4]  ? __pfx_f2fs_readdir+0x10/0x10
[   97.942575][ T5944]  ? handle_mm_fault+0xdb/0x32b0
[   97.942607][ T5944]  ? iterate_dir+0x292/0x570
[   97.942625][ T5944]  ? down_read_killable+0x1bc/0x350
[   97.942647][ T5944]  iterate_dir+0x399/0x570
[   97.942671][ T5944]  __se_sys_getdents64+0xe4/0x260
[   97.942693][ T5944]  ? __pfx___se_sys_getdents64+0x10/0x10
[   97.942711][ T5944]  ? __pfx_filldir64+0x10/0x10
[   97.942739][ T5944]  ? do_syscall_64+0xbe/0xf80
[   97.942765][ T5944]  do_syscall_64+0xfa/0xf80
[   97.942788][ T5944]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.942805][ T5944]  ? clear_bhb_loop+0x60/0xb0
[   97.942826][ T5944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.942843][ T5944] RIP: 0033:0x7f6cdd1c20b3
[   97.942859][ T5944] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   97.942872][ T5944] RSP: 002b:00007fff1f3a2c58 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   97.942889][ T5944] RAX: ffffffffffffffda RBX: 000055556669c600 RCX: 00007f6cdd1c20b3
[   97.942901][ T5944] RDX: 0000000000008000 RSI: 000055556669c600 RDI: 0000000000000005
[   97.942911][ T5944] RBP: 000055556669c5d4 R08: 0000000000028a41 R09: 0000000000000000
[   97.942921][ T5944] R10: 00007f6cdd3bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[   97.942932][ T5944] R13: 0000000000000010 R14: 000055556669c5d0 R15: 00007fff1f3a4f10
[   97.942963][ T5944]  </TASK>
[   97.943461][ T5944] F2FS-fs (loop2): access invalid blkaddr:2816
[   98.023307][ T6123] loop3: detected capacity change from 0 to 40427
[   98.038636][ T5944] CPU: 0 UID: 0 PID: 5944 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   98.038660][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   98.038670][ T5944] Call Trace:
[   98.038676][ T5944]  <TASK>
[   98.038684][ T5944]  dump_stack_lvl+0x189/0x250
[   98.038713][ T5944]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.038733][ T5944]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[   98.038757][ T5944]  ? preempt_schedule_notrace+0xd1/0x110
[   98.038792][ T5944]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[   98.038822][ T5944]  f2fs_map_blocks+0xdac/0x40b0
[   98.038881][ T5944]  ? xa_load+0x60/0x210
[   98.038902][ T5944]  ? __pfx_f2fs_map_blocks+0x10/0x10
[   98.038926][ T5944]  ? xa_load+0x60/0x210
[   98.038947][ T5944]  ? xa_load+0x60/0x210
[   98.038979][ T5944]  ? readahead_folio+0x2da/0x430
[   98.039005][ T5944]  f2fs_mpage_readpages+0x1d30/0x2e40
[   98.039032][ T5944]  ? css_rstat_updated+0x239/0x520
[   98.039054][ T5944]  ? __lock_acquire+0x6b6/0x2cf0
[   98.039078][ T5944]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[   98.039101][ T5944]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[   98.039145][ T5944]  ? __folio_batch_add_and_move+0x192/0xc40
[   98.039183][ T5944]  ? f2fs_readahead+0x167/0x310
[   98.039207][ T5944]  read_pages+0x17a/0x580
[   98.039230][ T5944]  ? __pfx_read_pages+0x10/0x10
[   98.039254][ T5944]  ? filemap_add_folio+0x35f/0x540
[   98.039285][ T5944]  page_cache_ra_unbounded+0x750/0x990
[   98.039323][ T5944]  f2fs_readdir+0x49b/0xa40
[   98.039367][ T5944]  ? __pfx_f2fs_readdir+0x10/0x10
[   98.039392][ T5944]  ? handle_mm_fault+0xdb/0x32b0
[   98.039423][ T5944]  ? iterate_dir+0x292/0x570
[   98.039439][ T5944]  ? down_read_killable+0x1bc/0x350
[   98.039460][ T5944]  iterate_dir+0x399/0x570
[   98.039482][ T5944]  __se_sys_getdents64+0xe4/0x260
[   98.039503][ T5944]  ? __pfx___se_sys_getdents64+0x10/0x10
[   98.039520][ T5944]  ? __pfx_filldir64+0x10/0x10
[   98.039547][ T5944]  ? do_syscall_64+0xbe/0xf80
[   98.039571][ T5944]  do_syscall_64+0xfa/0xf80
[   98.039594][ T5944]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.039609][ T5944]  ? clear_bhb_loop+0x60/0xb0
[   98.039630][ T5944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.039649][ T5944] RIP: 0033:0x7f6cdd1c20b3
[   98.039664][ T5944] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   98.039675][ T5944] RSP: 002b:00007fff1f3a2c58 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   98.039691][ T5944] RAX: ffffffffffffffda RBX: 000055556669c600 RCX: 00007f6cdd1c20b3
[   98.039701][ T5944] RDX: 0000000000008000 RSI: 000055556669c600 RDI: 0000000000000005
[   98.039710][ T5944] RBP: 000055556669c5d4 R08: 0000000000028a41 R09: 0000000000000000
[   98.039719][ T5944] R10: 00007f6cdd3bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[   98.039729][ T5944] R13: 0000000000000010 R14: 000055556669c5d0 R15: 00007fff1f3a4f10
[   98.039757][ T5944]  </TASK>
[   98.039866][ T5944] syz-executor: attempt to access beyond end of device
[   98.039866][ T5944] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427
[   98.082197][ T6123] F2FS-fs (loop3): build fault injection rate: 771
[   98.230959][ T5945] F2FS-fs (loop1): access invalid blkaddr:2816
[   98.230995][ T5945] CPU: 0 UID: 0 PID: 5945 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   98.231014][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   98.231023][ T5945] Call Trace:
[   98.231030][ T5945]  <TASK>
[   98.231046][ T5945]  dump_stack_lvl+0x189/0x250
[   98.231076][ T5945]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.231097][ T5945]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[   98.231137][ T5945]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[   98.231168][ T5945]  f2fs_map_blocks+0xdac/0x40b0
[   98.231230][ T5945]  ? xa_load+0x60/0x210
[   98.231253][ T5945]  ? __pfx_f2fs_map_blocks+0x10/0x10
[   98.231277][ T5945]  ? xa_load+0x60/0x210
[   98.231298][ T5945]  ? xa_load+0x60/0x210
[   98.231341][ T5945]  ? readahead_folio+0x2da/0x430
[   98.231368][ T5945]  f2fs_mpage_readpages+0x1d30/0x2e40
[   98.231397][ T5945]  ? css_rstat_updated+0x239/0x520
[   98.231420][ T5945]  ? __lock_acquire+0x6b6/0x2cf0
[   98.231446][ T5945]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[   98.231469][ T5945]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[   98.231507][ T5945]  ? __folio_batch_add_and_move+0x192/0xc40
[   98.231548][ T5945]  ? f2fs_readahead+0x167/0x310
[   98.231572][ T5945]  read_pages+0x17a/0x580
[   98.231596][ T5945]  ? __pfx_read_pages+0x10/0x10
[   98.231621][ T5945]  ? filemap_add_folio+0x35f/0x540
[   98.231654][ T5945]  page_cache_ra_unbounded+0x750/0x990
[   98.231694][ T5945]  f2fs_readdir+0x49b/0xa40
[   98.231741][ T5945]  ? __pfx_f2fs_readdir+0x10/0x10
[   98.231764][ T5945]  ? handle_mm_fault+0xdb/0x32b0
[   98.231795][ T5945]  ? iterate_dir+0x292/0x570
[   98.231811][ T5945]  ? down_read_killable+0x1bc/0x350
[   98.231832][ T5945]  iterate_dir+0x399/0x570
[   98.231855][ T5945]  __se_sys_getdents64+0xe4/0x260
[   98.231875][ T5945]  ? __pfx___se_sys_getdents64+0x10/0x10
[   98.231892][ T5945]  ? __pfx_filldir64+0x10/0x10
[   98.231918][ T5945]  ? do_syscall_64+0xbe/0xf80
[   98.231943][ T5945]  do_syscall_64+0xfa/0xf80
[   98.231965][ T5945]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.231981][ T5945]  ? clear_bhb_loop+0x60/0xb0
[   98.232001][ T5945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.232016][ T5945] RIP: 0033:0x7fc42efc20b3
[   98.232032][ T5945] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   98.232050][ T5945] RSP: 002b:00007fff7dcdd808 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   98.232067][ T5945] RAX: ffffffffffffffda RBX: 000055555d282600 RCX: 00007fc42efc20b3
[   98.232079][ T5945] RDX: 0000000000008000 RSI: 000055555d282600 RDI: 0000000000000005
[   98.232088][ T5945] RBP: 000055555d2825d4 R08: 0000000000028a41 R09: 0000000000000000
[   98.232098][ T5945] R10: 00007fc42f1bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[   98.232108][ T5945] R13: 0000000000000010 R14: 000055555d2825d0 R15: 00007fff7dcdfac0
[   98.232137][ T5945]  </TASK>
[   98.243828][ T5945] F2FS-fs (loop1): access invalid blkaddr:2816
[   98.278872][ T6123] F2FS-fs (loop3): invalid crc value
[   98.294928][ T5945] CPU: 0 UID: 0 PID: 5945 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   98.294952][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   98.294962][ T5945] Call Trace:
[   98.294968][ T5945]  <TASK>
[   98.294976][ T5945]  dump_stack_lvl+0x189/0x250
[   98.295005][ T5945]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.295025][ T5945]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[   98.295056][ T5945]  ? preempt_schedule_notrace+0xd1/0x110
[   98.295091][ T5945]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[   98.295121][ T5945]  f2fs_map_blocks+0xdac/0x40b0
[   98.295180][ T5945]  ? xa_load+0x60/0x210
[   98.295201][ T5945]  ? __pfx_f2fs_map_blocks+0x10/0x10
[   98.295224][ T5945]  ? xa_load+0x60/0x210
[   98.295245][ T5945]  ? xa_load+0x60/0x210
[   98.295278][ T5945]  ? readahead_folio+0x2da/0x430
[   98.295304][ T5945]  f2fs_mpage_readpages+0x1d30/0x2e40
[   98.295331][ T5945]  ? css_rstat_updated+0x239/0x520
[   98.295353][ T5945]  ? __lock_acquire+0x6b6/0x2cf0
[   98.295377][ T5945]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[   98.295399][ T5945]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[   98.295436][ T5945]  ? __folio_batch_add_and_move+0x192/0xc40
[   98.295474][ T5945]  ? f2fs_readahead+0x167/0x310
[   98.295498][ T5945]  read_pages+0x17a/0x580
[   98.295521][ T5945]  ? __pfx_read_pages+0x10/0x10
[   98.295545][ T5945]  ? filemap_add_folio+0x35f/0x540
[   98.295575][ T5945]  page_cache_ra_unbounded+0x750/0x990
[   98.295614][ T5945]  f2fs_readdir+0x49b/0xa40
[   98.295657][ T5945]  ? __pfx_f2fs_readdir+0x10/0x10
[   98.295682][ T5945]  ? handle_mm_fault+0xdb/0x32b0
[   98.295713][ T5945]  ? iterate_dir+0x292/0x570
[   98.295729][ T5945]  ? down_read_killable+0x1bc/0x350
[   98.295749][ T5945]  iterate_dir+0x399/0x570
[   98.295772][ T5945]  __se_sys_getdents64+0xe4/0x260
[   98.295794][ T5945]  ? __pfx___se_sys_getdents64+0x10/0x10
[   98.295811][ T5945]  ? __pfx_filldir64+0x10/0x10
[   98.295837][ T5945]  ? do_syscall_64+0xbe/0xf80
[   98.295866][ T5945]  do_syscall_64+0xfa/0xf80
[   98.295888][ T5945]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.295904][ T5945]  ? clear_bhb_loop+0x60/0xb0
[   98.295925][ T5945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.295940][ T5945] RIP: 0033:0x7fc42efc20b3
[   98.295956][ T5945] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   98.295969][ T5945] RSP: 002b:00007fff7dcdd808 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   98.295986][ T5945] RAX: ffffffffffffffda RBX: 000055555d282600 RCX: 00007fc42efc20b3
[   98.295997][ T5945] RDX: 0000000000008000 RSI: 000055555d282600 RDI: 0000000000000005
[   98.296007][ T5945] RBP: 000055555d2825d4 R08: 0000000000028a41 R09: 0000000000000000
[   98.296017][ T5945] R10: 00007fc42f1bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[   98.296027][ T5945] R13: 0000000000000010 R14: 000055555d2825d0 R15: 00007fff7dcdfac0
[   98.296062][ T5945]  </TASK>
[   98.296175][ T5945] syz-executor: attempt to access beyond end of device
[   98.296175][ T5945] loop1: rw=0, sector=45064, nr_sectors = 8 limit=40427
[   98.484180][ T6123] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   98.808657][ T5948] Bluetooth: hci0: command tx timeout
[   98.841756][ T6123] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   99.466074][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   99.479615][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   99.490631][   T36] bond0 (unregistering): Released all slaves
[   99.600076][ T5949] F2FS-fs (loop3): access invalid blkaddr:2816
[   99.608262][ T5949] CPU: 0 UID: 0 PID: 5949 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   99.608284][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   99.608292][ T5949] Call Trace:
[   99.608299][ T5949]  <TASK>
[   99.608306][ T5949]  dump_stack_lvl+0x189/0x250
[   99.608334][ T5949]  ? __pfx_dump_stack_lvl+0x10/0x10
[   99.608352][ T5949]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[   99.608391][ T5949]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[   99.608422][ T5949]  f2fs_map_blocks+0xdac/0x40b0
[   99.608481][ T5949]  ? xa_load+0x60/0x210
[   99.608502][ T5949]  ? __pfx_f2fs_map_blocks+0x10/0x10
[   99.608527][ T5949]  ? xa_load+0x60/0x210
[   99.608548][ T5949]  ? xa_load+0x60/0x210
[   99.608581][ T5949]  ? readahead_folio+0x2da/0x430
[   99.608609][ T5949]  f2fs_mpage_readpages+0x1d30/0x2e40
[   99.608637][ T5949]  ? css_rstat_updated+0x239/0x520
[   99.608658][ T5949]  ? __lock_acquire+0x6b6/0x2cf0
[   99.608681][ T5949]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[   99.608703][ T5949]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[   99.608741][ T5949]  ? __folio_batch_add_and_move+0x192/0xc40
[   99.608781][ T5949]  ? f2fs_readahead+0x167/0x310
[   99.608803][ T5949]  read_pages+0x17a/0x580
[   99.608824][ T5949]  ? __pfx_read_pages+0x10/0x10
[   99.608846][ T5949]  ? filemap_add_folio+0x35f/0x540
[   99.608878][ T5949]  page_cache_ra_unbounded+0x750/0x990
[   99.608917][ T5949]  f2fs_readdir+0x49b/0xa40
[   99.608989][ T5949]  ? __pfx_f2fs_readdir+0x10/0x10
[   99.609014][ T5949]  ? handle_mm_fault+0xdb/0x32b0
[   99.609046][ T5949]  ? iterate_dir+0x292/0x570
[   99.609063][ T5949]  ? down_read_killable+0x1bc/0x350
[   99.609085][ T5949]  iterate_dir+0x399/0x570
[   99.609108][ T5949]  __se_sys_getdents64+0xe4/0x260
[   99.609128][ T5949]  ? __pfx___se_sys_getdents64+0x10/0x10
[   99.609145][ T5949]  ? __pfx_filldir64+0x10/0x10
[   99.609173][ T5949]  ? do_syscall_64+0xbe/0xf80
[   99.609198][ T5949]  do_syscall_64+0xfa/0xf80
[   99.609220][ T5949]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.609236][ T5949]  ? clear_bhb_loop+0x60/0xb0
[   99.609257][ T5949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.609273][ T5949] RIP: 0033:0x7fbe407c20b3
[   99.609290][ T5949] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   99.609302][ T5949] RSP: 002b:00007ffc92ae9b38 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   99.609319][ T5949] RAX: ffffffffffffffda RBX: 000055556661a600 RCX: 00007fbe407c20b3
2025/12/25 06:50:12 executed programs: 18
[   99.609331][ T5949] RDX: 0000000000008000 RSI: 000055556661a600 RDI: 0000000000000005
[   99.609340][ T5949] RBP: 000055556661a5d4 R08: 0000000000028a41 R09: 0000000000000000
[   99.609349][ T5949] R10: 00007fbe409bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[   99.609359][ T5949] R13: 0000000000000010 R14: 000055556661a5d0 R15: 00007ffc92aebdf0
[   99.609389][ T5949]  </TASK>
[   99.930881][ T3855] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.941510][ T3855] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.955342][ T5949] F2FS-fs (loop3): access invalid blkaddr:2816
[   99.963396][ T5949] CPU: 0 UID: 0 PID: 5949 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   99.963416][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   99.963425][ T5949] Call Trace:
[   99.963431][ T5949]  <TASK>
[   99.963438][ T5949]  dump_stack_lvl+0x189/0x250
[   99.963467][ T5949]  ? __pfx_dump_stack_lvl+0x10/0x10
