Warning: Permanently added '10.128.1.203' (ED25519) to the list of known hosts.
2026/01/30 10:49:27 parsed 1 programs
[ 64.236558][ T4185] cgroup: Unknown subsys name 'net'
[ 64.364388][ T4185] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 65.943800][ T4185] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 68.246026][ T4226] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.269913][ T4226] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.286378][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 68.300212][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.310116][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.319989][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 69.037675][ T4238] chnl_net:caif_netlink_parms(): no params data found
[ 69.102600][ T4238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.110482][ T4238] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.119229][ T4238] device bridge_slave_0 entered promiscuous mode
[ 69.129932][ T4238] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.137079][ T4238] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.145617][ T4238] device bridge_slave_1 entered promiscuous mode
[ 69.176182][ T4238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 69.189282][ T4238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.216471][ T4238] team0: Port device team_slave_0 added
[ 69.224925][ T4238] team0: Port device team_slave_1 added
[ 69.246621][ T4238] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.253720][ T4238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.280573][ T4238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.294069][ T4238] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.301371][ T4238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.327786][ T4238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.370985][ T4238] device hsr_slave_0 entered promiscuous mode
[ 69.377970][ T4238] device hsr_slave_1 entered promiscuous mode
[ 69.507054][ T4238] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 69.532180][ T4238] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 69.553310][ T4238] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 69.576786][ T4238] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 69.705837][ T4238] 8021q: adding VLAN 0 to HW filter on device bond0
[ 69.720779][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 69.730596][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 69.742988][ T4238] 8021q: adding VLAN 0 to HW filter on device team0
[ 69.753198][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 69.763114][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 69.772268][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.779541][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.791695][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 69.803011][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 69.811897][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 69.820556][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.827611][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.853859][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 69.862883][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 69.871863][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 69.881910][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 69.891526][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 69.900855][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 69.910302][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 69.922471][ T4238] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 69.933953][ T4238] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 69.943307][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 69.951710][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 70.077653][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 70.088042][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 70.121140][ T4238] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 70.147927][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 70.162436][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 70.172742][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 70.180841][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 70.211333][ T4238] device veth0_vlan entered promiscuous mode
[ 70.223781][ T4238] device veth1_vlan entered promiscuous mode
[ 70.244458][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 70.253638][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 70.262385][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 70.274505][ T4238] device veth0_macvtap entered promiscuous mode
[ 70.285574][ T4238] device veth1_macvtap entered promiscuous mode
[ 70.317282][ T4238] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 70.326585][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 70.335760][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 70.345386][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 70.357995][ T4238] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 70.367477][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 70.376182][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 70.391114][ T4238] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.400825][ T4238] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.409715][ T4238] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.419699][ T4238] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.530440][ T4238] syz-executor (4238) used greatest stack depth: 20272 bytes left
[ 71.343426][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.350181][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
2026/01/30 10:49:37 executed programs: 0
[ 72.337429][ T4292] chnl_net:caif_netlink_parms(): no params data found
[ 72.401637][ T4292] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.409902][ T4292] bridge0: port 1(bridge_slave_0) entered disabled state
[ 72.418010][ T4292] device bridge_slave_0 entered promiscuous mode
[ 72.428982][ T4292] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.436180][ T4292] bridge0: port 2(bridge_slave_1) entered disabled state
[ 72.446735][ T4292] device bridge_slave_1 entered promiscuous mode
[ 72.474160][ T4292] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 72.486587][ T4292] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 72.517556][ T4292] team0: Port device team_slave_0 added
[ 72.526396][ T4292] team0: Port device team_slave_1 added
