Warning: Permanently added '10.128.0.53' (ED25519) to the list of known hosts. 2026/04/15 08:05:27 parsed 1 programs [ 86.948072][ T5832] cgroup: Unknown subsys name 'net' [ 87.187436][ T5832] cgroup: Unknown subsys name 'cpuset' [ 87.232427][ T5832] cgroup: Unknown subsys name 'rlimit' [ 87.368771][ T9] cfg80211: failed to load regulatory.db Setting up swapspace version 1, size = 127995904 bytes [ 88.937980][ T5832] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 93.226102][ T5148] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 93.247186][ T5148] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 93.247922][ T5148] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 93.249151][ T5148] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 93.249850][ T5148] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 95.412590][ T5892] chnl_net:caif_netlink_parms(): no params data found [ 95.518201][ T5892] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.519732][ T5892] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.519863][ T5892] bridge_slave_0: entered allmulticast mode [ 95.521446][ T5892] bridge_slave_0: entered promiscuous mode [ 95.538859][ T5892] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.538984][ T5892] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.539491][ T5892] bridge_slave_1: entered allmulticast mode [ 95.541746][ T5892] bridge_slave_1: entered promiscuous mode [ 95.602254][ T5892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.604640][ T5892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.639205][ T5892] team0: Port device team_slave_0 added [ 95.641152][ T5892] team0: Port device team_slave_1 added [ 95.676290][ T5892] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 95.676302][ T5892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 95.676316][ T5892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 95.678545][ T5892] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 95.678560][ T5892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 95.678580][ T5892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 95.784775][ T5892] hsr_slave_0: entered promiscuous mode [ 95.785702][ T5892] hsr_slave_1: entered promiscuous mode [ 96.424289][ T5892] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 96.459312][ T5892] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 96.460042][ T5892] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 96.478321][ T5892] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 96.479206][ T5892] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 96.519481][ T5892] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 96.534843][ T5892] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 96.576991][ T5892] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 96.680408][ T5892] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.716682][ T5892] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.738162][ T3771] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.739648][ T3771] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.777905][ T3488] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.778103][ T3488] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.995687][ T5892] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 97.064329][ T5892] veth0_vlan: entered promiscuous mode [ 97.071677][ T5892] veth1_vlan: entered promiscuous mode [ 97.128951][ T5892] veth0_macvtap: entered promiscuous mode [ 97.144512][ T5892] veth1_macvtap: entered promiscuous mode [ 97.163620][ T5892] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.192646][ T5892] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.210202][ T58] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.246510][ T58] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.250646][ T58] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.251008][ T58] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.137130][ T3488] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.561721][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.561744][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.697326][ T4584] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.697347][ T4584] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.044935][ T3488] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.256499][ T3488] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2026/04/15 08:05:43 executed programs: 0 [ 100.721763][ T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 100.745848][ T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 100.748109][ T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 100.749937][ T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 100.751083][ T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 100.884141][ T3488] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.128208][ T5944] chnl_net:caif_netlink_parms(): no params data found [ 101.304382][ T3488] bridge_slave_1: left allmulticast mode [ 101.304560][ T3488] bridge_slave_1: left promiscuous mode [ 101.309229][ T3488] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.423176][ T3488] bridge_slave_0: left allmulticast mode [ 101.423198][ T3488] bridge_slave_0: left promiscuous mode [ 101.423360][ T3488] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.212679][ T3488] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 102.292651][ T3488] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 102.313941][ T3488] bond0 (unregistering): Released all slaves [ 102.356112][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.356183][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.356321][ T5944] bridge_slave_0: entered allmulticast mode [ 102.357765][ T5944] bridge_slave_0: entered promiscuous mode [ 102.363607][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.363715][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.363919][ T5944] bridge_slave_1: entered allmulticast mode [ 102.367074][ T5944] bridge_slave_1: entered promiscuous mode [ 102.457702][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.461175][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.515273][ T5944] team0: Port device team_slave_0 added [ 102.519657][ T5944] team0: Port device team_slave_1 added [ 102.702048][ T3488] hsr_slave_0: left promiscuous mode [ 102.742094][ T3488] hsr_slave_1: left promiscuous mode [ 102.743109][ T3488] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 102.743157][ T3488] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 102.783492][ T3488] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 102.783515][ T3488] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 102.804619][ T5148] Bluetooth: hci0: command tx timeout [ 102.865281][ T3488] veth1_macvtap: left promiscuous mode [ 102.865436][ T3488] veth0_macvtap: left promiscuous mode [ 102.867247][ T3488] veth1_vlan: left promiscuous mode [ 102.867635][ T3488] veth0_vlan: left promiscuous mode [ 103.493364][ T3488] team0 (unregistering): Port device team_slave_1 removed [ 103.536069][ T3488] team0 (unregistering): Port device team_slave_0 removed [ 103.704395][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.704407][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 103.704421][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.895127][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.895145][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 103.895169][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 104.030687][ T5944] hsr_slave_0: entered promiscuous mode [ 104.038156][ T5944] hsr_slave_1: entered promiscuous mode [ 104.304158][ T5493] 8021q: adding VLAN 0 to HW filter on device eth1 [ 104.882756][ T5148] Bluetooth: hci0: command tx timeout [ 106.095768][ T5944] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.125846][ T5944] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 106.126523][ T5944] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.167270][ T5944] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 106.167967][ T5944] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.207325][ T5944] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 106.208055][ T5944] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.248410][ T5944] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 106.365689][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.382673][ T5944] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.401066][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.401187][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.453087][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.453265][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.690507][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.751428][ T5944] veth0_vlan: entered promiscuous mode [ 106.765826][ T5944] veth1_vlan: entered promiscuous mode [ 106.820636][ T5944] veth0_macvtap: entered