Warning: Permanently added '10.128.1.2' (ED25519) to the list of known hosts.
2026/04/22 20:10:12 parsed 1 programs
[ 67.036660][ T4188] cgroup: Unknown subsys name 'net'
[ 67.155952][ T4188] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 68.731587][ T4188] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 71.313107][ T4225] chnl_net:caif_netlink_parms(): no params data found
[ 71.388049][ T4225] bridge0: port 1(bridge_slave_0) entered blocking state
[ 71.396507][ T4225] bridge0: port 1(bridge_slave_0) entered disabled state
[ 71.406489][ T4225] device bridge_slave_0 entered promiscuous mode
[ 71.419308][ T4225] bridge0: port 2(bridge_slave_1) entered blocking state
[ 71.430168][ T4225] bridge0: port 2(bridge_slave_1) entered disabled state
[ 71.439016][ T4225] device bridge_slave_1 entered promiscuous mode
[ 71.474920][ T4225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 71.494997][ T4225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 71.532195][ T4225] team0: Port device team_slave_0 added
[ 71.542331][ T4225] team0: Port device team_slave_1 added
[ 71.563678][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.573223][ T1433] ieee802154 phy1 wpan1: encryption failed: -22
[ 71.574084][ T4225] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 71.588023][ T4225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 71.620097][ T4225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 71.634227][ T4225] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 71.644882][ T4225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 71.676762][ T4225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 71.724510][ T4225] device hsr_slave_0 entered promiscuous mode
[ 71.735447][ T4225] device hsr_slave_1 entered promiscuous mode
[ 71.913449][ T4225] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 71.933386][ T4225] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 71.955255][ T4225] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 71.973898][ T4225] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 72.076240][ T4225] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.093613][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 72.104776][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.123506][ T4225] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.137563][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 72.150803][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.163036][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.172683][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.184159][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 72.213609][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 72.226184][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.240066][ T406] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.249241][ T406] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.262890][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 72.276514][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 72.297746][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 72.313387][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 72.324759][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 72.340010][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 72.358555][ T4225] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 72.374670][ T4225] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 72.396575][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 72.407223][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 72.418250][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 72.429298][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 72.440947][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 72.451963][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 72.614300][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 72.629394][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 72.654270][ T4225] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 72.673994][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 72.685151][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 72.708920][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 72.719954][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 72.732034][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 72.741812][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 72.756015][ T4225] device veth0_vlan entered promiscuous mode
[ 72.772984][ T4225] device veth1_vlan entered promiscuous mode
[ 72.798169][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 72.808939][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 72.821724][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 72.838422][ T4225] device veth0_macvtap entered promiscuous mode
[ 72.853093][ T4225] device veth1_macvtap entered promiscuous mode
[ 72.871913][ T4225] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 72.880913][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 72.890851][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 72.918972][ T4225] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 72.933121][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 72.945284][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 72.963497][ T4225] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.980404][ T4225] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.997066][ T4225] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.008856][ T4225] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.203992][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.215878][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.232016][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 74.258806][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.268886][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.279833][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2026/04/22 20:10:22 executed programs: 0