[ 72.546049][ T4292] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 72.553236][ T4292] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 72.579321][ T4292] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 72.593193][ T4292] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 72.600336][ T4292] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 72.626464][ T4292] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 72.663532][ T4292] device hsr_slave_0 entered promiscuous mode
[ 72.670702][ T4292] device hsr_slave_1 entered promiscuous mode
[ 72.677587][ T4292] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 72.686251][ T4292] Cannot create hsr debugfs directory
[ 72.775764][ T4292] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 74.229203][ T4252] Bluetooth: hci0: command 0x0409 tx timeout
[ 75.616323][ T4292] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 75.655052][ T4292] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 75.705708][ T4292] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 75.820684][ T4292] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 75.832775][ T4292] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 75.842301][ T4292] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 75.851347][ T4292] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 75.935702][ T4292] 8021q: adding VLAN 0 to HW filter on device bond0
[ 75.949733][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 75.957570][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 75.968612][ T4292] 8021q: adding VLAN 0 to HW filter on device team0
[ 75.996371][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 76.005473][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 76.014141][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 76.021337][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 76.041253][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 76.049489][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 76.058072][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 76.071852][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 76.079070][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 76.087712][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 76.097078][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 76.105932][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 76.114883][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 76.132291][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 76.140537][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 76.151815][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 76.162281][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 76.171146][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 76.194936][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 76.203773][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 76.214818][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 76.310713][ T4201] Bluetooth: hci0: command 0x041b tx timeout
[ 76.326897][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 76.335028][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 76.347685][ T4292] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 76.367258][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 76.376559][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 76.415052][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 76.423756][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 76.434826][ T4292] device veth0_vlan entered promiscuous mode
[ 76.441963][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 76.450893][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 76.462811][ T4292] device veth1_vlan entered promiscuous mode
[ 76.492576][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 76.502342][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 76.511461][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 76.520535][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 76.532724][ T4292] device veth0_macvtap entered promiscuous mode
[ 76.545291][ T154] device hsr_slave_0 left promiscuous mode
[ 76.551932][ T154] device hsr_slave_1 left promiscuous mode
[ 76.559592][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 76.567036][ T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 76.575671][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 76.583902][ T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 76.592375][ T154] device bridge_slave_1 left promiscuous mode
[ 76.599762][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 76.614098][ T154] device bridge_slave_0 left promiscuous mode
[ 76.620383][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 76.637459][ T154] device veth1_macvtap left promiscuous mode
[ 76.644403][ T154] device veth0_macvtap left promiscuous mode
[ 76.650583][ T154] device veth1_vlan left promiscuous mode
[ 76.656620][ T154] device veth0_vlan left promiscuous mode
[ 76.838210][ T154] team0 (unregistering): Port device team_slave_1 removed
[ 76.854040][ T154] team0 (unregistering): Port device team_slave_0 removed
[ 76.867527][ T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 76.887175][ T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 76.945093][ T154] bond0 (unregistering): Released all slaves
[ 77.014782][ T4292] device veth1_macvtap entered promiscuous mode
[ 77.025193][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 77.034598][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 77.055623][ T4292] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 77.063216][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 77.073095][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 77.086556][ T4292] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 77.094994][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 77.105967][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 77.120500][ T4292] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 77.129319][ T4292] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 77.138045][ T4292] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 77.147234][ T4292] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 77.215108][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 77.231075][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 77.242955][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
2026/01/30 10:49:42 executed programs: 2
[ 77.271647][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 77.280268][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 77.290437][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 77.632166][ T4318] loop0: detected capacity change from 0 to 32768
[ 77.711424][ T4318] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 77.741397][ T4318] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 77.792357][ T4318] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 77.804849][ T4201] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 77.812414][ T4201] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 77.859349][ T4201] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 46ms
