[ 113.981586][ T3109] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 113.981610][ T3109] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 114.029088][ T3109] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 114.029116][ T3109] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 114.114414][ T3109] veth1_macvtap: left promiscuous mode
[ 114.114484][ T3109] veth0_macvtap: left promiscuous mode
[ 114.114629][ T3109] veth1_vlan: left promiscuous mode
[ 114.114724][ T3109] veth0_vlan: left promiscuous mode
[ 116.109496][ T3109] team0 (unregistering): Port device team_slave_1 removed
[ 116.319009][ T3109] team0 (unregistering): Port device team_slave_0 removed
Warning: Permanently added '10.128.0.101' (ED25519) to the list of known hosts.
[ 132.945101][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.945179][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
2025/12/06 08:39:27 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[ 137.166736][ T6284] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 140.990430][ T3109] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 140.990463][ T3109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 141.036850][ T44] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 141.036871][ T44] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 142.143376][ T5119] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 142.152094][ T5119] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 142.163896][ T5119] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 142.165287][ T5119] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 142.165965][ T5119] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 145.112319][ T6350] chnl_net:caif_netlink_parms(): no params data found
[ 145.561484][ T6350] bridge0: port 1(bridge_slave_0) entered blocking state
[ 145.561691][ T6350] bridge0: port 1(bridge_slave_0) entered disabled state
[ 145.561864][ T6350] bridge_slave_0: entered allmulticast mode
[ 145.564399][ T6350] bridge_slave_0: entered promiscuous mode
[ 145.567393][ T6350] bridge0: port 2(bridge_slave_1) entered blocking state
[ 145.567586][ T6350] bridge0: port 2(bridge_slave_1) entered disabled state
[ 145.567744][ T6350] bridge_slave_1: entered allmulticast mode
[ 145.571241][ T6350] bridge_slave_1: entered promiscuous mode
[ 145.752929][ T6350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 145.757837][ T6350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 146.000404][ T6350] team0: Port device team_slave_0 added
[ 146.002783][ T6350] team0: Port device team_slave_1 added
[ 146.409188][ T6350] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 146.409200][ T6350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 146.409213][ T6350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 146.410868][ T6350] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 146.410884][ T6350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 146.410897][ T6350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 146.647564][ T6350] hsr_slave_0: entered promiscuous mode
[ 146.648902][ T6350] hsr_slave_1: entered promiscuous mode
[ 148.203268][ T6350] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 148.243229][ T6350] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 148.281958][ T6350] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 148.323443][ T6350] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 148.473835][ T6350] 8021q: adding VLAN 0 to HW filter on device bond0
[ 148.502322][ T6350] 8021q: adding VLAN 0 to HW filter on device team0
[ 148.520447][ T1473] bridge0: port 1(bridge_slave_0) entered blocking state
[ 148.520676][ T1473] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 148.539900][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 148.540039][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 148.883591][ T6350] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 148.936220][ T6350] veth0_vlan: entered promiscuous mode
[ 148.959848][ T6350] veth1_vlan: entered promiscuous mode
[ 149.001315][ T6350] veth0_macvtap: entered promiscuous mode
[ 149.006784][ T6350] veth1_macvtap: entered promiscuous mode
[ 149.037068][ T6350] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 149.057170][ T6350] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 149.077436][ T1473] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 149.077677][ T1473] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 149.077712][ T1473] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 149.077743][ T1473] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 149.821268][ T3109] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 150.115836][ T3109] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 150.391593][ T3109] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 151.125474][ T3109] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/06 08:39:45 executed programs: 0
[ 151.309206][ T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 151.319987][ T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 151.324884][ T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 151.326386][ T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 151.327200][ T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 151.677887][ T6488] chnl_net:caif_netlink_parms(): no params data found
[ 152.010420][ T6488] bridge0: port 1(bridge_slave_0) entered blocking state
[ 152.018467][ T6488] bridge0: port 1(bridge_slave_0) entered disabled state
[ 152.018685][ T6488] bridge_slave_0: entered allmulticast mode
[ 152.021143][ T6488] bridge_slave_0: entered promiscuous mode
[ 152.029280][ T6488] bridge0: port 2(bridge_slave_1) entered blocking state
[ 152.029467][ T6488] bridge0: port 2(bridge_slave_1) entered disabled state
[ 152.029655][ T6488] bridge_slave_1: entered allmulticast mode
[ 152.032091][ T6488] bridge_slave_1: entered promiscuous mode
[ 152.236223][ T6488] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 152.265087][ T6488] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 152.512700][ T6488] team0: Port device team_slave_0 added
[ 152.517849][ T6488] team0: Port device team_slave_1 added
[ 152.811614][ T6488] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 152.811631][ T6488] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 152.811653][ T6488] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 152.813906][ T6488] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 152.813919][ T6488] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 152.813941][ T6488] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 152.969904][ T3109] bridge_slave_1: left allmulticast mode
[ 152.969931][ T3109] bridge_slave_1: left promiscuous mode
[ 152.970219][ T3109] bridge0: port 2(bridge_slave_1) entered disabled state
[ 153.069852][ T3109] bridge_slave_0: left allmulticast mode
[ 153.069881][ T3109] bridge_slave_0: left promiscuous mode
[ 153.070114][ T3109] bridge0: port 1(bridge_slave_0) entered disabled state
[ 153.339423][ T61] Bluetooth: hci0: command tx timeout
[ 154.769052][ T3109] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 154.829053][ T3109] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 154.850844][ T3109] bond0 (unregistering): Released all slaves
[ 154.996820][ T6488] hsr_slave_0: entered promiscuous mode
[ 154.997597][ T6488] hsr_slave_1: entered promiscuous mode
[ 155.000057][ T6488] debugfs: 'hsr0' already exists in 'hsr'
[ 155.000164][ T6488] Cannot create hsr debugfs directory
[ 155.228492][ T3109] hsr_slave_0: left promiscuous mode
[ 155.248416][ T3109] hsr_slave_1: left promiscuous mode
[ 155.249407][ T3109] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 155.249431][ T3109] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 155.289124][ T3109] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 155.289151][ T3109] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 155.364583][ T3109] veth1_macvtap: left promiscuous mode
[ 155.364691][ T3109] veth0_macvtap: left promiscuous mode
[ 155.364899][ T3109] veth1_vlan: left promiscuous mode
[ 155.365010][ T3109] veth0_vlan: left promiscuous mode
[ 155.418464][ T61] Bluetooth: hci0: command tx timeout
[ 157.269211][ T3109] team0 (unregistering): Port device team_slave_1 removed
[ 157.459039][ T3109] team0 (unregistering): Port device team_slave_0 removed
[ 157.498415][ T61] Bluetooth: hci0: command tx timeout
[ 159.578394][ T61] Bluetooth: hci0: command tx timeout
[ 160.800175][ T6488] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 160.842083][ T6488] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 160.881725][ T6488] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 160.923119][ T6488] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 161.085731][ T6488] 8021q: adding VLAN 0 to HW filter on device bond0
[ 161.151975][ T6488] 8021q: adding VLAN 0 to HW filter on device team0
[ 161.195142][ T44] bridge0: port 1(bridge_slave_0) entered blocking state
[ 161.195267][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 161.226011][ T44] bridge0: port 2(bridge_slave_1) entered blocking state
[ 161.226277][ T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 161.420902][ T6488] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 161.465160][ T6488] veth0_vlan: entered promiscuous mode
[ 161.477370][ T6488] veth1_vlan: entered promiscuous mode
[ 161.505339][ T6488] veth0_macvtap: entered promiscuous mode
[ 161.515627][ T6488] veth1_macvtap: entered promiscuous mode
[ 161.535508][ T6488] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 161.551734][ T6488] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 161.565605][ T44] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 161.566618][ T44] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 161.566865][ T44] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 161.566897][ T44] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 161.766640][ T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 161.766660][ T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 161.810174][ T3109] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 161.810195][ T3109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:39:56 executed programs: 2