[   99.963486][ T5949]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[   99.963509][ T5949]  ? preempt_schedule_notrace+0xd1/0x110
[   99.963543][ T5949]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[   99.963565][ T5949]  f2fs_map_blocks+0xdac/0x40b0
[   99.963599][ T5949]  ? xa_load+0x60/0x210
[   99.963612][ T5949]  ? __pfx_f2fs_map_blocks+0x10/0x10
[   99.963626][ T5949]  ? xa_load+0x60/0x210
[   99.963638][ T5949]  ? xa_load+0x60/0x210
[   99.963658][ T5949]  ? readahead_folio+0x2da/0x430
[   99.963673][ T5949]  f2fs_mpage_readpages+0x1d30/0x2e40
[   99.963689][ T5949]  ? css_rstat_updated+0x239/0x520
[   99.963702][ T5949]  ? __lock_acquire+0x6b6/0x2cf0
[   99.963716][ T5949]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[   99.963729][ T5949]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[   99.963751][ T5949]  ? __folio_batch_add_and_move+0x192/0xc40
[   99.963773][ T5949]  ? f2fs_readahead+0x167/0x310
[   99.963787][ T5949]  read_pages+0x17a/0x580
[   99.963800][ T5949]  ? __pfx_read_pages+0x10/0x10
[   99.963814][ T5949]  ? filemap_add_folio+0x35f/0x540
[   99.963833][ T5949]  page_cache_ra_unbounded+0x750/0x990
[   99.963854][ T5949]  f2fs_readdir+0x49b/0xa40
[   99.963879][ T5949]  ? __pfx_f2fs_readdir+0x10/0x10
[   99.963897][ T5949]  ? handle_mm_fault+0xdb/0x32b0
[   99.963915][ T5949]  ? iterate_dir+0x292/0x570
[   99.963925][ T5949]  ? down_read_killable+0x1bc/0x350
[   99.963937][ T5949]  iterate_dir+0x399/0x570
[   99.963950][ T5949]  __se_sys_getdents64+0xe4/0x260
[   99.963962][ T5949]  ? __pfx___se_sys_getdents64+0x10/0x10
[   99.963972][ T5949]  ? __pfx_filldir64+0x10/0x10
[   99.963987][ T5949]  ? do_syscall_64+0xbe/0xf80
[   99.964002][ T5949]  do_syscall_64+0xfa/0xf80
[   99.964015][ T5949]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.964024][ T5949]  ? clear_bhb_loop+0x60/0xb0
[   99.964036][ T5949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.964045][ T5949] RIP: 0033:0x7fbe407c20b3
[   99.964055][ T5949] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   99.964062][ T5949] RSP: 002b:00007ffc92ae9b38 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   99.964073][ T5949] RAX: ffffffffffffffda RBX: 000055556661a600 RCX: 00007fbe407c20b3
[   99.964080][ T5949] RDX: 0000000000008000 RSI: 000055556661a600 RDI: 0000000000000005
[   99.964086][ T5949] RBP: 000055556661a5d4 R08: 0000000000028a41 R09: 0000000000000000
[   99.964091][ T5949] R10: 00007fbe409bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[   99.964097][ T5949] R13: 0000000000000010 R14: 000055556661a5d0 R15: 00007ffc92aebdf0
[   99.964114][ T5949]  </TASK>
[   99.964464][ T5949] syz-executor: attempt to access beyond end of device
[   99.964464][ T5949] loop3: rw=0, sector=45064, nr_sectors = 8 limit=40427
[   99.982572][ T6115] chnl_net:caif_netlink_parms(): no params data found
[  100.113097][ T5944] syz-executor: attempt to access beyond end of device
[  100.113097][ T5944] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  100.293360][ T5944] CPU: 1 UID: 0 PID: 5944 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  100.293384][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  100.293392][ T5944] Call Trace:
[  100.293398][ T5944]  <TASK>
[  100.293406][ T5944]  dump_stack_lvl+0x189/0x250
[  100.293434][ T5944]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.293452][ T5944]  ? __pfx_queue_work_on+0x10/0x10
[  100.293468][ T5944]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  100.293487][ T5944]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  100.293517][ T5944]  f2fs_handle_critical_error+0x37c/0x540
[  100.293546][ T5944]  f2fs_write_end_io+0x886/0xb60
[  100.293586][ T5944]  __submit_merged_bio+0x256/0x660
[  100.293614][ T5944]  __submit_merged_write_cond+0x269/0x530
[  100.293642][ T5944]  f2fs_write_data_pages+0x2756/0x3290
[  100.293702][ T5944]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.293719][ T5944]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  100.293788][ T5944]  ? __page_cache_release+0x8a6/0xbb0
[  100.293816][ T5944]  ? __lock_acquire+0x6b6/0x2cf0
[  100.293855][ T5944]  ? __lock_acquire+0x6b6/0x2cf0
[  100.293884][ T5944]  ? do_raw_spin_lock+0x121/0x290
[  100.293919][ T5944]  ? do_raw_spin_unlock+0x122/0x240
[  100.293938][ T5944]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.293960][ T5944]  do_writepages+0x32e/0x550
[  100.293994][ T5944]  ? do_raw_spin_unlock+0x122/0x240
[  100.294020][ T5944]  filemap_fdatawrite+0x199/0x240
[  100.294042][ T5944]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  100.294104][ T5944]  ? do_raw_spin_unlock+0x122/0x240
[  100.294130][ T5944]  f2fs_sync_dirty_inodes+0x30f/0x810
[  100.294183][ T5944]  f2fs_write_checkpoint+0x935/0x2430
[  100.294205][ T5944]  ? stack_depot_save_flags+0x40/0x850
[  100.294256][ T5944]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  100.294325][ T5944]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  100.294348][ T5944]  ? kfree+0x1c0/0x660
[  100.294376][ T5944]  kill_f2fs_super+0x2d2/0x6c0
[  100.294409][ T5944]  ? __pfx_kill_f2fs_super+0x10/0x10
[  100.294454][ T5944]  ? shrinker_free+0x2ce/0x3e0
[  100.294479][ T5944]  deactivate_locked_super+0xbc/0x130
[  100.294508][ T5944]  cleanup_mnt+0x425/0x4c0
[  100.294526][ T5944]  ? lockdep_hardirqs_on+0x98/0x140
[  100.294554][ T5944]  task_work_run+0x1d4/0x260
[  100.294582][ T5944]  ? __pfx_task_work_run+0x10/0x10
[  100.294605][ T5944]  ? kmem_cache_free+0x197/0x620
[  100.294622][ T5944]  ? do_exit+0x8b8/0x25b0
[  100.294648][ T5944]  do_exit+0x8bd/0x25b0
[  100.294683][ T5944]  ? __pfx_do_exit+0x10/0x10
[  100.294712][ T5944]  ? _raw_spin_unlock_irq+0x23/0x50
[  100.294730][ T5944]  ? lockdep_hardirqs_on+0x98/0x140
[  100.294752][ T5944]  do_group_exit+0x21c/0x2d0
[  100.294777][ T5944]  __x64_sys_exit_group+0x3f/0x40
[  100.294794][ T5944]  x64_sys_call+0x2210/0x2210
[  100.294810][ T5944]  do_syscall_64+0xfa/0xf80
[  100.294828][ T5944]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.294841][ T5944]  ? clear_bhb_loop+0x60/0xb0
[  100.294858][ T5944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.294871][ T5944] RIP: 0033:0x7f6cdd18f749
[  100.294885][ T5944] Code: Unable to access opcode bytes at 0x7f6cdd18f71f.
[  100.294891][ T5944] RSP: 002b:00007fff1f3a2b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  100.294906][ T5944] RAX: ffffffffffffffda RBX: 00007f6cdd213def RCX: 00007f6cdd18f749
[  100.294915][ T5944] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  100.294922][ T5944] RBP: 0000000000000010 R08: 00007fff1f3a0926 R09: 00007fff1f3a3e40
[  100.294930][ T5944] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff1f3a3e40
[  100.294937][ T5944] R13: 00007f6cdd213d7d R14: 00005555666814a8 R15: 00007fff1f3a4f10
[  100.294964][ T5944]  </TASK>
[  100.294970][ T5944] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  100.688772][ T5945] syz-executor: attempt to access beyond end of device
[  100.688772][ T5945] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  100.709720][ T5945] CPU: 0 UID: 0 PID: 5945 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  100.709744][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  100.709753][ T5945] Call Trace:
[  100.709761][ T5945]  <TASK>
[  100.709768][ T5945]  dump_stack_lvl+0x189/0x250
[  100.709798][ T5945]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.709827][ T5945]  ? __pfx_queue_work_on+0x10/0x10
[  100.709845][ T5945]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  100.709867][ T5945]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  100.709903][ T5945]  f2fs_handle_critical_error+0x37c/0x540
[  100.709934][ T5945]  f2fs_write_end_io+0x886/0xb60
[  100.709979][ T5945]  __submit_merged_bio+0x256/0x660
[  100.710008][ T5945]  __submit_merged_write_cond+0x269/0x530
[  100.710038][ T5945]  f2fs_write_data_pages+0x2756/0x3290
[  100.710058][ T5945]  ? __lock_acquire+0x6b6/0x2cf0
[  100.710117][ T5945]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.710137][ T5945]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  100.710173][ T5945]  ? __lock_acquire+0x6b6/0x2cf0
[  100.710227][ T5945]  ? __lock_acquire+0x6b6/0x2cf0
[  100.710261][ T5945]  ? __lock_acquire+0x6b6/0x2cf0
[  100.710289][ T5945]  ? do_raw_spin_lock+0x121/0x290
[  100.710325][ T5945]  ? do_raw_spin_unlock+0x122/0x240
[  100.710345][ T5945]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.710367][ T5945]  do_writepages+0x32e/0x550
[  100.710405][ T5945]  ? do_raw_spin_unlock+0x122/0x240
[  100.710431][ T5945]  filemap_fdatawrite+0x199/0x240
[  100.710451][ T5945]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  100.710522][ T5945]  ? do_raw_spin_unlock+0x122/0x240
[  100.710550][ T5945]  f2fs_sync_dirty_inodes+0x30f/0x810
[  100.710586][ T5945]  f2fs_write_checkpoint+0x935/0x2430
[  100.710604][ T5945]  ? stack_depot_save_flags+0x40/0x850
[  100.710654][ T5945]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  100.710724][ T5945]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  100.710747][ T5945]  ? kfree+0x1c0/0x660
[  100.710774][ T5945]  kill_f2fs_super+0x2d2/0x6c0
[  100.710806][ T5945]  ? __pfx_kill_f2fs_super+0x10/0x10
[  100.710858][ T5945]  ? shrinker_free+0x2ce/0x3e0
[  100.710880][ T5945]  deactivate_locked_super+0xbc/0x130
[  100.710908][ T5945]  cleanup_mnt+0x425/0x4c0
[  100.710925][ T5945]  ? lockdep_hardirqs_on+0x98/0x140
[  100.710951][ T5945]  task_work_run+0x1d4/0x260
[  100.710976][ T5945]  ? __pfx_task_work_run+0x10/0x10
[  100.710999][ T5945]  ? kmem_cache_free+0x197/0x620
[  100.711016][ T5945]  ? do_exit+0x8b8/0x25b0
[  100.711042][ T5945]  do_exit+0x8bd/0x25b0
[  100.711077][ T5945]  ? __pfx_do_exit+0x10/0x10
[  100.711108][ T5945]  ? _raw_spin_unlock_irq+0x23/0x50
[  100.711128][ T5945]  ? lockdep_hardirqs_on+0x98/0x140
[  100.711150][ T5945]  do_group_exit+0x21c/0x2d0
[  100.711174][ T5945]  __x64_sys_exit_group+0x3f/0x40
[  100.711192][ T5945]  x64_sys_call+0x2210/0x2210
[  100.711209][ T5945]  do_syscall_64+0xfa/0xf80
[  100.711226][ T5945]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.711238][ T5945]  ? clear_bhb_loop+0x60/0xb0
[  100.711257][ T5945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.711273][ T5945] RIP: 0033:0x7fc42ef8f749
[  100.711289][ T5945] Code: Unable to access opcode bytes at 0x7fc42ef8f71f.
[  100.711296][ T5945] RSP: 002b:00007fff7dcdd738 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  100.711312][ T5945] RAX: ffffffffffffffda RBX: 00007fc42f013def RCX: 00007fc42ef8f749
[  100.711323][ T5945] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  100.711332][ T5945] RBP: 0000000000000010 R08: 00007fff7dcdb4d6 R09: 00007fff7dcde9f0
[  100.711343][ T5945] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff7dcde9f0
[  100.711352][ T5945] R13: 00007fc42f013d7d R14: 000055555d2674a8 R15: 00007fff7dcdfac0
[  100.711382][ T5945]  </TASK>
[  100.711389][ T5945] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  100.889313][ T5908] Bluetooth: hci0: command tx timeout
[  100.971205][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  101.094733][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  101.103649][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  101.123513][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  101.133399][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  101.305553][ T5948] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  101.314049][ T5948] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  101.323708][ T5949] syz-executor: attempt to access beyond end of device
[  101.323708][ T5949] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  101.342598][ T5948] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  101.350727][ T5949] CPU: 1 UID: 0 PID: 5949 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  101.350749][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  101.350759][ T5949] Call Trace:
[  101.350766][ T5949]  <TASK>
[  101.350773][ T5949]  dump_stack_lvl+0x189/0x250
[  101.350804][ T5949]  ? __pfx_dump_stack_lvl+0x10/0x10
[  101.350824][ T5949]  ? __pfx_queue_work_on+0x10/0x10
[  101.350842][ T5949]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  101.350864][ T5949]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  101.350899][ T5949]  f2fs_handle_critical_error+0x37c/0x540
[  101.350927][ T5949]  f2fs_write_end_io+0x886/0xb60
[  101.350967][ T5949]  __submit_merged_bio+0x256/0x660
[  101.350996][ T5949]  __submit_merged_write_cond+0x269/0x530
[  101.351024][ T5949]  f2fs_write_data_pages+0x2756/0x3290
[  101.351090][ T5949]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  101.351162][ T5949]  ? __mod_zone_page_state+0xd7/0x140
[  101.351193][ T5949]  ? __lock_acquire+0x6b6/0x2cf0
[  101.351225][ T5949]  ? __lock_acquire+0x6b6/0x2cf0
[  101.351254][ T5949]  ? do_raw_spin_lock+0x121/0x290
[  101.351289][ T5949]  ? do_raw_spin_unlock+0x122/0x240
[  101.351311][ T5949]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  101.351332][ T5949]  do_writepages+0x32e/0x550
[  101.351368][ T5949]  ? do_raw_spin_unlock+0x122/0x240
[  101.351396][ T5949]  filemap_fdatawrite+0x199/0x240
[  101.351418][ T5949]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  101.351496][ T5949]  ? do_raw_spin_unlock+0x122/0x240
[  101.351524][ T5949]  f2fs_sync_dirty_inodes+0x30f/0x810
[  101.351561][ T5949]  f2fs_write_checkpoint+0x935/0x2430
[  101.351579][ T5949]  ? stack_depot_save_flags+0x40/0x850
[  101.351622][ T5949]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  101.351678][ T5949]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  101.351700][ T5949]  ? kfree+0x1c0/0x660
[  101.351726][ T5949]  kill_f2fs_super+0x2d2/0x6c0
[  101.351758][ T5949]  ? __pfx_kill_f2fs_super+0x10/0x10
[  101.351800][ T5949]  ? shrinker_free+0x2ce/0x3e0
[  101.351824][ T5949]  deactivate_locked_super+0xbc/0x130
[  101.351851][ T5949]  cleanup_mnt+0x425/0x4c0
[  101.351869][ T5949]  ? lockdep_hardirqs_on+0x98/0x140
[  101.351894][ T5949]  task_work_run+0x1d4/0x260
[  101.351921][ T5949]  ? __pfx_task_work_run+0x10/0x10
[  101.351945][ T5949]  ? kmem_cache_free+0x197/0x620
[  101.351962][ T5949]  ? do_exit+0x8b8/0x25b0
[  101.351990][ T5949]  do_exit+0x8bd/0x25b0
[  101.352027][ T5949]  ? __pfx_do_exit+0x10/0x10
[  101.352059][ T5949]  ? _raw_spin_unlock_irq+0x23/0x50
[  101.352086][ T5949]  ? lockdep_hardirqs_on+0x98/0x140
[  101.352112][ T5949]  do_group_exit+0x21c/0x2d0
[  101.352141][ T5949]  __x64_sys_exit_group+0x3f/0x40
[  101.352161][ T5949]  x64_sys_call+0x2210/0x2210
[  101.352182][ T5949]  do_syscall_64+0xfa/0xf80
[  101.352206][ T5949]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.352223][ T5949]  ? clear_bhb_loop+0x60/0xb0
[  101.352245][ T5949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.352261][ T5949] RIP: 0033:0x7fbe4078f749
[  101.352277][ T5949] Code: Unable to access opcode bytes at 0x7fbe4078f71f.