[ 77.868137][ T4201] gfs2: fsid=syz:syz.0: jid=0: Done
[ 77.889083][ T4318] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 78.021022][ T4318] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 78.083905][ T4292] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[ 78.083905][ T4292] inode = 11 2339
[ 78.083905][ T4292] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[ 78.123744][ T4292] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 78.148510][ T4292] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[ 78.162763][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 78.170338][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 78.180440][ T4292] Call Trace:
[ 78.183752][ T4292]
[ 78.186705][ T4292] dump_stack_lvl+0x188/0x250
[ 78.191449][ T4292] ? show_regs_print_info+0x20/0x20
[ 78.196679][ T4292] ? load_image+0x400/0x400
[ 78.201217][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 78.206441][ T4292] gfs2_assert_warn_i+0x18f/0x2c0
[ 78.211516][ T4292] gfs2_quota_cleanup+0x4b4/0x6a0
[ 78.216591][ T4292] gfs2_make_fs_ro+0x440/0x620
[ 78.221403][ T4292] ? __might_sleep+0xf0/0xf0
[ 78.226029][ T4292] ? gfs2_dinode_out+0xb00/0xb00
[ 78.231001][ T4292] ? _raw_spin_unlock+0x24/0x40
[ 78.235888][ T4292] ? gfs2_glock_nq+0xcb0/0x1550
[ 78.240790][ T4292] gfs2_withdraw+0x610/0x1490
[ 78.245511][ T4292] ? gfs2_lm+0x240/0x240
[ 78.249780][ T4292] ? __schedule+0x11f7/0x43c0
[ 78.254494][ T4292] ? gfs2_freeze_lock+0x52/0xc0
[ 78.259385][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 78.264663][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 78.269753][ T4292] ? do_promote+0x71a/0xab0
[ 78.274282][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 78.279427][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 78.284495][ T4292] inode_go_lock+0x127/0x470
[ 78.289174][ T4292] do_promote+0x741/0xab0
[ 78.293553][ T4292] finish_xmote+0x4df/0xb00
[ 78.298265][ T4292] do_xmote+0x7b6/0x1120
[ 78.302559][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 78.307291][ T4292] do_sync+0x4ab/0xc40
[ 78.311557][ T4292] ? slot_put+0x1e0/0x1e0
[ 78.315920][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 78.320976][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 78.326035][ T4292] ? do_sync+0x4a3/0xc40
[ 78.330321][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 78.335551][ T4292] gfs2_quota_sync+0x32c/0x700
[ 78.340353][ T4292] gfs2_sync_fs+0x48/0xb0
[ 78.344711][ T4292] sync_filesystem+0xe6/0x220
[ 78.349415][ T4292] generic_shutdown_super+0x6b/0x300
[ 78.354724][ T4292] kill_block_super+0x7c/0xe0
[ 78.359432][ T4292] deactivate_locked_super+0x93/0xf0
[ 78.364753][ T4292] cleanup_mnt+0x42d/0x4e0
[ 78.369203][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 78.374434][ T4292] task_work_run+0x125/0x1a0
[ 78.379059][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 78.384468][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 78.390044][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 78.395531][ T4292] do_syscall_64+0x58/0xa0
[ 78.399973][ T4292] ? clear_bhb_loop+0x30/0x80
[ 78.404669][ T4292] ? clear_bhb_loop+0x30/0x80
[ 78.409360][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 78.415294][ T4292] RIP: 0033:0x7f340bc07117
[ 78.419734][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 78.439362][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 78.447818][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 78.455807][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 78.463942][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 78.471938][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 78.479932][ T4292] R13: 00007f340bc6f71f R14: 00000000000130c6 R15: 00007ffe10b51990
[ 78.487946][ T4292]
[ 78.494027][ T4201] Bluetooth: hci0: command 0x040f tx timeout
[ 78.505224][ T4292] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[ 78.514748][ T4292] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[ 78.522872][ T4292] gfs2: fsid=syz:syz.0: File system withdrawn
[ 78.529740][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 78.537319][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 78.547406][ T4292] Call Trace:
[ 78.550720][ T4292]
[ 78.553673][ T4292] dump_stack_lvl+0x188/0x250
[ 78.558387][ T4292] ? kobject_uevent_env+0x371/0x890
[ 78.563634][ T4292] ? show_regs_print_info+0x20/0x20
[ 78.568863][ T4292] ? load_image+0x400/0x400
[ 78.573401][ T4292] ? kobject_uevent_env+0x371/0x890
[ 78.578632][ T4292] ? lockref_put_or_lock+0x6e/0xb0
[ 78.583816][ T4292] gfs2_withdraw+0x1149/0x1490
[ 78.588624][ T4292] ? gfs2_lm+0x240/0x240
[ 78.592887][ T4292] ? __schedule+0x11f7/0x43c0
[ 78.597780][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 78.603027][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 78.608274][ T4292] ? do_promote+0x71a/0xab0
[ 78.612807][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 78.617947][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 78.623007][ T4292] inode_go_lock+0x127/0x470
[ 78.627638][ T4292] do_promote+0x741/0xab0
[ 78.632002][ T4292] finish_xmote+0x4df/0xb00
[ 78.636551][ T4292] do_xmote+0x7b6/0x1120
[ 78.640837][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 78.645648][ T4292] do_sync+0x4ab/0xc40
[ 78.649753][ T4292] ? slot_put+0x1e0/0x1e0
[ 78.654112][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 78.659162][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 78.664218][ T4292] ? do_sync+0x4a3/0xc40
[ 78.668483][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 78.673710][ T4292] gfs2_quota_sync+0x32c/0x700
[ 78.678534][ T4292] gfs2_sync_fs+0x48/0xb0
[ 78.682887][ T4292] sync_filesystem+0xe6/0x220
[ 78.687585][ T4292] generic_shutdown_super+0x6b/0x300
[ 78.692899][ T4292] kill_block_super+0x7c/0xe0
[ 78.697601][ T4292] deactivate_locked_super+0x93/0xf0
[ 78.702918][ T4292] cleanup_mnt+0x42d/0x4e0
[ 78.707377][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 78.712616][ T4292] task_work_run+0x125/0x1a0
[ 78.717245][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 78.722638][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 78.728219][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 78.733709][ T4292] do_syscall_64+0x58/0xa0
[ 78.738152][ T4292] ? clear_bhb_loop+0x30/0x80
[ 78.742849][ T4292] ? clear_bhb_loop+0x30/0x80
[ 78.747566][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 78.753472][ T4292] RIP: 0033:0x7f340bc07117
