[ 92.348666][ T10] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.255' (ED25519) to the list of known hosts.
2026/04/25 23:37:53 parsed 1 programs
[ 103.778281][ T5827] cgroup: Unknown subsys name 'net'
[ 104.030435][ T5827] cgroup: Unknown subsys name 'cpuset'
[ 104.074094][ T5827] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 106.116963][ T5827] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 110.220104][ T5842] chnl_net:caif_netlink_parms(): no params data found
[ 110.389144][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.390019][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state
[ 110.390331][ T5842] bridge_slave_0: entered allmulticast mode
[ 110.403693][ T5842] bridge_slave_0: entered promiscuous mode
[ 110.426357][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.426691][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state
[ 110.426906][ T5842] bridge_slave_1: entered allmulticast mode
[ 110.430976][ T5842] bridge_slave_1: entered promiscuous mode
[ 110.504715][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 110.510775][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 110.566078][ T5842] team0: Port device team_slave_0 added
[ 110.570604][ T5842] team0: Port device team_slave_1 added
[ 110.622721][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 110.622735][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 110.622756][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 110.661193][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 110.661226][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 110.661276][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 110.774584][ T5842] hsr_slave_0: entered promiscuous mode
[ 110.776609][ T5842] hsr_slave_1: entered promiscuous mode
[ 111.095090][ T5842] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 111.137828][ T5842] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 111.142205][ T5842] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 111.166679][ T5842] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 111.334727][ T5842] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 111.357922][ T5842] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 111.358985][ T5842] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 111.387051][ T5842] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 111.641326][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0
[ 111.700895][ T5842] 8021q: adding VLAN 0 to HW filter on device team0
[ 111.740478][ T44] bridge0: port 1(bridge_slave_0) entered blocking state
[ 111.740702][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 111.767544][ T44] bridge0: port 2(bridge_slave_1) entered blocking state
[ 111.767713][ T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 112.147065][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 112.261515][ T5842] veth0_vlan: entered promiscuous mode
[ 112.283226][ T5842] veth1_vlan: entered promiscuous mode
[ 112.362861][ T5842] veth0_macvtap: entered promiscuous mode
[ 112.379250][ T5842] veth1_macvtap: entered promiscuous mode
[ 112.430770][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 112.461800][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 112.534108][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.540794][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.542827][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.579978][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.458726][ T1237] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 114.232011][ T1237] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 114.652073][ T60] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 114.676514][ T60] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 114.677438][ T60] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 114.679137][ T60] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 114.680010][ T60] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 115.108687][ T1237] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.427032][ T1237] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 116.353961][ T1237] bridge_slave_1: left allmulticast mode
[ 116.354183][ T1237] bridge_slave_1: left promiscuous mode
[ 116.359570][ T1237] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.474993][ T1237] bridge_slave_0: left allmulticast mode
[ 116.475024][ T1237] bridge_slave_0: left promiscuous mode
[ 116.475325][ T1237] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.264337][ T1237] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 117.344323][ T1237] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 117.366144][ T1237] bond0 (unregistering): Released all slaves
[ 117.408575][ T5484] 8021q: adding VLAN 0 to HW filter on device eth1
[ 117.783680][ T1237] hsr_slave_0: left promiscuous mode
[ 117.823732][ T1237] hsr_slave_1: left promiscuous mode
[ 117.836041][ T1237] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 117.836141][ T1237] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 117.875884][ T1237] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 117.875916][ T1237] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 117.967698][ T1237] veth1_macvtap: left promiscuous mode
[ 117.967927][ T1237] veth0_macvtap: left promiscuous mode
[ 117.968279][ T1237] veth1_vlan: left promiscuous mode
[ 117.969320][ T1237] veth0_vlan: left promiscuous mode
[ 118.789629][ T1237] team0 (unregistering): Port device team_slave_1 removed
[ 118.844562][ T1237] team0 (unregistering): Port device team_slave_0 removed
[ 119.099295][ T5484] 8021q: adding VLAN 0 to HW filter on device eth2
[ 120.136339][ T5484] 8021q: adding VLAN 0 to HW filter on device eth3
[ 121.397125][ T5484] 8021q: adding VLAN 0 to HW filter on device eth4
[ 121.902229][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.902253][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.009743][ T1416] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.009765][ T1416] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/25 23:38:20 executed programs: 0
[ 126.502020][ T5139] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 126.538010][ T5139] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 126.585925][ T5139] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 126.608761][ T5139] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 126.609817][ T5139] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 126.934640][ T6001] chnl_net:caif_netlink_parms(): no params data found
[ 127.214137][ T6001] bridge0: port 1(bridge_slave_0) entered blocking state
[ 127.214467][ T6001] bridge0: port 1(bridge_slave_0) entered disabled state
[ 127.214715][ T6001] bridge_slave_0: entered allmulticast mode
[ 127.217428][ T6001] bridge_slave_0: entered promiscuous mode
[ 127.266337][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 127.266724][ T6001] bridge0: port 2(bridge_slave_1) entered disabled state
[ 127.267129][ T6001] bridge_slave_1: entered allmulticast mode
[ 127.270248][ T6001] bridge_slave_1: entered promiscuous mode
[ 127.352480][ T6001] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 127.366252][ T6001] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 127.422308][ T6001] team0: Port device team_slave_0 added
[ 127.431942][ T6001] team0: Port device team_slave_1 added
[ 127.478255][ T6001] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 127.478268][ T6001] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 127.478288][ T6001] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 127.481096][ T6001] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 127.481108][ T6001] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 127.481128][ T6001] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 127.647841][ T6001] hsr_slave_0: entered promiscuous mode
[ 127.649700][ T6001] hsr_slave_1: entered promiscuous mode
[ 128.738256][ T60] Bluetooth: hci0: command tx timeout
[ 129.922976][ T6001] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 129.964339][ T6001] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 129.966172][ T6001] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 130.000982][ T6001] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 130.021511][ T6001] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 130.065805][ T6001] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 130.075209][ T6001] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 130.120980][ T6001] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 130.357139][ T6001] 8021q: adding VLAN 0 to HW filter on device bond0