[  101.352286][ T5949] RSP: 002b:00007ffc92ae9a68 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  101.352303][ T5949] RAX: ffffffffffffffda RBX: 00007fbe40813def RCX: 00007fbe4078f749
[  101.352314][ T5949] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  101.352323][ T5949] RBP: 0000000000000010 R08: 00007ffc92ae7806 R09: 00007ffc92aead20
[  101.352333][ T5949] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc92aead20
[  101.352344][ T5949] R13: 00007fbe40813d7d R14: 00005555665ff4a8 R15: 00007ffc92aebdf0
[  101.352379][ T5949]  </TASK>
[  101.352387][ T5949] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  101.451722][ T5948] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  101.720457][ T5948] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  101.867785][ T6137] loop4: detected capacity change from 0 to 40427
[  101.904253][ T6137] F2FS-fs (loop4): build fault injection rate: 771
[  101.930684][ T6137] F2FS-fs (loop4): invalid crc value
[  101.974853][ T6115] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.996640][ T6115] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.031168][ T6115] bridge_slave_0: entered allmulticast mode
[  102.049947][ T6115] bridge_slave_0: entered promiscuous mode
[  102.081895][ T5954] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  102.095332][ T5954] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  102.103686][ T5954] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  102.110837][   T36] hsr_slave_0: left promiscuous mode
[  102.126356][   T36] hsr_slave_1: left promiscuous mode
[  102.133770][ T5954] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  102.139436][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.149597][ T5954] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  102.160652][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.162990][ T6137] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  102.178205][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.194573][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.201898][ T6137] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  102.281687][   T36] veth1_macvtap: left promiscuous mode
[  102.287265][   T36] veth0_macvtap: left promiscuous mode
[  102.297032][   T36] veth1_vlan: left promiscuous mode
[  102.303006][   T36] veth0_vlan: left promiscuous mode
[  102.631646][ T5953] F2FS-fs (loop4): access invalid blkaddr:2816
[  102.638865][ T5953] CPU: 0 UID: 0 PID: 5953 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  102.638887][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  102.638896][ T5953] Call Trace:
[  102.638902][ T5953]  <TASK>
[  102.638909][ T5953]  dump_stack_lvl+0x189/0x250
[  102.638937][ T5953]  ? __pfx_dump_stack_lvl+0x10/0x10
[  102.638955][ T5953]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  102.638992][ T5953]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  102.639020][ T5953]  f2fs_map_blocks+0xdac/0x40b0
[  102.639077][ T5953]  ? xa_load+0x60/0x210
[  102.639096][ T5953]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  102.639118][ T5953]  ? xa_load+0x60/0x210
[  102.639137][ T5953]  ? xa_load+0x60/0x210
[  102.639169][ T5953]  ? readahead_folio+0x2da/0x430
[  102.639193][ T5953]  f2fs_mpage_readpages+0x1d30/0x2e40
[  102.639219][ T5953]  ? css_rstat_updated+0x239/0x520
[  102.639240][ T5953]  ? __lock_acquire+0x6b6/0x2cf0
[  102.639263][ T5953]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  102.639283][ T5953]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  102.639317][ T5953]  ? __folio_batch_add_and_move+0x192/0xc40
[  102.639355][ T5953]  ? f2fs_readahead+0x167/0x310
[  102.639377][ T5953]  read_pages+0x17a/0x580
[  102.639398][ T5953]  ? __pfx_read_pages+0x10/0x10
[  102.639421][ T5953]  ? filemap_add_folio+0x35f/0x540
[  102.639450][ T5953]  page_cache_ra_unbounded+0x750/0x990
[  102.639488][ T5953]  f2fs_readdir+0x49b/0xa40
[  102.639548][ T5953]  ? __pfx_f2fs_readdir+0x10/0x10
[  102.639573][ T5953]  ? handle_mm_fault+0xdb/0x32b0
[  102.639602][ T5953]  ? iterate_dir+0x292/0x570
[  102.639618][ T5953]  ? down_read_killable+0x1bc/0x350
[  102.639638][ T5953]  iterate_dir+0x399/0x570
[  102.639660][ T5953]  __se_sys_getdents64+0xe4/0x260
[  102.639680][ T5953]  ? __pfx___se_sys_getdents64+0x10/0x10
[  102.639695][ T5953]  ? __pfx_filldir64+0x10/0x10
[  102.639727][ T5953]  ? do_syscall_64+0xbe/0xf80
[  102.639752][ T5953]  do_syscall_64+0xfa/0xf80
[  102.639773][ T5953]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.639788][ T5953]  ? clear_bhb_loop+0x60/0xb0
[  102.639807][ T5953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.639822][ T5953] RIP: 0033:0x7effdb5c20b3
[  102.639838][ T5953] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  102.639850][ T5953] RSP: 002b:00007ffe642f8f78 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  102.639866][ T5953] RAX: ffffffffffffffda RBX: 0000555593ae7600 RCX: 00007effdb5c20b3
[  102.639877][ T5953] RDX: 0000000000008000 RSI: 0000555593ae7600 RDI: 0000000000000005
[  102.639886][ T5953] RBP: 0000555593ae75d4 R08: 0000000000028a41 R09: 0000000000000000
[  102.639895][ T5953] R10: 00007effdb7bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  102.639905][ T5953] R13: 0000000000000010 R14: 0000555593ae75d0 R15: 00007ffe642fb230
[  102.639934][ T5953]  </TASK>
[  102.642699][ T5953] F2FS-fs (loop4): access invalid blkaddr:2816
[  102.931967][ T5953] CPU: 0 UID: 0 PID: 5953 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  102.931989][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  102.931999][ T5953] Call Trace:
[  102.932007][ T5953]  <TASK>
[  102.932014][ T5953]  dump_stack_lvl+0x189/0x250
[  102.932040][ T5953]  ? __pfx_dump_stack_lvl+0x10/0x10
[  102.932060][ T5953]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  102.932083][ T5953]  ? preempt_schedule_notrace+0xd1/0x110
[  102.932113][ T5953]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  102.932140][ T5953]  f2fs_map_blocks+0xdac/0x40b0
[  102.932189][ T5953]  ? xa_load+0x60/0x210
[  102.932205][ T5953]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  102.932223][ T5953]  ? xa_load+0x60/0x210
[  102.932239][ T5953]  ? xa_load+0x60/0x210
[  102.932264][ T5953]  ? readahead_folio+0x2da/0x430
[  102.932284][ T5953]  f2fs_mpage_readpages+0x1d30/0x2e40
[  102.932305][ T5953]  ? css_rstat_updated+0x239/0x520
[  102.932323][ T5953]  ? __lock_acquire+0x6b6/0x2cf0
[  102.932342][ T5953]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  102.932359][ T5953]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  102.932388][ T5953]  ? __folio_batch_add_and_move+0x192/0xc40
[  102.932419][ T5953]  ? f2fs_readahead+0x167/0x310
[  102.932437][ T5953]  read_pages+0x17a/0x580
[  102.932455][ T5953]  ? __pfx_read_pages+0x10/0x10
[  102.932474][ T5953]  ? filemap_add_folio+0x35f/0x540
[  102.932497][ T5953]  page_cache_ra_unbounded+0x750/0x990
[  102.932527][ T5953]  f2fs_readdir+0x49b/0xa40
[  102.932561][ T5953]  ? __pfx_f2fs_readdir+0x10/0x10
[  102.932581][ T5953]  ? handle_mm_fault+0xdb/0x32b0
[  102.932605][ T5953]  ? iterate_dir+0x292/0x570
[  102.932618][ T5953]  ? down_read_killable+0x1bc/0x350
[  102.932635][ T5953]  iterate_dir+0x399/0x570
[  102.932653][ T5953]  __se_sys_getdents64+0xe4/0x260
[  102.932669][ T5953]  ? __pfx___se_sys_getdents64+0x10/0x10
[  102.932682][ T5953]  ? __pfx_filldir64+0x10/0x10
[  102.932703][ T5953]  ? do_syscall_64+0xbe/0xf80
[  102.932735][ T5953]  do_syscall_64+0xfa/0xf80
[  102.932754][ T5953]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.932768][ T5953]  ? clear_bhb_loop+0x60/0xb0
[  102.932785][ T5953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.932799][ T5953] RIP: 0033:0x7effdb5c20b3
[  102.932814][ T5953] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  102.932826][ T5953] RSP: 002b:00007ffe642f8f78 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  102.932842][ T5953] RAX: ffffffffffffffda RBX: 0000555593ae7600 RCX: 00007effdb5c20b3
[  102.932852][ T5953] RDX: 0000000000008000 RSI: 0000555593ae7600 RDI: 0000000000000005
[  102.932861][ T5953] RBP: 0000555593ae75d4 R08: 0000000000028a41 R09: 0000000000000000
[  102.932869][ T5953] R10: 00007effdb7bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  102.932879][ T5953] R13: 0000000000000010 R14: 0000555593ae75d0 R15: 00007ffe642fb230
[  102.932906][ T5953]  </TASK>
[  102.933112][ T5953] syz-executor: attempt to access beyond end of device
[  102.933112][ T5953] loop4: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  103.054515][ T5954] Bluetooth: hci0: command tx timeout
[  103.198628][ T5948] Bluetooth: hci1: command tx timeout
[  103.383825][   T36] team0 (unregistering): Port device team_slave_1 removed
[  103.412517][   T36] team0 (unregistering): Port device team_slave_0 removed
[  103.689897][ T6115] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.697094][ T6115] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.704743][ T6115] bridge_slave_1: entered allmulticast mode
[  103.712621][ T6115] bridge_slave_1: entered promiscuous mode
[  103.759754][ T5948] Bluetooth: hci2: command tx timeout
[  103.806682][ T6115] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.832320][ T6115] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.891837][ T5953] syz-executor: attempt to access beyond end of device
[  103.891837][ T5953] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  103.906078][ T5953] CPU: 1 UID: 0 PID: 5953 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  103.906101][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  103.906110][ T5953] Call Trace:
[  103.906117][ T5953]  <TASK>
[  103.906125][ T5953]  dump_stack_lvl+0x189/0x250
[  103.906155][ T5953]  ? __pfx_dump_stack_lvl+0x10/0x10
[  103.906174][ T5953]  ? __pfx_queue_work_on+0x10/0x10
[  103.906191][ T5953]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  103.906214][ T5953]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  103.906250][ T5953]  f2fs_handle_critical_error+0x37c/0x540
[  103.906281][ T5953]  f2fs_write_end_io+0x886/0xb60
[  103.906327][ T5953]  __submit_merged_bio+0x256/0x660
[  103.906356][ T5953]  __submit_merged_write_cond+0x269/0x530
[  103.906387][ T5953]  f2fs_write_data_pages+0x2756/0x3290
[  103.906452][ T5953]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  103.906491][ T5953]  ? __lock_acquire+0x6b6/0x2cf0
[  103.906552][ T5953]  ? __lock_acquire+0x6b6/0x2cf0
[  103.906589][ T5953]  ? __lock_acquire+0x6b6/0x2cf0
[  103.906618][ T5953]  ? do_raw_spin_lock+0x121/0x290
[  103.906654][ T5953]  ? do_raw_spin_unlock+0x122/0x240
[  103.906677][ T5953]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  103.906699][ T5953]  do_writepages+0x32e/0x550
[  103.906735][ T5953]  ? do_raw_spin_unlock+0x122/0x240
[  103.906763][ T5953]  filemap_fdatawrite+0x199/0x240
[  103.906786][ T5953]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  103.906860][ T5953]  ? do_raw_spin_unlock+0x122/0x240
[  103.906893][ T5953]  f2fs_sync_dirty_inodes+0x30f/0x810
[  103.906935][ T5953]  f2fs_write_checkpoint+0x935/0x2430
[  103.906956][ T5953]  ? stack_depot_save_flags+0x40/0x850
[  103.907007][ T5953]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  103.907080][ T5953]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  103.907102][ T5953]  ? kfree+0x1c0/0x660
[  103.907131][ T5953]  kill_f2fs_super+0x2d2/0x6c0
[  103.907164][ T5953]  ? __pfx_kill_f2fs_super+0x10/0x10
[  103.907210][ T5953]  ? shrinker_free+0x2ce/0x3e0
[  103.907234][ T5953]  deactivate_locked_super+0xbc/0x130
[  103.907259][ T5953]  cleanup_mnt+0x425/0x4c0
[  103.907277][ T5953]  ? lockdep_hardirqs_on+0x98/0x140
[  103.907301][ T5953]  task_work_run+0x1d4/0x260
[  103.907328][ T5953]  ? __pfx_task_work_run+0x10/0x10
[  103.907349][ T5953]  ? kmem_cache_free+0x197/0x620
[  103.907362][ T5953]  ? do_exit+0x8b8/0x25b0
[  103.907385][ T5953]  do_exit+0x8bd/0x25b0
[  103.907415][ T5953]  ? __pfx_do_exit+0x10/0x10
[  103.907439][ T5953]  ? _raw_spin_unlock_irq+0x23/0x50
[  103.907455][ T5953]  ? lockdep_hardirqs_on+0x98/0x140
[  103.907475][ T5953]  do_group_exit+0x21c/0x2d0
[  103.907498][ T5953]  __x64_sys_exit_group+0x3f/0x40
[  103.907515][ T5953]  x64_sys_call+0x2210/0x2210
[  103.907531][ T5953]  do_syscall_64+0xfa/0xf80
[  103.907550][ T5953]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.907563][ T5953]  ? clear_bhb_loop+0x60/0xb0
[  103.907580][ T5953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.907592][ T5953] RIP: 0033:0x7effdb58f749
[  103.907605][ T5953] Code: Unable to access opcode bytes at 0x7effdb58f71f.