[ 78.757926][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 78.777551][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 78.785989][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 78.793992][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 78.802071][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 78.810069][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 78.818058][ T4292] R13: 00007f340bc6f71f R14: 00000000000130c6 R15: 00007ffe10b51990
[ 78.826072][ T4292]
[ 79.287834][ T4323] loop0: detected capacity change from 0 to 32768
[ 79.341725][ T4323] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 79.351965][ T4323] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 79.364359][ T4323] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 79.373490][ T4201] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 79.380902][ T4201] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 79.416162][ T4201] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 35ms
[ 79.426026][ T4201] gfs2: fsid=syz:syz.0: jid=0: Done
[ 79.432108][ T4323] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 79.518959][ T4323] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 79.533054][ T4292] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[ 79.533054][ T4292] inode = 11 2339
[ 79.533054][ T4292] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[ 79.552178][ T4292] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 79.567171][ T4292] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[ 79.587045][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 79.594657][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 79.604748][ T4292] Call Trace:
[ 79.608054][ T4292]
[ 79.611009][ T4292] dump_stack_lvl+0x188/0x250
[ 79.615732][ T4292] ? show_regs_print_info+0x20/0x20
[ 79.620965][ T4292] ? load_image+0x400/0x400
[ 79.625549][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 79.630784][ T4292] gfs2_assert_warn_i+0x18f/0x2c0
[ 79.635890][ T4292] gfs2_quota_cleanup+0x4b4/0x6a0
[ 79.640962][ T4292] gfs2_make_fs_ro+0x440/0x620
[ 79.645762][ T4292] ? __might_sleep+0xf0/0xf0
[ 79.650381][ T4292] ? gfs2_dinode_out+0xb00/0xb00
[ 79.655341][ T4292] ? _raw_spin_unlock+0x24/0x40
[ 79.660225][ T4292] ? gfs2_glock_nq+0xcb0/0x1550
[ 79.665139][ T4292] gfs2_withdraw+0x610/0x1490
[ 79.669861][ T4292] ? gfs2_lm+0x240/0x240
[ 79.674140][ T4292] ? __schedule+0x11f7/0x43c0
[ 79.678852][ T4292] ? gfs2_freeze_lock+0x52/0xc0
[ 79.683727][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 79.688961][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 79.693992][ T4292] ? do_promote+0x71a/0xab0
[ 79.698523][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 79.703656][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 79.708686][ T4292] inode_go_lock+0x127/0x470
[ 79.713281][ T4292] do_promote+0x741/0xab0
[ 79.717614][ T4292] finish_xmote+0x4df/0xb00
[ 79.722120][ T4292] do_xmote+0x7b6/0x1120
[ 79.726386][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 79.731209][ T4292] do_sync+0x4ab/0xc40
[ 79.735315][ T4292] ? slot_put+0x1e0/0x1e0
[ 79.739655][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 79.744732][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 79.749750][ T4292] ? do_sync+0x4a3/0xc40
[ 79.753987][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 79.759186][ T4292] gfs2_quota_sync+0x32c/0x700
[ 79.763979][ T4292] gfs2_sync_fs+0x48/0xb0
[ 79.768318][ T4292] sync_filesystem+0xe6/0x220
[ 79.773012][ T4292] generic_shutdown_super+0x6b/0x300
[ 79.778315][ T4292] kill_block_super+0x7c/0xe0
[ 79.783010][ T4292] deactivate_locked_super+0x93/0xf0
[ 79.788301][ T4292] cleanup_mnt+0x42d/0x4e0
[ 79.792739][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 79.797951][ T4292] task_work_run+0x125/0x1a0
[ 79.802546][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 79.807925][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 79.813576][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 79.819049][ T4292] do_syscall_64+0x58/0xa0
[ 79.823484][ T4292] ? clear_bhb_loop+0x30/0x80
[ 79.828166][ T4292] ? clear_bhb_loop+0x30/0x80
[ 79.832842][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 79.838741][ T4292] RIP: 0033:0x7f340bc07117
[ 79.843186][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 79.862944][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 79.871369][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 79.879345][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 79.887330][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 79.895302][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 79.903280][ T4292] R13: 00007f340bc6f71f R14: 000000000001346f R15: 00007ffe10b51990
[ 79.911311][ T4292]
[ 79.917696][ T4292] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[ 79.926556][ T4292] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[ 79.933570][ T4292] gfs2: fsid=syz:syz.0: File system withdrawn
[ 79.939824][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 79.947387][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 79.957455][ T4292] Call Trace:
[ 79.960743][ T4292]
[ 79.963695][ T4292] dump_stack_lvl+0x188/0x250
[ 79.968390][ T4292] ? kobject_uevent_env+0x371/0x890
[ 79.973635][ T4292] ? show_regs_print_info+0x20/0x20
[ 79.978840][ T4292] ? load_image+0x400/0x400
[ 79.983361][ T4292] ? kobject_uevent_env+0x371/0x890
[ 79.988564][ T4292] ? lockref_put_or_lock+0x6e/0xb0
[ 79.993685][ T4292] gfs2_withdraw+0x1149/0x1490
[ 79.998465][ T4292] ? gfs2_lm+0x240/0x240
[ 80.002718][ T4292] ? __schedule+0x11f7/0x43c0
[ 80.007407][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 80.012608][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 80.017639][ T4292] ? do_promote+0x71a/0xab0
[ 80.022142][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 80.027272][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 80.032412][ T4292] inode_go_lock+0x127/0x470
[ 80.037017][ T4292] do_promote+0x741/0xab0
[ 80.041367][ T4292] finish_xmote+0x4df/0xb00
[ 80.045895][ T4292] do_xmote+0x7b6/0x1120
[ 80.050150][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 80.054843][ T4292] do_sync+0x4ab/0xc40
[ 80.058934][ T4292] ? slot_put+0x1e0/0x1e0
[ 80.063285][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 80.068322][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 80.073366][ T4292] ? do_sync+0x4a3/0xc40
[ 80.077620][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 80.082990][ T4292] gfs2_quota_sync+0x32c/0x700
[ 80.087789][ T4292] gfs2_sync_fs+0x48/0xb0
[ 80.092254][ T4292] sync_filesystem+0xe6/0x220
[ 80.096940][ T4292] generic_shutdown_super+0x6b/0x300
[ 80.102265][ T4292] kill_block_super+0x7c/0xe0
[ 80.106944][ T4292] deactivate_locked_super+0x93/0xf0
[ 80.112236][ T4292] cleanup_mnt+0x42d/0x4e0
[ 80.116659][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 80.121862][ T4292] task_work_run+0x125/0x1a0
