Warning: Permanently added '10.128.1.233' (ED25519) to the list of known hosts.
2026/02/08 20:12:26 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[  132.865286][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  132.865399][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  133.238552][ T6120] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  136.938112][ T6141] chnl_net:caif_netlink_parms(): no params data found
[  137.261112][ T6141] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.261325][ T6141] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.261488][ T6141] bridge_slave_0: entered allmulticast mode
[  137.263554][ T6141] bridge_slave_0: entered promiscuous mode
[  137.265411][ T6141] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.265531][ T6141] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.265624][ T6141] bridge_slave_1: entered allmulticast mode
[  137.266945][ T6141] bridge_slave_1: entered promiscuous mode
[  137.414113][ T6141] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.418725][ T6141] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.641239][ T6141] team0: Port device team_slave_0 added
[  137.643310][ T6141] team0: Port device team_slave_1 added
[  137.870647][ T6141] batman_adv: batadv0: Adding interface: batadv_slave_0
[  137.870663][ T6141] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  137.870677][ T6141] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  137.872001][ T6141] batman_adv: batadv0: Adding interface: batadv_slave_1
[  137.872013][ T6141] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  137.872030][ T6141] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  138.347060][ T6141] hsr_slave_0: entered promiscuous mode
[  138.347752][ T6141] hsr_slave_1: entered promiscuous mode
[  139.897328][ T6141] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  139.937261][ T6141] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  139.973319][ T6141] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  140.024269][ T6141] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  140.164474][ T6141] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.183021][ T6141] 8021q: adding VLAN 0 to HW filter on device team0
[  140.190903][ T4587] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.192336][ T4587] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.207610][ T4587] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.207821][ T4587] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.501377][ T6141] 8021q: adding VLAN 0 to HW filter on device batadv0
[  140.563350][ T6141] veth0_vlan: entered promiscuous mode
[  140.578607][ T6141] veth1_vlan: entered promiscuous mode
[  140.618921][ T6141] veth0_macvtap: entered promiscuous mode
[  140.631638][ T6141] veth1_macvtap: entered promiscuous mode
[  140.654452][ T6141] batman_adv: batadv0: Interface activated: batadv_slave_0
[  140.675850][ T6141] batman_adv: batadv0: Interface activated: batadv_slave_1
[  140.696029][ T3710] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.696271][ T3710] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.696307][ T3710] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.696338][ T3710] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.585177][   T58] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.862328][   T58] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.172415][   T58] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.230896][ T4587] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.230917][ T4587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.294213][ T4332] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.294232][ T4332] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.558411][   T58] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.242720][   T58] bridge_slave_1: left allmulticast mode
[  144.242747][   T58] bridge_slave_1: left promiscuous mode
[  144.242981][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.310795][   T58] bridge_slave_0: left allmulticast mode
[  144.310823][   T58] bridge_slave_0: left promiscuous mode
[  144.311081][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.949962][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  146.009945][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  146.031669][   T58] bond0 (unregistering): Released all slaves
[  146.407469][   T58] hsr_slave_0: left promiscuous mode
[  146.459362][   T58] hsr_slave_1: left promiscuous mode
[  146.460242][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  146.460265][   T58] batman_adv: batadv0: Removing interface: batadv_slave_0
[  146.501454][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  146.501481][   T58] batman_adv: batadv0: Removing interface: batadv_slave_1
[  146.615046][   T58] veth1_macvtap: left promiscuous mode
[  146.615155][   T58] veth0_macvtap: left promiscuous mode
[  146.615404][   T58] veth1_vlan: left promiscuous mode
[  146.615571][   T58] veth0_vlan: left promiscuous mode
[  148.589894][   T58] team0 (unregistering): Port device team_slave_1 removed
[  148.800129][   T58] team0 (unregistering): Port device team_slave_0 removed
[  151.357891][ T5126] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  151.370004][ T5126] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  151.372066][ T5126] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  151.376375][ T5126] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  151.377027][ T5126] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2026/02/08 20:12:52 executed programs: 0
[  154.758400][ T5126] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  154.771492][ T5126] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  154.772279][ T5126] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  154.773321][ T5126] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  154.774207][ T5126] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  155.237352][ T6456] chnl_net:caif_netlink_parms(): no params data found
[  155.521604][ T6456] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.521753][ T6456] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.521863][ T6456] bridge_slave_0: entered allmulticast mode
[  155.523184][ T6456] bridge_slave_0: entered promiscuous mode
[  155.525131][ T6456] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.525238][ T6456] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.525327][ T6456] bridge_slave_1: entered allmulticast mode
[  155.526612][ T6456] bridge_slave_1: entered promiscuous mode
[  155.686077][ T6456] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  155.699006][ T6456] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  156.051065][ T6456] team0: Port device team_slave_0 added
[  156.071250][ T6456] team0: Port device team_slave_1 added
[  156.271824][ T6456] batman_adv: batadv0: Adding interface: batadv_slave_0
[  156.271841][ T6456] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  156.271864][ T6456] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  156.275527][ T6456] batman_adv: batadv0: Adding interface: batadv_slave_1
[  156.275540][ T6456] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  156.275564][ T6456] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  156.497578][ T6456] hsr_slave_0: entered promiscuous mode
[  156.498322][ T6456] hsr_slave_1: entered promiscuous mode
[  156.859520][ T5126] Bluetooth: hci0: command tx timeout
[  158.154797][ T6456] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  158.194639][ T6456] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  158.234563][ T6456] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  158.275827][ T6456] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  158.437581][ T6456] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.471196][ T6456] 8021q: adding VLAN 0 to HW filter on device team0
[  158.477959][ T4587] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.478311][ T4587] bridge0: port 1(bridge_slave_0) entered forwarding state
[  158.522236][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.522372][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.862889][ T6456] 8021q: adding VLAN 0 to HW filter on device batadv0
[  158.926434][ T6456] veth0_vlan: entered promiscuous mode
[  158.936298][ T6456] veth1_vlan: entered promiscuous mode
[  158.942431][ T5126] Bluetooth: hci0: command tx timeout
[  158.975613][ T6456] veth0_macvtap: entered promiscuous mode
[  158.983131][ T6456] veth1_macvtap: entered promiscuous mode
[  159.006251][ T6456] batman_adv: batadv0: Interface activated: batadv_slave_0
[  159.016559][ T6456] batman_adv: batadv0: Interface activated: batadv_slave_1
[  159.033753][   T58] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  159.033963][   T58] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.035838][ T3710] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.035879][ T3710] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.286524][ T3710] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.286541][ T3710] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.336838][ T4587] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.336858][ T4587] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.952749][ T6555] loop0: detected capacity change from 0 to 40427
[  160.033754][ T6555] F2FS-fs (loop0): invalid crc value
[  160.313171][ T6555] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  160.333252][ T6555] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
2026/02/08 20:12:58 executed programs: 3
[  160.664400][ T6456] syz-executor: attempt to access beyond end of device
[  160.664400][ T6456] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  160.667856][ T6456] CPU: 1 UID: 0 PID: 6456 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  160.667882][ T6456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  160.667902][ T6456] Call Trace:
[  160.667910][ T6456]  <TASK>
[  160.667922][ T6456]  dump_stack_lvl+0xe8/0x150
[  160.667958][ T6456]  f2fs_handle_critical_error+0x354/0x510
[  160.667990][ T6456]  f2fs_write_end_io+0xc1d/0xfd0
[  160.668026][ T6456]  __submit_merged_bio+0x256/0x650
[  160.668058][ T6456]  __submit_merged_write_cond+0x269/0x530
[  160.668090][ T6456]  f2fs_write_data_pages+0x2806/0x3360
[  160.668108][ T6456]  ? rcu_is_watching+0x15/0xb0
[  160.668164][ T6456]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  160.668238][ T6456]  ? do_raw_spin_lock+0x12b/0x2f0
[  160.668276][ T6456]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  160.668300][ T6456]  ? lockdep_hardirqs_on+0x7a/0x110
[  160.668322][ T6456]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  160.668343][ T6456]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  160.668362][ T6456]  ? reacquire_held_locks+0x104/0x190
[  160.668383][ T6456]  ? rt_spin_lock+0x1e0/0x400
[  160.668408][ T6456]  ? rt_spin_unlock+0x14f/0x200
[  160.668431][ T6456]  ? rt_spin_unlock+0x160/0x200
[  160.668453][ T6456]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  160.668473][ T6456]  do_writepages+0x32e/0x550
[  160.668495][ T6456]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  160.668524][ T6456]  ? rt_spin_unlock+0x14f/0x200
[  160.668554][ T6456]  filemap_fdatawrite+0x1ec/0x2f0
[  160.668578][ T6456]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  160.668595][ T6456]  ? __lock_acquire+0x6b5/0x2cf0
[  160.668653][ T6456]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  160.668681][ T6456]  ? rt_spin_unlock+0x160/0x200
[  160.668702][ T6456]  f2fs_sync_dirty_inodes+0x30e/0x810
[  160.668738][ T6456]  f2fs_write_checkpoint+0x9c6/0x2490
[  160.668790][ T6456]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  160.668868][ T6456]  kill_f2fs_super+0x308/0x710
[  160.668896][ T6456]  ? __pfx_kill_f2fs_super+0x10/0x10
[  160.668940][ T6456]  deactivate_locked_super+0xbc/0x130
[  160.668963][ T6456]  cleanup_mnt+0x437/0x4d0
[  160.668983][ T6456]  ? _raw_spin_unlock_irq+0x23/0x50
[  160.669010][ T6456]  task_work_run+0x1d9/0x270
[  160.669036][ T6456]  ? __pfx_task_work_run+0x10/0x10
[  160.669070][ T6456]  exit_to_user_mode_loop+0xed/0x480
[  160.669090][ T6456]  ? rcu_is_watching+0x15/0xb0
[  160.669116][ T6456]  do_syscall_64+0x2b7/0xf80
[  160.669138][ T6456]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.669155][ T6456]  ? trace_irq_disable+0x37/0x100
[  160.669177][ T6456]  ? clear_bhb_loop+0x60/0xb0
[  160.669200][ T6456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.669217][ T6456] RIP: 0033:0x7fef6fe6c157
[  160.669239][ T6456] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  160.669254][ T6456] RSP: 002b:00007ffed20aa488 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  160.669281][ T6456] RAX: 0000000000000000 RBX: 00007fef6feff33b RCX: 00007fef6fe6c157
[  160.669292][ T6456] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffed20aa540
[  160.669302][ T6456] RBP: 00007ffed20aa540 R08: 00007ffed20ab540 R09: 00000000ffffffff
[  160.669313][ T6456] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffed20ab5d0
[  160.669323][ T6456] R13: 00007fef6feff33b R14: 00000000000272b8 R15: 00007ffed20ab610
[  160.669351][ T6456]  </TASK>
[  160.696488][ T6456] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  161.022876][ T5126] Bluetooth: hci0: command tx timeout
[  161.412939][ T6594] loop0: detected capacity change from 0 to 40427
[  161.444534][ T6594] F2FS-fs (loop0): invalid crc value
[  161.534895][ T6594] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  161.535793][ T6594] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  163.099357][ T5126] Bluetooth: hci0: command tx timeout
[  167.920514][ T6594] F2FS-fs (loop0): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[  167.927162][ T6594] syz.0.18: attempt to access beyond end of device
[  167.927162][ T6594] loop0: rw=524288, sector=86016, nr_sectors = 8 limit=40427
[  167.932835][ T6594] syz.0.18: attempt to access beyond end of device
[  167.932835][ T6594] loop0: rw=524288, sector=86024, nr_sectors = 8 limit=40427
[  167.933003][ T6594] syz.0.18: attempt to access beyond end of device
[  167.933003][ T6594] loop0: rw=524288, sector=86032, nr_sectors = 8 limit=40427
[  167.933150][ T6594] syz.0.18: attempt to access beyond end of device
[  167.933150][ T6594] loop0: rw=524288, sector=86040, nr_sectors = 8 limit=40427
[  167.933295][ T6594] syz.0.18: attempt to access beyond end of device
[  167.933295][ T6594] loop0: rw=524288, sector=86048, nr_sectors = 8 limit=40427
[  167.933435][ T6594] syz.0.18: attempt to access beyond end of device
[  167.933435][ T6594] loop0: rw=524288, sector=86056, nr_sectors = 8 limit=40427
[  167.933583][ T6594] syz.0.18: attempt to access beyond end of device
[  167.933583][ T6594] loop0: rw=524288, sector=86064, nr_sectors = 8 limit=40427
[  167.933730][ T6594] syz.0.18: attempt to access beyond end of device
[  167.933730][ T6594] loop0: rw=524288, sector=86072, nr_sectors = 8 limit=40427
[  167.933883][ T6594] syz.0.18: attempt to access beyond end of device
[  167.933883][ T6594] loop0: rw=524288, sector=86080, nr_sectors = 8 limit=40427
[  167.934027][ T6594] syz.0.18: attempt to access beyond end of device
[  167.934027][ T6594] loop0: rw=524288, sector=86088, nr_sectors = 8 limit=40427
[  172.929416][ T6594] bio_check_eod: 70460 callbacks suppressed
[  172.929431][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929431][ T6594] loop0: rw=0, sector=88072, nr_sectors = 8 limit=40427
[  172.929504][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929504][ T6594] loop0: rw=0, sector=88080, nr_sectors = 8 limit=40427
[  172.929567][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929567][ T6594] loop0: rw=0, sector=88088, nr_sectors = 8 limit=40427
[  172.929630][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929630][ T6594] loop0: rw=0, sector=88096, nr_sectors = 8 limit=40427
[  172.929693][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929693][ T6594] loop0: rw=0, sector=88104, nr_sectors = 8 limit=40427
[  172.929772][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929772][ T6594] loop0: rw=0, sector=88112, nr_sectors = 8 limit=40427
[  172.929835][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929835][ T6594] loop0: rw=0, sector=88120, nr_sectors = 8 limit=40427
[  172.929898][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929898][ T6594] loop0: rw=0, sector=88128, nr_sectors = 8 limit=40427
[  172.929960][ T6594] syz.0.18: attempt to access beyond end of device
[  172.929960][ T6594] loop0: rw=0, sector=88136, nr_sectors = 8 limit=40427
[  172.930024][ T6594] syz.0.18: attempt to access beyond end of device
[  172.930024][ T6594] loop0: rw=0, sector=88144, nr_sectors = 8 limit=40427
[  175.826108][   T62] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  175.844110][   T62] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  175.845082][   T62] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  175.859826][   T62] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  175.861730][   T62] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  176.151901][ T6611] chnl_net:caif_netlink_parms(): no params data found
[  176.492951][ T6611] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.493152][ T6611] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.493321][ T6611] bridge_slave_0: entered allmulticast mode
[  176.495765][ T6611] bridge_slave_0: entered promiscuous mode
[  176.498992][ T6611] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.499179][ T6611] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.545234][ T6611] bridge_slave_1: entered allmulticast mode
[  176.547678][ T6611] bridge_slave_1: entered promiscuous mode
[  176.745200][ T6611] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  176.747548][ T6611] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  176.955613][ T6611] team0: Port device team_slave_0 added
[  176.958311][ T6611] team0: Port device team_slave_1 added
[  177.311343][ T6611] batman_adv: batadv0: Adding interface: batadv_slave_0
[  177.311358][ T6611] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  177.311376][ T6611] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  177.313316][ T6611] batman_adv: batadv0: Adding interface: batadv_slave_1
[  177.313329][ T6611] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  177.313353][ T6611] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  177.599060][ T6611] hsr_slave_0: entered promiscuous mode
[  177.604054][ T6611] hsr_slave_1: entered promiscuous mode
[  177.604820][ T6611] debugfs: 'hsr0' already exists in 'hsr'
[  177.604849][ T6611] Cannot create hsr debugfs directory
[  177.909430][   T62] Bluetooth: hci1: command tx timeout
[  177.939484][ T6594] bio_check_eod: 62328 callbacks suppressed
[  177.939505][ T6594] syz.0.18: attempt to access beyond end of device
[  177.939505][ T6594] loop0: rw=524288, sector=87920, nr_sectors = 8 limit=40427
[  177.939629][ T6594] syz.0.18: attempt to access beyond end of device
[  177.939629][ T6594] loop0: rw=524288, sector=87928, nr_sectors = 8 limit=40427
[  177.939744][ T6594] syz.0.18: attempt to access beyond end of device
[  177.939744][ T6594] loop0: rw=524288, sector=87936, nr_sectors = 8 limit=40427
[  177.939867][ T6594] syz.0.18: attempt to access beyond end of device
[  177.939867][ T6594] loop0: rw=524288, sector=87944, nr_sectors = 8 limit=40427
[  177.940008][ T6594] syz.0.18: attempt to access beyond end of device
[  177.940008][ T6594] loop0: rw=524288, sector=87952, nr_sectors = 8 limit=40427
[  177.940123][ T6594] syz.0.18: attempt to access beyond end of device
[  177.940123][ T6594] loop0: rw=524288, sector=87960, nr_sectors = 8 limit=40427
[  177.940238][ T6594] syz.0.18: attempt to access beyond end of device
[  177.940238][ T6594] loop0: rw=524288, sector=87968, nr_sectors = 8 limit=40427
[  177.940352][ T6594] syz.0.18: attempt to access beyond end of device
[  177.940352][ T6594] loop0: rw=524288, sector=87976, nr_sectors = 8 limit=40427
[  177.940466][ T6594] syz.0.18: attempt to access beyond end of device
[  177.940466][ T6594] loop0: rw=524288, sector=87984, nr_sectors = 8 limit=40427
[  177.940580][ T6594] syz.0.18: attempt to access beyond end of device
[  177.940580][ T6594] loop0: rw=524288, sector=87992, nr_sectors = 8 limit=40427
[  178.351009][ T6611] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  178.395492][ T6611] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  178.443997][ T6611] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  178.485096][ T6611] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  178.664623][ T6611] 8021q: adding VLAN 0 to HW filter on device bond0
[  178.693899][ T6611] 8021q: adding VLAN 0 to HW filter on device team0
[  178.707826][ T4332] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.708672][ T4332] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.716864][ T4332] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.717044][ T4332] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.056016][ T6611] 8021q: adding VLAN 0 to HW filter on device batadv0
[  179.124956][ T6611] veth0_vlan: entered promiscuous mode
[  179.134557][ T6611] veth1_vlan: entered promiscuous mode
[  179.198413][ T6611] veth0_macvtap: entered promiscuous mode
[  179.212474][ T6611] veth1_macvtap: entered promiscuous mode
[  179.240060][ T6611] batman_adv: batadv0: Interface activated: batadv_slave_0
[  179.261773][ T6611] batman_adv: batadv0: Interface activated: batadv_slave_1
[  179.271634][ T4587] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.274354][ T4587] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.274790][ T4587] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.274982][ T4587] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.530766][ T4587] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.530786][ T4587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  179.600968][ T3710] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.600982][ T3710] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/08 20:13:17 executed programs: 4
[  179.982123][   T62] Bluetooth: hci1: command tx timeout
[  180.256187][ T6635] loop1: detected capacity change from 0 to 40427
[  180.275451][ T6635] F2FS-fs (loop1): invalid crc value
[  180.493211][ T6635] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  180.511858][ T6635] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  180.717927][   T37] audit: type=1800 audit(1770581598.386:2): pid=6644 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.19" name="file1" dev="loop1" ino=10 res=0 errno=0
[  180.773033][ T6611] CPU: 0 UID: 0 PID: 6611 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  180.773050][ T6611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  180.773056][ T6611] Call Trace:
[  180.773060][ T6611]  <TASK>
[  180.773066][ T6611]  dump_stack_lvl+0xe8/0x150
[  180.773087][ T6611]  f2fs_handle_critical_error+0x354/0x510
[  180.773107][ T6611]  f2fs_write_end_io+0xc1d/0xfd0
[  180.773126][ T6611]  __submit_merged_bio+0x256/0x650
[  180.773145][ T6611]  __submit_merged_write_cond+0x269/0x530
[  180.773164][ T6611]  f2fs_write_data_pages+0x2806/0x3360
[  180.773173][ T6611]  ? is_bpf_text_address+0x26/0x2b0
[  180.773206][ T6611]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.773241][ T6611]  ? do_raw_spin_lock+0x12b/0x2f0
[  180.773262][ T6611]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  180.773277][ T6611]  ? lockdep_hardirqs_on+0x7a/0x110
[  180.773291][ T6611]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  180.773304][ T6611]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  180.773315][ T6611]  ? reacquire_held_locks+0x104/0x190
[  180.773327][ T6611]  ? rt_spin_lock+0x1e0/0x400
[  180.773341][ T6611]  ? rt_spin_unlock+0x14f/0x200
[  180.773354][ T6611]  ? rt_spin_unlock+0x160/0x200
[  180.773364][ T6611]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.773375][ T6611]  do_writepages+0x32e/0x550
[  180.773387][ T6611]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  180.773399][ T6611]  ? rt_spin_unlock+0x14f/0x200
[  180.773415][ T6611]  filemap_fdatawrite+0x1ec/0x2f0
[  180.773428][ T6611]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  180.773439][ T6611]  ? __lock_acquire+0x6b5/0x2cf0
[  180.773480][ T6611]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  180.773502][ T6611]  ? rt_spin_unlock+0x160/0x200
[  180.773514][ T6611]  f2fs_sync_dirty_inodes+0x30e/0x810
[  180.773533][ T6611]  f2fs_write_checkpoint+0x9c6/0x2490
[  180.773559][ T6611]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  180.773596][ T6611]  kill_f2fs_super+0x308/0x710
[  180.773611][ T6611]  ? __pfx_kill_f2fs_super+0x10/0x10
[  180.773633][ T6611]  deactivate_locked_super+0xbc/0x130
[  180.773646][ T6611]  cleanup_mnt+0x437/0x4d0
[  180.773657][ T6611]  ? _raw_spin_unlock_irq+0x23/0x50
[  180.773672][ T6611]  task_work_run+0x1d9/0x270
[  180.773688][ T6611]  ? __pfx_task_work_run+0x10/0x10
[  180.773713][ T6611]  exit_to_user_mode_loop+0xed/0x480
[  180.773726][ T6611]  ? rcu_is_watching+0x15/0xb0
[  180.773741][ T6611]  do_syscall_64+0x2b7/0xf80
[  180.773755][ T6611]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.773764][ T6611]  ? trace_irq_disable+0x37/0x100
[  180.773777][ T6611]  ? clear_bhb_loop+0x60/0xb0
[  180.773790][ T6611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.773799][ T6611] RIP: 0033:0x7fb65e9fc157
[  180.773810][ T6611] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  180.773819][ T6611] RSP: 002b:00007fff32809fb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  180.773830][ T6611] RAX: 0000000000000000 RBX: 00007fb65ea8f33b RCX: 00007fb65e9fc157
[  180.773837][ T6611] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff3280a070
[  180.773843][ T6611] RBP: 00007fff3280a070 R08: 00007fff3280b070 R09: 00000000ffffffff
[  180.773850][ T6611] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff3280b100
[  180.773856][ T6611] R13: 00007fb65ea8f33b R14: 000000000002c137 R15: 00007fff3280b140
[  180.773872][ T6611]  </TASK>
[  180.773876][ T6611] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  181.703977][ T6647] loop1: detected capacity change from 0 to 40427
[  181.722521][ T6647] F2FS-fs (loop1): invalid crc value
[  181.973265][ T6647] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  181.997653][ T6647] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  182.059441][   T62] Bluetooth: hci1: command tx timeout
[  182.949502][ T6594] bio_check_eod: 35666 callbacks suppressed
[  182.949523][ T6594] syz.0.18: attempt to access beyond end of device
[  182.949523][ T6594] loop0: rw=0, sector=86576, nr_sectors = 8 limit=40427
[  182.949691][ T6594] syz.0.18: attempt to access beyond end of device
[  182.949691][ T6594] loop0: rw=0, sector=86584, nr_sectors = 8 limit=40427
[  182.949812][ T6594] syz.0.18: attempt to access beyond end of device
[  182.949812][ T6594] loop0: rw=0, sector=86592, nr_sectors = 8 limit=40427
[  182.949931][ T6594] syz.0.18: attempt to access beyond end of device
[  182.949931][ T6594] loop0: rw=0, sector=86600, nr_sectors = 8 limit=40427
[  182.950050][ T6594] syz.0.18: attempt to access beyond end of device
[  182.950050][ T6594] loop0: rw=0, sector=86608, nr_sectors = 8 limit=40427
[  182.950169][ T6594] syz.0.18: attempt to access beyond end of device
[  182.950169][ T6594] loop0: rw=0, sector=86616, nr_sectors = 8 limit=40427
[  182.950288][ T6594] syz.0.18: attempt to access beyond end of device
[  182.950288][ T6594] loop0: rw=0, sector=86624, nr_sectors = 8 limit=40427
[  182.950406][ T6594] syz.0.18: attempt to access beyond end of device
[  182.950406][ T6594] loop0: rw=0, sector=86632, nr_sectors = 8 limit=40427
[  182.950525][ T6594] syz.0.18: attempt to access beyond end of device
[  182.950525][ T6594] loop0: rw=0, sector=86640, nr_sectors = 8 limit=40427
[  182.950677][ T6594] syz.0.18: attempt to access beyond end of device
[  182.950677][ T6594] loop0: rw=0, sector=86648, nr_sectors = 8 limit=40427
[  184.139487][   T62] Bluetooth: hci1: command tx timeout
[  187.963436][ T6594] bio_check_eod: 36045 callbacks suppressed
[  187.963458][ T6594] syz.0.18: attempt to access beyond end of device
[  187.963458][ T6594] loop0: rw=524288, sector=88272, nr_sectors = 8 limit=40427
[  187.963578][ T6594] syz.0.18: attempt to access beyond end of device
[  187.963578][ T6594] loop0: rw=524288, sector=88280, nr_sectors = 8 limit=40427
[  187.963694][ T6594] syz.0.18: attempt to access beyond end of device
[  187.963694][ T6594] loop0: rw=524288, sector=88288, nr_sectors = 8 limit=40427
[  187.963809][ T6594] syz.0.18: attempt to access beyond end of device
[  187.963809][ T6594] loop0: rw=524288, sector=88296, nr_sectors = 8 limit=40427
[  187.963924][ T6594] syz.0.18: attempt to access beyond end of device
[  187.963924][ T6594] loop0: rw=524288, sector=88304, nr_sectors = 8 limit=40427
[  187.964073][ T6594] syz.0.18: attempt to access beyond end of device
[  187.964073][ T6594] loop0: rw=524288, sector=88312, nr_sectors = 8 limit=40427
[  187.964190][ T6594] syz.0.18: attempt to access beyond end of device
[  187.964190][ T6594] loop0: rw=524288, sector=88320, nr_sectors = 8 limit=40427
[  187.964305][ T6594] syz.0.18: attempt to access beyond end of device
[  187.964305][ T6594] loop0: rw=524288, sector=88328, nr_sectors = 8 limit=40427
[  187.964446][ T6594] syz.0.18: attempt to access beyond end of device