[ 130.429806][ T6001] 8021q: adding VLAN 0 to HW filter on device team0
[ 130.459261][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 130.459514][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 130.510913][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 130.511157][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 130.813772][ T60] Bluetooth: hci0: command tx timeout
[ 131.034349][ T6001] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 131.186595][ T6001] veth0_vlan: entered promiscuous mode
[ 131.250195][ T6001] veth1_vlan: entered promiscuous mode
[ 131.342661][ T6001] veth0_macvtap: entered promiscuous mode
[ 131.369592][ T6001] veth1_macvtap: entered promiscuous mode
[ 131.427179][ T6001] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 131.477402][ T6001] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 131.516847][ T1237] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 131.517105][ T1237] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 131.517144][ T1237] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 131.517182][ T1237] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 132.095902][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 132.095926][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 132.238509][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 132.238531][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/25 23:38:26 executed programs: 2
[ 132.893830][ T60] Bluetooth: hci0: command tx timeout
[ 133.099804][ T6121] loop0: detected capacity change from 0 to 32768
[ 133.196384][ T6121] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 133.196412][ T6121] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 133.322894][ T1337] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.323053][ T1337] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.541090][ T6121] syz.0.17: attempt to access beyond end of device
[ 133.541090][ T6121] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 133.541232][ T6121] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 133.541269][ T6121] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 133.541302][ T6121] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6121 [syz.0.17] init_journal+0x16d9/0x2280
[ 133.541343][ T6121] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 133.541393][ T6121] CPU: 0 UID: 0 PID: 6121 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 133.541417][ T6121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 133.541438][ T6121] Call Trace:
[ 133.541450][ T6121]
[ 133.541464][ T6121] dump_stack_lvl+0xe8/0x150
[ 133.541492][ T6121] gfs2_withdraw+0xc3/0x1b0
[ 133.541515][ T6121] gfs2_jdesc_check+0x17d/0x2f0
[ 133.541548][ T6121] check_journal_clean+0x18d/0x360
[ 133.541568][ T6121] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 133.541607][ T6121] ? __pfx_check_journal_clean+0x10/0x10
[ 133.541627][ T6121] ? rt_spin_lock+0x1e0/0x400
[ 133.541656][ T6121] ? init_journal+0x16d9/0x2280
[ 133.541689][ T6121] ? rt_spin_unlock+0x160/0x200
[ 133.541719][ T6121] ? gfs2_jdesc_find+0xab/0xc0
[ 133.541756][ T6121] init_journal+0x16d9/0x2280
[ 133.541779][ T6121] ? rt_spin_lock+0x1e0/0x400
[ 133.541816][ T6121] ? init_inodes+0xdb/0x320
[ 133.541844][ T6121] ? __pfx_init_journal+0x10/0x10
[ 133.541867][ T6121] ? vsnprintf+0xdf1/0xee0
[ 133.541904][ T6121] ? snprintf+0xe8/0x140
[ 133.541931][ T6121] ? init_inodes+0xdb/0x320
[ 133.541954][ T6121] ? __pfx_snprintf+0x10/0x10
[ 133.541981][ T6121] ? gfs2_glock_nq_num+0x13d/0x170
[ 133.542011][ T6121] init_inodes+0xdb/0x320
[ 133.542035][ T6121] gfs2_fill_super+0x1a92/0x2220
[ 133.542073][ T6121] ? __pfx_gfs2_fill_super+0x10/0x10
[ 133.542093][ T6121] ? rt_spin_unlock+0x14f/0x200
[ 133.542122][ T6121] ? init_locking+0xb8/0x210
[ 133.542143][ T6121] ? sb_set_blocksize+0x11b/0x210
[ 133.542169][ T6121] ? setup_bdev_super+0x4c1/0x5b0
[ 133.542208][ T6121] get_tree_bdev_flags+0x431/0x4f0
[ 133.542242][ T6121] ? __pfx_gfs2_fill_super+0x10/0x10
[ 133.542264][ T6121] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 133.542297][ T6121] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 133.542342][ T6121] gfs2_get_tree+0x51/0x1e0
[ 133.542368][ T6121] vfs_get_tree+0x92/0x2a0
[ 133.542405][ T6121] do_new_mount+0x341/0xd30
[ 133.542431][ T6121] ? apparmor_capable+0x126/0x170
[ 133.542462][ T6121] ? __pfx_do_new_mount+0x10/0x10
[ 133.542490][ T6121] ? ns_capable+0x89/0xe0
[ 133.542519][ T6121] ? user_path_at+0xd4/0x160
[ 133.542555][ T6121] ? user_path_at+0xd4/0x160
[ 133.542589][ T6121] __se_sys_mount+0x31d/0x420
[ 133.542623][ T6121] ? __pfx___se_sys_mount+0x10/0x10
[ 133.542657][ T6121] ? __x64_sys_mount+0x20/0xc0
[ 133.542685][ T6121] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 133.542710][ T6121] do_syscall_64+0x15f/0xf80
[ 133.542750][ T6121] ? trace_irq_disable+0x3b/0x140
[ 133.542778][ T6121] ? clear_bhb_loop+0x40/0x90
[ 133.542806][ T6121] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 133.542853][ T6121] RIP: 0033:0x7f357b52e04a
[ 133.542889][ T6121] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 133.542908][ T6121] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 133.542941][ T6121] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 133.542957][ T6121] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 133.542972][ T6121] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 133.542987][ T6121] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 133.543000][ T6121] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 133.543035][ T6121]
[ 133.543189][ T6121] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 134.737889][ T6150] loop0: detected capacity change from 0 to 32768
[ 134.788076][ T6150] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 134.788098][ T6150] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 134.877639][ T6150] syz.0.18: attempt to access beyond end of device
[ 134.877639][ T6150] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 134.877740][ T6150] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 134.877772][ T6150] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 134.877804][ T6150] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6150 [syz.0.18] init_journal+0x16d9/0x2280
[ 134.877845][ T6150] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 134.877877][ T6150] CPU: 1 UID: 0 PID: 6150 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 134.877901][ T6150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 134.877914][ T6150] Call Trace:
[ 134.877923][ T6150]
[ 134.877932][ T6150] dump_stack_lvl+0xe8/0x150
[ 134.877961][ T6150] gfs2_withdraw+0xc3/0x1b0
[ 134.877986][ T6150] gfs2_jdesc_check+0x17d/0x2f0
[ 134.878018][ T6150] check_journal_clean+0x18d/0x360
[ 134.878039][ T6150] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 134.878076][ T6150] ? __pfx_check_journal_clean+0x10/0x10
[ 134.878096][ T6150] ? rt_spin_lock+0x1e0/0x400
[ 134.878126][ T6150] ? init_journal+0x16d9/0x2280
[ 134.878159][ T6150] ? rt_spin_unlock+0x160/0x200
[ 134.878189][ T6150] ? gfs2_jdesc_find+0xab/0xc0
[ 134.878217][ T6150] init_journal+0x16d9/0x2280
[ 134.878240][ T6150] ? rt_spin_lock+0x1e0/0x400
[ 134.878276][ T6150] ? init_inodes+0xdb/0x320
[ 134.878303][ T6150] ? __pfx_init_journal+0x10/0x10
[ 134.878326][ T6150] ? vsnprintf+0xdf1/0xee0
[ 134.878363][ T6150] ? snprintf+0xe8/0x140
[ 134.878391][ T6150] ? init_inodes+0xdb/0x320
[ 134.878414][ T6150] ? __pfx_snprintf+0x10/0x10
[ 134.878441][ T6150] ? gfs2_glock_nq_num+0x13d/0x170
[ 134.878472][ T6150] init_inodes+0xdb/0x320
[ 134.878498][ T6150] gfs2_fill_super+0x1a92/0x2220
[ 134.878546][ T6150] ? __pfx_gfs2_fill_super+0x10/0x10
[ 134.878569][ T6150] ? rt_spin_unlock+0x14f/0x200
[ 134.878599][ T6150] ? init_locking+0xb8/0x210
[ 134.878619][ T6150] ? sb_set_blocksize+0x11b/0x210
[ 134.878644][ T6150] ? setup_bdev_super+0x4c1/0x5b0
[ 134.878684][ T6150] get_tree_bdev_flags+0x431/0x4f0
[ 134.878721][ T6150] ? __pfx_gfs2_fill_super+0x10/0x10
[ 134.878743][ T6150] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 134.878776][ T6150] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 134.878822][ T6150] gfs2_get_tree+0x51/0x1e0
[ 134.878849][ T6150] vfs_get_tree+0x92/0x2a0
[ 134.878888][ T6150] do_new_mount+0x341/0xd30
[ 134.878912][ T6150] ? apparmor_capable+0x126/0x170
[ 134.878944][ T6150] ? __pfx_do_new_mount+0x10/0x10
[ 134.878972][ T6150] ? ns_capable+0x89/0xe0