[ 75.514985][ T154] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 75.554097][ T4286] chnl_net:caif_netlink_parms(): no params data found
[ 75.595912][ T4286] bridge0: port 1(bridge_slave_0) entered blocking state
[ 75.603463][ T4286] bridge0: port 1(bridge_slave_0) entered disabled state
[ 75.612029][ T4286] device bridge_slave_0 entered promiscuous mode
[ 75.621035][ T4286] bridge0: port 2(bridge_slave_1) entered blocking state
[ 75.631474][ T4286] bridge0: port 2(bridge_slave_1) entered disabled state
[ 75.641629][ T4286] device bridge_slave_1 entered promiscuous mode
[ 75.665608][ T4286] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 75.679155][ T4286] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 75.702585][ T4286] team0: Port device team_slave_0 added
[ 75.712165][ T4286] team0: Port device team_slave_1 added
[ 75.731514][ T4286] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 75.739392][ T4286] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 75.768418][ T4286] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 75.781703][ T4286] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 75.789085][ T4286] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 75.816365][ T4286] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 75.848887][ T4286] device hsr_slave_0 entered promiscuous mode
[ 75.856929][ T4286] device hsr_slave_1 entered promiscuous mode
[ 75.864933][ T4286] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 75.873253][ T4286] Cannot create hsr debugfs directory
[ 77.480699][ T23] Bluetooth: hci0: command 0x0409 tx timeout
[ 77.646954][ T154] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 77.696087][ T154] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 77.757245][ T154] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 78.639119][ T4286] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 78.650669][ T4286] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 78.660127][ T4286] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 78.690182][ T4286] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 78.774986][ T4286] 8021q: adding VLAN 0 to HW filter on device bond0
[ 78.791830][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 78.800526][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 78.837409][ T4286] 8021q: adding VLAN 0 to HW filter on device team0
[ 78.849339][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 78.860046][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 78.869105][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 78.877307][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 78.886400][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 78.910233][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 78.921514][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 78.932114][ T1324] bridge0: port 2(bridge_slave_1) entered blocking state
[ 78.941593][ T1324] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 78.952564][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 78.964827][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 78.998475][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 79.010940][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 79.022656][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 79.035325][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 79.044862][ T1324] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 79.084008][ T4286] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 79.096201][ T4286] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 79.116674][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 79.126430][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 79.136733][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 79.147517][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 79.158799][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 79.268052][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 79.277203][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 79.290586][ T4286] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 79.310284][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 79.322993][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 79.364876][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 79.374185][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 79.385061][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 79.394954][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 79.407665][ T4286] device veth0_vlan entered promiscuous mode
[ 79.446752][ T4286] device veth1_vlan entered promiscuous mode
[ 79.469061][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 79.481008][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 79.491518][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 79.502691][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 79.515497][ T4286] device veth0_macvtap entered promiscuous mode