[  187.964446][ T6594] loop0: rw=524288, sector=88336, nr_sectors = 8 limit=40427
[  187.964571][ T6594] syz.0.18: attempt to access beyond end of device
[  187.964571][ T6594] loop0: rw=524288, sector=88344, nr_sectors = 8 limit=40427
[  192.969441][ T6594] bio_check_eod: 36974 callbacks suppressed
[  192.969468][ T6594] syz.0.18: attempt to access beyond end of device
[  192.969468][ T6594] loop0: rw=0, sector=89544, nr_sectors = 8 limit=40427
[  192.969597][ T6594] syz.0.18: attempt to access beyond end of device
[  192.969597][ T6594] loop0: rw=0, sector=89552, nr_sectors = 8 limit=40427
[  192.969738][ T6594] syz.0.18: attempt to access beyond end of device
[  192.969738][ T6594] loop0: rw=0, sector=89560, nr_sectors = 8 limit=40427
[  192.969858][ T6594] syz.0.18: attempt to access beyond end of device
[  192.969858][ T6594] loop0: rw=0, sector=89568, nr_sectors = 8 limit=40427
[  192.969978][ T6594] syz.0.18: attempt to access beyond end of device
[  192.969978][ T6594] loop0: rw=0, sector=89576, nr_sectors = 8 limit=40427
[  192.970097][ T6594] syz.0.18: attempt to access beyond end of device
[  192.970097][ T6594] loop0: rw=0, sector=89584, nr_sectors = 8 limit=40427
[  192.970243][ T6594] syz.0.18: attempt to access beyond end of device
[  192.970243][ T6594] loop0: rw=0, sector=89592, nr_sectors = 8 limit=40427
[  192.970364][ T6594] syz.0.18: attempt to access beyond end of device
[  192.970364][ T6594] loop0: rw=0, sector=89600, nr_sectors = 8 limit=40427
[  192.970490][ T6594] syz.0.18: attempt to access beyond end of device
[  192.970490][ T6594] loop0: rw=0, sector=89608, nr_sectors = 8 limit=40427
[  192.970609][ T6594] syz.0.18: attempt to access beyond end of device
[  192.970609][ T6594] loop0: rw=0, sector=89616, nr_sectors = 8 limit=40427
[  194.307663][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  194.307734][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  195.099107][ T6647] F2FS-fs (loop1): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[  195.946364][ T5126] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  195.956894][ T5126] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  195.958983][ T5126] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  195.960166][ T5126] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  195.961111][ T5126] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  196.345125][ T6655] chnl_net:caif_netlink_parms(): no params data found
[  196.781347][ T6655] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.781518][ T6655] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.781685][ T6655] bridge_slave_0: entered allmulticast mode
[  196.784194][ T6655] bridge_slave_0: entered promiscuous mode
[  196.787363][ T6655] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.787550][ T6655] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.787707][ T6655] bridge_slave_1: entered allmulticast mode
[  196.837683][ T6655] bridge_slave_1: entered promiscuous mode
[  197.084177][ T6655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  197.088034][ T6655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  197.382631][ T6655] team0: Port device team_slave_0 added
[  197.385860][ T6655] team0: Port device team_slave_1 added
[  197.671961][ T6655] batman_adv: batadv0: Adding interface: batadv_slave_0
[  197.671977][ T6655] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  197.672001][ T6655] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  197.674163][ T6655] batman_adv: batadv0: Adding interface: batadv_slave_1
[  197.674175][ T6655] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  197.674199][ T6655] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.979347][ T6594] bio_check_eod: 48822 callbacks suppressed
[  197.979366][ T6594] syz.0.18: attempt to access beyond end of device
[  197.979366][ T6594] loop0: rw=0, sector=88832, nr_sectors = 8 limit=40427
[  197.979431][ T5126] Bluetooth: hci2: command tx timeout
[  197.979473][ T6594] syz.0.18: attempt to access beyond end of device
[  197.979473][ T6594] loop0: rw=0, sector=88840, nr_sectors = 8 limit=40427
[  197.979562][ T6594] syz.0.18: attempt to access beyond end of device
[  197.979562][ T6594] loop0: rw=0, sector=88848, nr_sectors = 8 limit=40427
[  197.979649][ T6594] syz.0.18: attempt to access beyond end of device
[  197.979649][ T6594] loop0: rw=0, sector=88856, nr_sectors = 8 limit=40427
[  197.979764][ T6594] syz.0.18: attempt to access beyond end of device
[  197.979764][ T6594] loop0: rw=0, sector=88864, nr_sectors = 8 limit=40427
[  197.979873][ T6594] syz.0.18: attempt to access beyond end of device
[  197.979873][ T6594] loop0: rw=0, sector=88872, nr_sectors = 8 limit=40427
[  197.979959][ T6647] syz.1.20: attempt to access beyond end of device
[  197.979959][ T6647] loop1: rw=0, sector=88512, nr_sectors = 8 limit=40427
[  197.979990][ T6594] syz.0.18: attempt to access beyond end of device
[  197.979990][ T6594] loop0: rw=0, sector=88880, nr_sectors = 8 limit=40427
[  197.980089][ T6647] syz.1.20: attempt to access beyond end of device
[  197.980089][ T6647] loop1: rw=0, sector=88520, nr_sectors = 8 limit=40427
[  197.980108][ T6594] syz.0.18: attempt to access beyond end of device
[  197.980108][ T6594] loop0: rw=0, sector=88888, nr_sectors = 8 limit=40427
[  198.146084][ T6655] hsr_slave_0: entered promiscuous mode
[  198.147330][ T6655] hsr_slave_1: entered promiscuous mode
[  198.164661][ T6655] debugfs: 'hsr0' already exists in 'hsr'
[  198.164687][ T6655] Cannot create hsr debugfs directory
[  199.069023][ T6655] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  199.126944][ T6655] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  199.204529][ T6655] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  199.253657][ T6655] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  199.548800][ T6655] 8021q: adding VLAN 0 to HW filter on device bond0
[  199.601774][ T6655] 8021q: adding VLAN 0 to HW filter on device team0
[  199.631827][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  199.631972][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  199.666111][ T3710] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.666249][ T3710] bridge0: port 2(bridge_slave_1) entered forwarding state
[  200.059584][ T5126] Bluetooth: hci2: command tx timeout
[  200.246106][ T6655] 8021q: adding VLAN 0 to HW filter on device batadv0
[  200.357150][ T6655] veth0_vlan: entered promiscuous mode
[  200.402130][ T6655] veth1_vlan: entered promiscuous mode
[  200.483358][ T6655] veth0_macvtap: entered promiscuous mode
[  200.521013][ T6655] veth1_macvtap: entered promiscuous mode
[  200.557326][ T6655] batman_adv: batadv0: Interface activated: batadv_slave_0
[  200.588293][ T6655] batman_adv: batadv0: Interface activated: batadv_slave_1
[  200.641048][ T4354] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.659134][ T4354] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.671088][ T4354] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.679100][ T4354] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.959855][ T4354] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.959876][ T4354] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.058328][ T4354] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.058348][ T4354] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/08 20:13:38 executed programs: 6
[  202.141478][ T5126] Bluetooth: hci2: command tx timeout
[  202.250929][ T6677] loop2: detected capacity change from 0 to 40427
[  202.284122][ T6677] F2FS-fs (loop2): invalid crc value
[  202.614897][ T6677] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  202.640771][ T6677] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  202.989531][ T6594] bio_check_eod: 49406 callbacks suppressed
[  202.989553][ T6594] syz.0.18: attempt to access beyond end of device
[  202.989553][ T6594] loop0: rw=524288, sector=86472, nr_sectors = 8 limit=40427
[  202.989673][ T6594] syz.0.18: attempt to access beyond end of device
[  202.989673][ T6594] loop0: rw=524288, sector=86480, nr_sectors = 8 limit=40427
[  202.989788][ T6594] syz.0.18: attempt to access beyond end of device
[  202.989788][ T6594] loop0: rw=524288, sector=86488, nr_sectors = 8 limit=40427
[  202.989902][ T6594] syz.0.18: attempt to access beyond end of device
[  202.989902][ T6594] loop0: rw=524288, sector=86496, nr_sectors = 8 limit=40427
[  202.990045][ T6594] syz.0.18: attempt to access beyond end of device
[  202.990045][ T6594] loop0: rw=524288, sector=86504, nr_sectors = 8 limit=40427
[  202.990161][ T6594] syz.0.18: attempt to access beyond end of device
[  202.990161][ T6594] loop0: rw=524288, sector=86512, nr_sectors = 8 limit=40427
[  202.990272][ T6594] syz.0.18: attempt to access beyond end of device
[  202.990272][ T6594] loop0: rw=524288, sector=86520, nr_sectors = 8 limit=40427
[  202.990386][ T6594] syz.0.18: attempt to access beyond end of device
[  202.990386][ T6594] loop0: rw=524288, sector=86528, nr_sectors = 8 limit=40427
[  202.990614][ T6594] syz.0.18: attempt to access beyond end of device
[  202.990614][ T6594] loop0: rw=524288, sector=86536, nr_sectors = 8 limit=40427
[  202.990742][ T6594] syz.0.18: attempt to access beyond end of device
[  202.990742][ T6594] loop0: rw=524288, sector=86544, nr_sectors = 8 limit=40427
[  203.235144][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  203.235172][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  203.235197][ T6655] Call Trace:
[  203.235205][ T6655]  <TASK>
[  203.235213][ T6655]  dump_stack_lvl+0xe8/0x150
[  203.235250][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  203.235282][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  203.235317][ T6655]  __submit_merged_bio+0x256/0x650
[  203.235348][ T6655]  __submit_merged_write_cond+0x269/0x530
[  203.235380][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  203.235398][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  203.235452][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  203.235518][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  203.235554][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  203.235578][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  203.235600][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  203.235622][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  203.235641][ T6655]  ? reacquire_held_locks+0x104/0x190
[  203.235662][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  203.235688][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  203.235711][ T6655]  ? rt_spin_unlock+0x160/0x200
[  203.235728][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  203.235749][ T6655]  do_writepages+0x32e/0x550
[  203.235770][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  203.235791][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  203.235819][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  203.235843][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  203.235861][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  203.235914][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  203.235941][ T6655]  ? rt_spin_unlock+0x160/0x200
[  203.235962][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  203.235996][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  203.236043][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  203.236112][ T6655]  kill_f2fs_super+0x308/0x710
[  203.236138][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  203.236180][ T6655]  deactivate_locked_super+0xbc/0x130
[  203.236202][ T6655]  cleanup_mnt+0x437/0x4d0
[  203.236228][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  203.236253][ T6655]  task_work_run+0x1d9/0x270
[  203.236279][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  203.236311][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  203.236331][ T6655]  ? rcu_is_watching+0x15/0xb0
[  203.236356][ T6655]  do_syscall_64+0x2b7/0xf80
[  203.236378][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.236395][ T6655]  ? trace_irq_disable+0x37/0x100
[  203.236415][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  203.236437][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.236454][ T6655] RIP: 0033:0x7eff8c1bc157
[  203.236471][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  203.236486][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  203.236506][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  203.236518][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  203.236529][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  203.236541][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  203.236553][ T6655] R13: 00007eff8c24f33b R14: 0000000000031862 R15: 00007ffc9ab26500
[  203.236583][ T6655]  </TASK>
[  203.236590][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  204.229495][ T5126] Bluetooth: hci2: command tx timeout
[  204.466610][ T6686] loop2: detected capacity change from 0 to 40427
[  204.489443][ T6686] F2FS-fs (loop2): invalid crc value
[  204.809160][ T6686] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  204.860501][ T6686] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  205.451829][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  205.451858][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  205.451868][ T6655] Call Trace:
[  205.451876][ T6655]  <TASK>
[  205.451884][ T6655]  dump_stack_lvl+0xe8/0x150
[  205.451913][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  205.451945][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  205.451979][ T6655]  __submit_merged_bio+0x256/0x650
[  205.452021][ T6655]  __submit_merged_write_cond+0x269/0x530
[  205.452052][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  205.452069][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  205.452124][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  205.452190][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  205.452226][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  205.452250][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  205.452272][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  205.452294][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  205.452313][ T6655]  ? reacquire_held_locks+0x104/0x190
[  205.452334][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  205.452359][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  205.452382][ T6655]  ? rt_spin_unlock+0x160/0x200
[  205.452399][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  205.452419][ T6655]  do_writepages+0x32e/0x550
[  205.452441][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  205.452461][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  205.452489][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  205.452513][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  205.452531][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  205.452584][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  205.452611][ T6655]  ? rt_spin_unlock+0x160/0x200
[  205.452633][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  205.452667][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  205.452715][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  205.452785][ T6655]  kill_f2fs_super+0x308/0x710
[  205.452811][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  205.452853][ T6655]  deactivate_locked_super+0xbc/0x130
[  205.452876][ T6655]  cleanup_mnt+0x437/0x4d0
[  205.452914][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  205.452940][ T6655]  task_work_run+0x1d9/0x270
[  205.452966][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  205.453003][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  205.453024][ T6655]  ? rcu_is_watching+0x15/0xb0
[  205.453049][ T6655]  do_syscall_64+0x2b7/0xf80
[  205.453070][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.453087][ T6655]  ? trace_irq_disable+0x37/0x100
[  205.453107][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  205.453129][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.453146][ T6655] RIP: 0033:0x7eff8c1bc157
[  205.453163][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  205.453177][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  205.453197][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  205.453209][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  205.453220][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  205.453232][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  205.453243][ T6655] R13: 00007eff8c24f33b R14: 0000000000032122 R15: 00007ffc9ab26500
[  205.453273][ T6655]  </TASK>
[  205.453281][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  206.948107][ T6695] loop2: detected capacity change from 0 to 40427
[  206.955244][ T6695] F2FS-fs (loop2): invalid crc value
[  207.086660][ T6695] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  207.129362][ T6695] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
2026/02/08 20:13:45 executed programs: 9
[  207.606228][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  207.606256][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  207.606267][ T6655] Call Trace:
[  207.606274][ T6655]  <TASK>
[  207.606282][ T6655]  dump_stack_lvl+0xe8/0x150
[  207.606312][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  207.606343][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  207.606378][ T6655]  __submit_merged_bio+0x256/0x650
[  207.606409][ T6655]  __submit_merged_write_cond+0x269/0x530
[  207.606440][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  207.606457][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  207.606512][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  207.606578][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  207.606614][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  207.606638][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  207.606660][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  207.606683][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  207.606702][ T6655]  ? reacquire_held_locks+0x104/0x190
[  207.606722][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  207.606749][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  207.606772][ T6655]  ? rt_spin_unlock+0x160/0x200
[  207.606789][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  207.606810][ T6655]  do_writepages+0x32e/0x550
[  207.606832][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  207.606853][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  207.606882][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  207.606906][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  207.606924][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  207.606978][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  207.607005][ T6655]  ? rt_spin_unlock+0x160/0x200
[  207.607033][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  207.607068][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  207.607117][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  207.607188][ T6655]  kill_f2fs_super+0x308/0x710
[  207.607214][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  207.607256][ T6655]  deactivate_locked_super+0xbc/0x130
[  207.607279][ T6655]  cleanup_mnt+0x437/0x4d0
[  207.607298][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  207.607323][ T6655]  task_work_run+0x1d9/0x270
[  207.607349][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  207.607381][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  207.607401][ T6655]  ? rcu_is_watching+0x15/0xb0
[  207.607426][ T6655]  do_syscall_64+0x2b7/0xf80
[  207.607448][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.607466][ T6655]  ? trace_irq_disable+0x37/0x100
[  207.607487][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  207.607509][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.607527][ T6655] RIP: 0033:0x7eff8c1bc157
[  207.607544][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  207.607559][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  207.607579][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  207.607592][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  207.607603][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  207.607616][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  207.607627][ T6655] R13: 00007eff8c24f33b R14: 00000000000329a0 R15: 00007ffc9ab26500
[  207.607658][ T6655]  </TASK>
[  207.607666][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  207.999470][ T6594] bio_check_eod: 40299 callbacks suppressed
[  207.999488][ T6594] syz.0.18: attempt to access beyond end of device
[  207.999488][ T6594] loop0: rw=0, sector=89880, nr_sectors = 8 limit=40427
[  207.999632][ T6594] syz.0.18: attempt to access beyond end of device
[  207.999632][ T6594] loop0: rw=0, sector=89888, nr_sectors = 8 limit=40427
[  207.999758][ T6594] syz.0.18: attempt to access beyond end of device
[  207.999758][ T6594] loop0: rw=0, sector=89896, nr_sectors = 8 limit=40427
[  207.999875][ T6594] syz.0.18: attempt to access beyond end of device
[  207.999875][ T6594] loop0: rw=0, sector=89904, nr_sectors = 8 limit=40427
[  207.999991][ T6594] syz.0.18: attempt to access beyond end of device
[  207.999991][ T6594] loop0: rw=0, sector=89912, nr_sectors = 8 limit=40427
[  208.000107][ T6594] syz.0.18: attempt to access beyond end of device
[  208.000107][ T6594] loop0: rw=0, sector=89920, nr_sectors = 8 limit=40427
[  208.000225][ T6594] syz.0.18: attempt to access beyond end of device
[  208.000225][ T6594] loop0: rw=0, sector=89928, nr_sectors = 8 limit=40427
[  208.000340][ T6594] syz.0.18: attempt to access beyond end of device
[  208.000340][ T6594] loop0: rw=0, sector=89936, nr_sectors = 8 limit=40427
[  208.013339][ T6594] syz.0.18: attempt to access beyond end of device
[  208.013339][ T6594] loop0: rw=524288, sector=86016, nr_sectors = 8 limit=40427
[  208.013476][ T6594] syz.0.18: attempt to access beyond end of device
[  208.013476][ T6594] loop0: rw=524288, sector=86024, nr_sectors = 8 limit=40427
[  209.127741][ T6704] loop2: detected capacity change from 0 to 40427
[  209.148338][ T6704] F2FS-fs (loop2): invalid crc value
[  209.289434][ T6704] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  209.312725][ T6704] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  209.740901][   T37] audit: type=1800 audit(1770581627.416:3): pid=6710 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.24" name="file1" dev="loop2" ino=10 res=0 errno=0
[  209.810800][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  209.810829][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  209.810839][ T6655] Call Trace:
[  209.810847][ T6655]  <TASK>
[  209.810855][ T6655]  dump_stack_lvl+0xe8/0x150
[  209.810885][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  209.810919][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  209.810956][ T6655]  __submit_merged_bio+0x256/0x650
[  209.810988][ T6655]  __submit_merged_write_cond+0x269/0x530
[  209.811020][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  209.811038][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  209.811097][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  209.811171][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  209.811210][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  209.811234][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  209.811256][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  209.811278][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  209.811297][ T6655]  ? reacquire_held_locks+0x104/0x190
[  209.811318][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  209.811345][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  209.811369][ T6655]  ? rt_spin_unlock+0x160/0x200
[  209.811386][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  209.811407][ T6655]  do_writepages+0x32e/0x550
[  209.811429][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  209.811450][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  209.811480][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  209.811511][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  209.811530][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  209.811587][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  209.811616][ T6655]  ? rt_spin_unlock+0x160/0x200
[  209.811638][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  209.811674][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  209.811726][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  209.811802][ T6655]  kill_f2fs_super+0x308/0x710
[  209.811829][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  209.811874][ T6655]  deactivate_locked_super+0xbc/0x130
[  209.811897][ T6655]  cleanup_mnt+0x437/0x4d0
[  209.811917][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  209.811943][ T6655]  task_work_run+0x1d9/0x270
[  209.811969][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  209.812003][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  209.812023][ T6655]  ? rcu_is_watching+0x15/0xb0
[  209.812049][ T6655]  do_syscall_64+0x2b7/0xf80
[  209.812071][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.812088][ T6655]  ? trace_irq_disable+0x37/0x100
[  209.812109][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  209.812132][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.812149][ T6655] RIP: 0033:0x7eff8c1bc157
[  209.812167][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  209.812182][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  209.812202][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  209.812214][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  209.812225][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  209.812238][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  209.812249][ T6655] R13: 00007eff8c24f33b R14: 0000000000033252 R15: 00007ffc9ab26500
[  209.812282][ T6655]  </TASK>
[  209.812290][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  211.069204][ T6713] loop2: detected capacity change from 0 to 40427
[  211.157020][ T6713] F2FS-fs (loop2): invalid crc value
[  211.437619][ T6713] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  211.469403][ T6713] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  212.035866][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  212.035894][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  212.035905][ T6655] Call Trace:
[  212.035912][ T6655]  <TASK>
[  212.035920][ T6655]  dump_stack_lvl+0xe8/0x150
[  212.035950][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  212.035983][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  212.036019][ T6655]  __submit_merged_bio+0x256/0x650
[  212.036051][ T6655]  __submit_merged_write_cond+0x269/0x530
[  212.036083][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  212.036101][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  212.036159][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  212.036233][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  212.036271][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  212.036294][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  212.036315][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  212.036344][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  212.036363][ T6655]  ? reacquire_held_locks+0x104/0x190
[  212.036383][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  212.036410][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  212.036433][ T6655]  ? rt_spin_unlock+0x160/0x200
[  212.036449][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  212.036468][ T6655]  do_writepages+0x32e/0x550
[  212.036488][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  212.036507][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  212.036537][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  212.036561][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  212.036579][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  212.036636][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  212.036662][ T6655]  ? rt_spin_unlock+0x160/0x200
[  212.036683][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  212.036720][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  212.036772][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  212.036850][ T6655]  kill_f2fs_super+0x308/0x710
[  212.036877][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  212.036923][ T6655]  deactivate_locked_super+0xbc/0x130
[  212.036945][ T6655]  cleanup_mnt+0x437/0x4d0
[  212.036965][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  212.036991][ T6655]  task_work_run+0x1d9/0x270
[  212.037017][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  212.037051][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  212.037069][ T6655]  ? rcu_is_watching+0x15/0xb0
[  212.037095][ T6655]  do_syscall_64+0x2b7/0xf80
[  212.037117][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.037135][ T6655]  ? trace_irq_disable+0x37/0x100
[  212.037155][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  212.037177][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.037194][ T6655] RIP: 0033:0x7eff8c1bc157
[  212.037212][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  212.037227][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  212.037246][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  212.037259][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  212.037270][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  212.037282][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  212.037293][ T6655] R13: 00007eff8c24f33b R14: 0000000000033ab3 R15: 00007ffc9ab26500