[ 134.879000][ T6150] ? user_path_at+0xd4/0x160
[ 134.879035][ T6150] ? user_path_at+0xd4/0x160
[ 134.879070][ T6150] __se_sys_mount+0x31d/0x420
[ 134.879105][ T6150] ? __pfx___se_sys_mount+0x10/0x10
[ 134.879140][ T6150] ? __x64_sys_mount+0x20/0xc0
[ 134.879167][ T6150] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 134.879193][ T6150] do_syscall_64+0x15f/0xf80
[ 134.879226][ T6150] ? trace_irq_disable+0x3b/0x140
[ 134.879253][ T6150] ? clear_bhb_loop+0x40/0x90
[ 134.879281][ T6150] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 134.879304][ T6150] RIP: 0033:0x7f357b52e04a
[ 134.879326][ T6150] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 134.879345][ T6150] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 134.879369][ T6150] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 134.879385][ T6150] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 134.879401][ T6150] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 134.879416][ T6150] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 134.879431][ T6150] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 134.879466][ T6150]
[ 134.879475][ T6150] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 134.974128][ T60] Bluetooth: hci0: command tx timeout
[ 135.766241][ T6154] loop0: detected capacity change from 0 to 32768
[ 135.802612][ T6154] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 135.802630][ T6154] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 135.861341][ T6154] syz.0.19: attempt to access beyond end of device
[ 135.861341][ T6154] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 135.874071][ T6154] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 135.874114][ T6154] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 135.874148][ T6154] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6154 [syz.0.19] init_journal+0x16d9/0x2280
[ 135.874186][ T6154] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 135.874236][ T6154] CPU: 0 UID: 0 PID: 6154 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 135.874317][ T6154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 135.874375][ T6154] Call Trace:
[ 135.874404][ T6154]
[ 135.874436][ T6154] dump_stack_lvl+0xe8/0x150
[ 135.874517][ T6154] gfs2_withdraw+0xc3/0x1b0
[ 135.874604][ T6154] gfs2_jdesc_check+0x17d/0x2f0
[ 135.874688][ T6154] check_journal_clean+0x18d/0x360
[ 135.874748][ T6154] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 135.874850][ T6154] ? __pfx_check_journal_clean+0x10/0x10
[ 135.874908][ T6154] ? rt_spin_lock+0x1e0/0x400
[ 135.874982][ T6154] ? init_journal+0x16d9/0x2280
[ 135.875050][ T6154] ? rt_spin_unlock+0x160/0x200
[ 135.875139][ T6154] ? gfs2_jdesc_find+0xab/0xc0
[ 135.875211][ T6154] init_journal+0x16d9/0x2280
[ 135.875277][ T6154] ? rt_spin_lock+0x1e0/0x400
[ 135.875364][ T6154] ? init_inodes+0xdb/0x320
[ 135.875444][ T6154] ? __pfx_init_journal+0x10/0x10
[ 135.875504][ T6154] ? vsnprintf+0xdf1/0xee0
[ 135.875618][ T6154] ? snprintf+0xe8/0x140
[ 135.875704][ T6154] ? init_inodes+0xdb/0x320
[ 135.875756][ T6154] ? __pfx_snprintf+0x10/0x10
[ 135.875820][ T6154] ? gfs2_glock_nq_num+0x13d/0x170
[ 135.875909][ T6154] init_inodes+0xdb/0x320
[ 135.875978][ T6154] gfs2_fill_super+0x1a92/0x2220
[ 135.876090][ T6154] ? __pfx_gfs2_fill_super+0x10/0x10
[ 135.876150][ T6154] ? rt_spin_unlock+0x14f/0x200
[ 135.876232][ T6154] ? init_locking+0xb8/0x210
[ 135.876283][ T6154] ? sb_set_blocksize+0x11b/0x210
[ 135.876353][ T6154] ? setup_bdev_super+0x4c1/0x5b0
[ 135.876457][ T6154] get_tree_bdev_flags+0x431/0x4f0
[ 135.876561][ T6154] ? __pfx_gfs2_fill_super+0x10/0x10
[ 135.876627][ T6154] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 135.876717][ T6154] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 135.876833][ T6154] gfs2_get_tree+0x51/0x1e0
[ 135.876911][ T6154] vfs_get_tree+0x92/0x2a0
[ 135.877006][ T6154] do_new_mount+0x341/0xd30
[ 135.877084][ T6154] ? apparmor_capable+0x126/0x170
[ 135.877194][ T6154] ? __pfx_do_new_mount+0x10/0x10
[ 135.877273][ T6154] ? ns_capable+0x89/0xe0
[ 135.877358][ T6154] ? user_path_at+0xd4/0x160
[ 135.877451][ T6154] ? user_path_at+0xd4/0x160
[ 135.877553][ T6154] __se_sys_mount+0x31d/0x420
[ 135.877653][ T6154] ? __pfx___se_sys_mount+0x10/0x10
[ 135.877749][ T6154] ? __x64_sys_mount+0x20/0xc0
[ 135.877830][ T6154] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 135.877897][ T6154] do_syscall_64+0x15f/0xf80
[ 135.877986][ T6154] ? trace_irq_disable+0x3b/0x140
[ 135.878064][ T6154] ? clear_bhb_loop+0x40/0x90
[ 135.878136][ T6154] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 135.878196][ T6154] RIP: 0033:0x7f357b52e04a
[ 135.878254][ T6154] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 135.878302][ T6154] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 135.878382][ T6154] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 135.878429][ T6154] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 135.878474][ T6154] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 135.878543][ T6154] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 135.878594][ T6154] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 135.878708][ T6154]
[ 135.878731][ T6154] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 136.796303][ T6158] loop0: detected capacity change from 0 to 32768
[ 136.825324][ T6158] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 136.825345][ T6158] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 136.885870][ T6158] syz.0.20: attempt to access beyond end of device
[ 136.885870][ T6158] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 136.885969][ T6158] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 136.885998][ T6158] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 136.886025][ T6158] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6158 [syz.0.20] init_journal+0x16d9/0x2280
[ 136.886060][ T6158] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 136.886088][ T6158] CPU: 1 UID: 0 PID: 6158 Comm: syz.0.20 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 136.886109][ T6158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 136.886121][ T6158] Call Trace:
[ 136.886128][ T6158]
[ 136.886136][ T6158] dump_stack_lvl+0xe8/0x150
[ 136.886160][ T6158] gfs2_withdraw+0xc3/0x1b0
[ 136.886180][ T6158] gfs2_jdesc_check+0x17d/0x2f0
[ 136.886218][ T6158] check_journal_clean+0x18d/0x360
[ 136.886234][ T6158] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 136.886264][ T6158] ? __pfx_check_journal_clean+0x10/0x10
[ 136.886280][ T6158] ? rt_spin_lock+0x1e0/0x400
[ 136.886303][ T6158] ? init_journal+0x16d9/0x2280
[ 136.886334][ T6158] ? rt_spin_unlock+0x160/0x200
[ 136.886359][ T6158] ? gfs2_jdesc_find+0xab/0xc0
[ 136.886381][ T6158] init_journal+0x16d9/0x2280
[ 136.886400][ T6158] ? rt_spin_lock+0x1e0/0x400
[ 136.886429][ T6158] ? init_inodes+0xdb/0x320
[ 136.886451][ T6158] ? __pfx_init_journal+0x10/0x10
[ 136.886470][ T6158] ? vsnprintf+0xdf1/0xee0
[ 136.886505][ T6158] ? snprintf+0xe8/0x140
[ 136.886532][ T6158] ? init_inodes+0xdb/0x320
[ 136.886552][ T6158] ? __pfx_snprintf+0x10/0x10
[ 136.886578][ T6158] ? gfs2_glock_nq_num+0x13d/0x170
[ 136.886604][ T6158] init_inodes+0xdb/0x320
[ 136.886624][ T6158] gfs2_fill_super+0x1a92/0x2220
[ 136.886655][ T6158] ? __pfx_gfs2_fill_super+0x10/0x10
[ 136.886672][ T6158] ? rt_spin_unlock+0x14f/0x200
[ 136.886696][ T6158] ? init_locking+0xb8/0x210
[ 136.886713][ T6158] ? sb_set_blocksize+0x11b/0x210
[ 136.886735][ T6158] ? setup_bdev_super+0x4c1/0x5b0
[ 136.886767][ T6158] get_tree_bdev_flags+0x431/0x4f0
[ 136.886796][ T6158] ? __pfx_gfs2_fill_super+0x10/0x10
[ 136.886813][ T6158] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 136.886840][ T6158] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 136.886876][ T6158] gfs2_get_tree+0x51/0x1e0
[ 136.886897][ T6158] vfs_get_tree+0x92/0x2a0
[ 136.886926][ T6158] do_new_mount+0x341/0xd30
[ 136.886946][ T6158] ? apparmor_capable+0x126/0x170
[ 136.886971][ T6158] ? __pfx_do_new_mount+0x10/0x10
[ 136.886993][ T6158] ? ns_capable+0x89/0xe0
[ 136.887016][ T6158] ? user_path_at+0xd4/0x160
[ 136.887044][ T6158] ? user_path_at+0xd4/0x160
[ 136.887071][ T6158] __se_sys_mount+0x31d/0x420
[ 136.887100][ T6158] ? __pfx___se_sys_mount+0x10/0x10
[ 136.887128][ T6158] ? __x64_sys_mount+0x20/0xc0
[ 136.887149][ T6158] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 136.887169][ T6158] do_syscall_64+0x15f/0xf80
[ 136.887208][ T6158] ? trace_irq_disable+0x3b/0x140
[ 136.887232][ T6158] ? clear_bhb_loop+0x40/0x90