[ 79.529531][ T4286] device veth1_macvtap entered promiscuous mode
[ 79.558045][ T4286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 79.572126][ T4286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 79.586547][ T7] Bluetooth: hci0: command 0x041b tx timeout
[ 79.590820][ T4286] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 79.606416][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 79.616732][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 79.625445][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 79.635715][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 79.663702][ T4286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 79.676087][ T4286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 79.687829][ T4286] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 79.700390][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 79.711467][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 79.730662][ T4286] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.741621][ T4286] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.752207][ T4286] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.764229][ T4286] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.785397][ T154] device hsr_slave_0 left promiscuous mode
[ 79.792916][ T154] device hsr_slave_1 left promiscuous mode
[ 79.801960][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 79.810964][ T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 79.821868][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 79.831305][ T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 79.841477][ T154] device bridge_slave_1 left promiscuous mode
[ 79.850483][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 79.866339][ T154] device bridge_slave_0 left promiscuous mode
[ 79.876233][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 79.896764][ T154] device veth1_macvtap left promiscuous mode
[ 79.904351][ T154] device veth0_macvtap left promiscuous mode
[ 79.912065][ T154] device veth1_vlan left promiscuous mode
[ 79.923132][ T154] device veth0_vlan left promiscuous mode
[ 80.128674][ T154] team0 (unregistering): Port device team_slave_1 removed
[ 80.143125][ T154] team0 (unregistering): Port device team_slave_0 removed
[ 80.158484][ T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 80.176525][ T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 80.235222][ T154] bond0 (unregistering): Released all slaves
[ 80.371836][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 80.391858][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 80.415760][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 80.435571][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 80.447076][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 80.457625][ T406] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 80.843648][ T4341] loop0: detected capacity change from 0 to 32768
[ 80.986189][ T4341] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 81.019539][ T4341] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 81.063712][ T4341] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 81.096704][ T4317] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 81.109289][ T4317] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 81.169530][ T4317] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 60ms
[ 81.183354][ T4317] gfs2: fsid=syz:syz.0: jid=0: Done
[ 81.189877][ T4341] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 81.334319][ T4341] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 81.381713][ T4286] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[ 81.381713][ T4286] inode = 11 2339
[ 81.381713][ T4286] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[ 81.449807][ T4286] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 81.492249][ T4286] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[ 81.539616][ T4286] CPU: 1 PID: 4286 Comm: syz-executor Not tainted syzkaller #0
[ 81.549588][ T4286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 81.563144][ T4286] Call Trace:
[ 81.566715][ T4286]
[ 81.570206][ T4286] dump_stack_lvl+0x188/0x250
[ 81.576269][ T4286] ? show_regs_print_info+0x20/0x20
[ 81.583527][ T4286] ? load_image+0x400/0x400
[ 81.588788][ T4286] ? do_raw_spin_unlock+0x11d/0x230
[ 81.594827][ T4286] gfs2_assert_warn_i+0x18f/0x2c0
[ 81.600472][ T4286] gfs2_quota_cleanup+0x4b4/0x6a0
[ 81.607148][ T4286] gfs2_make_fs_ro+0x440/0x620
[ 81.612684][ T4286] ? __might_sleep+0xf0/0xf0
[ 81.617977][ T4286] ? gfs2_dinode_out+0xb00/0xb00
[ 81.624276][ T4286] ? _raw_spin_unlock+0x24/0x40
[ 81.629287][ T4286] ? gfs2_glock_nq+0xcb0/0x1550
[ 81.634847][ T4286] gfs2_withdraw+0x610/0x1490
[ 81.640103][ T4286] ? gfs2_lm+0x240/0x240
[ 81.645216][ T4286] ? __schedule+0x11f7/0x43c0
[ 81.651036][ T4286] ? gfs2_freeze_lock+0x52/0xc0
[ 81.651229][ T4243] Bluetooth: hci0: command 0x040f tx timeout
[ 81.656621][ T4286] ? gfs2_consist_inode_i+0xc0/0xe0
[ 81.669023][ T4286] gfs2_inode_refresh+0xb64/0xff0
[ 81.674814][ T4286] ? do_promote+0x71a/0xab0
[ 81.679629][ T4286] ? gfs2_inode_metasync+0xf0/0xf0
[ 81.684847][ T4286] ? __lock_acquire+0x7d10/0x7d10
[ 81.690704][ T4286] inode_go_lock+0x127/0x470
[ 81.696113][ T4286] do_promote+0x741/0xab0
[ 81.700609][ T4286] finish_xmote+0x4df/0xb00
[ 81.705595][ T4286] do_xmote+0x7b6/0x1120
[ 81.710054][ T4286] gfs2_glock_nq+0xc7a/0x1550
[ 81.714872][ T4286] do_sync+0x4ab/0xc40