[  212.037332][ T6655]  </TASK>
[  212.037340][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  213.014707][ T6594] bio_check_eod: 44228 callbacks suppressed
[  213.014727][ T6594] syz.0.18: attempt to access beyond end of device
[  213.014727][ T6594] loop0: rw=0, sector=88664, nr_sectors = 8 limit=40427
[  213.014852][ T6594] syz.0.18: attempt to access beyond end of device
[  213.014852][ T6594] loop0: rw=0, sector=88672, nr_sectors = 8 limit=40427
[  213.014972][ T6594] syz.0.18: attempt to access beyond end of device
[  213.014972][ T6594] loop0: rw=0, sector=88680, nr_sectors = 8 limit=40427
[  213.015092][ T6594] syz.0.18: attempt to access beyond end of device
[  213.015092][ T6594] loop0: rw=0, sector=88688, nr_sectors = 8 limit=40427
[  213.015211][ T6594] syz.0.18: attempt to access beyond end of device
[  213.015211][ T6594] loop0: rw=0, sector=88696, nr_sectors = 8 limit=40427
[  213.015330][ T6594] syz.0.18: attempt to access beyond end of device
[  213.015330][ T6594] loop0: rw=0, sector=88704, nr_sectors = 8 limit=40427
[  213.015453][ T6594] syz.0.18: attempt to access beyond end of device
[  213.015453][ T6594] loop0: rw=0, sector=88712, nr_sectors = 8 limit=40427
[  213.015566][ T6594] syz.0.18: attempt to access beyond end of device
[  213.015566][ T6594] loop0: rw=0, sector=88720, nr_sectors = 8 limit=40427
[  213.015716][ T6594] syz.0.18: attempt to access beyond end of device
[  213.015716][ T6594] loop0: rw=0, sector=88728, nr_sectors = 8 limit=40427
[  213.015861][ T6594] syz.0.18: attempt to access beyond end of device
[  213.015861][ T6594] loop0: rw=0, sector=88736, nr_sectors = 8 limit=40427
[  213.337736][ T6722] loop2: detected capacity change from 0 to 40427
[  213.392314][ T6722] F2FS-fs (loop2): invalid crc value
[  213.737709][ T6722] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  213.756475][ T6722] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
2026/02/08 20:13:51 executed programs: 12
[  214.163966][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  214.163994][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  214.164005][ T6655] Call Trace:
[  214.164012][ T6655]  <TASK>
[  214.164020][ T6655]  dump_stack_lvl+0xe8/0x150
[  214.164051][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  214.164084][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  214.164121][ T6655]  __submit_merged_bio+0x256/0x650
[  214.164153][ T6655]  __submit_merged_write_cond+0x269/0x530
[  214.164186][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  214.164204][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  214.164263][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  214.164346][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  214.164385][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  214.164408][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  214.164431][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  214.164453][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  214.164472][ T6655]  ? reacquire_held_locks+0x104/0x190
[  214.164493][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  214.164520][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  214.164544][ T6655]  ? rt_spin_unlock+0x160/0x200
[  214.164562][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  214.164583][ T6655]  do_writepages+0x32e/0x550
[  214.164604][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  214.164626][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  214.164656][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  214.164681][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  214.164699][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  214.164756][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  214.164785][ T6655]  ? rt_spin_unlock+0x160/0x200
[  214.164807][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  214.164842][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  214.164895][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  214.164974][ T6655]  kill_f2fs_super+0x308/0x710
[  214.165001][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  214.165047][ T6655]  deactivate_locked_super+0xbc/0x130
[  214.165066][ T6655]  cleanup_mnt+0x437/0x4d0
[  214.165081][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  214.165107][ T6655]  task_work_run+0x1d9/0x270
[  214.165134][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  214.165167][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  214.165188][ T6655]  ? rcu_is_watching+0x15/0xb0
[  214.165214][ T6655]  do_syscall_64+0x2b7/0xf80
[  214.165236][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.165253][ T6655]  ? trace_irq_disable+0x37/0x100
[  214.165274][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  214.165297][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.165321][ T6655] RIP: 0033:0x7eff8c1bc157
[  214.165339][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  214.165354][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  214.165374][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  214.165386][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  214.165397][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  214.165409][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  214.165421][ T6655] R13: 00007eff8c24f33b R14: 00000000000343aa R15: 00007ffc9ab26500
[  214.165454][ T6655]  </TASK>
[  214.165461][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  215.640567][ T6731] loop2: detected capacity change from 0 to 40427
[  215.658313][ T6731] F2FS-fs (loop2): invalid crc value
[  215.920538][ T6731] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  215.921867][ T6731] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  216.410369][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  216.410397][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  216.410408][ T6655] Call Trace:
[  216.410415][ T6655]  <TASK>
[  216.410423][ T6655]  dump_stack_lvl+0xe8/0x150
[  216.410452][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  216.410484][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  216.410518][ T6655]  __submit_merged_bio+0x256/0x650
[  216.410549][ T6655]  __submit_merged_write_cond+0x269/0x530
[  216.410580][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  216.410598][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  216.410652][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  216.410718][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  216.410755][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  216.410778][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  216.410808][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  216.410830][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  216.410850][ T6655]  ? reacquire_held_locks+0x104/0x190
[  216.410870][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  216.410896][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  216.410919][ T6655]  ? rt_spin_unlock+0x160/0x200
[  216.410936][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  216.410956][ T6655]  do_writepages+0x32e/0x550
[  216.410978][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  216.410998][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  216.411026][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  216.411049][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  216.411068][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  216.411120][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  216.411147][ T6655]  ? rt_spin_unlock+0x160/0x200
[  216.411168][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  216.411202][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  216.411249][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  216.411320][ T6655]  kill_f2fs_super+0x308/0x710
[  216.411345][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  216.411387][ T6655]  deactivate_locked_super+0xbc/0x130
[  216.411410][ T6655]  cleanup_mnt+0x437/0x4d0
[  216.411429][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  216.411454][ T6655]  task_work_run+0x1d9/0x270
[  216.411480][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  216.411511][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  216.411531][ T6655]  ? rcu_is_watching+0x15/0xb0
[  216.411556][ T6655]  do_syscall_64+0x2b7/0xf80
[  216.411578][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.411595][ T6655]  ? trace_irq_disable+0x37/0x100
[  216.411616][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  216.411638][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.411655][ T6655] RIP: 0033:0x7eff8c1bc157
[  216.411672][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  216.411688][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  216.411707][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  216.411719][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  216.411730][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  216.411742][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  216.411753][ T6655] R13: 00007eff8c24f33b R14: 0000000000034c38 R15: 00007ffc9ab26500
[  216.411862][ T6655]  </TASK>
[  216.411871][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  217.787912][ T6740] loop2: detected capacity change from 0 to 40427
[  217.809081][ T6740] F2FS-fs (loop2): invalid crc value
[  218.022960][ T6647] bio_check_eod: 43520 callbacks suppressed
[  218.022979][ T6647] syz.1.20: attempt to access beyond end of device
[  218.022979][ T6647] loop1: rw=524288, sector=86432, nr_sectors = 8 limit=40427
[  218.023101][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023101][ T6647] loop1: rw=524288, sector=86440, nr_sectors = 8 limit=40427
[  218.023212][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023212][ T6647] loop1: rw=524288, sector=86448, nr_sectors = 8 limit=40427
[  218.023320][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023320][ T6647] loop1: rw=524288, sector=86456, nr_sectors = 8 limit=40427
[  218.023432][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023432][ T6647] loop1: rw=524288, sector=86464, nr_sectors = 8 limit=40427
[  218.023562][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023562][ T6647] loop1: rw=524288, sector=86472, nr_sectors = 8 limit=40427
[  218.023671][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023671][ T6647] loop1: rw=524288, sector=86480, nr_sectors = 8 limit=40427
[  218.023785][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023785][ T6647] loop1: rw=524288, sector=86488, nr_sectors = 8 limit=40427
[  218.023937][ T6647] syz.1.20: attempt to access beyond end of device
[  218.023937][ T6647] loop1: rw=524288, sector=86496, nr_sectors = 8 limit=40427
[  218.024052][ T6647] syz.1.20: attempt to access beyond end of device
[  218.024052][ T6647] loop1: rw=524288, sector=86504, nr_sectors = 8 limit=40427
[  218.148514][ T6740] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  218.195295][ T6740] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  218.730556][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  218.730595][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  218.730606][ T6655] Call Trace:
[  218.730614][ T6655]  <TASK>
[  218.730622][ T6655]  dump_stack_lvl+0xe8/0x150
[  218.730652][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  218.730685][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  218.730723][ T6655]  __submit_merged_bio+0x256/0x650
[  218.730755][ T6655]  __submit_merged_write_cond+0x269/0x530
[  218.730787][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  218.730805][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  218.730863][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  218.730936][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  218.730975][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  218.730999][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  218.731021][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  218.731044][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  218.731063][ T6655]  ? reacquire_held_locks+0x104/0x190
[  218.731083][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  218.731110][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  218.731134][ T6655]  ? rt_spin_unlock+0x160/0x200
[  218.731152][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  218.731172][ T6655]  do_writepages+0x32e/0x550
[  218.731194][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  218.731215][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  218.731245][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  218.731269][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  218.731287][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  218.731345][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  218.731373][ T6655]  ? rt_spin_unlock+0x160/0x200
[  218.731395][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  218.731431][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  218.731484][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  218.731584][ T6655]  kill_f2fs_super+0x308/0x710
[  218.731612][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  218.731657][ T6655]  deactivate_locked_super+0xbc/0x130
[  218.731680][ T6655]  cleanup_mnt+0x437/0x4d0
[  218.731699][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  218.731726][ T6655]  task_work_run+0x1d9/0x270
[  218.731752][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  218.731786][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  218.731807][ T6655]  ? rcu_is_watching+0x15/0xb0
[  218.731831][ T6655]  do_syscall_64+0x2b7/0xf80
[  218.731853][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.731870][ T6655]  ? trace_irq_disable+0x37/0x100
[  218.731890][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  218.731912][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.731930][ T6655] RIP: 0033:0x7eff8c1bc157
[  218.731948][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  218.731963][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  218.731990][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  218.732003][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  218.732014][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  218.732026][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  218.732038][ T6655] R13: 00007eff8c24f33b R14: 00000000000354e6 R15: 00007ffc9ab26500
[  218.732071][ T6655]  </TASK>
[  218.732079][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  220.104227][ T6749] loop2: detected capacity change from 0 to 40427
[  220.123779][ T6749] F2FS-fs (loop2): invalid crc value
[  220.431634][ T6749] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  220.432853][ T6749] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
2026/02/08 20:13:58 executed programs: 15
[  221.023530][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  221.023559][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  221.023570][ T6655] Call Trace:
[  221.023577][ T6655]  <TASK>
[  221.023585][ T6655]  dump_stack_lvl+0xe8/0x150
[  221.023615][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  221.023646][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  221.023680][ T6655]  __submit_merged_bio+0x256/0x650
[  221.023712][ T6655]  __submit_merged_write_cond+0x269/0x530
[  221.023743][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  221.023760][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  221.023815][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  221.023882][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  221.023918][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  221.023942][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  221.023964][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  221.023985][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  221.024003][ T6655]  ? reacquire_held_locks+0x104/0x190
[  221.024023][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  221.024049][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  221.024071][ T6655]  ? rt_spin_unlock+0x160/0x200
[  221.024088][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  221.024109][ T6655]  do_writepages+0x32e/0x550
[  221.024130][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  221.024151][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  221.024178][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  221.024202][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  221.024220][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  221.024272][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  221.024300][ T6655]  ? rt_spin_unlock+0x160/0x200
[  221.024321][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  221.024355][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  221.024408][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  221.024479][ T6655]  kill_f2fs_super+0x308/0x710
[  221.024505][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  221.024546][ T6655]  deactivate_locked_super+0xbc/0x130
[  221.024569][ T6655]  cleanup_mnt+0x437/0x4d0
[  221.024588][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  221.024614][ T6655]  task_work_run+0x1d9/0x270
[  221.024639][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  221.024671][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  221.024691][ T6655]  ? rcu_is_watching+0x15/0xb0
[  221.024717][ T6655]  do_syscall_64+0x2b7/0xf80
[  221.024739][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.024756][ T6655]  ? trace_irq_disable+0x37/0x100
[  221.024776][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  221.024798][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.024816][ T6655] RIP: 0033:0x7eff8c1bc157
[  221.024833][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  221.024848][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  221.024868][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  221.024880][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  221.024891][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  221.024904][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  221.024920][ T6655] R13: 00007eff8c24f33b R14: 0000000000035dd0 R15: 00007ffc9ab26500
[  221.024950][ T6655]  </TASK>
[  221.024957][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  222.373802][ T6758] loop2: detected capacity change from 0 to 40427
[  222.387549][ T6758] F2FS-fs (loop2): invalid crc value
[  222.733201][ T6758] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  222.743895][ T6758] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  223.029363][ T6647] bio_check_eod: 45954 callbacks suppressed
[  223.029384][ T6647] syz.1.20: attempt to access beyond end of device
[  223.029384][ T6647] loop1: rw=524288, sector=89936, nr_sectors = 8 limit=40427
[  223.029461][ T6594] syz.0.18: attempt to access beyond end of device
[  223.029461][ T6594] loop0: rw=0, sector=87752, nr_sectors = 8 limit=40427
[  223.029516][ T6647] syz.1.20: attempt to access beyond end of device
[  223.029516][ T6647] loop1: rw=0, sector=86016, nr_sectors = 8 limit=40427
[  223.029582][ T6594] syz.0.18: attempt to access beyond end of device
[  223.029582][ T6594] loop0: rw=0, sector=87760, nr_sectors = 8 limit=40427
[  223.029636][ T6647] syz.1.20: attempt to access beyond end of device
[  223.029636][ T6647] loop1: rw=0, sector=86024, nr_sectors = 8 limit=40427
[  223.029702][ T6594] syz.0.18: attempt to access beyond end of device
[  223.029702][ T6594] loop0: rw=0, sector=87768, nr_sectors = 8 limit=40427
[  223.029755][ T6647] syz.1.20: attempt to access beyond end of device
[  223.029755][ T6647] loop1: rw=0, sector=86032, nr_sectors = 8 limit=40427
[  223.029821][ T6594] syz.0.18: attempt to access beyond end of device
[  223.029821][ T6594] loop0: rw=0, sector=87776, nr_sectors = 8 limit=40427
[  223.029901][ T6647] syz.1.20: attempt to access beyond end of device
[  223.029901][ T6647] loop1: rw=0, sector=86040, nr_sectors = 8 limit=40427
[  223.029940][ T6594] syz.0.18: attempt to access beyond end of device
[  223.029940][ T6594] loop0: rw=0, sector=87784, nr_sectors = 8 limit=40427
[  223.400247][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  223.400276][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  223.400286][ T6655] Call Trace:
[  223.400293][ T6655]  <TASK>
[  223.400301][ T6655]  dump_stack_lvl+0xe8/0x150
[  223.400331][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  223.400362][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  223.400396][ T6655]  __submit_merged_bio+0x256/0x650
[  223.400426][ T6655]  __submit_merged_write_cond+0x269/0x530
[  223.400457][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  223.400474][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  223.400528][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  223.400595][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  223.400631][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  223.400655][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  223.400676][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  223.400698][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  223.400718][ T6655]  ? reacquire_held_locks+0x104/0x190
[  223.400738][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  223.400764][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  223.400787][ T6655]  ? rt_spin_unlock+0x160/0x200
[  223.400804][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  223.400824][ T6655]  do_writepages+0x32e/0x550
[  223.400844][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  223.400876][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  223.400905][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  223.400928][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  223.400946][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  223.400998][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  223.401026][ T6655]  ? rt_spin_unlock+0x160/0x200
[  223.401047][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  223.401081][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  223.401135][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  223.401206][ T6655]  kill_f2fs_super+0x308/0x710
[  223.401232][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  223.401273][ T6655]  deactivate_locked_super+0xbc/0x130
[  223.401296][ T6655]  cleanup_mnt+0x437/0x4d0
[  223.401316][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  223.401341][ T6655]  task_work_run+0x1d9/0x270
[  223.401366][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  223.401399][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  223.401419][ T6655]  ? rcu_is_watching+0x15/0xb0
[  223.401444][ T6655]  do_syscall_64+0x2b7/0xf80
[  223.401466][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.401483][ T6655]  ? trace_irq_disable+0x37/0x100
[  223.401504][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  223.401525][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.401542][ T6655] RIP: 0033:0x7eff8c1bc157
[  223.401560][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  223.401575][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  223.401594][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  223.401607][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  223.401618][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  223.401630][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  223.401641][ T6655] R13: 00007eff8c24f33b R14: 00000000000366ae R15: 00007ffc9ab26500
[  223.401671][ T6655]  </TASK>
[  223.401679][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  224.822660][ T6767] loop2: detected capacity change from 0 to 40427
[  224.845674][ T6767] F2FS-fs (loop2): invalid crc value
[  224.957200][ T6767] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  224.989390][ T6767] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  225.350516][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  225.350546][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  225.350557][ T6655] Call Trace:
[  225.350565][ T6655]  <TASK>
[  225.350572][ T6655]  dump_stack_lvl+0xe8/0x150
[  225.350602][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  225.350633][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  225.350669][ T6655]  __submit_merged_bio+0x256/0x650
[  225.350701][ T6655]  __submit_merged_write_cond+0x269/0x530
[  225.350734][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  225.350787][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  225.350881][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  225.350920][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  225.350943][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  225.350966][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  225.350988][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  225.351007][ T6655]  ? reacquire_held_locks+0x104/0x190
[  225.351027][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  225.351053][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  225.351077][ T6655]  ? rt_spin_unlock+0x160/0x200
[  225.351095][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  225.351115][ T6655]  do_writepages+0x32e/0x550
[  225.351135][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  225.351156][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  225.351274][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  225.351318][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  225.351337][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  225.351399][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  225.351428][ T6655]  ? rt_spin_unlock+0x160/0x200
[  225.351449][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  225.351486][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  225.351537][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  225.351613][ T6655]  kill_f2fs_super+0x308/0x710
[  225.351641][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  225.351686][ T6655]  deactivate_locked_super+0xbc/0x130
[  225.351709][ T6655]  cleanup_mnt+0x437/0x4d0
[  225.351728][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  225.351755][ T6655]  task_work_run+0x1d9/0x270
[  225.351781][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  225.351815][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  225.351839][ T6655]  ? rcu_is_watching+0x15/0xb0
[  225.351865][ T6655]  do_syscall_64+0x2b7/0xf80
[  225.351885][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.351901][ T6655]  ? trace_irq_disable+0x37/0x100
[  225.351920][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  225.351942][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.351959][ T6655] RIP: 0033:0x7eff8c1bc157
[  225.351977][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  225.351993][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  225.352012][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  225.352024][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  225.352035][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  225.352048][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  225.352059][ T6655] R13: 00007eff8c24f33b R14: 0000000000036f3f R15: 00007ffc9ab26500
[  225.352092][ T6655]  </TASK>
[  225.352101][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  226.594732][ T6776] loop2: detected capacity change from 0 to 40427
[  226.641476][ T6776] F2FS-fs (loop2): invalid crc value
[  226.886167][ T6776] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  226.887429][ T6776] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
2026/02/08 20:14:05 executed programs: 18
[  227.407109][   T37] audit: type=1800 audit(1770581645.076:4): pid=6782 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.32" name="file1" dev="loop2" ino=10 res=0 errno=0
[  227.460435][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  227.460463][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  227.460473][ T6655] Call Trace:
[  227.460481][ T6655]  <TASK>
[  227.460489][ T6655]  dump_stack_lvl+0xe8/0x150
[  227.460518][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  227.460551][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  227.460588][ T6655]  __submit_merged_bio+0x256/0x650
[  227.460621][ T6655]  __submit_merged_write_cond+0x269/0x530
[  227.460653][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  227.460671][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  227.460730][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  227.460813][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  227.460852][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  227.460877][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  227.460900][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  227.460922][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  227.460941][ T6655]  ? reacquire_held_locks+0x104/0x190
[  227.460962][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  227.460989][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  227.461012][ T6655]  ? rt_spin_unlock+0x160/0x200
[  227.461029][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  227.461049][ T6655]  do_writepages+0x32e/0x550
