[ 29.279668][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 29.287660][ T1014] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 29.749979][ T1014] syz-executor (1014) used greatest stack depth: 11512 bytes left [ 29.819312][ T9] bond0 (unregistering): Released all slaves [ 30.157861][ T1463] chnl_net:caif_netlink_parms(): no params data found [ 30.533369][ T1463] 8021q: adding VLAN 0 to HW filter on device bond0 [ 30.779889][ T519] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 30.787423][ T519] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 30.795624][ T1463] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 31.357697][ T137] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.0.253' (ED25519) to the list of known hosts. 2025/08/06 01:54:56 ignoring optional flag "sandboxArg"="0" 2025/08/06 01:54:57 parsed 1 programs [ 49.336970][ T1889] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 49.872742][ T1923] chnl_net:caif_netlink_parms(): no params data found [ 50.235690][ T1923] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.472732][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 50.480236][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 50.488146][ T1923] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.018521][ T137] bond0 (unregistering): Released all slaves 2025/08/06 01:54:59 executed programs: 0 [ 51.278363][ T2368] chnl_net:caif_netlink_parms(): no params data found [ 51.653345][ T2368] 8021q: adding VLAN 0 to HW filter on device bond0 [ 51.885393][ T519] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 51.892707][ T519] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 51.901075][ T2368] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 52.372942][ T2768] loop2: detected capacity change from 0 to 32768 [ 52.417763][ T2768] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.16 (2768) [ 52.431450][ T2768] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 52.441004][ T2768] BTRFS info (device loop2): turning off barriers [ 52.448041][ T2768] BTRFS info (device loop2): enabling auto defrag [ 52.455733][ T2768] BTRFS info (device loop2): ignoring data csums [ 52.462266][ T2768] BTRFS info (device loop2): force zlib compression, level 3 [ 52.469632][ T2768] BTRFS info (device loop2): enabling ssd optimizations [ 52.476746][ T2768] BTRFS info (device loop2): using spread ssd allocation scheme [ 52.484641][ T2768] BTRFS info (device loop2): using free space tree [ 52.491319][ T2768] BTRFS info (device loop2): has skinny extents [ 52.497758][ T2768] workqueue: max_active 2097158 requested for btrfs-worker is out of range, clamping between 1 and 512 [ 52.509100][ T2768] workqueue: max_active 2097158 requested for btrfs-worker-high is out of range, clamping between 1 and 512 [ 52.520912][ T2768] workqueue: max_active 2097158 requested for btrfs-delalloc is out of range, clamping between 1 and 512 [ 52.532636][ T2768] workqueue: max_active 2097158 requested for btrfs-endio is out of range, clamping between 1 and 512 [ 52.543803][ T2768] workqueue: max_active 2097158 requested for btrfs-endio-meta is out of range, clamping between 1 and 512 [ 52.556197][ T2768] workqueue: max_active 2097158 requested for btrfs-endio-meta-write is out of range, clamping between 1 and 512 [ 52.568449][ T2768] workqueue: max_active 2097158 requested for btrfs-endio-raid56 is out of range, clamping between 1 and 512 [ 52.581057][ T2768] workqueue: max_active 2097158 requested for btrfs-rmw is out of range, clamping between 1 and 512 [ 52.592503][ T2768] workqueue: max_active 2097158 requested for btrfs-endio-write is out of range, clamping between 1 and 512 [ 52.604566][ T2768] workqueue: max_active 2097158 requested for btrfs-readahead is out of range, clamping between 1 and 512 [ 52.619427][ T2768] workqueue: max_active 2097158 requested for btrfs-scrub is out of range, clamping between 1 and 512 [ 52.630715][ T2768] workqueue: max_active 2097158 requested for btrfs-scrubwrc is out of range, clamping between 1 and 512 [ 52.642761][ T2768] workqueue: max_active 2097158 requested for btrfs-scrubparity is out of range, clamping between 1 and 512 [ 52.654389][ T2768] BTRFS info (device loop2): scrub: started on devid 1 [ 52.662094][ T2768] BUG: kernel NULL pointer dereference, address: 00000000000001f0 [ 52.670881][ T2768] #PF: supervisor read access in kernel mode [ 52.676939][ T2768] #PF: error_code(0x0000) - not-present page [ 52.683080][ T2768] PGD 178fbf067 P4D 178fbf067 PUD 0 [ 52.688465][ T2768] Oops: 0000 [#1] SMP [ 52.692506][ T2768] CPU: 0 PID: 2768 Comm: syz.2.16 Not tainted 5.15.189-syzkaller #0 [ 52.700785][ T2768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 52.710970][ T2768] RIP: 0010:btrfs_reada_add+0x3a/0x190 [ 52.716728][ T2768] Code: c4 f4 ff ff ff 55 48 89 d5 ba 88 00 00 00 53 48 89 fb 48 8b 3d 07 46 b2 01 e8 72 d7 ca ff 48 85 c0 0f 84 16 01 00 00 49 89 c4 <48> 8b 83 f0 01 00 00 48 c7 c2 80 af 23 88 48 c7 c6 79 85 04 83 41 [ 52.736615][ T2768] RSP: 0018:ffffc9000218b9c0 EFLAGS: 00010282 [ 52.742826][ T2768] RAX: ffff888178fb1e40 RBX: 0000000000000000 RCX: 0000000000000001 [ 52.750856][ T2768] RDX: 0000000000000dc0 RSI: ffffffff81681a6e RDI: ffff888100041800 [ 52.759380][ T2768] RBP: ffffc9000218bb0f R08: 00000000000000c0 R09: ffff888178fb1e40 [ 52.767527][ T2768] R10: 0000000000000000 R11: 0000000000032fa0 R12: ffff888178fb1e40 [ 52.775744][ T2768] R13: ffffc9000218bafe R14: ffff88816ef01000 R15: ffff88816ef01000 [ 52.784071][ T2768] FS: 00007fa5c6b536c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 52.793491][ T2768] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 52.800152][ T2768] CR2: 00000000000001f0 CR3: 000000010b2d3000 CR4: 00000000003506f0 [ 52.808452][ T2768] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 52.816613][ T2768] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 52.824702][ T2768] Call Trace: [ 52.828021][ T2768] [ 52.830982][ T2768] scrub_stripe+0x1095/0x12e0 [ 52.835737][ T2768] ? load_balance+0x179/0xc80 [ 52.840382][ T2768] ? find_held_lock+0x2b/0x80 [ 52.845026][ T2768] ? lock_acquire+0x93/0x130 [ 52.849729][ T2768] ? find_held_lock+0x2b/0x80 [ 52.854463][ T2768] ? scrub_chunk+0x5b/0x130 [ 52.858952][ T2768] scrub_chunk+0xc8/0x130 [ 52.863336][ T2768] scrub_enumerate_chunks+0x2c9/0x730 [ 52.868677][ T2768] ? do_wait_intr_irq+0xa0/0xa0 [ 52.873497][ T2768] btrfs_scrub_dev+0x20f/0x640 [ 52.878831][ T2768] ? _copy_from_user+0x51/0x80 [ 52.883748][ T2768] btrfs_ioctl+0x885/0x2fe0 [ 52.888221][ T2768] ? perf_assign_events+0x271/0x380 [ 52.893385][ T2768] ? __x64_sys_ioctl+0x7b/0xb0 [ 52.898158][ T2768] __x64_sys_ioctl+0x7b/0xb0 [ 52.902803][ T2768] do_syscall_64+0x33/0x80 [ 52.907763][ T2768] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 52.913938][ T2768] RIP: 0033:0x7fa5c78e3929 [ 52.918318][ T2768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 52.938166][ T2768] RSP: 002b:00007fa5c6b53038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 52.946790][ T2768] RAX: ffffffffffffffda RBX: 00007fa5c7b0afa0 RCX: 00007fa5c78e3929 [ 52.954863][ T2768] RDX: 0000200000000000 RSI: 00000000c400941b RDI: 0000000000000004 [ 52.963142][ T2768] RBP: 00007fa5c7965b39 R08: 0000000000000000 R09: 0000000000000000 [ 52.971639][ T2768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 52.980582][ T2768] R13: 0000000000000000 R14: 00007fa5c7b0afa0 R15: 00007ffe3c26a958 [ 52.989287][ T2768] [ 52.992293][ T2768] Modules linked in: [ 52.997220][ T2768] CR2: 00000000000001f0 [ 53.002006][ T2768] ---[ end trace ad8f5664fd98e488 ]--- [ 53.007833][ T2768] RIP: 0010:btrfs_reada_add+0x3a/0x190 [ 53.013297][ T2768] Code: c4 f4 ff ff ff 55 48 89 d5 ba 88 00 00 00 53 48 89 fb 48 8b 3d 07 46 b2 01 e8 72 d7 ca ff 48 85 c0 0f 84 16 01 00 00 49 89 c4 <48> 8b 83 f0 01 00 00 48 c7 c2 80 af 23 88 48 c7 c6 79 85 04 83 41 [ 53.033251][ T2768] RSP: 0018:ffffc9000218b9c0 EFLAGS: 00010282 [ 53.039279][ T2768] RAX: ffff888178fb1e40 RBX: 0000000000000000 RCX: 0000000000000001 [ 53.047226][ T2768] RDX: 0000000000000dc0 RSI: ffffffff81681a6e RDI: ffff888100041800 [ 53.055346][ T2768] RBP: ffffc9000218bb0f R08: 00000000000000c0 R09: ffff888178fb1e40 [ 53.063455][ T2768] R10: 0000000000000000 R11: 0000000000032fa0 R12: ffff888178fb1e40 [ 53.071509][ T2768] R13: ffffc9000218bafe R14: ffff88816ef01000 R15: ffff88816ef01000 [ 53.079541][ T2768] FS: 00007fa5c6b536c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 53.088615][ T2768] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.095224][ T2768] CR2: 00000000000001f0 CR3: 000000010b2d3000 CR4: 00000000003506f0 [ 53.103265][ T2768] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.111386][ T2768] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.119545][ T2768] Kernel panic - not syncing: Fatal exception [ 53.125928][ T2768] Kernel Offset: disabled [ 53.130499][ T2768] Rebooting in 86400 seconds..