[ 81.719482][ T4286] ? slot_put+0x1e0/0x1e0
[ 81.724304][ T4286] ? __lock_acquire+0x7d10/0x7d10
[ 81.729379][ T4286] ? do_raw_spin_lock+0x128/0x2f0
[ 81.734910][ T4286] ? do_sync+0x4a3/0xc40
[ 81.739212][ T4286] ? do_raw_spin_unlock+0x11d/0x230
[ 81.744537][ T4286] gfs2_quota_sync+0x32c/0x700
[ 81.749517][ T4286] gfs2_sync_fs+0x48/0xb0
[ 81.753874][ T4286] sync_filesystem+0xe6/0x220
[ 81.758960][ T4286] generic_shutdown_super+0x6b/0x300
[ 81.764560][ T4286] kill_block_super+0x7c/0xe0
[ 81.769470][ T4286] deactivate_locked_super+0x93/0xf0
[ 81.775633][ T4286] cleanup_mnt+0x42d/0x4e0
[ 81.780799][ T4286] ? lockdep_hardirqs_on+0x94/0x140
[ 81.786583][ T4286] task_work_run+0x125/0x1a0
[ 81.792887][ T4286] exit_to_user_mode_loop+0x10f/0x130
[ 81.798741][ T4286] exit_to_user_mode_prepare+0xee/0x180
[ 81.804415][ T4286] syscall_exit_to_user_mode+0x16/0x40
[ 81.810781][ T4286] do_syscall_64+0x58/0xa0
[ 81.815663][ T4286] ? clear_bhb_loop+0x30/0x80
[ 81.821417][ T4286] ? clear_bhb_loop+0x30/0x80
[ 81.826998][ T4286] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 81.833661][ T4286] RIP: 0033:0x7fe97a2a1a57
[ 81.838630][ T4286] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 81.861416][ T4286] RSP: 002b:00007ffc846485b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 81.871158][ T4286] RAX: 0000000000000000 RBX: 00007fe97a336048 RCX: 00007fe97a2a1a57
[ 81.880951][ T4286] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc84648670
[ 81.891239][ T4286] RBP: 00007ffc84648670 R08: 00007ffc84649670 R09: 00000000ffffffff
[ 81.901785][ T4286] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc84649700
[ 81.911190][ T4286] R13: 00007fe97a336048 R14: 0000000000013a54 R15: 00007ffc84649740
[ 81.920767][ T4286]
[ 81.944612][ T4286] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[ 81.957323][ T4286] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[ 81.971358][ T4286] gfs2: fsid=syz:syz.0: File system withdrawn
[ 81.979736][ T4286] CPU: 1 PID: 4286 Comm: syz-executor Not tainted syzkaller #0
[ 81.988110][ T4286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 81.999205][ T4286] Call Trace:
[ 82.003855][ T4286]
[ 82.008200][ T4286] dump_stack_lvl+0x188/0x250
[ 82.013709][ T4286] ? kobject_uevent_env+0x371/0x890
[ 82.019724][ T4286] ? show_regs_print_info+0x20/0x20
[ 82.026163][ T4286] ? load_image+0x400/0x400
[ 82.030960][ T4286] ? kobject_uevent_env+0x371/0x890
[ 82.037419][ T4286] ? lockref_put_or_lock+0x6e/0xb0
[ 82.042863][ T4286] gfs2_withdraw+0x1149/0x1490
[ 82.048503][ T4286] ? gfs2_lm+0x240/0x240
[ 82.053048][ T4286] ? __schedule+0x11f7/0x43c0
[ 82.057956][ T4286] ? gfs2_consist_inode_i+0xc0/0xe0
[ 82.063235][ T4286] gfs2_inode_refresh+0xb64/0xff0
[ 82.068469][ T4286] ? do_promote+0x71a/0xab0
[ 82.073391][ T4286] ? gfs2_inode_metasync+0xf0/0xf0
[ 82.078982][ T4286] ? __lock_acquire+0x7d10/0x7d10
[ 82.084497][ T4286] inode_go_lock+0x127/0x470
[ 82.089227][ T4286] do_promote+0x741/0xab0
[ 82.093603][ T4286] finish_xmote+0x4df/0xb00
[ 82.098436][ T4286] do_xmote+0x7b6/0x1120
[ 82.102927][ T4286] gfs2_glock_nq+0xc7a/0x1550
[ 82.107924][ T4286] do_sync+0x4ab/0xc40
[ 82.112304][ T4286] ? slot_put+0x1e0/0x1e0
[ 82.116669][ T4286] ? __lock_acquire+0x7d10/0x7d10
[ 82.122186][ T4286] ? do_raw_spin_lock+0x128/0x2f0
[ 82.127521][ T4286] ? do_sync+0x4a3/0xc40
[ 82.131891][ T4286] ? do_raw_spin_unlock+0x11d/0x230
[ 82.137242][ T4286] gfs2_quota_sync+0x32c/0x700
[ 82.142188][ T4286] gfs2_sync_fs+0x48/0xb0
[ 82.146648][ T4286] sync_filesystem+0xe6/0x220
[ 82.151557][ T4286] generic_shutdown_super+0x6b/0x300
[ 82.157912][ T4286] kill_block_super+0x7c/0xe0
[ 82.163907][ T4286] deactivate_locked_super+0x93/0xf0
[ 82.169842][ T4286] cleanup_mnt+0x42d/0x4e0
[ 82.174307][ T4286] ? lockdep_hardirqs_on+0x94/0x140
[ 82.179897][ T4286] task_work_run+0x125/0x1a0
[ 82.184779][ T4286] exit_to_user_mode_loop+0x10f/0x130
[ 82.190598][ T4286] exit_to_user_mode_prepare+0xee/0x180
[ 82.196321][ T4286] syscall_exit_to_user_mode+0x16/0x40
[ 82.201819][ T4286] do_syscall_64+0x58/0xa0
[ 82.207541][ T4286] ? clear_bhb_loop+0x30/0x80
[ 82.212231][ T4286] ? clear_bhb_loop+0x30/0x80
[ 82.217103][ T4286] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 82.223188][ T4286] RIP: 0033:0x7fe97a2a1a57
[ 82.228512][ T4286] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 82.250137][ T4286] RSP: 002b:00007ffc846485b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 82.260493][ T4286] RAX: 0000000000000000 RBX: 00007fe97a336048 RCX: 00007fe97a2a1a57
[ 82.269214][ T4286] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc84648670
[ 82.278444][ T4286] RBP: 00007ffc84648670 R08: 00007ffc84649670 R09: 00000000ffffffff
[ 82.287781][ T4286] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc84649700
[ 82.297175][ T4286] R13: 00007fe97a336048 R14: 0000000000013a54 R15: 00007ffc84649740
[ 82.306662][ T4286]
[ 82.327371][ T4286] ==================================================================
[ 82.336772][ T4286] BUG: KASAN: use-after-free in qd_unlock+0x30/0x2d0
[ 82.345268][ T4286] Read of size 8 at addr ffff88805deda090 by task syz-executor/4286
[ 82.355604][ T4286]
[ 82.358493][ T4286] CPU: 1 PID: 4286 Comm: syz-executor Not tainted syzkaller #0
[ 82.367441][ T4286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 82.379020][ T4286] Call Trace:
[ 82.383943][ T4286]
[ 82.387183][ T4286] dump_stack_lvl+0x188/0x250
[ 82.392089][ T4286] ? show_regs_print_info+0x20/0