[  227.461070][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  227.461092][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  227.461122][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  227.461146][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  227.461164][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  227.461222][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  227.461250][ T6655]  ? rt_spin_unlock+0x160/0x200
[  227.461272][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  227.461308][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  227.461360][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  227.461439][ T6655]  kill_f2fs_super+0x308/0x710
[  227.461466][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  227.461511][ T6655]  deactivate_locked_super+0xbc/0x130
[  227.461535][ T6655]  cleanup_mnt+0x437/0x4d0
[  227.461555][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  227.461581][ T6655]  task_work_run+0x1d9/0x270
[  227.461607][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  227.461641][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  227.461667][ T6655]  ? rcu_is_watching+0x15/0xb0
[  227.461693][ T6655]  do_syscall_64+0x2b7/0xf80
[  227.461715][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.461732][ T6655]  ? trace_irq_disable+0x37/0x100
[  227.461759][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  227.461782][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.461799][ T6655] RIP: 0033:0x7eff8c1bc157
[  227.461817][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  227.461832][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  227.461852][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  227.461865][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  227.461876][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  227.461888][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  227.461900][ T6655] R13: 00007eff8c24f33b R14: 0000000000037727 R15: 00007ffc9ab26500
[  227.461932][ T6655]  </TASK>
[  227.461940][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  228.049406][ T6647] bio_check_eod: 42113 callbacks suppressed
[  228.049427][ T6647] syz.1.20: attempt to access beyond end of device
[  228.049427][ T6647] loop1: rw=0, sector=88504, nr_sectors = 8 limit=40427
[  228.049587][ T6647] syz.1.20: attempt to access beyond end of device
[  228.049587][ T6647] loop1: rw=0, sector=88512, nr_sectors = 8 limit=40427
[  228.049711][ T6647] syz.1.20: attempt to access beyond end of device
[  228.049711][ T6647] loop1: rw=0, sector=88520, nr_sectors = 8 limit=40427
[  228.049829][ T6647] syz.1.20: attempt to access beyond end of device
[  228.049829][ T6647] loop1: rw=0, sector=88528, nr_sectors = 8 limit=40427
[  228.049946][ T6647] syz.1.20: attempt to access beyond end of device
[  228.049946][ T6647] loop1: rw=0, sector=88536, nr_sectors = 8 limit=40427
[  228.050059][ T6647] syz.1.20: attempt to access beyond end of device
[  228.050059][ T6647] loop1: rw=0, sector=88544, nr_sectors = 8 limit=40427
[  228.050180][ T6647] syz.1.20: attempt to access beyond end of device
[  228.050180][ T6647] loop1: rw=0, sector=88552, nr_sectors = 8 limit=40427
[  228.050356][ T6594] syz.0.18: attempt to access beyond end of device
[  228.050356][ T6594] loop0: rw=524288, sector=88336, nr_sectors = 8 limit=40427
[  228.050443][ T6594] syz.0.18: attempt to access beyond end of device
[  228.050443][ T6594] loop0: rw=524288, sector=88344, nr_sectors = 8 limit=40427
[  228.050526][ T6594] syz.0.18: attempt to access beyond end of device
[  228.050526][ T6594] loop0: rw=524288, sector=88352, nr_sectors = 8 limit=40427
[  228.654246][ T6785] loop2: detected capacity change from 0 to 40427
[  228.680754][ T6785] F2FS-fs (loop2): invalid crc value
[  229.018313][ T6785] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  229.022556][ T6785] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  229.390268][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  229.390297][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  229.390308][ T6655] Call Trace:
[  229.390315][ T6655]  <TASK>
[  229.390323][ T6655]  dump_stack_lvl+0xe8/0x150
[  229.390353][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  229.390384][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  229.390418][ T6655]  __submit_merged_bio+0x256/0x650
[  229.390471][ T6655]  __submit_merged_write_cond+0x269/0x530
[  229.390512][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  229.390529][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  229.390584][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  229.390650][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  229.390686][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  229.390709][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  229.390731][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  229.390753][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  229.390772][ T6655]  ? reacquire_held_locks+0x104/0x190
[  229.390792][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  229.390817][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  229.390840][ T6655]  ? rt_spin_unlock+0x160/0x200
[  229.390857][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  229.390877][ T6655]  do_writepages+0x32e/0x550
[  229.390898][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  229.390919][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  229.390947][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  229.390971][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  229.390989][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  229.391041][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  229.391068][ T6655]  ? rt_spin_unlock+0x160/0x200
[  229.391090][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  229.391124][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  229.391171][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  229.391241][ T6655]  kill_f2fs_super+0x308/0x710
[  229.391267][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  229.391309][ T6655]  deactivate_locked_super+0xbc/0x130
[  229.391331][ T6655]  cleanup_mnt+0x437/0x4d0
[  229.391351][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  229.391376][ T6655]  task_work_run+0x1d9/0x270
[  229.391401][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  229.391433][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  229.391453][ T6655]  ? rcu_is_watching+0x15/0xb0
[  229.391478][ T6655]  do_syscall_64+0x2b7/0xf80
[  229.391506][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.391523][ T6655]  ? trace_irq_disable+0x37/0x100
[  229.391543][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  229.391565][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.391582][ T6655] RIP: 0033:0x7eff8c1bc157
[  229.391599][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  229.391614][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  229.391633][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  229.391646][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  229.391657][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  229.391669][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  229.391680][ T6655] R13: 00007eff8c24f33b R14: 0000000000037f28 R15: 00007ffc9ab26500
[  229.391710][ T6655]  </TASK>
[  229.391717][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  230.986200][ T6794] loop2: detected capacity change from 0 to 40427
[  231.018754][ T6794] F2FS-fs (loop2): invalid crc value
[  231.269453][ T6794] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  231.288450][ T6794] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  231.688415][   T37] audit: type=1800 audit(1770581649.356:5): pid=6800 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.34" name="file1" dev="loop2" ino=10 res=0 errno=0
[  231.761924][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  231.761953][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  231.761964][ T6655] Call Trace:
[  231.761971][ T6655]  <TASK>
[  231.761979][ T6655]  dump_stack_lvl+0xe8/0x150
[  231.762009][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  231.762043][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  231.762080][ T6655]  __submit_merged_bio+0x256/0x650
[  231.762113][ T6655]  __submit_merged_write_cond+0x269/0x530
[  231.762145][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  231.762163][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  231.762223][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  231.762307][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  231.762346][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  231.762371][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  231.762393][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  231.762415][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  231.762434][ T6655]  ? reacquire_held_locks+0x104/0x190
[  231.762455][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  231.762481][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  231.762505][ T6655]  ? rt_spin_unlock+0x160/0x200
[  231.762522][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  231.762543][ T6655]  do_writepages+0x32e/0x550
[  231.762565][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  231.762586][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  231.762616][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  231.762641][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  231.762659][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  231.762716][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  231.762744][ T6655]  ? rt_spin_unlock+0x160/0x200
[  231.762766][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  231.762802][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  231.762855][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  231.762934][ T6655]  kill_f2fs_super+0x308/0x710
[  231.762962][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  231.763007][ T6655]  deactivate_locked_super+0xbc/0x130
[  231.763030][ T6655]  cleanup_mnt+0x437/0x4d0
[  231.763050][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  231.763075][ T6655]  task_work_run+0x1d9/0x270
[  231.763101][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  231.763135][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  231.763156][ T6655]  ? rcu_is_watching+0x15/0xb0
[  231.763181][ T6655]  do_syscall_64+0x2b7/0xf80
[  231.763202][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.763219][ T6655]  ? trace_irq_disable+0x37/0x100
[  231.763247][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  231.763269][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.763286][ T6655] RIP: 0033:0x7eff8c1bc157
[  231.763304][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  231.763318][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  231.763338][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  231.763350][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  231.763362][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  231.763374][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  231.763385][ T6655] R13: 00007eff8c24f33b R14: 0000000000038841 R15: 00007ffc9ab26500
[  231.763418][ T6655]  </TASK>
[  231.763426][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  233.059371][ T6594] bio_check_eod: 45380 callbacks suppressed
[  233.059391][ T6594] syz.0.18: attempt to access beyond end of device
[  233.059391][ T6594] loop0: rw=0, sector=87488, nr_sectors = 8 limit=40427
[  233.059452][ T6647] syz.1.20: attempt to access beyond end of device
[  233.059452][ T6647] loop1: rw=0, sector=87152, nr_sectors = 8 limit=40427
[  233.059522][ T6594] syz.0.18: attempt to access beyond end of device
[  233.059522][ T6594] loop0: rw=0, sector=87496, nr_sectors = 8 limit=40427
[  233.059573][ T6647] syz.1.20: attempt to access beyond end of device
[  233.059573][ T6647] loop1: rw=0, sector=87160, nr_sectors = 8 limit=40427
[  233.059669][ T6594] syz.0.18: attempt to access beyond end of device
[  233.059669][ T6594] loop0: rw=0, sector=87504, nr_sectors = 8 limit=40427
[  233.059692][ T6647] syz.1.20: attempt to access beyond end of device
[  233.059692][ T6647] loop1: rw=0, sector=87168, nr_sectors = 8 limit=40427
[  233.059790][ T6594] syz.0.18: attempt to access beyond end of device
[  233.059790][ T6594] loop0: rw=0, sector=87512, nr_sectors = 8 limit=40427
[  233.059811][ T6647] syz.1.20: attempt to access beyond end of device
[  233.059811][ T6647] loop1: rw=0, sector=87176, nr_sectors = 8 limit=40427
[  233.059909][ T6594] syz.0.18: attempt to access beyond end of device
[  233.059909][ T6594] loop0: rw=0, sector=87520, nr_sectors = 8 limit=40427
[  233.059930][ T6647] syz.1.20: attempt to access beyond end of device
[  233.059930][ T6647] loop1: rw=0, sector=87184, nr_sectors = 8 limit=40427
[  233.136513][ T6803] loop2: detected capacity change from 0 to 40427
[  233.180037][ T6803] F2FS-fs (loop2): invalid crc value
[  233.536272][ T6803] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  233.550235][ T6803] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  234.032333][   T37] audit: type=1800 audit(1770581651.696:6): pid=6809 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.35" name="file1" dev="loop2" ino=10 res=0 errno=0
2026/02/08 20:14:11 executed programs: 21
[  234.115059][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  234.115087][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  234.115097][ T6655] Call Trace:
[  234.115105][ T6655]  <TASK>
[  234.115113][ T6655]  dump_stack_lvl+0xe8/0x150
[  234.115142][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  234.115174][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  234.115209][ T6655]  __submit_merged_bio+0x256/0x650
[  234.115240][ T6655]  __submit_merged_write_cond+0x269/0x530
[  234.115278][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  234.115296][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  234.115350][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  234.115416][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  234.115453][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  234.115477][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  234.115499][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  234.115521][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  234.115540][ T6655]  ? reacquire_held_locks+0x104/0x190
[  234.115561][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  234.115587][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  234.115610][ T6655]  ? rt_spin_unlock+0x160/0x200
[  234.115627][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  234.115647][ T6655]  do_writepages+0x32e/0x550
[  234.115668][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  234.115689][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  234.115717][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  234.115741][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  234.115759][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  234.115812][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  234.115839][ T6655]  ? rt_spin_unlock+0x160/0x200
[  234.115861][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  234.115894][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  234.115943][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  234.116013][ T6655]  kill_f2fs_super+0x308/0x710
[  234.116039][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  234.116081][ T6655]  deactivate_locked_super+0xbc/0x130
[  234.116104][ T6655]  cleanup_mnt+0x437/0x4d0
[  234.116123][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  234.116148][ T6655]  task_work_run+0x1d9/0x270
[  234.116174][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  234.116205][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  234.116225][ T6655]  ? rcu_is_watching+0x15/0xb0
[  234.116250][ T6655]  do_syscall_64+0x2b7/0xf80
[  234.116277][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.116294][ T6655]  ? trace_irq_disable+0x37/0x100
[  234.116315][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  234.116336][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.116354][ T6655] RIP: 0033:0x7eff8c1bc157
[  234.116371][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  234.116385][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  234.116405][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  234.116417][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  234.116428][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  234.116441][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  234.116452][ T6655] R13: 00007eff8c24f33b R14: 00000000000390d5 R15: 00007ffc9ab26500
[  234.116483][ T6655]  </TASK>
[  234.116490][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  235.496114][ T6812] loop2: detected capacity change from 0 to 40427
[  235.529973][ T6812] F2FS-fs (loop2): invalid crc value
[  235.659242][ T6812] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  235.678963][ T6812] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  236.113468][   T37] audit: type=1800 audit(1770581653.786:7): pid=6818 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.36" name="file1" dev="loop2" ino=10 res=0 errno=0
[  236.172065][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  236.172093][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  236.172104][ T6655] Call Trace:
[  236.172111][ T6655]  <TASK>
[  236.172119][ T6655]  dump_stack_lvl+0xe8/0x150
[  236.172148][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  236.172180][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  236.172214][ T6655]  __submit_merged_bio+0x256/0x650
[  236.172245][ T6655]  __submit_merged_write_cond+0x269/0x530
[  236.172276][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  236.172326][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  236.172392][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  236.172429][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  236.172453][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  236.172474][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  236.172496][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  236.172515][ T6655]  ? reacquire_held_locks+0x104/0x190
[  236.172534][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  236.172560][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  236.172583][ T6655]  ? rt_spin_unlock+0x160/0x200
[  236.172600][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  236.172620][ T6655]  do_writepages+0x32e/0x550
[  236.172642][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  236.172663][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  236.172691][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  236.172719][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  236.172737][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  236.172796][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  236.172823][ T6655]  ? rt_spin_unlock+0x160/0x200
[  236.172844][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  236.172878][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  236.172926][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  236.172996][ T6655]  kill_f2fs_super+0x308/0x710
[  236.173022][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  236.173063][ T6655]  deactivate_locked_super+0xbc/0x130
[  236.173085][ T6655]  cleanup_mnt+0x437/0x4d0
[  236.173104][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  236.173129][ T6655]  task_work_run+0x1d9/0x270
[  236.173155][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  236.173187][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  236.173207][ T6655]  ? rcu_is_watching+0x15/0xb0
[  236.173231][ T6655]  do_syscall_64+0x2b7/0xf80
[  236.173254][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.173271][ T6655]  ? trace_irq_disable+0x37/0x100
[  236.173291][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  236.173313][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.173330][ T6655] RIP: 0033:0x7eff8c1bc157
[  236.173348][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  236.173362][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  236.173382][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  236.173395][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  236.173406][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  236.173418][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  236.173429][ T6655] R13: 00007eff8c24f33b R14: 0000000000039925 R15: 00007ffc9ab26500
[  236.173460][ T6655]  </TASK>
[  236.173467][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  237.467487][ T6821] loop2: detected capacity change from 0 to 40427
[  237.504812][ T6821] F2FS-fs (loop2): invalid crc value
[  237.787469][ T6821] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  237.798048][ T6821] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  238.069371][ T6647] bio_check_eod: 43256 callbacks suppressed
[  238.069391][ T6647] syz.1.20: attempt to access beyond end of device
[  238.069391][ T6647] loop1: rw=0, sector=87152, nr_sectors = 8 limit=40427
[  238.069510][ T6647] syz.1.20: attempt to access beyond end of device
[  238.069510][ T6647] loop1: rw=0, sector=87160, nr_sectors = 8 limit=40427
[  238.069658][ T6647] syz.1.20: attempt to access beyond end of device
[  238.069658][ T6647] loop1: rw=0, sector=87168, nr_sectors = 8 limit=40427
[  238.069774][ T6647] syz.1.20: attempt to access beyond end of device
[  238.069774][ T6647] loop1: rw=0, sector=87176, nr_sectors = 8 limit=40427
[  238.069894][ T6647] syz.1.20: attempt to access beyond end of device
[  238.069894][ T6647] loop1: rw=0, sector=87184, nr_sectors = 8 limit=40427
[  238.070013][ T6647] syz.1.20: attempt to access beyond end of device
[  238.070013][ T6647] loop1: rw=0, sector=87192, nr_sectors = 8 limit=40427
[  238.070132][ T6647] syz.1.20: attempt to access beyond end of device
[  238.070132][ T6647] loop1: rw=0, sector=87200, nr_sectors = 8 limit=40427
[  238.070250][ T6647] syz.1.20: attempt to access beyond end of device
[  238.070250][ T6647] loop1: rw=0, sector=87208, nr_sectors = 8 limit=40427
[  238.070369][ T6647] syz.1.20: attempt to access beyond end of device
[  238.070369][ T6647] loop1: rw=0, sector=87216, nr_sectors = 8 limit=40427
[  238.070515][ T6647] syz.1.20: attempt to access beyond end of device
[  238.070515][ T6647] loop1: rw=0, sector=87224, nr_sectors = 8 limit=40427
[  238.250316][ T6655] CPU: 0 UID: 0 PID: 6655 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  238.250343][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  238.250354][ T6655] Call Trace:
[  238.250361][ T6655]  <TASK>
[  238.250369][ T6655]  dump_stack_lvl+0xe8/0x150
[  238.250398][ T6655]  f2fs_handle_critical_error+0x354/0x510
[  238.250430][ T6655]  f2fs_write_end_io+0xc1d/0xfd0
[  238.250465][ T6655]  __submit_merged_bio+0x256/0x650
[  238.250496][ T6655]  __submit_merged_write_cond+0x269/0x530
[  238.250526][ T6655]  f2fs_write_data_pages+0x2806/0x3360
[  238.250544][ T6655]  ? is_bpf_text_address+0x26/0x2b0
[  238.250597][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  238.250663][ T6655]  ? do_raw_spin_lock+0x12b/0x2f0
[  238.250699][ T6655]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  238.250723][ T6655]  ? lockdep_hardirqs_on+0x7a/0x110
[  238.250744][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  238.250766][ T6655]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  238.250785][ T6655]  ? reacquire_held_locks+0x104/0x190
[  238.250805][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  238.250838][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  238.250862][ T6655]  ? rt_spin_unlock+0x160/0x200
[  238.250879][ T6655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  238.250899][ T6655]  do_writepages+0x32e/0x550
[  238.250920][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  238.250941][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  238.250970][ T6655]  filemap_fdatawrite+0x1ec/0x2f0
[  238.250993][ T6655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  238.251011][ T6655]  ? __lock_acquire+0x6b5/0x2cf0
[  238.251063][ T6655]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  238.251091][ T6655]  ? rt_spin_unlock+0x160/0x200
[  238.251112][ T6655]  f2fs_sync_dirty_inodes+0x30e/0x810
[  238.251146][ T6655]  f2fs_write_checkpoint+0x9c6/0x2490
[  238.251194][ T6655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  238.251265][ T6655]  kill_f2fs_super+0x308/0x710
[  238.251291][ T6655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  238.251333][ T6655]  deactivate_locked_super+0xbc/0x130
[  238.251356][ T6655]  cleanup_mnt+0x437/0x4d0
[  238.251375][ T6655]  ? _raw_spin_unlock_irq+0x23/0x50
[  238.251400][ T6655]  task_work_run+0x1d9/0x270
[  238.251425][ T6655]  ? __pfx_task_work_run+0x10/0x10
[  238.251457][ T6655]  exit_to_user_mode_loop+0xed/0x480
[  238.251477][ T6655]  ? rcu_is_watching+0x15/0xb0
[  238.251502][ T6655]  do_syscall_64+0x2b7/0xf80
[  238.251523][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.251540][ T6655]  ? trace_irq_disable+0x37/0x100
[  238.251561][ T6655]  ? clear_bhb_loop+0x60/0xb0
[  238.251582][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.251599][ T6655] RIP: 0033:0x7eff8c1bc157
[  238.251617][ T6655] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  238.251632][ T6655] RSP: 002b:00007ffc9ab25378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  238.251652][ T6655] RAX: 0000000000000000 RBX: 00007eff8c24f33b RCX: 00007eff8c1bc157
[  238.251664][ T6655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc9ab25430
[  238.251675][ T6655] RBP: 00007ffc9ab25430 R08: 00007ffc9ab26430 R09: 00000000ffffffff
[  238.251688][ T6655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc9ab264c0
[  238.251699][ T6655] R13: 00007eff8c24f33b R14: 000000000003a150 R15: 00007ffc9ab26500
[  238.251729][ T6655]  </TASK>
[  238.251737][ T6655] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  239.685888][ T6830] loop2: detected capacity change from 0 to 40427
[  239.726158][ T6830] F2FS-fs (loop2): invalid crc value
[  240.066489][ T6830] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  240.093304][ T6830] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  243.079510][ T6647] bio_check_eod: 48274 callbacks suppressed
[  243.079532][ T6647] syz.1.20: attempt to access beyond end of device
[  243.079532][ T6647] loop1: rw=0, sector=87008, nr_sectors = 8 limit=40427
[  243.079659][ T6647] syz.1.20: attempt to access beyond end of device
[  243.079659][ T6647] loop1: rw=0, sector=87016, nr_sectors = 8 limit=40427
[  243.079779][ T6647] syz.1.20: attempt to access beyond end of device
[  243.079779][ T6647] loop1: rw=0, sector=87024, nr_sectors = 8 limit=40427
[  243.079899][ T6647] syz.1.20: attempt to access beyond end of device
[  243.079899][ T6647] loop1: rw=0, sector=87032, nr_sectors = 8 limit=40427
[  243.080019][ T6647] syz.1.20: attempt to access beyond end of device
[  243.080019][ T6647] loop1: rw=0, sector=87040, nr_sectors = 8 limit=40427
[  243.080139][ T6647] syz.1.20: attempt to access beyond end of device
[  243.080139][ T6647] loop1: rw=0, sector=87048, nr_sectors = 8 limit=40427
[  243.080265][ T6647] syz.1.20: attempt to access beyond end of device
[  243.080265][ T6647] loop1: rw=0, sector=87056, nr_sectors = 8 limit=40427
[  243.080389][ T6647] syz.1.20: attempt to access beyond end of device
[  243.080389][ T6647] loop1: rw=0, sector=87064, nr_sectors = 8 limit=40427
[  243.080509][ T6647] syz.1.20: attempt to access beyond end of device
[  243.080509][ T6647] loop1: rw=0, sector=87072, nr_sectors = 8 limit=40427
[  243.080629][ T6647] syz.1.20: attempt to access beyond end of device
[  243.080629][ T6647] loop1: rw=0, sector=87080, nr_sectors = 8 limit=40427
[  248.089350][ T6594] bio_check_eod: 49934 callbacks suppressed
[  248.089410][ T6594] syz.0.18: attempt to access beyond end of device
[  248.089410][ T6594] loop0: rw=0, sector=88232, nr_sectors = 8 limit=40427
[  248.089539][ T6594] syz.0.18: attempt to access beyond end of device
[  248.089539][ T6594] loop0: rw=0, sector=88240, nr_sectors = 8 limit=40427
[  248.089668][ T6594] syz.0.18: attempt to access beyond end of device
[  248.089668][ T6594] loop0: rw=0, sector=88248, nr_sectors = 8 limit=40427
[  248.089788][ T6594] syz.0.18: attempt to access beyond end of device
[  248.089788][ T6594] loop0: rw=0, sector=88256, nr_sectors = 8 limit=40427
[  248.089908][ T6594] syz.0.18: attempt to access beyond end of device
[  248.089908][ T6594] loop0: rw=0, sector=88264, nr_sectors = 8 limit=40427
[  248.090027][ T6594] syz.0.18: attempt to access beyond end of device
[  248.090027][ T6594] loop0: rw=0, sector=88272, nr_sectors = 8 limit=40427
[  248.090147][ T6594] syz.0.18: attempt to access beyond end of device
[  248.090147][ T6594] loop0: rw=0, sector=88280, nr_sectors = 8 limit=40427
[  248.090267][ T6594] syz.0.18: attempt to access beyond end of device
[  248.090267][ T6594] loop0: rw=0, sector=88288, nr_sectors = 8 limit=40427
[  248.090386][ T6594] syz.0.18: attempt to access beyond end of device
[  248.090386][ T6594] loop0: rw=0, sector=88296, nr_sectors = 8 limit=40427
[  248.090506][ T6594] syz.0.18: attempt to access beyond end of device