[ 80.126459][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 80.131837][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 80.137561][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 80.143032][ T4292] do_syscall_64+0x58/0xa0
[ 80.147462][ T4292] ? clear_bhb_loop+0x30/0x80
[ 80.152336][ T4292] ? clear_bhb_loop+0x30/0x80
[ 80.157032][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 80.162932][ T4292] RIP: 0033:0x7f340bc07117
[ 80.167345][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 80.186955][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 80.195384][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 80.203360][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 80.211331][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 80.219310][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 80.227293][ T4292] R13: 00007f340bc6f71f R14: 000000000001346f R15: 00007ffe10b51990
[ 80.235274][ T4292]
[ 80.548436][ T4201] Bluetooth: hci0: command 0x0419 tx timeout
[ 80.574876][ T4326] loop0: detected capacity change from 0 to 32768
[ 80.586175][ T4326] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 80.596492][ T4326] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 80.608174][ T4326] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 80.617952][ T4201] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 80.625303][ T4201] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 80.659785][ T4201] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 34ms
[ 80.668836][ T4201] gfs2: fsid=syz:syz.0: jid=0: Done
[ 80.674465][ T4326] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 80.759696][ T4326] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 80.781396][ T4292] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[ 80.781396][ T4292] inode = 11 2339
[ 80.781396][ T4292] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[ 80.800346][ T4292] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 80.816065][ T4292] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[ 80.835230][ T4292] CPU: 1 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 80.842980][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 80.853093][ T4292] Call Trace:
[ 80.856488][ T4292]
[ 80.859440][ T4292] dump_stack_lvl+0x188/0x250
[ 80.864154][ T4292] ? show_regs_print_info+0x20/0x20
[ 80.869387][ T4292] ? load_image+0x400/0x400
[ 80.873929][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 80.879161][ T4292] gfs2_assert_warn_i+0x18f/0x2c0
[ 80.884222][ T4292] gfs2_quota_cleanup+0x4b4/0x6a0
[ 80.889287][ T4292] gfs2_make_fs_ro+0x440/0x620
[ 80.894075][ T4292] ? __might_sleep+0xf0/0xf0
[ 80.898680][ T4292] ? gfs2_dinode_out+0xb00/0xb00
[ 80.903635][ T4292] ? _raw_spin_unlock+0x24/0x40
[ 80.908584][ T4292] ? gfs2_glock_nq+0xcb0/0x1550
[ 80.913463][ T4292] gfs2_withdraw+0x610/0x1490
[ 80.918295][ T4292] ? gfs2_lm+0x240/0x240
[ 80.922573][ T4292] ? __schedule+0x11f7/0x43c0
[ 80.927277][ T4292] ? gfs2_freeze_lock+0x52/0xc0
[ 80.932135][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 80.937359][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 80.942401][ T4292] ? do_promote+0x71a/0xab0
[ 80.946994][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 80.952111][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 80.957145][ T4292] inode_go_lock+0x127/0x470
[ 80.961741][ T4292] do_promote+0x741/0xab0
[ 80.966083][ T4292] finish_xmote+0x4df/0xb00
[ 80.970599][ T4292] do_xmote+0x7b6/0x1120
[ 80.974853][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 80.979560][ T4292] do_sync+0x4ab/0xc40
[ 80.983752][ T4292] ? slot_put+0x1e0/0x1e0
[ 80.988092][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 80.993123][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 80.998164][ T4292] ? do_sync+0x4a3/0xc40
[ 81.002423][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 81.007632][ T4292] gfs2_quota_sync+0x32c/0x700
[ 81.012404][ T4292] gfs2_sync_fs+0x48/0xb0
[ 81.016772][ T4292] sync_filesystem+0xe6/0x220
[ 81.021454][ T4292] generic_shutdown_super+0x6b/0x300
[ 81.026743][ T4292] kill_block_super+0x7c/0xe0
[ 81.031439][ T4292] deactivate_locked_super+0x93/0xf0
[ 81.036736][ T4292] cleanup_mnt+0x42d/0x4e0
[ 81.041160][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 81.046390][ T4292] task_work_run+0x125/0x1a0
[ 81.050986][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 81.056355][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 81.061915][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 81.067379][ T4292] do_syscall_64+0x58/0xa0
[ 81.071792][ T4292] ? clear_bhb_loop+0x30/0x80
[ 81.076593][ T4292] ? clear_bhb_loop+0x30/0x80
[ 81.081396][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 81.087326][ T4292] RIP: 0033:0x7f340bc07117
[ 81.091750][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 81.111615][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 81.120064][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 81.128051][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 81.136026][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 81.144003][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 81.152091][ T4292] R13: 00007f340bc6f71f R14: 00000000000139c5 R15: 00007ffe10b51990
[ 81.160079][ T4292]
[ 81.166910][ T4292] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[ 81.175903][ T4292] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[ 81.182972][ T4292] gfs2: fsid=syz:syz.0: File system withdrawn
[ 81.189137][ T4292] CPU: 1 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 81.196703][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 81.206762][ T4292] Call Trace:
[ 81.210037][ T4292]
[ 81.212967][ T4292] dump_stack_lvl+0x188/0x250
[ 81.217660][ T4292] ? kobject_uevent_env+0x371/0x890
[ 81.222858][ T4292] ? show_regs_print_info+0x20/0x20
[ 81.228056][ T4292] ? load_image+0x400/0x400
[ 81.232560][ T4292] ? kobject_uevent_env+0x371/0x890
[ 81.237755][ T4292] ? lockref_put_or_lock+0x6e/0xb0
[ 81.242866][ T4292] gfs2_withdraw+0x1149/0x1490
[ 81.247634][ T4292] ? gfs2_lm+0x240/0x240
[ 81.251870][ T4292] ? __schedule+0x11f7/0x43c0
[ 81.256583][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 81.261807][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 81.266835][ T4292] ? do_promote+0x71a/0xab0
[ 81.271340][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 81.276487][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 81.281550][ T4292] inode_go_lock+0x127/0x470
[ 81.286165][ T4292] do_promote+0x741/0xab0
[ 81.290509][ T4292] finish_xmote+0x4df/0xb00
[ 81.295022][ T4292] do_xmote+0x7b6/0x1120
[ 81.299288][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 81.303996][ T4292] do_sync+0x4ab/0xc40