[ 136.887255][ T6158] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 136.887274][ T6158] RIP: 0033:0x7f357b52e04a
[ 136.887292][ T6158] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 136.887307][ T6158] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 136.887326][ T6158] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 136.887339][ T6158] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 136.887352][ T6158] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 136.887363][ T6158] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 136.887374][ T6158] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 136.887401][ T6158]
[ 136.887437][ T6158] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 137.812536][ T6161] loop0: detected capacity change from 0 to 32768
[ 137.830346][ T6161] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 137.830378][ T6161] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 137.889870][ T6161] syz.0.21: attempt to access beyond end of device
[ 137.889870][ T6161] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 137.889969][ T6161] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 137.890000][ T6161] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 137.890040][ T6161] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6161 [syz.0.21] init_journal+0x16d9/0x2280
[ 137.890081][ T6161] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 137.890112][ T6161] CPU: 0 UID: 0 PID: 6161 Comm: syz.0.21 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 137.890137][ T6161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 137.890151][ T6161] Call Trace:
[ 137.890159][ T6161]
[ 137.890169][ T6161] dump_stack_lvl+0xe8/0x150
[ 137.890197][ T6161] gfs2_withdraw+0xc3/0x1b0
[ 137.890222][ T6161] gfs2_jdesc_check+0x17d/0x2f0
[ 137.890254][ T6161] check_journal_clean+0x18d/0x360
[ 137.890275][ T6161] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 137.890313][ T6161] ? __pfx_check_journal_clean+0x10/0x10
[ 137.890334][ T6161] ? rt_spin_lock+0x1e0/0x400
[ 137.890362][ T6161] ? init_journal+0x16d9/0x2280
[ 137.890396][ T6161] ? rt_spin_unlock+0x160/0x200
[ 137.890430][ T6161] ? gfs2_jdesc_find+0xab/0xc0
[ 137.890459][ T6161] init_journal+0x16d9/0x2280
[ 137.890482][ T6161] ? rt_spin_lock+0x1e0/0x400
[ 137.890520][ T6161] ? init_inodes+0xdb/0x320
[ 137.890547][ T6161] ? __pfx_init_journal+0x10/0x10
[ 137.890569][ T6161] ? vsnprintf+0xdf1/0xee0
[ 137.890606][ T6161] ? snprintf+0xe8/0x140
[ 137.890634][ T6161] ? init_inodes+0xdb/0x320
[ 137.890655][ T6161] ? __pfx_snprintf+0x10/0x10
[ 137.890683][ T6161] ? gfs2_glock_nq_num+0x13d/0x170
[ 137.890713][ T6161] init_inodes+0xdb/0x320
[ 137.890738][ T6161] gfs2_fill_super+0x1a92/0x2220
[ 137.890777][ T6161] ? __pfx_gfs2_fill_super+0x10/0x10
[ 137.890797][ T6161] ? rt_spin_unlock+0x14f/0x200
[ 137.890826][ T6161] ? init_locking+0xb8/0x210
[ 137.890846][ T6161] ? sb_set_blocksize+0x11b/0x210
[ 137.890871][ T6161] ? setup_bdev_super+0x4c1/0x5b0
[ 137.890910][ T6161] get_tree_bdev_flags+0x431/0x4f0
[ 137.890947][ T6161] ? __pfx_gfs2_fill_super+0x10/0x10
[ 137.890969][ T6161] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 137.891001][ T6161] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 137.891055][ T6161] gfs2_get_tree+0x51/0x1e0
[ 137.891082][ T6161] vfs_get_tree+0x92/0x2a0
[ 137.891119][ T6161] do_new_mount+0x341/0xd30
[ 137.891143][ T6161] ? apparmor_capable+0x126/0x170
[ 137.891174][ T6161] ? __pfx_do_new_mount+0x10/0x10
[ 137.891201][ T6161] ? ns_capable+0x89/0xe0
[ 137.891230][ T6161] ? user_path_at+0xd4/0x160
[ 137.891266][ T6161] ? user_path_at+0xd4/0x160
[ 137.891299][ T6161] __se_sys_mount+0x31d/0x420
[ 137.891335][ T6161] ? __pfx___se_sys_mount+0x10/0x10
[ 137.891370][ T6161] ? __x64_sys_mount+0x20/0xc0
[ 137.891398][ T6161] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.891423][ T6161] do_syscall_64+0x15f/0xf80
[ 137.891455][ T6161] ? trace_irq_disable+0x3b/0x140
[ 137.891482][ T6161] ? clear_bhb_loop+0x40/0x90
[ 137.891510][ T6161] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.891533][ T6161] RIP: 0033:0x7f357b52e04a
[ 137.891555][ T6161] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 137.891574][ T6161] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 137.891604][ T6161] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 137.891621][ T6161] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 137.891637][ T6161] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 137.891653][ T6161] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 137.891668][ T6161] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 137.891703][ T6161]
[ 137.891740][ T6161] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
2026/04/25 23:38:32 executed programs: 7
[ 138.804274][ T6164] loop0: detected capacity change from 0 to 32768
[ 138.822003][ T6164] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 138.822026][ T6164] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 138.910217][ T6164] syz.0.22: attempt to access beyond end of device
[ 138.910217][ T6164] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 138.910303][ T6164] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 138.910325][ T6164] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 138.910349][ T6164] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6164 [syz.0.22] init_journal+0x16d9/0x2280
[ 138.910378][ T6164] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 138.910402][ T6164] CPU: 1 UID: 0 PID: 6164 Comm: syz.0.22 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 138.910420][ T6164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 138.910430][ T6164] Call Trace:
[ 138.910436][ T6164]
[ 138.910442][ T6164] dump_stack_lvl+0xe8/0x150
[ 138.910463][ T6164] gfs2_withdraw+0xc3/0x1b0
[ 138.910480][ T6164] gfs2_jdesc_check+0x17d/0x2f0
[ 138.910503][ T6164] check_journal_clean+0x18d/0x360
[ 138.910517][ T6164] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 138.910545][ T6164] ? __pfx_check_journal_clean+0x10/0x10
[ 138.910559][ T6164] ? rt_spin_lock+0x1e0/0x400
[ 138.910579][ T6164] ? init_journal+0x16d9/0x2280
[ 138.910602][ T6164] ? rt_spin_unlock+0x160/0x200
[ 138.910623][ T6164] ? gfs2_jdesc_find+0xab/0xc0
[ 138.910642][ T6164] init_journal+0x16d9/0x2280
[ 138.910658][ T6164] ? rt_spin_lock+0x1e0/0x400
[ 138.910683][ T6164] ? init_inodes+0xdb/0x320
[ 138.910702][ T6164] ? __pfx_init_journal+0x10/0x10
[ 138.910717][ T6164] ? vsnprintf+0xdf1/0xee0
[ 138.910743][ T6164] ? snprintf+0xe8/0x140
[ 138.910762][ T6164] ? init_inodes+0xdb/0x320
[ 138.910777][ T6164] ? __pfx_snprintf+0x10/0x10
[ 138.910796][ T6164] ? gfs2_glock_nq_num+0x13d/0x170
[ 138.910817][ T6164] init_inodes+0xdb/0x320
[ 138.910834][ T6164] gfs2_fill_super+0x1a92/0x2220
[ 138.910861][ T6164] ? __pfx_gfs2_fill_super+0x10/0x10
[ 138.910876][ T6164] ? rt_spin_unlock+0x14f/0x200
[ 138.910896][ T6164] ? init_locking+0xb8/0x210
[ 138.910911][ T6164] ? sb_set_blocksize+0x11b/0x210
[ 138.910928][ T6164] ? setup_bdev_super+0x4c1/0x5b0
[ 138.910956][ T6164] get_tree_bdev_flags+0x431/0x4f0
[ 138.911003][ T6164] ? __pfx_gfs2_fill_super+0x10/0x10
[ 138.911025][ T6164] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 138.911057][ T6164] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 138.911103][ T6164] gfs2_get_tree+0x51/0x1e0
[ 138.911129][ T6164] vfs_get_tree+0x92/0x2a0
[ 138.911167][ T6164] do_new_mount+0x341/0xd30
[ 138.911185][ T6164] ? apparmor_capable+0x126/0x170
[ 138.911206][ T6164] ? __pfx_do_new_mount+0x10/0x10
[ 138.911225][ T6164] ? ns_capable+0x89/0xe0
[ 138.911244][ T6164] ? user_path_at+0xd4/0x160
[ 138.911275][ T6164] ? user_path_at+0xd4/0x160
[ 138.911298][ T6164] __se_sys_mount+0x31d/0x420
[ 138.911322][ T6164] ? __pfx___se_sys_mount+0x10/0x10
[ 138.911346][ T6164] ? __x64_sys_mount+0x20/0xc0
[ 138.911365][ T6164] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 138.911382][ T6164] do_syscall_64+0x15f/0xf80
[ 138.911406][ T6164] ? trace_irq_disable+0x3b/0x140
[ 138.911425][ T6164] ? clear_bhb_loop+0x40/0x90
[ 138.911445][ T6164] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 138.911461][ T6164] RIP: 0033:0x7f357b52e04a
[ 138.911476][ T6164] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 138.911489][ T6164] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 138.911506][ T6164] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 138.911518][ T6164] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 138.911529][ T6164] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 138.911539][ T6164] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 138.911550][ T6164] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 138.911573][ T6164]
