590][ T289] mmput+0x50/0x150 [ 28.009390][ T289] do_exit+0x9d2/0x27a0 [ 28.013574][ T289] do_group_exit+0x141/0x310 [ 28.018160][ T289] __x64_sys_exit_group+0x3f/0x40 [ 28.023193][ T289] x64_sys_call+0x832/0x9a0 [ 28.027690][ T289] do_syscall_64+0x4c/0xa0 [ 28.032102][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 28.038010][ T289] [ 28.040323][ T289] Memory state around the buggy address: [ 28.045944][ T289] ffff88812438af00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 28.053995][ T289] ffff88812438af80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 28.062047][ T289] >ffff88812438b000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 28.070094][ T289] ^ [ 28.074170][ T289] ffff88812438b080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc [ 28.082312][ T289] ffff88812438b100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb [ 28.090360][ T289] ================================================================== [ 28.098409][ T289] Disabling lock debugging due to kernel taint [ 28.104872][ T289] F2FS-fs (loop0): access invalid blkaddr:606060544 [ 28.111525][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 28.123436][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 28.133496][ T289] Call Trace: [ 28.136772][ T289] [ 28.139702][ T289] __dump_stack+0x21/0x30 [ 28.144034][ T289] dump_stack_lvl+0xee/0x150 [ 28.148618][ T289] ? show_regs_print_info+0x20/0x20 [ 28.153902][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 28.159629][ T289] ? set_page_dirty+0x1ae/0x310 [ 28.164475][ T289] dump_stack+0x15/0x20 [ 28.168633][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 28.174024][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 28.180185][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 28.185382][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 28.190924][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 28.196752][ T289] ? __kasan_check_write+0x14/0x20 [ 28.202038][ T289] ? data_blkaddr+0x330/0x330 [ 28.206760][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 28.212215][ T289] ? addrs_per_block+0x110/0x110 [ 28.217249][ T289] ? dquot_initialize+0x20/0x20 [ 28.222115][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 28.227310][ T289] f2fs_truncate+0x1d7/0x3d0 [ 28.231897][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 28.236742][ T289] f2fs_setattr+0xaca/0x11b0 [ 28.241327][ T289] ? f2fs_getattr+0x670/0x670 [ 28.246006][ T289] notify_change+0xbca/0xe90 [ 28.250705][ T289] do_truncate+0x197/0x220 [ 28.255120][ T289] ? dquot_file_open+0x86/0xb0 [ 28.259887][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 28.264929][ T289] path_openat+0x2769/0x2f10 [ 28.269512][ T289] ? do_syscall_64+0x4c/0xa0 [ 28.274294][ T289] ? do_filp_open+0x3e0/0x3e0 [ 28.278990][ T289] do_filp_open+0x1b3/0x3e0 [ 28.283494][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 28.288190][ T289] do_sys_openat2+0x14c/0x7b0 [ 28.292871][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 28.298063][ T289] ? do_sys_open+0xe0/0xe0 [ 28.302476][ T289] ? do_notify_parent+0x800/0x800 [ 28.307498][ T289] __x64_sys_open+0x11c/0x140 [ 28.312175][ T289] x64_sys_call+0x3fc/0x9a0 [ 28.316762][ T289] do_syscall_64+0x4c/0xa0 [ 28.321352][ T289] ? clear_bhb_loop+0x50/0xa0 [ 28.326118][ T289] ? clear_bhb_loop+0x50/0xa0 [ 28.330962][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 28.336970][ T289] RIP: 0033:0x7f1fca3dd329 [ 28.341406][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 28.361013][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 28.369430][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 28.377397][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 28.385360][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 28.393327][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 28.401302][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 28.409378][ T289] [ 28.412527][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 28.412539][ T30] audit: type=1400 audit(1756425732.372:75): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 28.440325][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 28.440668][ T30] audit: type=1400 audit(1756425732.372:76): avc: denied { search } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 28.447022][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 28.447042][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 28.447056][ T289] Call Trace: [ 28.447062][ T289] [ 28.447068][ T289] __dump_stack+0x21/0x30 [ 28.447093][ T289] dump_stack_lvl+0xee/0x150 [ 28.447112][ T289] ? show_regs_print_info+0x20/0x20 [ 28.447131][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 28.447151][ T289] ? set_page_dirty+0x1ae/0x310 [ 28.469115][ T30] audit: type=1400 audit(1756425732.372:77): avc: denied { write } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 28.480289][ T289] dump_stack+0x15/0x20 [ 28.480315][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 28.480338][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 28.490771][ T30] audit: type=1400 audit(1756425732.372:78): avc: denied { add_name } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 28.493717][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 28.496665][ T30] audit: type=1400 audit(1756425732.372:79): avc: denied { create } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 28.500978][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 28.500999][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 28.501018][ T289] ? __kasan_check_write+0x14/0x20 [ 28.505980][ T30] audit: type=1400 audit(1756425732.372:80): avc: denied { append open } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 28.510885][ T289] ? data_blkaddr+0x330/0x330 [ 28.510907][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 28.516780][ T30] audit: type=1400 audit(1756425732.372:81): avc: denied { getattr } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 28.521455][ T289] ? addrs_per_block+0x110/0x110 [ 28.521486][ T289] ? dquot_initialize+0x20/0x20 [ 28.521506][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 28.691173][ T289] f2fs_truncate+0x1d7/0x3d0 [ 28.695841][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 28.700692][ T289] f2fs_setattr+0xaca/0x11b0 [ 28.705284][ T289] ? f2fs_getattr+0x670/0x670 [ 28.709945][ T289] notify_change+0xbca/0xe90 [ 28.714519][ T289] do_truncate+0x197/0x220 [ 28.719092][ T289] ? dquot_file_open+0x86/0xb0 [ 28.723842][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 28.728881][ T289] path_openat+0x2769/0x2f10 [ 28.733459][ T289] ? do_syscall_64+0x4c/0xa0 [ 28.738123][ T289] ? do_filp_open+0x3e0/0x3e0 [ 28.742784][ T289] do_filp_open+0x1b3/0x3e0 [ 28.747355][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 28.751931][ T289] do_sys_openat2+0x14c/0x7b0 [ 28.756593][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 28.761773][ T289] ? do_sys_open+0xe0/0xe0 [ 28.766173][ T289] ? do_notify_parent+0x800/0x800 [ 28.771183][ T289] __x64_sys_open+0x11c/0x140 [ 28.775869][ T289] x64_sys_call+0x3fc/0x9a0 [ 28.780363][ T289] do_syscall_64+0x4c/0xa0 [ 28.784765][ T289] ? clear_bhb_loop+0x50/0xa0 [ 28.789510][ T289] ? clear_bhb_loop+0x50/0xa0 [ 28.794171][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 28.800063][ T289] RIP: 0033:0x7f1fca3dd329 [ 28.804462][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 28.824438][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 28.832863][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 28.840843][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 28.848990][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 28.856947][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 28.865011][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 28.873073][ T289] [ 28.876318][ T289] F2FS-fs (loop0): access invalid blkaddr:83 [ 28.882325][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 28.894286][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 28.904338][ T289] Call Trace: [ 28.907616][ T289] [ 28.910533][ T289] __dump_stack+0x21/0x30 [ 28.914868][ T289] dump_stack_lvl+0xee/0x150 [ 28.919439][ T289] ? show_regs_print_info+0x20/0x20 [ 28.924647][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 28.930350][ T289] ? set_page_dirty+0x1ae/0x310 [ 28.935200][ T289] dump_stack+0x15/0x20 [ 28.939341][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 28.944696][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 28.950831][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 28.956024][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 28.961554][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 28.967255][ T289] ? __kasan_check_write+0x14/0x20 [ 28.972347][ T289] ? data_blkaddr+0x330/0x330 [ 28.977022][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 28.982464][ T289] ? addrs_per_block+0x110/0x110 [ 28.987381][ T289] ? dquot_initialize+0x20/0x20 [ 28.992218][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 28.997399][ T289] f2fs_truncate+0x1d7/0x3d0 [ 29.001984][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 29.006769][ T289] f2fs_setattr+0xaca/0x11b0 [ 29.011342][ T289] ? f2fs_getattr+0x670/0x670 [ 29.016000][ T289] notify_change+0xbca/0xe90 [ 29.020571][ T289] do_truncate+0x197/0x220 [ 29.024991][ T289] ? dquot_file_open+0x86/0xb0 [ 29.029738][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 29.034770][ T289] path_openat+0x2769/0x2f10 [ 29.039429][ T289] ? do_syscall_64+0x4c/0xa0 [ 29.044003][ T289] ? do_filp_open+0x3e0/0x3e0 [ 29.048660][ T289] do_filp_open+0x1b3/0x3e0 [ 29.053146][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 29.057719][ T289] do_sys_openat2+0x14c/0x7b0 [ 29.062394][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.067596][ T289] ? do_sys_open+0xe0/0xe0 [ 29.072000][ T289] ? do_notify_parent+0x800/0x800 [ 29.077009][ T289] __x64_sys_open+0x11c/0x140 [ 29.081670][ T289] x64_sys_call+0x3fc/0x9a0 [ 29.086154][ T289] do_syscall_64+0x4c/0xa0 [ 29.090567][ T289] ? clear_bhb_loop+0x50/0xa0 [ 29.095321][ T289] ? clear_bhb_loop+0x50/0xa0 [ 29.100004][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 29.106005][ T289] RIP: 0033:0x7f1fca3dd329 [ 29.110438][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 29.130248][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 29.138784][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 29.146757][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 29.154726][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 29.162769][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 29.170725][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 29.178681][ T289] [ 29.181892][ T289] F2FS-fs (loop0): access invalid blkaddr:4192207075 [ 29.188597][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 29.200490][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 29.210545][ T289] Call Trace: [ 29.213820][ T289] [ 29.217193][ T289] __dump_stack+0x21/0x30 [ 29.221527][ T289] dump_stack_lvl+0xee/0x150 [ 29.226107][ T289] ? show_regs_print_info+0x20/0x20 [ 29.231314][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 29.237171][ T289] ? set_page_dirty+0x1ae/0x310 [ 29.242041][ T289] dump_stack+0x15/0x20 [ 29.246384][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 29.251866][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 29.258028][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 29.263236][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 29.268774][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 29.274670][ T289] ? __kasan_check_write+0x14/0x20 [ 29.280129][ T289] ? data_blkaddr+0x330/0x330 [ 29.284810][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 29.290273][ T289] ? addrs_per_block+0x110/0x110 [ 29.295210][ T289] ? dquot_initialize+0x20/0x20 [ 29.300055][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 29.305447][ T289] f2fs_truncate+0x1d7/0x3d0 [ 29.310071][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 29.314838][ T289] f2fs_setattr+0xaca/0x11b0 [ 29.319434][ T289] ? f2fs_getattr+0x670/0x670 [ 29.324109][ T289] notify_change+0xbca/0xe90 [ 29.328698][ T289] do_truncate+0x197/0x220 [ 29.333114][ T289] ? dquot_file_open+0x86/0xb0 [ 29.337957][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 29.343004][ T289] path_openat+0x2769/0x2f10 [ 29.347686][ T289] ? do_syscall_64+0x4c/0xa0 [ 29.352284][ T289] ? do_filp_open+0x3e0/0x3e0 [ 29.356952][ T289] do_filp_open+0x1b3/0x3e0 [ 29.361449][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 29.366034][ T289] do_sys_openat2+0x14c/0x7b0 [ 29.370987][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.376266][ T289] ? do_sys_open+0xe0/0xe0 [ 29.380766][ T289] ? do_notify_parent+0x800/0x800 [ 29.385875][ T289] __x64_sys_open+0x11c/0x140 [ 29.390548][ T289] x64_sys_call+0x3fc/0x9a0 [ 29.395051][ T289] do_syscall_64+0x4c/0xa0 [ 29.399465][ T289] ? clear_bhb_loop+0x50/0xa0 [ 29.404139][ T289] ? clear_bhb_loop+0x50/0xa0 [ 29.408814][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 29.414702][ T289] RIP: 0033:0x7f1fca3dd329 [ 29.419114][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 29.438890][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 29.447386][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 29.455352][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 29.463318][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 29.471383][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 29.479442][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 29.487500][ T289] [ 29.490654][ T289] F2FS-fs (loop0): access invalid blkaddr:208431616 [ 29.497311][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 29.509184][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 29.519311][ T289] Call Trace: [ 29.522590][ T289] [ 29.525522][ T289] __dump_stack+0x21/0x30 [ 29.529867][ T289] dump_stack_lvl+0xee/0x150 [ 29.534447][ T289] ? show_regs_print_info+0x20/0x20 [ 29.539733][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 29.545448][ T289] ? set_page_dirty+0x1ae/0x310 [ 29.550285][ T289] dump_stack+0x15/0x20 [ 29.554425][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 29.559784][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 29.565920][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 29.571204][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 29.576754][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 29.582543][ T289] ? __kasan_check_write+0x14/0x20 [ 29.587655][ T289] ? data_blkaddr+0x330/0x330 [ 29.592418][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 29.597859][ T289] ? addrs_per_block+0x110/0x110 [ 29.602866][ T289] ? dquot_initialize+0x20/0x20 [ 29.607700][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 29.612894][ T289] f2fs_truncate+0x1d7/0x3d0 [ 29.617466][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 29.622220][ T289] f2fs_setattr+0xaca/0x11b0 [ 29.626792][ T289] ? f2fs_getattr+0x670/0x670 [ 29.631450][ T289] notify_change+0xbca/0xe90 [ 29.636031][ T289] do_truncate+0x197/0x220 [ 29.640446][ T289] ? dquot_file_open+0x86/0xb0 [ 29.645200][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 29.650219][ T289] path_openat+0x2769/0x2f10 [ 29.654815][ T289] ? do_syscall_64+0x4c/0xa0 [ 29.659391][ T289] ? do_filp_open+0x3e0/0x3e0 [ 29.664052][ T289] do_filp_open+0x1b3/0x3e0 [ 29.668536][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 29.673110][ T289] do_sys_openat2+0x14c/0x7b0 [ 29.677782][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.682965][ T289] ? do_sys_open+0xe0/0xe0 [ 29.687370][ T289] ? do_notify_parent+0x800/0x800 [ 29.692380][ T289] __x64_sys_open+0x11c/0x140 [ 29.697039][ T289] x64_sys_call+0x3fc/0x9a0 [ 29.701524][ T289] do_syscall_64+0x4c/0xa0 [ 29.705920][ T289] ? clear_bhb_loop+0x50/0xa0 [ 29.710579][ T289] ? clear_bhb_loop+0x50/0xa0 [ 29.715239][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 29.721128][ T289] RIP: 0033:0x7f1fca3dd329 [ 29.725539][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 29.745135][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 29.753546][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 29.761502][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 29.769455][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 29.777408][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 29.785366][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 29.793322][ T289] [ 29.796400][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 29.803094][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 29.814964][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 29.825003][ T289] Call Trace: [ 29.828265][ T289] [ 29.831178][ T289] __dump_stack+0x21/0x30 [ 29.835493][ T289] dump_stack_lvl+0xee/0x150 [ 29.840066][ T289] ? show_regs_print_info+0x20/0x20 [ 29.845467][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 29.851210][ T289] ? set_page_dirty+0x1ae/0x310 [ 29.856085][ T289] dump_stack+0x15/0x20 [ 29.860258][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 29.865805][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 29.871955][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 29.877137][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 29.882665][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 29.888367][ T289] ? __kasan_check_write+0x14/0x20 [ 29.893460][ T289] ? data_blkaddr+0x330/0x330 [ 29.898126][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 29.903588][ T289] ? addrs_per_block+0x110/0x110 [ 29.908519][ T289] ? dquot_initialize+0x20/0x20 [ 29.913373][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 29.918574][ T289] f2fs_truncate+0x1d7/0x3d0 [ 29.923153][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 29.927905][ T289] f2fs_setattr+0xaca/0x11b0 [ 29.932475][ T289] ? f2fs_getattr+0x670/0x670 [ 29.937136][ T289] notify_change+0xbca/0xe90 [ 29.941709][ T289] do_truncate+0x197/0x220 [ 29.946114][ T289] ? dquot_file_open+0x86/0xb0 [ 29.950860][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 29.955868][ T289] path_openat+0x2769/0x2f10 [ 29.960449][ T289] ? do_syscall_64+0x4c/0xa0 [ 29.965058][ T289] ? do_filp_open+0x3e0/0x3e0 [ 29.969734][ T289] do_filp_open+0x1b3/0x3e0 [ 29.974230][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 29.978820][ T289] do_sys_openat2+0x14c/0x7b0 [ 29.983480][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.988660][ T289] ? do_sys_open+0xe0/0xe0 [ 29.993058][ T289] ? do_notify_parent+0x800/0x800 [ 29.998066][ T289] __x64_sys_open+0x11c/0x140 [ 30.002728][ T289] x64_sys_call+0x3fc/0x9a0 [ 30.007217][ T289] do_syscall_64+0x4c/0xa0 [ 30.011614][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.016279][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.020958][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 30.026841][ T289] RIP: 0033:0x7f1fca3dd329 [ 30.031245][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 30.050844][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 30.059605][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 30.067669][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 30.075690][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 30.083753][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 30.091731][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 30.099689][ T289] [ 30.102799][ T289] F2FS-fs (loop0): access invalid blkaddr:74 [ 30.108804][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 30.120771][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 30.130917][ T289] Call Trace: [ 30.134471][ T289] [ 30.137405][ T289] __dump_stack+0x21/0x30 [ 30.141842][ T289] dump_stack_lvl+0xee/0x150 [ 30.146433][ T289] ? show_regs_print_info+0x20/0x20 [ 30.151631][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 30.157345][ T289] ? set_page_dirty+0x1ae/0x310 [ 30.162201][ T289] dump_stack+0x15/0x20 [ 30.166350][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 30.171805][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 