[  248.090506][ T6594] loop0: rw=0, sector=88304, nr_sectors = 8 limit=40427
[  253.104881][ T6647] bio_check_eod: 51589 callbacks suppressed
[  253.104903][ T6647] syz.1.20: attempt to access beyond end of device
[  253.104903][ T6647] loop1: rw=524288, sector=87456, nr_sectors = 8 limit=40427
[  253.105027][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105027][ T6647] loop1: rw=524288, sector=87464, nr_sectors = 8 limit=40427
[  253.105144][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105144][ T6647] loop1: rw=524288, sector=87472, nr_sectors = 8 limit=40427
[  253.105261][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105261][ T6647] loop1: rw=524288, sector=87480, nr_sectors = 8 limit=40427
[  253.105377][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105377][ T6647] loop1: rw=524288, sector=87488, nr_sectors = 8 limit=40427
[  253.105499][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105499][ T6647] loop1: rw=524288, sector=87496, nr_sectors = 8 limit=40427
[  253.105616][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105616][ T6647] loop1: rw=524288, sector=87504, nr_sectors = 8 limit=40427
[  253.105731][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105731][ T6647] loop1: rw=524288, sector=87512, nr_sectors = 8 limit=40427
[  253.105847][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105847][ T6647] loop1: rw=524288, sector=87520, nr_sectors = 8 limit=40427
[  253.105990][ T6647] syz.1.20: attempt to access beyond end of device
[  253.105990][ T6647] loop1: rw=524288, sector=87528, nr_sectors = 8 limit=40427
[  253.460673][   T62] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  253.464535][   T62] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  253.465478][   T62] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  253.470161][   T62] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  253.472668][   T62] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  254.351675][ T6844] chnl_net:caif_netlink_parms(): no params data found
[  254.977713][ T6844] bridge0: port 1(bridge_slave_0) entered blocking state
[  254.977845][ T6844] bridge0: port 1(bridge_slave_0) entered disabled state
[  254.978032][ T6844] bridge_slave_0: entered allmulticast mode
[  255.002014][ T6844] bridge_slave_0: entered promiscuous mode
[  255.012065][ T6844] bridge0: port 2(bridge_slave_1) entered blocking state
[  255.019527][ T6844] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.019731][ T6844] bridge_slave_1: entered allmulticast mode
[  255.039932][ T6844] bridge_slave_1: entered promiscuous mode
[  255.374566][ T6844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  255.378542][ T6844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  255.579435][   T62] Bluetooth: hci3: command tx timeout
[  255.698312][ T6844] team0: Port device team_slave_0 added
[  255.712719][ T6844] team0: Port device team_slave_1 added
[  255.755973][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  255.756041][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  256.083779][ T6844] batman_adv: batadv0: Adding interface: batadv_slave_0
[  256.083796][ T6844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  256.083821][ T6844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  256.085950][ T6844] batman_adv: batadv0: Adding interface: batadv_slave_1
[  256.085962][ T6844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  256.085987][ T6844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  256.653889][ T6844] hsr_slave_0: entered promiscuous mode
[  256.655207][ T6844] hsr_slave_1: entered promiscuous mode
[  256.656112][ T6844] debugfs: 'hsr0' already exists in 'hsr'
[  256.656136][ T6844] Cannot create hsr debugfs directory
[  257.659796][   T62] Bluetooth: hci3: command tx timeout
[  257.782437][ T6844] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  257.855589][ T6844] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  257.923350][ T6844] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  257.986146][ T6844] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  258.109505][ T6647] bio_check_eod: 39341 callbacks suppressed
[  258.109524][ T6647] syz.1.20: attempt to access beyond end of device
[  258.109524][ T6647] loop1: rw=524288, sector=87440, nr_sectors = 8 limit=40427
[  258.109631][ T6647] syz.1.20: attempt to access beyond end of device
[  258.109631][ T6647] loop1: rw=524288, sector=87448, nr_sectors = 8 limit=40427
[  258.109728][ T6647] syz.1.20: attempt to access beyond end of device
[  258.109728][ T6647] loop1: rw=524288, sector=87456, nr_sectors = 8 limit=40427
[  258.109825][ T6647] syz.1.20: attempt to access beyond end of device
[  258.109825][ T6647] loop1: rw=524288, sector=87464, nr_sectors = 8 limit=40427
[  258.109909][ T6647] syz.1.20: attempt to access beyond end of device
[  258.109909][ T6647] loop1: rw=524288, sector=87472, nr_sectors = 8 limit=40427
[  258.109992][ T6647] syz.1.20: attempt to access beyond end of device
[  258.109992][ T6647] loop1: rw=524288, sector=87480, nr_sectors = 8 limit=40427
[  258.110075][ T6647] syz.1.20: attempt to access beyond end of device
[  258.110075][ T6647] loop1: rw=524288, sector=87488, nr_sectors = 8 limit=40427
[  258.110157][ T6647] syz.1.20: attempt to access beyond end of device
[  258.110157][ T6647] loop1: rw=524288, sector=87496, nr_sectors = 8 limit=40427
[  258.110238][ T6647] syz.1.20: attempt to access beyond end of device
[  258.110238][ T6647] loop1: rw=524288, sector=87504, nr_sectors = 8 limit=40427
[  258.110344][ T6647] syz.1.20: attempt to access beyond end of device
[  258.110344][ T6647] loop1: rw=524288, sector=87512, nr_sectors = 8 limit=40427
[  258.428397][ T6844] 8021q: adding VLAN 0 to HW filter on device bond0
[  258.483470][ T6844] 8021q: adding VLAN 0 to HW filter on device team0
[  258.514995][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  258.515131][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  258.553257][ T4587] bridge0: port 2(bridge_slave_1) entered blocking state
[  258.556322][ T4587] bridge0: port 2(bridge_slave_1) entered forwarding state
[  259.173038][ T6844] 8021q: adding VLAN 0 to HW filter on device batadv0
[  259.391985][ T6844] veth0_vlan: entered promiscuous mode
[  259.426694][ T6844] veth1_vlan: entered promiscuous mode
[  259.478206][ T6844] veth0_macvtap: entered promiscuous mode
[  259.492541][ T6844] veth1_macvtap: entered promiscuous mode
[  259.534192][ T6844] batman_adv: batadv0: Interface activated: batadv_slave_0
[  259.571344][ T6844] batman_adv: batadv0: Interface activated: batadv_slave_1
[  259.579824][ T4587] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  259.579909][ T4587] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  259.580082][ T4587] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  259.580798][ T4587] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  259.749508][   T62] Bluetooth: hci3: command tx timeout
[  259.929545][ T4587] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  259.929563][ T4587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  260.019416][ T4587] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  260.019437][ T4587] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/08 20:14:37 executed programs: 24
[  261.254791][ T6866] loop3: detected capacity change from 0 to 40427
[  261.284436][ T6866] F2FS-fs (loop3): invalid crc value
[  261.652438][ T6866] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  261.672913][ T6866] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  261.819698][   T62] Bluetooth: hci3: command tx timeout
[  262.280260][ T6844] CPU: 1 UID: 0 PID: 6844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  262.280315][ T6844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  262.280343][ T6844] Call Trace:
[  262.280351][ T6844]  <TASK>
[  262.280363][ T6844]  dump_stack_lvl+0xe8/0x150
[  262.280393][ T6844]  f2fs_handle_critical_error+0x354/0x510
[  262.280425][ T6844]  f2fs_write_end_io+0xc1d/0xfd0
[  262.280459][ T6844]  __submit_merged_bio+0x256/0x650
[  262.280490][ T6844]  __submit_merged_write_cond+0x269/0x530
[  262.280521][ T6844]  f2fs_write_data_pages+0x2806/0x3360
[  262.280539][ T6844]  ? is_bpf_text_address+0x26/0x2b0
[  262.280593][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  262.280660][ T6844]  ? do_raw_spin_lock+0x12b/0x2f0
[  262.280697][ T6844]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  262.280721][ T6844]  ? lockdep_hardirqs_on+0x7a/0x110
[  262.280744][ T6844]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  262.280766][ T6844]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  262.280785][ T6844]  ? reacquire_held_locks+0x104/0x190
[  262.280806][ T6844]  ? rt_spin_lock+0x1e0/0x400
[  262.280831][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  262.280854][ T6844]  ? rt_spin_unlock+0x160/0x200
[  262.280871][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  262.280892][ T6844]  do_writepages+0x32e/0x550
[  262.280913][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  262.280935][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  262.280963][ T6844]  filemap_fdatawrite+0x1ec/0x2f0
[  262.280987][ T6844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  262.281005][ T6844]  ? __lock_acquire+0x6b5/0x2cf0
[  262.281062][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  262.281089][ T6844]  ? rt_spin_unlock+0x160/0x200
[  262.281111][ T6844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  262.281145][ T6844]  f2fs_write_checkpoint+0x9c6/0x2490
[  262.281193][ T6844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  262.281270][ T6844]  kill_f2fs_super+0x308/0x710
[  262.281296][ T6844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  262.281338][ T6844]  deactivate_locked_super+0xbc/0x130
[  262.281361][ T6844]  cleanup_mnt+0x437/0x4d0
[  262.281380][ T6844]  ? _raw_spin_unlock_irq+0x23/0x50
[  262.281406][ T6844]  task_work_run+0x1d9/0x270
[  262.281432][ T6844]  ? __pfx_task_work_run+0x10/0x10
[  262.281463][ T6844]  exit_to_user_mode_loop+0xed/0x480
[  262.281483][ T6844]  ? rcu_is_watching+0x15/0xb0
[  262.281508][ T6844]  do_syscall_64+0x2b7/0xf80
[  262.281530][ T6844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.281546][ T6844]  ? trace_irq_disable+0x37/0x100
[  262.281567][ T6844]  ? clear_bhb_loop+0x60/0xb0
[  262.281588][ T6844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.281606][ T6844] RIP: 0033:0x7fecc29fc157
[  262.281624][ T6844] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  262.281639][ T6844] RSP: 002b:00007ffda1b12208 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  262.281659][ T6844] RAX: 0000000000000000 RBX: 00007fecc2a8f33b RCX: 00007fecc29fc157
[  262.281672][ T6844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda1b122c0
[  262.281684][ T6844] RBP: 00007ffda1b122c0 R08: 00007ffda1b132c0 R09: 00000000ffffffff
[  262.281697][ T6844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffda1b13350
[  262.281708][ T6844] R13: 00007fecc2a8f33b R14: 000000000003febc R15: 00007ffda1b13390
[  262.281739][ T6844]  </TASK>
[  262.281747][ T6844] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  263.133020][ T6594] bio_check_eod: 34037 callbacks suppressed
[  263.133040][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133040][ T6594] loop0: rw=524288, sector=88432, nr_sectors = 8 limit=40427
[  263.133166][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133166][ T6594] loop0: rw=524288, sector=88440, nr_sectors = 8 limit=40427
[  263.133284][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133284][ T6594] loop0: rw=524288, sector=88448, nr_sectors = 8 limit=40427
[  263.133410][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133410][ T6594] loop0: rw=524288, sector=88456, nr_sectors = 8 limit=40427
[  263.133526][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133526][ T6594] loop0: rw=524288, sector=88464, nr_sectors = 8 limit=40427
[  263.133643][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133643][ T6594] loop0: rw=524288, sector=88472, nr_sectors = 8 limit=40427
[  263.133759][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133759][ T6594] loop0: rw=524288, sector=88480, nr_sectors = 8 limit=40427
[  263.133875][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133875][ T6594] loop0: rw=524288, sector=88488, nr_sectors = 8 limit=40427
[  263.133991][ T6594] syz.0.18: attempt to access beyond end of device
[  263.133991][ T6594] loop0: rw=524288, sector=88496, nr_sectors = 8 limit=40427
[  263.134110][ T6594] syz.0.18: attempt to access beyond end of device
[  263.134110][ T6594] loop0: rw=524288, sector=88504, nr_sectors = 8 limit=40427
[  264.003559][ T6875] loop3: detected capacity change from 0 to 40427
[  264.023086][ T6875] F2FS-fs (loop3): invalid crc value
[  264.422283][ T6875] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  264.423535][ T6875] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  265.055204][   T37] audit: type=1800 audit(1770581682.726:8): pid=6881 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.40" name="file1" dev="loop3" ino=10 res=0 errno=0
[  265.090271][ T6844] CPU: 1 UID: 0 PID: 6844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  265.090299][ T6844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  265.090310][ T6844] Call Trace:
[  265.090317][ T6844]  <TASK>
[  265.090325][ T6844]  dump_stack_lvl+0xe8/0x150
[  265.090356][ T6844]  f2fs_handle_critical_error+0x354/0x510
[  265.090388][ T6844]  f2fs_write_end_io+0xc1d/0xfd0
[  265.090423][ T6844]  __submit_merged_bio+0x256/0x650
[  265.090455][ T6844]  __submit_merged_write_cond+0x269/0x530
[  265.090486][ T6844]  f2fs_write_data_pages+0x2806/0x3360
[  265.090504][ T6844]  ? __lock_acquire+0x6b5/0x2cf0
[  265.090554][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  265.090621][ T6844]  ? do_raw_spin_lock+0x12b/0x2f0
[  265.090657][ T6844]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  265.090680][ T6844]  ? lockdep_hardirqs_on+0x7a/0x110
[  265.090703][ T6844]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  265.090725][ T6844]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  265.090745][ T6844]  ? reacquire_held_locks+0x104/0x190
[  265.090765][ T6844]  ? rt_spin_lock+0x1e0/0x400
[  265.090792][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  265.090815][ T6844]  ? rt_spin_unlock+0x160/0x200
[  265.090839][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  265.090860][ T6844]  do_writepages+0x32e/0x550
[  265.090881][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  265.090903][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  265.090931][ T6844]  filemap_fdatawrite+0x1ec/0x2f0
[  265.090956][ T6844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  265.090974][ T6844]  ? __lock_acquire+0x6b5/0x2cf0
[  265.091026][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  265.091054][ T6844]  ? rt_spin_unlock+0x160/0x200
[  265.091075][ T6844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  265.091109][ T6844]  f2fs_write_checkpoint+0x9c6/0x2490
[  265.091156][ T6844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  265.091227][ T6844]  kill_f2fs_super+0x308/0x710
[  265.091253][ T6844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  265.091295][ T6844]  deactivate_locked_super+0xbc/0x130
[  265.091319][ T6844]  cleanup_mnt+0x437/0x4d0
[  265.091338][ T6844]  ? _raw_spin_unlock_irq+0x23/0x50
[  265.091364][ T6844]  task_work_run+0x1d9/0x270
[  265.091389][ T6844]  ? __pfx_task_work_run+0x10/0x10
[  265.091421][ T6844]  exit_to_user_mode_loop+0xed/0x480
[  265.091442][ T6844]  ? rcu_is_watching+0x15/0xb0
[  265.091467][ T6844]  do_syscall_64+0x2b7/0xf80
[  265.091489][ T6844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.091507][ T6844]  ? trace_irq_disable+0x37/0x100
[  265.091527][ T6844]  ? clear_bhb_loop+0x60/0xb0
[  265.091549][ T6844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.091567][ T6844] RIP: 0033:0x7fecc29fc157
[  265.091584][ T6844] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  265.091600][ T6844] RSP: 002b:00007ffda1b12208 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  265.091619][ T6844] RAX: 0000000000000000 RBX: 00007fecc2a8f33b RCX: 00007fecc29fc157
[  265.091632][ T6844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda1b122c0
[  265.091643][ T6844] RBP: 00007ffda1b122c0 R08: 00007ffda1b132c0 R09: 00000000ffffffff
[  265.091656][ T6844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffda1b13350
[  265.091667][ T6844] R13: 00007fecc2a8f33b R14: 00000000000409d4 R15: 00007ffda1b13390
[  265.091698][ T6844]  </TASK>
[  265.091705][ T6844] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  265.524076][ T6835] F2FS-fs (loop2): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[  267.232044][ T6884] loop3: detected capacity change from 0 to 40427
[  267.269534][ T6884] F2FS-fs (loop3): invalid crc value
[  267.438254][ T6884] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  267.469037][ T6884] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
2026/02/08 20:14:45 executed programs: 27
[  268.000265][ T6844] CPU: 0 UID: 0 PID: 6844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  268.000293][ T6844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  268.000304][ T6844] Call Trace:
[  268.000311][ T6844]  <TASK>
[  268.000319][ T6844]  dump_stack_lvl+0xe8/0x150
[  268.000348][ T6844]  f2fs_handle_critical_error+0x354/0x510
[  268.000380][ T6844]  f2fs_write_end_io+0xc1d/0xfd0
[  268.000414][ T6844]  __submit_merged_bio+0x256/0x650
[  268.000445][ T6844]  __submit_merged_write_cond+0x269/0x530
[  268.000476][ T6844]  f2fs_write_data_pages+0x2806/0x3360
[  268.000494][ T6844]  ? is_bpf_text_address+0x26/0x2b0
[  268.000549][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  268.000623][ T6844]  ? do_raw_spin_lock+0x12b/0x2f0
[  268.000659][ T6844]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  268.000683][ T6844]  ? lockdep_hardirqs_on+0x7a/0x110
[  268.000705][ T6844]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  268.000726][ T6844]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  268.000745][ T6844]  ? reacquire_held_locks+0x104/0x190
[  268.000766][ T6844]  ? rt_spin_lock+0x1e0/0x400
[  268.000789][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  268.000812][ T6844]  ? rt_spin_unlock+0x160/0x200
[  268.000829][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  268.000849][ T6844]  do_writepages+0x32e/0x550
[  268.000870][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  268.000890][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  268.000918][ T6844]  filemap_fdatawrite+0x1ec/0x2f0
[  268.000942][ T6844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  268.000960][ T6844]  ? __lock_acquire+0x6b5/0x2cf0
[  268.001012][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  268.001039][ T6844]  ? rt_spin_unlock+0x160/0x200
[  268.001061][ T6844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  268.001094][ T6844]  f2fs_write_checkpoint+0x9c6/0x2490
[  268.001142][ T6844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  268.001211][ T6844]  kill_f2fs_super+0x308/0x710
[  268.001237][ T6844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  268.001277][ T6844]  deactivate_locked_super+0xbc/0x130
[  268.001300][ T6844]  cleanup_mnt+0x437/0x4d0
[  268.001319][ T6844]  ? _raw_spin_unlock_irq+0x23/0x50
[  268.001345][ T6844]  task_work_run+0x1d9/0x270
[  268.001370][ T6844]  ? __pfx_task_work_run+0x10/0x10
[  268.001403][ T6844]  exit_to_user_mode_loop+0xed/0x480
[  268.001423][ T6844]  ? rcu_is_watching+0x15/0xb0
[  268.001447][ T6844]  do_syscall_64+0x2b7/0xf80
[  268.001469][ T6844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.001486][ T6844]  ? trace_irq_disable+0x37/0x100
[  268.001507][ T6844]  ? clear_bhb_loop+0x60/0xb0
[  268.001528][ T6844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.001546][ T6844] RIP: 0033:0x7fecc29fc157
[  268.001563][ T6844] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  268.001580][ T6844] RSP: 002b:00007ffda1b12208 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  268.001606][ T6844] RAX: 0000000000000000 RBX: 00007fecc2a8f33b RCX: 00007fecc29fc157
[  268.001619][ T6844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda1b122c0
[  268.001630][ T6844] RBP: 00007ffda1b122c0 R08: 00007ffda1b132c0 R09: 00000000ffffffff
[  268.001643][ T6844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffda1b13350
[  268.001655][ T6844] R13: 00007fecc2a8f33b R14: 000000000004158e R15: 00007ffda1b13390
[  268.001685][ T6844]  </TASK>
[  268.001693][ T6844] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  268.140515][ T6594] bio_check_eod: 41176 callbacks suppressed
[  268.140533][ T6594] syz.0.18: attempt to access beyond end of device
[  268.140533][ T6594] loop0: rw=524288, sector=86224, nr_sectors = 8 limit=40427
[  268.140650][ T6594] syz.0.18: attempt to access beyond end of device
[  268.140650][ T6594] loop0: rw=524288, sector=86232, nr_sectors = 8 limit=40427
[  268.140788][ T6594] syz.0.18: attempt to access beyond end of device
[  268.140788][ T6594] loop0: rw=524288, sector=86240, nr_sectors = 8 limit=40427
[  268.140903][ T6594] syz.0.18: attempt to access beyond end of device
[  268.140903][ T6594] loop0: rw=524288, sector=86248, nr_sectors = 8 limit=40427
[  268.141011][ T6594] syz.0.18: attempt to access beyond end of device
[  268.141011][ T6594] loop0: rw=524288, sector=86256, nr_sectors = 8 limit=40427
[  268.141119][ T6594] syz.0.18: attempt to access beyond end of device
[  268.141119][ T6594] loop0: rw=524288, sector=86264, nr_sectors = 8 limit=40427
[  268.141227][ T6594] syz.0.18: attempt to access beyond end of device
[  268.141227][ T6594] loop0: rw=524288, sector=86272, nr_sectors = 8 limit=40427
[  268.141334][ T6594] syz.0.18: attempt to access beyond end of device
[  268.141334][ T6594] loop0: rw=524288, sector=86280, nr_sectors = 8 limit=40427
[  268.141442][ T6594] syz.0.18: attempt to access beyond end of device
[  268.141442][ T6594] loop0: rw=524288, sector=86288, nr_sectors = 8 limit=40427
[  268.141551][ T6594] syz.0.18: attempt to access beyond end of device
[  268.141551][ T6594] loop0: rw=524288, sector=86296, nr_sectors = 8 limit=40427
[  269.854476][ T6893] loop3: detected capacity change from 0 to 40427
[  269.888053][ T6893] F2FS-fs (loop3): invalid crc value
[  270.246203][ T6893] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  270.279518][ T6893] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  270.842591][   T37] audit: type=1800 audit(1770581688.516:9): pid=6899 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.42" name="file1" dev="loop3" ino=10 res=0 errno=0
[  270.942319][ T6844] CPU: 1 UID: 0 PID: 6844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  270.942347][ T6844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  270.942359][ T6844] Call Trace:
[  270.942366][ T6844]  <TASK>
[  270.942374][ T6844]  dump_stack_lvl+0xe8/0x150
[  270.942404][ T6844]  f2fs_handle_critical_error+0x354/0x510
[  270.942436][ T6844]  f2fs_write_end_io+0xc1d/0xfd0
[  270.942471][ T6844]  __submit_merged_bio+0x256/0x650
[  270.942510][ T6844]  __submit_merged_write_cond+0x269/0x530
[  270.942542][ T6844]  f2fs_write_data_pages+0x2806/0x3360
[  270.942560][ T6844]  ? is_bpf_text_address+0x26/0x2b0
[  270.942615][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  270.942682][ T6844]  ? do_raw_spin_lock+0x12b/0x2f0
[  270.942718][ T6844]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  270.942743][ T6844]  ? lockdep_hardirqs_on+0x7a/0x110
[  270.942765][ T6844]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  270.942787][ T6844]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  270.942806][ T6844]  ? reacquire_held_locks+0x104/0x190
[  270.942827][ T6844]  ? rt_spin_lock+0x1e0/0x400
[  270.942853][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  270.942877][ T6844]  ? rt_spin_unlock+0x160/0x200
[  270.942895][ T6844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  270.942915][ T6844]  do_writepages+0x32e/0x550
[  270.942937][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  270.942957][ T6844]  ? rt_spin_unlock+0x14f/0x200
[  270.942986][ T6844]  filemap_fdatawrite+0x1ec/0x2f0
[  270.943010][ T6844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  270.943028][ T6844]  ? __lock_acquire+0x6b5/0x2cf0
[  270.943081][ T6844]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  270.943109][ T6844]  ? rt_spin_unlock+0x160/0x200
[  270.943131][ T6844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  270.943166][ T6844]  f2fs_write_checkpoint+0x9c6/0x2490
[  270.943214][ T6844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  270.943285][ T6844]  kill_f2fs_super+0x308/0x710
[  270.943312][ T6844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  270.943354][ T6844]  deactivate_locked_super+0xbc/0x130
[  270.943377][ T6844]  cleanup_mnt+0x437/0x4d0
[  270.943396][ T6844]  ? _raw_spin_unlock_irq+0x23/0x50
[  270.943422][ T6844]  task_work_run+0x1d9/0x270
[  270.943448][ T6844]  ? __pfx_task_work_run+0x10/0x10
[  270.943485][ T6844]  exit_to_user_mode_loop+0xed/0x480
[  270.943507][ T6844]  ? rcu_is_watching+0x15/0xb0
[  270.943532][ T6844]  do_syscall_64+0x2b7/0xf80
[  270.943555][ T6844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.943573][ T6844]  ? trace_irq_disable+0x37/0x100
[  270.943594][ T6844]  ? clear_bhb_loop+0x60/0xb0
[  270.943616][ T6844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.943634][ T6844] RIP: 0033:0x7fecc29fc157
[  270.943651][ T6844] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  270.943667][ T6844] RSP: 002b:00007ffda1b12208 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  270.943688][ T6844] RAX: 0000000000000000 RBX: 00007fecc2a8f33b RCX: 00007fecc29fc157
[  270.943700][ T6844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda1b122c0
[  270.943711][ T6844] RBP: 00007ffda1b122c0 R08: 00007ffda1b132c0 R09: 00000000ffffffff
[  270.943724][ T6844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffda1b13350
[  270.943736][ T6844] R13: 00007fecc2a8f33b R14: 00000000000420e0 R15: 00007ffda1b13390
[  270.943766][ T6844]  </TASK>
[  270.943774][ T6844] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  272.683558][ T6902] loop3: detected capacity change from 0 to 40427
[  272.741492][ T6902] F2FS-fs (loop3): invalid crc value
[  273.126280][ T6902] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  273.149368][ T6835] bio_check_eod: 47156 callbacks suppressed
[  273.149387][ T6835] syz.2.38: attempt to access beyond end of device
[  273.149387][ T6835] loop2: rw=524288, sector=88632, nr_sectors = 8 limit=40427
[  273.149441][ T6902] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  273.149506][ T6835] syz.2.38: attempt to access beyond end of device
[  273.149506][ T6835] loop2: rw=524288, sector=88640, nr_sectors = 8 limit=40427
[  273.149615][ T6835] syz.2.38: attempt to access beyond end of device
[  273.149615][ T6835] loop2: rw=524288, sector=88648, nr_sectors = 8 limit=40427
[  273.149723][ T6835] syz.2.38: attempt to access beyond end of device
[  273.149723][ T6835] loop2: rw=524288, sector=88656, nr_sectors = 8 limit=40427
[  273.149829][ T6835] syz.2.38: attempt to access beyond end of device
[  273.149829][ T6835] loop2: rw=524288, sector=88664, nr_sectors = 8 limit=40427
[  273.149937][ T6835] syz.2.38: attempt to access beyond end of device
[  273.149937][ T6835] loop2: rw=524288, sector=88672, nr_sectors = 8 limit=40427
[  273.150050][ T6835] syz.2.38: attempt to access beyond end of device
[  273.150050][ T6835] loop2: rw=524288, sector=88680, nr_sectors = 8 limit=40427
[  273.150164][ T6835] syz.2.38: attempt to access beyond end of device
[  273.150164][ T6835] loop2: rw=524288, sector=88688, nr_sectors = 8 limit=40427
[  273.150279][ T6835] syz.2.38: attempt to access beyond end of device
[  273.150279][ T6835] loop2: rw=524288, sector=88696, nr_sectors = 8 limit=40427
[  273.150387][ T6835] syz.2.38: attempt to access beyond end of device
[  273.150387][ T6835] loop2: rw=524288, sector=88704, nr_sectors = 8 limit=40427
[  278.159389][ T6647] bio_check_eod: 53390 callbacks suppressed
[  278.159410][ T6647] syz.1.20: attempt to access beyond end of device
[  278.159410][ T6647] loop1: rw=524288, sector=86432, nr_sectors = 8 limit=40427
[  278.159542][ T6647] syz.1.20: attempt to access beyond end of device
[  278.159542][ T6647] loop1: rw=524288, sector=86440, nr_sectors = 8 limit=40427
[  278.159659][ T6647] syz.1.20: attempt to access beyond end of device
[  278.159659][ T6647] loop1: rw=524288, sector=86448, nr_sectors = 8 limit=40427
[  278.159767][ T6647] syz.1.20: attempt to access beyond end of device
[  278.159767][ T6647] loop1: rw=524288, sector=86456, nr_sectors = 8 limit=40427
[  278.159886][ T6647] syz.1.20: attempt to access beyond end of device
[  278.159886][ T6647] loop1: rw=524288, sector=86464, nr_sectors = 8 limit=40427
[  278.160006][ T6647] syz.1.20: attempt to access beyond end of device
[  278.160006][ T6647] loop1: rw=524288, sector=86472, nr_sectors = 8 limit=40427
[  278.160121][ T6647] syz.1.20: attempt to access beyond end of device
[  278.160121][ T6647] loop1: rw=524288, sector=86480, nr_sectors = 8 limit=40427
[  278.160265][ T6647] syz.1.20: attempt to access beyond end of device
[  278.160265][ T6647] loop1: rw=524288, sector=86488, nr_sectors = 8 limit=40427