[ 162.189364][ T6599] loop0: detected capacity change from 0 to 40427
[ 162.227015][ T6599] F2FS-fs (loop0): build fault injection rate: 14
[ 162.227037][ T6599] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[ 162.248095][ T6599] F2FS-fs (loop0): invalid crc value
[ 162.261586][ C0] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 162.275132][ C0] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 162.411332][ T6599] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 162.411704][ T6599] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 162.416177][ T6599] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 162.439747][ T6599] syz.0.17: attempt to access beyond end of device
[ 162.439747][ T6599] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 162.446239][ T6599] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 162.451768][ T6599] F2FS-fs (loop0): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 162.451808][ T6599] F2FS-fs (loop0): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 162.491172][ T6603] f2fs_cp: 1 before cp_global_sem
[ 162.491275][ T6603] f2fs_cp: 2 after cp_global_sem
[ 162.491308][ T6603] f2fs_cp: 4 before block_operations
[ 177.017743][ T5119] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 177.031351][ T5119] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 177.033132][ T5119] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 177.034652][ T5119] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 177.036167][ T5119] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 177.412796][ T6605] chnl_net:caif_netlink_parms(): no params data found
[ 177.751924][ T6605] bridge0: port 1(bridge_slave_0) entered blocking state
[ 177.752154][ T6605] bridge0: port 1(bridge_slave_0) entered disabled state
[ 177.752338][ T6605] bridge_slave_0: entered allmulticast mode
[ 177.754970][ T6605] bridge_slave_0: entered promiscuous mode
[ 177.762144][ T6605] bridge0: port 2(bridge_slave_1) entered blocking state
[ 177.762343][ T6605] bridge0: port 2(bridge_slave_1) entered disabled state
[ 177.762500][ T6605] bridge_slave_1: entered allmulticast mode
[ 177.764921][ T6605] bridge_slave_1: entered promiscuous mode
[ 177.934595][ T6605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 177.940830][ T6605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 178.103464][ T6605] team0: Port device team_slave_0 added
[ 178.107105][ T6605] team0: Port device team_slave_1 added
[ 178.251133][ T6605] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 178.251149][ T6605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 178.251172][ T6605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 178.253486][ T6605] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 178.253498][ T6605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 178.253520][ T6605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 178.558175][ T6605] hsr_slave_0: entered promiscuous mode
[ 178.559781][ T6605] hsr_slave_1: entered promiscuous mode
[ 179.005319][ T6605] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 179.024734][ T6605] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 179.063811][ T6605] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 179.098369][ T61] Bluetooth: hci1: command tx timeout
[ 179.103322][ T6605] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 179.317250][ T6605] 8021q: adding VLAN 0 to HW filter on device bond0
[ 179.343705][ T6605] 8021q: adding VLAN 0 to HW filter on device team0
[ 179.354582][ T44] bridge0: port 1(bridge_slave_0) entered blocking state
[ 179.354799][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 179.372715][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 179.372994][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 179.713024][ T6605] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 179.790846][ T6605] veth0_vlan: entered promiscuous mode
[ 179.805104][ T6605] veth1_vlan: entered promiscuous mode
[ 179.851894][ T6605] veth0_macvtap: entered promiscuous mode
[ 179.857407][ T6605] veth1_macvtap: entered promiscuous mode
[ 179.882041][ T6605] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 179.893927][ T6605] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 179.912741][ T44] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 179.913573][ T44] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 179.913609][ T44] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 179.913641][ T44] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 180.167287][ T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 180.167307][ T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 180.236936][ T3467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 180.236956][ T3467] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:40:14 executed programs: 3
[ 180.849943][ T6627] loop1: detected capacity change from 0 to 40427
[ 180.875923][ T6627] F2FS-fs (loop1): build fault injection rate: 14
[ 180.875946][ T6627] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[ 180.907318][ T6627] F2FS-fs (loop1): invalid crc value
[ 180.918977][ C0] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 180.953922][ C0] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 181.178551][ T61] Bluetooth: hci1: command tx timeout
[ 181.188040][ T6627] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 181.188073][ T6627] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 181.194942][ T6627] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 181.209068][ T6627] syz.1.18: attempt to access beyond end of device
[ 181.209068][ T6627] loop1: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 181.210030][ T6627] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 181.211330][ T6627] F2FS-fs (loop1): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 181.211362][ T6627] F2FS-fs (loop1): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 181.221792][ T6631] f2fs_cp: 1 before cp_global_sem
[ 181.221804][ T6631] f2fs_cp: 2 after cp_global_sem
[ 181.221810][ T6631] f2fs_cp: 4 before block_operations
[ 183.258597][ T61] Bluetooth: hci1: command tx timeout
[ 185.339235][ T61] Bluetooth: hci1: command tx timeout
[ 194.383369][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.383437][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 195.537883][ T5119] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 195.558591][ T5119] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 195.565440][ T5119] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 195.566944][ T5119] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 195.567986][ T5119] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 196.137940][ T6639] chnl_net:caif_netlink_parms(): no params data found
[ 196.540624][ T6639] bridge0: port 1(bridge_slave_0) entered blocking state
[ 196.542741][ T6639] bridge0: port 1(bridge_slave_0) entered disabled state
[ 196.542938][ T6639] bridge_slave_0: entered allmulticast mode
[ 196.545641][ T6639] bridge_slave_0: entered promiscuous mode
[ 196.551023][ T6639] bridge0: port 2(bridge_slave_1) entered blocking state
[ 196.559838][ T6639] bridge0: port 2(bridge_slave_1) entered disabled state
[ 196.560043][ T6639] bridge_slave_1: entered allmulticast mode
[ 196.563018][ T6639] bridge_slave_1: entered promiscuous mode
[ 196.780914][ T6639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 196.790260][ T6639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 196.954424][ T6639] team0: Port device team_slave_0 added
[ 196.961802][ T6639] team0: Port device team_slave_1 added
[ 197.210978][ T6639] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 197.210994][ T6639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 197.211017][ T6639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 197.213259][ T6639] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 197.213271][ T6639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 197.213294][ T6639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 197.450639][ T6639] hsr_slave_0: entered promiscuous mode
[ 197.451945][ T6639] hsr_slave_1: entered promiscuous mode
[ 197.452865][ T6639] debugfs: 'hsr0' already exists in 'hsr'
[ 197.452900][ T6639] Cannot create hsr debugfs directory
[ 197.659814][ T61] Bluetooth: hci2: command tx timeout
[ 198.099410][ T6639] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 198.130290][ T6639] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 198.160871][ T6639] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 198.186087][ T6639] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 198.496282][ T6639] 8021q: adding VLAN 0 to HW filter on device bond0
[ 198.549460][ T6639] 8021q: adding VLAN 0 to HW filter on device team0
[ 198.563262][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 198.563525][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 198.582207][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 198.583184][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 199.080918][ T6639] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 199.202161][ T6639] veth0_vlan: entered promiscuous mode
[ 199.224075][ T6639] veth1_vlan: entered promiscuous mode
[ 199.294222][ T6639] veth0_macvtap: entered promiscuous mode
[ 199.306202][ T6639] veth1_macvtap: entered promiscuous mode
[ 199.352292][ T6639] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 199.363831][ T6639] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 199.390797][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 199.401895][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 199.409294][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 199.409907][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 199.735020][ T3467] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 199.735041][ T3467] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 199.739647][ T61] Bluetooth: hci2: command tx timeout
[ 199.839384][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 199.839405][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:40:34 executed programs: 4