[ 138.912059][ T6164] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 139.783907][ T6167] loop0: detected capacity change from 0 to 32768
[ 139.793195][ T6167] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 139.793216][ T6167] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 139.835579][ T6167] syz.0.23: attempt to access beyond end of device
[ 139.835579][ T6167] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 139.835693][ T6167] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 139.835725][ T6167] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 139.835758][ T6167] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6167 [syz.0.23] init_journal+0x16d9/0x2280
[ 139.835799][ T6167] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 139.835831][ T6167] CPU: 0 UID: 0 PID: 6167 Comm: syz.0.23 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 139.835856][ T6167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 139.835870][ T6167] Call Trace:
[ 139.835878][ T6167]
[ 139.835888][ T6167] dump_stack_lvl+0xe8/0x150
[ 139.835917][ T6167] gfs2_withdraw+0xc3/0x1b0
[ 139.835943][ T6167] gfs2_jdesc_check+0x17d/0x2f0
[ 139.835977][ T6167] check_journal_clean+0x18d/0x360
[ 139.835998][ T6167] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 139.836036][ T6167] ? __pfx_check_journal_clean+0x10/0x10
[ 139.836057][ T6167] ? rt_spin_lock+0x1e0/0x400
[ 139.836086][ T6167] ? init_journal+0x16d9/0x2280
[ 139.836119][ T6167] ? rt_spin_unlock+0x160/0x200
[ 139.836148][ T6167] ? gfs2_jdesc_find+0xab/0xc0
[ 139.836192][ T6167] init_journal+0x16d9/0x2280
[ 139.836215][ T6167] ? rt_spin_lock+0x1e0/0x400
[ 139.836252][ T6167] ? init_inodes+0xdb/0x320
[ 139.836279][ T6167] ? __pfx_init_journal+0x10/0x10
[ 139.836302][ T6167] ? vsnprintf+0xdf1/0xee0
[ 139.836338][ T6167] ? snprintf+0xe8/0x140
[ 139.836366][ T6167] ? init_inodes+0xdb/0x320
[ 139.836388][ T6167] ? __pfx_snprintf+0x10/0x10
[ 139.836415][ T6167] ? gfs2_glock_nq_num+0x13d/0x170
[ 139.836445][ T6167] init_inodes+0xdb/0x320
[ 139.836471][ T6167] gfs2_fill_super+0x1a92/0x2220
[ 139.836515][ T6167] ? __pfx_gfs2_fill_super+0x10/0x10
[ 139.836543][ T6167] ? rt_spin_unlock+0x14f/0x200
[ 139.836574][ T6167] ? init_locking+0xb8/0x210
[ 139.836599][ T6167] ? sb_set_blocksize+0x11b/0x210
[ 139.836626][ T6167] ? setup_bdev_super+0x4c1/0x5b0
[ 139.836670][ T6167] get_tree_bdev_flags+0x431/0x4f0
[ 139.836707][ T6167] ? __pfx_gfs2_fill_super+0x10/0x10
[ 139.836730][ T6167] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 139.836762][ T6167] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 139.836807][ T6167] gfs2_get_tree+0x51/0x1e0
[ 139.836835][ T6167] vfs_get_tree+0x92/0x2a0
[ 139.836873][ T6167] do_new_mount+0x341/0xd30
[ 139.836898][ T6167] ? apparmor_capable+0x126/0x170
[ 139.836929][ T6167] ? __pfx_do_new_mount+0x10/0x10
[ 139.836956][ T6167] ? ns_capable+0x89/0xe0
[ 139.836985][ T6167] ? user_path_at+0xd4/0x160
[ 139.837021][ T6167] ? user_path_at+0xd4/0x160
[ 139.837054][ T6167] __se_sys_mount+0x31d/0x420
[ 139.837088][ T6167] ? __pfx___se_sys_mount+0x10/0x10
[ 139.837124][ T6167] ? __x64_sys_mount+0x20/0xc0
[ 139.837151][ T6167] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 139.837185][ T6167] do_syscall_64+0x15f/0xf80
[ 139.837218][ T6167] ? trace_irq_disable+0x3b/0x140
[ 139.837247][ T6167] ? clear_bhb_loop+0x40/0x90
[ 139.837276][ T6167] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 139.837299][ T6167] RIP: 0033:0x7f357b52e04a
[ 139.837320][ T6167] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 139.837338][ T6167] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 139.837362][ T6167] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 139.837379][ T6167] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 139.837395][ T6167] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 139.837411][ T6167] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 139.837426][ T6167] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 139.837461][ T6167]
[ 139.837499][ T6167] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 140.745024][ T6170] loop0: detected capacity change from 0 to 32768
[ 140.782330][ T6170] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 140.782353][ T6170] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 140.846380][ T6170] syz.0.24: attempt to access beyond end of device
[ 140.846380][ T6170] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 140.846477][ T6170] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 140.846509][ T6170] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 140.846551][ T6170] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6170 [syz.0.24] init_journal+0x16d9/0x2280
[ 140.846982][ T6170] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 140.847017][ T6170] CPU: 1 UID: 0 PID: 6170 Comm: syz.0.24 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 140.847043][ T6170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 140.847057][ T6170] Call Trace:
[ 140.847065][ T6170]
[ 140.847085][ T6170] dump_stack_lvl+0xe8/0x150
[ 140.847116][ T6170] gfs2_withdraw+0xc3/0x1b0
[ 140.847141][ T6170] gfs2_jdesc_check+0x17d/0x2f0
[ 140.847173][ T6170] check_journal_clean+0x18d/0x360
[ 140.847195][ T6170] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 140.847233][ T6170] ? __pfx_check_journal_clean+0x10/0x10
[ 140.847253][ T6170] ? rt_spin_lock+0x1e0/0x400
[ 140.847287][ T6170] ? init_journal+0x16d9/0x2280
[ 140.847322][ T6170] ? rt_spin_unlock+0x160/0x200
[ 140.847352][ T6170] ? gfs2_jdesc_find+0xab/0xc0
[ 140.847381][ T6170] init_journal+0x16d9/0x2280
[ 140.847405][ T6170] ? rt_spin_lock+0x1e0/0x400
[ 140.847441][ T6170] ? init_inodes+0xdb/0x320
[ 140.847468][ T6170] ? __pfx_init_journal+0x10/0x10
[ 140.847492][ T6170] ? vsnprintf+0xdf1/0xee0
[ 140.847528][ T6170] ? snprintf+0xe8/0x140
[ 140.847556][ T6170] ? init_inodes+0xdb/0x320
[ 140.847580][ T6170] ? __pfx_snprintf+0x10/0x10
[ 140.847607][ T6170] ? gfs2_glock_nq_num+0x13d/0x170
[ 140.847638][ T6170] init_inodes+0xdb/0x320
[ 140.847664][ T6170] gfs2_fill_super+0x1a92/0x2220
[ 140.847704][ T6170] ? __pfx_gfs2_fill_super+0x10/0x10
[ 140.847726][ T6170] ? rt_spin_unlock+0x14f/0x200
[ 140.847756][ T6170] ? init_locking+0xb8/0x210
[ 140.847777][ T6170] ? sb_set_blocksize+0x11b/0x210
[ 140.847803][ T6170] ? setup_bdev_super+0x4c1/0x5b0
[ 140.847842][ T6170] get_tree_bdev_flags+0x431/0x4f0
[ 140.847879][ T6170] ? __pfx_gfs2_fill_super+0x10/0x10
[ 140.847901][ T6170] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 140.847935][ T6170] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 140.847981][ T6170] gfs2_get_tree+0x51/0x1e0
[ 140.848008][ T6170] vfs_get_tree+0x92/0x2a0
[ 140.848046][ T6170] do_new_mount+0x341/0xd30
[ 140.848078][ T6170] ? apparmor_capable+0x126/0x170
[ 140.848109][ T6170] ? __pfx_do_new_mount+0x10/0x10
[ 140.848137][ T6170] ? ns_capable+0x89/0xe0
[ 140.848167][ T6170] ? user_path_at+0xd4/0x160
[ 140.848202][ T6170] ? user_path_at+0xd4/0x160
[ 140.848236][ T6170] __se_sys_mount+0x31d/0x420
[ 140.848271][ T6170] ? __pfx___se_sys_mount+0x10/0x10
[ 140.848306][ T6170] ? __x64_sys_mount+0x20/0xc0
[ 140.848334][ T6170] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.848360][ T6170] do_syscall_64+0x15f/0xf80
[ 140.848393][ T6170] ? trace_irq_disable+0x3b/0x140
[ 140.848420][ T6170] ? clear_bhb_loop+0x40/0x90
[ 140.848448][ T6170] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.848471][ T6170] RIP: 0033:0x7f357b52e04a
[ 140.848492][ T6170] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 140.848510][ T6170] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 140.848532][ T6170] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 140.848548][ T6170] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 140.848562][ T6170] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 140.848577][ T6170] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 140.848591][ T6170] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 140.848626][ T6170]
[ 140.848740][ T6170] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 141.688743][ T6173] loop0: detected capacity change from 0 to 32768
[ 141.725439][ T6173] gfs2: fsid=norecovery: Trying to join cluster "lock_nolock", "norecovery"
[ 141.725462][ T6173] gfs2: fsid=norecovery: Now mounting FS (format 0)...