[  103.907612][ T5953] RSP: 002b:00007ffe642f8ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  103.907627][ T5953] RAX: ffffffffffffffda RBX: 00007effdb613def RCX: 00007effdb58f749
[  103.907636][ T5953] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  103.907644][ T5953] RBP: 0000000000000010 R08: 00007ffe642f6c46 R09: 00007ffe642fa160
[  103.907652][ T5953] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe642fa160
[  103.907660][ T5953] R13: 00007effdb613d7d R14: 0000555593acc4a8 R15: 00007ffe642fb230
[  103.907687][ T5953]  </TASK>
[  103.930625][ T5953] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  104.241883][ T5948] Bluetooth: hci3: command tx timeout
[  104.303168][ T6115] team0: Port device team_slave_0 added
[  104.354494][ T6115] team0: Port device team_slave_1 added
[  104.459267][ T5954] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  104.469075][ T5954] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  104.482352][ T5954] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  104.490931][ T5954] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  104.499709][ T5954] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  104.576110][ T6115] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.592050][ T6115] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.618805][ T6115] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.651234][ T6115] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.658208][ T6115] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.687130][ T6115] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.960649][ T6115] hsr_slave_0: entered promiscuous mode
[  104.967455][ T6115] hsr_slave_1: entered promiscuous mode
[  105.052739][ T6133] chnl_net:caif_netlink_parms(): no params data found
[  105.136006][   T36] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.280814][ T5948] Bluetooth: hci0: command tx timeout
[  105.286298][ T5954] Bluetooth: hci1: command tx timeout
[  105.293103][ T6141] chnl_net:caif_netlink_parms(): no params data found
[  105.314619][   T36] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.401746][ T6133] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.409382][ T6133] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.416715][ T6133] bridge_slave_0: entered allmulticast mode
[  105.424005][ T6133] bridge_slave_0: entered promiscuous mode
[  105.466906][ T6133] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.474304][ T6133] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.481650][ T6133] bridge_slave_1: entered allmulticast mode
[  105.489083][ T6133] bridge_slave_1: entered promiscuous mode
[  105.509451][   T36] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.660845][   T36] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.684247][ T6133] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.743994][ T6133] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.771734][ T6141] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.779766][ T6141] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.786967][ T6141] bridge_slave_0: entered allmulticast mode
[  105.794550][ T6141] bridge_slave_0: entered promiscuous mode
[  105.812003][ T6156] chnl_net:caif_netlink_parms(): no params data found
[  105.836930][ T6141] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.844072][ T5954] Bluetooth: hci2: command tx timeout
[  105.849862][ T6141] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.857111][ T6141] bridge_slave_1: entered allmulticast mode
[  105.865657][ T6141] bridge_slave_1: entered promiscuous mode
[  105.927155][ T6133] team0: Port device team_slave_0 added
[  105.948244][ T6141] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.984432][ T6133] team0: Port device team_slave_1 added
[  106.020097][ T6141] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.048047][ T6133] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.056365][ T6133] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  106.082836][ T6133] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.173100][ T6133] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.180619][ T6133] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  106.207027][ T6133] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.296652][ T6141] team0: Port device team_slave_0 added
[  106.320282][ T5954] Bluetooth: hci3: command tx timeout
[  106.335483][ T6141] team0: Port device team_slave_1 added
[  106.343490][ T6156] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.353737][ T6156] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.361945][ T6156] bridge_slave_0: entered allmulticast mode
[  106.372648][ T6156] bridge_slave_0: entered promiscuous mode
[  106.426123][ T6115] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  106.438912][ T6156] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.446129][ T6156] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.454834][ T6156] bridge_slave_1: entered allmulticast mode
[  106.463394][ T6156] bridge_slave_1: entered promiscuous mode
[  106.498183][ T6165] chnl_net:caif_netlink_parms(): no params data found
[  106.533194][ T6115] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  106.559137][ T5954] Bluetooth: hci4: command tx timeout
[  106.617612][ T6141] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.628302][ T6141] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  106.659195][ T6141] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.670530][ T6115] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  106.730988][ T6156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.747196][ T6133] hsr_slave_0: entered promiscuous mode
[  106.756088][ T6133] hsr_slave_1: entered promiscuous mode
[  106.763631][ T6133] debugfs: 'hsr0' already exists in 'hsr'
[  106.769650][ T6133] Cannot create hsr debugfs directory
[  106.787930][ T6141] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.795380][ T6141] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  106.821772][ T6141] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.834586][ T6115] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  106.854432][ T6156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.914851][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.022346][ T6156] team0: Port device team_slave_0 added
[  107.110824][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.127719][ T6156] team0: Port device team_slave_1 added
[  107.163580][ T6141] hsr_slave_0: entered promiscuous mode
[  107.170307][ T6141] hsr_slave_1: entered promiscuous mode
[  107.176422][ T6141] debugfs: 'hsr0' already exists in 'hsr'
[  107.182293][ T6141] Cannot create hsr debugfs directory
[  107.226373][ T6165] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.233904][ T6165] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.241828][ T6165] bridge_slave_0: entered allmulticast mode
[  107.249394][ T6165] bridge_slave_0: entered promiscuous mode
[  107.257608][ T6165] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.265080][ T6165] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.273241][ T6165] bridge_slave_1: entered allmulticast mode
[  107.281966][ T6165] bridge_slave_1: entered promiscuous mode
[  107.301733][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.309143][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  107.335156][ T6156] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.362223][ T5954] Bluetooth: hci1: command tx timeout
[  107.371824][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.412789][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.419867][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  107.447495][ T6156] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.514414][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.538101][ T6165] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.587575][ T6165] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.677169][ T6156] hsr_slave_0: entered promiscuous mode
[  107.685134][ T6156] hsr_slave_1: entered promiscuous mode
[  107.692318][ T6156] debugfs: 'hsr0' already exists in 'hsr'
[  107.698059][ T6156] Cannot create hsr debugfs directory
[  107.726733][ T6165] team0: Port device team_slave_0 added
[  107.758305][ T6165] team0: Port device team_slave_1 added
[  107.920934][ T5954] Bluetooth: hci2: command tx timeout
[  107.942740][ T6165] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.950911][ T6165] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  107.980269][ T6165] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.995647][ T6165] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.005597][ T6165] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  108.031990][ T6165] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.392806][   T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.403627][ T5954] Bluetooth: hci3: command tx timeout
[  108.440496][ T6165] hsr_slave_0: entered promiscuous mode
[  108.446849][ T6165] hsr_slave_1: entered promiscuous mode
[  108.453223][ T6165] debugfs: 'hsr0' already exists in 'hsr'
[  108.460407][ T6165] Cannot create hsr debugfs directory
[  108.561970][   T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.606820][ T6133] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  108.619453][ T6133] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  108.632669][ T6133] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  108.649228][ T5954] Bluetooth: hci4: command tx timeout
[  108.670802][   T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.685617][ T6133] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  108.789334][   T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.933032][ T6156] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  108.946635][ T6115] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.971293][ T6156] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  108.989781][ T6156] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  109.059091][ T6156] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  109.165979][   T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.255503][ T6141] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  109.273162][ T6141] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  109.295855][ T6141] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  109.330895][   T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.351461][ T6115] 8021q: adding VLAN 0 to HW filter on device team0
[  109.386034][ T6141] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  109.439901][ T5954] Bluetooth: hci1: command tx timeout
[  109.463117][   T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.501577][ T3855] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.508960][ T3855] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.597315][   T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.618355][ T3855] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.625631][ T3855] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.656218][ T6165] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  109.723645][ T6165] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  109.743600][ T6165] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  109.766465][ T6133] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.780139][ T6165] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  109.914516][ T6133] 8021q: adding VLAN 0 to HW filter on device team0
[  109.932289][   T36] bridge_slave_1: left allmulticast mode
[  109.937960][   T36] bridge_slave_1: left promiscuous mode
[  109.945010][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.955192][   T36] bridge_slave_0: left allmulticast mode
[  109.961094][   T36] bridge_slave_0: left promiscuous mode
[  109.966785][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.977889][   T36] bridge_slave_1: left allmulticast mode
[  109.984344][   T36] bridge_slave_1: left promiscuous mode
[  109.990435][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.000415][   T36] bridge_slave_0: left allmulticast mode
[  110.006821][   T36] bridge_slave_0: left promiscuous mode
[  110.010106][ T5954] Bluetooth: hci2: command tx timeout
[  110.013436][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.028092][   T36] bridge_slave_1: left allmulticast mode
[  110.034020][   T36] bridge_slave_1: left promiscuous mode
[  110.040037][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.049801][   T36] bridge_slave_0: left allmulticast mode
[  110.055430][   T36] bridge_slave_0: left promiscuous mode
[  110.063611][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.074100][   T36] bridge_slave_1: left allmulticast mode
[  110.080026][   T36] bridge_slave_1: left promiscuous mode
[  110.085705][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.095132][   T36] bridge_slave_0: left allmulticast mode
[  110.101113][   T36] bridge_slave_0: left promiscuous mode
[  110.106905][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.454598][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  110.466042][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  110.476568][   T36] bond0 (unregistering): Released all slaves
[  110.480999][ T5954] Bluetooth: hci3: command tx timeout
[  110.699038][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  110.710701][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  110.722461][   T36] bond0 (unregistering): Released all slaves
[  110.728875][ T5954] Bluetooth: hci4: command tx timeout
[  110.963446][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  110.974758][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  110.985371][   T36] bond0 (unregistering): Released all slaves
[  111.191698][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  111.203035][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  111.213744][   T36] bond0 (unregistering): Released all slaves
[  111.255112][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.262331][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  111.355546][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.362774][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  111.483879][ T6156] 8021q: adding VLAN 0 to HW filter on device bond0
[  111.626423][ T6141] 8021q: adding VLAN 0 to HW filter on device bond0
[  111.693238][ T6156] 8021q: adding VLAN 0 to HW filter on device team0
[  111.752951][ T6133] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  111.847490][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.854744][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  111.900094][ T6141] 8021q: adding VLAN 0 to HW filter on device team0
[  111.975527][ T3855] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.982806][ T3855] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.024526][ T6115] 8021q: adding VLAN 0 to HW filter on device batadv0
[  112.046597][ T3855] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.053866][ T3855] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.149154][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.156348][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.203516][ T6165] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.407577][ T6165] 8021q: adding VLAN 0 to HW filter on device team0
[  112.586658][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.593808][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.632394][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.639592][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.677835][ T6133] 8021q: adding VLAN 0 to HW filter on device batadv0
[  112.745623][   T36] hsr_slave_0: left promiscuous mode
[  112.754000][   T36] hsr_slave_1: left promiscuous mode
[  112.760297][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.768258][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.790006][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.797424][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.799259][ T5954] Bluetooth: hci4: command tx timeout
[  112.825166][   T36] hsr_slave_0: left promiscuous mode
[  112.831313][   T36] hsr_slave_1: left promiscuous mode
[  112.837564][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.845151][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.856508][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.864036][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.875379][   T36] hsr_slave_0: left promiscuous mode
[  112.882288][   T36] hsr_slave_1: left promiscuous mode
[  112.888241][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.895713][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.903611][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.911149][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.923094][   T36] hsr_slave_0: left promiscuous mode
[  112.929484][   T36] hsr_slave_1: left promiscuous mode
[  112.935347][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.943212][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.951589][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.960664][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.999536][   T36] veth1_macvtap: left promiscuous mode
[  113.005086][   T36] veth0_macvtap: left promiscuous mode
[  113.011517][   T36] veth1_vlan: left promiscuous mode
[  113.016803][   T36] veth0_vlan: left promiscuous mode
[  113.024040][   T36] veth1_macvtap: left promiscuous mode
[  113.030369][   T36] veth0_macvtap: left promiscuous mode
[  113.035946][   T36] veth1_vlan: left promiscuous mode
[  113.041656][   T36] veth0_vlan: left promiscuous mode
[  113.048251][   T36] veth1_macvtap: left promiscuous mode
[  113.053980][   T36] veth0_macvtap: left promiscuous mode
[  113.059721][   T36] veth1_vlan: left promiscuous mode
[  113.064996][   T36] veth0_vlan: left promiscuous mode
[  113.072367][   T36] veth1_macvtap: left promiscuous mode
[  113.077874][   T36] veth0_macvtap: left promiscuous mode
[  113.083600][   T36] veth1_vlan: left promiscuous mode
[  113.089540][   T36] veth0_vlan: left promiscuous mode
[  113.651208][   T36] team0 (unregistering): Port device team_slave_1 removed
[  113.682354][   T36] team0 (unregistering): Port device team_slave_0 removed
[  114.216143][   T36] team0 (unregistering): Port device team_slave_1 removed
[  114.254044][   T36] team0 (unregistering): Port device team_slave_0 removed
[  114.784393][   T36] team0 (unregistering): Port device team_slave_1 removed
[  114.817770][   T36] team0 (unregistering): Port device team_slave_0 removed
[  115.356552][   T36] team0 (unregistering): Port device team_slave_1 removed
[  115.390220][   T36] team0 (unregistering): Port device team_slave_0 removed
[  115.964356][ T6115] veth0_vlan: entered promiscuous mode
[  116.056081][ T6156] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.137176][ T6115] veth1_vlan: entered promiscuous mode
[  116.370221][ T6115] veth0_macvtap: entered promiscuous mode
[  116.396743][ T6115] veth1_macvtap: entered promiscuous mode
[  116.527372][ T6133] veth0_vlan: entered promiscuous mode
[  116.608083][ T6115] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.680370][ T6115] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.704664][ T6133] veth1_vlan: entered promiscuous mode
[  116.734343][ T6165] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.751043][ T6113] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.788254][ T6113] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.833726][ T6141] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.855151][ T6113] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.886758][ T3855] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.052905][ T6133] veth0_macvtap: entered promiscuous mode
[  117.118289][ T6133] veth1_macvtap: entered promiscuous mode
[  117.224697][ T6156] veth0_vlan: entered promiscuous mode
[  117.294083][ T6158] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.308005][ T6158] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.333418][ T6156] veth1_vlan: entered promiscuous mode
[  117.404247][ T6113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.420650][ T6133] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.428084][ T6113] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.495682][ T6133] batman_adv: batadv0: Interface activated: batadv_slave_1
2025/12/25 06:50:30 executed programs: 25
[  117.569526][   T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.605097][   T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.656708][   T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.682055][   T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.712614][ T6156] veth0_macvtap: entered promiscuous mode