[ 200.873600][ T6660] loop2: detected capacity change from 0 to 40427
[ 200.912168][ T6660] F2FS-fs (loop2): build fault injection rate: 14
[ 200.912192][ T6660] F2FS-fs (loop2): build fault injection type: 0x3bfe8c
[ 200.930793][ T6660] F2FS-fs (loop2): invalid crc value
[ 200.943835][ C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 200.954849][ C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 201.235554][ T6660] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 201.235588][ T6660] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 201.237792][ T6660] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 201.244096][ T6660] syz.2.19: attempt to access beyond end of device
[ 201.244096][ T6660] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 201.244948][ T6660] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 201.248185][ T6660] F2FS-fs (loop2): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 201.249822][ T6660] F2FS-fs (loop2): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 201.256518][ T6664] f2fs_cp: 1 before cp_global_sem
[ 201.256531][ T6664] f2fs_cp: 2 after cp_global_sem
[ 201.256538][ T6664] f2fs_cp: 4 before block_operations
[ 201.818403][ T61] Bluetooth: hci2: command tx timeout
[ 203.899454][ T61] Bluetooth: hci2: command tx timeout
[ 215.316665][ T5119] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 215.326296][ T5119] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 215.327817][ T5119] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 215.343424][ T5119] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 215.344268][ T5119] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 216.252991][ T6666] chnl_net:caif_netlink_parms(): no params data found
[ 216.740700][ T6666] bridge0: port 1(bridge_slave_0) entered blocking state
[ 216.758548][ T6666] bridge0: port 1(bridge_slave_0) entered disabled state
[ 216.758770][ T6666] bridge_slave_0: entered allmulticast mode
[ 216.761308][ T6666] bridge_slave_0: entered promiscuous mode
[ 216.791292][ T6666] bridge0: port 2(bridge_slave_1) entered blocking state
[ 216.808474][ T6666] bridge0: port 2(bridge_slave_1) entered disabled state
[ 216.808701][ T6666] bridge_slave_1: entered allmulticast mode
[ 216.812298][ T6666] bridge_slave_1: entered promiscuous mode
[ 217.041569][ T6666] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 217.082697][ T6666] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 217.345100][ T6666] team0: Port device team_slave_0 added
[ 217.358930][ T6666] team0: Port device team_slave_1 added
[ 217.420751][ T5119] Bluetooth: hci3: command tx timeout
[ 217.592099][ T6666] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 217.592117][ T6666] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 217.592140][ T6666] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 217.594498][ T6666] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 217.594510][ T6666] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 217.594532][ T6666] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 217.930284][ T6666] hsr_slave_0: entered promiscuous mode
[ 217.932694][ T6666] hsr_slave_1: entered promiscuous mode
[ 217.938836][ T6666] debugfs: 'hsr0' already exists in 'hsr'
[ 217.938860][ T6666] Cannot create hsr debugfs directory
[ 218.836794][ T6666] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 218.864127][ T6666] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 218.953668][ T6666] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 219.010383][ T6666] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 219.338141][ T6666] 8021q: adding VLAN 0 to HW filter on device bond0
[ 219.393641][ T6666] 8021q: adding VLAN 0 to HW filter on device team0
[ 219.421996][ T1551] bridge0: port 1(bridge_slave_0) entered blocking state
[ 219.429874][ T1551] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 219.451771][ T1551] bridge0: port 2(bridge_slave_1) entered blocking state
[ 219.451978][ T1551] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 219.508456][ T5119] Bluetooth: hci3: command tx timeout
[ 220.067384][ T6666] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 220.167599][ T6666] veth0_vlan: entered promiscuous mode
[ 220.191147][ T6666] veth1_vlan: entered promiscuous mode
[ 220.271209][ T6666] veth0_macvtap: entered promiscuous mode
[ 220.292944][ T6666] veth1_macvtap: entered promiscuous mode
[ 220.333995][ T6666] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 220.354557][ T6666] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 220.384198][ T3467] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 220.384242][ T3467] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 220.384272][ T3467] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 220.384311][ T3467] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 220.774484][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 220.774505][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 220.935392][ T1427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 220.935415][ T1427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:40:55 executed programs: 5
[ 221.578462][ T5119] Bluetooth: hci3: command tx timeout
[ 222.246084][ T6690] loop3: detected capacity change from 0 to 40427
[ 222.338392][ T6690] F2FS-fs (loop3): build fault injection rate: 14
[ 222.338414][ T6690] F2FS-fs (loop3): build fault injection type: 0x3bfe8c
[ 222.362309][ T6690] F2FS-fs (loop3): invalid crc value
[ 222.387240][ C1] F2FS-fs (loop3): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 222.439989][ C1] F2FS-fs (loop3): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 222.756533][ T6690] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 222.756569][ T6690] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 222.772005][ T6690] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 222.798989][ T6690] syz.3.20: attempt to access beyond end of device
[ 222.798989][ T6690] loop3: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 222.800346][ T6690] F2FS-fs (loop3): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 222.801659][ T6690] F2FS-fs (loop3): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 222.801691][ T6690] F2FS-fs (loop3): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 222.830864][ T6694] f2fs_cp: 1 before cp_global_sem
[ 222.830879][ T6694] f2fs_cp: 2 after cp_global_sem
[ 222.830886][ T6694] f2fs_cp: 4 before block_operations
[ 223.658790][ T5119] Bluetooth: hci3: command tx timeout
[ 236.529327][ T61] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 236.539166][ T61] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 236.540417][ T61] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 236.549645][ T61] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 236.567098][ T61] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 237.598590][ T6696] chnl_net:caif_netlink_parms(): no params data found
[ 238.321705][ T6696] bridge0: port 1(bridge_slave_0) entered blocking state
[ 238.335878][ T6696] bridge0: port 1(bridge_slave_0) entered disabled state
[ 238.336134][ T6696] bridge_slave_0: entered allmulticast mode
[ 238.354018][ T6696] bridge_slave_0: entered promiscuous mode
[ 238.357443][ T6696] bridge0: port 2(bridge_slave_1) entered blocking state
[ 238.380015][ T6696] bridge0: port 2(bridge_slave_1) entered disabled state
[ 238.380249][ T6696] bridge_slave_1: entered allmulticast mode
[ 238.401794][ T6696] bridge_slave_1: entered promiscuous mode
[ 238.618478][ T61] Bluetooth: hci4: command tx timeout
[ 238.627487][ T6696] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 238.652318][ T6696] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 238.894032][ T6696] team0: Port device team_slave_0 added
[ 238.907965][ T6696] team0: Port device team_slave_1 added
[ 239.190397][ T6696] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 239.190414][ T6696] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 239.190435][ T6696] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 239.192694][ T6696] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 239.192707][ T6696] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 239.192729][ T6696] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 239.576195][ T6696] hsr_slave_0: entered promiscuous mode
[ 239.577863][ T6696] hsr_slave_1: entered promiscuous mode
[ 239.591597][ T6696] debugfs: 'hsr0' already exists in 'hsr'
[ 239.591624][ T6696] Cannot create hsr debugfs directory
[ 240.651863][ T6696] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 240.699158][ T61] Bluetooth: hci4: command tx timeout
[ 240.738322][ T6696] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 240.796118][ T6696] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 240.823927][ T6696] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 241.261962][ T6696] 8021q: adding VLAN 0 to HW filter on device bond0
[ 241.317097][ T6696] 8021q: adding VLAN 0 to HW filter on device team0
[ 241.404761][ T3109] bridge0: port 1(bridge_slave_0) entered blocking state
[ 241.404968][ T3109] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 241.409999][ T3109] bridge0: port 2(bridge_slave_1) entered blocking state
[ 241.410129][ T3109] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 242.113904][ T6696] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 242.778454][ T61] Bluetooth: hci4: command tx timeout
[ 242.925158][ T6696] veth0_vlan: entered promiscuous mode
[ 242.970784][ T6696] veth1_vlan: entered promiscuous mode
[ 243.119908][ T6696] veth0_macvtap: entered promiscuous mode
[ 243.125120][ T6696] veth1_macvtap: entered promiscuous mode
[ 243.179645][ T6696] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 243.202852][ T6696] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 243.233879][ T1473] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.233924][ T1473] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.233954][ T1473] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.233985][ T1473] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.729621][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 243.729643][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 243.889948][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 243.889969][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:41:18 executed programs: 6