[ 141.759586][ T6173] syz.0.25: attempt to access beyond end of device
[ 141.759586][ T6173] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[ 141.759681][ T6173] gfs2: fsid=norecovery.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[ 141.759713][ T6173] gfs2: fsid=norecovery.s: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 141.759746][ T6173] gfs2: fsid=norecovery.s: H: s:SH f:eEcH e:0 p:6173 [syz.0.25] init_journal+0x16d9/0x2280
[ 141.759787][ T6173] gfs2: fsid=norecovery.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 141.759821][ T6173] CPU: 0 UID: 0 PID: 6173 Comm: syz.0.25 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 141.759845][ T6173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 141.759859][ T6173] Call Trace:
[ 141.759867][ T6173]
[ 141.759876][ T6173] dump_stack_lvl+0xe8/0x150
[ 141.759906][ T6173] gfs2_withdraw+0xc3/0x1b0
[ 141.759931][ T6173] gfs2_jdesc_check+0x17d/0x2f0
[ 141.759964][ T6173] check_journal_clean+0x18d/0x360
[ 141.759992][ T6173] ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 141.760030][ T6173] ? __pfx_check_journal_clean+0x10/0x10
[ 141.760049][ T6173] ? rt_spin_lock+0x1e0/0x400
[ 141.760078][ T6173] ? init_journal+0x16d9/0x2280
[ 141.760117][ T6173] ? rt_spin_unlock+0x160/0x200
[ 141.760145][ T6173] ? gfs2_jdesc_find+0xab/0xc0
[ 141.760178][ T6173] init_journal+0x16d9/0x2280
[ 141.760200][ T6173] ? rt_spin_lock+0x1e0/0x400
[ 141.760236][ T6173] ? init_inodes+0xdb/0x320
[ 141.760264][ T6173] ? __pfx_init_journal+0x10/0x10
[ 141.760287][ T6173] ? vsnprintf+0xdf1/0xee0
[ 141.760323][ T6173] ? snprintf+0xe8/0x140
[ 141.760351][ T6173] ? init_inodes+0xdb/0x320
[ 141.760373][ T6173] ? __pfx_snprintf+0x10/0x10
[ 141.760400][ T6173] ? gfs2_glock_nq_num+0x13d/0x170
[ 141.760429][ T6173] init_inodes+0xdb/0x320
[ 141.760455][ T6173] gfs2_fill_super+0x1a92/0x2220
[ 141.760495][ T6173] ? __pfx_gfs2_fill_super+0x10/0x10
[ 141.760517][ T6173] ? rt_spin_unlock+0x14f/0x200
[ 141.760547][ T6173] ? init_locking+0xb8/0x210
[ 141.760568][ T6173] ? sb_set_blocksize+0x11b/0x210
[ 141.760594][ T6173] ? setup_bdev_super+0x4c1/0x5b0
[ 141.760634][ T6173] get_tree_bdev_flags+0x431/0x4f0
[ 141.760671][ T6173] ? __pfx_gfs2_fill_super+0x10/0x10
[ 141.760694][ T6173] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 141.760727][ T6173] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 141.760774][ T6173] gfs2_get_tree+0x51/0x1e0
[ 141.760801][ T6173] vfs_get_tree+0x92/0x2a0
[ 141.760839][ T6173] do_new_mount+0x341/0xd30
[ 141.760865][ T6173] ? apparmor_capable+0x126/0x170
[ 141.760896][ T6173] ? __pfx_do_new_mount+0x10/0x10
[ 141.760923][ T6173] ? ns_capable+0x89/0xe0
[ 141.760953][ T6173] ? user_path_at+0xd4/0x160
[ 141.760997][ T6173] ? user_path_at+0xd4/0x160
[ 141.761031][ T6173] __se_sys_mount+0x31d/0x420
[ 141.761066][ T6173] ? __pfx___se_sys_mount+0x10/0x10
[ 141.761102][ T6173] ? __x64_sys_mount+0x20/0xc0
[ 141.761130][ T6173] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 141.761155][ T6173] do_syscall_64+0x15f/0xf80
[ 141.761187][ T6173] ? trace_irq_disable+0x3b/0x140
[ 141.761214][ T6173] ? clear_bhb_loop+0x40/0x90
[ 141.761244][ T6173] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 141.761267][ T6173] RIP: 0033:0x7f357b52e04a
[ 141.761287][ T6173] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 141.761306][ T6173] RSP: 002b:00007ffd762e2478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 141.761329][ T6173] RAX: ffffffffffffffda RBX: 00007ffd762e2500 RCX: 00007f357b52e04a
[ 141.761346][ T6173] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007ffd762e24c0
[ 141.761362][ T6173] RBP: 0000200000000400 R08: 00007ffd762e2500 R09: 0000000000200001
[ 141.761377][ T6173] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500
[ 141.761392][ T6173] R13: 00007ffd762e24c0 R14: 00000000000125bb R15: 0000200000000180
[ 141.761427][ T6173]
[ 141.803598][ T6173] gfs2: fsid=norecovery.s: Error checking journal for spectator mount.