[  117.737984][ T6165] veth0_vlan: entered promiscuous mode
[  117.764198][ T6156] veth1_macvtap: entered promiscuous mode
[  117.834560][ T6165] veth1_vlan: entered promiscuous mode
[  117.926532][ T6141] veth0_vlan: entered promiscuous mode
[  117.932259][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.954809][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.993140][ T6156] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.046664][ T6141] veth1_vlan: entered promiscuous mode
[  118.076609][ T6156] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.114238][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.130957][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.132756][   T36] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.169052][   T36] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.200963][   T36] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.219311][   T36] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.285857][ T6165] veth0_macvtap: entered promiscuous mode
[  118.295912][ T6362] loop5: detected capacity change from 0 to 40427
[  118.341592][ T6362] F2FS-fs (loop5): build fault injection rate: 771
[  118.368167][ T6362] F2FS-fs (loop5): invalid crc value
[  118.405511][ T6141] veth0_macvtap: entered promiscuous mode
[  118.471010][ T6165] veth1_macvtap: entered promiscuous mode
[  118.503298][  T156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.526935][ T6141] veth1_macvtap: entered promiscuous mode
[  118.558719][  T156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.630508][ T6165] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.725654][ T6165] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.746967][ T6362] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  118.775013][ T6305] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.785384][ T6305] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.785422][ T6362] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  118.838367][ T6305] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.854208][ T6305] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.870793][ T6141] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.921790][ T6305] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.933487][ T6305] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.961673][ T6141] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.042005][   T12] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.067435][   T12] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.087426][   T12] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.138849][   T36] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.285080][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.308259][ T6375] loop6: detected capacity change from 0 to 40427
[  119.321423][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.368662][ T6375] F2FS-fs (loop6): build fault injection rate: 771
[  119.387664][ T6375] F2FS-fs (loop6): invalid crc value
[  119.571189][ T3855] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.587997][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.620057][ T3855] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.635941][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.662695][ T6375] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  119.747255][ T6375] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  119.843892][ T6305] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.895974][ T6305] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.265057][ T6115] F2FS-fs (loop5): access invalid blkaddr:2816
[  120.286319][ T6115] CPU: 1 UID: 0 PID: 6115 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  120.286344][ T6115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  120.286352][ T6115] Call Trace:
[  120.286359][ T6115]  <TASK>
[  120.286367][ T6115]  dump_stack_lvl+0x189/0x250
[  120.286397][ T6115]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.286418][ T6115]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  120.286464][ T6115]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  120.286496][ T6115]  f2fs_map_blocks+0xdac/0x40b0
[  120.286559][ T6115]  ? xa_load+0x60/0x210
[  120.286582][ T6115]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  120.286615][ T6115]  ? xa_load+0x60/0x210
[  120.286637][ T6115]  ? xa_load+0x60/0x210
[  120.286673][ T6115]  ? readahead_folio+0x2da/0x430
[  120.286701][ T6115]  f2fs_mpage_readpages+0x1d30/0x2e40
[  120.286730][ T6115]  ? css_rstat_updated+0x239/0x520
[  120.286753][ T6115]  ? __lock_acquire+0x6b6/0x2cf0
[  120.286779][ T6115]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  120.286800][ T6115]  ? preempt_schedule+0xae/0xc0
[  120.286821][ T6115]  ? __pfx_preempt_schedule+0x10/0x10
[  120.286856][ T6115]  ? __folio_batch_add_and_move+0x192/0xc40
[  120.286897][ T6115]  ? f2fs_readahead+0x167/0x310
[  120.286923][ T6115]  read_pages+0x17a/0x580
[  120.286947][ T6115]  ? __pfx_read_pages+0x10/0x10
[  120.286973][ T6115]  ? filemap_add_folio+0x35f/0x540
[  120.287005][ T6115]  page_cache_ra_unbounded+0x750/0x990
[  120.287045][ T6115]  f2fs_readdir+0x49b/0xa40
[  120.287092][ T6115]  ? __pfx_f2fs_readdir+0x10/0x10
[  120.287118][ T6115]  ? handle_mm_fault+0xdb/0x32b0
[  120.287151][ T6115]  ? iterate_dir+0x292/0x570
[  120.287168][ T6115]  ? down_read_killable+0x1bc/0x350
[  120.287190][ T6115]  iterate_dir+0x399/0x570
[  120.287214][ T6115]  __se_sys_getdents64+0xe4/0x260
[  120.287237][ T6115]  ? __pfx___se_sys_getdents64+0x10/0x10
[  120.287255][ T6115]  ? __pfx_filldir64+0x10/0x10
[  120.287283][ T6115]  ? do_syscall_64+0xbe/0xf80
[  120.287310][ T6115]  do_syscall_64+0xfa/0xf80
[  120.287333][ T6115]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.287348][ T6115]  ? clear_bhb_loop+0x60/0xb0
[  120.287369][ T6115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.287386][ T6115] RIP: 0033:0x7f1b283c20b3
[  120.287403][ T6115] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  120.287415][ T6115] RSP: 002b:00007ffffb8f7968 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  120.287430][ T6115] RAX: ffffffffffffffda RBX: 0000555572369600 RCX: 00007f1b283c20b3
[  120.287440][ T6115] RDX: 0000000000008000 RSI: 0000555572369600 RDI: 0000000000000005
[  120.287450][ T6115] RBP: 00005555723695d4 R08: 0000000000028a41 R09: 0000000000000000
[  120.287460][ T6115] R10: 00007f1b285bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  120.287471][ T6115] R13: 0000000000000010 R14: 00005555723695d0 R15: 00007ffffb8f9c20
[  120.287502][ T6115]  </TASK>
[  120.600641][ T6383] loop8: detected capacity change from 0 to 40427
[  120.607420][ T6115] F2FS-fs (loop5): access invalid blkaddr:2816
[  120.658363][ T6115] CPU: 0 UID: 0 PID: 6115 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  120.658386][ T6115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  120.658396][ T6115] Call Trace:
[  120.658404][ T6115]  <TASK>
[  120.658411][ T6115]  dump_stack_lvl+0x189/0x250
[  120.658443][ T6115]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.658461][ T6115]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  120.658485][ T6115]  ? preempt_schedule_notrace+0xd1/0x110
[  120.658517][ T6115]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  120.658548][ T6115]  f2fs_map_blocks+0xdac/0x40b0
[  120.658608][ T6115]  ? xa_load+0x60/0x210
[  120.658629][ T6115]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  120.658653][ T6115]  ? xa_load+0x60/0x210
[  120.658675][ T6115]  ? xa_load+0x60/0x210
[  120.658710][ T6115]  ? readahead_folio+0x2da/0x430
[  120.658736][ T6115]  f2fs_mpage_readpages+0x1d30/0x2e40
[  120.658764][ T6115]  ? css_rstat_updated+0x239/0x520
[  120.658787][ T6115]  ? __lock_acquire+0x6b6/0x2cf0
[  120.658813][ T6115]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  120.658834][ T6115]  ? preempt_schedule+0xae/0xc0
[  120.658852][ T6115]  ? __pfx_preempt_schedule+0x10/0x10
[  120.658886][ T6115]  ? __folio_batch_add_and_move+0x192/0xc40
[  120.658925][ T6115]  ? f2fs_readahead+0x167/0x310
[  120.658950][ T6115]  read_pages+0x17a/0x580
[  120.658974][ T6115]  ? __pfx_read_pages+0x10/0x10
[  120.659003][ T6115]  ? filemap_add_folio+0x35f/0x540
[  120.659035][ T6115]  page_cache_ra_unbounded+0x750/0x990
[  120.659075][ T6115]  f2fs_readdir+0x49b/0xa40
[  120.659120][ T6115]  ? __pfx_f2fs_readdir+0x10/0x10
[  120.659144][ T6115]  ? handle_mm_fault+0xdb/0x32b0
[  120.659175][ T6115]  ? iterate_dir+0x292/0x570
[  120.659192][ T6115]  ? down_read_killable+0x1bc/0x350
[  120.659214][ T6115]  iterate_dir+0x399/0x570
[  120.659238][ T6115]  __se_sys_getdents64+0xe4/0x260
[  120.659258][ T6115]  ? __pfx___se_sys_getdents64+0x10/0x10
[  120.659275][ T6115]  ? __pfx_filldir64+0x10/0x10
[  120.659301][ T6115]  ? do_syscall_64+0xbe/0xf80
[  120.659332][ T6115]  do_syscall_64+0xfa/0xf80
[  120.659354][ T6115]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.659370][ T6115]  ? clear_bhb_loop+0x60/0xb0
[  120.659390][ T6115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.659405][ T6115] RIP: 0033:0x7f1b283c20b3
[  120.659421][ T6115] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  120.659434][ T6115] RSP: 002b:00007ffffb8f7968 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  120.659451][ T6115] RAX: ffffffffffffffda RBX: 0000555572369600 RCX: 00007f1b283c20b3
[  120.659462][ T6115] RDX: 0000000000008000 RSI: 0000555572369600 RDI: 0000000000000005
[  120.659473][ T6115] RBP: 00005555723695d4 R08: 0000000000028a41 R09: 0000000000000000
[  120.659483][ T6115] R10: 00007f1b285bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  120.659494][ T6115] R13: 0000000000000010 R14: 00005555723695d0 R15: 00007ffffb8f9c20
[  120.659524][ T6115]  </TASK>
[  121.078132][ T6115] syz-executor: attempt to access beyond end of device
[  121.078132][ T6115] loop5: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  121.094872][ T6383] F2FS-fs (loop8): build fault injection rate: 771
[  121.154211][ T6383] F2FS-fs (loop8): invalid crc value
[  121.347426][ T6133] F2FS-fs (loop6): access invalid blkaddr:2816
[  121.382321][ T6133] CPU: 1 UID: 0 PID: 6133 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  121.382345][ T6133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  121.382355][ T6133] Call Trace:
[  121.382362][ T6133]  <TASK>
[  121.382369][ T6133]  dump_stack_lvl+0x189/0x250
[  121.382399][ T6133]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.382420][ T6133]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  121.382460][ T6133]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  121.382491][ T6133]  f2fs_map_blocks+0xdac/0x40b0
[  121.382554][ T6133]  ? xa_load+0x60/0x210
[  121.382577][ T6133]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  121.382601][ T6133]  ? xa_load+0x60/0x210
[  121.382623][ T6133]  ? xa_load+0x60/0x210
[  121.382658][ T6133]  ? readahead_folio+0x2da/0x430
[  121.382686][ T6133]  f2fs_mpage_readpages+0x1d30/0x2e40
[  121.382715][ T6133]  ? css_rstat_updated+0x239/0x520
[  121.382738][ T6133]  ? __lock_acquire+0x6b6/0x2cf0
[  121.382763][ T6133]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  121.382786][ T6133]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  121.382825][ T6133]  ? __folio_batch_add_and_move+0x192/0xc40
[  121.382866][ T6133]  ? f2fs_readahead+0x167/0x310
[  121.382891][ T6133]  read_pages+0x17a/0x580
[  121.382915][ T6133]  ? __pfx_read_pages+0x10/0x10
[  121.382940][ T6133]  ? filemap_add_folio+0x35f/0x540
[  121.382972][ T6133]  page_cache_ra_unbounded+0x750/0x990
[  121.383012][ T6133]  f2fs_readdir+0x49b/0xa40
[  121.383059][ T6133]  ? __pfx_f2fs_readdir+0x10/0x10
[  121.383085][ T6133]  ? handle_mm_fault+0xdb/0x32b0
[  121.383117][ T6133]  ? iterate_dir+0x292/0x570
[  121.383134][ T6133]  ? down_read_killable+0x1bc/0x350
[  121.383156][ T6133]  iterate_dir+0x399/0x570
[  121.383180][ T6133]  __se_sys_getdents64+0xe4/0x260
[  121.383208][ T6133]  ? __pfx___se_sys_getdents64+0x10/0x10
[  121.383226][ T6133]  ? __pfx_filldir64+0x10/0x10
[  121.383254][ T6133]  ? do_syscall_64+0xbe/0xf80
[  121.383280][ T6133]  do_syscall_64+0xfa/0xf80
[  121.383303][ T6133]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.383320][ T6133]  ? clear_bhb_loop+0x60/0xb0
[  121.383341][ T6133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.383358][ T6133] RIP: 0033:0x7f73091c20b3
[  121.383374][ T6133] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  121.383387][ T6133] RSP: 002b:00007ffce8f807c8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  121.383404][ T6133] RAX: ffffffffffffffda RBX: 000055557e2ec600 RCX: 00007f73091c20b3
[  121.383416][ T6133] RDX: 0000000000008000 RSI: 000055557e2ec600 RDI: 0000000000000005
[  121.383426][ T6133] RBP: 000055557e2ec5d4 R08: 0000000000028a41 R09: 0000000000000000
[  121.383436][ T6133] R10: 00007f73093bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  121.383446][ T6133] R13: 0000000000000010 R14: 000055557e2ec5d0 R15: 00007ffce8f82a80
[  121.383476][ T6133]  </TASK>
[  121.384665][ T6133] F2FS-fs (loop6): access invalid blkaddr:2816
[  121.606557][ T6383] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  121.626541][ T6133] CPU: 1 UID: 0 PID: 6133 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  121.626564][ T6133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  121.626573][ T6133] Call Trace:
[  121.626580][ T6133]  <TASK>
[  121.626588][ T6133]  dump_stack_lvl+0x189/0x250
[  121.626617][ T6133]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.626637][ T6133]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  121.626660][ T6133]  ? preempt_schedule_notrace+0xd1/0x110
[  121.626695][ T6133]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  121.626725][ T6133]  f2fs_map_blocks+0xdac/0x40b0
[  121.626785][ T6133]  ? xa_load+0x60/0x210
[  121.626805][ T6133]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  121.626828][ T6133]  ? xa_load+0x60/0x210
[  121.626850][ T6133]  ? xa_load+0x60/0x210
[  121.626883][ T6133]  ? readahead_folio+0x2da/0x430
[  121.626909][ T6133]  f2fs_mpage_readpages+0x1d30/0x2e40
[  121.626936][ T6133]  ? css_rstat_updated+0x239/0x520
[  121.626959][ T6133]  ? __lock_acquire+0x6b6/0x2cf0
[  121.626983][ T6133]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  121.627005][ T6133]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  121.627041][ T6133]  ? __folio_batch_add_and_move+0x192/0xc40
[  121.627079][ T6133]  ? f2fs_readahead+0x167/0x310
[  121.627103][ T6133]  read_pages+0x17a/0x580
[  121.627125][ T6133]  ? __pfx_read_pages+0x10/0x10
[  121.627149][ T6133]  ? filemap_add_folio+0x35f/0x540
[  121.627188][ T6133]  page_cache_ra_unbounded+0x750/0x990
[  121.627226][ T6133]  f2fs_readdir+0x49b/0xa40
[  121.627271][ T6133]  ? __pfx_f2fs_readdir+0x10/0x10
[  121.627296][ T6133]  ? handle_mm_fault+0xdb/0x32b0
[  121.627326][ T6133]  ? iterate_dir+0x292/0x570
[  121.627342][ T6133]  ? down_read_killable+0x1bc/0x350
[  121.627364][ T6133]  iterate_dir+0x399/0x570
[  121.627387][ T6133]  __se_sys_getdents64+0xe4/0x260
[  121.627408][ T6133]  ? __pfx___se_sys_getdents64+0x10/0x10
[  121.627425][ T6133]  ? __pfx_filldir64+0x10/0x10
[  121.627451][ T6133]  ? do_syscall_64+0xbe/0xf80
[  121.627476][ T6133]  do_syscall_64+0xfa/0xf80
[  121.627498][ T6133]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.627514][ T6133]  ? clear_bhb_loop+0x60/0xb0
[  121.627534][ T6133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.627550][ T6133] RIP: 0033:0x7f73091c20b3
[  121.627566][ T6133] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  121.627580][ T6133] RSP: 002b:00007ffce8f807c8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  121.627597][ T6133] RAX: ffffffffffffffda RBX: 000055557e2ec600 RCX: 00007f73091c20b3
[  121.627609][ T6133] RDX: 0000000000008000 RSI: 000055557e2ec600 RDI: 0000000000000005
[  121.627619][ T6133] RBP: 000055557e2ec5d4 R08: 0000000000028a41 R09: 0000000000000000
[  121.627629][ T6133] R10: 00007f73093bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  121.627640][ T6133] R13: 0000000000000010 R14: 000055557e2ec5d0 R15: 00007ffce8f82a80
[  121.627669][ T6133]  </TASK>
[  121.627780][ T6133] syz-executor: attempt to access beyond end of device
[  121.627780][ T6133] loop6: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  121.743288][ T6383] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  122.117109][ T6394] loop9: detected capacity change from 0 to 40427
[  122.154582][ T6394] F2FS-fs (loop9): build fault injection rate: 771
[  122.226179][ T6394] F2FS-fs (loop9): invalid crc value
[  122.380493][ T6398] loop7: detected capacity change from 0 to 40427
[  122.458669][ T6398] F2FS-fs (loop7): build fault injection rate: 771
[  122.513959][ T6398] F2FS-fs (loop7): invalid crc value
[  122.523811][ T6394] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  122.581209][ T6394] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  122.760916][ T6115] syz-executor: attempt to access beyond end of device
[  122.760916][ T6115] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  122.762942][ T6398] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  122.786149][ T6133] syz-executor: attempt to access beyond end of device
[  122.786149][ T6133] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  122.828633][ T6115] CPU: 1 UID: 0 PID: 6115 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  122.828659][ T6115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  122.828670][ T6115] Call Trace:
[  122.828677][ T6115]  <TASK>
[  122.828685][ T6115]  dump_stack_lvl+0x189/0x250
[  122.828717][ T6115]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.828739][ T6115]  ? __pfx_queue_work_on+0x10/0x10
[  122.828757][ T6115]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  122.828780][ T6115]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  122.828817][ T6115]  f2fs_handle_critical_error+0x37c/0x540
[  122.828849][ T6115]  f2fs_write_end_io+0x886/0xb60
[  122.828895][ T6115]  __submit_merged_bio+0x256/0x660
[  122.828925][ T6115]  __submit_merged_write_cond+0x269/0x530
[  122.828956][ T6115]  f2fs_write_data_pages+0x2756/0x3290
[  122.829022][ T6115]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  122.829042][ T6115]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  122.829119][ T6115]  ? __page_cache_release+0x8a6/0xbb0
[  122.829148][ T6115]  ? __lock_acquire+0x6b6/0x2cf0
[  122.829187][ T6115]  ? __lock_acquire+0x6b6/0x2cf0
[  122.829218][ T6115]  ? do_raw_spin_lock+0x121/0x290
[  122.829256][ T6115]  ? do_raw_spin_unlock+0x122/0x240
[  122.829287][ T6115]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  122.829311][ T6115]  do_writepages+0x32e/0x550
[  122.829350][ T6115]  ? do_raw_spin_unlock+0x122/0x240
[  122.829379][ T6115]  filemap_fdatawrite+0x199/0x240
[  122.829404][ T6115]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  122.829486][ T6115]  ? do_raw_spin_unlock+0x122/0x240
[  122.829515][ T6115]  f2fs_sync_dirty_inodes+0x30f/0x810
[  122.829557][ T6115]  f2fs_write_checkpoint+0x935/0x2430
[  122.829579][ T6115]  ? stack_depot_save_flags+0x40/0x850
[  122.829632][ T6115]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  122.829700][ T6115]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  122.829727][ T6115]  ? kfree+0x1c0/0x660
[  122.829754][ T6115]  kill_f2fs_super+0x2d2/0x6c0
[  122.829785][ T6115]  ? __pfx_kill_f2fs_super+0x10/0x10
[  122.829824][ T6115]  ? shrinker_free+0x2ce/0x3e0
[  122.829843][ T6115]  deactivate_locked_super+0xbc/0x130
[  122.829866][ T6115]  cleanup_mnt+0x425/0x4c0
[  122.829880][ T6115]  ? lockdep_hardirqs_on+0x98/0x140
[  122.829901][ T6115]  task_work_run+0x1d4/0x260
[  122.829923][ T6115]  ? __pfx_task_work_run+0x10/0x10
[  122.829942][ T6115]  ? kmem_cache_free+0x197/0x620
[  122.829956][ T6115]  ? do_exit+0x8b8/0x25b0
[  122.829979][ T6115]  do_exit+0x8bd/0x25b0
[  122.830008][ T6115]  ? __pfx_do_exit+0x10/0x10
[  122.830034][ T6115]  ? _raw_spin_unlock_irq+0x23/0x50
[  122.830050][ T6115]  ? lockdep_hardirqs_on+0x98/0x140
[  122.830070][ T6115]  do_group_exit+0x21c/0x2d0
[  122.830093][ T6115]  __x64_sys_exit_group+0x3f/0x40
[  122.830111][ T6115]  x64_sys_call+0x2210/0x2210
[  122.830128][ T6115]  do_syscall_64+0xfa/0xf80
[  122.830147][ T6115]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.830161][ T6115]  ? clear_bhb_loop+0x60/0xb0
[  122.830178][ T6115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.830191][ T6115] RIP: 0033:0x7f1b2838f749
[  122.830204][ T6115] Code: Unable to access opcode bytes at 0x7f1b2838f71f.