[ 244.858711][ T61] Bluetooth: hci4: command tx timeout
[ 245.506913][ T6725] loop4: detected capacity change from 0 to 40427
[ 245.549336][ T6725] F2FS-fs (loop4): build fault injection rate: 14
[ 245.549357][ T6725] F2FS-fs (loop4): build fault injection type: 0x3bfe8c
[ 245.588326][ T6725] F2FS-fs (loop4): invalid crc value
[ 245.611811][ C0] F2FS-fs (loop4): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 245.695404][ C0] F2FS-fs (loop4): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 245.851764][ T6725] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 245.851798][ T6725] F2FS-fs (loop4): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 245.880256][ T6725] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 245.881806][ T6725] syz.4.21: attempt to access beyond end of device
[ 245.881806][ T6725] loop4: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 245.882719][ T6725] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 245.900516][ T6725] F2FS-fs (loop4): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 245.900558][ T6725] F2FS-fs (loop4): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 245.950267][ T6732] f2fs_cp: 1 before cp_global_sem
[ 245.950283][ T6732] f2fs_cp: 2 after cp_global_sem
[ 245.950291][ T6732] f2fs_cp: 4 before block_operations
[ 255.829500][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 255.829569][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 259.651890][ T5119] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 259.655489][ T5119] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 259.656390][ T5119] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 259.684073][ T5119] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 259.685192][ T5119] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 260.872167][ T6740] chnl_net:caif_netlink_parms(): no params data found
[ 261.450570][ T6740] bridge0: port 1(bridge_slave_0) entered blocking state
[ 261.468744][ T6740] bridge0: port 1(bridge_slave_0) entered disabled state
[ 261.469001][ T6740] bridge_slave_0: entered allmulticast mode
[ 261.494444][ T6740] bridge_slave_0: entered promiscuous mode
[ 261.517897][ T6740] bridge0: port 2(bridge_slave_1) entered blocking state
[ 261.518028][ T6740] bridge0: port 2(bridge_slave_1) entered disabled state
[ 261.538533][ T6740] bridge_slave_1: entered allmulticast mode
[ 261.541253][ T6740] bridge_slave_1: entered promiscuous mode
[ 261.738373][ T5119] Bluetooth: hci5: command tx timeout
[ 261.834792][ T6740] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 261.860337][ T6740] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 262.144795][ T6740] team0: Port device team_slave_0 added
[ 262.169065][ T6740] team0: Port device team_slave_1 added
[ 262.438627][ T6740] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 262.438644][ T6740] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 262.438668][ T6740] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 262.450981][ T6740] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 262.450997][ T6740] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 262.451019][ T6740] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 263.130835][ T6740] hsr_slave_0: entered promiscuous mode
[ 263.148885][ T6740] hsr_slave_1: entered promiscuous mode
[ 263.149908][ T6740] debugfs: 'hsr0' already exists in 'hsr'
[ 263.149930][ T6740] Cannot create hsr debugfs directory
[ 263.818327][ T5119] Bluetooth: hci5: command tx timeout
[ 264.444130][ T6740] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 264.520454][ T6740] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 264.575079][ T6740] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 264.650181][ T6740] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 265.180329][ T6740] 8021q: adding VLAN 0 to HW filter on device bond0
[ 265.243706][ T6740] 8021q: adding VLAN 0 to HW filter on device team0
[ 265.290491][ T58] bridge0: port 1(bridge_slave_0) entered blocking state
[ 265.290704][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 265.320752][ T58] bridge0: port 2(bridge_slave_1) entered blocking state
[ 265.320940][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 265.902516][ T5119] Bluetooth: hci5: command tx timeout
[ 266.391874][ T6740] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 267.586736][ T6740] veth0_vlan: entered promiscuous mode
[ 267.678082][ T6740] veth1_vlan: entered promiscuous mode
[ 267.837711][ T6740] veth0_macvtap: entered promiscuous mode
[ 267.868586][ T6740] veth1_macvtap: entered promiscuous mode
[ 267.950347][ T6740] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 267.978824][ T5119] Bluetooth: hci5: command tx timeout
[ 267.991109][ T6740] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 268.049633][ T6737] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.090002][ T6737] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.090058][ T6737] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.090091][ T6737] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.640080][ T3109] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 268.640101][ T3109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 268.898431][ T6737] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 268.898451][ T6737] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:41:43 executed programs: 7
[ 270.677423][ T6771] loop5: detected capacity change from 0 to 40427
[ 270.748324][ T6771] F2FS-fs (loop5): build fault injection rate: 14
[ 270.748347][ T6771] F2FS-fs (loop5): build fault injection type: 0x3bfe8c
[ 270.780530][ T6771] F2FS-fs (loop5): invalid crc value
[ 270.830722][ C0] F2FS-fs (loop5): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 270.881396][ C0] F2FS-fs (loop5): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 271.392221][ T6771] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 271.392256][ T6771] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 271.424421][ T6771] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 271.425943][ T6771] syz.5.22: attempt to access beyond end of device
[ 271.425943][ T6771] loop5: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 271.427822][ T6771] F2FS-fs (loop5): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 271.432015][ T6771] F2FS-fs (loop5): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 271.432051][ T6771] F2FS-fs (loop5): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 271.479142][ T6775] f2fs_cp: 1 before cp_global_sem
[ 271.479156][ T6775] f2fs_cp: 2 after cp_global_sem
[ 271.479163][ T6775] f2fs_cp: 4 before block_operations
[ 278.378439][ T5119] Bluetooth: hci0: command 0x0406 tx timeout
[ 284.561852][ T5119] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 284.598565][ T5119] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 284.604483][ T5119] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 284.610876][ T5119] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 284.611703][ T5119] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 285.917706][ T6780] chnl_net:caif_netlink_parms(): no params data found
[ 286.700813][ T5119] Bluetooth: hci6: command tx timeout
[ 286.813728][ T6780] bridge0: port 1(bridge_slave_0) entered blocking state
[ 286.848834][ T6780] bridge0: port 1(bridge_slave_0) entered disabled state
[ 286.849084][ T6780] bridge_slave_0: entered allmulticast mode
[ 286.868478][ T6780] bridge_slave_0: entered promiscuous mode
[ 286.872534][ T6780] bridge0: port 2(bridge_slave_1) entered blocking state
[ 286.878970][ T6780] bridge0: port 2(bridge_slave_1) entered disabled state
[ 286.879223][ T6780] bridge_slave_1: entered allmulticast mode
[ 286.928541][ T6780] bridge_slave_1: entered promiscuous mode
[ 287.383982][ T6780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 287.429806][ T6780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 287.886191][ T6780] team0: Port device team_slave_0 added
[ 287.923618][ T6780] team0: Port device team_slave_1 added
[ 288.350924][ T6780] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 288.350940][ T6780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 288.350964][ T6780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 288.353343][ T6780] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 288.353355][ T6780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 288.353378][ T6780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 288.780428][ T5119] Bluetooth: hci6: command tx timeout
[ 288.860562][ T6780] hsr_slave_0: entered promiscuous mode
[ 288.861926][ T6780] hsr_slave_1: entered promiscuous mode
[ 288.863243][ T6780] debugfs: 'hsr0' already exists in 'hsr'
[ 288.863265][ T6780] Cannot create hsr debugfs directory
[ 290.429418][ T6780] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 290.530399][ T6780] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 290.620190][ T6780] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 290.719893][ T6780] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 290.859614][ T5119] Bluetooth: hci6: command tx timeout
[ 291.236718][ T6780] 8021q: adding VLAN 0 to HW filter on device bond0
[ 291.373439][ T6780] 8021q: adding VLAN 0 to HW filter on device team0
[ 291.412937][ T81] bridge0: port 1(bridge_slave_0) entered blocking state
[ 291.425904][ T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 291.456753][ T81] bridge0: port 2(bridge_slave_1) entered blocking state
[ 291.457013][ T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 292.666609][ T6780] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 292.939398][ T61] Bluetooth: hci6: command tx timeout
[ 293.972542][ T6780] veth0_vlan: entered promiscuous mode
[ 294.021417][ T6780] veth1_vlan: entered promiscuous mode
[ 294.070752][ T6780] veth0_macvtap: entered promiscuous mode
[ 294.075808][ T6780] veth1_macvtap: entered promiscuous mode