[ 81.308199][ T4292] ? slot_put+0x1e0/0x1e0
[ 81.312540][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 81.317573][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 81.322594][ T4292] ? do_sync+0x4a3/0xc40
[ 81.326839][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 81.332035][ T4292] gfs2_quota_sync+0x32c/0x700
[ 81.336807][ T4292] gfs2_sync_fs+0x48/0xb0
[ 81.341140][ T4292] sync_filesystem+0xe6/0x220
[ 81.345848][ T4292] generic_shutdown_super+0x6b/0x300
[ 81.351150][ T4292] kill_block_super+0x7c/0xe0
[ 81.355825][ T4292] deactivate_locked_super+0x93/0xf0
[ 81.361115][ T4292] cleanup_mnt+0x42d/0x4e0
[ 81.365562][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 81.370767][ T4292] task_work_run+0x125/0x1a0
[ 81.375364][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 81.380742][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 81.386317][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 81.391776][ T4292] do_syscall_64+0x58/0xa0
[ 81.396194][ T4292] ? clear_bhb_loop+0x30/0x80
[ 81.400891][ T4292] ? clear_bhb_loop+0x30/0x80
[ 81.405585][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 81.411477][ T4292] RIP: 0033:0x7f340bc07117
[ 81.415898][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 81.435546][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 81.443961][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 81.451931][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 81.459905][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 81.467887][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 81.475945][ T4292] R13: 00007f340bc6f71f R14: 00000000000139c5 R15: 00007ffe10b51990
[ 81.483931][ T4292]
[ 81.965110][ T4329] loop0: detected capacity change from 0 to 32768
[ 81.996625][ T4329] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 82.005846][ T4329] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 82.019945][ T4329] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 82.030673][ T4252] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 82.037479][ T4252] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 82.072188][ T4252] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 34ms
[ 82.081049][ T4252] gfs2: fsid=syz:syz.0: jid=0: Done
[ 82.086755][ T4329] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 82.234455][ T4329] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 82.270354][ T4292] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[ 82.270354][ T4292] inode = 11 2339
[ 82.270354][ T4292] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[ 82.292635][ T4292] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 82.318957][ T4292] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[ 82.333377][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 82.340961][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 82.351305][ T4292] Call Trace:
[ 82.354614][ T4292]
[ 82.357565][ T4292] dump_stack_lvl+0x188/0x250
[ 82.362280][ T4292] ? show_regs_print_info+0x20/0x20
[ 82.367513][ T4292] ? load_image+0x400/0x400
[ 82.372054][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 82.377288][ T4292] gfs2_assert_warn_i+0x18f/0x2c0
[ 82.382352][ T4292] gfs2_quota_cleanup+0x4b4/0x6a0
[ 82.387415][ T4292] gfs2_make_fs_ro+0x440/0x620
[ 82.392209][ T4292] ? __might_sleep+0xf0/0xf0
[ 82.396842][ T4292] ? gfs2_dinode_out+0xb00/0xb00
[ 82.401816][ T4292] ? _raw_spin_unlock+0x24/0x40
[ 82.406710][ T4292] ? gfs2_glock_nq+0xcb0/0x1550
[ 82.411608][ T4292] gfs2_withdraw+0x610/0x1490
[ 82.416331][ T4292] ? gfs2_lm+0x240/0x240
[ 82.420600][ T4292] ? __schedule+0x11f7/0x43c0
[ 82.425309][ T4292] ? gfs2_freeze_lock+0x52/0xc0
[ 82.430228][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 82.435466][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 82.440525][ T4292] ? do_promote+0x71a/0xab0
[ 82.445084][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 82.450228][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 82.455297][ T4292] inode_go_lock+0x127/0x470
[ 82.459920][ T4292] do_promote+0x741/0xab0
[ 82.464291][ T4292] finish_xmote+0x4df/0xb00
[ 82.468829][ T4292] do_xmote+0x7b6/0x1120
[ 82.473111][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 82.477834][ T4292] do_sync+0x4ab/0xc40
[ 82.481940][ T4292] ? slot_put+0x1e0/0x1e0
[ 82.486298][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 82.491355][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 82.496413][ T4292] ? do_sync+0x4a3/0xc40
[ 82.500682][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 82.505946][ T4292] gfs2_quota_sync+0x32c/0x700
[ 82.510754][ T4292] gfs2_sync_fs+0x48/0xb0
[ 82.515110][ T4292] sync_filesystem+0xe6/0x220
[ 82.519818][ T4292] generic_shutdown_super+0x6b/0x300
[ 82.525134][ T4292] kill_block_super+0x7c/0xe0
[ 82.529842][ T4292] deactivate_locked_super+0x93/0xf0
[ 82.535158][ T4292] cleanup_mnt+0x42d/0x4e0
[ 82.539610][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 82.544837][ T4292] task_work_run+0x125/0x1a0
[ 82.549467][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 82.554869][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 82.560481][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 82.565972][ T4292] do_syscall_64+0x58/0xa0
[ 82.570415][ T4292] ? clear_bhb_loop+0x30/0x80
[ 82.575120][ T4292] ? clear_bhb_loop+0x30/0x80
[ 82.579829][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 82.585754][ T4292] RIP: 0033:0x7f340bc07117
[ 82.590196][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 82.609855][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 82.618298][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 82.626288][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 82.634306][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 82.642298][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 82.650292][ T4292] R13: 00007f340bc6f71f R14: 0000000000013ecf R15: 00007ffe10b51990
[ 82.658314][ T4292]
[ 82.668786][ T4292] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[ 82.677609][ T4292] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[ 82.686236][ T4292] gfs2: fsid=syz:syz.0: File system withdrawn
[ 82.693341][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 82.700958][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 82.711049][ T4292] Call Trace:
[ 82.714364][ T4292]
[ 82.717334][ T4292] dump_stack_lvl+0x188/0x250
[ 82.722057][ T4292] ? kobject_uevent_env+0x371/0x890
[ 82.727306][ T4292] ? show_regs_print_info+0x20/0x20
[ 82.732531][ T4292] ? load_image+0x400/0x400
[ 82.737063][ T4292] ? kobject_uevent_env+0x371/0x890
[ 82.742288][ T4292] ? lockref_put_or_lock+0x6e/0xb0
[ 82.747433][ T4292] gfs2_withdraw+0x1149/0x1490
[ 82.752240][ T4292] ? gfs2_lm+0x240/0x240
[ 82.756508][ T4292] ? __schedule+0x11f7/0x43c0