30.177955][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 30.183168][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 30.188721][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 30.194535][ T289] ? __kasan_check_write+0x14/0x20 [ 30.199663][ T289] ? data_blkaddr+0x330/0x330 [ 30.204438][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 30.210241][ T289] ? addrs_per_block+0x110/0x110 [ 30.215282][ T289] ? dquot_initialize+0x20/0x20 [ 30.220136][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 30.225348][ T289] f2fs_truncate+0x1d7/0x3d0 [ 30.229934][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 30.234693][ T289] f2fs_setattr+0xaca/0x11b0 [ 30.239721][ T289] ? f2fs_getattr+0x670/0x670 [ 30.244481][ T289] notify_change+0xbca/0xe90 [ 30.249162][ T289] do_truncate+0x197/0x220 [ 30.253570][ T289] ? dquot_file_open+0x86/0xb0 [ 30.258327][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 30.263351][ T289] path_openat+0x2769/0x2f10 [ 30.267946][ T289] ? do_syscall_64+0x4c/0xa0 [ 30.272537][ T289] ? do_filp_open+0x3e0/0x3e0 [ 30.277211][ T289] do_filp_open+0x1b3/0x3e0 [ 30.281711][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 30.286303][ T289] do_sys_openat2+0x14c/0x7b0 [ 30.290976][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.296191][ T289] ? do_sys_open+0xe0/0xe0 [ 30.300631][ T289] ? do_notify_parent+0x800/0x800 [ 30.305913][ T289] __x64_sys_open+0x11c/0x140 [ 30.310585][ T289] x64_sys_call+0x3fc/0x9a0 [ 30.315168][ T289] do_syscall_64+0x4c/0xa0 [ 30.319591][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.324267][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.328937][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 30.334826][ T289] RIP: 0033:0x7f1fca3dd329 [ 30.339233][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 30.358830][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 30.367240][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 30.375216][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 30.383267][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 30.391324][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 30.399325][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 30.407301][ T289] [ 30.410369][ T289] F2FS-fs (loop0): access invalid blkaddr:2216398672 [ 30.417244][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 30.429131][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 30.439216][ T289] Call Trace: [ 30.442489][ T289] [ 30.445412][ T289] __dump_stack+0x21/0x30 [ 30.449749][ T289] dump_stack_lvl+0xee/0x150 [ 30.454331][ T289] ? show_regs_print_info+0x20/0x20 [ 30.459608][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 30.465327][ T289] ? set_page_dirty+0x1ae/0x310 [ 30.470196][ T289] dump_stack+0x15/0x20 [ 30.474360][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 30.479751][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 30.485912][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 30.491127][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 30.496675][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 30.502489][ T289] ? __kasan_check_write+0x14/0x20 [ 30.507635][ T289] ? data_blkaddr+0x330/0x330 [ 30.512326][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 30.517876][ T289] ? addrs_per_block+0x110/0x110 [ 30.522811][ T289] ? dquot_initialize+0x20/0x20 [ 30.527745][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 30.533060][ T289] f2fs_truncate+0x1d7/0x3d0 [ 30.537644][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 30.542493][ T289] f2fs_setattr+0xaca/0x11b0 [ 30.547080][ T289] ? f2fs_getattr+0x670/0x670 [ 30.551751][ T289] notify_change+0xbca/0xe90 [ 30.556437][ T289] do_truncate+0x197/0x220 [ 30.560865][ T289] ? dquot_file_open+0x86/0xb0 [ 30.565627][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 30.570653][ T289] path_openat+0x2769/0x2f10 [ 30.575259][ T289] ? do_syscall_64+0x4c/0xa0 [ 30.579849][ T289] ? do_filp_open+0x3e0/0x3e0 [ 30.584519][ T289] do_filp_open+0x1b3/0x3e0 [ 30.589020][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 30.593613][ T289] do_sys_openat2+0x14c/0x7b0 [ 30.598284][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.603484][ T289] ? do_sys_open+0xe0/0xe0 [ 30.607898][ T289] ? do_notify_parent+0x800/0x800 [ 30.613023][ T289] __x64_sys_open+0x11c/0x140 [ 30.617712][ T289] x64_sys_call+0x3fc/0x9a0 [ 30.622296][ T289] do_syscall_64+0x4c/0xa0 [ 30.626714][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.631386][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.636235][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 30.642221][ T289] RIP: 0033:0x7f1fca3dd329 [ 30.646634][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 30.666231][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 30.674646][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 30.682687][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 30.690659][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 30.698630][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 30.706687][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 30.714749][ T289] [ 30.717828][ T289] F2FS-fs (loop0): access invalid blkaddr:58 [ 30.723813][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 30.735772][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 30.745812][ T289] Call Trace: [ 30.749077][ T289] [ 30.751993][ T289] __dump_stack+0x21/0x30 [ 30.756314][ T289] dump_stack_lvl+0xee/0x150 [ 30.760895][ T289] ? show_regs_print_info+0x20/0x20 [ 30.766075][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 30.771778][ T289] ? set_page_dirty+0x1ae/0x310 [ 30.776611][ T289] dump_stack+0x15/0x20 [ 30.780836][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 30.786192][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 30.792429][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 30.797612][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 30.803139][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 30.808839][ T289] ? __kasan_check_write+0x14/0x20 [ 30.813947][ T289] ? data_blkaddr+0x330/0x330 [ 30.818608][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 30.824048][ T289] ? addrs_per_block+0x110/0x110 [ 30.828981][ T289] ? dquot_initialize+0x20/0x20 [ 30.833820][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 30.839000][ T289] f2fs_truncate+0x1d7/0x3d0 [ 30.843577][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 30.848331][ T289] f2fs_setattr+0xaca/0x11b0 [ 30.852904][ T289] ? f2fs_getattr+0x670/0x670 [ 30.857573][ T289] notify_change+0xbca/0xe90 [ 30.862150][ T289] do_truncate+0x197/0x220 [ 30.866550][ T289] ? dquot_file_open+0x86/0xb0 [ 30.871297][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 30.876306][ T289] path_openat+0x2769/0x2f10 [ 30.880901][ T289] ? do_syscall_64+0x4c/0xa0 [ 30.885474][ T289] ? do_filp_open+0x3e0/0x3e0 [ 30.890130][ T289] do_filp_open+0x1b3/0x3e0 [ 30.894621][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 30.899200][ T289] do_sys_openat2+0x14c/0x7b0 [ 30.903858][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.909042][ T289] ? do_sys_open+0xe0/0xe0 [ 30.913443][ T289] ? do_notify_parent+0x800/0x800 [ 30.918450][ T289] __x64_sys_open+0x11c/0x140 [ 30.923117][ T289] x64_sys_call+0x3fc/0x9a0 [ 30.927601][ T289] do_syscall_64+0x4c/0xa0 [ 30.931998][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.936661][ T289] ? clear_bhb_loop+0x50/0xa0 [ 30.941317][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 30.947200][ T289] RIP: 0033:0x7f1fca3dd329 [ 30.951600][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 30.971189][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 30.979584][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 30.987554][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 30.995508][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 31.003458][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 31.011498][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 31.019682][ T289] [ 31.022941][ T289] F2FS-fs (loop0): access invalid blkaddr:4294901760 [ 31.029690][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 31.041758][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 31.051906][ T289] Call Trace: [ 31.055185][ T289] [ 31.058102][ T289] __dump_stack+0x21/0x30 [ 31.062431][ T289] dump_stack_lvl+0xee/0x150 [ 31.067012][ T289] ? show_regs_print_info+0x20/0x20 [ 31.072366][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 31.078068][ T289] ? set_page_dirty+0x1ae/0x310 [ 31.082916][ T289] dump_stack+0x15/0x20 [ 31.087069][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 31.092433][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 31.098586][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 31.103780][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 31.109316][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 31.115014][ T289] ? __kasan_check_write+0x14/0x20 [ 31.120118][ T289] ? data_blkaddr+0x330/0x330 [ 31.124786][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 31.130227][ T289] ? addrs_per_block+0x110/0x110 [ 31.135146][ T289] ? dquot_initialize+0x20/0x20 [ 31.139983][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 31.145174][ T289] f2fs_truncate+0x1d7/0x3d0 [ 31.149927][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 31.154690][ T289] f2fs_setattr+0xaca/0x11b0 [ 31.159270][ T289] ? f2fs_getattr+0x670/0x670 [ 31.163941][ T289] notify_change+0xbca/0xe90 [ 31.168516][ T289] do_truncate+0x197/0x220 [ 31.173188][ T289] ? dquot_file_open+0x86/0xb0 [ 31.177948][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 31.182954][ T289] path_openat+0x2769/0x2f10 [ 31.187537][ T289] ? do_syscall_64+0x4c/0xa0 [ 31.192298][ T289] ? do_filp_open+0x3e0/0x3e0 [ 31.196958][ T289] do_filp_open+0x1b3/0x3e0 [ 31.201447][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 31.206021][ T289] do_sys_openat2+0x14c/0x7b0 [ 31.210697][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 31.215884][ T289] ? do_sys_open+0xe0/0xe0 [ 31.220282][ T289] ? do_notify_parent+0x800/0x800 [ 31.225313][ T289] __x64_sys_open+0x11c/0x140 [ 31.229986][ T289] x64_sys_call+0x3fc/0x9a0 [ 31.234505][ T289] do_syscall_64+0x4c/0xa0 [ 31.238935][ T289] ? clear_bhb_loop+0x50/0xa0 [ 31.243637][ T289] ? clear_bhb_loop+0x50/0xa0 [ 31.248318][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 31.254205][ T289] RIP: 0033:0x7f1fca3dd329 [ 31.258631][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 31.278636][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 31.287081][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 31.295050][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 31.303037][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 31.311007][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 31.319078][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 31.327055][ T289] [ 31.330156][ T289] F2FS-fs (loop0): access invalid blkaddr:4294901760 [ 31.336857][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 31.348744][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 31.358791][ T289] Call Trace: [ 31.362065][ T289] [ 31.364992][ T289] __dump_stack+0x21/0x30 [ 31.369323][ T289] dump_stack_lvl+0xee/0x150 [ 31.373950][ T289] ? show_regs_print_info+0x20/0x20 [ 31.379148][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 31.384865][ T289] ? set_page_dirty+0x1ae/0x310 [ 31.389712][ T289] dump_stack+0x15/0x20 [ 31.393874][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 31.399245][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 31.405394][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 31.410587][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 31.416129][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 31.421845][ T289] ? __kasan_check_write+0x14/0x20 [ 31.426950][ T289] ? data_blkaddr+0x330/0x330 [ 31.431628][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 31.437084][ T289] ? addrs_per_block+0x110/0x110 [ 31.442101][ T289] ? dquot_initialize+0x20/0x20 [ 31.447041][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 31.452237][ T289] f2fs_truncate+0x1d7/0x3d0 [ 31.456836][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 31.461592][ T289] f2fs_setattr+0xaca/0x11b0 [ 31.466178][ T289] ? f2fs_getattr+0x670/0x670 [ 31.470854][ T289] notify_change+0xbca/0xe90 [ 31.475438][ T289] do_truncate+0x197/0x220 [ 31.479847][ T289] ? dquot_file_open+0x86/0xb0 [ 31.484605][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 31.489799][ T289] path_openat+0x2769/0x2f10 [ 31.494389][ T289] ? do_syscall_64+0x4c/0xa0 [ 31.498987][ T289] ? do_filp_open+0x3e0/0x3e0 [ 31.503661][ T289] do_filp_open+0x1b3/0x3e0 [ 31.508512][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 31.513100][ T289] do_sys_openat2+0x14c/0x7b0 [ 31.517770][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 31.523312][ T289] ? do_sys_open+0xe0/0xe0 [ 31.527729][ T289] ? do_notify_parent+0x800/0x800 [ 31.532926][ T289] __x64_sys_open+0x11c/0x140 [ 31.537621][ T289] x64_sys_call+0x3fc/0x9a0 [ 31.542125][ T289] do_syscall_64+0x4c/0xa0 [ 31.546713][ T289] ? clear_bhb_loop+0x50/0xa0 [ 31.551389][ T289] ? clear_bhb_loop+0x50/0xa0 [ 31.556061][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 31.561945][ T289] RIP: 0033:0x7f1fca3dd329 [ 31.566359][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 31.585962][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 31.594381][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 31.602443][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 31.610409][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 31.618379][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 31.626346][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 31.634315][ T289] [ 31.637385][ T289] F2FS-fs (loop0): access invalid blkaddr:58 [ 31.643366][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 31.655237][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 31.665273][ T289] Call Trace: [ 31.668538][ T289] [ 31.671454][ T289] __dump_stack+0x21/0x30 [ 31.675767][ T289] dump_stack_lvl+0xee/0x150 [ 31.680339][ T289] ? show_regs_print_info+0x20/0x20 [ 31.685520][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 31.691236][ T289] ? set_page_dirty+0x1ae/0x310 [ 31.696072][ T289] dump_stack+0x15/0x20 [ 31.700212][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 31.705625][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 31.711778][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 31.716961][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 31.722499][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 31.728214][ T289] ? __kasan_check_write+0x14/0x20 [ 31.733310][ T289] ? data_blkaddr+0x330/0x330 [ 31.737975][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 31.743532][ T289] ? addrs_per_block+0x110/0x110 [ 31.748449][ T289] ? dquot_initialize+0x20/0x20 [ 31.753299][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 31.758479][ T289] f2fs_truncate+0x1d7/0x3d0 [ 31.763068][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 31.767901][ T289] f2fs_setattr+0xaca/0x11b0 [ 31.772561][ T289] ? f2fs_getattr+0x670/0x670 [ 31.777229][ T289] notify_change+0xbca/0xe90 [ 31.781819][ T289] do_truncate+0x197/0x220 [ 31.786225][ T289] ? dquot_file_open+0x86/0xb0 [ 31.791079][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 31.796099][ T289] path_openat+0x2769/0x2f10 [ 31.800708][ T289] ? do_syscall_64+0x4c/0xa0 [ 31.805291][ T289] ? do_filp_open+0x3e0/0x3e0 [ 31.809951][ T289] do_filp_open+0x1b3/0x3e0 [ 31.814432][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 31.819024][ T289] do_sys_openat2+0x14c/0x7b0 [ 31.823772][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 31.829066][ T289] ? do_sys_open+0xe0/0xe0 [ 31.833467][ T289] ? do_notify_parent+0x800/0x800 [ 31.838476][ T289] __x64_sys_open+0x11c/0x140 [ 31.843257][ T289] x64_sys_call+0x3fc/0x9a0 [ 31.847749][ T289] do_syscall_64+0x4c/0xa0 [ 31.852324][ T289] ? clear_bhb_loop+0x50/0xa0 [ 31.856985][ T289] ? clear_bhb_loop+0x50/0xa0 [ 31.861648][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 31.867526][ T289] RIP: 0033:0x7f1fca3dd329 [ 31.872036][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 31.891887][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 31.900633][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 31.908627][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 31.916669][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 31.924631][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 31.932671][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 31.940631][ T289] [ 31.943758][ T289] F2FS-fs (loop0): access invalid blkaddr:128 [ 31.949880][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 31.961753][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 31.971793][ T289] Call Trace: [ 31.975055][ T289] [ 31.977971][ T289] __dump_stack+0x21/0x30 [ 31.982287][ T289] dump_stack_lvl+0xee/0x150 [ 31.986864][ T289] ? show_regs_print_info+0x20/0x20 [ 31.992061][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 31.997784][ T289] ? set_page_dirty+0x1ae/0x310 [ 32.002619][ T289] dump_stack+0x15/0x20 [ 32.006761][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 32.012311][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 32.018451][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 32.023630][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 32.029263][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 32.035057][ T289] ? __kasan_check_write+0x14/0x20 [ 32.040236][ T289] ? data_blkaddr+0x330/0x330 [ 32.044897][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 32.050449][ T289] ? addrs_per_block+0x110/0x110 [ 32.055442][ T289] ? dquot_initialize+0x20/0x20 [ 32.060304][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 32.065498][ T289] f2fs_truncate+0x1d7/0x3d0 [ 32.070074][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 32.074908][ T289] f2fs_setattr+0xaca/0x11b0 [ 32.079585][ T289] ? f2fs_getattr+0x670/0x670 [ 32.084255][ T289] notify_change+0xbca/0xe90 [ 32.088831][ T289] do_truncate+0x197/0x220 [ 32.093247][ T289] ? dquot_file_open+0x86/0xb0 [ 32.098000][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 32.103110][ T289] path_openat+0x2769/0x2f10 [ 32.107681][ T289] ? do_syscall_64+0x4c/0xa0 [ 32.112258][ T289] ? do_filp_open+0x3e0/0x3e0 [ 32.116917][ T289] do_filp_open+0x1b3/0x3e0 [ 32.121768][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 32.126343][ T289] do_sys_openat2+0x14c/0x7b0 [ 32.131006][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 32.136186][ T289] ? do_sys_open+0xe0/0xe0 [ 32.140585][ T289] ? do_notify_parent+0x800/0x800 [ 32.145593][ T289] __x64_sys_open+0x11c/0x140 [ 32.150255][ T289] x64_sys_call+0x3fc/0x9a0 [ 32.154752][ T289] do_syscall_64+0x4c/0xa0 [ 32.159271][ T289] ? clear_bhb_loop+0x50/0xa0 [ 32.163974][ T289] ? clear_bhb_loop+0x50/0xa0 [ 32.168661][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 32.174567][ T289] RIP: 0033:0x7f1fca3dd329 [ 32.179106][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 32.198816][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 32.207249][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 32.215220][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 32.223204][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 32.231182][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 32.239243][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 32.247232][ T289] [ 32.250344][ T289] F2FS-fs (loop0): access invalid blkaddr:606075904 [ 32.256945][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 32.268838][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 32.278904][ T289] Call Trace: [ 32.282191][ T289] [ 32.285206][ T289] __dump_stack+0x21/0x30 [ 32.289540][ T289] dump_stack_lvl+0xee/0x150 [ 32.294386][ T289] ? show_regs_print_info+0x20/0x20 [ 32.299598][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 32.305413][ T289] ? set_page_dirty+0x1ae/0x310 [ 32.310321][ T289] dump_stack+0x15/0x20 [ 32.314474][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 32.319844][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 32.326010][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 32.331223][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 32.336772][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 32.342491][ T289] ? __kasan_check_write+0x14/0x20 [ 32.347610][ T289] ? data_blkaddr+0x330/0x330 [ 32.352285][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 32.357740][ T289] ? addrs_per_block+0x110/0x110 [ 32.362677][ T289] ? dquot_initialize+0x20/0x20 [ 32.367530][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 32.372917][ T289] f2fs_truncate+0x1d7/0x3d0 [ 32.377521][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 32.382288][ T289] f2fs_setattr+0xaca/0x11b0 [ 32.386882][ T289] ? f2fs_getattr+0x670/0x670 [ 32.391590][ T289] notify_change+0xbca/0xe90 [ 32.396181][ T289] do_truncate+0x197/0x220 [ 32.400592][ T289] ? dquot_file_open+0x86/0xb0 [ 32.405352][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 32.410549][ T289] path_openat+0x2769/0x2f10 [ 32.415220][ T289] ? do_syscall_64+0x4c/0xa0 [ 32.419808][ T289] ? do_filp_open+0x3e0/0x3e0 [ 32.424587][ T289] do_filp_open+0x1b3/0x3e0 [ 32.429083][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 32.433674][ T289] do_sys_openat2+0x14c/0x7b0 [ 32.438367][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 32.443563][ T289] ? do_sys_open+0xe0/0xe0 [ 32.447972][ T289] ? do_notify_parent+0x800/0x800 [ 32.452993][ T289] __x64_sys_open+0x11c/0x140 [ 32.457663][ T289] x64_sys_call+0x3fc/0x9a0 [ 32.462160][ T289] do_syscall_64+0x4c/0xa0 [ 32.466683][ T289] ? clear_bhb_loop+0x50/0xa0 [ 32.471356][ T289] ? clear_bhb_loop+0x50/0xa0 [ 32.476029][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 32.481915][ T289] RIP: 0033:0x7f1fca3dd329 [ 32.486325][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 32.505924][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 32.514526][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 32.522497][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 32.530485][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 32.538467][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 32.546604][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 32.554809][ T289] [ 32.558031][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 32.564726][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 32.576620][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 32.586757][ T289] Call Trace: [ 32.590027][ T289] [ 32.593042][ T289] __dump_stack+0x21/0x30 [ 32.597363][ T289] dump_stack_lvl+0xee/0x150 [ 32.601940][ T289] ? show_regs_print_info+0x20/0x20 [ 32.607136][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 32.612931][ T289] ? set_page_dirty+0x1ae/0x310 [ 32.617777][ T289] dump_stack+0x15/0x20 [ 32.621922][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 32.627291][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 32.633429][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 32.638634][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 32.644163][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 32.649882][ T289] ? __kasan_check_write+0x14/0x20 [ 32.655068][ T289] ? data_blkaddr+0x330/0x330 [ 32.659730][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 32.665436][ T289] ? addrs_per_block+0x110/0x110 [ 32.670355][ T289] ? dquot_initialize+0x20/0x20 [ 32.675217][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 32.680404][ T289] f2fs_truncate+0x1d7/0x3d0 [ 32.684976][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 32.689769][ T289] f2fs_setattr+0xaca/0x11b0 [ 32.694342][ T289] ? f2fs_getattr+0x670/0x670 [ 32.699198][ T289] notify_change+0xbca/0xe90 [ 32.703858][ T289] do_truncate+0x197/0x220 [ 32.708285][ T289] ? dquot_file_open+0x86/0xb0 [ 32.713117][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 32.718125][ T289] path_openat+0x2769/0x2f10 [ 32.722799][ T289] ? do_syscall_64+0x4c/0xa0 [ 32.727373][ T289] ? do_filp_open+0x3e0/0x3e0 [ 32.732034][ T289] do_filp_open+0x1b3/0x3e0 [ 32.736619][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 32.741192][ T289] do_sys_openat2+0x14c/0x7b0 [ 32.745856][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 32.751123][ T289] ? do_sys_open+0xe0/0xe0 [ 32.755733][ T289] ? do_notify_parent+0x800/0x800 [ 32.760743][ T289] __x64_sys_open+0x11c/0x140 [ 32.765429][ T289] x64_sys_call+0x3fc/0x9a0 [ 32.769914][ T289] do_syscall_64+0x4c/0xa0 [ 32.774328][ T289] ? clear_bhb_loop+0x50/0xa0 [ 32.778988][ T289] ? clear_bhb_loop+0x50/0xa0 [ 32.783656][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 32.789616][ T289] RIP: 0033:0x7f1fca3dd329 [ 32.794014][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 32.813600][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 32.821998][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 32.830041][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 32.838174][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 32.846140][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 32.854269][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 32.862333][ T289] [ 32.865403][ T289] F2FS-fs (loop0): access invalid blkaddr:606075904 [ 32.872004][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 32.883873][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 32.894005][ T289] Call Trace: [ 32.897269][ T289] [ 32.900202][ T289] __dump_stack+0x21/0x30 [ 32.904522][ T289] dump_stack_lvl+0xee/0x150 [ 32.909095][ T289] ? show_regs_print_info+0x20/0x20 [ 32.914279][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 32.920069][ T289] ? set_page_dirty+0x1ae/0x310 [ 32.924991][ T289] dump_stack+0x15/0x20 [ 32.929127][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 32.934484][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 32.940621][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 32.945890][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 32.951422][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 32.957213][ T289] ? __kasan_check_write+0x14/0x20 [ 32.962313][ T289] ? data_blkaddr+0x330/0x330 [ 32.966974][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 32.972416][ T289] ? addrs_per_block+0x110/0x110 [ 32.977521][ T289] ? dquot_initialize+0x20/0x20 [ 32.982356][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 32.987537][ T289] f2fs_truncate+0x1d7/0x3d0 [ 32.992113][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 32.996906][ T289] f2fs_setattr+0xaca/0x11b0 [ 33.001479][ T289] ? f2fs_getattr+0x670/0x670 [ 33.006138][ T289] notify_change+0xbca/0xe90 [ 33.010714][ T289] do_truncate+0x197/0x220 [ 33.015285][ T289] ? dquot_file_open+0x86/0xb0 [ 33.020031][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 33.025042][ T289] path_openat+0x2769/0x2f10 [ 33.029642][ T289] ? do_syscall_64+0x4c/0xa0 [ 33.034231][ T289] ? do_filp_open+0x3e0/0x3e0 [ 33.038914][ T289] do_filp_open+0x1b3/0x3e0 [ 33.043486][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 33.048147][ T289] do_sys_openat2+0x14c/0x7b0 [ 33.052904][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 33.058097][ T289] ? do_sys_open+0xe0/0xe0 [ 33.062495][ T289] ? do_notify_parent+0x800/0x800 [ 33.067522][ T289] __x64_sys_open+0x11c/0x140 [ 33.072463][ T289] x64_sys_call+0x3fc/0x9a0 [ 33.077151][ T289] do_syscall_64+0x4c/0xa0 [ 33.081561][ T289] ? clear_bhb_loop+0x50/0xa0 [ 33.086235][ T289] ? clear_bhb_loop+0x50/0xa0 [ 33.090905][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 33.096880][ T289] RIP: 0033:0x7f1fca3dd329 [ 33.101291][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 33.121238][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 33.129733][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 33.137705][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 33.145668][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 33.153631][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 33.161780][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 33.169923][ T289] [ 33.173639][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 33.180365][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 33.192248][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 33.202384][ T289] Call Trace: [ 33.205647][ T289] [ 33.208567][ T289] __dump_stack+0x21/0x30 [ 33.212884][ T289] dump_stack_lvl+0xee/0x150 [ 33.217457][ T289] ? show_regs_print_info+0x20/0x20 [ 33.222861][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 33.229312][ T289] ? set_page_dirty+0x1ae/0x310 [ 33.234346][ T289] dump_stack+0x15/0x20 [ 33.238497][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 33.243859][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 33.250000][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 33.255273][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 33.260803][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 33.266684][ T289] ? __kasan_check_write+0x14/0x20 [ 33.271781][ T289] ? data_blkaddr+0x330/0x330 [ 33.276444][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 33.281898][ T289] ? addrs_per_block+0x110/0x110 [ 33.287122][ T289] ? dquot_initialize+0x20/0x20 [ 33.292050][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 33.297240][ T289] f2fs_truncate+0x1d7/0x3d0 [ 33.301902][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 33.306656][ T289] f2fs_setattr+0xaca/0x11b0 [ 33.311237][ T289] ? f2fs_getattr+0x670/0x670 [ 33.316024][ T289] notify_change+0xbca/0xe90 [ 33.320600][ T289] do_truncate+0x197/0x220 [ 33.325015][ T289] ? dquot_file_open+0x86/0xb0 [ 33.329765][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 33.334782][ T289] path_openat+0x2769/0x2f10 [ 33.339531][ T289] ? do_syscall_64+0x4c/0xa0 [ 33.344111][ T289] ? do_filp_open+0x3e0/0x3e0 [ 33.348772][ T289] do_filp_open+0x1b3/0x3e0 [ 33.353260][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 