[ 294.195734][ T6780] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 294.214554][ T6780] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 294.370570][ T1427] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 294.370835][ T1427] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 294.371016][ T1427] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 294.372193][ T1427] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 294.830503][ T6811] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 294.830523][ T6811] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 295.071947][ T6812] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 295.071968][ T6812] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:42:09 executed programs: 8
[ 297.084473][ T6815] loop6: detected capacity change from 0 to 40427
[ 297.147058][ T6815] F2FS-fs (loop6): build fault injection rate: 14
[ 297.147081][ T6815] F2FS-fs (loop6): build fault injection type: 0x3bfe8c
[ 297.209784][ T6815] F2FS-fs (loop6): invalid crc value
[ 297.298867][ C0] F2FS-fs (loop6): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 297.388434][ C0] F2FS-fs (loop6): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 297.895826][ T6815] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 297.895859][ T6815] F2FS-fs (loop6): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 297.969265][ T6815] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 297.970853][ T6815] syz.6.23: attempt to access beyond end of device
[ 297.970853][ T6815] loop6: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 297.971770][ T6815] F2FS-fs (loop6): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 297.973144][ T6815] F2FS-fs (loop6): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 297.973176][ T6815] F2FS-fs (loop6): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 297.992694][ T6820] f2fs_cp: 1 before cp_global_sem
[ 297.992708][ T6820] f2fs_cp: 2 after cp_global_sem
[ 297.992715][ T6820] f2fs_cp: 4 before block_operations
[ 303.988364][ T61] Bluetooth: hci1: command 0x0406 tx timeout
[ 310.552124][ T61] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 310.559375][ T61] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 310.560569][ T61] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 310.571400][ T61] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 310.572400][ T61] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 312.210033][ T6829] chnl_net:caif_netlink_parms(): no params data found
[ 312.618499][ T5119] Bluetooth: hci7: command tx timeout
[ 313.251758][ T6829] bridge0: port 1(bridge_slave_0) entered blocking state
[ 313.267054][ T6829] bridge0: port 1(bridge_slave_0) entered disabled state
[ 313.267358][ T6829] bridge_slave_0: entered allmulticast mode
[ 313.311755][ T6829] bridge_slave_0: entered promiscuous mode
[ 313.326463][ T6829] bridge0: port 2(bridge_slave_1) entered blocking state
[ 313.348552][ T6829] bridge0: port 2(bridge_slave_1) entered disabled state
[ 313.348814][ T6829] bridge_slave_1: entered allmulticast mode
[ 313.351517][ T6829] bridge_slave_1: entered promiscuous mode
[ 313.816358][ T6829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 313.861235][ T6829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 314.409651][ T6829] team0: Port device team_slave_0 added
[ 314.419973][ T6829] team0: Port device team_slave_1 added
[ 314.698499][ T5119] Bluetooth: hci7: command tx timeout
[ 314.752372][ T6829] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 314.752389][ T6829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 314.752412][ T6829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 314.796563][ T6829] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 314.796579][ T6829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 314.796602][ T6829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 315.353049][ T6829] hsr_slave_0: entered promiscuous mode
[ 315.354494][ T6829] hsr_slave_1: entered promiscuous mode
[ 315.355438][ T6829] debugfs: 'hsr0' already exists in 'hsr'
[ 315.355461][ T6829] Cannot create hsr debugfs directory
[ 316.785360][ T5119] Bluetooth: hci7: command tx timeout
[ 317.039043][ T6829] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 317.166038][ T6829] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 317.253325][ T6829] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 317.273646][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 317.273709][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 317.329153][ T6829] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 317.972630][ T6829] 8021q: adding VLAN 0 to HW filter on device bond0
[ 318.070799][ T6829] 8021q: adding VLAN 0 to HW filter on device team0
[ 318.117095][ T1473] bridge0: port 1(bridge_slave_0) entered blocking state
[ 318.117242][ T1473] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 318.175487][ T6812] bridge0: port 2(bridge_slave_1) entered blocking state
[ 318.176163][ T6812] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 318.858540][ T61] Bluetooth: hci7: command tx timeout
[ 319.346297][ T61] Bluetooth: hci2: command 0x0406 tx timeout
[ 319.497698][ T6829] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 321.042749][ T6829] veth0_vlan: entered promiscuous mode
[ 321.121298][ T6829] veth1_vlan: entered promiscuous mode
[ 321.250396][ T6829] veth0_macvtap: entered promiscuous mode
[ 321.284461][ T6829] veth1_macvtap: entered promiscuous mode
[ 321.420985][ T6829] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 321.482118][ T6829] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 321.553954][ T6818] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 321.554021][ T6818] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 321.554068][ T6818] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 321.554098][ T6818] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 322.092203][ T6812] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 322.092226][ T6812] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 322.347801][ T6812] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 322.347821][ T6812] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 08:42:37 executed programs: 9
[ 324.844431][ T6861] loop7: detected capacity change from 0 to 40427
[ 324.862741][ T6861] F2FS-fs (loop7): build fault injection rate: 14
[ 324.862763][ T6861] F2FS-fs (loop7): build fault injection type: 0x3bfe8c
[ 324.942076][ T6861] F2FS-fs (loop7): invalid crc value
[ 324.956845][ C0] F2FS-fs (loop7): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 325.082690][ C0] F2FS-fs (loop7): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 325.645545][ T6861] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 325.645581][ T6861] F2FS-fs (loop7): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 325.739086][ T6861] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 325.929854][ T6829] f2fs_cp: 1 before cp_global_sem
[ 325.929935][ T6829] f2fs_cp: 2 after cp_global_sem
[ 325.929950][ T6829] f2fs_cp: 4 before block_operations
[ 325.930504][ T6829] f2fs_cp: 5 after block_operations err=0 cp_error=0
[ 325.930881][ T6829] f2fs_cp: 4 before block_operations
[ 326.123121][ T6829] f2fs_cp: 7 after do_checkpoint err=0
[ 326.179925][ T6829] f2fs_cp: 1 before cp_global_sem
[ 326.179941][ T6829] f2fs_cp: 2 after cp_global_sem
[ 326.179948][ T6829] f2fs_cp: 4 before block_operations
[ 326.179980][ T6829] f2fs_cp: 5 after block_operations err=0 cp_error=0
[ 326.180043][ T6829] f2fs_cp: 4 before block_operations
[ 326.221515][ T38] INFO: task syz.0.17:6598 blocked for more than 143 seconds.
[ 326.221540][ T38] Not tainted syzkaller #0
[ 326.221549][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 326.221570][ T38] task:syz.0.17 state:D stack:26840 pid:6598 tgid:6598 ppid:6488 task_flags:0x400040 flags:0x00080002
[ 326.221633][ T38] Call Trace:
[ 326.221640][ T38]
[ 326.221654][ T38] __schedule+0x1480/0x50a0
[ 326.221686][ T38] ? __lock_acquire+0x6b6/0x2cf0
[ 326.221719][ T38] ? rcu_is_watching+0x15/0xb0
[ 326.221745][ T38] ? __pfx___schedule+0x10/0x10
[ 326.221770][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 326.221802][ T38] rt_mutex_schedule+0x77/0xf0
[ 326.221818][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 326.221845][ T38] __rt_mutex_slowlock_locked+0x1dfe/0x25e0
[ 326.221877][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 326.221905][ T38] ? __pfx___rt_mutex_slowlock_locked+0x10/0x10
[ 326.221936][ T38] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 326.221961][ T38] ? rt_mutex_pre_schedule+0x7d/0x1d0
[ 326.221982][ T38] rt_mutex_slowlock+0xb5/0x160
[ 326.222008][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 326.222040][ T38] rwbase_write_lock+0x14f/0x750
[ 326.222069][ T38] ? __pfx_f2fs_release_file+0x10/0x10
[ 326.222093][ T38] ? __pfx_f2fs_release_file+0x10/0x10
[ 326.222116][ T38] f2fs_release_file+0xe3/0x150
[ 326.222141][ T38] __fput+0x45b/0xa80
[ 326.222172][ T38] task_work_run+0x1d4/0x260
[ 326.222200][ T38] ? __pfx_task_work_run+0x10/0x10
[ 326.222220][ T38] ? __se_sys_close_range+0x4f0/0x650
[ 326.222244][ T38] ? exit_to_user_mode_loop+0x55/0x4f0
[ 326.222270][ T38] exit_to_user_mode_loop+0xff/0x4f0
[ 326.222291][ T38] ? rcu_is_watching+0x15/0xb0
[ 326.222313][ T38] do_syscall_64+0x2e3/0xf80
[ 326.222335][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.222353][ T38] ? clear_bhb_loop+0x60/0xb0
[ 326.222374][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.222392][ T38] RIP: 0033:0x7f1dccfff749
[ 326.222412][ T38] RSP: 002b:00007fff9df4ebb8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 326.222430][ T38] RAX: 0000000000000000 RBX: 00007f1dcd257da0 RCX: 00007f1dccfff749
[ 326.222443][ T38] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 326.222454][ T38] RBP: 00007f1dcd257da0 R08: 0000000000000000 R09: 000000069df4eeaf
[ 326.222466][ T38] R10: 00007f1dcd257cb0 R11: 0000000000000246 R12: 0000000000027b0d
[ 326.222478][ T38] R13: 00007fff9df4ecb0 R14: ffffffffffffffff R15: 00007fff9df4ecd0
[ 326.222509][ T38]
[ 326.222517][ T38] INFO: task syz.0.17:6599 blocked for more than 143 seconds.