[  122.830211][ T6115] RSP: 002b:00007ffffb8f7898 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  122.830226][ T6115] RAX: ffffffffffffffda RBX: 00007f1b28413def RCX: 00007f1b2838f749
[  122.830236][ T6115] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  122.830243][ T6115] RBP: 0000000000000010 R08: 00007ffffb8f5636 R09: 00007ffffb8f8b50
[  122.830252][ T6115] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffffb8f8b50
[  122.830260][ T6115] R13: 00007f1b28413d7d R14: 000055557234e4a8 R15: 00007ffffb8f9c20
[  122.830294][ T6115]  </TASK>
[  122.835339][ T6115] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  122.856441][ T6398] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  122.871407][ T6133] CPU: 1 UID: 0 PID: 6133 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  122.871433][ T6133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  122.871444][ T6133] Call Trace:
[  122.871451][ T6133]  <TASK>
[  122.871458][ T6133]  dump_stack_lvl+0x189/0x250
[  122.871488][ T6133]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.871510][ T6133]  ? __pfx_queue_work_on+0x10/0x10
[  122.871527][ T6133]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  122.871550][ T6133]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  122.871583][ T6133]  f2fs_handle_critical_error+0x37c/0x540
[  122.871608][ T6133]  f2fs_write_end_io+0x886/0xb60
[  122.871657][ T6133]  __submit_merged_bio+0x256/0x660
[  122.871684][ T6133]  __submit_merged_write_cond+0x269/0x530
[  122.871709][ T6133]  f2fs_write_data_pages+0x2756/0x3290
[  122.871730][ T6133]  ? __lock_acquire+0x6b6/0x2cf0
[  122.871789][ T6133]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  122.871824][ T6133]  ? unwind_next_frame+0xa5/0x23d0
[  122.871880][ T6133]  ? __lock_acquire+0x6b6/0x2cf0
[  122.871913][ T6133]  ? __lock_acquire+0x6b6/0x2cf0
[  122.871938][ T6133]  ? do_raw_spin_lock+0x121/0x290
[  122.871971][ T6133]  ? do_raw_spin_unlock+0x122/0x240
[  122.871994][ T6133]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  122.872017][ T6133]  do_writepages+0x32e/0x550
[  122.872061][ T6133]  ? do_raw_spin_unlock+0x122/0x240
[  122.872087][ T6133]  filemap_fdatawrite+0x199/0x240
[  122.872110][ T6133]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  122.872178][ T6133]  ? do_raw_spin_unlock+0x122/0x240
[  122.872211][ T6133]  f2fs_sync_dirty_inodes+0x30f/0x810
[  122.872248][ T6133]  f2fs_write_checkpoint+0x935/0x2430
[  122.872269][ T6133]  ? stack_depot_save_flags+0x40/0x850
[  122.872316][ T6133]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  122.872378][ T6133]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  122.872399][ T6133]  ? kfree+0x1c0/0x660
[  122.872425][ T6133]  kill_f2fs_super+0x2d2/0x6c0
[  122.872454][ T6133]  ? __pfx_kill_f2fs_super+0x10/0x10
[  122.872500][ T6133]  ? shrinker_free+0x2ce/0x3e0
[  122.872524][ T6133]  deactivate_locked_super+0xbc/0x130
[  122.872550][ T6133]  cleanup_mnt+0x425/0x4c0
[  122.872567][ T6133]  ? lockdep_hardirqs_on+0x98/0x140
[  122.872592][ T6133]  task_work_run+0x1d4/0x260
[  122.872617][ T6133]  ? __pfx_task_work_run+0x10/0x10
[  122.872640][ T6133]  ? kmem_cache_free+0x197/0x620
[  122.872656][ T6133]  ? do_exit+0x8b8/0x25b0
[  122.872683][ T6133]  do_exit+0x8bd/0x25b0
[  122.872716][ T6133]  ? __pfx_do_exit+0x10/0x10
[  122.872744][ T6133]  ? _raw_spin_unlock_irq+0x23/0x50
[  122.872763][ T6133]  ? lockdep_hardirqs_on+0x98/0x140
[  122.872787][ T6133]  do_group_exit+0x21c/0x2d0
[  122.872814][ T6133]  __x64_sys_exit_group+0x3f/0x40
[  122.872835][ T6133]  x64_sys_call+0x2210/0x2210
[  122.872855][ T6133]  do_syscall_64+0xfa/0xf80
[  122.872877][ T6133]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.872894][ T6133]  ? clear_bhb_loop+0x60/0xb0
[  122.872914][ T6133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.872930][ T6133] RIP: 0033:0x7f730918f749
[  122.872945][ T6133] Code: Unable to access opcode bytes at 0x7f730918f71f.
[  122.872952][ T6133] RSP: 002b:00007ffce8f806f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  122.872970][ T6133] RAX: ffffffffffffffda RBX: 00007f7309213def RCX: 00007f730918f749
[  122.872982][ T6133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
2025/12/25 06:50:36 executed programs: 33
[  122.872991][ T6133] RBP: 0000000000000010 R08: 00007ffce8f7e496 R09: 00007ffce8f819b0
[  122.873001][ T6133] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffce8f819b0
[  122.873011][ T6133] R13: 00007f7309213d7d R14: 000055557e2d14a8 R15: 00007ffce8f82a80
[  122.873050][ T6133]  </TASK>
[  122.873057][ T6133] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  123.574115][  T156] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.710383][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  123.719050][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  123.728106][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  123.741685][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  123.750247][ T6165] F2FS-fs (loop9): access invalid blkaddr:2816
[  123.750705][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  123.756424][ T6165] CPU: 1 UID: 0 PID: 6165 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  123.756442][ T6165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  123.756451][ T6165] Call Trace:
[  123.756459][ T6165]  <TASK>
[  123.756466][ T6165]  dump_stack_lvl+0x189/0x250
[  123.756496][ T6165]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.756516][ T6165]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  123.756554][ T6165]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  123.756584][ T6165]  f2fs_map_blocks+0xdac/0x40b0
[  123.756644][ T6165]  ? xa_load+0x60/0x210
[  123.756666][ T6165]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  123.756689][ T6165]  ? xa_load+0x60/0x210
[  123.756711][ T6165]  ? xa_load+0x60/0x210
[  123.756744][ T6165]  ? readahead_folio+0x2da/0x430
[  123.756771][ T6165]  f2fs_mpage_readpages+0x1d30/0x2e40
[  123.756802][ T6165]  ? css_rstat_updated+0x239/0x520
[  123.756825][ T6165]  ? __lock_acquire+0x6b6/0x2cf0
[  123.756849][ T6165]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  123.756871][ T6165]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  123.756908][ T6165]  ? __folio_batch_add_and_move+0x192/0xc40
[  123.756947][ T6165]  ? f2fs_readahead+0x167/0x310
[  123.756972][ T6165]  read_pages+0x17a/0x580
[  123.756994][ T6165]  ? __pfx_read_pages+0x10/0x10
[  123.757024][ T6165]  ? filemap_add_folio+0x35f/0x540
[  123.757054][ T6165]  page_cache_ra_unbounded+0x750/0x990
[  123.757092][ T6165]  f2fs_readdir+0x49b/0xa40
[  123.757137][ T6165]  ? __pfx_f2fs_readdir+0x10/0x10
[  123.757162][ T6165]  ? handle_mm_fault+0xdb/0x32b0
[  123.757193][ T6165]  ? iterate_dir+0x292/0x570
[  123.757209][ T6165]  ? down_read_killable+0x1bc/0x350
[  123.757230][ T6165]  iterate_dir+0x399/0x570
[  123.757254][ T6165]  __se_sys_getdents64+0xe4/0x260
[  123.757275][ T6165]  ? __pfx___se_sys_getdents64+0x10/0x10
[  123.757291][ T6165]  ? __pfx_filldir64+0x10/0x10
[  123.757318][ T6165]  ? do_syscall_64+0xbe/0xf80
[  123.757344][ T6165]  do_syscall_64+0xfa/0xf80
[  123.757366][ T6165]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.757382][ T6165]  ? clear_bhb_loop+0x60/0xb0
[  123.757402][ T6165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.757418][ T6165] RIP: 0033:0x7f0f6b9c20b3
[  123.757435][ T6165] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  123.757448][ T6165] RSP: 002b:00007ffcaa5dc558 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  123.757466][ T6165] RAX: ffffffffffffffda RBX: 000055557ccd5600 RCX: 00007f0f6b9c20b3
[  123.757478][ T6165] RDX: 0000000000008000 RSI: 000055557ccd5600 RDI: 0000000000000005
[  123.757487][ T6165] RBP: 000055557ccd55d4 R08: 0000000000028a41 R09: 0000000000000000
[  123.757498][ T6165] R10: 00007f0f6bbbacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  123.757508][ T6165] R13: 0000000000000010 R14: 000055557ccd55d0 R15: 00007ffcaa5de810
[  123.757538][ T6165]  </TASK>
[  123.757590][ T6165] F2FS-fs (loop9): access invalid blkaddr:2816
[  124.066999][ T6165] CPU: 1 UID: 0 PID: 6165 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  124.067020][ T6165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  124.067028][ T6165] Call Trace:
[  124.067044][ T6165]  <TASK>
[  124.067050][ T6165]  dump_stack_lvl+0x189/0x250
[  124.067074][ T6165]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.067089][ T6165]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  124.067115][ T6165]  ? f2fs_handle_error+0x13f/0x1e0
[  124.067133][ T6165]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  124.067157][ T6165]  f2fs_map_blocks+0xdac/0x40b0
[  124.067203][ T6165]  ? xa_load+0x60/0x210
[  124.067220][ T6165]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  124.067239][ T6165]  ? xa_load+0x60/0x210
[  124.067255][ T6165]  ? xa_load+0x60/0x210
[  124.067282][ T6165]  ? readahead_folio+0x2da/0x430
[  124.067305][ T6165]  f2fs_mpage_readpages+0x1d30/0x2e40
[  124.067330][ T6165]  ? css_rstat_updated+0x239/0x520
[  124.067351][ T6165]  ? __lock_acquire+0x6b6/0x2cf0
[  124.067374][ T6165]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  124.067395][ T6165]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  124.067431][ T6165]  ? __folio_batch_add_and_move+0x192/0xc40
[  124.067470][ T6165]  ? f2fs_readahead+0x167/0x310
[  124.067493][ T6165]  read_pages+0x17a/0x580
[  124.067517][ T6165]  ? __pfx_read_pages+0x10/0x10
[  124.067540][ T6165]  ? filemap_add_folio+0x35f/0x540
[  124.067568][ T6165]  page_cache_ra_unbounded+0x750/0x990
[  124.067605][ T6165]  f2fs_readdir+0x49b/0xa40
[  124.067648][ T6165]  ? __pfx_f2fs_readdir+0x10/0x10
[  124.067671][ T6165]  ? handle_mm_fault+0xdb/0x32b0
[  124.067697][ T6165]  ? iterate_dir+0x292/0x570
[  124.067712][ T6165]  ? down_read_killable+0x1bc/0x350
[  124.067732][ T6165]  iterate_dir+0x399/0x570
[  124.067752][ T6165]  __se_sys_getdents64+0xe4/0x260
[  124.067771][ T6165]  ? __pfx___se_sys_getdents64+0x10/0x10
[  124.067788][ T6165]  ? __pfx_filldir64+0x10/0x10
[  124.067815][ T6165]  ? do_syscall_64+0xbe/0xf80
[  124.067841][ T6165]  do_syscall_64+0xfa/0xf80
[  124.067864][ T6165]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.067880][ T6165]  ? clear_bhb_loop+0x60/0xb0
[  124.067896][ T6165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.067908][ T6165] RIP: 0033:0x7f0f6b9c20b3
[  124.067922][ T6165] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  124.067933][ T6165] RSP: 002b:00007ffcaa5dc558 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  124.067946][ T6165] RAX: ffffffffffffffda RBX: 000055557ccd5600 RCX: 00007f0f6b9c20b3
[  124.067955][ T6165] RDX: 0000000000008000 RSI: 000055557ccd5600 RDI: 0000000000000005
[  124.067964][ T6165] RBP: 000055557ccd55d4 R08: 0000000000028a41 R09: 0000000000000000
[  124.067971][ T6165] R10: 00007f0f6bbbacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  124.067980][ T6165] R13: 0000000000000010 R14: 000055557ccd55d0 R15: 00007ffcaa5de810
[  124.068003][ T6165]  </TASK>
[  124.068110][ T6165] syz-executor: attempt to access beyond end of device
[  124.068110][ T6165] loop9: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  124.243673][ T6141] F2FS-fs (loop7): access invalid blkaddr:2816
[  124.394775][ T6141] CPU: 0 UID: 0 PID: 6141 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  124.394799][ T6141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  124.394809][ T6141] Call Trace:
[  124.394816][ T6141]  <TASK>
[  124.394823][ T6141]  dump_stack_lvl+0x189/0x250
[  124.394850][ T6141]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.394869][ T6141]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  124.394908][ T6141]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  124.394938][ T6141]  f2fs_map_blocks+0xdac/0x40b0
[  124.394994][ T6141]  ? xa_load+0x60/0x210
[  124.395017][ T6141]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  124.395040][ T6141]  ? xa_load+0x60/0x210
[  124.395062][ T6141]  ? xa_load+0x60/0x210
[  124.395096][ T6141]  ? readahead_folio+0x2da/0x430
[  124.395123][ T6141]  f2fs_mpage_readpages+0x1d30/0x2e40
[  124.395150][ T6141]  ? css_rstat_updated+0x239/0x520
[  124.395173][ T6141]  ? __lock_acquire+0x6b6/0x2cf0
[  124.395197][ T6141]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  124.395220][ T6141]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  124.395263][ T6141]  ? __folio_batch_add_and_move+0x192/0xc40
[  124.395302][ T6141]  ? f2fs_readahead+0x167/0x310
[  124.395326][ T6141]  read_pages+0x17a/0x580
[  124.395348][ T6141]  ? __pfx_read_pages+0x10/0x10
[  124.395372][ T6141]  ? filemap_add_folio+0x35f/0x540
[  124.395404][ T6141]  page_cache_ra_unbounded+0x750/0x990