[  278.160381][ T6647] syz.1.20: attempt to access beyond end of device
[  278.160381][ T6647] loop1: rw=524288, sector=86496, nr_sectors = 8 limit=40427
[  278.160504][ T6647] syz.1.20: attempt to access beyond end of device
[  278.160504][ T6647] loop1: rw=524288, sector=86504, nr_sectors = 8 limit=40427
[  278.300803][ T5126] Bluetooth: hci0: command 0x0406 tx timeout
[  283.169530][ T6594] bio_check_eod: 53200 callbacks suppressed
[  283.169552][ T6594] syz.0.18: attempt to access beyond end of device
[  283.169552][ T6594] loop0: rw=0, sector=86912, nr_sectors = 8 limit=40427
[  283.169677][ T6594] syz.0.18: attempt to access beyond end of device
[  283.169677][ T6594] loop0: rw=0, sector=86920, nr_sectors = 8 limit=40427
[  283.169798][ T6594] syz.0.18: attempt to access beyond end of device
[  283.169798][ T6594] loop0: rw=0, sector=86928, nr_sectors = 8 limit=40427
[  283.169918][ T6594] syz.0.18: attempt to access beyond end of device
[  283.169918][ T6594] loop0: rw=0, sector=86936, nr_sectors = 8 limit=40427
[  283.170047][ T6594] syz.0.18: attempt to access beyond end of device
[  283.170047][ T6594] loop0: rw=0, sector=86944, nr_sectors = 8 limit=40427
[  283.170167][ T6594] syz.0.18: attempt to access beyond end of device
[  283.170167][ T6594] loop0: rw=0, sector=86952, nr_sectors = 8 limit=40427
[  283.170286][ T6594] syz.0.18: attempt to access beyond end of device
[  283.170286][ T6594] loop0: rw=0, sector=86960, nr_sectors = 8 limit=40427
[  283.170405][ T6594] syz.0.18: attempt to access beyond end of device
[  283.170405][ T6594] loop0: rw=0, sector=86968, nr_sectors = 8 limit=40427
[  283.170525][ T6594] syz.0.18: attempt to access beyond end of device
[  283.170525][ T6594] loop0: rw=0, sector=86976, nr_sectors = 8 limit=40427
[  283.170672][ T6594] syz.0.18: attempt to access beyond end of device
[  283.170672][ T6594] loop0: rw=0, sector=86984, nr_sectors = 8 limit=40427
[  286.323775][ T5126] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  286.327052][ T5126] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  286.330011][ T5126] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  286.332224][ T5126] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  286.333186][ T5126] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  287.197382][ T6911] chnl_net:caif_netlink_parms(): no params data found
[  288.067365][ T6911] bridge0: port 1(bridge_slave_0) entered blocking state
[  288.076735][ T6911] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.076966][ T6911] bridge_slave_0: entered allmulticast mode
[  288.111099][ T6911] bridge_slave_0: entered promiscuous mode
[  288.127825][ T6911] bridge0: port 2(bridge_slave_1) entered blocking state
[  288.127963][ T6911] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.128154][ T6911] bridge_slave_1: entered allmulticast mode
[  288.157183][ T6911] bridge_slave_1: entered promiscuous mode
[  288.179535][ T6835] bio_check_eod: 50977 callbacks suppressed
[  288.179554][ T6835] syz.2.38: attempt to access beyond end of device
[  288.179554][ T6835] loop2: rw=524288, sector=86376, nr_sectors = 8 limit=40427
[  288.179687][ T6835] syz.2.38: attempt to access beyond end of device
[  288.179687][ T6835] loop2: rw=524288, sector=86384, nr_sectors = 8 limit=40427
[  288.179803][ T6835] syz.2.38: attempt to access beyond end of device
[  288.179803][ T6835] loop2: rw=524288, sector=86392, nr_sectors = 8 limit=40427
[  288.179928][ T6835] syz.2.38: attempt to access beyond end of device
[  288.179928][ T6835] loop2: rw=524288, sector=86400, nr_sectors = 8 limit=40427
[  288.180043][ T6835] syz.2.38: attempt to access beyond end of device
[  288.180043][ T6835] loop2: rw=524288, sector=86408, nr_sectors = 8 limit=40427
[  288.180154][ T6835] syz.2.38: attempt to access beyond end of device
[  288.180154][ T6835] loop2: rw=524288, sector=86416, nr_sectors = 8 limit=40427
[  288.180268][ T6835] syz.2.38: attempt to access beyond end of device
[  288.180268][ T6835] loop2: rw=524288, sector=86424, nr_sectors = 8 limit=40427
[  288.180384][ T6835] syz.2.38: attempt to access beyond end of device
[  288.180384][ T6835] loop2: rw=524288, sector=86432, nr_sectors = 8 limit=40427
[  288.180499][ T6835] syz.2.38: attempt to access beyond end of device
[  288.180499][ T6835] loop2: rw=524288, sector=86440, nr_sectors = 8 limit=40427
[  288.180613][ T6835] syz.2.38: attempt to access beyond end of device
[  288.180613][ T6835] loop2: rw=524288, sector=86448, nr_sectors = 8 limit=40427
[  288.380476][   T62] Bluetooth: hci4: command tx timeout
[  288.745459][ T6911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  288.770525][ T6911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  289.461606][ T6911] team0: Port device team_slave_0 added
[  289.481183][ T6911] team0: Port device team_slave_1 added
[  289.903385][ T6911] batman_adv: batadv0: Adding interface: batadv_slave_0
[  289.903404][ T6911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  289.903429][ T6911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  289.919554][ T6911] batman_adv: batadv0: Adding interface: batadv_slave_1
[  289.919569][ T6911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  289.919594][ T6911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.459505][   T62] Bluetooth: hci4: command tx timeout
[  290.501725][ T6911] hsr_slave_0: entered promiscuous mode
[  290.502979][ T6911] hsr_slave_1: entered promiscuous mode
[  290.529963][ T6911] debugfs: 'hsr0' already exists in 'hsr'
[  290.529991][ T6911] Cannot create hsr debugfs directory
[  291.812329][ T6911] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  291.991143][ T6911] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  292.080152][ T6911] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  292.211138][ T6911] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  292.539443][   T62] Bluetooth: hci4: command tx timeout
[  292.797768][ T6911] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.962535][ T6911] 8021q: adding VLAN 0 to HW filter on device team0
[  292.992615][ T1415] bridge0: port 1(bridge_slave_0) entered blocking state
[  292.992750][ T1415] bridge0: port 1(bridge_slave_0) entered forwarding state
[  293.047342][ T3940] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.047490][ T3940] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.189389][ T6594] bio_check_eod: 48923 callbacks suppressed
[  293.189410][ T6594] syz.0.18: attempt to access beyond end of device
[  293.189410][ T6594] loop0: rw=524288, sector=89064, nr_sectors = 8 limit=40427
[  293.189526][ T6594] syz.0.18: attempt to access beyond end of device
[  293.189526][ T6594] loop0: rw=524288, sector=89072, nr_sectors = 8 limit=40427
[  293.189636][ T6594] syz.0.18: attempt to access beyond end of device
[  293.189636][ T6594] loop0: rw=524288, sector=89080, nr_sectors = 8 limit=40427
[  293.189742][ T6594] syz.0.18: attempt to access beyond end of device
[  293.189742][ T6594] loop0: rw=524288, sector=89088, nr_sectors = 8 limit=40427
[  293.189860][ T6594] syz.0.18: attempt to access beyond end of device
[  293.189860][ T6594] loop0: rw=524288, sector=89096, nr_sectors = 8 limit=40427
[  293.189991][ T6594] syz.0.18: attempt to access beyond end of device
[  293.189991][ T6594] loop0: rw=524288, sector=89104, nr_sectors = 8 limit=40427
[  293.190106][ T6594] syz.0.18: attempt to access beyond end of device
[  293.190106][ T6594] loop0: rw=524288, sector=89112, nr_sectors = 8 limit=40427
[  293.190216][ T6594] syz.0.18: attempt to access beyond end of device
[  293.190216][ T6594] loop0: rw=524288, sector=89120, nr_sectors = 8 limit=40427
[  293.190329][ T6594] syz.0.18: attempt to access beyond end of device
[  293.190329][ T6594] loop0: rw=524288, sector=89128, nr_sectors = 8 limit=40427
[  293.190440][ T6594] syz.0.18: attempt to access beyond end of device
[  293.190440][ T6594] loop0: rw=524288, sector=89136, nr_sectors = 8 limit=40427
[  293.932517][ T6911] 8021q: adding VLAN 0 to HW filter on device batadv0
[  294.622592][   T62] Bluetooth: hci4: command tx timeout
[  294.999475][ T6911] veth0_vlan: entered promiscuous mode
[  295.074111][ T6911] veth1_vlan: entered promiscuous mode
[  295.221108][ T6911] veth0_macvtap: entered promiscuous mode
[  295.243373][ T6911] veth1_macvtap: entered promiscuous mode
[  295.299171][ T6911] batman_adv: batadv0: Interface activated: batadv_slave_0
[  295.311793][ T6911] batman_adv: batadv0: Interface activated: batadv_slave_1
[  295.333727][ T1415] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  295.341900][ T1415] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  295.352790][ T1415] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  295.353303][ T1415] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  296.009410][ T3940] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  296.009430][ T3940] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  296.230260][ T3940] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  296.230282][ T3940] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/08 20:15:14 executed programs: 29
[  297.873432][ T6940] loop4: detected capacity change from 0 to 40427
[  297.973221][ T6940] F2FS-fs (loop4): invalid crc value
[  298.200293][ T6835] bio_check_eod: 42123 callbacks suppressed
[  298.200315][ T6835] syz.2.38: attempt to access beyond end of device
[  298.200315][ T6835] loop2: rw=0, sector=86392, nr_sectors = 8 limit=40427
[  298.200461][ T6835] syz.2.38: attempt to access beyond end of device
[  298.200461][ T6835] loop2: rw=0, sector=86400, nr_sectors = 8 limit=40427
[  298.200590][ T6835] syz.2.38: attempt to access beyond end of device
[  298.200590][ T6835] loop2: rw=0, sector=86408, nr_sectors = 8 limit=40427
[  298.200707][ T6835] syz.2.38: attempt to access beyond end of device
[  298.200707][ T6835] loop2: rw=0, sector=86416, nr_sectors = 8 limit=40427
[  298.200827][ T6835] syz.2.38: attempt to access beyond end of device
[  298.200827][ T6835] loop2: rw=0, sector=86424, nr_sectors = 8 limit=40427
[  298.200972][ T6835] syz.2.38: attempt to access beyond end of device
[  298.200972][ T6835] loop2: rw=0, sector=86432, nr_sectors = 8 limit=40427
[  298.201098][ T6835] syz.2.38: attempt to access beyond end of device
[  298.201098][ T6835] loop2: rw=0, sector=86440, nr_sectors = 8 limit=40427
[  298.201218][ T6835] syz.2.38: attempt to access beyond end of device
[  298.201218][ T6835] loop2: rw=0, sector=86448, nr_sectors = 8 limit=40427
[  298.201379][ T6835] syz.2.38: attempt to access beyond end of device
[  298.201379][ T6835] loop2: rw=0, sector=86456, nr_sectors = 8 limit=40427
[  298.201514][ T6835] syz.2.38: attempt to access beyond end of device
[  298.201514][ T6835] loop2: rw=0, sector=86464, nr_sectors = 8 limit=40427
[  298.447893][ T6940] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  298.483250][ T6940] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  298.779469][ T5126] Bluetooth: hci1: command 0x0406 tx timeout
[  299.130643][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  299.130671][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  299.130682][ T6911] Call Trace:
[  299.130690][ T6911]  <TASK>
[  299.130698][ T6911]  dump_stack_lvl+0xe8/0x150
[  299.130729][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  299.130760][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  299.130795][ T6911]  __submit_merged_bio+0x256/0x650
[  299.130827][ T6911]  __submit_merged_write_cond+0x269/0x530
[  299.130858][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  299.130876][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  299.130931][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  299.130998][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  299.131034][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  299.131058][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  299.131080][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  299.131102][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  299.131121][ T6911]  ? reacquire_held_locks+0x104/0x190
[  299.131142][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  299.131168][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  299.131191][ T6911]  ? rt_spin_unlock+0x160/0x200
[  299.131208][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  299.131229][ T6911]  do_writepages+0x32e/0x550
[  299.131250][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  299.131272][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  299.131300][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  299.131325][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  299.131343][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  299.131402][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  299.131430][ T6911]  ? rt_spin_unlock+0x160/0x200
[  299.131451][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  299.131485][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  299.131533][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  299.131604][ T6911]  kill_f2fs_super+0x308/0x710
[  299.131629][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  299.131671][ T6911]  deactivate_locked_super+0xbc/0x130
[  299.131694][ T6911]  cleanup_mnt+0x437/0x4d0
[  299.131714][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  299.131739][ T6911]  task_work_run+0x1d9/0x270
[  299.131765][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  299.131797][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  299.131818][ T6911]  ? rcu_is_watching+0x15/0xb0
[  299.131843][ T6911]  do_syscall_64+0x2b7/0xf80
[  299.131865][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.131882][ T6911]  ? trace_irq_disable+0x37/0x100
[  299.131904][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  299.131926][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.131943][ T6911] RIP: 0033:0x7fbb94a3c157
[  299.131962][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  299.131978][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  299.131998][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  299.132010][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  299.132022][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  299.132035][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  299.132047][ T6911] R13: 00007fbb94acf33b R14: 0000000000048f12 R15: 00007ffd558b17b0
[  299.132078][ T6911]  </TASK>
[  299.132085][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  301.420596][ T6949] loop4: detected capacity change from 0 to 40427
[  301.460005][ T6949] F2FS-fs (loop4): invalid crc value
[  301.908389][ T6949] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  301.935039][ T6949] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
2026/02/08 20:15:20 executed programs: 31
[  302.800326][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  302.800355][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  302.800366][ T6911] Call Trace:
[  302.800374][ T6911]  <TASK>
[  302.800382][ T6911]  dump_stack_lvl+0xe8/0x150
[  302.800411][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  302.800444][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  302.800479][ T6911]  __submit_merged_bio+0x256/0x650
[  302.800509][ T6911]  __submit_merged_write_cond+0x269/0x530
[  302.800540][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  302.800558][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  302.800607][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  302.800673][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  302.800710][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  302.800733][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  302.800756][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  302.800778][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  302.800798][ T6911]  ? reacquire_held_locks+0x104/0x190
[  302.800819][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  302.800844][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  302.800868][ T6911]  ? rt_spin_unlock+0x160/0x200
[  302.800885][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  302.800906][ T6911]  do_writepages+0x32e/0x550
[  302.800927][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  302.800948][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  302.800976][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  302.801000][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  302.801019][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  302.801072][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  302.801099][ T6911]  ? rt_spin_unlock+0x160/0x200
[  302.801121][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  302.801155][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  302.801203][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  302.801279][ T6911]  kill_f2fs_super+0x308/0x710
[  302.801306][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  302.801348][ T6911]  deactivate_locked_super+0xbc/0x130
[  302.801371][ T6911]  cleanup_mnt+0x437/0x4d0
[  302.801390][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  302.801416][ T6911]  task_work_run+0x1d9/0x270
[  302.801442][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  302.801474][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  302.801495][ T6911]  ? rcu_is_watching+0x15/0xb0
[  302.801521][ T6911]  do_syscall_64+0x2b7/0xf80
[  302.801543][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.801560][ T6911]  ? trace_irq_disable+0x37/0x100
[  302.801581][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  302.801603][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.801620][ T6911] RIP: 0033:0x7fbb94a3c157
[  302.801638][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  302.801655][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  302.801674][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  302.801687][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  302.801699][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  302.801711][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  302.801723][ T6911] R13: 00007fbb94acf33b R14: 0000000000049bec R15: 00007ffd558b17b0
[  302.801754][ T6911]  </TASK>
[  302.801761][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  303.209328][ T6835] bio_check_eod: 39630 callbacks suppressed
[  303.209347][ T6835] syz.2.38: attempt to access beyond end of device
[  303.209347][ T6835] loop2: rw=524288, sector=86344, nr_sectors = 8 limit=40427
[  303.209457][ T6594] syz.0.18: attempt to access beyond end of device
[  303.209457][ T6594] loop0: rw=0, sector=86024, nr_sectors = 8 limit=40427
[  303.209458][ T6835] syz.2.38: attempt to access beyond end of device
[  303.209458][ T6835] loop2: rw=524288, sector=86352, nr_sectors = 8 limit=40427
[  303.209573][ T6835] syz.2.38: attempt to access beyond end of device
[  303.209573][ T6835] loop2: rw=524288, sector=86360, nr_sectors = 8 limit=40427
[  303.209591][ T6594] syz.0.18: attempt to access beyond end of device
[  303.209591][ T6594] loop0: rw=0, sector=86032, nr_sectors = 8 limit=40427
[  303.209690][ T6835] syz.2.38: attempt to access beyond end of device
[  303.209690][ T6835] loop2: rw=524288, sector=86368, nr_sectors = 8 limit=40427
[  303.209714][ T6594] syz.0.18: attempt to access beyond end of device
[  303.209714][ T6594] loop0: rw=0, sector=86040, nr_sectors = 8 limit=40427
[  303.209806][ T6835] syz.2.38: attempt to access beyond end of device
[  303.209806][ T6835] loop2: rw=524288, sector=86376, nr_sectors = 8 limit=40427
[  303.209839][ T6594] syz.0.18: attempt to access beyond end of device
[  303.209839][ T6594] loop0: rw=0, sector=86048, nr_sectors = 8 limit=40427
[  303.209923][ T6835] syz.2.38: attempt to access beyond end of device
[  303.209923][ T6835] loop2: rw=524288, sector=86384, nr_sectors = 8 limit=40427
[  305.277013][ T6958] loop4: detected capacity change from 0 to 40427
[  305.344470][ T6958] F2FS-fs (loop4): invalid crc value
[  305.715424][ T6958] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  305.752361][ T6958] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  306.668641][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  306.668670][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  306.668682][ T6911] Call Trace:
[  306.668689][ T6911]  <TASK>
[  306.668697][ T6911]  dump_stack_lvl+0xe8/0x150
[  306.668726][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  306.668757][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  306.668792][ T6911]  __submit_merged_bio+0x256/0x650
[  306.668823][ T6911]  __submit_merged_write_cond+0x269/0x530
[  306.668854][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  306.668871][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  306.668926][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  306.668992][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  306.669030][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  306.669054][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  306.669076][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  306.669098][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  306.669118][ T6911]  ? reacquire_held_locks+0x104/0x190
[  306.669138][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  306.669164][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  306.669187][ T6911]  ? rt_spin_unlock+0x160/0x200
[  306.669205][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  306.669225][ T6911]  do_writepages+0x32e/0x550
[  306.669245][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  306.669264][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  306.669287][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  306.669306][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  306.669327][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  306.669426][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  306.669452][ T6911]  ? rt_spin_unlock+0x160/0x200
[  306.669471][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  306.669501][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  306.669544][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  306.669647][ T6911]  kill_f2fs_super+0x308/0x710
[  306.669715][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  306.669760][ T6911]  deactivate_locked_super+0xbc/0x130
[  306.669784][ T6911]  cleanup_mnt+0x437/0x4d0
[  306.669802][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  306.669827][ T6911]  task_work_run+0x1d9/0x270
[  306.669851][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  306.669882][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  306.669903][ T6911]  ? rcu_is_watching+0x15/0xb0
[  306.669926][ T6911]  do_syscall_64+0x2b7/0xf80
[  306.669946][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.669961][ T6911]  ? trace_irq_disable+0x37/0x100
[  306.669978][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  306.669996][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.670010][ T6911] RIP: 0033:0x7fbb94a3c157
[  306.670024][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  306.670036][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  306.670052][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  306.670064][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  306.670075][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  306.670087][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  306.670098][ T6911] R13: 00007fbb94acf33b R14: 000000000004ab19 R15: 00007ffd558b17b0
[  306.670125][ T6911]  </TASK>
[  306.679090][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  308.221549][ T6594] bio_check_eod: 41738 callbacks suppressed
[  308.221572][ T6594] syz.0.18: attempt to access beyond end of device
[  308.221572][ T6594] loop0: rw=0, sector=87648, nr_sectors = 8 limit=40427
[  308.221726][ T6594] syz.0.18: attempt to access beyond end of device
[  308.221726][ T6594] loop0: rw=0, sector=87656, nr_sectors = 8 limit=40427
[  308.221860][ T6594] syz.0.18: attempt to access beyond end of device
[  308.221860][ T6594] loop0: rw=0, sector=87664, nr_sectors = 8 limit=40427
[  308.221981][ T6594] syz.0.18: attempt to access beyond end of device
[  308.221981][ T6594] loop0: rw=0, sector=87672, nr_sectors = 8 limit=40427
[  308.222102][ T6594] syz.0.18: attempt to access beyond end of device
[  308.222102][ T6594] loop0: rw=0, sector=87680, nr_sectors = 8 limit=40427
[  308.222223][ T6594] syz.0.18: attempt to access beyond end of device
[  308.222223][ T6594] loop0: rw=0, sector=87688, nr_sectors = 8 limit=40427
[  308.222343][ T6594] syz.0.18: attempt to access beyond end of device
[  308.222343][ T6594] loop0: rw=0, sector=87696, nr_sectors = 8 limit=40427
[  308.222482][ T6594] syz.0.18: attempt to access beyond end of device
[  308.222482][ T6594] loop0: rw=0, sector=87704, nr_sectors = 8 limit=40427
[  308.222602][ T6594] syz.0.18: attempt to access beyond end of device
[  308.222602][ T6594] loop0: rw=0, sector=87712, nr_sectors = 8 limit=40427
[  308.222756][ T6594] syz.0.18: attempt to access beyond end of device
[  308.222756][ T6594] loop0: rw=0, sector=87720, nr_sectors = 8 limit=40427
[  308.689043][ T6902] F2FS-fs (loop3): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[  309.311005][ T6971] loop4: detected capacity change from 0 to 40427
[  309.337619][ T6971] F2FS-fs (loop4): invalid crc value
[  309.756228][ T6971] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  309.823043][ T6971] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
2026/02/08 20:15:28 executed programs: 33
[  310.460889][ T6911] CPU: 0 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  310.460918][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  310.460929][ T6911] Call Trace:
[  310.460936][ T6911]  <TASK>
[  310.460944][ T6911]  dump_stack_lvl+0xe8/0x150
[  310.460974][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  310.461007][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  310.461040][ T6911]  __submit_merged_bio+0x256/0x650
[  310.461072][ T6911]  __submit_merged_write_cond+0x269/0x530
[  310.461103][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  310.461121][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  310.461175][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  310.461250][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  310.461287][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  310.461310][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  310.461332][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  310.461354][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  310.461374][ T6911]  ? reacquire_held_locks+0x104/0x190
[  310.461395][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  310.461420][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  310.461442][ T6911]  ? rt_spin_unlock+0x160/0x200
[  310.461460][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  310.461480][ T6911]  do_writepages+0x32e/0x550
[  310.461502][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  310.461523][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  310.461551][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  310.461573][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  310.461590][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  310.461642][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  310.461668][ T6911]  ? rt_spin_unlock+0x160/0x200
[  310.461690][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  310.461723][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  310.461771][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  310.461841][ T6911]  kill_f2fs_super+0x308/0x710
[  310.461866][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  310.461908][ T6911]  deactivate_locked_super+0xbc/0x130
[  310.461931][ T6911]  cleanup_mnt+0x437/0x4d0
[  310.461950][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  310.461976][ T6911]  task_work_run+0x1d9/0x270
[  310.462002][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  310.462034][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  310.462054][ T6911]  ? rcu_is_watching+0x15/0xb0
[  310.462080][ T6911]  do_syscall_64+0x2b7/0xf80
[  310.462102][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.462119][ T6911]  ? trace_irq_disable+0x37/0x100
[  310.462141][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  310.462162][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.462179][ T6911] RIP: 0033:0x7fbb94a3c157
[  310.462218][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  310.462235][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  310.462255][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  310.462267][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  310.462279][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  310.462291][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  310.462303][ T6911] R13: 00007fbb94acf33b R14: 000000000004baf0 R15: 00007ffd558b17b0
[  310.462334][ T6911]  </TASK>
[  310.462341][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  312.881262][ T6982] loop4: detected capacity change from 0 to 40427
[  312.900694][ T6982] F2FS-fs (loop4): invalid crc value
[  313.229434][ T6902] bio_check_eod: 52236 callbacks suppressed
[  313.229455][ T6902] syz.3.43: attempt to access beyond end of device
[  313.229455][ T6902] loop3: rw=0, sector=87472, nr_sectors = 8 limit=40427