[ 326.222529][ T38] Not tainted syzkaller #0
[ 326.222538][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 326.222546][ T38] task:syz.0.17 state:D stack:24488 pid:6599 tgid:6598 ppid:6488 task_flags:0x400140 flags:0x00080002
[ 326.222587][ T38] Call Trace:
[ 326.222593][ T38]
[ 326.222604][ T38] __schedule+0x1480/0x50a0
[ 326.222641][ T38] ? lockdep_unlock+0x89/0x120
[ 326.222661][ T38] ? __lock_acquire+0x146f/0x2cf0
[ 326.222688][ T38] ? __pfx___schedule+0x10/0x10
[ 326.222721][ T38] ? schedule+0x91/0x360
[ 326.222744][ T38] schedule+0x165/0x360
[ 326.222766][ T38] schedule_timeout+0x9a/0x270
[ 326.222785][ T38] ? __pfx_schedule_timeout+0x10/0x10
[ 326.222817][ T38] ? _raw_spin_unlock_irq+0x23/0x50
[ 326.222844][ T38] ? lockdep_hardirqs_on+0x98/0x140
[ 326.222862][ T38] ? wait_for_completion+0x267/0x5d0
[ 326.222884][ T38] wait_for_completion+0x2bf/0x5d0
[ 326.222917][ T38] ? __pfx_wait_for_completion+0x10/0x10
[ 326.222951][ T38] f2fs_issue_checkpoint+0x382/0x610
[ 326.222978][ T38] ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[ 326.223008][ T38] ? folio_unlock+0x101/0x160
[ 326.223031][ T38] ? f2fs_folio_put+0x145/0x1a0
[ 326.223056][ T38] ? __get_node_folio+0xf3a/0x14d0
[ 326.223104][ T38] ? f2fs_sync_fs+0x1f0/0x3b0
[ 326.223127][ T38] f2fs_unlink+0x5cb/0xa80
[ 326.223153][ T38] ? __pfx_f2fs_unlink+0x10/0x10
[ 326.223179][ T38] ? try_break_deleg+0x7c/0x130
[ 326.223202][ T38] vfs_unlink+0x386/0x650
[ 326.223233][ T38] do_unlinkat+0x2cf/0x570
[ 326.223261][ T38] ? __pfx_do_unlinkat+0x10/0x10
[ 326.223284][ T38] ? strncpy_from_user+0x150/0x2c0
[ 326.223310][ T38] ? getname_flags+0x1e5/0x540
[ 326.223331][ T38] __x64_sys_unlinkat+0xd3/0xf0
[ 326.223356][ T38] do_syscall_64+0xfa/0xf80
[ 326.223377][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.223394][ T38] ? clear_bhb_loop+0x60/0xb0
[ 326.223416][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.223432][ T38] RIP: 0033:0x7f1dccfff749
[ 326.223447][ T38] RSP: 002b:00007f1dcc666038 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[ 326.223464][ T38] RAX: ffffffffffffffda RBX: 00007f1dcd255fa0 RCX: 00007f1dccfff749
[ 326.223477][ T38] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 326.223489][ T38] RBP: 00007f1dcd083f91 R08: 0000000000000000 R09: 0000000000000000
[ 326.223500][ T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 326.223509][ T38] R13: 00007f1dcd256038 R14: 00007f1dcd255fa0 R15: 00007fff9df4ea58
[ 326.223536][ T38]
[ 326.223550][ T38] INFO: task syz.1.18:6626 blocked for more than 143 seconds.
[ 326.223562][ T38] Not tainted syzkaller #0
[ 326.223571][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 326.223579][ T38] task:syz.1.18 state:D stack:26840 pid:6626 tgid:6626 ppid:6605 task_flags:0x400040 flags:0x00080002
[ 326.223620][ T38] Call Trace:
[ 326.223626][ T38]
[ 326.223637][ T38] __schedule+0x1480/0x50a0
[ 326.223663][ T38] ? __lock_acquire+0x6b6/0x2cf0
[ 326.223693][ T38] ? arch_scale_cpu_capacity+0x18/0xb0
[ 326.223722][ T38] ? __pfx___schedule+0x10/0x10
[ 326.223747][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 326.223779][ T38] rt_mutex_schedule+0x77/0xf0
[ 326.223794][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 326.223813][ T38] __rt_mutex_slowlock_locked+0x1dfe/0x25e0
[ 326.223850][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 326.223879][ T38] ? __pfx___rt_mutex_slowlock_locked+0x10/0x10
[ 326.223909][ T38] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 326.223933][ T38] ? rt_mutex_pre_schedule+0x7d/0x1d0
[ 326.223955][ T38] rt_mutex_slowlock+0xb5/0x160
[ 326.223980][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 326.224012][ T38] rwbase_write_lock+0x14f/0x750
[ 326.224041][ T38] ? __pfx_f2fs_release_file+0x10/0x10
[ 326.224064][ T38] ? __pfx_f2fs_release_file+0x10/0x10
[ 326.224087][ T38] f2fs_release_file+0xe3/0x150
[ 326.224111][ T38] __fput+0x45b/0xa80
[ 326.224141][ T38] task_work_run+0x1d4/0x260
[ 326.224167][ T38] ? __pfx_task_work_run+0x10/0x10
[ 326.224187][ T38] ? __se_sys_close_range+0x4f0/0x650
[ 326.224210][ T38] ? exit_to_user_mode_loop+0x55/0x4f0
[ 326.224235][ T38] exit_to_user_mode_loop+0xff/0x4f0
[ 326.224256][ T38] ? rcu_is_watching+0x15/0xb0
[ 326.224278][ T38] do_syscall_64+0x2e3/0xf80
[ 326.224299][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.224317][ T38] ? clear_bhb_loop+0x60/0xb0
[ 326.224337][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.224354][ T38] RIP: 0033:0x7fdf96d9f749
[ 326.224368][ T38] RSP: 002b:00007fff745008d8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 326.224385][ T38] RAX: 0000000000000000 RBX: 00007fdf96ff7da0 RCX: 00007fdf96d9f749
[ 326.224397][ T38] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 326.224408][ T38] RBP: 00007fdf96ff7da0 R08: 0000000000000000 R09: 0000000674500bcf
[ 326.224420][ T38] R10: 00007fdf96ff7cb0 R11: 0000000000000246 R12: 000000000002c3b7
[ 326.224431][ T38] R13: 00007fff745009d0 R14: ffffffffffffffff R15: 00007fff745009f0
[ 326.224462][ T38]
[ 326.224469][ T38] INFO: task syz.1.18:6627 blocked for more than 143 seconds.