[  124.395442][ T6141]  f2fs_readdir+0x49b/0xa40
[  124.395488][ T6141]  ? __pfx_f2fs_readdir+0x10/0x10
[  124.395512][ T6141]  ? handle_mm_fault+0xdb/0x32b0
[  124.395543][ T6141]  ? iterate_dir+0x292/0x570
[  124.395560][ T6141]  ? down_read_killable+0x1bc/0x350
[  124.395583][ T6141]  iterate_dir+0x399/0x570
[  124.395605][ T6141]  __se_sys_getdents64+0xe4/0x260
[  124.395624][ T6141]  ? __pfx___se_sys_getdents64+0x10/0x10
[  124.395641][ T6141]  ? __pfx_filldir64+0x10/0x10
[  124.395667][ T6141]  ? do_syscall_64+0xbe/0xf80
[  124.395693][ T6141]  do_syscall_64+0xfa/0xf80
[  124.395715][ T6141]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.395731][ T6141]  ? clear_bhb_loop+0x60/0xb0
[  124.395753][ T6141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.395770][ T6141] RIP: 0033:0x7f42743c20b3
[  124.395787][ T6141] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  124.395801][ T6141] RSP: 002b:00007ffd3ac5bde8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  124.395819][ T6141] RAX: ffffffffffffffda RBX: 0000555594938600 RCX: 00007f42743c20b3
[  124.395831][ T6141] RDX: 0000000000008000 RSI: 0000555594938600 RDI: 0000000000000005
[  124.395843][ T6141] RBP: 00005555949385d4 R08: 0000000000028a41 R09: 0000000000000000
[  124.395853][ T6141] R10: 00007f42745bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  124.395864][ T6141] R13: 0000000000000010 R14: 00005555949385d0 R15: 00007ffd3ac5e0a0
[  124.395896][ T6141]  </TASK>
[  124.397565][ T6141] F2FS-fs (loop7): access invalid blkaddr:2816
[  124.407691][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  124.419936][ T6141] CPU: 0 UID: 0 PID: 6141 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  124.419961][ T6141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  124.419971][ T6141] Call Trace:
[  124.419978][ T6141]  <TASK>
[  124.419985][ T6141]  dump_stack_lvl+0x189/0x250
[  124.420015][ T6141]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.420036][ T6141]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  124.420060][ T6141]  ? preempt_schedule_notrace+0xd1/0x110
[  124.420096][ T6141]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  124.420127][ T6141]  f2fs_map_blocks+0xdac/0x40b0
[  124.420186][ T6141]  ? xa_load+0x60/0x210
[  124.420208][ T6141]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  124.420230][ T6141]  ? xa_load+0x60/0x210
[  124.420261][ T6141]  ? xa_load+0x60/0x210
[  124.420295][ T6141]  ? readahead_folio+0x2da/0x430
[  124.420323][ T6141]  f2fs_mpage_readpages+0x1d30/0x2e40
[  124.420351][ T6141]  ? css_rstat_updated+0x239/0x520
[  124.420374][ T6141]  ? __lock_acquire+0x6b6/0x2cf0
[  124.420397][ T6141]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  124.420417][ T6141]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  124.420449][ T6141]  ? __folio_batch_add_and_move+0x192/0xc40
[  124.420483][ T6141]  ? f2fs_readahead+0x167/0x310
[  124.420503][ T6141]  read_pages+0x17a/0x580
[  124.420525][ T6141]  ? __pfx_read_pages+0x10/0x10
[  124.420550][ T6141]  ? filemap_add_folio+0x35f/0x540
[  124.420581][ T6141]  page_cache_ra_unbounded+0x750/0x990
[  124.420619][ T6141]  f2fs_readdir+0x49b/0xa40
[  124.420663][ T6141]  ? __pfx_f2fs_readdir+0x10/0x10
[  124.420689][ T6141]  ? handle_mm_fault+0xdb/0x32b0
[  124.420719][ T6141]  ? iterate_dir+0x292/0x570
[  124.420736][ T6141]  ? down_read_killable+0x1bc/0x350
[  124.420757][ T6141]  iterate_dir+0x399/0x570
[  124.420780][ T6141]  __se_sys_getdents64+0xe4/0x260
[  124.420802][ T6141]  ? __pfx___se_sys_getdents64+0x10/0x10
[  124.420819][ T6141]  ? __pfx_filldir64+0x10/0x10
[  124.420846][ T6141]  ? do_syscall_64+0xbe/0xf80
[  124.420871][ T6141]  do_syscall_64+0xfa/0xf80
[  124.420894][ T6141]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.420909][ T6141]  ? clear_bhb_loop+0x60/0xb0
[  124.420930][ T6141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.420946][ T6141] RIP: 0033:0x7f42743c20b3
[  124.420962][ T6141] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  124.420976][ T6141] RSP: 002b:00007ffd3ac5bde8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  124.420992][ T6141] RAX: ffffffffffffffda RBX: 0000555594938600 RCX: 00007f42743c20b3
[  124.421004][ T6141] RDX: 0000000000008000 RSI: 0000555594938600 RDI: 0000000000000005
[  124.421015][ T6141] RBP: 00005555949385d4 R08: 0000000000028a41 R09: 0000000000000000
[  124.421026][ T6141] R10: 00007f42745bacc0 R11: 0000000000000293 R12: ffffffffffffffa8
[  124.421036][ T6141] R13: 0000000000000010 R14: 00005555949385d0 R15: 00007ffd3ac5e0a0
[  124.421066][ T6141]  </TASK>
[  124.425908][ T6141] syz-executor: attempt to access beyond end of device
[  124.425908][ T6141] loop7: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  124.451041][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  124.502910][ T6426] loop8: detected capacity change from 0 to 40427
[  124.619031][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  124.648139][ T6426] F2FS-fs (loop8): build fault injection rate: 771
[  124.661397][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  124.730622][ T6426] F2FS-fs (loop8): invalid crc value
[  124.733799][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  124.851849][  T156] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.075472][ T6426] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  125.104291][ T6426] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  125.302823][  T156] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.404753][ T6141] syz-executor: attempt to access beyond end of device
[  125.404753][ T6141] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  125.423330][ T6165] syz-executor: attempt to access beyond end of device
[  125.423330][ T6165] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  125.473068][ T6141] CPU: 1 UID: 0 PID: 6141 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  125.473099][ T6141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  125.473109][ T6141] Call Trace:
[  125.473117][ T6141]  <TASK>
[  125.473124][ T6141]  dump_stack_lvl+0x189/0x250
[  125.473157][ T6141]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.473179][ T6141]  ? __pfx_queue_work_on+0x10/0x10
[  125.473197][ T6141]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  125.473220][ T6141]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  125.473254][ T6141]  f2fs_handle_critical_error+0x37c/0x540
[  125.473283][ T6141]  f2fs_write_end_io+0x886/0xb60
[  125.473327][ T6141]  __submit_merged_bio+0x256/0x660
[  125.473355][ T6141]  __submit_merged_write_cond+0x269/0x530
[  125.473385][ T6141]  f2fs_write_data_pages+0x2756/0x3290
[  125.473446][ T6141]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.473464][ T6141]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  125.473537][ T6141]  ? __page_cache_release+0x8a6/0xbb0
[  125.473559][ T6141]  ? folio_unqueue_deferred_split+0x93/0x230
[  125.473584][ T6141]  ? folios_put_refs+0x584/0x670
[  125.473619][ T6141]  ? __lock_acquire+0x6b6/0x2cf0
[  125.473648][ T6141]  ? __lock_acquire+0x6b6/0x2cf0
[  125.473683][ T6141]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.473706][ T6141]  do_writepages+0x32e/0x550
[  125.473742][ T6141]  ? do_raw_spin_unlock+0x122/0x240
[  125.473770][ T6141]  filemap_fdatawrite+0x199/0x240
[  125.473796][ T6141]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  125.473873][ T6141]  ? do_raw_spin_unlock+0x122/0x240
[  125.473904][ T6141]  f2fs_sync_dirty_inodes+0x30f/0x810
[  125.473948][ T6141]  f2fs_write_checkpoint+0x935/0x2430
[  125.473970][ T6141]  ? stack_depot_save_flags+0x40/0x850
[  125.474027][ T6141]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  125.474110][ T6141]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  125.474134][ T6141]  ? kfree+0x1c0/0x660
[  125.474164][ T6141]  kill_f2fs_super+0x2d2/0x6c0
[  125.474197][ T6141]  ? __pfx_kill_f2fs_super+0x10/0x10
[  125.474245][ T6141]  ? shrinker_free+0x2ce/0x3e0
[  125.474269][ T6141]  deactivate_locked_super+0xbc/0x130
[  125.474299][ T6141]  cleanup_mnt+0x425/0x4c0
[  125.474317][ T6141]  ? lockdep_hardirqs_on+0x98/0x140
[  125.474344][ T6141]  task_work_run+0x1d4/0x260
[  125.474373][ T6141]  ? __pfx_task_work_run+0x10/0x10
[  125.474399][ T6141]  ? kmem_cache_free+0x197/0x620
[  125.474417][ T6141]  ? do_exit+0x8b8/0x25b0
[  125.474446][ T6141]  do_exit+0x8bd/0x25b0
[  125.474485][ T6141]  ? __pfx_do_exit+0x10/0x10
[  125.474519][ T6141]  ? _raw_spin_unlock_irq+0x23/0x50
[  125.474540][ T6141]  ? lockdep_hardirqs_on+0x98/0x140
[  125.474567][ T6141]  do_group_exit+0x21c/0x2d0
[  125.474598][ T6141]  __x64_sys_exit_group+0x3f/0x40
[  125.474621][ T6141]  x64_sys_call+0x2210/0x2210
[  125.474643][ T6141]  do_syscall_64+0xfa/0xf80
[  125.474669][ T6141]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.474686][ T6141]  ? clear_bhb_loop+0x60/0xb0
[  125.474709][ T6141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.474725][ T6141] RIP: 0033:0x7f427438f749
[  125.474741][ T6141] Code: Unable to access opcode bytes at 0x7f427438f71f.
[  125.474749][ T6141] RSP: 002b:00007ffd3ac5bd18 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  125.474768][ T6141] RAX: ffffffffffffffda RBX: 00007f4274413def RCX: 00007f427438f749
[  125.474780][ T6141] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  125.474790][ T6141] RBP: 0000000000000010 R08: 00007ffd3ac59ab6 R09: 00007ffd3ac5cfd0
[  125.474801][ T6141] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd3ac5cfd0
[  125.474812][ T6141] R13: 00007f4274413d7d R14: 000055559491d4a8 R15: 00007ffd3ac5e0a0
[  125.474847][ T6141]  </TASK>
[  125.474854][ T6141] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  125.521024][ T6165] CPU: 0 UID: 0 PID: 6165 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  125.521048][ T6165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  125.521059][ T6165] Call Trace:
[  125.521065][ T6165]  <TASK>
[  125.521072][ T6165]  dump_stack_lvl+0x189/0x250
[  125.521102][ T6165]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.521122][ T6165]  ? __pfx_queue_work_on+0x10/0x10
[  125.521139][ T6165]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  125.521161][ T6165]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  125.521192][ T6165]  f2fs_handle_critical_error+0x37c/0x540
[  125.521220][ T6165]  f2fs_write_end_io+0x886/0xb60
[  125.521259][ T6165]  __submit_merged_bio+0x256/0x660
[  125.521285][ T6165]  __submit_merged_write_cond+0x269/0x530
[  125.521312][ T6165]  f2fs_write_data_pages+0x2756/0x3290
[  125.521366][ T6165]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.521400][ T6165]  ? __lock_acquire+0x6b6/0x2cf0
[  125.521447][ T6165]  ? __lock_acquire+0x6b6/0x2cf0
[  125.521483][ T6165]  ? __lock_acquire+0x6b6/0x2cf0
[  125.521509][ T6165]  ? __lock_acquire+0x6b6/0x2cf0
[  125.521540][ T6165]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.521563][ T6165]  do_writepages+0x32e/0x550
[  125.521596][ T6165]  ? do_raw_spin_unlock+0x122/0x240
[  125.521622][ T6165]  filemap_fdatawrite+0x199/0x240
[  125.521644][ T6165]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  125.521712][ T6165]  ? do_raw_spin_unlock+0x122/0x240
[  125.521739][ T6165]  f2fs_sync_dirty_inodes+0x30f/0x810
[  125.521776][ T6165]  f2fs_write_checkpoint+0x935/0x2430
[  125.521797][ T6165]  ? stack_depot_save_flags+0x40/0x850
[  125.521852][ T6165]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  125.521914][ T6165]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  125.521936][ T6165]  ? kfree+0x1c0/0x660
[  125.521961][ T6165]  kill_f2fs_super+0x2d2/0x6c0
[  125.521990][ T6165]  ? __pfx_kill_f2fs_super+0x10/0x10
[  125.522030][ T6165]  ? shrinker_free+0x2ce/0x3e0
[  125.522053][ T6165]  deactivate_locked_super+0xbc/0x130
[  125.522080][ T6165]  cleanup_mnt+0x425/0x4c0
[  125.522096][ T6165]  ? lockdep_hardirqs_on+0x98/0x140
[  125.522120][ T6165]  task_work_run+0x1d4/0x260
[  125.522145][ T6165]  ? __pfx_task_work_run+0x10/0x10
[  125.522168][ T6165]  ? kmem_cache_free+0x197/0x620
[  125.522184][ T6165]  ? do_exit+0x8b8/0x25b0
[  125.522210][ T6165]  do_exit+0x8bd/0x25b0
[  125.522243][ T6165]  ? __pfx_do_exit+0x10/0x10
[  125.522272][ T6165]  ? _raw_spin_unlock_irq+0x23/0x50
[  125.522291][ T6165]  ? lockdep_hardirqs_on+0x98/0x140
[  125.522311][ T6165]  do_group_exit+0x21c/0x2d0
[  125.522335][ T6165]  __x64_sys_exit_group+0x3f/0x40
[  125.522354][ T6165]  x64_sys_call+0x2210/0x2210
[  125.522373][ T6165]  do_syscall_64+0xfa/0xf80
[  125.522395][ T6165]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.522412][ T6165]  ? clear_bhb_loop+0x60/0xb0
[  125.522433][ T6165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.522449][ T6165] RIP: 0033:0x7f0f6b98f749
[  125.522465][ T6165] Code: Unable to access opcode bytes at 0x7f0f6b98f71f.