[  313.229581][ T6902] syz.3.43: attempt to access beyond end of device
[  313.229581][ T6902] loop3: rw=0, sector=87480, nr_sectors = 8 limit=40427
[  313.229702][ T6902] syz.3.43: attempt to access beyond end of device
[  313.229702][ T6902] loop3: rw=0, sector=87488, nr_sectors = 8 limit=40427
[  313.229821][ T6902] syz.3.43: attempt to access beyond end of device
[  313.229821][ T6902] loop3: rw=0, sector=87496, nr_sectors = 8 limit=40427
[  313.229976][ T6902] syz.3.43: attempt to access beyond end of device
[  313.229976][ T6902] loop3: rw=0, sector=87504, nr_sectors = 8 limit=40427
[  313.230097][ T6902] syz.3.43: attempt to access beyond end of device
[  313.230097][ T6902] loop3: rw=0, sector=87512, nr_sectors = 8 limit=40427
[  313.230216][ T6902] syz.3.43: attempt to access beyond end of device
[  313.230216][ T6902] loop3: rw=0, sector=87520, nr_sectors = 8 limit=40427
[  313.230335][ T6902] syz.3.43: attempt to access beyond end of device
[  313.230335][ T6902] loop3: rw=0, sector=87528, nr_sectors = 8 limit=40427
[  313.230455][ T6902] syz.3.43: attempt to access beyond end of device
[  313.230455][ T6902] loop3: rw=0, sector=87536, nr_sectors = 8 limit=40427
[  313.230574][ T6902] syz.3.43: attempt to access beyond end of device
[  313.230574][ T6902] loop3: rw=0, sector=87544, nr_sectors = 8 limit=40427
[  313.455899][ T6982] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  313.510828][ T6982] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  314.383352][   T37] audit: type=1800 audit(1770581732.056:10): pid=6988 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.48" name="file1" dev="loop4" ino=10 res=0 errno=0
[  314.540084][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  314.540113][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  314.540125][ T6911] Call Trace:
[  314.540132][ T6911]  <TASK>
[  314.540140][ T6911]  dump_stack_lvl+0xe8/0x150
[  314.540169][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  314.540201][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  314.540235][ T6911]  __submit_merged_bio+0x256/0x650
[  314.540267][ T6911]  __submit_merged_write_cond+0x269/0x530
[  314.540298][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  314.540316][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  314.540365][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  314.540432][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  314.540469][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  314.540493][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  314.540516][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  314.540538][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  314.540557][ T6911]  ? reacquire_held_locks+0x104/0x190
[  314.540578][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  314.540604][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  314.540627][ T6911]  ? rt_spin_unlock+0x160/0x200
[  314.540645][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  314.540666][ T6911]  do_writepages+0x32e/0x550
[  314.540687][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  314.540708][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  314.540736][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  314.540760][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  314.540778][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  314.540838][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  314.540866][ T6911]  ? rt_spin_unlock+0x160/0x200
[  314.540887][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  314.540921][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  314.540969][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  314.541040][ T6911]  kill_f2fs_super+0x308/0x710
[  314.541065][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  314.541107][ T6911]  deactivate_locked_super+0xbc/0x130
[  314.541131][ T6911]  cleanup_mnt+0x437/0x4d0
[  314.541150][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  314.541175][ T6911]  task_work_run+0x1d9/0x270
[  314.541201][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  314.541233][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  314.541254][ T6911]  ? rcu_is_watching+0x15/0xb0
[  314.541279][ T6911]  do_syscall_64+0x2b7/0xf80
[  314.541301][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.541319][ T6911]  ? trace_irq_disable+0x37/0x100
[  314.541340][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  314.541363][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.541380][ T6911] RIP: 0033:0x7fbb94a3c157
[  314.541397][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  314.541413][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  314.541433][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  314.541446][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  314.541458][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  314.541471][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  314.541482][ T6911] R13: 00007fbb94acf33b R14: 000000000004c978 R15: 00007ffd558b17b0
[  314.541513][ T6911]  </TASK>
[  314.541520][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  317.035899][ T6991] loop4: detected capacity change from 0 to 40427
[  317.101428][ T6991] F2FS-fs (loop4): invalid crc value
[  317.184293][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  317.184360][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  317.426321][ T6991] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  317.450412][ T6991] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  318.239550][ T6835] bio_check_eod: 54465 callbacks suppressed
[  318.239571][ T6835] syz.2.38: attempt to access beyond end of device
[  318.239571][ T6835] loop2: rw=0, sector=86520, nr_sectors = 8 limit=40427
[  318.239699][ T6835] syz.2.38: attempt to access beyond end of device
[  318.239699][ T6835] loop2: rw=0, sector=86528, nr_sectors = 8 limit=40427
[  318.239818][ T6835] syz.2.38: attempt to access beyond end of device
[  318.239818][ T6835] loop2: rw=0, sector=86536, nr_sectors = 8 limit=40427
[  318.239935][ T6835] syz.2.38: attempt to access beyond end of device
[  318.239935][ T6835] loop2: rw=0, sector=86544, nr_sectors = 8 limit=40427
[  318.240082][ T6835] syz.2.38: attempt to access beyond end of device
[  318.240082][ T6835] loop2: rw=0, sector=86552, nr_sectors = 8 limit=40427
[  318.240203][ T6835] syz.2.38: attempt to access beyond end of device
[  318.240203][ T6835] loop2: rw=0, sector=86560, nr_sectors = 8 limit=40427
[  318.240322][ T6835] syz.2.38: attempt to access beyond end of device
[  318.240322][ T6835] loop2: rw=0, sector=86568, nr_sectors = 8 limit=40427
[  318.240439][ T6835] syz.2.38: attempt to access beyond end of device
[  318.240439][ T6835] loop2: rw=0, sector=86576, nr_sectors = 8 limit=40427
[  318.240563][ T6835] syz.2.38: attempt to access beyond end of device
[  318.240563][ T6835] loop2: rw=0, sector=86584, nr_sectors = 8 limit=40427
[  318.240683][ T6835] syz.2.38: attempt to access beyond end of device
[  318.240683][ T6835] loop2: rw=0, sector=86592, nr_sectors = 8 limit=40427
2026/02/08 20:15:36 executed programs: 35
[  318.650844][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  318.650870][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  318.650881][ T6911] Call Trace:
[  318.650888][ T6911]  <TASK>
[  318.650896][ T6911]  dump_stack_lvl+0xe8/0x150
[  318.650926][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  318.650957][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  318.650990][ T6911]  __submit_merged_bio+0x256/0x650
[  318.651021][ T6911]  __submit_merged_write_cond+0x269/0x530
[  318.651053][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  318.651071][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  318.651126][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  318.651193][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  318.651230][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  318.651254][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  318.651277][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  318.651299][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  318.651318][ T6911]  ? reacquire_held_locks+0x104/0x190
[  318.651339][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  318.651364][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  318.651388][ T6911]  ? rt_spin_unlock+0x160/0x200
[  318.651406][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  318.651426][ T6911]  do_writepages+0x32e/0x550
[  318.651447][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  318.651478][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  318.651506][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  318.651530][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  318.651548][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  318.651600][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  318.651627][ T6911]  ? rt_spin_unlock+0x160/0x200
[  318.651649][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  318.651682][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  318.651729][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  318.651800][ T6911]  kill_f2fs_super+0x308/0x710
[  318.651826][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  318.651868][ T6911]  deactivate_locked_super+0xbc/0x130
[  318.651891][ T6911]  cleanup_mnt+0x437/0x4d0
[  318.651911][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  318.651937][ T6911]  task_work_run+0x1d9/0x270
[  318.651962][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  318.651995][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  318.652016][ T6911]  ? rcu_is_watching+0x15/0xb0
[  318.652041][ T6911]  do_syscall_64+0x2b7/0xf80
[  318.652062][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.652080][ T6911]  ? trace_irq_disable+0x37/0x100
[  318.652101][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  318.652122][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.652140][ T6911] RIP: 0033:0x7fbb94a3c157
[  318.652157][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  318.652174][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  318.652194][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  318.652206][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  318.652217][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  318.652230][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  318.652241][ T6911] R13: 00007fbb94acf33b R14: 000000000004d97d R15: 00007ffd558b17b0
[  318.652272][ T6911]  </TASK>
[  318.652636][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  319.266876][   T62] Bluetooth: hci2: command 0x0406 tx timeout
[  321.002141][ T7000] loop4: detected capacity change from 0 to 40427
[  321.071023][ T7000] F2FS-fs (loop4): invalid crc value
[  321.464148][ T7000] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  321.470654][ T7000] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  322.413448][ T6911] CPU: 0 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  322.413476][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  322.413486][ T6911] Call Trace:
[  322.413493][ T6911]  <TASK>
[  322.413501][ T6911]  dump_stack_lvl+0xe8/0x150
[  322.413530][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  322.413561][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  322.413594][ T6911]  __submit_merged_bio+0x256/0x650
[  322.413625][ T6911]  __submit_merged_write_cond+0x269/0x530
[  322.413656][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  322.413675][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  322.413730][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  322.413794][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  322.413831][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  322.413857][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  322.413879][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  322.413902][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  322.413921][ T6911]  ? reacquire_held_locks+0x104/0x190
[  322.413942][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  322.413968][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  322.413999][ T6911]  ? rt_spin_unlock+0x160/0x200
[  322.414018][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  322.414038][ T6911]  do_writepages+0x32e/0x550
[  322.414059][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  322.414080][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  322.414108][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  322.414133][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  322.414151][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  322.414203][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  322.414231][ T6911]  ? rt_spin_unlock+0x160/0x200
[  322.414252][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  322.414286][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  322.414335][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  322.414406][ T6911]  kill_f2fs_super+0x308/0x710
[  322.414432][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  322.414474][ T6911]  deactivate_locked_super+0xbc/0x130
[  322.414497][ T6911]  cleanup_mnt+0x437/0x4d0
[  322.414516][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  322.414542][ T6911]  task_work_run+0x1d9/0x270
[  322.414567][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  322.414599][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  322.414620][ T6911]  ? rcu_is_watching+0x15/0xb0
[  322.414644][ T6911]  do_syscall_64+0x2b7/0xf80
[  322.414666][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.414683][ T6911]  ? trace_irq_disable+0x37/0x100
[  322.414705][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  322.414727][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.414745][ T6911] RIP: 0033:0x7fbb94a3c157
[  322.414762][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  322.414779][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  322.414799][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  322.414812][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  322.414823][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  322.414837][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  322.414848][ T6911] R13: 00007fbb94acf33b R14: 000000000004e8c7 R15: 00007ffd558b17b0
[  322.414880][ T6911]  </TASK>
[  322.414887][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  323.249487][ T6594] bio_check_eod: 52482 callbacks suppressed
[  323.249508][ T6594] syz.0.18: attempt to access beyond end of device
[  323.249508][ T6594] loop0: rw=524288, sector=86336, nr_sectors = 8 limit=40427
[  323.249646][ T6594] syz.0.18: attempt to access beyond end of device
[  323.249646][ T6594] loop0: rw=524288, sector=86344, nr_sectors = 8 limit=40427
[  323.249763][ T6594] syz.0.18: attempt to access beyond end of device
[  323.249763][ T6594] loop0: rw=524288, sector=86352, nr_sectors = 8 limit=40427
[  323.249880][ T6594] syz.0.18: attempt to access beyond end of device
[  323.249880][ T6594] loop0: rw=524288, sector=86360, nr_sectors = 8 limit=40427
[  323.250011][ T6594] syz.0.18: attempt to access beyond end of device
[  323.250011][ T6594] loop0: rw=524288, sector=86368, nr_sectors = 8 limit=40427
[  323.250126][ T6594] syz.0.18: attempt to access beyond end of device
[  323.250126][ T6594] loop0: rw=524288, sector=86376, nr_sectors = 8 limit=40427
[  323.250242][ T6594] syz.0.18: attempt to access beyond end of device
[  323.250242][ T6594] loop0: rw=524288, sector=86384, nr_sectors = 8 limit=40427
[  323.250358][ T6594] syz.0.18: attempt to access beyond end of device
[  323.250358][ T6594] loop0: rw=524288, sector=86392, nr_sectors = 8 limit=40427
[  323.250473][ T6594] syz.0.18: attempt to access beyond end of device
[  323.250473][ T6594] loop0: rw=524288, sector=86400, nr_sectors = 8 limit=40427
[  323.250609][ T6594] syz.0.18: attempt to access beyond end of device
[  323.250609][ T6594] loop0: rw=524288, sector=86408, nr_sectors = 8 limit=40427
[  324.892842][ T7009] loop4: detected capacity change from 0 to 40427
[  324.910853][ T7009] F2FS-fs (loop4): invalid crc value
[  325.346461][ T7009] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  325.366065][ T7009] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
2026/02/08 20:15:43 executed programs: 37
[  326.195517][ T6911] CPU: 0 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  326.195547][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  326.195558][ T6911] Call Trace:
[  326.195566][ T6911]  <TASK>
[  326.195574][ T6911]  dump_stack_lvl+0xe8/0x150
[  326.195602][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  326.195635][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  326.195670][ T6911]  __submit_merged_bio+0x256/0x650
[  326.195701][ T6911]  __submit_merged_write_cond+0x269/0x530
[  326.195733][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  326.195783][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  326.195843][ T6911]  ? irqentry_exit+0x59c/0x620
[  326.195874][ T6911]  ? trace_irq_disable+0x37/0x100
[  326.195902][ T6911]  ? preempt_schedule_thunk+0x16/0x30
[  326.195936][ T6911]  ? _raw_spin_unlock_irqrestore+0x74/0x80
[  326.195960][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  326.195979][ T6911]  ? reacquire_held_locks+0x104/0x190
[  326.196000][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  326.196026][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  326.196050][ T6911]  ? rt_spin_unlock+0x160/0x200
[  326.196067][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  326.196088][ T6911]  do_writepages+0x32e/0x550
[  326.196109][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  326.196130][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  326.196158][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  326.196183][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  326.196201][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  326.196254][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  326.196281][ T6911]  ? rt_spin_unlock+0x160/0x200
[  326.196303][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  326.196338][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  326.196386][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  326.196457][ T6911]  kill_f2fs_super+0x308/0x710
[  326.196483][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  326.196525][ T6911]  deactivate_locked_super+0xbc/0x130
[  326.196547][ T6911]  cleanup_mnt+0x437/0x4d0
[  326.196566][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  326.196592][ T6911]  task_work_run+0x1d9/0x270
[  326.196617][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  326.196649][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  326.196670][ T6911]  ? rcu_is_watching+0x15/0xb0
[  326.196696][ T6911]  do_syscall_64+0x2b7/0xf80
[  326.196717][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.196735][ T6911]  ? trace_irq_disable+0x37/0x100
[  326.196755][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  326.196777][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.196795][ T6911] RIP: 0033:0x7fbb94a3c157
[  326.196813][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  326.196828][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  326.196849][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  326.196867][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  326.196879][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  326.196892][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  326.196903][ T6911] R13: 00007fbb94acf33b R14: 000000000004f7fe R15: 00007ffd558b17b0
[  326.196934][ T6911]  </TASK>
[  326.196941][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  328.263800][ T6594] bio_check_eod: 51121 callbacks suppressed
[  328.263820][ T6594] syz.0.18: attempt to access beyond end of device
[  328.263820][ T6594] loop0: rw=524288, sector=87240, nr_sectors = 8 limit=40427
[  328.263957][ T6594] syz.0.18: attempt to access beyond end of device
[  328.263957][ T6594] loop0: rw=524288, sector=87248, nr_sectors = 8 limit=40427
[  328.264076][ T6594] syz.0.18: attempt to access beyond end of device
[  328.264076][ T6594] loop0: rw=524288, sector=87256, nr_sectors = 8 limit=40427
[  328.264192][ T6594] syz.0.18: attempt to access beyond end of device
[  328.264192][ T6594] loop0: rw=524288, sector=87264, nr_sectors = 8 limit=40427
[  328.264307][ T6594] syz.0.18: attempt to access beyond end of device
[  328.264307][ T6594] loop0: rw=524288, sector=87272, nr_sectors = 8 limit=40427
[  328.264423][ T6594] syz.0.18: attempt to access beyond end of device
[  328.264423][ T6594] loop0: rw=524288, sector=87280, nr_sectors = 8 limit=40427
[  328.264539][ T6594] syz.0.18: attempt to access beyond end of device
[  328.264539][ T6594] loop0: rw=524288, sector=87288, nr_sectors = 8 limit=40427
[  328.264661][ T6594] syz.0.18: attempt to access beyond end of device
[  328.264661][ T6594] loop0: rw=524288, sector=87296, nr_sectors = 8 limit=40427
[  328.264777][ T6594] syz.0.18: attempt to access beyond end of device
[  328.264777][ T6594] loop0: rw=524288, sector=87304, nr_sectors = 8 limit=40427
[  328.264850][ T6902] syz.3.43: attempt to access beyond end of device
[  328.264850][ T6902] loop3: rw=524288, sector=88536, nr_sectors = 8 limit=40427
[  328.783861][ T7018] loop4: detected capacity change from 0 to 40427
[  328.877000][ T7018] F2FS-fs (loop4): invalid crc value
[  329.246314][ T7018] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  329.275517][ T7018] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  330.019388][   T37] audit: type=1800 audit(1770581747.646:11): pid=7025 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.52" name="file1" dev="loop4" ino=10 res=0 errno=0
[  330.100273][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  330.100302][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  330.100313][ T6911] Call Trace:
[  330.100320][ T6911]  <TASK>
[  330.100328][ T6911]  dump_stack_lvl+0xe8/0x150
[  330.100357][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  330.100390][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  330.100425][ T6911]  __submit_merged_bio+0x256/0x650
[  330.100464][ T6911]  __submit_merged_write_cond+0x269/0x530
[  330.100496][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  330.100514][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  330.100569][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  330.100636][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  330.100673][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  330.100698][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  330.100720][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  330.100742][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  330.100761][ T6911]  ? reacquire_held_locks+0x104/0x190
[  330.100782][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  330.100808][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  330.100832][ T6911]  ? rt_spin_unlock+0x160/0x200
[  330.100850][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  330.100870][ T6911]  do_writepages+0x32e/0x550
[  330.100892][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  330.100913][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  330.100942][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  330.100966][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  330.100984][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  330.101037][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  330.101064][ T6911]  ? rt_spin_unlock+0x160/0x200
[  330.101085][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  330.101119][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  330.101167][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  330.101236][ T6911]  kill_f2fs_super+0x308/0x710
[  330.101263][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  330.101305][ T6911]  deactivate_locked_super+0xbc/0x130
[  330.101327][ T6911]  cleanup_mnt+0x437/0x4d0
[  330.101347][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  330.101372][ T6911]  task_work_run+0x1d9/0x270
[  330.101398][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  330.101431][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  330.101456][ T6911]  ? rcu_is_watching+0x15/0xb0
[  330.101481][ T6911]  do_syscall_64+0x2b7/0xf80
[  330.101504][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.101520][ T6911]  ? trace_irq_disable+0x37/0x100
[  330.101541][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  330.101562][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.101580][ T6911] RIP: 0033:0x7fbb94a3c157
[  330.101598][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  330.101615][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  330.101635][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  330.101647][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  330.101659][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  330.101672][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  330.101683][ T6911] R13: 00007fbb94acf33b R14: 000000000005072b R15: 00007ffd558b17b0
[  330.101714][ T6911]  </TASK>
[  330.101722][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  332.447068][ T7028] loop4: detected capacity change from 0 to 40427
[  332.485753][ T7028] F2FS-fs (loop4): invalid crc value
[  332.939000][ T7028] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  332.974743][ T7028] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  333.269384][ T6594] bio_check_eod: 51592 callbacks suppressed
[  333.269405][ T6594] syz.0.18: attempt to access beyond end of device
[  333.269405][ T6594] loop0: rw=524288, sector=87752, nr_sectors = 8 limit=40427
[  333.269431][ T6647] syz.1.20: attempt to access beyond end of device
[  333.269431][ T6647] loop1: rw=0, sector=86104, nr_sectors = 8 limit=40427
[  333.269542][ T6594] syz.0.18: attempt to access beyond end of device
[  333.269542][ T6594] loop0: rw=524288, sector=87760, nr_sectors = 8 limit=40427
[  333.269551][ T6647] syz.1.20: attempt to access beyond end of device
[  333.269551][ T6647] loop1: rw=0, sector=86112, nr_sectors = 8 limit=40427
[  333.269661][ T6594] syz.0.18: attempt to access beyond end of device
[  333.269661][ T6594] loop0: rw=524288, sector=87768, nr_sectors = 8 limit=40427
[  333.269672][ T6647] syz.1.20: attempt to access beyond end of device
[  333.269672][ T6647] loop1: rw=0, sector=86120, nr_sectors = 8 limit=40427
[  333.269779][ T6594] syz.0.18: attempt to access beyond end of device
[  333.269779][ T6594] loop0: rw=524288, sector=87776, nr_sectors = 8 limit=40427
[  333.269791][ T6647] syz.1.20: attempt to access beyond end of device
[  333.269791][ T6647] loop1: rw=0, sector=86128, nr_sectors = 8 limit=40427
[  333.269897][ T6594] syz.0.18: attempt to access beyond end of device
[  333.269897][ T6594] loop0: rw=524288, sector=87784, nr_sectors = 8 limit=40427
[  333.269913][ T6647] syz.1.20: attempt to access beyond end of device
[  333.269913][ T6647] loop1: rw=0, sector=86136, nr_sectors = 8 limit=40427
2026/02/08 20:15:51 executed programs: 39
[  333.691502][ T6911] CPU: 0 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  333.691532][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  333.691543][ T6911] Call Trace:
[  333.691551][ T6911]  <TASK>
[  333.691560][ T6911]  dump_stack_lvl+0xe8/0x150
[  333.691590][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  333.691622][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  333.691656][ T6911]  __submit_merged_bio+0x256/0x650
[  333.691688][ T6911]  __submit_merged_write_cond+0x269/0x530
[  333.691719][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  333.691737][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  333.691793][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  333.691857][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  333.691894][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  333.691918][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  333.691940][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  333.691962][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  333.691982][ T6911]  ? reacquire_held_locks+0x104/0x190
[  333.692002][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  333.692029][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  333.692052][ T6911]  ? rt_spin_unlock+0x160/0x200
[  333.692070][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  333.692097][ T6911]  do_writepages+0x32e/0x550
[  333.692119][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  333.692140][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  333.692168][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  333.692192][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  333.692211][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  333.692264][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  333.692291][ T6911]  ? rt_spin_unlock+0x160/0x200
[  333.692313][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  333.692347][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  333.692395][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  333.692466][ T6911]  kill_f2fs_super+0x308/0x710
[  333.692493][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  333.692535][ T6911]  deactivate_locked_super+0xbc/0x130
[  333.692557][ T6911]  cleanup_mnt+0x437/0x4d0
[  333.692577][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  333.692602][ T6911]  task_work_run+0x1d9/0x270
[  333.692628][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  333.692660][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  333.692680][ T6911]  ? rcu_is_watching+0x15/0xb0
[  333.692705][ T6911]  do_syscall_64+0x2b7/0xf80
[  333.692727][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.692751][ T6911]  ? trace_irq_disable+0x37/0x100
[  333.692772][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  333.692794][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.692811][ T6911] RIP: 0033:0x7fbb94a3c157
[  333.692829][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  333.692844][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  333.692864][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  333.692877][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  333.692889][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  333.692901][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  333.692913][ T6911] R13: 00007fbb94acf33b R14: 000000000005157a R15: 00007ffd558b17b0
[  333.692944][ T6911]  </TASK>
[  333.692952][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  335.851670][ T7037] loop4: detected capacity change from 0 to 40427
[  335.910979][ T7037] F2FS-fs (loop4): invalid crc value
[  336.256317][ T7037] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  336.280428][ T7037] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  337.154019][   T37] audit: type=1800 audit(1770581754.826:12): pid=7043 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.54" name="file1" dev="loop4" ino=10 res=0 errno=0
[  337.221724][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  337.221753][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  337.221763][ T6911] Call Trace:
[  337.221771][ T6911]  <TASK>
[  337.221779][ T6911]  dump_stack_lvl+0xe8/0x150
[  337.221809][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  337.221841][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  337.221876][ T6911]  __submit_merged_bio+0x256/0x650
[  337.221907][ T6911]  __submit_merged_write_cond+0x269/0x530
[  337.221939][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  337.221957][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  337.222012][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  337.222078][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  337.222114][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  337.222138][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  337.222161][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  337.222183][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  337.222203][ T6911]  ? reacquire_held_locks+0x104/0x190
[  337.222223][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  337.222249][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  337.222272][ T6911]  ? rt_spin_unlock+0x160/0x200
[  337.222290][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  337.222310][ T6911]  do_writepages+0x32e/0x550
[  337.222332][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  337.222354][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  337.222382][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  337.222407][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  337.222425][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  337.222477][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  337.222512][ T6911]  ? rt_spin_unlock+0x160/0x200
[  337.222534][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  337.222568][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  337.222616][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  337.222687][ T6911]  kill_f2fs_super+0x308/0x710
[  337.222713][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  337.222755][ T6911]  deactivate_locked_super+0xbc/0x130
[  337.222777][ T6911]  cleanup_mnt+0x437/0x4d0
[  337.222796][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  337.222822][ T6911]  task_work_run+0x1d9/0x270
[  337.222847][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  337.222879][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  337.222899][ T6911]  ? rcu_is_watching+0x15/0xb0
[  337.222924][ T6911]  do_syscall_64+0x2b7/0xf80
[  337.222946][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.222964][ T6911]  ? trace_irq_disable+0x37/0x100
[  337.222985][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  337.223007][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.223025][ T6911] RIP: 0033:0x7fbb94a3c157
[  337.223043][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  337.223059][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  337.223076][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  337.223089][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  337.223101][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  337.223113][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  337.223125][ T6911] R13: 00007fbb94acf33b R14: 00000000000522bd R15: 00007ffd558b17b0
[  337.223156][ T6911]  </TASK>
[  337.223163][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  338.282145][ T6647] bio_check_eod: 51148 callbacks suppressed
[  338.282163][ T6647] syz.1.20: attempt to access beyond end of device
[  338.282163][ T6647] loop1: rw=524288, sector=88680, nr_sectors = 8 limit=40427
[  338.282281][ T6647] syz.1.20: attempt to access beyond end of device
[  338.282281][ T6647] loop1: rw=524288, sector=88688, nr_sectors = 8 limit=40427
[  338.282398][ T6647] syz.1.20: attempt to access beyond end of device
[  338.282398][ T6647] loop1: rw=524288, sector=88696, nr_sectors = 8 limit=40427
[  338.282509][ T6647] syz.1.20: attempt to access beyond end of device
[  338.282509][ T6647] loop1: rw=524288, sector=88704, nr_sectors = 8 limit=40427
[  338.282624][ T6647] syz.1.20: attempt to access beyond end of device
[  338.282624][ T6647] loop1: rw=524288, sector=88712, nr_sectors = 8 limit=40427
[  338.282818][ T6647] syz.1.20: attempt to access beyond end of device
[  338.282818][ T6647] loop1: rw=524288, sector=88720, nr_sectors = 8 limit=40427
[  338.282935][ T6647] syz.1.20: attempt to access beyond end of device
[  338.282935][ T6647] loop1: rw=524288, sector=88728, nr_sectors = 8 limit=40427
[  338.283047][ T6647] syz.1.20: attempt to access beyond end of device
[  338.283047][ T6647] loop1: rw=524288, sector=88736, nr_sectors = 8 limit=40427
[  338.283156][ T6647] syz.1.20: attempt to access beyond end of device
[  338.283156][ T6647] loop1: rw=524288, sector=88744, nr_sectors = 8 limit=40427
[  338.283267][ T6647] syz.1.20: attempt to access beyond end of device
[  338.283267][ T6647] loop1: rw=524288, sector=88752, nr_sectors = 8 limit=40427
[  339.186106][ T7046] loop4: detected capacity change from 0 to 40427
[  339.231113][ T7046] F2FS-fs (loop4): invalid crc value
[  339.624981][ T7046] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  339.677729][ T7046] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  340.316678][   T37] audit: type=1800 audit(1770581757.986:13): pid=7052 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.55" name="file1" dev="loop4" ino=10 res=0 errno=0
2026/02/08 20:15:58 executed programs: 41
[  340.460916][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  340.460945][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  340.460955][ T6911] Call Trace:
[  340.460963][ T6911]  <TASK>
[  340.460971][ T6911]  dump_stack_lvl+0xe8/0x150
[  340.460999][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  340.461031][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  340.461065][ T6911]  __submit_merged_bio+0x256/0x650
[  340.461106][ T6911]  __submit_merged_write_cond+0x269/0x530
[  340.461135][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  340.461151][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  340.461209][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  340.461269][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  340.461304][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  340.461328][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  340.461349][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  340.461372][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  340.461391][ T6911]  ? reacquire_held_locks+0x104/0x190
[  340.461411][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  340.461436][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  340.461459][ T6911]  ? rt_spin_unlock+0x160/0x200
[  340.461476][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  340.461497][ T6911]  do_writepages+0x32e/0x550
[  340.461518][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  340.461540][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  340.461569][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  340.461593][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  340.461611][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  340.461663][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  340.461690][ T6911]  ? rt_spin_unlock+0x160/0x200
[  340.461712][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  340.461746][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  340.461795][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  340.461865][ T6911]  kill_f2fs_super+0x308/0x710
[  340.461891][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  340.461933][ T6911]  deactivate_locked_super+0xbc/0x130
[  340.461956][ T6911]  cleanup_mnt+0x437/0x4d0
[  340.461984][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  340.462010][ T6911]  task_work_run+0x1d9/0x270
[  340.462037][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  340.462069][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  340.462090][ T6911]  ? rcu_is_watching+0x15/0xb0
[  340.462115][ T6911]  do_syscall_64+0x2b7/0xf80
[  340.462137][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.462154][ T6911]  ? trace_irq_disable+0x37/0x100
[  340.462182][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  340.462204][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.462221][ T6911] RIP: 0033:0x7fbb94a3c157
[  340.462240][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  340.462256][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  340.462276][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  340.462289][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  340.462300][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  340.462313][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  340.462325][ T6911] R13: 00007fbb94acf33b R14: 0000000000052f6c R15: 00007ffd558b17b0
[  340.462356][ T6911]  </TASK>
[  340.462363][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  342.830324][ T7055] loop4: detected capacity change from 0 to 40427
[  342.879768][ T7055] F2FS-fs (loop4): invalid crc value
[  343.076278][ T7055] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  343.109449][ T7055] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  343.291522][ T6835] bio_check_eod: 50834 callbacks suppressed
[  343.291544][ T6835] syz.2.38: attempt to access beyond end of device
[  343.291544][ T6835] loop2: rw=0, sector=89504, nr_sectors = 8 limit=40427
[  343.291680][ T6835] syz.2.38: attempt to access beyond end of device
[  343.291680][ T6835] loop2: rw=0, sector=89512, nr_sectors = 8 limit=40427
[  343.291805][ T6835] syz.2.38: attempt to access beyond end of device
[  343.291805][ T6835] loop2: rw=0, sector=89520, nr_sectors = 8 limit=40427
[  343.291932][ T6835] syz.2.38: attempt to access beyond end of device
[  343.291932][ T6835] loop2: rw=0, sector=89528, nr_sectors = 8 limit=40427
[  343.292052][ T6835] syz.2.38: attempt to access beyond end of device
[  343.292052][ T6835] loop2: rw=0, sector=89536, nr_sectors = 8 limit=40427
[  343.292171][ T6835] syz.2.38: attempt to access beyond end of device
[  343.292171][ T6835] loop2: rw=0, sector=89544, nr_sectors = 8 limit=40427
[  343.292291][ T6835] syz.2.38: attempt to access beyond end of device
[  343.292291][ T6835] loop2: rw=0, sector=89552, nr_sectors = 8 limit=40427
[  343.292411][ T6835] syz.2.38: attempt to access beyond end of device
[  343.292411][ T6835] loop2: rw=0, sector=89560, nr_sectors = 8 limit=40427
[  343.292530][ T6835] syz.2.38: attempt to access beyond end of device
[  343.292530][ T6835] loop2: rw=0, sector=89568, nr_sectors = 8 limit=40427
[  343.292679][ T6835] syz.2.38: attempt to access beyond end of device
[  343.292679][ T6835] loop2: rw=0, sector=89576, nr_sectors = 8 limit=40427
[  343.820634][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  343.820664][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  343.820675][ T6911] Call Trace:
[  343.820682][ T6911]  <TASK>
[  343.820690][ T6911]  dump_stack_lvl+0xe8/0x150
[  343.820721][ T6911]  f2fs_handle_critical_error+0x354/0x510
[  343.820752][ T6911]  f2fs_write_end_io+0xc1d/0xfd0
[  343.820787][ T6911]  __submit_merged_bio+0x256/0x650
[  343.820826][ T6911]  __submit_merged_write_cond+0x269/0x530
[  343.820858][ T6911]  f2fs_write_data_pages+0x2806/0x3360
[  343.820876][ T6911]  ? is_bpf_text_address+0x26/0x2b0
[  343.820931][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  343.820997][ T6911]  ? do_raw_spin_lock+0x12b/0x2f0
[  343.821034][ T6911]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  343.821058][ T6911]  ? lockdep_hardirqs_on+0x7a/0x110
[  343.821078][ T6911]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  343.821101][ T6911]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  343.821120][ T6911]  ? reacquire_held_locks+0x104/0x190
[  343.821140][ T6911]  ? rt_spin_lock+0x1e0/0x400
[  343.821167][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  343.821190][ T6911]  ? rt_spin_unlock+0x160/0x200
[  343.821207][ T6911]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  343.821227][ T6911]  do_writepages+0x32e/0x550
[  343.821249][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  343.821271][ T6911]  ? rt_spin_unlock+0x14f/0x200
[  343.821299][ T6911]  filemap_fdatawrite+0x1ec/0x2f0
[  343.821323][ T6911]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  343.821342][ T6911]  ? __lock_acquire+0x6b5/0x2cf0
[  343.821395][ T6911]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  343.821421][ T6911]  ? rt_spin_unlock+0x160/0x200
[  343.821443][ T6911]  f2fs_sync_dirty_inodes+0x30e/0x810
[  343.821476][ T6911]  f2fs_write_checkpoint+0x9c6/0x2490
[  343.821525][ T6911]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  343.821596][ T6911]  kill_f2fs_super+0x308/0x710
[  343.821622][ T6911]  ? __pfx_kill_f2fs_super+0x10/0x10
[  343.821664][ T6911]  deactivate_locked_super+0xbc/0x130
[  343.821687][ T6911]  cleanup_mnt+0x437/0x4d0
[  343.821707][ T6911]  ? _raw_spin_unlock_irq+0x23/0x50
[  343.821733][ T6911]  task_work_run+0x1d9/0x270
[  343.821758][ T6911]  ? __pfx_task_work_run+0x10/0x10
[  343.821791][ T6911]  exit_to_user_mode_loop+0xed/0x480
[  343.821818][ T6911]  ? rcu_is_watching+0x15/0xb0
[  343.821843][ T6911]  do_syscall_64+0x2b7/0xf80
[  343.821864][ T6911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.821881][ T6911]  ? trace_irq_disable+0x37/0x100
[  343.821902][ T6911]  ? clear_bhb_loop+0x60/0xb0
[  343.821924][ T6911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.821942][ T6911] RIP: 0033:0x7fbb94a3c157
[  343.821961][ T6911] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  343.821977][ T6911] RSP: 002b:00007ffd558b0628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  343.821998][ T6911] RAX: 0000000000000000 RBX: 00007fbb94acf33b RCX: 00007fbb94a3c157
[  343.822011][ T6911] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd558b06e0
[  343.822022][ T6911] RBP: 00007ffd558b06e0 R08: 00007ffd558b16e0 R09: 00000000ffffffff
[  343.822035][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd558b1770
[  343.822047][ T6911] R13: 00007fbb94acf33b R14: 0000000000053d2d R15: 00007ffd558b17b0
[  343.822077][ T6911]  </TASK>
[  343.822084][ T6911] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  345.339587][   T38] INFO: task kworker/u8:20:4332 blocked for more than 143 seconds.
[  345.339610][   T38]       Not tainted syzkaller #0
[  345.339621][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  345.339630][   T38] task:kworker/u8:20   state:D stack:20056 pid:4332  tgid:4332  ppid:2      task_flags:0x4208060 flags:0x00080000
[  345.339689][   T38] Workqueue: writeback wb_workfn (flush-7:0)
[  345.339719][   T38] Call Trace:
[  345.339725][   T38]  <TASK>
[  345.339737][   T38]  __schedule+0x1498/0x5140
[  345.339768][   T38]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  345.339798][   T38]  ? rcu_is_watching+0x15/0xb0
[  345.339830][   T38]  ? __pfx___schedule+0x10/0x10
[  345.339854][   T38]  ? __rt_mutex_slowlock_locked+0x1e2/0x25c0
[  345.339890][   T38]  rt_mutex_schedule+0x76/0xf0
[  345.339920][   T38]  ? __rt_mutex_slowlock_locked+0x1e2/0x25c0
[  345.339944][   T38]  __rt_mutex_slowlock_locked+0x1f8f/0x25c0
[  345.339982][   T38]  ? __rt_mutex_slowlock_locked+0x1e2/0x25c0
[  345.340012][   T38]  ? __pfx___rt_mutex_slowlock_locked+0x10/0x10
[  345.340059][   T38]  rt_mutex_slowlock+0xbd/0x170
[  345.340086][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  345.340115][   T38]  ? f2fs_balance_fs+0x5d8/0x800
[  345.340145][   T38]  rwbase_write_lock+0x14d/0x730
[  345.340180][   T38]  f2fs_balance_fs+0x5d8/0x800
[  345.340208][   T38]  ? f2fs_write_inode+0x3fb/0x5f0
[  345.340232][   T38]  ? __pfx_f2fs_balance_fs+0x10/0x10
[  345.340264][   T38]  ? folio_unlock+0x101/0x160
[  345.340288][   T38]  ? f2fs_update_inode_page+0x247/0x2e0
[  345.340311][   T38]  ? f2fs_write_inode+0x3b2/0x5f0
[  345.340338][   T38]  f2fs_write_inode+0x3fb/0x5f0
[  345.340364][   T38]  __writeback_single_inode+0x7e4/0x1230
[  345.340396][   T38]  writeback_sb_inodes+0x92e/0x1910
[  345.340443][   T38]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  345.340499][   T38]  ? __pfx_down_read_trylock+0x10/0x10
[  345.340526][   T38]  ? __pfx_move_expired_inodes+0x10/0x10
[  345.340547][   T38]  ? preempt_count_add+0x91/0x190
[  345.340579][   T38]  __writeback_inodes_wb+0x111/0x240
[  345.340610][   T38]  wb_writeback+0x459/0xad0
[  345.340637][   T38]  ? queue_io+0x291/0x420
[  345.340666][   T38]  ? __pfx_wb_writeback+0x10/0x10
[  345.340709][   T38]  wb_workfn+0xaf3/0xf00
[  345.340727][   T38]  ? __lock_acquire+0x6b5/0x2cf0
[  345.340745][   T38]  ? look_up_lock_class+0x57/0x110
[  345.340784][   T38]  ? __pfx_wb_workfn+0x10/0x10
[  345.340803][   T38]  ? finish_task_switch+0x161/0x920
[  345.340827][   T38]  ? do_raw_spin_lock+0x12b/0x2f0
[  345.340849][   T38]  ? lock_acquire+0x106/0x330
[  345.340875][   T38]  ? process_scheduled_works+0xa0f/0x17a0
[  345.340900][   T38]  ? process_scheduled_works+0xa0f/0x17a0
[  345.340925][   T38]  ? process_scheduled_works+0xa0f/0x17a0
[  345.340942][   T38]  ? process_scheduled_works+0xa0f/0x17a0
[  345.340962][   T38]  process_scheduled_works+0xaec/0x17a0
[  345.341007][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[  345.341024][   T38]  ? do_raw_spin_lock+0x12b/0x2f0
[  345.341050][   T38]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  345.341072][   T38]  ? schedule+0x90/0x360
[  345.341101][   T38]  worker_thread+0xda6/0x1360
[  345.341143][   T38]  kthread+0x726/0x8b0
[  345.341167][   T38]  ? __pfx_worker_thread+0x10/0x10
[  345.341185][   T38]  ? __pfx_kthread+0x10/0x10
[  345.341203][   T38]  ? rt_spin_unlock+0x14f/0x200
[  345.341226][   T38]  ? rt_spin_unlock+0x160/0x200
[  345.341243][   T38]  ? __pfx_kthread+0x10/0x10
[  345.341264][   T38]  ret_from_fork+0x51b/0xa40
[  345.341287][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  345.341305][   T38]  ? __switch_to+0xc82/0x1410
[  345.341334][   T38]  ? __pfx_kthread+0x10/0x10
[  345.341354][   T38]  ret_from_fork_asm+0x1a/0x30
[  345.341394][   T38]  </TASK>
[  345.341461][   T38] 
[  345.341461][   T38] Showing all locks held in the system:
[  345.341473][   T38] 1 lock held by khungtaskd/38:
[  345.341484][   T38]  #0: ffffffff8dbc77c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  345.341538][   T38] 4 locks held by kworker/1:1/49:
[  345.341567][   T38] 4 locks held by kworker/u8:11/3626:
[  345.341578][   T38]  #0: ffff888140473938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[  345.341621][   T38]  #1: ffffc9000d6dfbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[  345.341662][   T38]  #2: ffff8880282800d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[  345.341710][   T38]  #3: ffff888034539a80 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5d8/0x800
[  345.341759][   T38] 4 locks held by kworker/u8:15/3940:
[  345.341769][   T38]  #0: ffff888140473938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[  345.341811][   T38]  #1: ffffc9000e88fbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[  345.341853][   T38]  #2: ffff88802f7e60d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[  345.341906][   T38]  #3: ffff88802cc99a80 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5d8/0x800
[  345.341953][   T38] 4 locks held by kworker/u8:20/4332:
[  345.341963][   T38]  #0: ffff888140473938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[  345.342006][   T38]  #1: ffffc9000e52fbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[  345.342048][   T38]  #2: ffff88803acae0d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[  345.342095][   T38]  #3: ffff888033299a80 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5d8/0x800
[  345.342143][   T38] 4 locks held by kworker/u8:21/4354:
[  345.342153][   T38]  #0: ffff888140473938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[  345.342195][   T38]  #1: ffffc9000f87fbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[  345.342238][   T38]  #2: ffff88804a3ee0d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[  345.342284][   T38]  #3: ffff888029aada80 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5d8/0x800
[  345.342334][   T38] 2 locks held by getty/5566:
[  345.342345][   T38]  #0: ffff888035dfd0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  345.342394][   T38]  #1: ffffc90003e8b2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x462/0x13c0
[  345.342441][   T38] 6 locks held by syz.0.18/6594:
[  345.342453][   T38] 7 locks held by syz.1.20/6647:
[  345.342466][   T38] 6 locks held by syz.2.38/6835:
[  345.342477][   T38] 9 locks held by syz.3.43/6902:
[  345.342489][   T38] 2 locks held by syz.4.57/7064:
[  345.342500][   T38] 
[  345.342505][   T38] =============================================
[  345.342505][   T38] 
[  345.342522][   T38] NMI backtrace for cpu 0
[  345.342535][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  345.342556][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  345.342566][   T38] Call Trace:
[  345.342573][   T38]  <TASK>
[  345.342580][   T38]  dump_stack_lvl+0xe8/0x150
[  345.342604][   T38]  nmi_cpu_backtrace+0x274/0x2d0
[  345.342622][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  345.342642][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  345.342664][   T38]  sys_info+0x135/0x170
[  345.342679][   T38]  watchdog+0xf90/0xfe0
[  345.342707][   T38]  ? watchdog+0x209/0xfe0
[  345.342735][   T38]  kthread+0x726/0x8b0
[  345.342758][   T38]  ? __pfx_watchdog+0x10/0x10
[  345.342779][   T38]  ? __pfx_kthread+0x10/0x10
[  345.342795][   T38]  ? rt_spin_unlock+0x14f/0x200
[  345.342817][   T38]  ? rt_spin_unlock+0x160/0x200
[  345.342834][   T38]  ? __pfx_kthread+0x10/0x10
[  345.342855][   T38]  ret_from_fork+0x51b/0xa40
[  345.342880][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  345.342901][   T38]  ? __switch_to+0xc82/0x1410
[  345.342929][   T38]  ? __pfx_kthread+0x10/0x10
[  345.342950][   T38]  ret_from_fork_asm+0x1a/0x30
[  345.342986][   T38]  </TASK>
[  345.343014][   T38] Sending NMI from CPU 0 to CPUs 1:
[  345.343042][    C1] NMI backtrace for cpu 1
[  345.343060][    C1] CPU: 1 UID: 0 PID: 49 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  345.343078][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  345.343088][    C1] Workqueue: events_power_efficient neigh_periodic_work
[  345.343109][    C1] RIP: 0010:lock_acquire+0x1f/0x330
[  345.343126][    C1] Code: 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 41 57 41 56 41 55 41 54 53 48 83 ec 60 4d 89 ce 45 89 c7 41 89 cc 89 54 24 04 <89> f3 49 89 fd 48 8b ac 24 98 00 00 00 65 48 8b 05 2c 90 86 10 48
[  345.343139][    C1] RSP: 0018:ffffc90000bb7138 EFLAGS: 00000282
[  345.343152][    C1] RAX: 0000000000000004 RBX: ffffffff816c0a23 RCX: 0000000000000002
[  345.343162][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8dbc77c0
[  345.343172][    C1] RBP: dffffc0000000000 R08: 0000000000000000 R09: 0000000000000000
[  345.343182][    C1] R10: ffffc90000bb7358 R11: fffff52000176e6d R12: 0000000000000002
[  345.343192][    C1] R13: ffffc90000bb7340 R14: 0000000000000000 R15: 0000000000000000
[  345.343203][    C1] FS:  0000000000000000(0000) GS:ffff8881266c9000(0000) knlGS:0000000000000000
[  345.343215][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  345.343226][    C1] CR2: 00007fbb8be65000 CR3: 0000000039812000 CR4: 00000000003526f0
[  345.343240][    C1] Call Trace:
[  345.343246][    C1]  <TASK>
[  345.343255][    C1]  ? unwind_next_frame+0xa5/0x23c0
[  345.343271][    C1]  ? arch_stack_walk+0xe3/0x150
[  345.343288][    C1]  ? unwind_next_frame+0xa5/0x23c0
[  345.343317][    C1]  unwind_next_frame+0xc2/0x23c0
[  345.343333][    C1]  ? unwind_next_frame+0xa5/0x23c0
[  345.343351][    C1]  ? unwind_next_frame+0xa5/0x23c0
[  345.343367][    C1]  ? __unwind_start+0xf7/0x760
[  345.343385][    C1]  __unwind_start+0x5b8/0x760
[  345.343402][    C1]  ? skb_release_data+0x688/0x8e0
[  345.343416][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  345.343431][    C1]  arch_stack_walk+0xe3/0x150
[  345.343449][    C1]  ? arch_stack_walk+0xe3/0x150
[  345.343466][    C1]  stack_trace_save+0xa9/0x100
[  345.343480][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  345.343498][    C1]  kasan_save_track+0x3e/0x80
[  345.343536][    C1]  kasan_save_free_info+0x46/0x50
[  345.343551][    C1]  __kasan_slab_free+0x5c/0x80
[  345.343569][    C1]  kmem_cache_free+0x18d/0x8c0
[  345.343586][    C1]  ? skb_release_data+0x688/0x8e0
[  345.343602][    C1]  skb_release_data+0x688/0x8e0
[  345.343621][    C1]  __kfree_skb+0x5d/0x210
[  345.343635][    C1]  netlink_broadcast_filtered+0xede/0x1010
[  345.343670][    C1]  ? neigh_fill_info+0x3f6/0xc60
[  345.343685][    C1]  ? trace_kmem_cache_alloc+0x1f/0xb0
[  345.343703][    C1]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  345.343724][    C1]  nlmsg_notify+0xf0/0x1a0
[  345.343740][    C1]  ? __neigh_notify+0x29/0x310
[  345.343759][    C1]  __neigh_notify+0x1ae/0x310
[  345.343778][    C1]  neigh_cleanup_and_release+0xa0/0x270
[  345.343796][    C1]  neigh_periodic_work+0xb74/0xe90
[  345.343815][    C1]  ? neigh_periodic_work+0x57/0xe90
[  345.343833][    C1]  ? process_scheduled_works+0xa0f/0x17a0
[  345.343848][    C1]  process_scheduled_works+0xaec/0x17a0
[  345.343872][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  345.343885][    C1]  ? do_raw_spin_lock+0x12b/0x2f0
[  345.343905][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  345.343923][    C1]  ? schedule+0x90/0x360
[  345.343942][    C1]  worker_thread+0xda6/0x1360
[  345.343963][    C1]  ? __kthread_parkme+0x19c/0x1f0
[  345.343980][    C1]  kthread+0x726/0x8b0
[  345.343996][    C1]  ? __pfx_worker_thread+0x10/0x10
[  345.344010][    C1]  ? __pfx_kthread+0x10/0x10
[  345.344025][    C1]  ? rt_spin_unlock+0x14f/0x200
[  345.344042][    C1]  ? rt_spin_unlock+0x160/0x200
[  345.344055][    C1]  ? __pfx_kthread+0x10/0x10
[  345.344071][    C1]  ret_from_fork+0x51b/0xa40
[  345.344087][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  345.344100][    C1]  ? __switch_to+0xc82/0x1410
[  345.344119][    C1]  ? __pfx_kthread+0x10/0x10
[  345.344135][    C1]  ret_from_fork_asm+0x1a/0x30
[  345.344159][    C1]  </TASK>
[  345.395692][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[  345.395718][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  345.395740][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  345.395750][   T38] Call Trace:
[  345.395757][   T38]  <TASK>
[  345.395765][   T38]  vpanic+0x1e0/0x670
[  345.395797][   T38]  panic+0xc5/0xd0
[  345.395818][   T38]  ? __pfx_panic+0x10/0x10
[  345.395841][   T38]  ? preempt_schedule_thunk+0x16/0x30
[  345.395866][   T38]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[  345.395890][   T38]  watchdog+0xfda/0xfe0
[  345.395917][   T38]  ? watchdog+0x209/0xfe0
[  345.395945][   T38]  kthread+0x726/0x8b0
[  345.395970][   T38]  ? __pfx_watchdog+0x10/0x10
[  345.395991][   T38]  ? __pfx_kthread+0x10/0x10
[  345.396009][   T38]  ? rt_spin_unlock+0x14f/0x200
[  345.396032][   T38]  ? rt_spin_unlock+0x160/0x200
[  345.396050][   T38]  ? __pfx_kthread+0x10/0x10
[  345.396072][   T38]  ret_from_fork+0x51b/0xa40
[  345.396093][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  345.396111][   T38]  ? __switch_to+0xc82/0x1410
[  345.396138][   T38]  ? __pfx_kthread+0x10/0x10
[  345.396160][   T38]  ret_from_fork_asm+0x1a/0x30
[  345.396197][   T38]  </TASK>
[  345.396557][   T38] Kernel Offset: disabled