[ 82.761214][ T4292] ? gfs2_consist_inode_i+0xc0/0xe0
[ 82.766454][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 82.771526][ T4292] ? do_promote+0x71a/0xab0
[ 82.776061][ T4292] ? gfs2_inode_metasync+0xf0/0xf0
[ 82.781205][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 82.786278][ T4292] inode_go_lock+0x127/0x470
[ 82.790906][ T4292] do_promote+0x741/0xab0
[ 82.795294][ T4292] finish_xmote+0x4df/0xb00
[ 82.799836][ T4292] do_xmote+0x7b6/0x1120
[ 82.804117][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 82.808838][ T4292] do_sync+0x4ab/0xc40
[ 82.812946][ T4292] ? slot_put+0x1e0/0x1e0
[ 82.817307][ T4292] ? __lock_acquire+0x7d10/0x7d10
[ 82.822374][ T4292] ? do_raw_spin_lock+0x128/0x2f0
[ 82.827440][ T4292] ? do_sync+0x4a3/0xc40
[ 82.831711][ T4292] ? do_raw_spin_unlock+0x11d/0x230
[ 82.836952][ T4292] gfs2_quota_sync+0x32c/0x700
[ 82.841759][ T4292] gfs2_sync_fs+0x48/0xb0
[ 82.846118][ T4292] sync_filesystem+0xe6/0x220
[ 82.850829][ T4292] generic_shutdown_super+0x6b/0x300
[ 82.856149][ T4292] kill_block_super+0x7c/0xe0
[ 82.860867][ T4292] deactivate_locked_super+0x93/0xf0
[ 82.866184][ T4292] cleanup_mnt+0x42d/0x4e0
[ 82.870650][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 82.875875][ T4292] task_work_run+0x125/0x1a0
[ 82.880495][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 82.885897][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 82.891487][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 82.897169][ T4292] do_syscall_64+0x58/0xa0
[ 82.901735][ T4292] ? clear_bhb_loop+0x30/0x80
[ 82.906448][ T4292] ? clear_bhb_loop+0x30/0x80
[ 82.911159][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 82.917094][ T4292] RIP: 0033:0x7f340bc07117
[ 82.921538][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 82.941167][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 82.949618][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 82.957621][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 82.965616][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 82.973612][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 82.981601][ T4292] R13: 00007f340bc6f71f R14: 0000000000013ecf R15: 00007ffe10b51990
[ 82.989610][ T4292]
[ 83.002747][ T4292] ==================================================================
[ 83.011044][ T4292] BUG: KASAN: use-after-free in qd_unlock+0x30/0x2d0
[ 83.017729][ T4292] Read of size 8 at addr ffff888029cff1e0 by task syz-executor/4292
[ 83.025696][ T4292]
[ 83.028022][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Not tainted syzkaller #0
[ 83.035558][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 83.045608][ T4292] Call Trace:
[ 83.048888][ T4292]
[ 83.051840][ T4292] dump_stack_lvl+0x188/0x250
[ 83.056552][ T4292] ? show_regs_print_info+0x20/0x20
[ 83.061770][ T4292] ? _printk+0xda/0x130
[ 83.065952][ T4292] ? qd_unlock+0x30/0x2d0
[ 83.070318][ T4292] ? load_image+0x400/0x400
[ 83.074847][ T4292] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 83.080339][ T4292] print_address_description+0x60/0x2d0
[ 83.085906][ T4292] ? qd_unlock+0x30/0x2d0
[ 83.090263][ T4292] kasan_report+0xdf/0x130
[ 83.094711][ T4292] ? qd_unlock+0x30/0x2d0
[ 83.099074][ T4292] kasan_check_range+0x235/0x290
[ 83.104061][ T4292] qd_unlock+0x30/0x2d0
[ 83.108244][ T4292] gfs2_quota_sync+0x5cf/0x700
[ 83.113049][ T4292] gfs2_sync_fs+0x48/0xb0
[ 83.117431][ T4292] sync_filesystem+0xe6/0x220
[ 83.122168][ T4292] generic_shutdown_super+0x6b/0x300
[ 83.127458][ T4292] kill_block_super+0x7c/0xe0
[ 83.132160][ T4292] deactivate_locked_super+0x93/0xf0
[ 83.137446][ T4292] cleanup_mnt+0x42d/0x4e0
[ 83.141885][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 83.147085][ T4292] task_work_run+0x125/0x1a0
[ 83.151682][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 83.157061][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 83.162610][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 83.168076][ T4292] do_syscall_64+0x58/0xa0
[ 83.172491][ T4292] ? clear_bhb_loop+0x30/0x80
[ 83.177167][ T4292] ? clear_bhb_loop+0x30/0x80
[ 83.181843][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 83.187733][ T4292] RIP: 0033:0x7f340bc07117
[ 83.192144][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 83.211747][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 83.220179][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 83.228152][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 83.236125][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 83.244093][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 83.252067][ T4292] R13: 00007f340bc6f71f R14: 0000000000013ecf R15: 00007ffe10b51990
[ 83.260050][ T4292]
[ 83.263131][ T4292]
[ 83.265551][ T4292] Allocated by task 4329:
[ 83.269870][ T4292] __kasan_slab_alloc+0x9c/0xd0
[ 83.274721][ T4292] slab_post_alloc_hook+0x4c/0x380
[ 83.279826][ T4292] kmem_cache_alloc+0x100/0x290
[ 83.284673][ T4292] qd_alloc+0x50/0x260
[ 83.288739][ T4292] gfs2_quota_init+0x74e/0xea0
[ 83.293603][ T4292] gfs2_make_fs_rw+0x414/0x580
[ 83.298366][ T4292] gfs2_fill_super+0x1837/0x1f00
[ 83.303317][ T4292] get_tree_bdev+0x3f1/0x610
[ 83.307909][ T4292] gfs2_get_tree+0x4d/0x1e0
[ 83.312408][ T4292] vfs_get_tree+0x88/0x270
[ 83.316820][ T4292] do_new_mount+0x24a/0xa40
[ 83.321327][ T4292] __se_sys_mount+0x2e3/0x3d0
[ 83.326009][ T4292] do_syscall_64+0x4c/0xa0
[ 83.330422][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 83.336314][ T4292]
[ 83.338738][ T4292] Freed by task 3542:
[ 83.342715][ T4292] kasan_set_track+0x4b/0x70
[ 83.347302][ T4292] kasan_set_free_info+0x1f/0x40
[ 83.352259][ T4292] ____kasan_slab_free+0xd5/0x110
[ 83.357310][ T4292] slab_free_freelist_hook+0xea/0x170
[ 83.362682][ T4292] kmem_cache_free+0x8f/0x210
[ 83.367359][ T4292] rcu_core+0x9d2/0x1670
[ 83.371602][ T4292] handle_softirqs+0x339/0x830
[ 83.376469][ T4292] __irq_exit_rcu+0x13b/0x230
[ 83.381142][ T4292] irq_exit_rcu+0x5/0x20
[ 83.385380][ T4292] sysvec_apic_timer_interrupt+0xa0/0xc0
[ 83.391012][ T4292] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 83.396991][ T4292]
[ 83.399310][ T4292] Last potentially related work creation:
[ 83.405046][ T4292] kasan_save_stack+0x35/0x60
[ 83.409725][ T4292] kasan_record_aux_stack+0xb8/0x100
[ 83.415005][ T4292] call_rcu+0x189/0x950
[ 83.419177][ T4292] gfs2_quota_cleanup+0x43c/0x6a0
[ 83.424199][ T4292] gfs2_make_fs_ro+0x440/0x620
[ 83.428976][ T4292] gfs2_withdraw+0x610/0x1490
[ 83.433651][ T4292] gfs2_inode_refresh+0xb64/0xff0
[ 83.438672][ T4292] inode_go_lock+0x127/0x470
[ 83.443258][ T4292] do_promote+0x741/0xab0
[ 83.447585][ T4292] finish_xmote+0x4df/0xb00
[ 83.452081][ T4292] do_xmote+0x7b6/0x1120
[ 83.456319][ T4292] gfs2_glock_nq+0xc7a/0x1550
[ 83.460989][ T4292] do_sync+0x4ab/0xc40