[  125.522471][ T6165] RSP: 002b:00007ffcaa5dc488 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  125.522489][ T6165] RAX: ffffffffffffffda RBX: 00007f0f6ba13def RCX: 00007f0f6b98f749
[  125.522501][ T6165] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  125.522511][ T6165] RBP: 0000000000000010 R08: 00007ffcaa5da226 R09: 00007ffcaa5dd740
[  125.522522][ T6165] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcaa5dd740
[  125.522532][ T6165] R13: 00007f0f6ba13d7d R14: 000055557ccba4a8 R15: 00007ffcaa5de810
[  125.522560][ T6165]  </TASK>
[  125.522567][ T6165] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[  125.858667][ T5954] Bluetooth: hci0: command tx timeout
[  125.872552][ T5908] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  126.103042][ T6156] F2FS-fs (loop8): access invalid blkaddr:2816
[  126.109815][ T5908] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  126.124724][ T6156] CPU: 0 UID: 0 PID: 6156 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  126.124747][ T6156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  126.124757][ T6156] Call Trace:
[  126.124764][ T6156]  <TASK>
[  126.124771][ T6156]  dump_stack_lvl+0x189/0x250
[  126.124799][ T6156]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.124819][ T6156]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  126.124859][ T6156]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  126.124888][ T6156]  f2fs_map_blocks+0xdac/0x40b0
[  126.124949][ T6156]  ? xa_load+0x60/0x210
[  126.124970][ T6156]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  126.124993][ T6156]  ? xa_load+0x60/0x210
[  126.125015][ T6156]  ? xa_load+0x60/0x210
[  126.125056][ T6156]  ? readahead_folio+0x2da/0x430
[  126.125083][ T6156]  f2fs_mpage_readpages+0x1d30/0x2e40
[  126.125110][ T6156]  ? css_rstat_updated+0x239/0x520
[  126.125132][ T6156]  ? __lock_acquire+0x6b6/0x2cf0
[  126.125157][ T6156]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  126.125179][ T6156]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  126.125216][ T6156]  ? __folio_batch_add_and_move+0x192/0xc40
[  126.125255][ T6156]  ? f2fs_readahead+0x167/0x310
[  126.125279][ T6156]  read_pages+0x17a/0x580
[  126.125301][ T6156]  ? __pfx_read_pages+0x10/0x10
[  126.125326][ T6156]  ? filemap_add_folio+0x35f/0x540
[  126.125357][ T6156]  page_cache_ra_unbounded+0x750/0x990
[  126.125395][ T6156]  f2fs_readdir+0x49b/0xa40
[  126.125440][ T6156]  ? __pfx_f2fs_readdir+0x10/0x10
[  126.125466][ T6156]  ? handle_mm_fault+0xdb/0x32b0
[  126.125495][ T6156]  ? iterate_dir+0x292/0x570
[  126.125512][ T6156]  ? down_read_killable+0x1bc/0x350
[  126.125534][ T6156]  iterate_dir+0x399/0x570
[  126.125558][ T6156]  __se_sys_getdents64+0xe4/0x260
[  126.125579][ T6156]  ? __pfx___se_sys_getdents64+0x10/0x10
[  126.125596][ T6156]  ? __pfx_filldir64+0x10/0x10
[  126.125623][ T6156]  ? do_syscall_64+0xbe/0xf80
[  126.125648][ T6156]  do_syscall_64+0xfa/0xf80
[  126.125670][ T6156]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.125686][ T6156]  ? clear_bhb_loop+0x60/0xb0
[  126.125706][ T6156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.125722][ T6156] RIP: 0033:0x7ffae2dc20b3
[  126.125738][ T6156] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  126.125751][ T6156] RSP: 002b:00007ffdea2cce58 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  126.125769][ T6156] RAX: ffffffffffffffda RBX: 00005555905a4600 RCX: 00007ffae2dc20b3
[  126.125780][ T6156] RDX: 0000000000008000 RSI: 00005555905a4600 RDI: 0000000000000005
[  126.125791][ T6156] RBP: 00005555905a45d4 R08: 0000000000000000 R09: 0000000000000000
[  126.125801][ T6156] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[  126.125811][ T6156] R13: 0000000000000010 R14: 00005555905a45d0 R15: 00007ffdea2cf110
[  126.125841][ T6156]  </TASK>
[  126.127519][ T6156] F2FS-fs (loop8): access invalid blkaddr:2816
[  126.133153][ T5908] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  126.177783][  T156] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.179844][ T5908] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  126.237020][ T6156] CPU: 0 UID: 0 PID: 6156 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  126.237045][ T6156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  126.237056][ T6156] Call Trace:
[  126.237062][ T6156]  <TASK>
[  126.237070][ T6156]  dump_stack_lvl+0x189/0x250
[  126.237099][ T6156]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.237119][ T6156]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  126.237142][ T6156]  ? preempt_schedule_notrace+0xd1/0x110
[  126.237177][ T6156]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  126.237207][ T6156]  f2fs_map_blocks+0xdac/0x40b0
[  126.237268][ T6156]  ? xa_load+0x60/0x210
[  126.237289][ T6156]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  126.237313][ T6156]  ? xa_load+0x60/0x210
[  126.237334][ T6156]  ? xa_load+0x60/0x210
[  126.237368][ T6156]  ? readahead_folio+0x2da/0x430
[  126.237394][ T6156]  f2fs_mpage_readpages+0x1d30/0x2e40
[  126.237421][ T6156]  ? css_rstat_updated+0x239/0x520
[  126.237444][ T6156]  ? __lock_acquire+0x6b6/0x2cf0
[  126.237468][ T6156]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  126.237490][ T6156]  ? lruvec_stat_mod_folio+0x6f/0x2e0
[  126.237527][ T6156]  ? __folio_batch_add_and_move+0x192/0xc40
[  126.237566][ T6156]  ? f2fs_readahead+0x167/0x310
[  126.237589][ T6156]  read_pages+0x17a/0x580
[  126.237612][ T6156]  ? __pfx_read_pages+0x10/0x10
[  126.237654][ T6156]  ? filemap_add_folio+0x35f/0x540
[  126.237686][ T6156]  page_cache_ra_unbounded+0x750/0x990
[  126.237723][ T6156]  f2fs_readdir+0x49b/0xa40
[  126.237768][ T6156]  ? __pfx_f2fs_readdir+0x10/0x10
[  126.237801][ T6156]  ? handle_mm_fault+0xdb/0x32b0
[  126.237832][ T6156]  ? iterate_dir+0x292/0x570
[  126.237849][ T6156]  ? down_read_killable+0x1bc/0x350
[  126.237870][ T6156]  iterate_dir+0x399/0x570
[  126.237893][ T6156]  __se_sys_getdents64+0xe4/0x260
[  126.237914][ T6156]  ? __pfx___se_sys_getdents64+0x10/0x10
[  126.237931][ T6156]  ? __pfx_filldir64+0x10/0x10
[  126.237957][ T6156]  ? do_syscall_64+0xbe/0xf80
[  126.237983][ T6156]  do_syscall_64+0xfa/0xf80
[  126.238006][ T6156]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.238022][ T6156]  ? clear_bhb_loop+0x60/0xb0
[  126.238042][ T6156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.238058][ T6156] RIP: 0033:0x7ffae2dc20b3
[  126.238075][ T6156] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  126.238089][ T6156] RSP: 002b:00007ffdea2cce58 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  126.238107][ T6156] RAX: ffffffffffffffda RBX: 00005555905a4600 RCX: 00007ffae2dc20b3
[  126.238118][ T6156] RDX: 0000000000008000 RSI: 00005555905a4600 RDI: 0000000000000005
[  126.238129][ T6156] RBP: 00005555905a45d4 R08: 0000000000000000 R09: 0000000000000000
[  126.238139][ T6156] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[  126.238150][ T6156] R13: 0000000000000010 R14: 00005555905a45d0 R15: 00007ffdea2cf110
[  126.238180][ T6156]  </TASK>
[  126.238300][ T6156] syz-executor: attempt to access beyond end of device
[  126.238300][ T6156] loop8: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  126.241960][ T5908] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  126.549952][ T5952] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  126.877279][ T5952] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  126.885295][ T5952] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  126.892764][ T5952] Bluetooth: hci1: command tx timeout
[  126.950150][ T5952] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  126.961290][ T5952] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  127.052206][ T6438] chnl_net:caif_netlink_parms(): no params data found
[  127.075797][ T6433] chnl_net:caif_netlink_parms(): no params data found
[  127.139488][ T6156] syz-executor: attempt to access beyond end of device
[  127.139488][ T6156] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  127.188703][ T6156] CPU: 1 UID: 0 PID: 6156 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  127.188727][ T6156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  127.188737][ T6156] Call Trace:
[  127.188744][ T6156]  <TASK>
[  127.188751][ T6156]  dump_stack_lvl+0x189/0x250
[  127.188781][ T6156]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.188802][ T6156]  ? __pfx_queue_work_on+0x10/0x10
[  127.188820][ T6156]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  127.188842][ T6156]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  127.188876][ T6156]  f2fs_handle_critical_error+0x37c/0x540
[  127.188906][ T6156]  f2fs_write_end_io+0x886/0xb60
[  127.188949][ T6156]  __submit_merged_bio+0x256/0x660
[  127.188983][ T6156]  __submit_merged_write_cond+0x269/0x530
[  127.189017][ T6156]  f2fs_write_data_pages+0x2756/0x3290
[  127.189081][ T6156]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  127.189101][ T6156]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  127.189176][ T6156]  ? __page_cache_release+0x8a6/0xbb0
[  127.189201][ T6156]  ? folio_unqueue_deferred_split+0x93/0x230
[  127.189227][ T6156]  ? folios_put_refs+0x584/0x670
[  127.189264][ T6156]  ? __lock_acquire+0x6b6/0x2cf0
[  127.189294][ T6156]  ? __lock_acquire+0x6b6/0x2cf0
[  127.189332][ T6156]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  127.189356][ T6156]  do_writepages+0x32e/0x550
[  127.189394][ T6156]  ? do_raw_spin_unlock+0x122/0x240
[  127.189424][ T6156]  filemap_fdatawrite+0x199/0x240
[  127.189450][ T6156]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  127.189532][ T6156]  ? do_raw_spin_unlock+0x122/0x240
[  127.189561][ T6156]  f2fs_sync_dirty_inodes+0x30f/0x810
[  127.189605][ T6156]  f2fs_write_checkpoint+0x935/0x2430
[  127.189628][ T6156]  ? stack_depot_save_flags+0x40/0x850
[  127.189691][ T6156]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  127.189767][ T6156]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  127.189790][ T6156]  ? kfree+0x1c0/0x660
[  127.189820][ T6156]  kill_f2fs_super+0x2d2/0x6c0
[  127.189853][ T6156]  ? __pfx_kill_f2fs_super+0x10/0x10
[  127.189899][ T6156]  ? shrinker_free+0x2ce/0x3e0
[  127.189924][ T6156]  deactivate_locked_super+0xbc/0x130
[  127.189954][ T6156]  cleanup_mnt+0x425/0x4c0
[  127.189972][ T6156]  ? lockdep_hardirqs_on+0x98/0x140
[  127.189999][ T6156]  task_work_run+0x1d4/0x260
[  127.190028][ T6156]  ? __pfx_task_work_run+0x10/0x10
[  127.190053][ T6156]  ? kmem_cache_free+0x197/0x620
[  127.190070][ T6156]  ? do_exit+0x8b8/0x25b0
[  127.190099][ T6156]  do_exit+0x8bd/0x25b0
[  127.190138][ T6156]  ? __pfx_do_exit+0x10/0x10
[  127.190171][ T6156]  ? _raw_spin_unlock_irq+0x23/0x50
[  127.190191][ T6156]  ? lockdep_hardirqs_on+0x98/0x140
[  127.190218][ T6156]  do_group_exit+0x21c/0x2d0
[  127.190248][ T6156]  __x64_sys_exit_group+0x3f/0x40
[  127.190270][ T6156]  x64_sys_call+0x2210/0x2210
[  127.190292][ T6156]  do_syscall_64+0xfa/0xf80
[  127.190316][ T6156]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.190333][ T6156]  ? clear_bhb_loop+0x60/0xb0
[  127.190356][ T6156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.190373][ T6156] RIP: 0033:0x7ffae2d8f749
[  127.190390][ T6156] Code: Unable to access opcode bytes at 0x7ffae2d8f71f.
[  127.190399][ T6156] RSP: 002b:00007ffdea2ccd88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  127.190417][ T6156] RAX: ffffffffffffffda RBX: 00007ffae2e13def RCX: 00007ffae2d8f749
[  127.190430][ T6156] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  127.190439][ T6156] RBP: 0000000000000010 R08: 00007ffdea2cab26 R09: 00007ffdea2ce040
[  127.190450][ T6156] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdea2ce040
[  127.190460][ T6156] R13: 00007ffae2e13d7d R14: 00005555905894a8 R15: 00007ffdea2cf110
[  127.190496][ T6156]  </TASK>
[  127.190503][ T6156] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  127.738300][ T5952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  127.746516][ T5952] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  127.757095][ T5952] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  127.780907][ T5952] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  127.799949][ T5952] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  127.839111][    T9] Oops: general protection fault, probably for non-canonical address 0xdffffc000000004c: 0000 [#1] SMP KASAN PTI
[  127.851041][    T9] KASAN: null-ptr-deref in range [0x0000000000000260-0x0000000000000267]
[  127.859465][    T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted syzkaller #0 PREEMPT(full) 
[  127.868582][    T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  127.878639][    T9] Workqueue: events l2cap_info_timeout
[  127.884095][    T9] RIP: 0010:kasan_byte_accessible+0x12/0x30
[  127.890056][    T9] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 40 d6 48 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 07 3c 08 0f 92 c0 c3 cc cc cc cc cc 66 66 66 66 66 66 2e
[  127.898823][  T156] bridge_slave_1: left allmulticast mode
[  127.909731][    T9] RSP: 0018:ffffc900000e77a0 EFLAGS: 00010202
[  127.909749][    T9] RAX: dffffc0000000000 RBX: ffffffff8932bfb8 RCX: 521a52f927e51100
[  127.909761][    T9] RDX: 0000000000000000 RSI: ffffffff8932bfb8 RDI: 000000000000004c
[  127.917374][  T156] bridge_slave_1: left promiscuous mode
[  127.921410][    T9] RBP: ffffffff8a65e296 R08: 0000000000000001 R09: 0000000000000000
[  127.921423][    T9] R10: dffffc0000000000 R11: ffffffff8a65e250 R12: 0000000000000000
[  127.921433][    T9] R13: 0000000000000260 R14: 0000000000000260 R15: 0000000000000001
[  127.921442][    T9] FS:  0000000000000000(0000) GS:ffff888125c25000(0000) knlGS:0000000000000000
[  127.921455][    T9] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  127.932934][  T156] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.937367][    T9] CR2: 00007fd8bf7dae90 CR3: 0000000063036000 CR4: 00000000003526f0
[  127.997152][    T9] Call Trace:
[  128.000428][    T9]  <TASK>
[  128.003363][    T9]  __kasan_check_byte+0x12/0x40
[  128.008208][    T9]  lock_acquire+0x84/0x340
[  128.012610][    T9]  ? lockdep_hardirqs_on+0x98/0x140
[  128.017797][    T9]  ? __cancel_work+0x254/0x2c0
[  128.022550][    T9]  lock_sock_nested+0x48/0x100
[  128.027297][    T9]  ? l2cap_sock_ready_cb+0x46/0x170
[  128.032497][    T9]  l2cap_sock_ready_cb+0x46/0x170
[  128.037518][    T9]  l2cap_conn_start+0x700/0xcd0
[  128.042349][    T9]  ? __pfx_l2cap_conn_start+0x10/0x10
[  128.047699][    T9]  ? __pfx___mutex_lock+0x10/0x10
[  128.052715][    T9]  ? process_one_work+0x868/0x15a0
[  128.057837][    T9]  l2cap_info_timeout+0x68/0xa0
[  128.062692][    T9]  ? process_one_work+0x868/0x15a0
[  128.067781][    T9]  process_one_work+0x93a/0x15a0
[  128.072705][    T9]  ? __pfx_process_one_work+0x10/0x10
[  128.078054][    T9]  ? assign_work+0x3c7/0x5b0
[  128.082622][    T9]  worker_thread+0x9b0/0xee0
[  128.087206][    T9]  kthread+0x711/0x8a0
[  128.091272][    T9]  ? __pfx_worker_thread+0x10/0x10
[  128.096379][    T9]  ? __pfx_kthread+0x10/0x10
[  128.100967][    T9]  ? _raw_spin_unlock_irq+0x23/0x50
[  128.106181][    T9]  ? lockdep_hardirqs_on+0x98/0x140
[  128.111397][    T9]  ? __pfx_kthread+0x10/0x10
[  128.115995][    T9]  ret_from_fork+0x599/0xb30
[  128.120569][    T9]  ? __pfx_ret_from_fork+0x10/0x10
[  128.125667][    T9]  ? __switch_to_asm+0x39/0x70
[  128.130430][    T9]  ? __switch_to_asm+0x33/0x70
[  128.135202][    T9]  ? __pfx_kthread+0x10/0x10
[  128.139788][    T9]  ret_from_fork_asm+0x1a/0x30
[  128.144553][    T9]  </TASK>
[  128.147553][    T9] Modules linked in:
[  128.151760][ T5954] Bluetooth: hci0: command tx timeout
[  128.152269][    T9] ---[ end trace 0000000000000000 ]---
[  128.163548][    T9] RIP: 0010:kasan_byte_accessible+0x12/0x30
[  128.169776][    T9] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 40 d6 48 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 07 3c 08 0f 92 c0 c3 cc cc cc cc cc 66 66 66 66 66 66 2e
[  128.170150][  T156] bridge_slave_0: left allmulticast mode
[  128.189682][    T9] RSP: 0018:ffffc900000e77a0 EFLAGS: 00010202
[  128.189703][    T9] RAX: dffffc0000000000 RBX: ffffffff8932bfb8 RCX: 521a52f927e51100
[  128.196015][  T156] bridge_slave_0: left promiscuous mode
[  128.201422][    T9] RDX: 0000000000000000 RSI: ffffffff8932bfb8 RDI: 000000000000004c
[  128.210198][  T156] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.215842][    T9] RBP: ffffffff8a65e296 R08: 0000000000000001 R09: 0000000000000000
[  128.239946][    T9] R10: dffffc0000000000 R11: ffffffff8a65e250 R12: 0000000000000000
[  128.247966][    T9] R13: 0000000000000260 R14: 0000000000000260 R15: 0000000000000001
[  128.255998][    T9] FS:  0000000000000000(0000) GS:ffff888125c25000(0000) knlGS:0000000000000000
[  128.265280][    T9] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  128.272274][    T9] CR2: 00007fd8bf7dae90 CR3: 000000007caaa000 CR4: 00000000003526f0
[  128.283002][    T9] Kernel panic - not syncing: Fatal exception
[  128.289448][    T9] Kernel Offset: disabled
[  128.293777][    T9] Rebooting in 86400 seconds..