[ 142.348236][ T5837] ==================================================================
[ 142.348253][ T5837] BUG: KASAN: slab-use-after-free in lru_add+0x265/0xee0
[ 142.348285][ T5837] Read of size 8 at addr ffff888021afd520 by task udevd/5837
[ 142.348303][ T5837]
[ 142.348316][ T5837] CPU: 0 UID: 0 PID: 5837 Comm: udevd Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 142.348340][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 142.348354][ T5837] Call Trace:
[ 142.348363][ T5837]
[ 142.348372][ T5837] dump_stack_lvl+0xe8/0x150
[ 142.348399][ T5837] print_address_description+0x55/0x1e0
[ 142.348423][ T5837] ? lru_add+0x265/0xee0
[ 142.348444][ T5837] print_report+0x58/0x70
[ 142.348465][ T5837] kasan_report+0x117/0x150
[ 142.348500][ T5837] ? lru_add+0x265/0xee0
[ 142.348528][ T5837] kasan_check_range+0x264/0x2c0
[ 142.348561][ T5837] ? lru_add+0x1a2/0xee0
[ 142.348586][ T5837] lru_add+0x265/0xee0
[ 142.348613][ T5837] folio_batch_move_lru+0x336/0x550
[ 142.348641][ T5837] ? __pfx_lru_add+0x10/0x10
[ 142.348665][ T5837] ? __pfx_folio_batch_move_lru+0x10/0x10
[ 142.348690][ T5837] ? rcu_is_watching+0x15/0xb0
[ 142.348723][ T5837] ? rt_spin_lock+0x20e/0x400
[ 142.348753][ T5837] lru_add_drain_cpu+0xb4/0x770
[ 142.348777][ T5837] ? rt_spin_unlock+0x160/0x200
[ 142.348805][ T5837] lru_add_drain+0x142/0x3f0
[ 142.348832][ T5837] __folio_batch_release+0x48/0x90
[ 142.348860][ T5837] shmem_undo_range+0x52c/0x1660
[ 142.348908][ T5837] ? __pfx_shmem_undo_range+0x10/0x10
[ 142.348937][ T5837] ? try_to_take_rt_mutex+0x840/0xb00
[ 142.348994][ T5837] ? do_raw_spin_lock+0x12b/0x2f0
[ 142.349025][ T5837] shmem_evict_inode+0x289/0xae0
[ 142.349050][ T5837] ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 142.349077][ T5837] ? __pfx_shmem_evict_inode+0x10/0x10
[ 142.349100][ T5837] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 142.349128][ T5837] ? rt_spin_unlock+0x14f/0x200
[ 142.349156][ T5837] ? rt_spin_unlock+0x160/0x200
[ 142.349181][ T5837] ? __pfx_shmem_evict_inode+0x10/0x10
[ 142.349203][ T5837] evict+0x61e/0xb10
[ 142.349227][ T5837] ? __pfx_evict+0x10/0x10
[ 142.349245][ T5837] ? rt_spin_unlock+0x160/0x200
[ 142.349272][ T5837] ? iput+0xb25/0xe80
[ 142.349304][ T5837] __dentry_kill+0x1a2/0x690
[ 142.349326][ T5837] ? finish_dput+0xad/0x480
[ 142.349352][ T5837] finish_dput+0xc9/0x480
[ 142.349380][ T5837] filename_renameat2+0x61e/0x9c0
[ 142.349412][ T5837] ? __pfx_filename_renameat2+0x10/0x10
[ 142.349446][ T5837] ? do_getname+0x151/0x250
[ 142.349470][ T5837] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.349493][ T5837] __se_sys_rename+0x55/0x2c0
[ 142.349519][ T5837] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.349541][ T5837] do_syscall_64+0x15f/0xf80
[ 142.349575][ T5837] ? clear_bhb_loop+0x40/0x90
[ 142.349600][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.349624][ T5837] RIP: 0033:0x7f4617f67cc7
[ 142.349644][ T5837] Code: e8 5e a7 09 00 f7 d8 19 c0 5b c3 0f 1f 84 00 00 00 00 00 b8 ff ff ff ff 5b c3 66 0f 1f 84 00 00 00 00 00 b8 52 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 01 61 17 00 f7 d8 64 89 02 b8
[ 142.349662][ T5837] RSP: 002b:00007fff17580fc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000052
[ 142.349686][ T5837] RAX: ffffffffffffffda RBX: 000055bd034710d0 RCX: 00007f4617f67cc7
[ 142.349702][ T5837] RDX: 000055bd0344f010 RSI: 00007fff17580fe0 RDI: 00007fff175813e0
[ 142.349717][ T5837] RBP: 000055bd03596000 R08: 00000000000001e0 R09: 0000000000000000
[ 142.349731][ T5837] R10: 0000000000000000 R11: 0000000000000206 R12: 00007fff17580fe0
[ 142.349744][ T5837] R13: 00007fff175813e0 R14: 0000000000000000 R15: 000055bccc0c59dd
[ 142.349766][ T5837]
[ 142.349773][ T5837]
[ 142.349777][ T5837] Allocated by task 6173:
[ 142.349785][ T5837] kasan_save_track+0x3e/0x80
[ 142.349808][ T5837] __kasan_slab_alloc+0x6c/0x80
[ 142.349831][ T5837] kmem_cache_alloc_noprof+0x33b/0x680
[ 142.349855][ T5837] gfs2_glock_get+0x27b/0xf50
[ 142.349878][ T5837] gfs2_inode_lookup+0x29f/0xc50
[ 142.349895][ T5837] gfs2_dir_search+0x168/0x220
[ 142.349909][ T5837] gfs2_lookupi+0x45e/0x640
[ 142.349926][ T5837] init_journal+0x592/0x2280
[ 142.349941][ T5837] init_inodes+0xdb/0x320
[ 142.349956][ T5837] gfs2_fill_super+0x1a92/0x2220
[ 142.349971][ T5837] get_tree_bdev_flags+0x431/0x4f0
[ 142.349997][ T5837] gfs2_get_tree+0x51/0x1e0
[ 142.350020][ T5837] vfs_get_tree+0x92/0x2a0
[ 142.350044][ T5837] do_new_mount+0x341/0xd30
[ 142.350068][ T5837] __se_sys_mount+0x31d/0x420
[ 142.350087][ T5837] do_syscall_64+0x15f/0xf80
[ 142.350111][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.350127][ T5837]
[ 142.350139][ T5837] Freed by task 29:
[ 142.350147][ T5837] kasan_save_track+0x3e/0x80
[ 142.350169][ T5837] kasan_save_free_info+0x46/0x50
[ 142.350186][ T5837] __kasan_slab_free+0x5c/0x80
[ 142.350209][ T5837] kmem_cache_free+0x187/0x6c0
[ 142.350239][ T5837] rcu_cpu_kthread+0x99e/0x1470
[ 142.350262][ T5837] smpboot_thread_fn+0x541/0xa50
[ 142.350281][ T5837] kthread+0x388/0x470
[ 142.350303][ T5837] ret_from_fork+0x514/0xb70
[ 142.350320][ T5837] ret_from_fork_asm+0x1a/0x30
[ 142.350340][ T5837]
[ 142.350344][ T5837] Last potentially related work creation:
[ 142.350350][ T5837] kasan_save_stack+0x3e/0x60
[ 142.350372][ T5837] kasan_record_aux_stack+0xbd/0xd0
[ 142.350390][ T5837] call_rcu+0xee/0x890
[ 142.350414][ T5837] gfs2_glock_free+0x3c/0xa0
[ 142.350428][ T5837] gfs2_evict_inode+0xe50/0x1430
[ 142.350448][ T5837] evict+0x61e/0xb10
[ 142.350460][ T5837] gfs2_jindex_free+0x3a4/0x450
[ 142.350478][ T5837] init_journal+0x8aa/0x2280
[ 142.350493][ T5837] init_inodes+0xdb/0x320
[ 142.350508][ T5837] gfs2_fill_super+0x1a92/0x2220
[ 142.350523][ T5837] get_tree_bdev_flags+0x431/0x4f0
[ 142.350548][ T5837] gfs2_get_tree+0x51/0x1e0
[ 142.350563][ T5837] vfs_get_tree+0x92/0x2a0
[ 142.350587][ T5837] do_new_mount+0x341/0xd30
[ 142.350605][ T5837] __se_sys_mount+0x31d/0x420
[ 142.350625][ T5837] do_syscall_64+0x15f/0xf80
[ 142.350649][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.350666][ T5837]
[ 142.350670][ T5837] Second to last potentially related work creation:
[ 142.350676][ T5837] kasan_save_stack+0x3e/0x60
[ 142.350698][ T5837] kasan_record_aux_stack+0xbd/0xd0
[ 142.350715][ T5837] insert_work+0x3d/0x330
[ 142.350730][ T5837] __queue_work+0xcfd/0x1010
[ 142.350748][ T5837] queue_delayed_work_on+0x11a/0x1e0
[ 142.350766][ T5837] do_xmote+0x51b/0x760
[ 142.350788][ T5837] glock_work_func+0x2a8/0x580
[ 142.350803][ T5837] process_one_work+0x9a3/0x1710
[ 142.350819][ T5837] worker_thread+0xba8/0x11e0
[ 142.350836][ T5837] kthread+0x388/0x470
[ 142.350856][ T5837] ret_from_fork+0x514/0xb70
[ 142.350879][ T5837] ret_from_fork_asm+0x1a/0x30
[ 142.350899][ T5837]
[ 142.350903][ T5837] The buggy address belongs to the object at ffff888021afd0f0
[ 142.350903][ T5837] which belongs to the cache gfs2_glock(aspace) of size 1352
[ 142.350918][ T5837] The buggy address is located 1072 bytes inside of
[ 142.350918][ T5837] freed 1352-byte region [ffff888021afd0f0, ffff888021afd638)
[ 142.350937][ T5837]
[ 142.350941][ T5837] The buggy address belongs to the physical page:
[ 142.350956][ T5837] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888021afdc80 pfn:0x21af8
[ 142.350978][ T5837] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 142.350993][ T5837] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[ 142.351013][ T5837] page_type: f5(slab)
[ 142.351029][ T5837] raw: 0080000000000240 ffff88801f304780 ffff88801f3fd288 ffff88801f3fd288
[ 142.351045][ T5837] raw: ffff888021afdc80 0000000800160010 00000000f5000000 0000000000000000
[ 142.351061][ T5837] head: 0080000000000240 ffff88801f304780 ffff88801f3fd288 ffff88801f3fd288
[ 142.351077][ T5837] head: ffff888021afdc80 0000000800160010 00000000f5000000 0000000000000000
[ 142.351093][ T5837] head: 0080000000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[ 142.351107][ T5837] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000008
[ 142.351117][ T5837] page dumped because: kasan: bad access detected
[ 142.351128][ T5837] page_owner tracks the page as allocated
[ 142.351135][ T5837] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6167, tgid 6167 (syz.0.23), ts 139830167183, free_ts 139791399184
[ 142.351165][ T5837] post_alloc_hook+0x22d/0x280
[ 142.351189][ T5837] get_page_from_freelist+0x27d6/0x2850
[ 142.351205][ T5837] __alloc_frozen_pages_noprof+0x18d/0x380
[ 142.351221][ T5837] allocate_slab+0x77/0x660
[ 142.351238][ T5837] refill_objects+0x33c/0x3d0
[ 142.351255][ T5837] __pcs_replace_empty_main+0x373/0x720
[ 142.351274][ T5837] kmem_cache_alloc_noprof+0x433/0x680
[ 142.351297][ T5837] gfs2_glock_get+0x27b/0xf50
[ 142.351312][ T5837] gfs2_inode_lookup+0x29f/0xc50
[ 142.351329][ T5837] gfs2_dir_search+0x168/0x220
[ 142.351343][ T5837] gfs2_lookupi+0x45e/0x640
[ 142.351360][ T5837] init_journal+0x592/0x2280
[ 142.351375][ T5837] init_inodes+0xdb/0x320
[ 142.351389][ T5837] gfs2_fill_super+0x1a92/0x2220
[ 142.351404][ T5837] get_tree_bdev_flags+0x431/0x4f0
[ 142.351429][ T5837] gfs2_get_tree+0x51/0x1e0
[ 142.351444][ T5837] page last free pid 5837 tgid 5837 stack trace:
[ 142.351453][ T5837] __free_frozen_pages+0xf9b/0x10f0
[ 142.351478][ T5837] __slab_free+0x252/0x2a0
[ 142.351507][ T5837] qlist_free_all+0x99/0x100
[ 142.351528][ T5837] kasan_quarantine_reduce+0x148/0x160
[ 142.351550][ T5837] __kasan_slab_alloc+0x22/0x80
[ 142.351573][ T5837] __kmalloc_noprof+0x399/0x7b0
[ 142.351602][ T5837] tomoyo_realpath_from_path+0xe3/0x5d0
[ 142.351631][ T5837] tomoyo_path_number_perm+0x246/0x630
[ 142.351653][ T5837] security_file_ioctl+0xc3/0x2a0
[ 142.351673][ T5837] __se_sys_ioctl+0x47/0x170
[ 142.351698][ T5837] do_syscall_64+0x15f/0xf80
[ 142.351722][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.351738][ T5837]
[ 142.351742][ T5837] Memory state around the buggy address:
[ 142.351751][ T5837] ffff888021afd400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 142.351763][ T5837] ffff888021afd480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 142.351775][ T5837] >ffff888021afd500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 142.351784][ T5837] ^
[ 142.351793][ T5837] ffff888021afd580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 142.351805][ T5837] ffff888021afd600: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[ 142.351814][ T5837] ==================================================================
[ 142.351831][ T5837] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 142.351845][ T5837] CPU: 0 UID: 0 PID: 5837 Comm: udevd Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 142.351870][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 142.351881][ T5837] Call Trace:
[ 142.351888][ T5837]
[ 142.351895][ T5837] vpanic+0x56c/0xa60
[ 142.351917][ T5837] ? __pfx_vpanic+0x10/0x10
[ 142.351942][ T5837] panic+0xc5/0xd0
[ 142.351961][ T5837] ? __pfx_panic+0x10/0x10
[ 142.351982][ T5837] ? lru_add+0x265/0xee0
[ 142.352001][ T5837] ? rcu_is_watching+0x15/0xb0
[ 142.352030][ T5837] ? lru_add+0x265/0xee0
[ 142.352049][ T5837] check_panic_on_warn+0x89/0xb0
[ 142.352075][ T5837] ? lru_add+0x265/0xee0
[ 142.352094][ T5837] end_report+0x73/0x170
[ 142.352121][ T5837] ? lru_add+0x265/0xee0
[ 142.352139][ T5837] kasan_report+0x128/0x150
[ 142.352167][ T5837] ? lru_add+0x265/0xee0
[ 142.352189][ T5837] kasan_check_range+0x264/0x2c0
[ 142.352216][ T5837] ? lru_add+0x1a2/0xee0
[ 142.352236][ T5837] lru_add+0x265/0xee0
[ 142.352257][ T5837] folio_batch_move_lru+0x336/0x550
[ 142.352279][ T5837] ? __pfx_lru_add+0x10/0x10
[ 142.352299][ T5837] ? __pfx_folio_batch_move_lru+0x10/0x10
[ 142.352319][ T5837] ? rcu_is_watching+0x15/0xb0
[ 142.352345][ T5837] ? rt_spin_lock+0x20e/0x400
[ 142.352369][ T5837] lru_add_drain_cpu+0xb4/0x770
[ 142.352389][ T5837] ? rt_spin_unlock+0x160/0x200
[ 142.352411][ T5837] lru_add_drain+0x142/0x3f0
[ 142.352433][ T5837] __folio_batch_release+0x48/0x90
[ 142.352479][ T5837] shmem_undo_range+0x52c/0x1660
[ 142.352511][ T5837] ? __pfx_shmem_undo_range+0x10/0x10
[ 142.352534][ T5837] ? try_to_take_rt_mutex+0x840/0xb00
[ 142.352582][ T5837] ? do_raw_spin_lock+0x12b/0x2f0
[ 142.352606][ T5837] shmem_evict_inode+0x289/0xae0
[ 142.352628][ T5837] ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 142.352649][ T5837] ? __pfx_shmem_evict_inode+0x10/0x10
[ 142.352668][ T5837] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 142.352690][ T5837] ? rt_spin_unlock+0x14f/0x200
[ 142.352712][ T5837] ? rt_spin_unlock+0x160/0x200
[ 142.352732][ T5837] ? __pfx_shmem_evict_inode+0x10/0x10
[ 142.352750][ T5837] evict+0x61e/0xb10
[ 142.352769][ T5837] ? __pfx_evict+0x10/0x10
[ 142.352783][ T5837] ? rt_spin_unlock+0x160/0x200
[ 142.352805][ T5837] ? iput+0xb25/0xe80
[ 142.352830][ T5837] __dentry_kill+0x1a2/0x690
[ 142.352848][ T5837] ? finish_dput+0xad/0x480
[ 142.352875][ T5837] finish_dput+0xc9/0x480
[ 142.352898][ T5837] filename_renameat2+0x61e/0x9c0
[ 142.352924][ T5837] ? __pfx_filename_renameat2+0x10/0x10
[ 142.352951][ T5837] ? do_getname+0x151/0x250
[ 142.352970][ T5837] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.352988][ T5837] __se_sys_rename+0x55/0x2c0
[ 142.353009][ T5837] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.353027][ T5837] do_syscall_64+0x15f/0xf80
[ 142.353055][ T5837] ? clear_bhb_loop+0x40/0x90
[ 142.353075][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.353093][ T5837] RIP: 0033:0x7f4617f67cc7
[ 142.353108][ T5837] Code: e8 5e a7 09 00 f7 d8 19 c0 5b c3 0f 1f 84 00 00 00 00 00 b8 ff ff ff ff 5b c3 66 0f 1f 84 00 00 00 00 00 b8 52 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 01 61 17 00 f7 d8 64 89 02 b8
[ 142.353122][ T5837] RSP: 002b:00007fff17580fc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000052
[ 142.353141][ T5837] RAX: ffffffffffffffda RBX: 000055bd034710d0 RCX: 00007f4617f67cc7
[ 142.353154][ T5837] RDX: 000055bd0344f010 RSI: 00007fff17580fe0 RDI: 00007fff175813e0
[ 142.353167][ T5837] RBP: 000055bd03596000 R08: 00000000000001e0 R09: 0000000000000000
[ 142.353178][ T5837] R10: 0000000000000000 R11: 0000000000000206 R12: 00007fff17580fe0
[ 142.353190][ T5837] R13: 00007fff175813e0 R14: 0000000000000000 R15: 000055bccc0c59dd
[ 142.353209][ T5837]
[ 142.353923][ T5837] Kernel Offset: disabled