33.357928][ T289] do_sys_openat2+0x14c/0x7b0 [ 33.362607][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 33.367793][ T289] ? do_sys_open+0xe0/0xe0 [ 33.372192][ T289] ? do_notify_parent+0x800/0x800 [ 33.377230][ T289] __x64_sys_open+0x11c/0x140 [ 33.381995][ T289] x64_sys_call+0x3fc/0x9a0 [ 33.386628][ T289] do_syscall_64+0x4c/0xa0 [ 33.391031][ T289] ? clear_bhb_loop+0x50/0xa0 [ 33.395794][ T289] ? clear_bhb_loop+0x50/0xa0 [ 33.400454][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 33.406334][ T289] RIP: 0033:0x7f1fca3dd329 [ 33.410822][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 33.430681][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 33.439084][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 33.447058][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 33.455040][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 33.463099][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 33.471164][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 33.479319][ T289] [ 33.482610][ T289] F2FS-fs (loop0): access invalid blkaddr:768 [ 33.488740][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 33.500715][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 33.510877][ T289] Call Trace: [ 33.514147][ T289] [ 33.517072][ T289] __dump_stack+0x21/0x30 [ 33.521389][ T289] dump_stack_lvl+0xee/0x150 [ 33.525965][ T289] ? show_regs_print_info+0x20/0x20 [ 33.531149][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 33.536951][ T289] ? set_page_dirty+0x1ae/0x310 [ 33.541798][ T289] dump_stack+0x15/0x20 [ 33.545940][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 33.551479][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 33.557635][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 33.562834][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 33.568368][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 33.574076][ T289] ? __kasan_check_write+0x14/0x20 [ 33.579172][ T289] ? data_blkaddr+0x330/0x330 [ 33.583965][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 33.589612][ T289] ? addrs_per_block+0x110/0x110 [ 33.594551][ T289] ? dquot_initialize+0x20/0x20 [ 33.599409][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 33.604608][ T289] f2fs_truncate+0x1d7/0x3d0 [ 33.609280][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 33.614206][ T289] f2fs_setattr+0xaca/0x11b0 [ 33.618914][ T289] ? f2fs_getattr+0x670/0x670 [ 33.623710][ T289] notify_change+0xbca/0xe90 [ 33.628301][ T289] do_truncate+0x197/0x220 [ 33.632732][ T289] ? dquot_file_open+0x86/0xb0 [ 33.637487][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 33.642505][ T289] path_openat+0x2769/0x2f10 [ 33.647107][ T289] ? do_syscall_64+0x4c/0xa0 [ 33.651771][ T289] ? do_filp_open+0x3e0/0x3e0 [ 33.656435][ T289] do_filp_open+0x1b3/0x3e0 [ 33.660935][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 33.665512][ T289] do_sys_openat2+0x14c/0x7b0 [ 33.670179][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 33.675363][ T289] ? do_sys_open+0xe0/0xe0 [ 33.679775][ T289] ? do_notify_parent+0x800/0x800 [ 33.684874][ T289] __x64_sys_open+0x11c/0x140 [ 33.689539][ T289] x64_sys_call+0x3fc/0x9a0 [ 33.694036][ T289] do_syscall_64+0x4c/0xa0 [ 33.698438][ T289] ? clear_bhb_loop+0x50/0xa0 [ 33.703098][ T289] ? clear_bhb_loop+0x50/0xa0 [ 33.707758][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 33.713636][ T289] RIP: 0033:0x7f1fca3dd329 [ 33.718038][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 33.737628][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 33.746048][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 33.754006][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 33.761962][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 33.769923][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 33.777882][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 33.786038][ T289] [ 33.789281][ T289] F2FS-fs (loop0): access invalid blkaddr:1 [ 33.795198][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 33.807178][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 33.817634][ T289] Call Trace: [ 33.820916][ T289] [ 33.823847][ T289] __dump_stack+0x21/0x30 [ 33.828190][ T289] dump_stack_lvl+0xee/0x150 [ 33.832881][ T289] ? show_regs_print_info+0x20/0x20 [ 33.838536][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 33.844452][ T289] ? set_page_dirty+0x1ae/0x310 [ 33.849305][ T289] dump_stack+0x15/0x20 [ 33.853459][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 33.858934][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 33.865091][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 33.870298][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 33.875844][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 33.881559][ T289] ? __kasan_check_write+0x14/0x20 [ 33.886679][ T289] ? data_blkaddr+0x330/0x330 [ 33.891359][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 33.896816][ T289] ? addrs_per_block+0x110/0x110 [ 33.901750][ T289] ? dquot_initialize+0x20/0x20 [ 33.906603][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 33.911949][ T289] f2fs_truncate+0x1d7/0x3d0 [ 33.916537][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 33.921299][ T289] f2fs_setattr+0xaca/0x11b0 [ 33.926233][ T289] ? f2fs_getattr+0x670/0x670 [ 33.931006][ T289] notify_change+0xbca/0xe90 [ 33.935629][ T289] do_truncate+0x197/0x220 [ 33.940051][ T289] ? dquot_file_open+0x86/0xb0 [ 33.944812][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 33.949839][ T289] path_openat+0x2769/0x2f10 [ 33.954431][ T289] ? do_syscall_64+0x4c/0xa0 [ 33.959106][ T289] ? do_filp_open+0x3e0/0x3e0 [ 33.963866][ T289] do_filp_open+0x1b3/0x3e0 [ 33.968368][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 33.973046][ T289] do_sys_openat2+0x14c/0x7b0 [ 33.977719][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 33.982915][ T289] ? do_sys_open+0xe0/0xe0 [ 33.987330][ T289] ? do_notify_parent+0x800/0x800 [ 33.992358][ T289] __x64_sys_open+0x11c/0x140 [ 33.997032][ T289] x64_sys_call+0x3fc/0x9a0 [ 34.001535][ T289] do_syscall_64+0x4c/0xa0 [ 34.005947][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.010619][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.015297][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 34.021187][ T289] RIP: 0033:0x7f1fca3dd329 [ 34.025601][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 34.045485][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 34.054000][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 34.062072][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 34.070305][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 34.078455][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 34.086614][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 34.094625][ T289] [ 34.097685][ T289] F2FS-fs (loop0): access invalid blkaddr:90 [ 34.103706][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 34.115606][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 34.125658][ T289] Call Trace: [ 34.128938][ T289] [ 34.131870][ T289] __dump_stack+0x21/0x30 [ 34.136376][ T289] dump_stack_lvl+0xee/0x150 [ 34.140966][ T289] ? show_regs_print_info+0x20/0x20 [ 34.146205][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 34.151929][ T289] ? set_page_dirty+0x1ae/0x310 [ 34.156779][ T289] dump_stack+0x15/0x20 [ 34.161017][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 34.166408][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 34.172829][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 34.178115][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 34.183662][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 34.189419][ T289] ? __kasan_check_write+0x14/0x20 [ 34.194524][ T289] ? data_blkaddr+0x330/0x330 [ 34.199202][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 34.204667][ T289] ? addrs_per_block+0x110/0x110 [ 34.209608][ T289] ? dquot_initialize+0x20/0x20 [ 34.214457][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 34.219657][ T289] f2fs_truncate+0x1d7/0x3d0 [ 34.224260][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 34.229130][ T289] f2fs_setattr+0xaca/0x11b0 [ 34.233729][ T289] ? f2fs_getattr+0x670/0x670 [ 34.238525][ T289] notify_change+0xbca/0xe90 [ 34.243119][ T289] do_truncate+0x197/0x220 [ 34.247558][ T289] ? dquot_file_open+0x86/0xb0 [ 34.252323][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 34.257348][ T289] path_openat+0x2769/0x2f10 [ 34.261944][ T289] ? do_syscall_64+0x4c/0xa0 [ 34.266531][ T289] ? do_filp_open+0x3e0/0x3e0 [ 34.271379][ T289] do_filp_open+0x1b3/0x3e0 [ 34.275879][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 34.280468][ T289] do_sys_openat2+0x14c/0x7b0 [ 34.285153][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 34.290355][ T289] ? do_sys_open+0xe0/0xe0 [ 34.294769][ T289] ? do_notify_parent+0x800/0x800 [ 34.300067][ T289] __x64_sys_open+0x11c/0x140 [ 34.304754][ T289] x64_sys_call+0x3fc/0x9a0 [ 34.309378][ T289] do_syscall_64+0x4c/0xa0 [ 34.313791][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.318465][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.323141][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 34.329033][ T289] RIP: 0033:0x7f1fca3dd329 [ 34.333453][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 34.353158][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 34.361658][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 34.369628][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 34.377598][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 34.385743][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 34.393826][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 34.401816][ T289] [ 34.405216][ T289] F2FS-fs (loop0): access invalid blkaddr:4137681123 [ 34.411928][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 34.423824][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 34.433959][ T289] Call Trace: [ 34.437223][ T289] [ 34.440139][ T289] __dump_stack+0x21/0x30 [ 34.444458][ T289] dump_stack_lvl+0xee/0x150 [ 34.449033][ T289] ? show_regs_print_info+0x20/0x20 [ 34.454211][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 34.459942][ T289] ? set_page_dirty+0x1ae/0x310 [ 34.464961][ T289] dump_stack+0x15/0x20 [ 34.469116][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 34.474502][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 34.480644][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 34.485872][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 34.491401][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 34.497103][ T289] ? __kasan_check_write+0x14/0x20 [ 34.502195][ T289] ? data_blkaddr+0x330/0x330 [ 34.506856][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 34.512295][ T289] ? addrs_per_block+0x110/0x110 [ 34.517214][ T289] ? dquot_initialize+0x20/0x20 [ 34.522046][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 34.527226][ T289] f2fs_truncate+0x1d7/0x3d0 [ 34.531891][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 34.536732][ T289] f2fs_setattr+0xaca/0x11b0 [ 34.541304][ T289] ? f2fs_getattr+0x670/0x670 [ 34.545963][ T289] notify_change+0xbca/0xe90 [ 34.550624][ T289] do_truncate+0x197/0x220 [ 34.555026][ T289] ? dquot_file_open+0x86/0xb0 [ 34.559786][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 34.564819][ T289] path_openat+0x2769/0x2f10 [ 34.569583][ T289] ? do_syscall_64+0x4c/0xa0 [ 34.574263][ T289] ? do_filp_open+0x3e0/0x3e0 [ 34.578980][ T289] do_filp_open+0x1b3/0x3e0 [ 34.583484][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 34.588070][ T289] do_sys_openat2+0x14c/0x7b0 [ 34.592744][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 34.597955][ T289] ? do_sys_open+0xe0/0xe0 [ 34.602363][ T289] ? do_notify_parent+0x800/0x800 [ 34.607372][ T289] __x64_sys_open+0x11c/0x140 [ 34.612059][ T289] x64_sys_call+0x3fc/0x9a0 [ 34.616562][ T289] do_syscall_64+0x4c/0xa0 [ 34.621501][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.626819][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.631480][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 34.637355][ T289] RIP: 0033:0x7f1fca3dd329 [ 34.641756][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 34.662310][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 34.670728][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 34.678695][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 34.686669][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 34.694745][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 34.702834][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 34.710860][ T289] [ 34.714278][ T289] F2FS-fs (loop0): access invalid blkaddr:606056448 [ 34.720959][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 34.732852][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 34.743501][ T289] Call Trace: [ 34.746767][ T289] [ 34.749779][ T289] __dump_stack+0x21/0x30 [ 34.754096][ T289] dump_stack_lvl+0xee/0x150 [ 34.758769][ T289] ? show_regs_print_info+0x20/0x20 [ 34.763958][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 34.769706][ T289] ? set_page_dirty+0x1ae/0x310 [ 34.774620][ T289] dump_stack+0x15/0x20 [ 34.778783][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 34.784160][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 34.790308][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 34.795493][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 34.801021][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 34.806724][ T289] ? __kasan_check_write+0x14/0x20 [ 34.811822][ T289] ? data_blkaddr+0x330/0x330 [ 34.816578][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 34.822106][ T289] ? addrs_per_block+0x110/0x110 [ 34.827050][ T289] ? dquot_initialize+0x20/0x20 [ 34.831970][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 34.837149][ T289] f2fs_truncate+0x1d7/0x3d0 [ 34.841724][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 34.846573][ T289] f2fs_setattr+0xaca/0x11b0 [ 34.851146][ T289] ? f2fs_getattr+0x670/0x670 [ 34.855802][ T289] notify_change+0xbca/0xe90 [ 34.860390][ T289] do_truncate+0x197/0x220 [ 34.864788][ T289] ? dquot_file_open+0x86/0xb0 [ 34.869535][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 34.874544][ T289] path_openat+0x2769/0x2f10 [ 34.879116][ T289] ? do_syscall_64+0x4c/0xa0 [ 34.883773][ T289] ? do_filp_open+0x3e0/0x3e0 [ 34.888433][ T289] do_filp_open+0x1b3/0x3e0 [ 34.892932][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 34.897504][ T289] do_sys_openat2+0x14c/0x7b0 [ 34.902163][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 34.907344][ T289] ? do_sys_open+0xe0/0xe0 [ 34.911749][ T289] ? do_notify_parent+0x800/0x800 [ 34.916759][ T289] __x64_sys_open+0x11c/0x140 [ 34.921419][ T289] x64_sys_call+0x3fc/0x9a0 [ 34.925908][ T289] do_syscall_64+0x4c/0xa0 [ 34.930307][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.934970][ T289] ? clear_bhb_loop+0x50/0xa0 [ 34.939630][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 34.945514][ T289] RIP: 0033:0x7f1fca3dd329 [ 34.950014][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 34.969875][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 34.978392][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 34.986474][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 34.994554][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 35.002626][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 35.010623][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 35.018697][ T289] [ 35.021913][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 35.028629][ T289] CPU: 1 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 35.040604][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 35.050918][ T289] Call Trace: [ 35.054199][ T289] [ 35.057155][ T289] __dump_stack+0x21/0x30 [ 35.061511][ T289] dump_stack_lvl+0xee/0x150 [ 35.066205][ T289] ? show_regs_print_info+0x20/0x20 [ 35.071398][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 35.077115][ T289] ? set_page_dirty+0x1ae/0x310 [ 35.081966][ T289] dump_stack+0x15/0x20 [ 35.086203][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 35.091671][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 35.098001][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 35.103241][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 35.108871][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 35.114613][ T289] ? __kasan_check_write+0x14/0x20 [ 35.119992][ T289] ? data_blkaddr+0x330/0x330 [ 35.124768][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 35.130245][ T289] ? addrs_per_block+0x110/0x110 [ 35.135361][ T289] ? dquot_initialize+0x20/0x20 [ 35.140213][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 35.145412][ T289] f2fs_truncate+0x1d7/0x3d0 [ 35.149996][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 35.154765][ T289] f2fs_setattr+0xaca/0x11b0 [ 35.159349][ T289] ? f2fs_getattr+0x670/0x670 [ 35.164021][ T289] notify_change+0xbca/0xe90 [ 35.168877][ T289] do_truncate+0x197/0x220 [ 35.173388][ T289] ? dquot_file_open+0x86/0xb0 [ 35.178152][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 35.183176][ T289] path_openat+0x2769/0x2f10 [ 35.187760][ T289] ? do_syscall_64+0x4c/0xa0 [ 35.192435][ T289] ? do_filp_open+0x3e0/0x3e0 [ 35.197120][ T289] do_filp_open+0x1b3/0x3e0 [ 35.201717][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 35.206304][ T289] do_sys_openat2+0x14c/0x7b0 [ 35.210977][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 35.216170][ T289] ? do_sys_open+0xe0/0xe0 [ 35.220591][ T289] ? do_notify_parent+0x800/0x800 [ 35.225615][ T289] __x64_sys_open+0x11c/0x140 [ 35.230296][ T289] x64_sys_call+0x3fc/0x9a0 [ 35.234793][ T289] do_syscall_64+0x4c/0xa0 [ 35.239200][ T289] ? clear_bhb_loop+0x50/0xa0 [ 35.243881][ T289] ? clear_bhb_loop+0x50/0xa0 [ 35.248671][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 35.254587][ T289] RIP: 0033:0x7f1fca3dd329 [ 35.258999][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 35.278811][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 35.287484][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 35.295648][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 35.304048][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 35.312103][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 35.320328][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 35.328818][ T289] [ 35.332035][ T289] F2FS-fs (loop0): access invalid blkaddr:83 [ 35.338069][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 35.350046][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 35.360087][ T289] Call Trace: [ 35.363350][ T289] [ 35.366263][ T289] __dump_stack+0x21/0x30 [ 35.370575][ T289] dump_stack_lvl+0xee/0x150 [ 35.375145][ T289] ? show_regs_print_info+0x20/0x20 [ 35.380322][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 35.386034][ T289] ? set_page_dirty+0x1ae/0x310 [ 35.390868][ T289] dump_stack+0x15/0x20 [ 35.395006][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 35.400366][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 35.406502][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 35.411688][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 35.417219][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 35.422930][ T289] ? __kasan_check_write+0x14/0x20 [ 35.428049][ T289] ? data_blkaddr+0x330/0x330 [ 35.432726][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 35.438176][ T289] ? addrs_per_block+0x110/0x110 [ 35.443102][ T289] ? dquot_initialize+0x20/0x20 [ 35.447936][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 35.453144][ T289] f2fs_truncate+0x1d7/0x3d0 [ 35.457899][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 35.462744][ T289] f2fs_setattr+0xaca/0x11b0 [ 35.467321][ T289] ? f2fs_getattr+0x670/0x670 [ 35.472070][ T289] notify_change+0xbca/0xe90 [ 35.476739][ T289] do_truncate+0x197/0x220 [ 35.481247][ T289] ? dquot_file_open+0x86/0xb0 [ 35.485995][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 