[ 326.224480][ T38] Not tainted syzkaller #0
[ 326.224489][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 326.224497][ T38] task:syz.1.18 state:D stack:24488 pid:6627 tgid:6626 ppid:6605 task_flags:0x400140 flags:0x00080002
[ 326.224538][ T38] Call Trace:
[ 326.224544][ T38]
[ 326.224555][ T38] __schedule+0x1480/0x50a0
[ 326.224585][ T38] ? register_lock_class+0x51/0x320
[ 326.224612][ T38] ? __lock_acquire+0x6b6/0x2cf0
[ 326.224640][ T38] ? __pfx___schedule+0x10/0x10
[ 326.224672][ T38] ? schedule+0x91/0x360
[ 326.224711][ T38] schedule+0x165/0x360
[ 326.224734][ T38] schedule_timeout+0x9a/0x270
[ 326.224753][ T38] ? __pfx_schedule_timeout+0x10/0x10
[ 326.224785][ T38] ? _raw_spin_unlock_irq+0x23/0x50
[ 326.224804][ T38] ? lockdep_hardirqs_on+0x98/0x140
[ 326.224829][ T38] ? wait_for_completion+0x267/0x5d0
[ 326.224851][ T38] wait_for_completion+0x2bf/0x5d0
[ 326.224884][ T38] ? __pfx_wait_for_completion+0x10/0x10
[ 326.224918][ T38] f2fs_issue_checkpoint+0x382/0x610
[ 326.224944][ T38] ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[ 326.224975][ T38] ? folio_unlock+0x101/0x160
[ 326.224998][ T38] ? f2fs_folio_put+0x145/0x1a0
[ 326.225021][ T38] ? __get_node_folio+0xf3a/0x14d0
[ 326.225070][ T38] ? f2fs_sync_fs+0x1f0/0x3b0
[ 326.225092][ T38] f2fs_unlink+0x5cb/0xa80
[ 326.225118][ T38] ? __pfx_f2fs_unlink+0x10/0x10
[ 326.225144][ T38] ? try_break_deleg+0x7c/0x130
[ 326.225167][ T38] vfs_unlink+0x386/0x650
[ 326.225197][ T38] do_unlinkat+0x2cf/0x570
[ 326.225225][ T38] ? __pfx_do_unlinkat+0x10/0x10
[ 326.225248][ T38] ? strncpy_from_user+0x150/0x2c0
[ 326.225274][ T38] ? getname_flags+0x1e5/0x540
[ 326.225295][ T38] __x64_sys_unlinkat+0xd3/0xf0
[ 326.225320][ T38] do_syscall_64+0xfa/0xf80
[ 326.225341][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.225359][ T38] ? clear_bhb_loop+0x60/0xb0
[ 326.225379][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.225396][ T38] RIP: 0033:0x7fdf96d9f749
[ 326.225410][ T38] RSP: 002b:00007fdf96406038 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[ 326.225428][ T38] RAX: ffffffffffffffda RBX: 00007fdf96ff5fa0 RCX: 00007fdf96d9f749
[ 326.225440][ T38] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 326.225453][ T38] RBP: 00007fdf96e23f91 R08: 0000000000000000 R09: 0000000000000000
[ 326.225464][ T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 326.225474][ T38] R13: 00007fdf96ff6038 R14: 00007fdf96ff5fa0 R15: 00007fff74500778
[ 326.225505][ T38]
[ 326.225569][ T38]
[ 326.225569][ T38] Showing all locks held in the system:
[ 326.225578][ T38] 3 locks held by kworker/u8:0/12:
[ 326.225589][ T38] #0: ffff888140464138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 326.225639][ T38] #1: ffffc90000117b80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 326.225683][ T38] #2: ffff8880306fc0d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 326.225734][ T38] 1 lock held by khungtaskd/38:
[ 326.225744][ T38] #0: ffffffff8d5aecc0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 326.225795][ T38] 3 locks held by kworker/u8:5/81:
[ 326.225805][ T38] #0: ffff888140464138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 326.225854][ T38] #1: ffffc9000159fb80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 326.225896][ T38] #2: ffff88801ead60d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 326.225947][ T38] 3 locks held by kworker/u8:6/808:
[ 326.225963][ T38] 3 locks held by kworker/u8:10/1551:
[ 326.225973][ T38] #0: ffff888140464138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 326.226015][ T38] #1: ffffc9000520fb80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 326.226057][ T38] #2: ffff88803bbc20d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 326.226115][ T38] 3 locks held by kworker/u8:14/3678:
[ 326.226125][ T38] #0: ffff888140464138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 326.226168][ T38] #1: ffffc9000d187b80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 326.226210][ T38] #2: ffff8880276640d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 326.226259][ T38] 2 locks held by getty/5560:
[ 326.226269][ T38] #0: ffff8880268520a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 326.226315][ T38] #1: ffffc90003e8b2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1400
[ 326.226360][ T38] 1 lock held by syz.0.17/6598:
[ 326.226370][ T38] #0: ffff888051658178 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: f2fs_release_file+0xe3/0x150
[ 326.226421][ T38] 3 locks held by syz.0.17/6599:
[ 326.226430][ T38] #0: ffff88803bbc2480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 326.226478][ T38] #1: ffff888051681478 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: do_unlinkat+0x1b2/0x570
[ 326.226533][ T38] #2: ffff888051658178 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_unlink+0xef/0x650
[ 326.226582][ T38] 4 locks held by f2fs_ckpt-7:0/6603:
[ 326.226593][ T38] 1 lock held by syz.1.18/6626:
[ 326.226603][ T38] #0: ffff888051659df8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: f2fs_release_file+0xe3/0x150
[ 326.226654][ T38] 3 locks held by syz.1.18/6627:
[ 326.226663][ T38] #0: ffff888027664480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 326.226710][ T38] #1: ffff888051659478 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: do_unlinkat+0x1b2/0x570
[ 326.226763][ T38] #2: ffff888051659df8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_unlink+0xef/0x650
[ 326.226813][ T38] 4 locks held by f2fs_ckpt-7:1/6631:
[ 326.226831][ T38] 1 lock held by syz.2.19/6659:
[ 326.226841][ T38] #0: ffff8880516843f8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: f2fs_release_file+0xe3/0x150
[ 326.226892][ T38] 3 locks held by syz.2.19/6660:
[ 326.226902][ T38] #0: ffff8880306fc480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 326.226948][ T38] #1: ffff888051683a78 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: do_unlinkat+0x1b2/0x570
[ 326.227001][ T38] #2: ffff8880516843f8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_unlink+0xef/0x650
[ 326.227051][ T38] 2 locks held by f2fs_ckpt-7:2/6664:
[ 326.227063][ T38] 1 lock held by syz.3.20/6689:
[ 326.227072][ T38] #0: ffff8880516856f8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: f2fs_release_file+0xe3/0x150
[ 326.227122][ T38] 3 locks held by syz.3.20/6690:
[ 326.227132][ T38] #0: ffff88801ef30480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 326.227179][ T38] #1: ffff88805165b0f8 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: do_unlinkat+0x1b2/0x570
[ 326.227232][ T38] #2: ffff8880516856f8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_unlink+0xef/0x650
[ 326.227282][ T38] 5 locks held by f2fs_ckpt-7:3/6694:
[ 326.227294][ T38] 1 lock held by syz.4.21/6724:
[ 326.227303][ T38] #0: ffff88805165ba78 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: f2fs_release_file+0xe3/0x150
[ 326.227353][ T38] 3 locks held by syz.4.21/6725:
[ 326.227363][ T38] #0: ffff88801ead6480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 326.227410][ T38] #1: ffff888051687378 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: do_unlinkat+0x1b2/0x570
[ 326.227463][ T38] #2: ffff88805165ba78 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_unlink+0xef/0x650
[ 326.227513][ T38] 3 locks held by f2fs_ckpt-7:4/6732:
[ 326.227525][ T38] 1 lock held by syz.5.22/6770:
[ 326.227535][ T38] #0: ffff88805165d6f8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: f2fs_release_file+0xe3/0x150
[ 326.227586][ T38] 3 locks held by syz.5.22/6771:
[ 326.227596][ T38] #0: ffff888028b5c480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 326.227642][ T38] #1: ffff88805165cd78 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: do_unlinkat+0x1b2/0x570
[ 326.227695][ T38] #2: ffff88805165d6f8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_unlink+0xef/0x650
[ 326.227744][ T38] 4 locks held by f2fs_ckpt-7:5/6775:
[ 326.227755][ T38] 3 locks held by kworker/u8:20/6778:
[ 326.227764][ T38] #0: ffff888140464138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 326.227806][ T38] #1: ffffc90004eafb80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 326.227854][ T38] #2: ffff88801ef300d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 326.227903][ T38] 1 lock held by syz.6.23/6814:
[ 326.227912][ T38] #0: ffff888058210178 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: f2fs_release_file+0xe3/0x150
[ 326.227963][ T38] 3 locks held by syz.6.23/6815:
[ 326.227973][ T38] #0: ffff8880397e0480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 326.228019][ T38] #1: ffff88805165f378 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: do_unlinkat+0x1b2/0x570
[ 326.228072][ T38] #2: ffff888058210178 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_unlink+0xef/0x650
[ 326.228121][ T38] 4 locks held by f2fs_ckpt-7:6/6820:
[ 326.228131][ T38] 6 locks held by syz-executor/6829:
[ 326.228143][ T38]
[ 326.228147][ T38] =============================================
[ 326.228147][ T38]
[ 326.228164][ T38] NMI backtrace for cpu 1
[ 326.228183][ T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 326.228206][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 326.228214][ T38] Call Trace:
[ 326.228221][ T38]
[ 326.228227][ T38] dump_stack_lvl+0x189/0x250
[ 326.228249][ T38] ? __pfx_dump_stack_lvl+0x10/0x10
[ 326.228266][ T38] ? __pfx__printk+0x10/0x10
[ 326.228289][ T38] nmi_cpu_backtrace+0x39e/0x3d0
[ 326.228314][ T38] ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 326.228338][ T38] ? __pfx__printk+0x10/0x10
[ 326.228358][ T38] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 326.228377][ T38] nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 326.228402][ T38] watchdog+0xf3c/0xf80
[ 326.228424][ T38] ? watchdog+0x1e2/0xf80
[ 326.228443][ T38] kthread+0x711/0x8a0
[ 326.228467][ T38] ? __pfx_watchdog+0x10/0x10
[ 326.228483][ T38] ? __pfx_kthread+0x10/0x10
[ 326.228499][ T38] ? rt_spin_unlock+0x150/0x200
[ 326.228515][ T38] ? rt_spin_unlock+0x161/0x200
[ 326.228528][ T38] ? __pfx_kthread+0x10/0x10
[ 326.228549][ T38] ret_from_fork+0x599/0xb30
[ 326.228568][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 326.228590][ T38] ? __switch_to_asm+0x39/0x70
[ 326.228608][ T38] ? __switch_to_asm+0x33/0x70
[ 326.228623][ T38] ? __pfx_kthread+0x10/0x10
[ 326.228641][ T38] ret_from_fork_asm+0x1a/0x30
[ 326.228670][ T38]
[ 326.228712][ T38] Sending NMI from CPU 1 to CPUs 0:
[ 326.228741][ C0] NMI backtrace for cpu 0
[ 326.228755][ C0] CPU: 0 UID: 0 PID: 808 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 326.228775][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 326.228786][ C0] Workqueue: events_unbound nsim_dev_trap_report_work
[ 326.228812][ C0] RIP: 0010:__lock_acquire+0x197c/0x2cf0
[ 326.228836][ C0] Code: 13 25 ff 0f 00 00 39 05 9e 87 17 11 73 06 89 05 96 87 17 11 48 8b 02 48 89 df 4c 39 e8 0f 84 2c fe ff ff 4c 89 60 30 48 8b 00 <4c> 39 e8 75 f4 48 89 df e9 18 fe ff ff 48 89 fb 48 c7 c7 10 e4 47
[ 326.228849][ C0] RSP: 0018:ffffc900042370b8 EFLAGS: 00000002
[ 326.228863][ C0] RAX: ffffffff95556ad8 RBX: 00000000000003cc RCX: 00000000000000a9
[ 326.228874][ C0] RDX: ffffffff953bcee8 RSI: ffff8880240d0ca8 RDI: 00000000000003cc
[ 326.228886][ C0] RBP: 233744c3de05d782 R08: ffffc90004237080 R09: 0000000000000020
[ 326.228898][ C0] R10: dffffc0000000000 R11: ffffffff819d54f0 R12: ffffffff9540f898
[ 326.228910][ C0] R13: ffffffff9257f330 R14: ffff8880240d0000 R15: 00000000000000a8
[ 326.228922][ C0] FS: 0000000000000000(0000) GS:ffff888126d52000(0000) knlGS:0000000000000000
[ 326.228936][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 326.228947][ C0] CR2: 00007f1748c6f000 CR3: 0000000036390000 CR4: 00000000003526f0
[ 326.228963][ C0] Call Trace:
[ 326.228969][ C0]
[ 326.228986][ C0] ? rt_spin_lock+0x14a/0x3e0
[ 326.229000][ C0] lock_acquire+0x117/0x340
[ 326.229020][ C0] ? rt_spin_lock+0x14a/0x3e0
[ 326.229040][ C0] _raw_spin_lock_irqsave+0xa7/0xf0
[ 326.229059][ C0] ? rt_spin_lock+0x14a/0x3e0
[ 326.229080][ C0] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 326.229099][ C0] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 326.229119][ C0] ? do_raw_spin_lock+0x121/0x290
[ 326.229139][ C0] rt_spin_lock+0x14a/0x3e0
[ 326.229155][ C0] ? __pfx_rt_spin_lock+0x10/0x10
[ 326.229172][ C0] ? folio_mapping+0x16f/0x1f0
[ 326.229192][ C0] __folio_end_writeback+0x157/0x760
[ 326.229212][ C0] folio_end_writeback_no_dropbehind+0x151/0x290
[ 326.229234][ C0] folio_end_writeback+0xea/0x220
[ 326.229254][ C0] f2fs_write_end_io+0x7ba/0xb60
[ 326.229281][ C0] blk_update_request+0x57e/0xe60
[ 326.229306][ C0] blk_mq_end_request+0x3e/0x70
[ 326.229325][ C0] blk_done_softirq+0x10a/0x160
[ 326.229343][ C0] handle_softirqs+0x226/0x6d0
[ 326.229365][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 326.229386][ C0] __local_bh_enable_ip+0x1a0/0x2e0
[ 326.229404][ C0] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 326.229420][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10
[ 326.229439][ C0] ? rt_spin_unlock+0x161/0x200
[ 326.229455][ C0] ? napi_skb_cache_get+0x2e4/0x410
[ 326.229477][ C0] ? __alloc_skb+0x200/0x430
[ 326.229498][ C0] __alloc_skb+0x224/0x430
[ 326.229520][ C0] ? __pfx___alloc_skb+0x10/0x10
[ 326.229542][ C0] ? _mutex_trylock_nest_lock+0x129/0x180
[ 326.229557][ C0] ? nsim_dev_trap_report_work+0x57/0xbc0
[ 326.229581][ C0] nsim_dev_trap_report_work+0x29f/0xbc0
[ 326.229606][ C0] ? process_scheduled_works+0x9ef/0x1770
[ 326.229625][ C0] ? _raw_spin_unlock_irq+0x23/0x50
[ 326.229644][ C0] ? process_scheduled_works+0x9ef/0x1770
[ 326.229661][ C0] process_scheduled_works+0xad1/0x1770
[ 326.229689][ C0] ? __pfx_process_scheduled_works+0x10/0x10
[ 326.229712][ C0] worker_thread+0x8a0/0xda0
[ 326.229739][ C0] kthread+0x711/0x8a0
[ 326.229760][ C0] ? __pfx_worker_thread+0x10/0x10
[ 326.229777][ C0] ? __pfx_kthread+0x10/0x10
[ 326.229797][ C0] ? rt_spin_unlock+0x150/0x200
[ 326.229813][ C0] ? rt_spin_unlock+0x161/0x200
[ 326.229827][ C0] ? __pfx_kthread+0x10/0x10
[ 326.229847][ C0] ret_from_fork+0x599/0xb30
[ 326.229865][ C0] ? __pfx_ret_from_fork+0x10/0x10
[ 326.229885][ C0] ? __switch_to_asm+0x39/0x70
[ 326.229906][ C0] ? __switch_to_asm+0x33/0x70
[ 326.229927][ C0] ? __pfx_kthread+0x10/0x10
[ 326.229948][ C0] ret_from_fork_asm+0x1a/0x30
[ 326.229975][ C0]
[ 326.316607][ T6829] f2fs_cp: 7 after do_checkpoint err=0
[ 326.316957][ T6829] f2fs_cp: 1 before cp_global_sem
[ 326.317307][ T6829] f2fs_cp: 2 after cp_global_sem
[ 326.317333][ T6829] f2fs_cp: 4 before block_operations
[ 326.317602][ T6829] f2fs_cp: 5 after block_operations err=0 cp_error=0
[ 326.317789][ T6829] f2fs_cp: 4 before block_operations
[ 326.518576][ T6829] f2fs_cp: 7 after do_checkpoint err=0
[ 331.763974][ T6867] loop7: detected capacity change from 0 to 40427
[ 331.849114][ T6867] F2FS-fs (loop7): build fault injection rate: 14
[ 331.849138][ T6867] F2FS-fs (loop7): build fault injection type: 0x3bfe8c
[ 331.895053][ T6867] F2FS-fs (loop7): invalid crc value
[ 331.927141][ C0] F2FS-fs (loop7): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 331.945832][ C0] F2FS-fs (loop7): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 332.514923][ T6867] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 332.514956][ T6867] F2FS-fs (loop7): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 332.558491][ T6867] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 332.568730][ T6867] syz.7.25: attempt to access beyond end of device
[ 332.568730][ T6867] loop7: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 332.569621][ T6867] F2FS-fs (loop7): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[ 332.571459][ T6867] F2FS-fs (loop7): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[ 332.571492][ T6867] F2FS-fs (loop7): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 332.694766][ T6872] f2fs_cp: 1 before cp_global_sem
[ 332.694782][ T6872] f2fs_cp: 2 after cp_global_sem
[ 332.694789][ T6872] f2fs_cp: 4 before block_operations