[ 83.465059][ T4292] gfs2_quota_sync+0x32c/0x700
[ 83.469842][ T4292] gfs2_sync_fs+0x48/0xb0
[ 83.474165][ T4292] sync_filesystem+0xe6/0x220
[ 83.478840][ T4292] generic_shutdown_super+0x6b/0x300
[ 83.484120][ T4292] kill_block_super+0x7c/0xe0
[ 83.488790][ T4292] deactivate_locked_super+0x93/0xf0
[ 83.494071][ T4292] cleanup_mnt+0x42d/0x4e0
[ 83.498493][ T4292] task_work_run+0x125/0x1a0
[ 83.503096][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 83.508482][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 83.514025][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 83.519480][ T4292] do_syscall_64+0x58/0xa0
[ 83.523909][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 83.529796][ T4292]
[ 83.532110][ T4292] The buggy address belongs to the object at ffff888029cff150
[ 83.532110][ T4292] which belongs to the cache gfs2_quotad of size 272
[ 83.546167][ T4292] The buggy address is located 144 bytes inside of
[ 83.546167][ T4292] 272-byte region [ffff888029cff150, ffff888029cff260)
[ 83.559433][ T4292] The buggy address belongs to the page:
[ 83.565069][ T4292] page:ffffea0000a73fc0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29cff
[ 83.575213][ T4292] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 83.582758][ T4292] raw: 00fff00000000200 0000000000000000 dead000000000122 ffff88801e421780
[ 83.591342][ T4292] raw: 0000000000000000 00000000800c000c 00000001ffffffff 0000000000000000
[ 83.599925][ T4292] page dumped because: kasan: bad access detected
[ 83.606361][ T4292] page_owner tracks the page as allocated
[ 83.612077][ T4292] page last allocated via order 0, migratetype Reclaimable, gfp_mask 0x112c50(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 4326, ts 80750924069, free_ts 79071009316
[ 83.631090][ T4292] get_page_from_freelist+0x1bbd/0x1ca0
[ 83.636636][ T4292] __alloc_pages+0x1ee/0x480
[ 83.641225][ T4292] new_slab+0xc0/0x4b0
[ 83.645293][ T4292] ___slab_alloc+0x80a/0xdd0
[ 83.649913][ T4292] kmem_cache_alloc+0x195/0x290
[ 83.654788][ T4292] qd_alloc+0x50/0x260
[ 83.658856][ T4292] gfs2_quota_init+0x74e/0xea0
[ 83.663619][ T4292] gfs2_make_fs_rw+0x414/0x580
[ 83.668376][ T4292] gfs2_fill_super+0x1837/0x1f00
[ 83.673308][ T4292] get_tree_bdev+0x3f1/0x610
[ 83.677893][ T4292] gfs2_get_tree+0x4d/0x1e0
[ 83.682412][ T4292] vfs_get_tree+0x88/0x270
[ 83.686821][ T4292] do_new_mount+0x24a/0xa40
[ 83.691321][ T4292] __se_sys_mount+0x2e3/0x3d0
[ 83.695993][ T4292] do_syscall_64+0x4c/0xa0
[ 83.700406][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 83.706322][ T4292] page last free stack trace:
[ 83.710987][ T4292] free_unref_page_prepare+0x637/0x6c0
[ 83.716446][ T4292] free_unref_page+0x8f/0x2a0
[ 83.721122][ T4292] __unfreeze_partials+0x1a5/0x200
[ 83.726229][ T4292] put_cpu_partial+0x12d/0x190
[ 83.731003][ T4292] qlist_free_all+0x35/0x90
[ 83.735517][ T4292] kasan_quarantine_reduce+0x150/0x160
[ 83.740972][ T4292] __kasan_slab_alloc+0x2f/0xd0
[ 83.745818][ T4292] slab_post_alloc_hook+0x4c/0x380
[ 83.750940][ T4292] kmem_cache_alloc+0x100/0x290
[ 83.755830][ T4292] ptlock_alloc+0x1c/0x60
[ 83.760157][ T4292] pte_alloc_one+0xc0/0x310
[ 83.764649][ T4292] __pte_alloc+0x21/0x150
[ 83.768972][ T4292] handle_mm_fault+0x39b6/0x4410
[ 83.773900][ T4292] do_user_addr_fault+0x489/0xc80
[ 83.778928][ T4292] exc_page_fault+0x60/0x100
[ 83.783512][ T4292] asm_exc_page_fault+0x22/0x30
[ 83.788354][ T4292]
[ 83.790671][ T4292] Memory state around the buggy address:
[ 83.796293][ T4292] ffff888029cff080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 83.804343][ T4292] ffff888029cff100: fb fb fc fc fc fc fc fc fc fc fa fb fb fb fb fb
[ 83.812428][ T4292] >ffff888029cff180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 83.820485][ T4292] ^
[ 83.827688][ T4292] ffff888029cff200: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 83.835739][ T4292] ffff888029cff280: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 83.843793][ T4292] ==================================================================
[ 83.851851][ T4292] Disabling lock debugging due to kernel taint
[ 83.860431][ T4292] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 83.867758][ T4292] CPU: 0 PID: 4292 Comm: syz-executor Tainted: G B syzkaller #0
[ 83.876717][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 83.886800][ T4292] Call Trace:
[ 83.890098][ T4292]
[ 83.893049][ T4292] dump_stack_lvl+0x188/0x250
[ 83.897727][ T4292] ? show_regs_print_info+0x20/0x20
[ 83.902926][ T4292] ? load_image+0x400/0x400
[ 83.907427][ T4292] panic+0x2e5/0x810
[ 83.911321][ T4292] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 83.917476][ T4292] ? bpf_jit_dump+0xd0/0xd0
[ 83.921976][ T4292] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 83.927985][ T4292] ? _raw_spin_unlock+0x40/0x40
[ 83.932835][ T4292] ? qd_unlock+0x30/0x2d0
[ 83.937166][ T4292] check_panic_on_warn+0x80/0xa0
[ 83.942103][ T4292] ? qd_unlock+0x30/0x2d0
[ 83.946429][ T4292] end_report+0x6d/0xf0
[ 83.950576][ T4292] kasan_report+0x102/0x130
[ 83.955078][ T4292] ? qd_unlock+0x30/0x2d0
[ 83.959414][ T4292] kasan_check_range+0x235/0x290
[ 83.964367][ T4292] qd_unlock+0x30/0x2d0
[ 83.968517][ T4292] gfs2_quota_sync+0x5cf/0x700
[ 83.973292][ T4292] gfs2_sync_fs+0x48/0xb0
[ 83.977620][ T4292] sync_filesystem+0xe6/0x220
[ 83.982312][ T4292] generic_shutdown_super+0x6b/0x300
[ 83.987597][ T4292] kill_block_super+0x7c/0xe0
[ 83.992271][ T4292] deactivate_locked_super+0x93/0xf0
[ 83.997550][ T4292] cleanup_mnt+0x42d/0x4e0
[ 84.001962][ T4292] ? lockdep_hardirqs_on+0x94/0x140
[ 84.007177][ T4292] task_work_run+0x125/0x1a0
[ 84.011771][ T4292] exit_to_user_mode_loop+0x10f/0x130
[ 84.017138][ T4292] exit_to_user_mode_prepare+0xee/0x180
[ 84.022699][ T4292] syscall_exit_to_user_mode+0x16/0x40
[ 84.028159][ T4292] do_syscall_64+0x58/0xa0
[ 84.032587][ T4292] ? clear_bhb_loop+0x30/0x80
[ 84.037263][ T4292] ? clear_bhb_loop+0x30/0x80
[ 84.041934][ T4292] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 84.047829][ T4292] RIP: 0033:0x7f340bc07117
[ 84.052242][ T4292] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 84.071844][ T4292] RSP: 002b:00007ffe10b50808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 84.080259][ T4292] RAX: 0000000000000000 RBX: 00007f340bc6f71f RCX: 00007f340bc07117
[ 84.088221][ T4292] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe10b508c0
[ 84.096197][ T4292] RBP: 00007ffe10b508c0 R08: 00007ffe10b518c0 R09: 00000000ffffffff
[ 84.104176][ T4292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe10b51950
[ 84.112164][ T4292] R13: 00007f340bc6f71f R14: 0000000000013ecf R15: 00007ffe10b51990
[ 84.120160][ T4292]
[ 84.123539][ T4292] Kernel Offset: disabled
[ 84.127884][ T4292] Rebooting in 86400 seconds..