35.491021][ T289] path_openat+0x2769/0x2f10 [ 35.495598][ T289] ? do_syscall_64+0x4c/0xa0 [ 35.500263][ T289] ? do_filp_open+0x3e0/0x3e0 [ 35.505022][ T289] do_filp_open+0x1b3/0x3e0 [ 35.509513][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 35.514090][ T289] do_sys_openat2+0x14c/0x7b0 [ 35.518751][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 35.524114][ T289] ? do_sys_open+0xe0/0xe0 [ 35.528590][ T289] ? do_notify_parent+0x800/0x800 [ 35.533598][ T289] __x64_sys_open+0x11c/0x140 [ 35.538373][ T289] x64_sys_call+0x3fc/0x9a0 [ 35.542882][ T289] do_syscall_64+0x4c/0xa0 [ 35.547382][ T289] ? clear_bhb_loop+0x50/0xa0 [ 35.552049][ T289] ? clear_bhb_loop+0x50/0xa0 [ 35.556712][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 35.562601][ T289] RIP: 0033:0x7f1fca3dd329 [ 35.567000][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 35.586693][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 35.595211][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 35.603174][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 35.611322][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 35.619298][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 35.627363][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 35.635334][ T289] [ 35.638593][ T289] F2FS-fs (loop0): access invalid blkaddr:4192207075 [ 35.645392][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 35.657267][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 35.667566][ T289] Call Trace: [ 35.670862][ T289] [ 35.673786][ T289] __dump_stack+0x21/0x30 [ 35.678107][ T289] dump_stack_lvl+0xee/0x150 [ 35.682797][ T289] ? show_regs_print_info+0x20/0x20 [ 35.687980][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 35.693770][ T289] ? set_page_dirty+0x1ae/0x310 [ 35.698605][ T289] dump_stack+0x15/0x20 [ 35.702744][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 35.708101][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 35.714260][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 35.719442][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 35.725159][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 35.730862][ T289] ? __kasan_check_write+0x14/0x20 [ 35.736046][ T289] ? data_blkaddr+0x330/0x330 [ 35.740725][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 35.746273][ T289] ? addrs_per_block+0x110/0x110 [ 35.751192][ T289] ? dquot_initialize+0x20/0x20 [ 35.756035][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 35.761255][ T289] f2fs_truncate+0x1d7/0x3d0 [ 35.765827][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 35.770589][ T289] f2fs_setattr+0xaca/0x11b0 [ 35.775166][ T289] ? f2fs_getattr+0x670/0x670 [ 35.779842][ T289] notify_change+0xbca/0xe90 [ 35.784417][ T289] do_truncate+0x197/0x220 [ 35.788818][ T289] ? dquot_file_open+0x86/0xb0 [ 35.793583][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 35.798620][ T289] path_openat+0x2769/0x2f10 [ 35.803289][ T289] ? do_syscall_64+0x4c/0xa0 [ 35.807871][ T289] ? do_filp_open+0x3e0/0x3e0 [ 35.812609][ T289] do_filp_open+0x1b3/0x3e0 [ 35.817182][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 35.821934][ T289] do_sys_openat2+0x14c/0x7b0 [ 35.826594][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 35.831776][ T289] ? do_sys_open+0xe0/0xe0 [ 35.836177][ T289] ? do_notify_parent+0x800/0x800 [ 35.841235][ T289] __x64_sys_open+0x11c/0x140 [ 35.845996][ T289] x64_sys_call+0x3fc/0x9a0 [ 35.850487][ T289] do_syscall_64+0x4c/0xa0 [ 35.854893][ T289] ? clear_bhb_loop+0x50/0xa0 [ 35.859566][ T289] ? clear_bhb_loop+0x50/0xa0 [ 35.864226][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 35.870104][ T289] RIP: 0033:0x7f1fca3dd329 [ 35.874504][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 35.894266][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 35.902807][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 35.910851][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 35.918807][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 35.926850][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 35.934805][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 35.942780][ T289] [ 35.946014][ T289] F2FS-fs (loop0): access invalid blkaddr:208431616 [ 35.952662][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 35.964654][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 35.974843][ T289] Call Trace: [ 35.978122][ T289] [ 35.981038][ T289] __dump_stack+0x21/0x30 [ 35.985359][ T289] dump_stack_lvl+0xee/0x150 [ 35.989938][ T289] ? show_regs_print_info+0x20/0x20 [ 35.995166][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 36.000890][ T289] ? set_page_dirty+0x1ae/0x310 [ 36.005756][ T289] dump_stack+0x15/0x20 [ 36.009897][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 36.015267][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 36.021431][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 36.026646][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 36.032188][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 36.037899][ T289] ? __kasan_check_write+0x14/0x20 [ 36.043003][ T289] ? data_blkaddr+0x330/0x330 [ 36.047667][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 36.053116][ T289] ? addrs_per_block+0x110/0x110 [ 36.058101][ T289] ? dquot_initialize+0x20/0x20 [ 36.062958][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 36.068271][ T289] f2fs_truncate+0x1d7/0x3d0 [ 36.072866][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 36.077628][ T289] f2fs_setattr+0xaca/0x11b0 [ 36.082304][ T289] ? f2fs_getattr+0x670/0x670 [ 36.086977][ T289] notify_change+0xbca/0xe90 [ 36.091647][ T289] do_truncate+0x197/0x220 [ 36.096122][ T289] ? dquot_file_open+0x86/0xb0 [ 36.100899][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 36.105917][ T289] path_openat+0x2769/0x2f10 [ 36.110503][ T289] ? do_syscall_64+0x4c/0xa0 [ 36.115082][ T289] ? do_filp_open+0x3e0/0x3e0 [ 36.119741][ T289] do_filp_open+0x1b3/0x3e0 [ 36.124226][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 36.128888][ T289] do_sys_openat2+0x14c/0x7b0 [ 36.133646][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 36.139105][ T289] ? do_sys_open+0xe0/0xe0 [ 36.143505][ T289] ? do_notify_parent+0x800/0x800 [ 36.148604][ T289] __x64_sys_open+0x11c/0x140 [ 36.153279][ T289] x64_sys_call+0x3fc/0x9a0 [ 36.157763][ T289] do_syscall_64+0x4c/0xa0 [ 36.162169][ T289] ? clear_bhb_loop+0x50/0xa0 [ 36.167002][ T289] ? clear_bhb_loop+0x50/0xa0 [ 36.171685][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 36.177583][ T289] RIP: 0033:0x7f1fca3dd329 [ 36.181999][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 36.201717][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 36.210137][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 36.218108][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 36.226157][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 36.234114][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [ 36.242086][ T289] R13: 0031656c69662f2e R14: 0000200000010600 R15: 0000200000001200 [ 36.250047][ T289] [ 36.253180][ T289] F2FS-fs (loop0): access invalid blkaddr:4294936705 [ 36.260062][ T289] CPU: 0 PID: 289 Comm: syz-executor298 Tainted: G B 5.15.189-syzkaller-android13-5.15.189_r00 #0 [ 36.271941][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 36.282077][ T289] Call Trace: [ 36.285362][ T289] [ 36.288293][ T289] __dump_stack+0x21/0x30 [ 36.292622][ T289] dump_stack_lvl+0xee/0x150 [ 36.297220][ T289] ? show_regs_print_info+0x20/0x20 [ 36.302409][ T289] ? f2fs_set_node_page_dirty+0x222/0x590 [ 36.308120][ T289] ? set_page_dirty+0x1ae/0x310 [ 36.312956][ T289] dump_stack+0x15/0x20 [ 36.317267][ T289] f2fs_is_valid_blkaddr+0xca0/0x12a0 [ 36.322682][ T289] f2fs_truncate_data_blocks_range+0x67c/0xeb0 [ 36.328875][ T289] ? f2fs_inode_dirtied+0x308/0x360 [ 36.334087][ T289] f2fs_truncate_data_blocks+0xf3/0x130 [ 36.339630][ T289] f2fs_truncate_inode_blocks+0x62f/0xf70 [ 36.345373][ T289] ? __kasan_check_write+0x14/0x20 [ 36.350467][ T289] ? data_blkaddr+0x330/0x330 [ 36.355140][ T289] f2fs_do_truncate_blocks+0x625/0xb20 [ 36.360581][ T289] ? addrs_per_block+0x110/0x110 [ 36.365502][ T289] ? dquot_initialize+0x20/0x20 [ 36.370426][ T289] f2fs_truncate_blocks+0x10e/0x300 [ 36.375872][ T289] f2fs_truncate+0x1d7/0x3d0 [ 36.380459][ T289] ? f2fs_setattr+0xac1/0x11b0 [ 36.385207][ T289] f2fs_setattr+0xaca/0x11b0 [ 36.389785][ T289] ? f2fs_getattr+0x670/0x670 [ 36.394442][ T289] notify_change+0xbca/0xe90 [ 36.399114][ T289] do_truncate+0x197/0x220 [ 36.403516][ T289] ? dquot_file_open+0x86/0xb0 [ 36.408264][ T289] ? put_page_bootmem+0x1a0/0x1a0 [ 36.413447][ T289] path_openat+0x2769/0x2f10 [ 36.418019][ T289] ? do_syscall_64+0x4c/0xa0 [ 36.422593][ T289] ? do_filp_open+0x3e0/0x3e0 [ 36.427254][ T289] do_filp_open+0x1b3/0x3e0 [ 36.431739][ T289] ? vfs_tmpfile+0x2d0/0x2d0 [ 36.436328][ T289] do_sys_openat2+0x14c/0x7b0 [ 36.440987][ T289] ? _raw_spin_unlock_irq+0x4e/0x70 [ 36.446271][ T289] ? do_sys_open+0xe0/0xe0 [ 36.450683][ T289] ? do_notify_parent+0x800/0x800 [ 36.455825][ T289] __x64_sys_open+0x11c/0x140 [ 36.460507][ T289] x64_sys_call+0x3fc/0x9a0 [ 36.465011][ T289] do_syscall_64+0x4c/0xa0 [ 36.469514][ T289] ? clear_bhb_loop+0x50/0xa0 [ 36.474185][ T289] ? clear_bhb_loop+0x50/0xa0 [ 36.478871][ T289] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 36.484859][ T289] RIP: 0033:0x7f1fca3dd329 [ 36.489290][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 36.508990][ T289] RSP: 002b:00007f1fca39b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 36.517492][ T289] RAX: ffffffffffffffda RBX: 00007f1fca4746c8 RCX: 00007f1fca3dd329 [ 36.525901][ T289] RDX: 0000000000000040 RSI: 0000000000141242 RDI: 0000200000000140 [ 36.534040][ T289] RBP: 00007f1fca4746c0 R08: 0000000000000000 R09: 0000000000000000 [ 36.542010][ T289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140 [pid 289] <... open resumed>) = ? [pid 289] +++ exited with 0 +++ +++ exited with 0 +++ [ 36.549991][ T289] R13: