1 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 194.448735][ T5977] RSP: 002b:00007ffec67e1f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 194.448759][ T5977] RAX: 0000000000000000 RBX: 00007fab6a1d3d7d RCX: 00007fab6a150a77
[ 194.448774][ T5977] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffec67e1fd0
[ 194.448786][ T5977] RBP: 00007ffec67e1fd0 R08: 0000000000000000 R09: 0000000000000000
[ 194.448798][ T5977] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffec67e3060
[ 194.448813][ T5977] R13: 00007fab6a1d3d7d R14: 000000000002f615 R15: 00007ffec67e30a0
[ 194.448853][ T5977]
[ 194.448862][ T5977] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 195.510135][ T6284] loop1: detected capacity change from 0 to 40427
[ 195.547087][ T6284] F2FS-fs (loop1): invalid crc value
[ 195.713168][ T6284] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 195.714597][ T6284] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 195.752514][ T5963] bio_check_eod: 25635 callbacks suppressed
[ 195.752536][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.752536][ T5963] loop0: rw=0, sector=89328, nr_sectors = 8 limit=40427
[ 195.752674][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.752674][ T5963] loop0: rw=0, sector=89336, nr_sectors = 8 limit=40427
[ 195.752809][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.752809][ T5963] loop0: rw=0, sector=89344, nr_sectors = 8 limit=40427
[ 195.752945][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.752945][ T5963] loop0: rw=0, sector=89352, nr_sectors = 8 limit=40427
[ 195.753081][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.753081][ T5963] loop0: rw=0, sector=89360, nr_sectors = 8 limit=40427
[ 195.753219][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.753219][ T5963] loop0: rw=0, sector=89368, nr_sectors = 8 limit=40427
[ 195.753357][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.753357][ T5963] loop0: rw=0, sector=89376, nr_sectors = 8 limit=40427
[ 195.753503][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.753503][ T5963] loop0: rw=0, sector=89384, nr_sectors = 8 limit=40427
[ 195.753637][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.753637][ T5963] loop0: rw=0, sector=89392, nr_sectors = 8 limit=40427
[ 195.753773][ T5963] syz.0.17: attempt to access beyond end of device
[ 195.753773][ T5963] loop0: rw=0, sector=89400, nr_sectors = 8 limit=40427
[ 196.121720][ T37] audit: type=1800 audit(1768022115.484:15): pid=6290 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.49" name="file1" dev="loop1" ino=10 res=0 errno=0
[ 196.164617][ T5977] CPU: 1 UID: 0 PID: 5977 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 196.164651][ T5977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 196.164665][ T5977] Call Trace:
[ 196.164674][ T5977]
[ 196.164683][ T5977] dump_stack_lvl+0xe8/0x150
[ 196.164719][ T5977] f2fs_handle_critical_error+0x354/0x510
[ 196.164759][ T5977] f2fs_write_end_io+0x886/0xb60
[ 196.164806][ T5977] __submit_merged_bio+0x256/0x660
[ 196.164846][ T5977] __submit_merged_write_cond+0x269/0x530
[ 196.164886][ T5977] f2fs_write_data_pages+0x2756/0x3290
[ 196.164952][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 196.165040][ T5977] ? do_raw_spin_lock+0x121/0x290
[ 196.165082][ T5977] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 196.165105][ T5977] ? lockdep_hardirqs_on+0x7b/0x110
[ 196.165127][ T5977] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 196.165149][ T5977] ? rt_mutex_slowunlock+0x493/0x8a0
[ 196.165178][ T5977] ? reacquire_held_locks+0x104/0x190
[ 196.165216][ T5977] ? rt_spin_lock+0x1c1/0x3e0
[ 196.165254][ T5977] ? rt_spin_unlock+0x150/0x200
[ 196.165288][ T5977] ? rt_spin_unlock+0x161/0x200
[ 196.165314][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 196.165338][ T5977] do_writepages+0x32e/0x550
[ 196.165363][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 196.165393][ T5977] ? rt_spin_unlock+0x150/0x200
[ 196.165435][ T5977] filemap_fdatawrite+0x19c/0x240
[ 196.165458][ T5977] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 196.165479][ T5977] ? __lock_acquire+0x6b6/0x2cf0
[ 196.165553][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 196.165592][ T5977] ? rt_spin_unlock+0x161/0x200
[ 196.165624][ T5977] f2fs_sync_dirty_inodes+0x30f/0x810
[ 196.165668][ T5977] f2fs_write_checkpoint+0x935/0x2430
[ 196.165732][ T5977] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 196.165826][ T5977] kill_f2fs_super+0x2d2/0x6c0
[ 196.165858][ T5977] ? __pfx_kill_f2fs_super+0x10/0x10
[ 196.165912][ T5977] deactivate_locked_super+0xbc/0x130
[ 196.165942][ T5977] cleanup_mnt+0x425/0x4c0
[ 196.165967][ T5977] ? _raw_spin_unlock_irq+0x23/0x50
[ 196.165994][ T5977] task_work_run+0x1d4/0x260
[ 196.166029][ T5977] ? __pfx_task_work_run+0x10/0x10
[ 196.166074][ T5977] exit_to_user_mode_loop+0xef/0x4e0
[ 196.166101][ T5977] ? rcu_is_watching+0x15/0xb0
[ 196.166126][ T5977] do_syscall_64+0x2c1/0xf80
[ 196.166148][ T5977] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 196.166167][ T5977] ? trace_irq_disable+0x37/0x100
[ 196.166188][ T5977] ? clear_bhb_loop+0x60/0xb0
[ 196.166223][ T5977] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 196.166243][ T5977] RIP: 0033:0x7fab6a150a77
[ 196.166264][ T5977] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 196.166281][ T5977] RSP: 002b:00007ffec67e1f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 196.166305][ T5977] RAX: 0000000000000000 RBX: 00007fab6a1d3d7d RCX: 00007fab6a150a77
[ 196.166319][ T5977] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffec67e1fd0
[ 196.166333][ T5977] RBP: 00007ffec67e1fd0 R08: 0000000000000000 R09: 0000000000000000
[ 196.166346][ T5977] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffec67e3060
[ 196.166361][ T5977] R13: 00007fab6a1d3d7d R14: 000000000002fcc0 R15: 00007ffec67e30a0
[ 196.166399][ T5977]
[ 196.166409][ T5977] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 197.150032][ T6293] loop1: detected capacity change from 0 to 40427
[ 197.167762][ T6293] F2FS-fs (loop1): invalid crc value
[ 197.335462][ T6293] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 197.336910][ T6293] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 197.663103][ T37] audit: type=1800 audit(1768022117.034:16): pid=6299 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.50" name="file1" dev="loop1" ino=10 res=0 errno=0
[ 197.703446][ T5977] CPU: 0 UID: 0 PID: 5977 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 197.703475][ T5977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 197.703486][ T5977] Call Trace:
[ 197.703493][ T5977]
[ 197.703500][ T5977] dump_stack_lvl+0xe8/0x150
[ 197.703532][ T5977] f2fs_handle_critical_error+0x354/0x510
[ 197.703565][ T5977] f2fs_write_end_io+0x886/0xb60
[ 197.703604][ T5977] __submit_merged_bio+0x256/0x660
[ 197.703636][ T5977] __submit_merged_write_cond+0x269/0x530
[ 197.703668][ T5977] f2fs_write_data_pages+0x2756/0x3290
[ 197.703722][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 197.703803][ T5977] ? do_raw_spin_lock+0x121/0x290
[ 197.703838][ T5977] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 197.703857][ T5977] ? lockdep_hardirqs_on+0x7b/0x110
[ 197.703874][ T5977] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 197.703892][ T5977] ? rt_mutex_slowunlock+0x493/0x8a0
[ 197.703914][ T5977] ? reacquire_held_locks+0x104/0x190
[ 197.703938][ T5977] ? rt_spin_lock+0x1c1/0x3e0
[ 197.703968][ T5977] ? rt_spin_unlock+0x150/0x200
[ 197.703996][ T5977] ? rt_spin_unlock+0x161/0x200
[ 197.704015][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 197.704035][ T5977] do_writepages+0x32e/0x550
[ 197.704056][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 197.704080][ T5977] ? rt_spin_unlock+0x150/0x200
[ 197.704113][ T5977] filemap_fdatawrite+0x19c/0x240
[ 197.704132][ T5977] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 197.704149][ T5977] ? __lock_acquire+0x6b6/0x2cf0
[ 197.704208][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 197.704240][ T5977] ? rt_spin_unlock+0x161/0x200
[ 197.704265][ T5977] f2fs_sync_dirty_inodes+0x30f/0x810
[ 197.704302][ T5977] f2fs_write_checkpoint+0x935/0x2430
[ 197.704359][ T5977] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 197.704461][ T5977] kill_f2fs_super+0x2d2/0x6c0
[ 197.704493][ T5977] ? __pfx_kill_f2fs_super+0x10/0x10
[ 197.704547][ T5977] deactivate_locked_super+0xbc/0x130
[ 197.704577][ T5977] cleanup_mnt+0x425/0x4c0
[ 197.704603][ T5977] ? _raw_spin_unlock_irq+0x23/0x50
[ 197.704628][ T5977] task_work_run+0x1d4/0x260
[ 197.704663][ T5977] ? __pfx_task_work_run+0x10/0x10
[ 197.704708][ T5977] exit_to_user_mode_loop+0xef/0x4e0
[ 197.704736][ T5977] ? rcu_is_watching+0x15/0xb0
[ 197.704761][ T5977] do_syscall_64+0x2c1/0xf80
[ 197.704783][ T5977] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 197.704803][ T5977] ? trace_irq_disable+0x37/0x100
[ 197.704824][ T5977] ? clear_bhb_loop+0x60/0xb0
[ 197.704851][ T5977] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 197.704871][ T5977] RIP: 0033:0x7fab6a150a77
[ 197.704893][ T5977] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 197.704911][ T5977] RSP: 002b:00007ffec67e1f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 197.704935][ T5977] RAX: 0000000000000000 RBX: 00007fab6a1d3d7d RCX: 00007fab6a150a77
[ 197.704949][ T5977] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffec67e1fd0
[ 197.704963][ T5977] RBP: 00007ffec67e1fd0 R08: 0000000000000000 R09: 0000000000000000
[ 197.704975][ T5977] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffec67e3060
[ 197.704989][ T5977] R13: 00007fab6a1d3d7d R14: 00000000000302de R15: 00007ffec67e30a0
[ 197.705028][ T5977]
[ 197.705038][ T5977] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 198.783629][ T6302] loop1: detected capacity change from 0 to 40427
[ 198.789408][ T6302] F2FS-fs (loop1): invalid crc value
[ 198.950479][ T6302] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 198.963781][ T6302] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
2026/01/10 05:15:18 executed programs: 37
[ 199.233686][ T5977] CPU: 0 UID: 0 PID: 5977 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 199.233720][ T5977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 199.233733][ T5977] Call Trace:
[ 199.233742][ T5977]
[ 199.233751][ T5977] dump_stack_lvl+0xe8/0x150
[ 199.233787][ T5977] f2fs_handle_critical_error+0x354/0x510
[ 199.233827][ T5977] f2fs_write_end_io+0x886/0xb60
[ 199.233873][ T5977] __submit_merged_bio+0x256/0x660
[ 199.233914][ T5977] __submit_merged_write_cond+0x269/0x530
[ 199.233955][ T5977] f2fs_write_data_pages+0x2756/0x3290
[ 199.234020][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 199.234108][ T5977] ? do_raw_spin_lock+0x121/0x290
[ 199.234159][ T5977] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 199.234183][ T5977] ? lockdep_hardirqs_on+0x7b/0x110
[ 199.234204][ T5977] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 199.234226][ T5977] ? rt_mutex_slowunlock+0x493/0x8a0
[ 199.234253][ T5977] ? reacquire_held_locks+0x104/0x190
[ 199.234283][ T5977] ? rt_spin_lock+0x1c1/0x3e0
[ 199.234321][ T5977] ? rt_spin_unlock+0x150/0x200
[ 199.234354][ T5977] ? rt_spin_unlock+0x161/0x200
[ 199.234378][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 199.234400][ T5977] do_writepages+0x32e/0x550
[ 199.234425][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 199.234456][ T5977] ? rt_spin_unlock+0x150/0x200
[ 199.234496][ T5977] filemap_fdatawrite+0x19c/0x240
[ 199.234519][ T5977] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 199.234540][ T5977] ? __lock_acquire+0x6b6/0x2cf0
[ 199.234613][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 199.234652][ T5977] ? rt_spin_unlock+0x161/0x200
[ 199.234683][ T5977] f2fs_sync_dirty_inodes+0x30f/0x810
[ 199.234726][ T5977] f2fs_write_checkpoint+0x935/0x2430
[ 199.234789][ T5977] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 199.234882][ T5977] kill_f2fs_super+0x2d2/0x6c0
[ 199.234915][ T5977] ? __pfx_kill_f2fs_super+0x10/0x10
[ 199.234968][ T5977] deactivate_locked_super+0xbc/0x130
[ 199.234998][ T5977] cleanup_mnt+0x425/0x4c0
[ 199.235024][ T5977] ? _raw_spin_unlock_irq+0x23/0x50
[ 199.235050][ T5977] task_work_run+0x1d4/0x260
[ 199.235085][ T5977] ? __pfx_task_work_run+0x10/0x10
[ 199.235139][ T5977] exit_to_user_mode_loop+0xef/0x4e0
[ 199.235168][ T5977] ? rcu_is_watching+0x15/0xb0
[ 199.235202][ T5977] do_syscall_64+0x2c1/0xf80
[ 199.235223][ T5977] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 199.235243][ T5977] ? trace_irq_disable+0x37/0x100
[ 199.235264][ T5977] ? clear_bhb_loop+0x60/0xb0
[ 199.235291][ T5977] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 199.235311][ T5977] RIP: 0033:0x7fab6a150a77
[ 199.235331][ T5977] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 199.235349][ T5977] RSP: 002b:00007ffec67e1f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 199.235379][ T5977] RAX: 0000000000000000 RBX: 00007fab6a1d3d7d RCX: 00007fab6a150a77
[ 199.235394][ T5977] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffec67e1fd0
[ 199.235407][ T5977] RBP: 00007ffec67e1fd0 R08: 0000000000000000 R09: 0000000000000000
[ 199.235420][ T5977] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffec67e3060
[ 199.235435][ T5977] R13: 00007fab6a1d3d7d R14: 00000000000308e2 R15: 00007ffec67e30a0
[ 199.235474][ T5977]
[ 199.235482][ T5977] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 200.317918][ T6311] loop1: detected capacity change from 0 to 40427
[ 200.348462][ T6311] F2FS-fs (loop1): invalid crc value
[ 200.570927][ T6311] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 200.574130][ T6311] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 200.762627][ T5963] bio_check_eod: 25310 callbacks suppressed
[ 200.762652][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.762652][ T5963] loop0: rw=0, sector=87608, nr_sectors = 8 limit=40427
[ 200.762795][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.762795][ T5963] loop0: rw=0, sector=87616, nr_sectors = 8 limit=40427
[ 200.762935][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.762935][ T5963] loop0: rw=0, sector=87624, nr_sectors = 8 limit=40427
[ 200.763076][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.763076][ T5963] loop0: rw=0, sector=87632, nr_sectors = 8 limit=40427
[ 200.763225][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.763225][ T5963] loop0: rw=0, sector=87640, nr_sectors = 8 limit=40427
[ 200.763423][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.763423][ T5963] loop0: rw=0, sector=87648, nr_sectors = 8 limit=40427
[ 200.763563][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.763563][ T5963] loop0: rw=0, sector=87656, nr_sectors = 8 limit=40427
[ 200.763707][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.763707][ T5963] loop0: rw=0, sector=87664, nr_sectors = 8 limit=40427
[ 200.763845][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.763845][ T5963] loop0: rw=0, sector=87672, nr_sectors = 8 limit=40427
[ 200.763983][ T5963] syz.0.17: attempt to access beyond end of device
[ 200.763983][ T5963] loop0: rw=0, sector=87680, nr_sectors = 8 limit=40427
[ 200.844914][ T37] audit: type=1800 audit(1768022120.214:17): pid=6317 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.52" name="file1" dev="loop1" ino=10 res=0 errno=0
[ 200.963339][ T5977] CPU: 0 UID: 0 PID: 5977 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 200.963361][ T5977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 200.963368][ T5977] Call Trace:
[ 200.963373][ T5977]
[ 200.963379][ T5977] dump_stack_lvl+0xe8/0x150
[ 200.963402][ T5977] f2fs_handle_critical_error+0x354/0x510
[ 200.963425][ T5977] f2fs_write_end_io+0x886/0xb60
[ 200.963449][ T5977] __submit_merged_bio+0x256/0x660
[ 200.963470][ T5977] __submit_merged_write_cond+0x269/0x530
[ 200.963492][ T5977] f2fs_write_data_pages+0x2756/0x3290
[ 200.963525][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 200.963570][ T5977] ? do_raw_spin_lock+0x121/0x290
[ 200.963592][ T5977] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 200.963604][ T5977] ? lockdep_hardirqs_on+0x7b/0x110
[ 200.963616][ T5977] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 200.963628][ T5977] ? rt_mutex_slowunlock+0x493/0x8a0
[ 200.963644][ T5977] ? reacquire_held_locks+0x104/0x190
[ 200.963659][ T5977] ? rt_spin_lock+0x1c1/0x3e0
[ 200.963680][ T5977] ? rt_spin_unlock+0x150/0x200
[ 200.963700][ T5977] ? rt_spin_unlock+0x161/0x200
[ 200.963714][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 200.963727][ T5977] do_writepages+0x32e/0x550
[ 200.963740][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 200.963757][ T5977] ? rt_spin_unlock+0x150/0x200
[ 200.963777][ T5977] filemap_fdatawrite+0x19c/0x240
[ 200.963790][ T5977] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 200.963801][ T5977] ? __lock_acquire+0x6b6/0x2cf0
[ 200.963839][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 200.963859][ T5977] ? rt_spin_unlock+0x161/0x200
[ 200.963875][ T5977] f2fs_sync_dirty_inodes+0x30f/0x810
[ 200.963898][ T5977] f2fs_write_checkpoint+0x935/0x2430
[ 200.963930][ T5977] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 200.963977][ T5977] kill_f2fs_super+0x2d2/0x6c0
[ 200.963994][ T5977] ? __pfx_kill_f2fs_super+0x10/0x10
[ 200.964022][ T5977] deactivate_locked_super+0xbc/0x130
[ 200.964038][ T5977] cleanup_mnt+0x425/0x4c0
[ 200.964051][ T5977] ? _raw_spin_unlock_irq+0x23/0x50
[ 200.964065][ T5977] task_work_run+0x1d4/0x260
[ 200.964084][ T5977] ? __pfx_task_work_run+0x10/0x10
[ 200.964107][ T5977] exit_to_user_mode_loop+0xef/0x4e0
[ 200.964122][ T5977] ? rcu_is_watching+0x15/0xb0
[ 200.964136][ T5977] do_syscall_64+0x2c1/0xf80
[ 200.964147][ T5977] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 200.964158][ T5977] ? trace_irq_disable+0x37/0x100
[ 200.964170][ T5977] ? clear_bhb_loop+0x60/0xb0
[ 200.964185][ T5977] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 200.964196][ T5977] RIP: 0033:0x7fab6a150a77
[ 200.964208][ T5977] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 200.964218][ T5977] RSP: 002b:00007ffec67e1f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 200.964231][ T5977] RAX: 0000000000000000 RBX: 00007fab6a1d3d7d RCX: 00007fab6a150a77
[ 200.964240][ T5977] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffec67e1fd0
[ 200.964247][ T5977] RBP: 00007ffec67e1fd0 R08: 0000000000000000 R09: 0000000000000000
[ 200.964254][ T5977] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffec67e3060
[ 200.964261][ T5977] R13: 00007fab6a1d3d7d R14: 0000000000030f5c R15: 00007ffec67e30a0
[ 200.964282][ T5977]
[ 200.964286][ T5977] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 202.040773][ T6320] loop1: detected capacity change from 0 to 40427
[ 202.081983][ T6320] F2FS-fs (loop1): invalid crc value
[ 202.380727][ T6320] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 202.392456][ T6320] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 202.744308][ T5977] CPU: 1 UID: 0 PID: 5977 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 202.744341][ T5977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 202.744353][ T5977] Call Trace:
[ 202.744362][ T5977]
[ 202.744371][ T5977] dump_stack_lvl+0xe8/0x150
[ 202.744407][ T5977] f2fs_handle_critical_error+0x354/0x510
[ 202.744447][ T5977] f2fs_write_end_io+0x886/0xb60
[ 202.744493][ T5977] __submit_merged_bio+0x256/0x660
[ 202.744534][ T5977] __submit_merged_write_cond+0x269/0x530
[ 202.744574][ T5977] f2fs_write_data_pages+0x2756/0x3290
[ 202.744639][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 202.744727][ T5977] ? do_raw_spin_lock+0x121/0x290
[ 202.744768][ T5977] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 202.744791][ T5977] ? lockdep_hardirqs_on+0x7b/0x110
[ 202.744813][ T5977] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 202.744834][ T5977] ? rt_mutex_slowunlock+0x493/0x8a0
[ 202.744862][ T5977] ? reacquire_held_locks+0x104/0x190
[ 202.744892][ T5977] ? rt_spin_lock+0x1c1/0x3e0
[ 202.744930][ T5977] ? rt_spin_unlock+0x150/0x200
[ 202.744963][ T5977] ? rt_spin_unlock+0x161/0x200
[ 202.744990][ T5977] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 202.745013][ T5977] do_writepages+0x32e/0x550
[ 202.745037][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 202.745068][ T5977] ? rt_spin_unlock+0x150/0x200
[ 202.745119][ T5977] filemap_fdatawrite+0x19c/0x240
[ 202.745142][ T5977] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 202.745161][ T5977] ? __lock_acquire+0x6b6/0x2cf0
[ 202.745234][ T5977] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 202.745273][ T5977] ? rt_spin_unlock+0x161/0x200
[ 202.745304][ T5977] f2fs_sync_dirty_inodes+0x30f/0x810
[ 202.745348][ T5977] f2fs_write_checkpoint+0x935/0x2430
[ 202.745409][ T5977] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 202.745503][ T5977] kill_f2fs_super+0x2d2/0x6c0
[ 202.745535][ T5977] ? __pfx_kill_f2fs_super+0x10/0x10
[ 202.745590][ T5977] deactivate_locked_super+0xbc/0x130
[ 202.745620][ T5977] cleanup_mnt+0x425/0x4c0
[ 202.745645][ T5977] ? _raw_spin_unlock_irq+0x23/0x50
[ 202.745672][ T5977] task_work_run+0x1d4/0x260
[ 202.745706][ T5977] ? __pfx_task_work_run+0x10/0x10
[ 202.745751][ T5977] exit_to_user_mode_loop+0xef/0x4e0
[ 202.745779][ T5977] ? rcu_is_watching+0x15/0xb0
[ 202.745804][ T5977] do_syscall_64+0x2c1/0xf80
[ 202.745835][ T5977] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 202.745855][ T5977] ? trace_irq_disable+0x37/0x100
[ 202.745877][ T5977] ? clear_bhb_loop+0x60/0xb0
[ 202.745904][ T5977] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 202.745924][ T5977] RIP: 0033:0x7fab6a150a77
[ 202.745945][ T5977] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 202.745963][ T5977] RSP: 002b:00007ffec67e1f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 202.745986][ T5977] RAX: 0000000000000000 RBX: 00007fab6a1d3d7d RCX: 00007fab6a150a77
[ 202.746001][ T5977] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffec67e1fd0
[ 202.746014][ T5977] RBP: 00007ffec67e1fd0 R08: 0000000000000000 R09: 0000000000000000
[ 202.746027][ T5977] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffec67e3060
[ 202.746041][ T5977] R13: 00007fab6a1d3d7d R14: 000000000003168c R15: 00007ffec67e30a0
[ 202.746079][ T5977]
[ 202.746088][ T5977] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 203.706335][ T6329] loop1: detected capacity change from 0 to 40427
[ 203.721784][ T6329] F2FS-fs (loop1): invalid crc value
[ 203.866339][ T6329] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 203.868110][ T6329] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 204.105903][ T37] audit: type=1800 audit(1768022123.474:18): pid=6335 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.54" name="file1" dev="loop1" ino=10 res=0 errno=0
[ 205.776087][ T5963] bio_check_eod: 27437 callbacks suppressed
[ 205.776111][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.776111][ T5963] loop0: rw=0, sector=87200, nr_sectors = 8 limit=40427
[ 205.776262][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.776262][ T5963] loop0: rw=0, sector=87208, nr_sectors = 8 limit=40427
[ 205.776401][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.776401][ T5963] loop0: rw=0, sector=87216, nr_sectors = 8 limit=40427
[ 205.776539][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.776539][ T5963] loop0: rw=0, sector=87224, nr_sectors = 8 limit=40427
[ 205.776676][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.776676][ T5963] loop0: rw=0, sector=87232, nr_sectors = 8 limit=40427
[ 205.776814][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.776814][ T5963] loop0: rw=0, sector=87240, nr_sectors = 8 limit=40427
[ 205.776957][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.776957][ T5963] loop0: rw=0, sector=87248, nr_sectors = 8 limit=40427
[ 205.777125][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.777125][ T5963] loop0: rw=0, sector=87256, nr_sectors = 8 limit=40427
[ 205.777271][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.777271][ T5963] loop0: rw=0, sector=87264, nr_sectors = 8 limit=40427
[ 205.777425][ T5963] syz.0.17: attempt to access beyond end of device
[ 205.777425][ T5963] loop0: rw=0, sector=87272, nr_sectors = 8 limit=40427
[ 210.783032][ T5963] bio_check_eod: 30775 callbacks suppressed
[ 210.783057][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.783057][ T5963] loop0: rw=524288, sector=86016, nr_sectors = 8 limit=40427
[ 210.783200][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.783200][ T5963] loop0: rw=524288, sector=86024, nr_sectors = 8 limit=40427
[ 210.783335][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.783335][ T5963] loop0: rw=524288, sector=86032, nr_sectors = 8 limit=40427
[ 210.783469][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.783469][ T5963] loop0: rw=524288, sector=86040, nr_sectors = 8 limit=40427
[ 210.783602][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.783602][ T5963] loop0: rw=524288, sector=86048, nr_sectors = 8 limit=40427
[ 210.783743][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.783743][ T5963] loop0: rw=524288, sector=86056, nr_sectors = 8 limit=40427
[ 210.783876][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.783876][ T5963] loop0: rw=524288, sector=86064, nr_sectors = 8 limit=40427
[ 210.784019][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.784019][ T5963] loop0: rw=524288, sector=86072, nr_sectors = 8 limit=40427
[ 210.784152][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.784152][ T5963] loop0: rw=524288, sector=86080, nr_sectors = 8 limit=40427
[ 210.784284][ T5963] syz.0.17: attempt to access beyond end of device
[ 210.784284][ T5963] loop0: rw=524288, sector=86088, nr_sectors = 8 limit=40427
[ 215.792477][ T5963] bio_check_eod: 32366 callbacks suppressed
[ 215.792505][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.792505][ T5963] loop0: rw=0, sector=89704, nr_sectors = 8 limit=40427
[ 215.792682][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.792682][ T5963] loop0: rw=0, sector=89712, nr_sectors = 8 limit=40427
[ 215.792821][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.792821][ T5963] loop0: rw=0, sector=89720, nr_sectors = 8 limit=40427
[ 215.792959][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.792959][ T5963] loop0: rw=0, sector=89728, nr_sectors = 8 limit=40427
[ 215.793106][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.793106][ T5963] loop0: rw=0, sector=89736, nr_sectors = 8 limit=40427
[ 215.793241][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.793241][ T5963] loop0: rw=0, sector=89744, nr_sectors = 8 limit=40427
[ 215.793379][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.793379][ T5963] loop0: rw=0, sector=89752, nr_sectors = 8 limit=40427
[ 215.793516][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.793516][ T5963] loop0: rw=0, sector=89760, nr_sectors = 8 limit=40427
[ 215.793653][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.793653][ T5963] loop0: rw=0, sector=89768, nr_sectors = 8 limit=40427
[ 215.793796][ T5963] syz.0.17: attempt to access beyond end of device
[ 215.793796][ T5963] loop0: rw=0, sector=89776, nr_sectors = 8 limit=40427
[ 217.982294][ T62] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 217.990305][ T62] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 218.000765][ T62] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 218.002257][ T62] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 218.003325][ T62] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 218.773320][ T6337] chnl_net:caif_netlink_parms(): no params data found
[ 219.214815][ T6337] bridge0: port 1(bridge_slave_0) entered blocking state
[ 219.215063][ T6337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 219.215258][ T6337] bridge_slave_0: entered allmulticast mode
[ 219.222666][ T6337] bridge_slave_0: entered promiscuous mode
[ 219.233773][ T6337] bridge0: port 2(bridge_slave_1) entered blocking state
[ 219.234232][ T6337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 219.234409][ T6337] bridge_slave_1: entered allmulticast mode
[ 219.237009][ T6337] bridge_slave_1: entered promiscuous mode
[ 219.444864][ T6337] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 219.455612][ T6337] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 219.746264][ T6337] team0: Port device team_slave_0 added
[ 219.750124][ T6337] team0: Port device team_slave_1 added
[ 219.962637][ T6337] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 219.962657][ T6337] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.962686][ T6337] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 219.968346][ T6337] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 219.968363][ T6337] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.968392][ T6337] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 220.102597][ T62] Bluetooth: hci2: command tx timeout
[ 220.221142][ T6337] hsr_slave_0: entered promiscuous mode
[ 220.252871][ T6337] hsr_slave_1: entered promiscuous mode
[ 220.254075][ T6337] debugfs: 'hsr0' already exists in 'hsr'
[ 220.254102][ T6337] Cannot create hsr debugfs directory
[ 220.694386][ T6329] F2FS-fs (loop1): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[ 220.804037][ T6329] bio_check_eod: 26729 callbacks suppressed
[ 220.804060][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.804060][ T6329] loop1: rw=524288, sector=88912, nr_sectors = 8 limit=40427
[ 220.804245][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.804245][ T6329] loop1: rw=524288, sector=88920, nr_sectors = 8 limit=40427
[ 220.804424][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.804424][ T6329] loop1: rw=524288, sector=88928, nr_sectors = 8 limit=40427
[ 220.804603][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.804603][ T6329] loop1: rw=524288, sector=88936, nr_sectors = 8 limit=40427
[ 220.804782][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.804782][ T6329] loop1: rw=524288, sector=88944, nr_sectors = 8 limit=40427
[ 220.804969][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.804969][ T6329] loop1: rw=524288, sector=88952, nr_sectors = 8 limit=40427
[ 220.805175][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.805175][ T6329] loop1: rw=524288, sector=88960, nr_sectors = 8 limit=40427
[ 220.805353][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.805353][ T6329] loop1: rw=524288, sector=88968, nr_sectors = 8 limit=40427
[ 220.805530][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.805530][ T6329] loop1: rw=524288, sector=88976, nr_sectors = 8 limit=40427
[ 220.805709][ T6329] syz.1.54: attempt to access beyond end of device
[ 220.805709][ T6329] loop1: rw=524288, sector=88984, nr_sectors = 8 limit=40427
[ 221.165611][ T6337] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 221.211176][ T6337] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 221.238361][ T6337] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 221.279255][ T6337] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 221.577347][ T6337] 8021q: adding VLAN 0 to HW filter on device bond0
[ 221.626834][ T6337] 8021q: adding VLAN 0 to HW filter on device team0
[ 221.669353][ T3490] bridge0: port 1(bridge_slave_0) entered blocking state
[ 221.669593][ T3490] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 221.690898][ T3490] bridge0: port 2(bridge_slave_1) entered blocking state
[ 221.691138][ T3490] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 222.182620][ T62] Bluetooth: hci2: command tx timeout
[ 222.185348][ T6337] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 222.336309][ T6337] veth0_vlan: entered promiscuous mode
[ 222.365941][ T6337] veth1_vlan: entered promiscuous mode
[ 222.474384][ T6337] veth0_macvtap: entered promiscuous mode
[ 222.486506][ T6337] veth1_macvtap: entered promiscuous mode
[ 222.555628][ T6337] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 222.574698][ T6337] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 222.615626][ T70] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 222.616944][ T70] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 222.617122][ T70] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 222.617280][ T70] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 222.993230][ T1392] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 222.993254][ T1392] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 223.179346][ T1164] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 223.179373][ T1164] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/01/10 05:15:42 executed programs: 40
[ 224.262538][ T62] Bluetooth: hci2: command tx timeout
[ 224.404201][ T6358] loop2: detected capacity change from 0 to 40427
[ 224.450542][ T6358] F2FS-fs (loop2): invalid crc value
[ 224.827844][ T6358] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 224.830714][ T6358] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 225.255831][ T6337] CPU: 0 UID: 0 PID: 6337 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 225.255864][ T6337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 225.255877][ T6337] Call Trace:
[ 225.255886][ T6337]
[ 225.255896][ T6337] dump_stack_lvl+0xe8/0x150
[ 225.255931][ T6337] f2fs_handle_critical_error+0x354/0x510
[ 225.255979][ T6337] f2fs_write_end_io+0x886/0xb60
[ 225.256025][ T6337] __submit_merged_bio+0x256/0x660
[ 225.256066][ T6337] __submit_merged_write_cond+0x269/0x530
[ 225.256106][ T6337] f2fs_write_data_pages+0x2756/0x3290
[ 225.256170][ T6337] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 225.256259][ T6337] ? do_raw_spin_lock+0x121/0x290
[ 225.256301][ T6337] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 225.256324][ T6337] ? lockdep_hardirqs_on+0x7b/0x110
[ 225.256346][ T6337] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 225.256368][ T6337] ? rt_mutex_slowunlock+0x493/0x8a0
[ 225.256396][ T6337] ? reacquire_held_locks+0x104/0x190
[ 225.256426][ T6337] ? rt_spin_lock+0x1c1/0x3e0
[ 225.256463][ T6337] ? rt_spin_unlock+0x150/0x200
[ 225.256497][ T6337] ? rt_spin_unlock+0x161/0x200
[ 225.256523][ T6337] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 225.256547][ T6337] do_writepages+0x32e/0x550
[ 225.256571][ T6337] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 225.256602][ T6337] ? rt_spin_unlock+0x150/0x200
[ 225.256643][ T6337] filemap_fdatawrite+0x19c/0x240
[ 225.256666][ T6337] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 225.256687][ T6337] ? __lock_acquire+0x6b6/0x2cf0
[ 225.256757][ T6337] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 225.256798][ T6337] ? rt_spin_unlock+0x161/0x200
[ 225.256829][ T6337] f2fs_sync_dirty_inodes+0x30f/0x810
[ 225.256872][ T6337] f2fs_write_checkpoint+0x935/0x2430
[ 225.256934][ T6337] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 225.257036][ T6337] kill_f2fs_super+0x2d2/0x6c0
[ 225.257068][ T6337] ? __pfx_kill_f2fs_super+0x10/0x10
[ 225.257122][ T6337] deactivate_locked_super+0xbc/0x130
[ 225.257152][ T6337] cleanup_mnt+0x425/0x4c0
[ 225.257178][ T6337] ? _raw_spin_unlock_irq+0x23/0x50
[ 225.257204][ T6337] task_work_run+0x1d4/0x260
[ 225.257240][ T6337] ? __pfx_task_work_run+0x10/0x10
[ 225.257285][ T6337] exit_to_user_mode_loop+0xef/0x4e0
[ 225.257313][ T6337] ? rcu_is_watching+0x15/0xb0
[ 225.257338][ T6337] do_syscall_64+0x2c1/0xf80
[ 225.257359][ T6337] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 225.257379][ T6337] ? trace_irq_disable+0x37/0x100
[ 225.257400][ T6337] ? clear_bhb_loop+0x60/0xb0
[ 225.257427][ T6337] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 225.257447][ T6337] RIP: 0033:0x7fc4d73a0a77
[ 225.257467][ T6337] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 225.257485][ T6337] RSP: 002b:00007fff1e2a0528 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 225.257508][ T6337] RAX: 0000000000000000 RBX: 00007fc4d7423d7d RCX: 00007fc4d73a0a77
[ 225.257523][ T6337] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff1e2a05e0
[ 225.257535][ T6337] RBP: 00007fff1e2a05e0 R08: 0000000000000000 R09: 0000000000000000
[ 225.257548][ T6337] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff1e2a1670
[ 225.257562][ T6337] R13: 00007fc4d7423d7d R14: 0000000000036e7b R15: 00007fff1e2a16b0
[ 225.257601][ T6337]
[ 225.257609][ T6337] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[ 225.817975][ T5963] bio_check_eod: 37248 callbacks suppressed
[ 225.817999][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.817999][ T5963] loop0: rw=0, sector=87904, nr_sectors = 8 limit=40427
[ 225.818184][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.818184][ T5963] loop0: rw=0, sector=87912, nr_sectors = 8 limit=40427
[ 225.818333][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.818333][ T5963] loop0: rw=0, sector=87920, nr_sectors = 8 limit=40427
[ 225.818472][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.818472][ T5963] loop0: rw=0, sector=87928, nr_sectors = 8 limit=40427
[ 225.818616][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.818616][ T5963] loop0: rw=0, sector=87936, nr_sectors = 8 limit=40427
[ 225.818763][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.818763][ T5963] loop0: rw=0, sector=87944, nr_sectors = 8 limit=40427
[ 225.818899][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.818899][ T5963] loop0: rw=0, sector=87952, nr_sectors = 8 limit=40427
[ 225.819035][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.819035][ T5963] loop0: rw=0, sector=87960, nr_sectors = 8 limit=40427
[ 225.819174][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.819174][ T5963] loop0: rw=0, sector=87968, nr_sectors = 8 limit=40427
[ 225.819313][ T5963] syz.0.17: attempt to access beyond end of device
[ 225.819313][ T5963] loop0: rw=0, sector=87976, nr_sectors = 8 limit=40427
[ 226.342543][ T62] Bluetooth: hci2: command tx timeout
[ 227.012112][ T6368] loop2: detected capacity change from 0 to 40427
[ 227.017656][ T6368] F2FS-fs (loop2): invalid crc value
[ 227.361354][ T6368] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 227.392056][ T6368] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 230.830235][ T5963] bio_check_eod: 42193 callbacks suppressed
[ 230.830263][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.830263][ T5963] loop0: rw=524288, sector=86688, nr_sectors = 8 limit=40427
[ 230.830403][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.830403][ T5963] loop0: rw=524288, sector=86696, nr_sectors = 8 limit=40427
[ 230.830560][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.830560][ T5963] loop0: rw=524288, sector=86704, nr_sectors = 8 limit=40427
[ 230.830728][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.830728][ T5963] loop0: rw=524288, sector=86712, nr_sectors = 8 limit=40427
[ 230.830871][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.830871][ T5963] loop0: rw=524288, sector=86720, nr_sectors = 8 limit=40427
[ 230.831004][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.831004][ T5963] loop0: rw=524288, sector=86728, nr_sectors = 8 limit=40427
[ 230.831158][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.831158][ T5963] loop0: rw=524288, sector=86736, nr_sectors = 8 limit=40427
[ 230.831291][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.831291][ T5963] loop0: rw=524288, sector=86744, nr_sectors = 8 limit=40427
[ 230.831423][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.831423][ T5963] loop0: rw=524288, sector=86752, nr_sectors = 8 limit=40427
[ 230.831555][ T5963] syz.0.17: attempt to access beyond end of device
[ 230.831555][ T5963] loop0: rw=524288, sector=86760, nr_sectors = 8 limit=40427
[ 235.837129][ T6329] bio_check_eod: 40934 callbacks suppressed
[ 235.837154][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.837154][ T6329] loop1: rw=0, sector=87448, nr_sectors = 8 limit=40427
[ 235.837297][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.837297][ T6329] loop1: rw=0, sector=87456, nr_sectors = 8 limit=40427
[ 235.837435][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.837435][ T6329] loop1: rw=0, sector=87464, nr_sectors = 8 limit=40427
[ 235.837571][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.837571][ T6329] loop1: rw=0, sector=87472, nr_sectors = 8 limit=40427
[ 235.837716][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.837716][ T6329] loop1: rw=0, sector=87480, nr_sectors = 8 limit=40427
[ 235.837854][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.837854][ T6329] loop1: rw=0, sector=87488, nr_sectors = 8 limit=40427
[ 235.837990][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.837990][ T6329] loop1: rw=0, sector=87496, nr_sectors = 8 limit=40427
[ 235.838158][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.838158][ T6329] loop1: rw=0, sector=87504, nr_sectors = 8 limit=40427
[ 235.838295][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.838295][ T6329] loop1: rw=0, sector=87512, nr_sectors = 8 limit=40427
[ 235.838432][ T6329] syz.1.54: attempt to access beyond end of device
[ 235.838432][ T6329] loop1: rw=0, sector=87520, nr_sectors = 8 limit=40427
[ 237.462513][ T5116] Bluetooth: hci0: command 0x0406 tx timeout
[ 240.593274][ T5116] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 240.595623][ T5116] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 240.596864][ T5116] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 240.621325][ T5116] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 240.622550][ T5116] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 240.852605][ T5963] bio_check_eod: 39832 callbacks suppressed
[ 240.852627][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.852627][ T5963] loop0: rw=0, sector=87984, nr_sectors = 8 limit=40427
[ 240.852775][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.852775][ T5963] loop0: rw=0, sector=87992, nr_sectors = 8 limit=40427
[ 240.852925][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.852925][ T5963] loop0: rw=0, sector=88000, nr_sectors = 8 limit=40427
[ 240.853062][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.853062][ T5963] loop0: rw=0, sector=88008, nr_sectors = 8 limit=40427
[ 240.853200][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.853200][ T5963] loop0: rw=0, sector=88016, nr_sectors = 8 limit=40427
[ 240.853339][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.853339][ T5963] loop0: rw=0, sector=88024, nr_sectors = 8 limit=40427
[ 240.853477][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.853477][ T5963] loop0: rw=0, sector=88032, nr_sectors = 8 limit=40427
[ 240.853612][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.853612][ T5963] loop0: rw=0, sector=88040, nr_sectors = 8 limit=40427
[ 240.853750][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.853750][ T5963] loop0: rw=0, sector=88048, nr_sectors = 8 limit=40427
[ 240.853927][ T5963] syz.0.17: attempt to access beyond end of device
[ 240.853927][ T5963] loop0: rw=0, sector=88056, nr_sectors = 8 limit=40427
[ 241.700326][ T6377] chnl_net:caif_netlink_parms(): no params data found
[ 242.114832][ T6377] bridge0: port 1(bridge_slave_0) entered blocking state
[ 242.122651][ T6377] bridge0: port 1(bridge_slave_0) entered disabled state
[ 242.122880][ T6377] bridge_slave_0: entered allmulticast mode
[ 242.133619][ T6377] bridge_slave_0: entered promiscuous mode
[ 242.140066][ T6377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 242.140261][ T6377] bridge0: port 2(bridge_slave_1) entered disabled state
[ 242.140429][ T6377] bridge_slave_1: entered allmulticast mode
[ 242.173345][ T6377] bridge_slave_1: entered promiscuous mode
[ 242.470926][ T6377] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 242.487514][ T6377] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 242.662483][ T62] Bluetooth: hci3: command tx timeout
[ 242.888347][ T6377] team0: Port device team_slave_0 added
[ 242.914567][ T6377] team0: Port device team_slave_1 added
[ 243.177150][ T6377] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 243.177170][ T6377] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 243.177199][ T6377] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 243.179732][ T6377] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 243.179747][ T6377] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 243.179773][ T6377] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 243.654244][ T6377] hsr_slave_0: entered promiscuous mode
[ 243.655789][ T6377] hsr_slave_1: entered promiscuous mode
[ 243.656808][ T6377] debugfs: 'hsr0' already exists in 'hsr'
[ 243.656834][ T6377] Cannot create hsr debugfs directory
[ 244.657145][ T6377] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 244.742537][ T62] Bluetooth: hci3: command tx timeout
[ 244.748348][ T6377] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 244.831494][ T6377] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 244.880496][ T6377] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 245.309828][ T6377] 8021q: adding VLAN 0 to HW filter on device bond0
[ 245.399838][ T6377] 8021q: adding VLAN 0 to HW filter on device team0
[ 245.427935][ T59] bridge0: port 1(bridge_slave_0) entered blocking state
[ 245.428162][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 245.458129][ T59] bridge0: port 2(bridge_slave_1) entered blocking state
[ 245.458286][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 245.863810][ T6329] bio_check_eod: 31924 callbacks suppressed
[ 245.863835][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.863835][ T6329] loop1: rw=0, sector=86552, nr_sectors = 8 limit=40427
[ 245.864018][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.864018][ T6329] loop1: rw=0, sector=86560, nr_sectors = 8 limit=40427
[ 245.864159][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.864159][ T6329] loop1: rw=0, sector=86568, nr_sectors = 8 limit=40427
[ 245.864295][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.864295][ T6329] loop1: rw=0, sector=86576, nr_sectors = 8 limit=40427
[ 245.864431][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.864431][ T6329] loop1: rw=0, sector=86584, nr_sectors = 8 limit=40427
[ 245.864579][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.864579][ T6329] loop1: rw=0, sector=86592, nr_sectors = 8 limit=40427
[ 245.864761][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.864761][ T6329] loop1: rw=0, sector=86600, nr_sectors = 8 limit=40427
[ 245.864908][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.864908][ T6329] loop1: rw=0, sector=86608, nr_sectors = 8 limit=40427
[ 245.865048][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.865048][ T6329] loop1: rw=0, sector=86616, nr_sectors = 8 limit=40427
[ 245.865187][ T6329] syz.1.54: attempt to access beyond end of device
[ 245.865187][ T6329] loop1: rw=0, sector=86624, nr_sectors = 8 limit=40427
[ 246.251412][ T6377] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 246.355025][ T6377] veth0_vlan: entered promiscuous mode
[ 246.375334][ T6377] veth1_vlan: entered promiscuous mode
[ 246.465776][ T6377] veth0_macvtap: entered promiscuous mode
[ 246.498125][ T6377] veth1_macvtap: entered promiscuous mode
[ 246.534560][ T6377] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 246.561726][ T6377] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 246.582635][ T144] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 246.582695][ T144] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 246.582752][ T144] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 246.582799][ T144] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 246.834946][ T62] Bluetooth: hci3: command tx timeout
[ 247.022550][ T1164] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 247.022571][ T1164] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 247.146830][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 247.146855][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/01/10 05:16:06 executed programs: 42
[ 248.600049][ T6398] loop3: detected capacity change from 0 to 40427
[ 248.617240][ T6398] F2FS-fs (loop3): invalid crc value
[ 248.902524][ T62] Bluetooth: hci3: command tx timeout
[ 249.161583][ T6398] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 249.202039][ T6398] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 249.828858][ T37] audit: type=1800 audit(1768022169.194:19): pid=6404 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.57" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 249.938102][ T6377] CPU: 0 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 249.938135][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 249.938147][ T6377] Call Trace:
[ 249.938156][ T6377]
[ 249.938165][ T6377] dump_stack_lvl+0xe8/0x150
[ 249.938201][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 249.938240][ T6377] f2fs_write_end_io+0x886/0xb60
[ 249.938286][ T6377] __submit_merged_bio+0x256/0x660
[ 249.938327][ T6377] __submit_merged_write_cond+0x269/0x530
[ 249.938368][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 249.938433][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 249.938529][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 249.938572][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 249.938595][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 249.938616][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 249.938638][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 249.938667][ T6377] ? reacquire_held_locks+0x104/0x190
[ 249.938696][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 249.938733][ T6377] ? rt_spin_unlock+0x150/0x200
[ 249.938765][ T6377] ? rt_spin_unlock+0x161/0x200
[ 249.938792][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 249.938815][ T6377] do_writepages+0x32e/0x550
[ 249.938839][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 249.938870][ T6377] ? rt_spin_unlock+0x150/0x200
[ 249.938911][ T6377] filemap_fdatawrite+0x19c/0x240
[ 249.938935][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 249.938956][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 249.939030][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 249.939069][ T6377] ? rt_spin_unlock+0x161/0x200
[ 249.939101][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 249.939145][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 249.939207][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 249.939299][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 249.939331][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 249.939385][ T6377] deactivate_locked_super+0xbc/0x130
[ 249.939416][ T6377] cleanup_mnt+0x425/0x4c0
[ 249.939441][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 249.939468][ T6377] task_work_run+0x1d4/0x260
[ 249.939511][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 249.939556][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 249.939586][ T6377] ? rcu_is_watching+0x15/0xb0
[ 249.939610][ T6377] do_syscall_64+0x2c1/0xf80
[ 249.939632][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 249.939651][ T6377] ? trace_irq_disable+0x37/0x100
[ 249.939673][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 249.939699][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 249.939719][ T6377] RIP: 0033:0x7f585f100a77
[ 249.939739][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 249.939755][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 249.939779][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 249.939793][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 249.939806][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 249.939818][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 249.939831][ T6377] R13: 00007f585f183d7d R14: 000000000003cdce R15: 00007ffd7a4215f0
[ 249.939870][ T6377]
[ 249.939879][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 250.882540][ T6329] bio_check_eod: 28036 callbacks suppressed
[ 250.882564][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.882564][ T6329] loop1: rw=0, sector=89008, nr_sectors = 8 limit=40427
[ 250.882732][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.882732][ T6329] loop1: rw=0, sector=89016, nr_sectors = 8 limit=40427
[ 250.882872][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.882872][ T6329] loop1: rw=0, sector=89024, nr_sectors = 8 limit=40427
[ 250.883009][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.883009][ T6329] loop1: rw=0, sector=89032, nr_sectors = 8 limit=40427
[ 250.883145][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.883145][ T6329] loop1: rw=0, sector=89040, nr_sectors = 8 limit=40427
[ 250.883314][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.883314][ T6329] loop1: rw=0, sector=89048, nr_sectors = 8 limit=40427
[ 250.883449][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.883449][ T6329] loop1: rw=0, sector=89056, nr_sectors = 8 limit=40427
[ 250.883586][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.883586][ T6329] loop1: rw=0, sector=89064, nr_sectors = 8 limit=40427
[ 250.883738][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.883738][ T6329] loop1: rw=0, sector=89072, nr_sectors = 8 limit=40427
[ 250.883880][ T6329] syz.1.54: attempt to access beyond end of device
[ 250.883880][ T6329] loop1: rw=0, sector=89080, nr_sectors = 8 limit=40427
[ 252.124362][ T6408] loop3: detected capacity change from 0 to 40427
[ 252.144957][ T6408] F2FS-fs (loop3): invalid crc value
[ 252.612140][ T6408] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 252.645607][ T6408] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
2026/01/10 05:16:12 executed programs: 44
[ 253.072773][ T37] audit: type=1800 audit(1768022172.444:20): pid=6414 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.58" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 253.156923][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 253.156956][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 253.156970][ T6377] Call Trace:
[ 253.156978][ T6377]
[ 253.156988][ T6377] dump_stack_lvl+0xe8/0x150
[ 253.157025][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 253.157065][ T6377] f2fs_write_end_io+0x886/0xb60
[ 253.157111][ T6377] __submit_merged_bio+0x256/0x660
[ 253.157151][ T6377] __submit_merged_write_cond+0x269/0x530
[ 253.157191][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 253.157256][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 253.157344][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 253.157384][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 253.157408][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 253.157429][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 253.157451][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 253.157479][ T6377] ? reacquire_held_locks+0x104/0x190
[ 253.157509][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 253.157547][ T6377] ? rt_spin_unlock+0x150/0x200
[ 253.157581][ T6377] ? rt_spin_unlock+0x161/0x200
[ 253.157607][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 253.157640][ T6377] do_writepages+0x32e/0x550
[ 253.157666][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 253.157698][ T6377] ? rt_spin_unlock+0x150/0x200
[ 253.157738][ T6377] filemap_fdatawrite+0x19c/0x240
[ 253.157762][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 253.157783][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 253.157856][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 253.157895][ T6377] ? rt_spin_unlock+0x161/0x200
[ 253.157927][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 253.157970][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 253.158042][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 253.158137][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 253.158170][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 253.158224][ T6377] deactivate_locked_super+0xbc/0x130
[ 253.158253][ T6377] cleanup_mnt+0x425/0x4c0
[ 253.158279][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 253.158306][ T6377] task_work_run+0x1d4/0x260
[ 253.158342][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 253.158384][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 253.158413][ T6377] ? rcu_is_watching+0x15/0xb0
[ 253.158437][ T6377] do_syscall_64+0x2c1/0xf80
[ 253.158459][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 253.158478][ T6377] ? trace_irq_disable+0x37/0x100
[ 253.158500][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 253.158526][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 253.158547][ T6377] RIP: 0033:0x7f585f100a77
[ 253.158567][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 253.158584][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 253.158616][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 253.158631][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 253.158643][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 253.158657][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 253.158671][ T6377] R13: 00007f585f183d7d R14: 000000000003db51 R15: 00007ffd7a4215f0
[ 253.158710][ T6377]
[ 253.158718][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 255.410279][ T6417] loop3: detected capacity change from 0 to 40427
[ 255.438987][ T6417] F2FS-fs (loop3): invalid crc value
[ 255.871982][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[ 255.872061][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 255.894098][ T6329] bio_check_eod: 29247 callbacks suppressed
[ 255.894121][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.894121][ T6329] loop1: rw=524288, sector=86064, nr_sectors = 8 limit=40427
[ 255.894280][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.894280][ T6329] loop1: rw=524288, sector=86072, nr_sectors = 8 limit=40427
[ 255.894459][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.894459][ T6329] loop1: rw=524288, sector=86080, nr_sectors = 8 limit=40427
[ 255.894593][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.894593][ T6329] loop1: rw=524288, sector=86088, nr_sectors = 8 limit=40427
[ 255.894756][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.894756][ T6329] loop1: rw=524288, sector=86096, nr_sectors = 8 limit=40427
[ 255.894890][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.894890][ T6329] loop1: rw=524288, sector=86104, nr_sectors = 8 limit=40427
[ 255.895023][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.895023][ T6329] loop1: rw=524288, sector=86112, nr_sectors = 8 limit=40427
[ 255.895162][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.895162][ T6329] loop1: rw=524288, sector=86120, nr_sectors = 8 limit=40427
[ 255.895295][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.895295][ T6329] loop1: rw=524288, sector=86128, nr_sectors = 8 limit=40427
[ 255.895436][ T6329] syz.1.54: attempt to access beyond end of device
[ 255.895436][ T6329] loop1: rw=524288, sector=86136, nr_sectors = 8 limit=40427
[ 255.902794][ T6417] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 255.907538][ T6417] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 256.623194][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 256.623227][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 256.623241][ T6377] Call Trace:
[ 256.623249][ T6377]
[ 256.623259][ T6377] dump_stack_lvl+0xe8/0x150
[ 256.623294][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 256.623335][ T6377] f2fs_write_end_io+0x886/0xb60
[ 256.623378][ T6377] __submit_merged_bio+0x256/0x660
[ 256.623418][ T6377] __submit_merged_write_cond+0x269/0x530
[ 256.623458][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 256.623523][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 256.623620][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 256.623661][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 256.623684][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 256.623715][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 256.623737][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 256.623766][ T6377] ? reacquire_held_locks+0x104/0x190
[ 256.623794][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 256.623832][ T6377] ? rt_spin_unlock+0x150/0x200
[ 256.623865][ T6377] ? rt_spin_unlock+0x161/0x200
[ 256.623890][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 256.623913][ T6377] do_writepages+0x32e/0x550
[ 256.623938][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 256.623968][ T6377] ? rt_spin_unlock+0x150/0x200
[ 256.624009][ T6377] filemap_fdatawrite+0x19c/0x240
[ 256.624033][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 256.624053][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 256.624126][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 256.624165][ T6377] ? rt_spin_unlock+0x161/0x200
[ 256.624197][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 256.624238][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 256.624300][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 256.624394][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 256.624425][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 256.624479][ T6377] deactivate_locked_super+0xbc/0x130
[ 256.624509][ T6377] cleanup_mnt+0x425/0x4c0
[ 256.624535][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 256.624561][ T6377] task_work_run+0x1d4/0x260
[ 256.624596][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 256.624649][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 256.624679][ T6377] ? rcu_is_watching+0x15/0xb0
[ 256.624703][ T6377] do_syscall_64+0x2c1/0xf80
[ 256.624725][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.624744][ T6377] ? trace_irq_disable+0x37/0x100
[ 256.624766][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 256.624793][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.624812][ T6377] RIP: 0033:0x7f585f100a77
[ 256.624832][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 256.624851][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 256.624874][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 256.624889][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 256.624902][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 256.624915][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 256.624929][ T6377] R13: 00007f585f183d7d R14: 000000000003e817 R15: 00007ffd7a4215f0
[ 256.624968][ T6377]
[ 256.624977][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 258.788875][ T6431] loop3: detected capacity change from 0 to 40427
[ 258.837498][ T6431] F2FS-fs (loop3): invalid crc value
[ 259.138764][ T6368] F2FS-fs (loop2): f2fs_pin_file_control: Enable GC = ino a after 800 GC trials
[ 259.201406][ T6431] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 259.240547][ T6431] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
2026/01/10 05:16:19 executed programs: 46
[ 260.096508][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 260.096538][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 260.096550][ T6377] Call Trace:
[ 260.096558][ T6377]
[ 260.096567][ T6377] dump_stack_lvl+0xe8/0x150
[ 260.096603][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 260.096643][ T6377] f2fs_write_end_io+0x886/0xb60
[ 260.096689][ T6377] __submit_merged_bio+0x256/0x660
[ 260.096729][ T6377] __submit_merged_write_cond+0x269/0x530
[ 260.096770][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 260.096835][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 260.096923][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 260.096964][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 260.096987][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 260.097008][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 260.097030][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 260.097058][ T6377] ? reacquire_held_locks+0x104/0x190
[ 260.097088][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 260.097125][ T6377] ? rt_spin_unlock+0x150/0x200
[ 260.097159][ T6377] ? rt_spin_unlock+0x161/0x200
[ 260.097185][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 260.097209][ T6377] do_writepages+0x32e/0x550
[ 260.097234][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 260.097264][ T6377] ? rt_spin_unlock+0x150/0x200
[ 260.097383][ T6377] filemap_fdatawrite+0x19c/0x240
[ 260.097407][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 260.097428][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 260.097500][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 260.097536][ T6377] ? rt_spin_unlock+0x161/0x200
[ 260.097567][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 260.097642][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 260.097706][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 260.097799][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 260.097833][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 260.097887][ T6377] deactivate_locked_super+0xbc/0x130
[ 260.097917][ T6377] cleanup_mnt+0x425/0x4c0
[ 260.097943][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 260.097969][ T6377] task_work_run+0x1d4/0x260
[ 260.098004][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 260.098049][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 260.098078][ T6377] ? rcu_is_watching+0x15/0xb0
[ 260.098102][ T6377] do_syscall_64+0x2c1/0xf80
[ 260.098123][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 260.098143][ T6377] ? trace_irq_disable+0x37/0x100
[ 260.098164][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 260.098190][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 260.098210][ T6377] RIP: 0033:0x7f585f100a77
[ 260.098231][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 260.098249][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 260.098280][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 260.098294][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 260.098307][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 260.098320][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 260.098334][ T6377] R13: 00007f585f183d7d R14: 000000000003f4cd R15: 00007ffd7a4215f0
[ 260.098374][ T6377]
[ 260.098382][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 260.902501][ T6368] bio_check_eod: 32253 callbacks suppressed
[ 260.902531][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.902531][ T6368] loop2: rw=524288, sector=89000, nr_sectors = 8 limit=40427
[ 260.902688][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.902688][ T6368] loop2: rw=524288, sector=89008, nr_sectors = 8 limit=40427
[ 260.902819][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.902819][ T6368] loop2: rw=524288, sector=89016, nr_sectors = 8 limit=40427
[ 260.902953][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.902953][ T6368] loop2: rw=524288, sector=89024, nr_sectors = 8 limit=40427
[ 260.903087][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.903087][ T6368] loop2: rw=524288, sector=89032, nr_sectors = 8 limit=40427
[ 260.903217][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.903217][ T6368] loop2: rw=524288, sector=89040, nr_sectors = 8 limit=40427
[ 260.903342][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.903342][ T6368] loop2: rw=524288, sector=89048, nr_sectors = 8 limit=40427
[ 260.903476][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.903476][ T6368] loop2: rw=524288, sector=89056, nr_sectors = 8 limit=40427
[ 260.903611][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.903611][ T6368] loop2: rw=524288, sector=89064, nr_sectors = 8 limit=40427
[ 260.903738][ T6368] syz.2.56: attempt to access beyond end of device
[ 260.903738][ T6368] loop2: rw=524288, sector=89072, nr_sectors = 8 limit=40427
[ 262.680586][ T6441] loop3: detected capacity change from 0 to 40427
[ 262.756328][ T6441] F2FS-fs (loop3): invalid crc value
[ 263.065622][ T62] Bluetooth: hci1: command 0x0406 tx timeout
[ 263.211566][ T6441] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 263.228761][ T6441] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 263.756966][ T37] audit: type=1800 audit(1768022183.124:21): pid=6448 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.61" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 263.903569][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 263.903601][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 263.903613][ T6377] Call Trace:
[ 263.903622][ T6377]
[ 263.903631][ T6377] dump_stack_lvl+0xe8/0x150
[ 263.903667][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 263.903707][ T6377] f2fs_write_end_io+0x886/0xb60
[ 263.903751][ T6377] __submit_merged_bio+0x256/0x660
[ 263.903791][ T6377] __submit_merged_write_cond+0x269/0x530
[ 263.903832][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 263.903897][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 263.903984][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 263.904025][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 263.904048][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 263.904069][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 263.904090][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 263.904119][ T6377] ? reacquire_held_locks+0x104/0x190
[ 263.904148][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 263.904186][ T6377] ? rt_spin_unlock+0x150/0x200
[ 263.904217][ T6377] ? rt_spin_unlock+0x161/0x200
[ 263.904243][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 263.904265][ T6377] do_writepages+0x32e/0x550
[ 263.904289][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 263.904320][ T6377] ? rt_spin_unlock+0x150/0x200
[ 263.904362][ T6377] filemap_fdatawrite+0x19c/0x240
[ 263.904386][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 263.904407][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 263.904490][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 263.904529][ T6377] ? rt_spin_unlock+0x161/0x200
[ 263.904561][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 263.904604][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 263.904666][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 263.904761][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 263.904793][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 263.904847][ T6377] deactivate_locked_super+0xbc/0x130
[ 263.904877][ T6377] cleanup_mnt+0x425/0x4c0
[ 263.904903][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 263.904930][ T6377] task_work_run+0x1d4/0x260
[ 263.904965][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 263.905034][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 263.905063][ T6377] ? rcu_is_watching+0x15/0xb0
[ 263.905088][ T6377] do_syscall_64+0x2c1/0xf80
[ 263.905109][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 263.905129][ T6377] ? trace_irq_disable+0x37/0x100
[ 263.905159][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 263.905185][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 263.905202][ T6377] RIP: 0033:0x7f585f100a77
[ 263.905223][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 263.905241][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 263.905274][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 263.905289][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 263.905301][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 263.905314][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 263.905329][ T6377] R13: 00007f585f183d7d R14: 0000000000040490 R15: 00007ffd7a4215f0
[ 263.905368][ T6377]
[ 263.905376][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 265.912525][ T6368] bio_check_eod: 42143 callbacks suppressed
[ 265.912549][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.912549][ T6368] loop2: rw=524288, sector=87600, nr_sectors = 8 limit=40427
[ 265.912758][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.912758][ T6368] loop2: rw=524288, sector=87608, nr_sectors = 8 limit=40427
[ 265.912896][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.912896][ T6368] loop2: rw=524288, sector=87616, nr_sectors = 8 limit=40427
[ 265.913031][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.913031][ T6368] loop2: rw=524288, sector=87624, nr_sectors = 8 limit=40427
[ 265.913166][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.913166][ T6368] loop2: rw=524288, sector=87632, nr_sectors = 8 limit=40427
[ 265.913311][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.913311][ T6368] loop2: rw=524288, sector=87640, nr_sectors = 8 limit=40427
[ 265.913446][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.913446][ T6368] loop2: rw=524288, sector=87648, nr_sectors = 8 limit=40427
[ 265.913609][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.913609][ T6368] loop2: rw=524288, sector=87656, nr_sectors = 8 limit=40427
[ 265.913754][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.913754][ T6368] loop2: rw=524288, sector=87664, nr_sectors = 8 limit=40427
[ 265.913889][ T6368] syz.2.56: attempt to access beyond end of device
[ 265.913889][ T6368] loop2: rw=524288, sector=87672, nr_sectors = 8 limit=40427
[ 266.033844][ T6451] loop3: detected capacity change from 0 to 40427
[ 266.141164][ T6451] F2FS-fs (loop3): invalid crc value
[ 266.680632][ T6451] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 266.728539][ T6451] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 267.422828][ T37] audit: type=1800 audit(1768022186.794:22): pid=6457 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.62" name="file1" dev="loop3" ino=10 res=0 errno=0
2026/01/10 05:16:26 executed programs: 48
[ 267.524148][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 267.524190][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 267.524204][ T6377] Call Trace:
[ 267.524212][ T6377]
[ 267.524222][ T6377] dump_stack_lvl+0xe8/0x150
[ 267.524257][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 267.524297][ T6377] f2fs_write_end_io+0x886/0xb60
[ 267.524342][ T6377] __submit_merged_bio+0x256/0x660
[ 267.524383][ T6377] __submit_merged_write_cond+0x269/0x530
[ 267.524422][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 267.524487][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 267.524574][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 267.524616][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 267.524639][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 267.524660][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 267.524682][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 267.524710][ T6377] ? reacquire_held_locks+0x104/0x190
[ 267.524739][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 267.524777][ T6377] ? rt_spin_unlock+0x150/0x200
[ 267.524810][ T6377] ? rt_spin_unlock+0x161/0x200
[ 267.524836][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 267.524860][ T6377] do_writepages+0x32e/0x550
[ 267.524885][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 267.524915][ T6377] ? rt_spin_unlock+0x150/0x200
[ 267.524957][ T6377] filemap_fdatawrite+0x19c/0x240
[ 267.524981][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 267.525001][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 267.525074][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 267.525114][ T6377] ? rt_spin_unlock+0x161/0x200
[ 267.525145][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 267.525194][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 267.525256][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 267.525351][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 267.525383][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 267.525435][ T6377] deactivate_locked_super+0xbc/0x130
[ 267.525465][ T6377] cleanup_mnt+0x425/0x4c0
[ 267.525491][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 267.525517][ T6377] task_work_run+0x1d4/0x260
[ 267.525552][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 267.525597][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 267.525626][ T6377] ? rcu_is_watching+0x15/0xb0
[ 267.525650][ T6377] do_syscall_64+0x2c1/0xf80
[ 267.525672][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 267.525692][ T6377] ? trace_irq_disable+0x37/0x100
[ 267.525714][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 267.525741][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 267.525760][ T6377] RIP: 0033:0x7f585f100a77
[ 267.525781][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 267.525798][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 267.525821][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 267.525836][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 267.525848][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 267.525861][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 267.525876][ T6377] R13: 00007f585f183d7d R14: 000000000004123a R15: 00007ffd7a4215f0
[ 267.525914][ T6377]
[ 267.525924][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 269.820932][ T6460] loop3: detected capacity change from 0 to 40427
[ 269.890203][ T6460] F2FS-fs (loop3): invalid crc value
[ 270.320960][ T6460] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 270.334262][ T6460] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 270.922482][ T6368] bio_check_eod: 40938 callbacks suppressed
[ 270.922505][ T6368] syz.2.56: attempt to access beyond end of device
[ 270.922505][ T6368] loop2: rw=524288, sector=89832, nr_sectors = 8 limit=40427
[ 270.922642][ T5963] syz.0.17: attempt to access beyond end of device
[ 270.922642][ T5963] loop0: rw=0, sector=88432, nr_sectors = 8 limit=40427
[ 270.922671][ T6368] syz.2.56: attempt to access beyond end of device
[ 270.922671][ T6368] loop2: rw=524288, sector=89840, nr_sectors = 8 limit=40427
[ 270.922790][ T5963] syz.0.17: attempt to access beyond end of device
[ 270.922790][ T5963] loop0: rw=0, sector=88440, nr_sectors = 8 limit=40427
[ 270.922808][ T6368] syz.2.56: attempt to access beyond end of device
[ 270.922808][ T6368] loop2: rw=524288, sector=89848, nr_sectors = 8 limit=40427
[ 270.922930][ T5963] syz.0.17: attempt to access beyond end of device
[ 270.922930][ T5963] loop0: rw=0, sector=88448, nr_sectors = 8 limit=40427
[ 270.922942][ T6368] syz.2.56: attempt to access beyond end of device
[ 270.922942][ T6368] loop2: rw=524288, sector=89856, nr_sectors = 8 limit=40427
[ 270.923066][ T5963] syz.0.17: attempt to access beyond end of device
[ 270.923066][ T5963] loop0: rw=0, sector=88456, nr_sectors = 8 limit=40427
[ 270.923201][ T6368] syz.2.56: attempt to access beyond end of device
[ 270.923201][ T6368] loop2: rw=524288, sector=89864, nr_sectors = 8 limit=40427
[ 270.923215][ T5963] syz.0.17: attempt to access beyond end of device
[ 270.923215][ T5963] loop0: rw=0, sector=88464, nr_sectors = 8 limit=40427
[ 271.142694][ T37] audit: type=1800 audit(1768022190.484:23): pid=6466 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.63" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 271.241751][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 271.241784][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 271.241797][ T6377] Call Trace:
[ 271.241806][ T6377]
[ 271.241815][ T6377] dump_stack_lvl+0xe8/0x150
[ 271.241851][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 271.241891][ T6377] f2fs_write_end_io+0x886/0xb60
[ 271.241937][ T6377] __submit_merged_bio+0x256/0x660
[ 271.241977][ T6377] __submit_merged_write_cond+0x269/0x530
[ 271.242017][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 271.242083][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 271.242182][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 271.242224][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 271.242247][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 271.242268][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 271.242290][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 271.242324][ T6377] ? reacquire_held_locks+0x104/0x190
[ 271.242349][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 271.242383][ T6377] ? rt_spin_unlock+0x150/0x200
[ 271.242417][ T6377] ? rt_spin_unlock+0x161/0x200
[ 271.242443][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 271.242467][ T6377] do_writepages+0x32e/0x550
[ 271.242492][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 271.242522][ T6377] ? rt_spin_unlock+0x150/0x200
[ 271.242564][ T6377] filemap_fdatawrite+0x19c/0x240
[ 271.242588][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 271.242608][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 271.242682][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 271.242722][ T6377] ? rt_spin_unlock+0x161/0x200
[ 271.242753][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 271.242796][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 271.242859][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 271.242954][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 271.242987][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 271.243040][ T6377] deactivate_locked_super+0xbc/0x130
[ 271.243070][ T6377] cleanup_mnt+0x425/0x4c0
[ 271.243095][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 271.243130][ T6377] task_work_run+0x1d4/0x260
[ 271.243166][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 271.243210][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 271.243239][ T6377] ? rcu_is_watching+0x15/0xb0
[ 271.243263][ T6377] do_syscall_64+0x2c1/0xf80
[ 271.243284][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 271.243303][ T6377] ? trace_irq_disable+0x37/0x100
[ 271.243324][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 271.243350][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 271.243369][ T6377] RIP: 0033:0x7f585f100a77
[ 271.243390][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 271.243408][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 271.243431][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 271.243446][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 271.243458][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 271.243471][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 271.243485][ T6377] R13: 00007f585f183d7d R14: 0000000000042042 R15: 00007ffd7a4215f0
[ 271.243524][ T6377]
[ 271.257436][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 273.279810][ T6469] loop3: detected capacity change from 0 to 40427
[ 273.314311][ T6469] F2FS-fs (loop3): invalid crc value
[ 273.697691][ T6469] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 273.700599][ T6469] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 274.206694][ T37] audit: type=1800 audit(1768022193.574:24): pid=6475 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.64" name="file1" dev="loop3" ino=10 res=0 errno=0
2026/01/10 05:16:33 executed programs: 50
[ 274.301419][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 274.301453][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 274.301467][ T6377] Call Trace:
[ 274.301475][ T6377]
[ 274.301485][ T6377] dump_stack_lvl+0xe8/0x150
[ 274.301520][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 274.301560][ T6377] f2fs_write_end_io+0x886/0xb60
[ 274.301606][ T6377] __submit_merged_bio+0x256/0x660
[ 274.301647][ T6377] __submit_merged_write_cond+0x269/0x530
[ 274.301688][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 274.301754][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 274.301842][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 274.301883][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 274.301905][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 274.301926][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 274.301948][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 274.301977][ T6377] ? reacquire_held_locks+0x104/0x190
[ 274.302007][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 274.302044][ T6377] ? rt_spin_unlock+0x150/0x200
[ 274.302078][ T6377] ? rt_spin_unlock+0x161/0x200
[ 274.302104][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 274.302137][ T6377] do_writepages+0x32e/0x550
[ 274.302162][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 274.302193][ T6377] ? rt_spin_unlock+0x150/0x200
[ 274.302234][ T6377] filemap_fdatawrite+0x19c/0x240
[ 274.302257][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 274.302277][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 274.302352][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 274.302389][ T6377] ? rt_spin_unlock+0x161/0x200
[ 274.302418][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 274.302460][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 274.302518][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 274.302606][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 274.302638][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 274.302691][ T6377] deactivate_locked_super+0xbc/0x130
[ 274.302721][ T6377] cleanup_mnt+0x425/0x4c0
[ 274.302746][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 274.302771][ T6377] task_work_run+0x1d4/0x260
[ 274.302804][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 274.302846][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 274.302874][ T6377] ? rcu_is_watching+0x15/0xb0
[ 274.302897][ T6377] do_syscall_64+0x2c1/0xf80
[ 274.302918][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 274.302937][ T6377] ? trace_irq_disable+0x37/0x100
[ 274.302958][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 274.302984][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 274.303004][ T6377] RIP: 0033:0x7f585f100a77
[ 274.303025][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 274.303043][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 274.303067][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 274.303082][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 274.303094][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 274.303107][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 274.303130][ T6377] R13: 00007f585f183d7d R14: 0000000000042d6d R15: 00007ffd7a4215f0
[ 274.303169][ T6377]
[ 274.328054][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 275.939051][ T6368] bio_check_eod: 40724 callbacks suppressed
[ 275.939075][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.939075][ T6368] loop2: rw=524288, sector=86568, nr_sectors = 8 limit=40427
[ 275.939218][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.939218][ T6368] loop2: rw=524288, sector=86576, nr_sectors = 8 limit=40427
[ 275.939363][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.939363][ T6368] loop2: rw=524288, sector=86584, nr_sectors = 8 limit=40427
[ 275.939498][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.939498][ T6368] loop2: rw=524288, sector=86592, nr_sectors = 8 limit=40427
[ 275.939632][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.939632][ T6368] loop2: rw=524288, sector=86600, nr_sectors = 8 limit=40427
[ 275.939767][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.939767][ T6368] loop2: rw=524288, sector=86608, nr_sectors = 8 limit=40427
[ 275.939901][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.939901][ T6368] loop2: rw=524288, sector=86616, nr_sectors = 8 limit=40427
[ 275.940034][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.940034][ T6368] loop2: rw=524288, sector=86624, nr_sectors = 8 limit=40427
[ 275.940168][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.940168][ T6368] loop2: rw=524288, sector=86632, nr_sectors = 8 limit=40427
[ 275.940301][ T6368] syz.2.56: attempt to access beyond end of device
[ 275.940301][ T6368] loop2: rw=524288, sector=86640, nr_sectors = 8 limit=40427
[ 276.732185][ T6478] loop3: detected capacity change from 0 to 40427
[ 276.775888][ T6478] F2FS-fs (loop3): invalid crc value
[ 277.179578][ T6478] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 277.186997][ T6478] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 277.632063][ T37] audit: type=1800 audit(1768022196.994:25): pid=6484 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.65" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 277.735770][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 277.735802][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 277.735815][ T6377] Call Trace:
[ 277.735824][ T6377]
[ 277.735833][ T6377] dump_stack_lvl+0xe8/0x150
[ 277.735869][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 277.735910][ T6377] f2fs_write_end_io+0x886/0xb60
[ 277.735956][ T6377] __submit_merged_bio+0x256/0x660
[ 277.735997][ T6377] __submit_merged_write_cond+0x269/0x530
[ 277.736036][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 277.736100][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 277.736189][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 277.736230][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 277.736254][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 277.736275][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 277.736307][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 277.736335][ T6377] ? reacquire_held_locks+0x104/0x190
[ 277.736364][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 277.736401][ T6377] ? rt_spin_unlock+0x150/0x200
[ 277.736436][ T6377] ? rt_spin_unlock+0x161/0x200
[ 277.736462][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 277.736485][ T6377] do_writepages+0x32e/0x550
[ 277.736510][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 277.736541][ T6377] ? rt_spin_unlock+0x150/0x200
[ 277.736582][ T6377] filemap_fdatawrite+0x19c/0x240
[ 277.736606][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 277.736626][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 277.736699][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 277.736738][ T6377] ? rt_spin_unlock+0x161/0x200
[ 277.736770][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 277.736813][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 277.736876][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 277.736970][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 277.737003][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 277.737056][ T6377] deactivate_locked_super+0xbc/0x130
[ 277.737085][ T6377] cleanup_mnt+0x425/0x4c0
[ 277.737111][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 277.737138][ T6377] task_work_run+0x1d4/0x260
[ 277.737173][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 277.737217][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 277.737247][ T6377] ? rcu_is_watching+0x15/0xb0
[ 277.737271][ T6377] do_syscall_64+0x2c1/0xf80
[ 277.737301][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 277.737321][ T6377] ? trace_irq_disable+0x37/0x100
[ 277.737342][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 277.737368][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 277.737388][ T6377] RIP: 0033:0x7f585f100a77
[ 277.737408][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 277.737426][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 277.737449][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 277.737463][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 277.737477][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 277.737490][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 277.737504][ T6377] R13: 00007f585f183d7d R14: 0000000000043b2a R15: 00007ffd7a4215f0
[ 277.737542][ T6377]
[ 277.737551][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 279.946631][ T6487] loop3: detected capacity change from 0 to 40427
[ 280.007956][ T6487] F2FS-fs (loop3): invalid crc value
[ 280.398966][ T6487] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 280.432700][ T6487] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 280.942508][ T5963] bio_check_eod: 42113 callbacks suppressed
[ 280.942532][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.942532][ T5963] loop0: rw=0, sector=88264, nr_sectors = 8 limit=40427
[ 280.942702][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.942702][ T5963] loop0: rw=0, sector=88272, nr_sectors = 8 limit=40427
[ 280.942841][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.942841][ T5963] loop0: rw=0, sector=88280, nr_sectors = 8 limit=40427
[ 280.942977][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.942977][ T5963] loop0: rw=0, sector=88288, nr_sectors = 8 limit=40427
[ 280.943123][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.943123][ T5963] loop0: rw=0, sector=88296, nr_sectors = 8 limit=40427
[ 280.943259][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.943259][ T5963] loop0: rw=0, sector=88304, nr_sectors = 8 limit=40427
[ 280.943394][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.943394][ T5963] loop0: rw=0, sector=88312, nr_sectors = 8 limit=40427
[ 280.943531][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.943531][ T5963] loop0: rw=0, sector=88320, nr_sectors = 8 limit=40427
[ 280.943668][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.943668][ T5963] loop0: rw=0, sector=88328, nr_sectors = 8 limit=40427
[ 280.943812][ T5963] syz.0.17: attempt to access beyond end of device
[ 280.943812][ T5963] loop0: rw=0, sector=88336, nr_sectors = 8 limit=40427
2026/01/10 05:16:40 executed programs: 52
[ 281.262388][ T37] audit: type=1800 audit(1768022200.624:26): pid=6493 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.66" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 281.324796][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 281.324829][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 281.324841][ T6377] Call Trace:
[ 281.324849][ T6377]
[ 281.324859][ T6377] dump_stack_lvl+0xe8/0x150
[ 281.324894][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 281.324934][ T6377] f2fs_write_end_io+0x886/0xb60
[ 281.324980][ T6377] __submit_merged_bio+0x256/0x660
[ 281.325020][ T6377] __submit_merged_write_cond+0x269/0x530
[ 281.325058][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 281.325133][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 281.325228][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 281.325269][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 281.325293][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 281.325323][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 281.325345][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 281.325373][ T6377] ? reacquire_held_locks+0x104/0x190
[ 281.325402][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 281.325439][ T6377] ? rt_spin_unlock+0x150/0x200
[ 281.325473][ T6377] ? rt_spin_unlock+0x161/0x200
[ 281.325499][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 281.325522][ T6377] do_writepages+0x32e/0x550
[ 281.325547][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 281.325577][ T6377] ? rt_spin_unlock+0x150/0x200
[ 281.325618][ T6377] filemap_fdatawrite+0x19c/0x240
[ 281.325643][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 281.325663][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 281.325736][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 281.325776][ T6377] ? rt_spin_unlock+0x161/0x200
[ 281.325815][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 281.325857][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 281.325920][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 281.326013][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 281.326046][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 281.326097][ T6377] deactivate_locked_super+0xbc/0x130
[ 281.326128][ T6377] cleanup_mnt+0x425/0x4c0
[ 281.326162][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 281.326195][ T6377] task_work_run+0x1d4/0x260
[ 281.326248][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 281.326319][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 281.326354][ T6377] ? rcu_is_watching+0x15/0xb0
[ 281.326378][ T6377] do_syscall_64+0x2c1/0xf80
[ 281.326400][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 281.326420][ T6377] ? trace_irq_disable+0x37/0x100
[ 281.326442][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 281.326468][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 281.326488][ T6377] RIP: 0033:0x7f585f100a77
[ 281.326508][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 281.326526][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 281.326549][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 281.326563][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 281.326576][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 281.326590][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 281.326604][ T6377] R13: 00007f585f183d7d R14: 0000000000044829 R15: 00007ffd7a4215f0
[ 281.326643][ T6377]
[ 281.326651][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 283.638286][ T6496] loop3: detected capacity change from 0 to 40427
[ 283.653454][ T6496] F2FS-fs (loop3): invalid crc value
[ 284.071836][ T6496] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 284.101573][ T6496] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 284.791283][ T37] audit: type=1800 audit(1768022204.154:27): pid=6502 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.67" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 284.885585][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 284.885617][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 284.885630][ T6377] Call Trace:
[ 284.885639][ T6377]
[ 284.885648][ T6377] dump_stack_lvl+0xe8/0x150
[ 284.885683][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 284.885723][ T6377] f2fs_write_end_io+0x886/0xb60
[ 284.885770][ T6377] __submit_merged_bio+0x256/0x660
[ 284.885810][ T6377] __submit_merged_write_cond+0x269/0x530
[ 284.885850][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 284.885915][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 284.886002][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 284.886044][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 284.886067][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 284.886088][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 284.886110][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 284.886138][ T6377] ? reacquire_held_locks+0x104/0x190
[ 284.886167][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 284.886213][ T6377] ? rt_spin_unlock+0x150/0x200
[ 284.886248][ T6377] ? rt_spin_unlock+0x161/0x200
[ 284.886273][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 284.886297][ T6377] do_writepages+0x32e/0x550
[ 284.886322][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 284.886353][ T6377] ? rt_spin_unlock+0x150/0x200
[ 284.886394][ T6377] filemap_fdatawrite+0x19c/0x240
[ 284.886418][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 284.886439][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 284.886513][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 284.886553][ T6377] ? rt_spin_unlock+0x161/0x200
[ 284.886584][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 284.886626][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 284.886689][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 284.886783][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 284.886816][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 284.886870][ T6377] deactivate_locked_super+0xbc/0x130
[ 284.886899][ T6377] cleanup_mnt+0x425/0x4c0
[ 284.886926][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 284.886950][ T6377] task_work_run+0x1d4/0x260
[ 284.886979][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 284.887015][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 284.887039][ T6377] ? rcu_is_watching+0x15/0xb0
[ 284.887063][ T6377] do_syscall_64+0x2c1/0xf80
[ 284.887082][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 284.887102][ T6377] ? trace_irq_disable+0x37/0x100
[ 284.887123][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 284.887149][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 284.887169][ T6377] RIP: 0033:0x7f585f100a77
[ 284.887190][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 284.887216][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 284.887240][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 284.887254][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 284.887268][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 284.887281][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 284.887295][ T6377] R13: 00007f585f183d7d R14: 000000000004566d R15: 00007ffd7a4215f0
[ 284.887334][ T6377]
[ 284.887343][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 285.954326][ T6329] bio_check_eod: 41153 callbacks suppressed
[ 285.954351][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.954351][ T6329] loop1: rw=524288, sector=86608, nr_sectors = 8 limit=40427
[ 285.954495][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.954495][ T6329] loop1: rw=524288, sector=86616, nr_sectors = 8 limit=40427
[ 285.954623][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.954623][ T6329] loop1: rw=524288, sector=86624, nr_sectors = 8 limit=40427
[ 285.954749][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.954749][ T6329] loop1: rw=524288, sector=86632, nr_sectors = 8 limit=40427
[ 285.954875][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.954875][ T6329] loop1: rw=524288, sector=86640, nr_sectors = 8 limit=40427
[ 285.954999][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.954999][ T6329] loop1: rw=524288, sector=86648, nr_sectors = 8 limit=40427
[ 285.955161][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.955161][ T6329] loop1: rw=524288, sector=86656, nr_sectors = 8 limit=40427
[ 285.955298][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.955298][ T6329] loop1: rw=524288, sector=86664, nr_sectors = 8 limit=40427
[ 285.955425][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.955425][ T6329] loop1: rw=524288, sector=86672, nr_sectors = 8 limit=40427
[ 285.955563][ T6329] syz.1.54: attempt to access beyond end of device
[ 285.955563][ T6329] loop1: rw=524288, sector=86680, nr_sectors = 8 limit=40427
[ 286.997452][ T6505] loop3: detected capacity change from 0 to 40427
[ 287.033559][ T6505] F2FS-fs (loop3): invalid crc value
[ 287.450037][ T6505] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 287.522556][ T6505] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 287.987679][ T37] audit: type=1800 audit(1768022207.354:28): pid=6511 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.68" name="file1" dev="loop3" ino=10 res=0 errno=0
2026/01/10 05:16:47 executed programs: 54
[ 288.116998][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 288.117031][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 288.117044][ T6377] Call Trace:
[ 288.117052][ T6377]
[ 288.117062][ T6377] dump_stack_lvl+0xe8/0x150
[ 288.117098][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 288.117138][ T6377] f2fs_write_end_io+0x886/0xb60
[ 288.117184][ T6377] __submit_merged_bio+0x256/0x660
[ 288.117223][ T6377] __submit_merged_write_cond+0x269/0x530
[ 288.117263][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 288.117328][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 288.117415][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 288.117457][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 288.117480][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 288.117501][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 288.117523][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 288.117552][ T6377] ? reacquire_held_locks+0x104/0x190
[ 288.117581][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 288.117618][ T6377] ? rt_spin_unlock+0x150/0x200
[ 288.117652][ T6377] ? rt_spin_unlock+0x161/0x200
[ 288.117678][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 288.117701][ T6377] do_writepages+0x32e/0x550
[ 288.117726][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 288.117756][ T6377] ? rt_spin_unlock+0x150/0x200
[ 288.117797][ T6377] filemap_fdatawrite+0x19c/0x240
[ 288.117821][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 288.117840][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 288.117913][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 288.117953][ T6377] ? rt_spin_unlock+0x161/0x200
[ 288.117993][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 288.118037][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 288.118099][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 288.118194][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 288.118225][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 288.118280][ T6377] deactivate_locked_super+0xbc/0x130
[ 288.118309][ T6377] cleanup_mnt+0x425/0x4c0
[ 288.118334][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 288.118361][ T6377] task_work_run+0x1d4/0x260
[ 288.118395][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 288.118440][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 288.118469][ T6377] ? rcu_is_watching+0x15/0xb0
[ 288.118493][ T6377] do_syscall_64+0x2c1/0xf80
[ 288.118514][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.118534][ T6377] ? trace_irq_disable+0x37/0x100
[ 288.118555][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 288.118582][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.118602][ T6377] RIP: 0033:0x7f585f100a77
[ 288.118622][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 288.118640][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 288.118664][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 288.118679][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 288.118692][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 288.118705][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 288.118719][ T6377] R13: 00007f585f183d7d R14: 0000000000046370 R15: 00007ffd7a4215f0
[ 288.118758][ T6377]
[ 288.118767][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 290.313511][ T6514] loop3: detected capacity change from 0 to 40427
[ 290.340206][ T6514] F2FS-fs (loop3): invalid crc value
[ 290.700758][ T6514] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 290.732651][ T6514] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 290.963611][ T5963] bio_check_eod: 40908 callbacks suppressed
[ 290.963635][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.963635][ T5963] loop0: rw=524288, sector=88320, nr_sectors = 8 limit=40427
[ 290.963798][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.963798][ T5963] loop0: rw=524288, sector=88328, nr_sectors = 8 limit=40427
[ 290.963940][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.963940][ T5963] loop0: rw=524288, sector=88336, nr_sectors = 8 limit=40427
[ 290.964076][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.964076][ T5963] loop0: rw=524288, sector=88344, nr_sectors = 8 limit=40427
[ 290.964209][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.964209][ T5963] loop0: rw=524288, sector=88352, nr_sectors = 8 limit=40427
[ 290.964343][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.964343][ T5963] loop0: rw=524288, sector=88360, nr_sectors = 8 limit=40427
[ 290.964476][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.964476][ T5963] loop0: rw=524288, sector=88368, nr_sectors = 8 limit=40427
[ 290.964608][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.964608][ T5963] loop0: rw=524288, sector=88376, nr_sectors = 8 limit=40427
[ 290.964740][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.964740][ T5963] loop0: rw=524288, sector=88384, nr_sectors = 8 limit=40427
[ 290.964878][ T5963] syz.0.17: attempt to access beyond end of device
[ 290.964878][ T5963] loop0: rw=524288, sector=88392, nr_sectors = 8 limit=40427
[ 291.305068][ T37] audit: type=1800 audit(1768022210.674:29): pid=6521 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.69" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 291.373904][ T6377] CPU: 0 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 291.373937][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 291.373949][ T6377] Call Trace:
[ 291.373958][ T6377]
[ 291.373967][ T6377] dump_stack_lvl+0xe8/0x150
[ 291.374003][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 291.374043][ T6377] f2fs_write_end_io+0x886/0xb60
[ 291.374090][ T6377] __submit_merged_bio+0x256/0x660
[ 291.374129][ T6377] __submit_merged_write_cond+0x269/0x530
[ 291.374168][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 291.374233][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 291.374320][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 291.374363][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 291.374387][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 291.374408][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 291.374429][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 291.374458][ T6377] ? reacquire_held_locks+0x104/0x190
[ 291.374488][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 291.374525][ T6377] ? rt_spin_unlock+0x150/0x200
[ 291.374558][ T6377] ? rt_spin_unlock+0x161/0x200
[ 291.374584][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 291.374608][ T6377] do_writepages+0x32e/0x550
[ 291.374632][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 291.374663][ T6377] ? rt_spin_unlock+0x150/0x200
[ 291.374703][ T6377] filemap_fdatawrite+0x19c/0x240
[ 291.374728][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 291.374748][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 291.374821][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 291.374861][ T6377] ? rt_spin_unlock+0x161/0x200
[ 291.374967][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 291.375012][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 291.375075][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 291.375162][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 291.375192][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 291.375247][ T6377] deactivate_locked_super+0xbc/0x130
[ 291.375277][ T6377] cleanup_mnt+0x425/0x4c0
[ 291.375302][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 291.375329][ T6377] task_work_run+0x1d4/0x260
[ 291.375364][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 291.375410][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 291.375438][ T6377] ? rcu_is_watching+0x15/0xb0
[ 291.375462][ T6377] do_syscall_64+0x2c1/0xf80
[ 291.375483][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.375502][ T6377] ? trace_irq_disable+0x37/0x100
[ 291.375524][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 291.375549][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.375570][ T6377] RIP: 0033:0x7f585f100a77
[ 291.375590][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 291.375608][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 291.375631][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 291.375646][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 291.375658][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 291.375671][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 291.375685][ T6377] R13: 00007f585f183d7d R14: 0000000000047068 R15: 00007ffd7a4215f0
[ 291.375716][ T6377]
[ 291.375725][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 293.255709][ T6524] loop3: detected capacity change from 0 to 40427
[ 293.271202][ T6524] F2FS-fs (loop3): invalid crc value
[ 293.734783][ T6524] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 293.736506][ T6524] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 294.432985][ T37] audit: type=1800 audit(1768022213.804:30): pid=6530 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.70" name="file1" dev="loop3" ino=10 res=0 errno=0
2026/01/10 05:16:53 executed programs: 56
[ 294.539412][ T6377] CPU: 0 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 294.539444][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 294.539457][ T6377] Call Trace:
[ 294.539465][ T6377]
[ 294.539475][ T6377] dump_stack_lvl+0xe8/0x150
[ 294.539511][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 294.539551][ T6377] f2fs_write_end_io+0x886/0xb60
[ 294.539597][ T6377] __submit_merged_bio+0x256/0x660
[ 294.539651][ T6377] __submit_merged_write_cond+0x269/0x530
[ 294.539691][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 294.539756][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 294.539842][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 294.539883][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 294.539915][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 294.539937][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 294.539958][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 294.539986][ T6377] ? reacquire_held_locks+0x104/0x190
[ 294.540016][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 294.540062][ T6377] ? rt_spin_unlock+0x150/0x200
[ 294.540096][ T6377] ? rt_spin_unlock+0x161/0x200
[ 294.540122][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 294.540146][ T6377] do_writepages+0x32e/0x550
[ 294.540171][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 294.540202][ T6377] ? rt_spin_unlock+0x150/0x200
[ 294.540243][ T6377] filemap_fdatawrite+0x19c/0x240
[ 294.540267][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 294.540287][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 294.540359][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 294.540400][ T6377] ? rt_spin_unlock+0x161/0x200
[ 294.540431][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 294.540474][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 294.540536][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 294.540631][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 294.540663][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 294.540717][ T6377] deactivate_locked_super+0xbc/0x130
[ 294.540748][ T6377] cleanup_mnt+0x425/0x4c0
[ 294.540773][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 294.540800][ T6377] task_work_run+0x1d4/0x260
[ 294.540833][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 294.540878][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 294.540907][ T6377] ? rcu_is_watching+0x15/0xb0
[ 294.540931][ T6377] do_syscall_64+0x2c1/0xf80
[ 294.540952][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.540972][ T6377] ? trace_irq_disable+0x37/0x100
[ 294.540992][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 294.541018][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.541038][ T6377] RIP: 0033:0x7f585f100a77
[ 294.541065][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 294.541082][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 294.541106][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 294.541120][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 294.541133][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 294.541146][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 294.541159][ T6377] R13: 00007f585f183d7d R14: 0000000000047b9e R15: 00007ffd7a4215f0
[ 294.541199][ T6377]
[ 294.541207][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 295.972634][ T6329] bio_check_eod: 39199 callbacks suppressed
[ 295.972659][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.972659][ T6329] loop1: rw=524288, sector=89528, nr_sectors = 8 limit=40427
[ 295.972796][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.972796][ T6329] loop1: rw=524288, sector=89536, nr_sectors = 8 limit=40427
[ 295.972928][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.972928][ T6329] loop1: rw=524288, sector=89544, nr_sectors = 8 limit=40427
[ 295.973061][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.973061][ T6329] loop1: rw=524288, sector=89552, nr_sectors = 8 limit=40427
[ 295.973201][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.973201][ T6329] loop1: rw=524288, sector=89560, nr_sectors = 8 limit=40427
[ 295.973362][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.973362][ T6329] loop1: rw=524288, sector=89568, nr_sectors = 8 limit=40427
[ 295.973494][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.973494][ T6329] loop1: rw=524288, sector=89576, nr_sectors = 8 limit=40427
[ 295.973626][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.973626][ T6329] loop1: rw=524288, sector=89584, nr_sectors = 8 limit=40427
[ 295.973766][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.973766][ T6329] loop1: rw=524288, sector=89592, nr_sectors = 8 limit=40427
[ 295.973897][ T6329] syz.1.54: attempt to access beyond end of device
[ 295.973897][ T6329] loop1: rw=524288, sector=89600, nr_sectors = 8 limit=40427
[ 296.381491][ T6533] loop3: detected capacity change from 0 to 40427
[ 296.415814][ T6533] F2FS-fs (loop3): invalid crc value
[ 296.940557][ T6533] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 296.964028][ T6533] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 297.673717][ T37] audit: type=1800 audit(1768022217.044:31): pid=6539 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.71" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 297.733578][ T6377] CPU: 0 UID: 0 PID: 6377 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 297.733611][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 297.733624][ T6377] Call Trace:
[ 297.733633][ T6377]
[ 297.733642][ T6377] dump_stack_lvl+0xe8/0x150
[ 297.733679][ T6377] f2fs_handle_critical_error+0x354/0x510
[ 297.733720][ T6377] f2fs_write_end_io+0x886/0xb60
[ 297.733782][ T6377] __submit_merged_bio+0x256/0x660
[ 297.733823][ T6377] __submit_merged_write_cond+0x269/0x530
[ 297.733863][ T6377] f2fs_write_data_pages+0x2756/0x3290
[ 297.733928][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 297.734015][ T6377] ? do_raw_spin_lock+0x121/0x290
[ 297.734058][ T6377] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 297.734081][ T6377] ? lockdep_hardirqs_on+0x7b/0x110
[ 297.734102][ T6377] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 297.734123][ T6377] ? rt_mutex_slowunlock+0x493/0x8a0
[ 297.734152][ T6377] ? reacquire_held_locks+0x104/0x190
[ 297.734181][ T6377] ? rt_spin_lock+0x1c1/0x3e0
[ 297.734219][ T6377] ? rt_spin_unlock+0x150/0x200
[ 297.734253][ T6377] ? rt_spin_unlock+0x161/0x200
[ 297.734279][ T6377] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 297.734302][ T6377] do_writepages+0x32e/0x550
[ 297.734327][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 297.734358][ T6377] ? rt_spin_unlock+0x150/0x200
[ 297.734399][ T6377] filemap_fdatawrite+0x19c/0x240
[ 297.734423][ T6377] ? __pfx_filemap_fdatawrite+0x10/0x10
[ 297.734443][ T6377] ? __lock_acquire+0x6b6/0x2cf0
[ 297.734516][ T6377] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 297.734555][ T6377] ? rt_spin_unlock+0x161/0x200
[ 297.734587][ T6377] f2fs_sync_dirty_inodes+0x30f/0x810
[ 297.734630][ T6377] f2fs_write_checkpoint+0x935/0x2430
[ 297.734693][ T6377] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 297.734795][ T6377] kill_f2fs_super+0x2d2/0x6c0
[ 297.734828][ T6377] ? __pfx_kill_f2fs_super+0x10/0x10
[ 297.734880][ T6377] deactivate_locked_super+0xbc/0x130
[ 297.734910][ T6377] cleanup_mnt+0x425/0x4c0
[ 297.734935][ T6377] ? _raw_spin_unlock_irq+0x23/0x50
[ 297.734961][ T6377] task_work_run+0x1d4/0x260
[ 297.734996][ T6377] ? __pfx_task_work_run+0x10/0x10
[ 297.735039][ T6377] exit_to_user_mode_loop+0xef/0x4e0
[ 297.735068][ T6377] ? rcu_is_watching+0x15/0xb0
[ 297.735092][ T6377] do_syscall_64+0x2c1/0xf80
[ 297.735113][ T6377] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 297.735132][ T6377] ? trace_irq_disable+0x37/0x100
[ 297.735154][ T6377] ? clear_bhb_loop+0x60/0xb0
[ 297.735179][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 297.735199][ T6377] RIP: 0033:0x7f585f100a77
[ 297.735220][ T6377] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 297.735237][ T6377] RSP: 002b:00007ffd7a420468 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 297.735260][ T6377] RAX: 0000000000000000 RBX: 00007f585f183d7d RCX: 00007f585f100a77
[ 297.735275][ T6377] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7a420520
[ 297.735287][ T6377] RBP: 00007ffd7a420520 R08: 0000000000000000 R09: 0000000000000000
[ 297.735300][ T6377] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7a4215b0
[ 297.735314][ T6377] R13: 00007f585f183d7d R14: 0000000000048893 R15: 00007ffd7a4215f0
[ 297.735352][ T6377]
[ 297.735360][ T6377] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 299.382454][ T38] INFO: task kworker/u8:6:83 blocked for more than 143 seconds.
[ 299.382482][ T38] Not tainted syzkaller #0
[ 299.382494][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 299.382504][ T38] task:kworker/u8:6 state:D stack:21216 pid:83 tgid:83 ppid:2 task_flags:0x4208060 flags:0x00080000
[ 299.382568][ T38] Workqueue: writeback wb_workfn (flush-7:0)
[ 299.382604][ T38] Call Trace:
[ 299.382612][ T38]
[ 299.382626][ T38] __schedule+0x145f/0x5070
[ 299.382689][ T38] ? arch_scale_cpu_capacity+0x18/0xb0
[ 299.382716][ T38] ? __pfx___schedule+0x10/0x10
[ 299.382761][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 299.382801][ T38] rt_mutex_schedule+0x77/0xf0
[ 299.382830][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 299.382853][ T38] __rt_mutex_slowlock_locked+0x1dfe/0x25e0
[ 299.382891][ T38] ? __rt_mutex_slowlock_locked+0x1a7/0x25e0
[ 299.382924][ T38] ? __pfx___rt_mutex_slowlock_locked+0x10/0x10
[ 299.382975][ T38] rt_mutex_slowlock+0xb5/0x160
[ 299.383002][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 299.383031][ T38] ? f2fs_balance_fs+0x5b2/0x7d0
[ 299.383069][ T38] rwbase_write_lock+0x14f/0x750
[ 299.383107][ T38] f2fs_balance_fs+0x5b2/0x7d0
[ 299.383141][ T38] ? f2fs_write_inode+0x3fb/0x5f0
[ 299.383171][ T38] ? __pfx_f2fs_balance_fs+0x10/0x10
[ 299.383214][ T38] ? folio_unlock+0x101/0x160
[ 299.383247][ T38] f2fs_write_inode+0x3fb/0x5f0
[ 299.383281][ T38] __writeback_single_inode+0x7e4/0x1240
[ 299.383311][ T38] writeback_sb_inodes+0x8c8/0x1840
[ 299.383371][ T38] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 299.383442][ T38] ? __pfx_down_read_trylock+0x10/0x10
[ 299.383468][ T38] ? __pfx_move_expired_inodes+0x10/0x10
[ 299.383498][ T38] ? preempt_count_add+0x91/0x190
[ 299.383529][ T38] __writeback_inodes_wb+0x111/0x240
[ 299.383570][ T38] wb_writeback+0x43f/0xaa0
[ 299.383610][ T38] ? queue_io+0x251/0x420
[ 299.383645][ T38] ? __pfx_wb_writeback+0x10/0x10
[ 299.383695][ T38] wb_workfn+0xad7/0xee0
[ 299.383747][ T38] ? __pfx_wb_workfn+0x10/0x10
[ 299.383782][ T38] ? do_raw_spin_unlock+0x122/0x240
[ 299.383812][ T38] ? process_scheduled_works+0x9ef/0x1770
[ 299.383837][ T38] ? process_scheduled_works+0x9ef/0x1770
[ 299.383869][ T38] ? process_scheduled_works+0x9ef/0x1770
[ 299.383890][ T38] ? process_scheduled_works+0x9ef/0x1770
[ 299.383916][ T38] process_scheduled_works+0xad1/0x1770
[ 299.383972][ T38] ? __pfx_process_scheduled_works+0x10/0x10
[ 299.383991][ T38] ? do_raw_spin_lock+0x121/0x290
[ 299.384033][ T38] worker_thread+0x8a0/0xda0
[ 299.384086][ T38] kthread+0x711/0x8a0
[ 299.384118][ T38] ? __pfx_worker_thread+0x10/0x10
[ 299.384141][ T38] ? __pfx_kthread+0x10/0x10
[ 299.384167][ T38] ? rt_spin_unlock+0x150/0x200
[ 299.384201][ T38] ? rt_spin_unlock+0x161/0x200
[ 299.384226][ T38] ? __pfx_kthread+0x10/0x10
[ 299.384256][ T38] ret_from_fork+0x510/0xa50
[ 299.384283][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 299.384303][ T38] ? __switch_to+0xc9e/0x1480
[ 299.384339][ T38] ? __pfx_kthread+0x10/0x10
[ 299.384369][ T38] ret_from_fork_asm+0x1a/0x30
[ 299.384419][ T38]
[ 299.384542][ T38]
[ 299.384542][ T38] Showing all locks held in the system:
[ 299.384552][ T38] 4 locks held by rcuc/0/20:
[ 299.384565][ T38] 3 locks held by rcuc/1/28:
[ 299.384577][ T38] 1 lock held by khungtaskd/38:
[ 299.384588][ T38] #0: ffffffff8d5ae940 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 299.384652][ T38] 4 locks held by kworker/u8:4/59:
[ 299.384664][ T38] #0: ffff88801ce9b938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 299.384713][ T38] #1: ffffc9000125fbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 299.384772][ T38] #2: ffff8880579cc0d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 299.384831][ T38] #3: ffff888020ad5a80 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5b2/0x7d0
[ 299.384888][ T38] 4 locks held by kworker/u8:6/83:
[ 299.384899][ T38] #0: ffff88801ce9b938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 299.384948][ T38] #1: ffffc9000154fbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 299.384997][ T38] #2: ffff88803d7c60d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 299.385053][ T38] #3: ffff888023e99a80 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5b2/0x7d0
[ 299.385126][ T38] 4 locks held by kworker/u8:14/3451:
[ 299.385138][ T38] #0: ffff88801ce9b938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x1770
[ 299.385188][ T38] #1: ffffc9000c8efbc0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x1770
[ 299.385241][ T38] #2: ffff888030a880d0 (&type->s_umount_key#55){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0
[ 299.385298][ T38] #3: ffff88802a641a80 (&sbi->gc_lock){+.+.}-{4:4}, at: f2fs_balance_fs+0x5b2/0x7d0
[ 299.385357][ T38] 2 locks held by getty/5558:
[ 299.385369][ T38] #0: ffff88814e8af0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 299.385422][ T38] #1: ffffc90003e7e2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x44f/0x1460
[ 299.385471][ T38] 4 locks held by syz.0.17/5963:
[ 299.385485][ T38] 6 locks held by syz.1.54/6329:
[ 299.385497][ T38] 6 locks held by syz.2.56/6368:
[ 299.385509][ T38] 3 locks held by syz.3.72/6542:
[ 299.385521][ T38]
[ 299.385526][ T38] =============================================
[ 299.385526][ T38]
[ 299.385535][ T38] NMI backtrace for cpu 0
[ 299.385551][ T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 299.385574][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 299.385586][ T38] Call Trace:
[ 299.385594][ T38]
[ 299.385603][ T38] dump_stack_lvl+0xe8/0x150
[ 299.385632][ T38] nmi_cpu_backtrace+0x274/0x2d0
[ 299.385660][ T38] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 299.385685][ T38] nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 299.385716][ T38] sys_info+0x135/0x170
[ 299.385746][ T38] watchdog+0xf95/0xfe0
[ 299.385775][ T38] ? watchdog+0x20a/0xfe0
[ 299.385804][ T38] kthread+0x711/0x8a0
[ 299.385835][ T38] ? __pfx_watchdog+0x10/0x10
[ 299.385857][ T38] ? __pfx_kthread+0x10/0x10
[ 299.385881][ T38] ? rt_spin_unlock+0x150/0x200
[ 299.385914][ T38] ? rt_spin_unlock+0x161/0x200
[ 299.385939][ T38] ? __pfx_kthread+0x10/0x10
[ 299.385967][ T38] ret_from_fork+0x510/0xa50
[ 299.385991][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 299.386011][ T38] ? __switch_to+0xc9e/0x1480
[ 299.386045][ T38] ? __pfx_kthread+0x10/0x10
[ 299.386075][ T38] ret_from_fork_asm+0x1a/0x30
[ 299.386121][ T38]
[ 299.386129][ T38] Sending NMI from CPU 0 to CPUs 1:
[ 299.386171][ C1] NMI backtrace for cpu 1
[ 299.386188][ C1] CPU: 1 UID: 0 PID: 6368 Comm: syz.2.56 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 299.386206][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 299.386215][ C1] RIP: 0010:__lock_acquire+0x3e/0x2cf0
[ 299.386237][ C1] Code: 05 77 8e 16 10 48 89 84 24 e0 00 00 00 65 48 8b 04 25 08 10 b3 91 48 89 44 24 08 31 ed 83 3d a8 c4 3e 0d 00 0f 84 ef 13 00 00 <45> 89 cf 49 89 f9 48 8b 07 48 3d a0 b3 76 92 0f 84 da 13 00 00 41
[ 299.386251][ C1] RSP: 0018:ffffc900057d69a8 EFLAGS: 00000002
[ 299.386265][ C1] RAX: ffff88801b785ac0 RBX: 0000000000000000 RCX: 0000000000000002
[ 299.386285][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8d5ae940
[ 299.386295][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 299.386304][ C1] R10: ffff88802ca19b78 R11: ffffed1005943373 R12: 0000000000000002
[ 299.386315][ C1] R13: ffffffff8d5ae940 R14: 0000000000000000 R15: 0000000000000246
[ 299.386326][ C1] FS: 00007fc4d6a0e6c0(0000) GS:ffff888126def000(0000) knlGS:0000000000000000
[ 299.386340][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 299.386352][ C1] CR2: 00007f5856337005 CR3: 000000001b7fc000 CR4: 00000000003526f0
[ 299.386368][ C1] Call Trace:
[ 299.386374][ C1]
[ 299.386382][ C1] ? __lock_acquire+0x6b6/0x2cf0
[ 299.386413][ C1] ? __lock_acquire+0x6b6/0x2cf0
[ 299.386434][ C1] ? blkg_tryget+0x20/0x250
[ 299.386452][ C1] lock_acquire+0x107/0x340
[ 299.386471][ C1] ? blkg_tryget+0x20/0x250
[ 299.386490][ C1] ? bio_associate_blkg_from_css+0xb3/0xcf0
[ 299.386512][ C1] ? blkg_tryget+0x20/0x250
[ 299.386538][ C1] blkg_tryget+0x3c/0x250
[ 299.386556][ C1] ? blkg_tryget+0x20/0x250
[ 299.386575][ C1] bio_associate_blkg_from_css+0xa8e/0xcf0
[ 299.386597][ C1] ? bio_associate_blkg_from_css+0xb3/0xcf0
[ 299.386618][ C1] ? bio_associate_blkg+0x6d/0x230
[ 299.386638][ C1] bio_associate_blkg+0x170/0x230
[ 299.386667][ C1] bio_alloc_bioset+0x5bd/0x14f0
[ 299.386685][ C1] f2fs_grab_read_bio+0x23d/0x720
[ 299.386703][ C1] f2fs_submit_page_read+0x9a/0x100
[ 299.386726][ C1] f2fs_get_read_data_folio+0x4ae/0x7b0
[ 299.386750][ C1] ? __pfx_f2fs_get_read_data_folio+0x10/0x10
[ 299.386771][ C1] ? inode_dio_wait+0x19e/0x240
[ 299.386791][ C1] ? __pfx_inode_dio_wait+0x10/0x10
[ 299.386811][ C1] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 299.386828][ C1] f2fs_get_lock_data_folio+0x54/0x1f0
[ 299.386850][ C1] do_garbage_collect+0x34db/0x6f80
[ 299.386868][ C1] ? __lock_acquire+0x6b6/0x2cf0
[ 299.386904][ C1] ? __lock_acquire+0x6b6/0x2cf0
[ 299.386923][ C1] ? __pfx_do_garbage_collect+0x10/0x10
[ 299.386946][ C1] ? __lock_acquire+0x6b6/0x2cf0
[ 299.386966][ C1] ? do_raw_spin_lock+0x121/0x290
[ 299.386993][ C1] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 299.387008][ C1] ? lockdep_hardirqs_on+0x7b/0x110
[ 299.387024][ C1] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 299.387039][ C1] ? rt_mutex_slowunlock+0x493/0x8a0
[ 299.387060][ C1] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 299.387076][ C1] ? lockdep_hardirqs_on+0x7b/0x110
[ 299.387090][ C1] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 299.387107][ C1] f2fs_gc+0xcb0/0x2530
[ 299.387134][ C1] ? __pfx_f2fs_gc+0x10/0x10
[ 299.387155][ C1] ? do_raw_spin_lock+0x121/0x290
[ 299.387177][ C1] ? rwbase_write_lock+0x56f/0x750
[ 299.387198][ C1] f2fs_balance_fs+0x5fe/0x7d0
[ 299.387228][ C1] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 299.387249][ C1] ? f2fs_map_blocks+0x3449/0x40b0
[ 299.387270][ C1] ? __pfx_f2fs_balance_fs+0x10/0x10
[ 299.387291][ C1] ? percpu_counter_add_batch+0xea/0x1e0
[ 299.387327][ C1] f2fs_map_blocks+0x3449/0x40b0
[ 299.387361][ C1] ? __pfx_f2fs_map_blocks+0x10/0x10
[ 299.387382][ C1] ? rt_mutex_slowunlock+0x493/0x8a0
[ 299.387406][ C1] ? f2fs_allocate_pinning_section+0x1ac/0x370
[ 299.387425][ C1] f2fs_expand_inode_data+0x631/0xa70
[ 299.387451][ C1] ? __pfx_f2fs_expand_inode_data+0x10/0x10
[ 299.387474][ C1] ? rt_spin_unlock+0x161/0x200
[ 299.387495][ C1] ? file_update_time_flags+0x44e/0x4f0
[ 299.387515][ C1] f2fs_fallocate+0x4e8/0x970
[ 299.387535][ C1] vfs_fallocate+0x672/0x7f0
[ 299.387556][ C1] ? __fget_files+0x2a/0x420
[ 299.387573][ C1] ? __pfx_vfs_fallocate+0x10/0x10
[ 299.387593][ C1] ? __fget_files+0x2a/0x420
[ 299.387611][ C1] __x64_sys_fallocate+0xc0/0x110
[ 299.387633][ C1] do_syscall_64+0xec/0xf80
[ 299.387648][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.387663][ C1] ? trace_irq_disable+0x37/0x100
[ 299.387680][ C1] ? clear_bhb_loop+0x60/0xb0
[ 299.387697][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.387712][ C1] RIP: 0033:0x7fc4d739f749
[ 299.387725][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 299.387738][ C1] RSP: 002b:00007fc4d6a0e038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 299.387755][ C1] RAX: ffffffffffffffda RBX: 00007fc4d75f5fa0 RCX: 00007fc4d739f749
[ 299.387766][ C1] RDX: 0000000000000008 RSI: 0000000000000001 RDI: 0000000000000006
[ 299.387776][ C1] RBP: 00007fc4d7423f91 R08: 0000000000000000 R09: 0000000000000000
[ 299.387785][ C1] R10: 00000000001101f0 R11: 0000000000000246 R12: 0000000000000000
[ 299.387796][ C1] R13: 00007fc4d75f6038 R14: 00007fc4d75f5fa0 R15: 00007fff1e2a1298
[ 299.387813][ C1]
[ 299.388155][ T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 299.388172][ T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 299.388194][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 299.388206][ T38] Call Trace:
[ 299.388215][ T38]
[ 299.388223][ T38] vpanic+0x1e0/0x670
[ 299.388256][ T38] panic+0xb9/0xc0
[ 299.388283][ T38] ? __pfx_panic+0x10/0x10
[ 299.388321][ T38] ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 299.388354][ T38] watchdog+0xfdf/0xfe0
[ 299.388382][ T38] ? watchdog+0x20a/0xfe0
[ 299.388413][ T38] kthread+0x711/0x8a0
[ 299.388443][ T38] ? __pfx_watchdog+0x10/0x10
[ 299.388465][ T38] ? __pfx_kthread+0x10/0x10
[ 299.388490][ T38] ? rt_spin_unlock+0x150/0x200
[ 299.388522][ T38] ? rt_spin_unlock+0x161/0x200
[ 299.388547][ T38] ? __pfx_kthread+0x10/0x10
[ 299.388576][ T38] ret_from_fork+0x510/0xa50
[ 299.388600][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 299.388621][ T38] ? __switch_to+0xc9e/0x1480
[ 299.388654][ T38] ? __pfx_kthread+0x10/0x10
[ 299.388684][ T38] ret_from_fork_asm+0x1a/0x30
[ 299.388738][ T38]
[ 299.389256][ T38] Kernel Offset: disabled