promiscuous mode [ 106.859695][ T5944] veth1_macvtap: entered promiscuous mode [ 106.886921][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.913235][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.919638][ T1123] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.941516][ T1123] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.956596][ T1123] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.957138][ T1123] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.986348][ T5148] Bluetooth: hci0: command tx timeout [ 107.961751][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.961771][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.284929][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.284950][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2026/04/15 08:05:51 executed programs: 2 [ 108.835243][ T6017] loop0: detected capacity change from 0 to 32768 [ 108.954288][ T6017] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 108.954309][ T6017] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 109.053805][ T5148] Bluetooth: hci0: command tx timeout [ 109.149356][ T6017] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 109.166533][ T5909] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 109.166548][ T5909] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 109.230800][ T5909] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 64ms [ 109.244831][ T5909] gfs2: fsid=syz:syz.0: jid=0: Done [ 109.253657][ T6017] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 109.344232][ T6017] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 109.344249][ T6017] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6017, name: syz.0.17 [ 109.344258][ T6017] preempt_count: 1, expected: 0 [ 109.344263][ T6017] RCU nest depth: 1, expected: 1 [ 109.344279][ T6017] 4 locks held by syz.0.17/6017: [ 109.344285][ T6017] #0: ffff888035b200d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 109.344329][ T6017] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 109.344355][ T6017] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 109.344382][ T6017] #3: ffff88805d082b78 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 109.344415][ T6017] Preemption disabled at: [ 109.344417][ T6017] [] spin_lock_bucket+0x3b/0x150 [ 109.344448][ T6017] CPU: 1 UID: 0 PID: 6017 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 109.344459][ T6017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 109.344471][ T6017] Call Trace: [ 109.344477][ T6017] [ 109.344483][ T6017] dump_stack_lvl+0xe8/0x150 [ 109.344496][ T6017] __might_resched+0x329/0x480 [ 109.344508][ T6017] ? spin_lock_bucket+0x3b/0x150 [ 109.344521][ T6017] rt_spin_lock+0xc2/0x400 [ 109.344534][ T6017] ? __pfx_rt_spin_lock+0x10/0x10 [ 109.344546][ T6017] ? preempt_count_add+0x91/0x190 [ 109.344557][ T6017] ? rt_spin_lock+0x2ce/0x400 [ 109.344571][ T6017] lockref_get_not_dead+0x28/0xd0 [ 109.344587][ T6017] gfs2_qd_search_bucket+0x139/0x210 [ 109.344601][ T6017] gfs2_quota_init+0x86c/0x1220 [ 109.344611][ T6017] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 109.344658][ T6017] ? __pfx_gfs2_quota_init+0x10/0x10 [ 109.344676][ T6017] ? __pfx_wake_up_bit+0x10/0x10 [ 109.344687][ T6017] ? rt_spin_unlock+0x160/0x200 [ 109.344702][ T6017] ? inode_go_inval+0x2a0/0x360 [ 109.344716][ T6017] gfs2_make_fs_rw+0x143/0x230 [ 109.344731][ T6017] gfs2_fill_super+0x1bfd/0x2220 [ 109.344752][ T6017] ? __pfx_gfs2_fill_super+0x10/0x10 [ 109.344764][ T6017] ? rt_spin_unlock+0x14f/0x200 [ 109.344777][ T6017] ? init_locking+0xb8/0x210 [ 109.344789][ T6017] ? sb_set_blocksize+0x11b/0x210 [ 109.344802][ T6017] ? setup_bdev_super+0x4c1/0x5b0 [ 109.344819][ T6017] get_tree_bdev_flags+0x431/0x4f0 [ 109.344834][ T6017] ? __pfx_gfs2_fill_super+0x10/0x10 [ 109.344846][ T6017] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 109.344860][ T6017] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 109.344880][ T6017] gfs2_get_tree+0x51/0x1e0 [ 109.344897][ T6017] vfs_get_tree+0x92/0x2a0 [ 109.344912][ T6017] do_new_mount+0x341/0xd30 [ 109.344923][ T6017] ? apparmor_capable+0x126/0x170 [ 109.344940][ T6017] ? __pfx_do_new_mount+0x10/0x10 [ 109.344951][ T6017] ? ns_capable+0x89/0xe0 [ 109.344964][ T6017] ? user_path_at+0xd4/0x160 [ 109.344980][ T6017] ? user_path_at+0xd4/0x160 [ 109.344994][ T6017] __se_sys_mount+0x31d/0x420 [ 109.345008][ T6017] ? __pfx___se_sys_mount+0x10/0x10 [ 109.345023][ T6017] ? __x64_sys_mount+0x20/0xc0 [ 109.345035][ T6017] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.345046][ T6017] do_syscall_64+0x15f/0xf80 [ 109.345060][ T6017] ? trace_irq_disable+0x3b/0x140 [ 109.345073][ T6017] ? clear_bhb_loop+0x40/0x90 [ 109.345085][ T6017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.345095][ T6017] RIP: 0033:0x7fc2a800da8a [ 109.345112][ T6017] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 109.345121][ T6017] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 109.345131][ T6017] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 109.345139][ T6017] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 109.345145][ T6017] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 109.345152][ T6017] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 109.345159][ T6017] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 109.345174][ T6017] [ 109.345402][ T6017] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 109.345544][ T6017] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 109.345559][ T6017] CPU: 1 UID: 0 PID: 6017 Comm: syz.0.17 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 109.345572][ T6017] Tainted: [W]=WARN [ 109.345575][ T6017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 109.345581][ T6017] Call Trace: [ 109.345585][ T6017] [ 109.345589][ T6017] dump_stack_lvl+0xe8/0x150 [ 109.345602][ T6017] gfs2_assert_warn_i+0x194/0x2c0 [ 109.345619][ T6017] gfs2_qd_dispose+0x466/0x570 [ 109.345639][ T6017] gfs2_quota_init+0xcda/0x1220 [ 109.345650][ T6017] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 109.345675][ T6017] ? __pfx_gfs2_quota_init+0x10/0x10 [ 109.345686][ T6017] ? __pfx_wake_up_bit+0x10/0x10 [ 109.345697][ T6017] ? rt_spin_unlock+0x160/0x200 [ 109.345711][ T6017] ? inode_go_inval+0x2a0/0x360 [ 109.345725][ T6017] gfs2_make_fs_rw+0x143/0x230 [ 109.345740][ T6017] gfs2_fill_super+0x1bfd/0x2220 [ 109.345761][ T6017] ? __pfx_gfs2_fill_super+0x10/0x10 [ 109.345773][ T6017] ? rt_spin_unlock+0x14f/0x200 [ 109.345786][ T6017] ? init_locking+0xb8/0x210 [ 109.345798][ T6017] ? sb_set_blocksize+0x11b/0x210 [ 109.345810][ T6017] ? setup_bdev_super+0x4c1/0x5b0 [ 109.345827][ T6017] get_tree_bdev_flags+0x431/0x4f0 [ 109.345842][ T6017] ? __pfx_gfs2_fill_super+0x10/0x10 [ 109.345854][ T6017] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 109.345868][ T6017] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 109.345891][ T6017] gfs2_get_tree+0x51/0x1e0 [ 109.345906][ T6017] vfs_get_tree+0x92/0x2a0 [ 109.345922][ T6017] do_new_mount+0x341/0xd30 [ 109.345940][ T6017] ? apparmor_capable+0x126/0x170 [ 109.345956][ T6017] ? __pfx_do_new_mount+0x10/0x10 [ 109.345967][ T6017] ? ns_capable+0x89/0xe0 [ 109.345979][ T6017] ? user_path_at+0xd4/0x160 [ 109.345994][ T6017] ? user_path_at+0xd4/0x160 [ 109.346008][ T6017] __se_sys_mount+0x31d/0x420 [ 109.346023][ T6017] ? __pfx___se_sys_mount+0x10/0x10 [ 109.346038][ T6017] ? __x64_sys_mount+0x20/0xc0 [ 109.346049][ T6017] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.346060][ T6017] do_syscall_64+0x15f/0xf80 [ 109.346074][ T6017] ? trace_irq_disable+0x3b/0x140 [ 109.346086][ T6017] ? clear_bhb_loop+0x40/0x90 [ 109.346098][ T6017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.346108][ T6017] RIP: 0033:0x7fc2a800da8a [ 109.346117][ T6017] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 109.346125][ T6017] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 109.346135][ T6017] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 109.346143][ T6017] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 109.346150][ T6017] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 109.346156][ T6017] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 109.346163][ T6017] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 109.346178][ T6017] [ 109.456629][ T6017] gfs2: fsid=syz:syz.0: found 1 quota changes [ 110.263779][ T6022] loop0: detected capacity change from 0 to 32768 [ 110.296244][ T6022] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 110.296260][ T6022] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 110.402354][ T6022] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 110.406866][ T10] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 110.406883][ T10] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 110.456529][ T10] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 49ms [ 110.456712][ T10] gfs2: fsid=syz:syz.0: jid=0: Done [ 110.456773][ T6022] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 110.541121][ T6022] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 110.541144][ T6022] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6022, name: syz.0.18 [ 110.541159][ T6022] preempt_count: 1, expected: 0 [ 110.541168][ T6022] RCU nest depth: 1, expected: 1 [ 110.541177][ T6022] 4 locks held by syz.0.18/6022: [ 110.541188][ T6022] #0: ffff8880364fe0d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 110.541249][ T6022] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 110.541275][ T6022] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 110.541301][ T6022] #3: ffff88805cdbf7f8 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 110.541334][ T6022] Preemption disabled at: [ 110.541337][ T6022] [] spin_lock_bucket+0x3b/0x150 [ 110.541356][ T6022] CPU: 0 UID: 0 PID: 6022 Comm: syz.0.18 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 110.541371][ T6022] Tainted: [W]=WARN [ 110.541374][ T6022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 110.541381][ T6022] Call Trace: [ 110.541385][ T6022] [ 110.541390][ T6022] dump_stack_lvl+0xe8/0x150 [ 110.541404][ T6022] __might_resched+0x329/0x480 [ 110.541420][ T6022] ? spin_lock_bucket+0x3b/0x150 [ 110.541437][ T6022] rt_spin_lock+0xc2/0x400 [ 110.541458][ T6022] ? __pfx_rt_spin_lock+0x10/0x10 [ 110.541471][ T6022] ? preempt_count_add+0x91/0x190 [ 110.541490][ T6022] ? rt_spin_lock+0x2ce/0x400 [ 110.541504][ T6022] lockref_get_not_dead+0x28/0xd0 [ 110.541521][ T6022] gfs2_qd_search_bucket+0x139/0x210 [ 110.541534][ T6022] gfs2_quota_init+0x86c/0x1220 [ 110.541545][ T6022] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 110.541569][ T6022] ? __pfx_gfs2_quota_init+0x10/0x10 [ 110.541580][ T6022] ? __pfx_wake_up_bit+0x10/0x10 [ 110.541591][ T6022] ? rt_spin_unlock+0x160/0x200 [ 110.541605][ T6022] ? inode_go_inval+0x2a0/0x360 [ 110.541619][ T6022] gfs2_make_fs_rw+0x143/0x230 [ 110.541635][ T6022] gfs2_fill_super+0x1bfd/0x2220 [ 110.541655][ T6022] ? __pfx_gfs2_fill_super+0x10/0x10 [ 110.541667][ T6022] ? rt_spin_unlock+0x14f/0x200 [ 110.541680][ T6022] ? init_locking+0xb8/0x210 [ 110.541692][ T6022] ? sb_set_blocksize+0x11b/0x210 [ 110.541705][ T6022] ? setup_bdev_super+0x4c1/0x5b0 [ 110.541722][ T6022] get_tree_bdev_flags+0x431/0x4f0 [ 110.541740][ T6022] ? __pfx_gfs2_fill_super+0x10/0x10 [ 110.541752][ T6022] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 110.541766][ T6022] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 110.541786][ T6022] gfs2_get_tree+0x51/0x1e0 [ 110.541800][ T6022] vfs_get_tree+0x92/0x2a0 [ 110.541820][ T6022] do_new_mount+0x341/0xd30 [ 110.541836][ T6022] ? apparmor_capable+0x126/0x170 [ 110.541861][ T6022] ? __pfx_do_new_mount+0x10/0x10 [ 110.541879][ T6022] ? ns_capable+0x89/0xe0 [ 110.541901][ T6022] ? user_path_at+0xd4/0x160 [ 110.541926][ T6022] ? user_path_at+0xd4/0x160 [ 110.541949][ T6022] __se_sys_mount+0x31d/0x420 [ 110.541975][ T6022] ? __pfx___se_sys_mount+0x10/0x10 [ 110.542003][ T6022] ? __x64_sys_mount+0x20/0xc0 [ 110.542024][ T6022] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.542044][ T6022] do_syscall_64+0x15f/0xf80 [ 110.542070][ T6022] ? trace_irq_disable+0x3b/0x140 [ 110.542092][ T6022] ? clear_bhb_loop+0x40/0x90 [ 110.542115][ T6022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.542134][ T6022] RIP: 0033:0x7fc2a800da8a [ 110.542153][ T6022] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 110.542167][ T6022] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 110.542186][ T6022] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 110.542199][ T6022] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 110.542212][ T6022] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 110.542224][ T6022] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 110.542234][ T6022] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 110.542272][ T6022] [ 110.543664][ T6022] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 110.550435][ T6022] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 110.550466][ T6022] CPU: 0 UID: 0 PID: 6022 Comm: syz.0.18 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 110.550496][ T6022] Tainted: [W]=WARN [ 110.550502][ T6022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 110.550513][ T6022] Call Trace: [ 110.550520][ T6022] [ 110.550528][ T6022] dump_stack_lvl+0xe8/0x150 [ 110.550555][ T6022] gfs2_assert_warn_i+0x194/0x2c0 [ 110.550586][ T6022] gfs2_qd_dispose+0x466/0x570 [ 110.550611][ T6022] gfs2_quota_init+0xcda/0x1220 [ 110.550630][ T6022] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 110.550684][ T6022] ? __pfx_gfs2_quota_init+0x10/0x10 [ 110.550702][ T6022] ? __pfx_wake_up_bit+0x10/0x10 [ 110.550722][ T6022] ? rt_spin_unlock+0x160/0x200 [ 110.550748][ T6022] ? inode_go_inval+0x2a0/0x360 [ 110.550772][ T6022] gfs2_make_fs_rw+0x143/0x230 [ 110.550799][ T6022] gfs2_fill_super+0x1bfd/0x2220 [ 110.550837][ T6022] ? __pfx_gfs2_fill_super+0x10/0x10 [ 110.550858][ T6022] ? rt_spin_unlock+0x14f/0x200 [ 110.550881][ T6022] ? init_locking+0xb8/0x210 [ 110.550901][ T6022] ? sb_set_blocksize+0x11b/0x210 [ 110.550924][ T6022] ? setup_bdev_super+0x4c1/0x5b0 [ 110.550953][ T6022] get_tree_bdev_flags+0x431/0x4f0 [ 110.550980][ T6022] ? __pfx_gfs2_fill_super+0x10/0x10 [ 110.551002][ T6022] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 110.551025][ T6022] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 110.551059][ T6022] gfs2_get_tree+0x51/0x1e0 [ 110.551085][ T6022] vfs_get_tree+0x92/0x2a0 [ 110.551112][ T6022] do_new_mount+0x341/0xd30 [ 110.551130][ T6022] ? apparmor_capable+0x126/0x170 [ 110.551159][ T6022] ? __pfx_do_new_mount+0x10/0x10 [ 110.551179][ T6022] ? ns_capable+0x89/0xe0 [ 110.551202][ T6022] ? user_path_at+0xd4/0x160 [ 110.551227][ T6022] ? user_path_at+0xd4/0x160 [ 110.551252][ T6022] __se_sys_mount+0x31d/0x420 [ 110.551278][ T6022] ? __pfx___se_sys_mount+0x10/0x10 [ 110.551305][ T6022] ? __x64_sys_mount+0x20/0xc0 [ 110.551324][ T6022] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.551344][ T6022] do_syscall_64+0x15f/0xf80 [ 110.551368][ T6022] ? trace_irq_disable+0x3b/0x140 [ 110.551389][ T6022] ? clear_bhb_loop+0x40/0x90 [ 110.551411][ T6022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.551429][ T6022] RIP: 0033:0x7fc2a800da8a [ 110.551445][ T6022] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 110.551459][ T6022] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 110.551484][ T6022] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 110.551497][ T6022] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 110.551510][ T6022] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 110.551522][ T6022] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 110.551533][ T6022] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 110.551561][ T6022] [ 110.629994][ T6022] gfs2: fsid=syz:syz.0: found 1 quota changes [ 111.388933][ T6028] loop0: detected capacity change from 0 to 32768 [ 111.425340][ T6028] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 111.425361][ T6028] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 111.464860][ T6028] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 111.467521][ T5838] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 111.467538][ T5838] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 111.534643][ T5838] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 67ms [ 111.540825][ T5838] gfs2: fsid=syz:syz.0: jid=0: Done [ 111.540931][ T6028] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 111.619180][ T6028] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 111.619202][ T6028] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6028, name: syz.0.19 [ 111.619219][ T6028] preempt_count: 1, expected: 0 [ 111.619227][ T6028] RCU nest depth: 1, expected: 1 [ 111.619236][ T6028] 4 locks held by syz.0.19/6028: [ 111.619246][ T6028] #0: ffff88803ed5e0d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 111.619305][ T6028] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 111.619331][ T6028] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 111.619357][ T6028] #3: ffff88805cdbf4d8 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 111.619390][ T6028] Preemption disabled at: [ 111.619393][ T6028] [] spin_lock_bucket+0x3b/0x150 [ 111.619412][ T6028] CPU: 0 UID: 0 PID: 6028 Comm: syz.0.19 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 111.619426][ T6028] Tainted: [W]=WARN [ 111.619429][ T6028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 111.619436][ T6028] Call Trace: [ 111.619440][ T6028] [ 111.619445][ T6028] dump_stack_lvl+0xe8/0x150 [ 111.619460][ T6028] __might_resched+0x329/0x480 [ 111.619474][ T6028] ? spin_lock_bucket+0x3b/0x150 [ 111.619486][ T6028] rt_spin_lock+0xc2/0x400 [ 111.619499][ T6028] ? __pfx_rt_spin_lock+0x10/0x10 [ 111.619512][ T6028] ? preempt_count_add+0x91/0x190 [ 111.619523][ T6028] ? rt_spin_lock+0x2ce/0x400 [ 111.619546][ T6028] lockref_get_not_dead+0x28/0xd0 [ 111.619563][ T6028] gfs2_qd_search_bucket+0x139/0x210 [ 111.619576][ T6028] gfs2_quota_init+0x86c/0x1220 [ 111.619587][ T6028] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 111.619612][ T6028] ? __pfx_gfs2_quota_init+0x10/0x10 [ 111.619623][ T6028] ? __pfx_wake_up_bit+0x10/0x10 [ 111.619634][ T6028] ? rt_spin_unlock+0x160/0x200 [ 111.619648][ T6028] ? inode_go_inval+0x2a0/0x360 [ 111.619662][ T6028] gfs2_make_fs_rw+0x143/0x230 [ 111.619678][ T6028] gfs2_fill_super+0x1bfd/0x2220 [ 111.619699][ T6028] ? __pfx_gfs2_fill_super+0x10/0x10 [ 111.619717][ T6028] ? rt_spin_unlock+0x14f/0x200 [ 111.619730][ T6028] ? init_locking+0xb8/0x210 [ 111.619742][ T6028] ? sb_set_blocksize+0x11b/0x210 [ 111.619757][ T6028] ? setup_bdev_super+0x4c1/0x5b0 [ 111.619776][ T6028] get_tree_bdev_flags+0x431/0x4f0 [ 111.619802][ T6028] ? __pfx_gfs2_fill_super+0x10/0x10 [ 111.619818][ T6028] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 111.619832][ T6028] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 111.619852][ T6028] gfs2_get_tree+0x51/0x1e0 [ 111.619866][ T6028] vfs_get_tree+0x92/0x2a0 [ 111.619882][ T6028] do_new_mount+0x341/0xd30 [ 111.619893][ T6028] ? apparmor_capable+0x126/0x170 [ 111.619910][ T6028] ? __pfx_do_new_mount+0x10/0x10 [ 111.619922][ T6028] ? ns_capable+0x89/0xe0 [ 111.619935][ T6028] ? user_path_at+0xd4/0x160 [ 111.619950][ T6028] ? user_path_at+0xd4/0x160 [ 111.619964][ T6028] __se_sys_mount+0x31d/0x420 [ 111.619979][ T6028] ? __pfx___se_sys_mount+0x10/0x10 [ 111.619994][ T6028] ? __x64_sys_mount+0x20/0xc0 [ 111.620005][ T6028] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.620016][ T6028] do_syscall_64+0x15f/0xf80 [ 111.620030][ T6028] ? trace_irq_disable+0x3b/0x140 [ 111.620042][ T6028] ? clear_bhb_loop+0x40/0x90 [ 111.620054][ T6028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.620064][ T6028] RIP: 0033:0x7fc2a800da8a [ 111.620076][ T6028] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 111.620084][ T6028] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 111.620095][ T6028] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 111.620102][ T6028] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 111.620109][ T6028] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 111.620115][ T6028] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 111.620122][ T6028] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 111.620137][ T6028] [ 111.620148][ T6028] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 111.620165][ T6028] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 111.620178][ T6028] CPU: 0 UID: 0 PID: 6028 Comm: syz.0.19 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 111.620191][ T6028] Tainted: [W]=WARN [ 111.620195][ T6028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 111.620200][ T6028] Call Trace: [ 111.620204][ T6028] [ 111.620208][ T6028] dump_stack_lvl+0xe8/0x150 [ 111.620220][ T6028] gfs2_assert_warn_i+0x194/0x2c0 [ 111.620237][ T6028] gfs2_qd_dispose+0x466/0x570 [ 111.620251][ T6028] gfs2_quota_init+0xcda/0x1220 [ 111.620261][ T6028] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 111.620285][ T6028] ? __pfx_gfs2_quota_init+0x10/0x10 [ 111.620296][ T6028] ? __pfx_wake_up_bit+0x10/0x10 [ 111.620306][ T6028] ? rt_spin_unlock+0x160/0x200 [ 111.620321][ T6028] ? inode_go_inval+0x2a0/0x360 [ 111.620334][ T6028] gfs2_make_fs_rw+0x143/0x230 [ 111.620349][ T6028] gfs2_fill_super+0x1bfd/0x2220 [ 111.620370][ T6028] ? __pfx_gfs2_fill_super+0x10/0x10 [ 111.620382][ T6028] ? rt_spin_unlock+0x14f/0x200 [ 111.620395][ T6028] ? init_locking+0xb8/0x210 [ 111.620407][ T6028] ? sb_set_blocksize+0x11b/0x210 [ 111.620420][ T6028] ? setup_bdev_super+0x4c1/0x5b0 [ 111.620436][ T6028] get_tree_bdev_flags+0x431/0x4f0 [ 111.620451][ T6028] ? __pfx_gfs2_fill_super+0x10/0x10 [ 111.620466][ T6028] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 111.620480][ T6028] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 111.620499][ T6028] gfs2_get_tree+0x51/0x1e0 [ 111.620520][ T6028] vfs_get_tree+0x92/0x2a0 [ 111.620536][ T6028] do_new_mount+0x341/0xd30 [ 111.620546][ T6028] ? apparmor_capable+0x126/0x170 [ 111.620562][ T6028] ? __pfx_do_new_mount+0x10/0x10 [ 111.620573][ T6028] ? ns_capable+0x89/0xe0 [ 111.620586][ T6028] ? user_path_at+0xd4/0x160 [ 111.620601][ T6028] ? user_path_at+0xd4/0x160 [ 111.620614][ T6028] __se_sys_mount+0x31d/0x420 [ 111.620629][ T6028] ? __pfx___se_sys_mount+0x10/0x10 [ 111.620644][ T6028] ? __x64_sys_mount+0x20/0xc0 [ 111.620655][ T6028] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.620666][ T6028] do_syscall_64+0x15f/0xf80 [ 111.620680][ T6028] ? trace_irq_disable+0x3b/0x140 [ 111.620691][ T6028] ? clear_bhb_loop+0x40/0x90 [ 111.620703][ T6028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.620717][ T6028] RIP: 0033:0x7fc2a800da8a [ 111.620726][ T6028] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 111.620733][ T6028] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 111.620743][ T6028] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 111.620750][ T6028] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 111.620757][ T6028] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 111.620763][ T6028] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 111.620770][ T6028] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 111.620785][ T6028] [ 111.654622][ T6028] gfs2: fsid=syz:syz.0: found 1 quota changes [ 112.434709][ T6033] loop0: detected capacity change from 0 to 32768 [ 112.459785][ T6033] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 112.459803][ T6033] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 112.499564][ T6033] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 112.520959][ T5838] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 112.520979][ T5838] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 112.583924][ T5838] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 62ms [ 112.584910][ T5838] gfs2: fsid=syz:syz.0: jid=0: Done [ 112.584963][ T6033] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 112.688023][ T6033] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 112.688046][ T6033] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6033, name: syz.0.20 [ 112.688062][ T6033] preempt_count: 1, expected: 0 [ 112.688070][ T6033] RCU nest depth: 1, expected: 1 [ 112.688079][ T6033] 4 locks held by syz.0.20/6033: [ 112.688090][ T6033] #0: ffff8880342ae0d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 112.688148][ T6033] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 112.688174][ T6033] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 112.688201][ T6033] #3: ffff88805cdbf1b8 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 112.688234][ T6033] Preemption disabled at: [ 112.688237][ T6033] [] spin_lock_bucket+0x3b/0x150 [ 112.688256][ T6033] CPU: 0 UID: 0 PID: 6033 Comm: syz.0.20 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 112.688270][ T6033] Tainted: [W]=WARN [ 112.688273][ T6033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 112.688280][ T6033] Call Trace: [ 112.688284][ T6033] [ 112.688290][ T6033] dump_stack_lvl+0xe8/0x150 [ 112.688303][ T6033] __might_resched+0x329/0x480 [ 112.688316][ T6033] ? spin_lock_bucket+0x3b/0x150 [ 112.688328][ T6033] rt_spin_lock+0xc2/0x400 [ 112.688341][ T6033] ? __pfx_rt_spin_lock+0x10/0x10 [ 112.688356][ T6033] ? preempt_count_add+0x91/0x190 [ 112.688367][ T6033] ? rt_spin_lock+0x2ce/0x400 [ 112.688381][ T6033] lockref_get_not_dead+0x28/0xd0 [ 112.688398][ T6033] gfs2_qd_search_bucket+0x139/0x210 [ 112.688411][ T6033] gfs2_quota_init+0x86c/0x1220 [ 112.688422][ T6033] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 112.688447][ T6033] ? __pfx_gfs2_quota_init+0x10/0x10 [ 112.688458][ T6033] ? __pfx_wake_up_bit+0x10/0x10 [ 112.688469][ T6033] ? rt_spin_unlock+0x160/0x200 [ 112.688483][ T6033] ? inode_go_inval+0x2a0/0x360 [ 112.688497][ T6033] gfs2_make_fs_rw+0x143/0x230 [ 112.688512][ T6033] gfs2_fill_super+0x1bfd/0x2220 [ 112.688533][ T6033] ? __pfx_gfs2_fill_super+0x10/0x10 [ 112.688545][ T6033] ? rt_spin_unlock+0x14f/0x200 [ 112.688558][ T6033] ? init_locking+0xb8/0x210 [ 112.688570][ T6033] ? sb_set_blocksize+0x11b/0x210 [ 112.688584][ T6033] ? setup_bdev_super+0x4c1/0x5b0 [ 112.688640][ T6033] get_tree_bdev_flags+0x431/0x4f0 [ 112.688656][ T6033] ? __pfx_gfs2_fill_super+0x10/0x10 [ 112.688669][ T6033] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 112.688683][ T6033] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 112.688702][ T6033] gfs2_get_tree+0x51/0x1e0 [ 112.688716][ T6033] vfs_get_tree+0x92/0x2a0 [ 112.688732][ T6033] do_new_mount+0x341/0xd30 [ 112.688743][ T6033] ? apparmor_capable+0x126/0x170 [ 112.688761][ T6033] ? __pfx_do_new_mount+0x10/0x10 [ 112.688772][ T6033] ? ns_capable+0x89/0xe0 [ 112.688785][ T6033] ? user_path_at+0xd4/0x160 [ 112.688801][ T6033] ? user_path_at+0xd4/0x160 [ 112.688815][ T6033] __se_sys_mount+0x31d/0x420 [ 112.688829][ T6033] ? __pfx___se_sys_mount+0x10/0x10 [ 112.688845][ T6033] ? __x64_sys_mount+0x20/0xc0 [ 112.688864][ T6033] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.688883][ T6033] do_syscall_64+0x15f/0xf80 [ 112.688899][ T6033] ? trace_irq_disable+0x3b/0x140 [ 112.688911][ T6033] ? clear_bhb_loop+0x40/0x90 [ 112.688924][ T6033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.688934][ T6033] RIP: 0033:0x7fc2a800da8a [ 112.688946][ T6033] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.688955][ T6033] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 112.688965][ T6033] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 112.688973][ T6033] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 112.688980][ T6033] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 112.688986][ T6033] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 112.688993][ T6033] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 112.689008][ T6033] [ 112.689019][ T6033] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 112.689037][ T6033] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 112.689050][ T6033] CPU: 0 UID: 0 PID: 6033 Comm: syz.0.20 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 112.689064][ T6033] Tainted: [W]=WARN [ 112.689067][ T6033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 112.689072][ T6033] Call Trace: [ 112.689076][ T6033] [ 112.689080][ T6033] dump_stack_lvl+0xe8/0x150 [ 112.689092][ T6033] gfs2_assert_warn_i+0x194/0x2c0 [ 112.689109][ T6033] gfs2_qd_dispose+0x466/0x570 [ 112.689123][ T6033] gfs2_quota_init+0xcda/0x1220 [ 112.689134][ T6033] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 112.689158][ T6033] ? __pfx_gfs2_quota_init+0x10/0x10 [ 112.689169][ T6033] ? __pfx_wake_up_bit+0x10/0x10 [ 112.689180][ T6033] ? rt_spin_unlock+0x160/0x200 [ 112.689194][ T6033] ? inode_go_inval+0x2a0/0x360 [ 112.689207][ T6033] gfs2_make_fs_rw+0x143/0x230 [ 112.689223][ T6033] gfs2_fill_super+0x1bfd/0x2220 [ 112.689243][ T6033] ? __pfx_gfs2_fill_super+0x10/0x10 [ 112.689255][ T6033] ? rt_spin_unlock+0x14f/0x200 [ 112.689268][ T6033] ? init_locking+0xb8/0x210 [ 112.689280][ T6033] ? sb_set_blocksize+0x11b/0x210 [ 112.689293][ T6033] ? setup_bdev_super+0x4c1/0x5b0 [ 112.689309][ T6033] get_tree_bdev_flags+0x431/0x4f0 [ 112.689324][ T6033] ? __pfx_gfs2_fill_super+0x10/0x10 [ 112.689336][ T6033] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 112.689351][ T6033] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 112.689371][ T6033] gfs2_get_tree+0x51/0x1e0 [ 112.689386][ T6033] vfs_get_tree+0x92/0x2a0 [ 112.689401][ T6033] do_new_mount+0x341/0xd30 [ 112.689412][ T6033] ? apparmor_capable+0x126/0x170 [ 112.689427][ T6033] ? __pfx_do_new_mount+0x10/0x10 [ 112.689438][ T6033] ? ns_capable+0x89/0xe0 [ 112.689450][ T6033] ? user_path_at+0xd4/0x160 [ 112.689465][ T6033] ? user_path_at+0xd4/0x160 [ 112.689479][ T6033] __se_sys_mount+0x31d/0x420 [ 112.689494][ T6033] ? __pfx___se_sys_mount+0x10/0x10 [ 112.689509][ T6033] ? __x64_sys_mount+0x20/0xc0 [ 112.689520][ T6033] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.689531][ T6033] do_syscall_64+0x15f/0xf80 [ 112.689544][ T6033] ? trace_irq_disable+0x3b/0x140 [ 112.689556][ T6033] ? clear_bhb_loop+0x40/0x90 [ 112.689568][ T6033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.689577][ T6033] RIP: 0033:0x7fc2a800da8a [ 112.689586][ T6033] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.689594][ T6033] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 112.689609][ T6033] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 112.689616][ T6033] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 112.689623][ T6033] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 112.689629][ T6033] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 112.689635][ T6033] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 112.689651][ T6033] [ 113.145503][ T6033] gfs2: fsid=syz:syz.0: found 1 quota changes [ 113.736754][ T6039] loop0: detected capacity change from 0 to 32768 [ 113.765406][ T6039] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 113.765425][ T6039] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 113.804717][ T6039] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 113.807419][ T819] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 113.807436][ T819] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 113.884674][ T819] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 77ms [ 113.884890][ T819] gfs2: fsid=syz:syz.0: jid=0: Done [ 113.885178][ T6039] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 114.009840][ T6039] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 114.009862][ T6039] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6039, name: syz.0.21 [ 114.009877][ T6039] preempt_count: 1, expected: 0 [ 114.009885][ T6039] RCU nest depth: 1, expected: 1 [ 114.009894][ T6039] 4 locks held by syz.0.21/6039: [ 114.009905][ T6039] #0: ffff888032b440d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 114.009967][ T6039] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 114.009993][ T6039] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 114.010019][ T6039] #3: ffff88805d082858 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 114.010059][ T6039] Preemption disabled at: [ 114.010061][ T6039] [] spin_lock_bucket+0x3b/0x150 2026/04/15 08:05:57 executed programs: 7 [ 114.010081][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.0.21 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 114.010095][ T6039] Tainted: [W]=WARN [ 114.010098][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 114.010105][ T6039] Call Trace: [ 114.010109][ T6039] [ 114.010114][ T6039] dump_stack_lvl+0xe8/0x150 [ 114.010127][ T6039] __might_resched+0x329/0x480 [ 114.010153][ T6039] ? spin_lock_bucket+0x3b/0x150 [ 114.010174][ T6039] rt_spin_lock+0xc2/0x400 [ 114.010194][ T6039] ? __pfx_rt_spin_lock+0x10/0x10 [ 114.010207][ T6039] ? preempt_count_add+0x91/0x190 [ 114.010218][ T6039] ? rt_spin_lock+0x2ce/0x400 [ 114.010231][ T6039] lockref_get_not_dead+0x28/0xd0 [ 114.010249][ T6039] gfs2_qd_search_bucket+0x139/0x210 [ 114.010262][ T6039] gfs2_quota_init+0x86c/0x1220 [ 114.010273][ T6039] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 114.010297][ T6039] ? __pfx_gfs2_quota_init+0x10/0x10 [ 114.010308][ T6039] ? __pfx_wake_up_bit+0x10/0x10 [ 114.010318][ T6039] ? rt_spin_unlock+0x160/0x200 [ 114.010333][ T6039] ? inode_go_inval+0x2a0/0x360 [ 114.010347][ T6039] gfs2_make_fs_rw+0x143/0x230 [ 114.010363][ T6039] gfs2_fill_super+0x1bfd/0x2220 [ 114.010383][ T6039] ? __pfx_gfs2_fill_super+0x10/0x10 [ 114.010397][ T6039] ? rt_spin_unlock+0x14f/0x200 [ 114.010411][ T6039] ? init_locking+0xb8/0x210 [ 114.010423][ T6039] ? sb_set_blocksize+0x11b/0x210 [ 114.010436][ T6039] ? setup_bdev_super+0x4c1/0x5b0 [ 114.010453][ T6039] get_tree_bdev_flags+0x431/0x4f0 [ 114.010468][ T6039] ? __pfx_gfs2_fill_super+0x10/0x10 [ 114.010481][ T6039] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 114.010494][ T6039] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 114.010514][ T6039] gfs2_get_tree+0x51/0x1e0 [ 114.010529][ T6039] vfs_get_tree+0x92/0x2a0 [ 114.010545][ T6039] do_new_mount+0x341/0xd30 [ 114.010555][ T6039] ? apparmor_capable+0x126/0x170 [ 114.010571][ T6039] ? __pfx_do_new_mount+0x10/0x10 [ 114.010583][ T6039] ? ns_capable+0x89/0xe0 [ 114.010595][ T6039] ? user_path_at+0xd4/0x160 [ 114.010611][ T6039] ? user_path_at+0xd4/0x160 [ 114.010624][ T6039] __se_sys_mount+0x31d/0x420 [ 114.010639][ T6039] ? __pfx___se_sys_mount+0x10/0x10 [ 114.010654][ T6039] ? __x64_sys_mount+0x20/0xc0 [ 114.010665][ T6039] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.010676][ T6039] do_syscall_64+0x15f/0xf80 [ 114.010691][ T6039] ? trace_irq_disable+0x3b/0x140 [ 114.010703][ T6039] ? clear_bhb_loop+0x40/0x90 [ 114.010716][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.010726][ T6039] RIP: 0033:0x7fc2a800da8a [ 114.010737][ T6039] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 114.010745][ T6039] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 114.010756][ T6039] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 114.010763][ T6039] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 114.010770][ T6039] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 114.010777][ T6039] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 114.010784][ T6039] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 114.010799][ T6039] [ 114.010811][ T6039] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 114.010828][ T6039] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 114.010844][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.0.21 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 114.010857][ T6039] Tainted: [W]=WARN [ 114.010860][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 114.010866][ T6039] Call Trace: [ 114.010870][ T6039] [ 114.010874][ T6039] dump_stack_lvl+0xe8/0x150 [ 114.010886][ T6039] gfs2_assert_warn_i+0x194/0x2c0 [ 114.010904][ T6039] gfs2_qd_dispose+0x466/0x570 [ 114.010918][ T6039] gfs2_quota_init+0xcda/0x1220 [ 114.010928][ T6039] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 114.010952][ T6039] ? __pfx_gfs2_quota_init+0x10/0x10 [ 114.010963][ T6039] ? __pfx_wake_up_bit+0x10/0x10 [ 114.010974][ T6039] ? rt_spin_unlock+0x160/0x200 [ 114.010988][ T6039] ? inode_go_inval+0x2a0/0x360 [ 114.011001][ T6039] gfs2_make_fs_rw+0x143/0x230 [ 114.011017][ T6039] gfs2_fill_super+0x1bfd/0x2220 [ 114.011037][ T6039] ? __pfx_gfs2_fill_super+0x10/0x10 [ 114.011049][ T6039] ? rt_spin_unlock+0x14f/0x200 [ 114.011062][ T6039] ? init_locking+0xb8/0x210 [ 114.011074][ T6039] ? sb_set_blocksize+0x11b/0x210 [ 114.011086][ T6039] ? setup_bdev_super+0x4c1/0x5b0 [ 114.011102][ T6039] get_tree_bdev_flags+0x431/0x4f0 [ 114.011118][ T6039] ? __pfx_gfs2_fill_super+0x10/0x10 [ 114.011130][ T6039] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 114.011150][ T6039] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 114.011169][ T6039] gfs2_get_tree+0x51/0x1e0 [ 114.011184][ T6039] vfs_get_tree+0x92/0x2a0 [ 114.011200][ T6039] do_new_mount+0x341/0xd30 [ 114.011210][ T6039] ? apparmor_capable+0x126/0x170 [ 114.011226][ T6039] ? __pfx_do_new_mount+0x10/0x10 [ 114.011238][ T6039] ? ns_capable+0x89/0xe0 [ 114.011250][ T6039] ? user_path_at+0xd4/0x160 [ 114.011264][ T6039] ? user_path_at+0xd4/0x160 [ 114.011278][ T6039] __se_sys_mount+0x31d/0x420 [ 114.011293][ T6039] ? __pfx___se_sys_mount+0x10/0x10 [ 114.011308][ T6039] ? __x64_sys_mount+0x20/0xc0 [ 114.011319][ T6039] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.011330][ T6039] do_syscall_64+0x15f/0xf80 [ 114.011344][ T6039] ? trace_irq_disable+0x3b/0x140 [ 114.011355][ T6039] ? clear_bhb_loop+0x40/0x90 [ 114.011368][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.011377][ T6039] RIP: 0033:0x7fc2a800da8a [ 114.011386][ T6039] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 114.011396][ T6039] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 114.011406][ T6039] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 114.011413][ T6039] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 114.011425][ T6039] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 114.011431][ T6039] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 114.011438][ T6039] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 114.011453][ T6039] [ 114.055170][ T6039] gfs2: fsid=syz:syz.0: found 1 quota changes [ 114.830713][ T6045] loop0: detected capacity change from 0 to 32768 [ 114.856859][ T6045] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 114.856879][ T6045] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 114.888479][ T6045] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 114.922731][ T5838] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 114.922750][ T5838] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 114.988945][ T5838] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 66ms [ 114.989100][ T5838] gfs2: fsid=syz:syz.0: jid=0: Done [ 114.989215][ T6045] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 115.063168][ T6045] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 115.063190][ T6045] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6045, name: syz.0.22 [ 115.063205][ T6045] preempt_count: 1, expected: 0 [ 115.063213][ T6045] RCU nest depth: 1, expected: 1 [ 115.063222][ T6045] 4 locks held by syz.0.22/6045: [ 115.063233][ T6045] #0: ffff888038ca00d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 115.063299][ T6045] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 115.063333][ T6045] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 115.063358][ T6045] #3: ffff88805d082538 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 115.063394][ T6045] Preemption disabled at: [ 115.063408][ T6045] [] spin_lock_bucket+0x3b/0x150 [ 115.063427][ T6045] CPU: 1 UID: 0 PID: 6045 Comm: syz.0.22 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 115.063441][ T6045] Tainted: [W]=WARN [ 115.063445][ T6045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 115.063451][ T6045] Call Trace: [ 115.063455][ T6045] [ 115.063460][ T6045] dump_stack_lvl+0xe8/0x150 [ 115.063474][ T6045] __might_resched+0x329/0x480 [ 115.063487][ T6045] ? spin_lock_bucket+0x3b/0x150 [ 115.063499][ T6045] rt_spin_lock+0xc2/0x400 [ 115.063513][ T6045] ? __pfx_rt_spin_lock+0x10/0x10 [ 115.063525][ T6045] ? preempt_count_add+0x91/0x190 [ 115.063537][ T6045] ? rt_spin_lock+0x2ce/0x400 [ 115.063550][ T6045] lockref_get_not_dead+0x28/0xd0 [ 115.063567][ T6045] gfs2_qd_search_bucket+0x139/0x210 [ 115.063580][ T6045] gfs2_quota_init+0x86c/0x1220 [ 115.063591][ T6045] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 115.063615][ T6045] ? __pfx_gfs2_quota_init+0x10/0x10 [ 115.063626][ T6045] ? __pfx_wake_up_bit+0x10/0x10 [ 115.063637][ T6045] ? rt_spin_unlock+0x160/0x200 [ 115.063651][ T6045] ? inode_go_inval+0x2a0/0x360 [ 115.063665][ T6045] gfs2_make_fs_rw+0x143/0x230 [ 115.063681][ T6045] gfs2_fill_super+0x1bfd/0x2220 [ 115.063702][ T6045] ? __pfx_gfs2_fill_super+0x10/0x10 [ 115.063713][ T6045] ? rt_spin_unlock+0x14f/0x200 [ 115.063727][ T6045] ? init_locking+0xb8/0x210 [ 115.063738][ T6045] ? sb_set_blocksize+0x11b/0x210 [ 115.063752][ T6045] ? setup_bdev_super+0x4c1/0x5b0 [ 115.063768][ T6045] get_tree_bdev_flags+0x431/0x4f0 [ 115.063784][ T6045] ? __pfx_gfs2_fill_super+0x10/0x10 [ 115.063796][ T6045] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 115.063810][ T6045] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 115.063830][ T6045] gfs2_get_tree+0x51/0x1e0 [ 115.063844][ T6045] vfs_get_tree+0x92/0x2a0 [ 115.063860][ T6045] do_new_mount+0x341/0xd30 [ 115.063870][ T6045] ? apparmor_capable+0x126/0x170 [ 115.063887][ T6045] ? __pfx_do_new_mount+0x10/0x10 [ 115.063898][ T6045] ? ns_capable+0x89/0xe0 [ 115.063911][ T6045] ? user_path_at+0xd4/0x160 [ 115.063926][ T6045] ? user_path_at+0xd4/0x160 [ 115.063940][ T6045] __se_sys_mount+0x31d/0x420 [ 115.063954][ T6045] ? __pfx___se_sys_mount+0x10/0x10 [ 115.063969][ T6045] ? __x64_sys_mount+0x20/0xc0 [ 115.063980][ T6045] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.063992][ T6045] do_syscall_64+0x15f/0xf80 [ 115.064006][ T6045] ? trace_irq_disable+0x3b/0x140 [ 115.064018][ T6045] ? clear_bhb_loop+0x40/0x90 [ 115.064030][ T6045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.064041][ T6045] RIP: 0033:0x7fc2a800da8a [ 115.064052][ T6045] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 115.064060][ T6045] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 115.064070][ T6045] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 115.064078][ T6045] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 115.064085][ T6045] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 115.064091][ T6045] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 115.064098][ T6045] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 115.064118][ T6045] [ 115.064129][ T6045] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 115.064146][ T6045] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 115.064159][ T6045] CPU: 1 UID: 0 PID: 6045 Comm: syz.0.22 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 115.064173][ T6045] Tainted: [W]=WARN [ 115.064176][ T6045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 115.064181][ T6045] Call Trace: [ 115.064185][ T6045] [ 115.064189][ T6045] dump_stack_lvl+0xe8/0x150 [ 115.064200][ T6045] gfs2_assert_warn_i+0x194/0x2c0 [ 115.064218][ T6045] gfs2_qd_dispose+0x466/0x570 [ 115.064232][ T6045] gfs2_quota_init+0xcda/0x1220 [ 115.064242][ T6045] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 115.064266][ T6045] ? __pfx_gfs2_quota_init+0x10/0x10 [ 115.064277][ T6045] ? __pfx_wake_up_bit+0x10/0x10 [ 115.064288][ T6045] ? rt_spin_unlock+0x160/0x200 [ 115.064302][ T6045] ? inode_go_inval+0x2a0/0x360 [ 115.064315][ T6045] gfs2_make_fs_rw+0x143/0x230 [ 115.064342][ T6045] gfs2_fill_super+0x1bfd/0x2220 [ 115.064363][ T6045] ? __pfx_gfs2_fill_super+0x10/0x10 [ 115.064376][ T6045] ? rt_spin_unlock+0x14f/0x200 [ 115.064389][ T6045] ? init_locking+0xb8/0x210 [ 115.064401][ T6045] ? sb_set_blocksize+0x11b/0x210 [ 115.064414][ T6045] ? setup_bdev_super+0x4c1/0x5b0 [ 115.064430][ T6045] get_tree_bdev_flags+0x431/0x4f0 [ 115.064445][ T6045] ? __pfx_gfs2_fill_super+0x10/0x10 [ 115.064457][ T6045] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 115.064471][ T6045] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 115.064490][ T6045] gfs2_get_tree+0x51/0x1e0 [ 115.064504][ T6045] vfs_get_tree+0x92/0x2a0 [ 115.064519][ T6045] do_new_mount+0x341/0xd30 [ 115.064530][ T6045] ? apparmor_capable+0x126/0x170 [ 115.064546][ T6045] ? __pfx_do_new_mount+0x10/0x10 [ 115.064557][ T6045] ? ns_capable+0x89/0xe0 [ 115.064569][ T6045] ? user_path_at+0xd4/0x160 [ 115.064584][ T6045] ? user_path_at+0xd4/0x160 [ 115.064598][ T6045] __se_sys_mount+0x31d/0x420 [ 115.064613][ T6045] ? __pfx___se_sys_mount+0x10/0x10 [ 115.064627][ T6045] ? __x64_sys_mount+0x20/0xc0 [ 115.064638][ T6045] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.064649][ T6045] do_syscall_64+0x15f/0xf80 [ 115.064663][ T6045] ? trace_irq_disable+0x3b/0x140 [ 115.064674][ T6045] ? clear_bhb_loop+0x40/0x90 [ 115.064687][ T6045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.064696][ T6045] RIP: 0033:0x7fc2a800da8a [ 115.064705][ T6045] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 115.064713][ T6045] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 115.064723][ T6045] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 115.064730][ T6045] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 115.064736][ T6045] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 115.064743][ T6045] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 115.064749][ T6045] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 115.064764][ T6045] [ 115.106012][ T6045] gfs2: fsid=syz:syz.0: found 1 quota changes [ 115.859729][ T6050] loop0: detected capacity change from 0 to 32768 [ 115.890278][ T6050] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 115.890298][ T6050] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 115.926563][ T6050] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 115.930818][ T820] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 115.930836][ T820] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 115.993481][ T820] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 62ms [ 115.993708][ T820] gfs2: fsid=syz:syz.0: jid=0: Done [ 115.993756][ T6050] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 116.057850][ T6050] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 116.057904][ T6050] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 116.057941][ T6050] CPU: 1 UID: 0 PID: 6050 Comm: syz.0.23 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 116.057956][ T6050] Tainted: [W]=WARN [ 116.057960][ T6050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 116.057968][ T6050] Call Trace: [ 116.057973][ T6050] [ 116.057978][ T6050] dump_stack_lvl+0xe8/0x150 [ 116.058000][ T6050] gfs2_assert_warn_i+0x194/0x2c0 [ 116.058019][ T6050] gfs2_qd_dispose+0x466/0x570 [ 116.058033][ T6050] gfs2_quota_init+0xcda/0x1220 [ 116.058044][ T6050] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 116.058071][ T6050] ? __pfx_gfs2_quota_init+0x10/0x10 [ 116.058082][ T6050] ? __pfx_wake_up_bit+0x10/0x10 [ 116.058094][ T6050] ? rt_spin_unlock+0x160/0x200 [ 116.058109][ T6050] ? inode_go_inval+0x2a0/0x360 [ 116.058122][ T6050] gfs2_make_fs_rw+0x143/0x230 [ 116.058138][ T6050] gfs2_fill_super+0x1bfd/0x2220 [ 116.058159][ T6050] ? __pfx_gfs2_fill_super+0x10/0x10 [ 116.058171][ T6050] ? rt_spin_unlock+0x14f/0x200 [ 116.058184][ T6050] ? init_locking+0xb8/0x210 [ 116.058196][ T6050] ? sb_set_blocksize+0x11b/0x210 [ 116.058209][ T6050] ? setup_bdev_super+0x4c1/0x5b0 [ 116.058226][ T6050] get_tree_bdev_flags+0x431/0x4f0 [ 116.058241][ T6050] ? __pfx_gfs2_fill_super+0x10/0x10 [ 116.058254][ T6050] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 116.058268][ T6050] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 116.058287][ T6050] gfs2_get_tree+0x51/0x1e0 [ 116.058316][ T6050] vfs_get_tree+0x92/0x2a0 [ 116.058337][ T6050] do_new_mount+0x341/0xd30 [ 116.058348][ T6050] ? apparmor_capable+0x126/0x170 [ 116.058365][ T6050] ? __pfx_do_new_mount+0x10/0x10 [ 116.058377][ T6050] ? ns_capable+0x89/0xe0 [ 116.058390][ T6050] ? user_path_at+0xd4/0x160 [ 116.058406][ T6050] ? user_path_at+0xd4/0x160 [ 116.058420][ T6050] __se_sys_mount+0x31d/0x420 [ 116.058434][ T6050] ? __pfx___se_sys_mount+0x10/0x10 [ 116.058449][ T6050] ? __x64_sys_mount+0x20/0xc0 [ 116.058460][ T6050] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.058471][ T6050] do_syscall_64+0x15f/0xf80 [ 116.058486][ T6050] ? trace_irq_disable+0x3b/0x140 [ 116.058498][ T6050] ? clear_bhb_loop+0x40/0x90 [ 116.058511][ T6050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.058521][ T6050] RIP: 0033:0x7fc2a800da8a [ 116.058537][ T6050] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 116.058545][ T6050] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 116.058562][ T6050] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 116.058569][ T6050] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 116.058576][ T6050] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 116.058583][ T6050] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 116.058589][ T6050] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 116.058604][ T6050] [ 116.121498][ T6050] gfs2: fsid=syz:syz.0: found 1 quota changes [ 116.701114][ T6055] loop0: detected capacity change from 0 to 32768 [ 116.721425][ T6055] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 116.721444][ T6055] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 116.774219][ T6055] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 116.778384][ T819] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 116.778403][ T819] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 116.849148][ T819] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 70ms [ 116.849325][ T819] gfs2: fsid=syz:syz.0: jid=0: Done [ 116.875960][ T6055] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 116.965238][ T6055] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 116.965260][ T6055] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6055, name: syz.0.24 [ 116.965276][ T6055] preempt_count: 1, expected: 0 [ 116.965284][ T6055] RCU nest depth: 1, expected: 1 [ 116.965293][ T6055] 4 locks held by syz.0.24/6055: [ 116.965304][ T6055] #0: ffff8880395e40d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 116.965361][ T6055] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 116.965387][ T6055] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 116.965413][ T6055] #3: ffff88805cdbee98 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 116.965446][ T6055] Preemption disabled at: [ 116.965449][ T6055] [] spin_lock_bucket+0x3b/0x150 [ 116.965468][ T6055] CPU: 0 UID: 0 PID: 6055 Comm: syz.0.24 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 116.965482][ T6055] Tainted: [W]=WARN [ 116.965485][ T6055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 116.965492][ T6055] Call Trace: [ 116.965497][ T6055] [ 116.965501][ T6055] dump_stack_lvl+0xe8/0x150 [ 116.965515][ T6055] __might_resched+0x329/0x480 [ 116.965527][ T6055] ? spin_lock_bucket+0x3b/0x150 [ 116.965540][ T6055] rt_spin_lock+0xc2/0x400 [ 116.965553][ T6055] ? __pfx_rt_spin_lock+0x10/0x10 [ 116.965565][ T6055] ? preempt_count_add+0x91/0x190 [ 116.965576][ T6055] ? rt_spin_lock+0x2ce/0x400 [ 116.965590][ T6055] lockref_get_not_dead+0x28/0xd0 [ 116.965607][ T6055] gfs2_qd_search_bucket+0x139/0x210 [ 116.965621][ T6055] gfs2_quota_init+0x86c/0x1220 [ 116.965631][ T6055] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 116.965656][ T6055] ? __pfx_gfs2_quota_init+0x10/0x10 [ 116.965666][ T6055] ? __pfx_wake_up_bit+0x10/0x10 [ 116.965677][ T6055] ? rt_spin_unlock+0x160/0x200 [ 116.965692][ T6055] ? inode_go_inval+0x2a0/0x360 [ 116.965705][ T6055] gfs2_make_fs_rw+0x143/0x230 [ 116.965721][ T6055] gfs2_fill_super+0x1bfd/0x2220 [ 116.965742][ T6055] ? __pfx_gfs2_fill_super+0x10/0x10 [ 116.965754][ T6055] ? rt_spin_unlock+0x14f/0x200 [ 116.965767][ T6055] ? init_locking+0xb8/0x210 [ 116.965779][ T6055] ? sb_set_blocksize+0x11b/0x210 [ 116.965793][ T6055] ? setup_bdev_super+0x4c1/0x5b0 [ 116.965809][ T6055] get_tree_bdev_flags+0x431/0x4f0 [ 116.965824][ T6055] ? __pfx_gfs2_fill_super+0x10/0x10 [ 116.965837][ T6055] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 116.965851][ T6055] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 116.965876][ T6055] gfs2_get_tree+0x51/0x1e0 [ 116.965890][ T6055] vfs_get_tree+0x92/0x2a0 [ 116.965912][ T6055] do_new_mount+0x341/0xd30 [ 116.965925][ T6055] ? apparmor_capable+0x126/0x170 [ 116.965952][ T6055] ? __pfx_do_new_mount+0x10/0x10 [ 116.965968][ T6055] ? ns_capable+0x89/0xe0 [ 116.965981][ T6055] ? user_path_at+0xd4/0x160 [ 116.965997][ T6055] ? user_path_at+0xd4/0x160 [ 116.966011][ T6055] __se_sys_mount+0x31d/0x420 [ 116.966026][ T6055] ? __pfx___se_sys_mount+0x10/0x10 [ 116.966041][ T6055] ? __x64_sys_mount+0x20/0xc0 [ 116.966052][ T6055] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.966063][ T6055] do_syscall_64+0x15f/0xf80 [ 116.966078][ T6055] ? trace_irq_disable+0x3b/0x140 [ 116.966090][ T6055] ? clear_bhb_loop+0x40/0x90 [ 116.966103][ T6055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.966113][ T6055] RIP: 0033:0x7fc2a800da8a [ 116.966124][ T6055] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 116.966133][ T6055] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 116.966144][ T6055] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 116.966152][ T6055] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 116.966160][ T6055] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 116.966167][ T6055] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 116.966173][ T6055] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 116.966189][ T6055] [ 116.966200][ T6055] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 116.966217][ T6055] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 116.966230][ T6055] CPU: 0 UID: 0 PID: 6055 Comm: syz.0.24 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 116.966244][ T6055] Tainted: [W]=WARN [ 116.966247][ T6055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 116.966253][ T6055] Call Trace: [ 116.966256][ T6055] [ 116.966260][ T6055] dump_stack_lvl+0xe8/0x150 [ 116.966272][ T6055] gfs2_assert_warn_i+0x194/0x2c0 [ 116.966289][ T6055] gfs2_qd_dispose+0x466/0x570 [ 116.966304][ T6055] gfs2_quota_init+0xcda/0x1220 [ 116.966316][ T6055] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 116.966341][ T6055] ? __pfx_gfs2_quota_init+0x10/0x10 [ 116.966351][ T6055] ? __pfx_wake_up_bit+0x10/0x10 [ 116.966362][ T6055] ? rt_spin_unlock+0x160/0x200 [ 116.966377][ T6055] ? inode_go_inval+0x2a0/0x360 [ 116.966390][ T6055] gfs2_make_fs_rw+0x143/0x230 [ 116.966405][ T6055] gfs2_fill_super+0x1bfd/0x2220 [ 116.966425][ T6055] ? __pfx_gfs2_fill_super+0x10/0x10 [ 116.966438][ T6055] ? rt_spin_unlock+0x14f/0x200 [ 116.966451][ T6055] ? init_locking+0xb8/0x210 [ 116.966463][ T6055] ? sb_set_blocksize+0x11b/0x210 [ 116.966476][ T6055] ? setup_bdev_super+0x4c1/0x5b0 [ 116.966492][ T6055] get_tree_bdev_flags+0x431/0x4f0 [ 116.966507][ T6055] ? __pfx_gfs2_fill_super+0x10/0x10 [ 116.966520][ T6055] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 116.966533][ T6055] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 116.966552][ T6055] gfs2_get_tree+0x51/0x1e0 [ 116.966567][ T6055] vfs_get_tree+0x92/0x2a0 [ 116.966583][ T6055] do_new_mount+0x341/0xd30 [ 116.966593][ T6055] ? apparmor_capable+0x126/0x170 [ 116.966609][ T6055] ? __pfx_do_new_mount+0x10/0x10 [ 116.966620][ T6055] ? ns_capable+0x89/0xe0 [ 116.966632][ T6055] ? user_path_at+0xd4/0x160 [ 116.966647][ T6055] ? user_path_at+0xd4/0x160 [ 116.966661][ T6055] __se_sys_mount+0x31d/0x420 [ 116.966675][ T6055] ? __pfx___se_sys_mount+0x10/0x10 [ 116.966690][ T6055] ? __x64_sys_mount+0x20/0xc0 [ 116.966701][ T6055] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.966712][ T6055] do_syscall_64+0x15f/0xf80 [ 116.966726][ T6055] ? trace_irq_disable+0x3b/0x140 [ 116.966737][ T6055] ? clear_bhb_loop+0x40/0x90 [ 116.966749][ T6055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.966759][ T6055] RIP: 0033:0x7fc2a800da8a [ 116.966768][ T6055] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 116.966775][ T6055] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 116.966785][ T6055] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 116.966792][ T6055] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 116.966799][ T6055] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 116.966805][ T6055] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 116.966812][ T6055] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 116.966827][ T6055] [ 117.007554][ T6055] gfs2: fsid=syz:syz.0: found 1 quota changes [ 117.772451][ T6060] loop0: detected capacity change from 0 to 32768 [ 117.802390][ T6060] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 117.802408][ T6060] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 117.835152][ T6060] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 117.845467][ T819] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 117.845486][ T819] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 117.888572][ T819] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 43ms [ 117.889598][ T819] gfs2: fsid=syz:syz.0: jid=0: Done [ 117.889651][ T6060] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 117.997480][ T6060] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 117.997500][ T6060] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6060, name: syz.0.25 [ 117.997516][ T6060] preempt_count: 1, expected: 0 [ 117.997524][ T6060] RCU nest depth: 1, expected: 1 [ 117.997533][ T6060] 4 locks held by syz.0.25/6060: [ 117.997544][ T6060] #0: ffff888039a5c0d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 117.997607][ T6060] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 117.997632][ T6060] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 117.997670][ T6060] #3: ffff88805cdbeb78 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 117.997722][ T6060] Preemption disabled at: [ 117.997726][ T6060] [] spin_lock_bucket+0x3b/0x150 [ 117.997754][ T6060] CPU: 0 UID: 0 PID: 6060 Comm: syz.0.25 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 117.997778][ T6060] Tainted: [W]=WARN [ 117.997784][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 117.997795][ T6060] Call Trace: [ 117.997802][ T6060] [ 117.997810][ T6060] dump_stack_lvl+0xe8/0x150 [ 117.997830][ T6060] __might_resched+0x329/0x480 [ 117.997843][ T6060] ? spin_lock_bucket+0x3b/0x150 [ 117.997862][ T6060] rt_spin_lock+0xc2/0x400 [ 117.997876][ T6060] ? __pfx_rt_spin_lock+0x10/0x10 [ 117.997888][ T6060] ? preempt_count_add+0x91/0x190 [ 117.997899][ T6060] ? rt_spin_lock+0x2ce/0x400 [ 117.997912][ T6060] lockref_get_not_dead+0x28/0xd0 [ 117.997930][ T6060] gfs2_qd_search_bucket+0x139/0x210 [ 117.997943][ T6060] gfs2_quota_init+0x86c/0x1220 [ 117.997954][ T6060] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 117.997978][ T6060] ? __pfx_gfs2_quota_init+0x10/0x10 [ 117.997989][ T6060] ? __pfx_wake_up_bit+0x10/0x10 [ 117.998000][ T6060] ? rt_spin_unlock+0x160/0x200 [ 117.998018][ T6060] ? inode_go_inval+0x2a0/0x360 [ 117.998031][ T6060] gfs2_make_fs_rw+0x143/0x230 [ 117.998047][ T6060] gfs2_fill_super+0x1bfd/0x2220 [ 117.998068][ T6060] ? __pfx_gfs2_fill_super+0x10/0x10 [ 117.998080][ T6060] ? rt_spin_unlock+0x14f/0x200 [ 117.998093][ T6060] ? init_locking+0xb8/0x210 [ 117.998108][ T6060] ? sb_set_blocksize+0x11b/0x210 [ 117.998122][ T6060] ? setup_bdev_super+0x4c1/0x5b0 [ 117.998138][ T6060] get_tree_bdev_flags+0x431/0x4f0 [ 117.998153][ T6060] ? __pfx_gfs2_fill_super+0x10/0x10 [ 117.998166][ T6060] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 117.998180][ T6060] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 117.998199][ T6060] gfs2_get_tree+0x51/0x1e0 [ 117.998214][ T6060] vfs_get_tree+0x92/0x2a0 [ 117.998229][ T6060] do_new_mount+0x341/0xd30 [ 117.998240][ T6060] ? apparmor_capable+0x126/0x170 [ 117.998256][ T6060] ? __pfx_do_new_mount+0x10/0x10 [ 117.998268][ T6060] ? ns_capable+0x89/0xe0 [ 117.998281][ T6060] ? user_path_at+0xd4/0x160 [ 117.998296][ T6060] ? user_path_at+0xd4/0x160 [ 117.998310][ T6060] __se_sys_mount+0x31d/0x420 [ 117.998325][ T6060] ? __pfx___se_sys_mount+0x10/0x10 [ 117.998340][ T6060] ? __x64_sys_mount+0x20/0xc0 [ 117.998351][ T6060] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.998363][ T6060] do_syscall_64+0x15f/0xf80 [ 117.998377][ T6060] ? trace_irq_disable+0x3b/0x140 [ 117.998389][ T6060] ? clear_bhb_loop+0x40/0x90 [ 117.998401][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.998411][ T6060] RIP: 0033:0x7fc2a800da8a [ 117.998422][ T6060] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 117.998430][ T6060] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 117.998441][ T6060] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 117.998448][ T6060] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 117.998455][ T6060] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 117.998462][ T6060] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 117.998469][ T6060] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 117.998484][ T6060] [ 117.998502][ T6060] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768 [ 117.998520][ T6060] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 117.998533][ T6060] CPU: 0 UID: 0 PID: 6060 Comm: syz.0.25 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 117.998546][ T6060] Tainted: [W]=WARN [ 117.998550][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 117.998555][ T6060] Call Trace: [ 117.998559][ T6060] [ 117.998562][ T6060] dump_stack_lvl+0xe8/0x150 [ 117.998574][ T6060] gfs2_assert_warn_i+0x194/0x2c0 [ 117.998591][ T6060] gfs2_qd_dispose+0x466/0x570 [ 117.998608][ T6060] gfs2_quota_init+0xcda/0x1220 [ 117.998619][ T6060] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 117.998643][ T6060] ? __pfx_gfs2_quota_init+0x10/0x10 [ 117.998654][ T6060] ? __pfx_wake_up_bit+0x10/0x10 [ 117.998664][ T6060] ? rt_spin_unlock+0x160/0x200 [ 117.998679][ T6060] ? inode_go_inval+0x2a0/0x360 [ 117.998692][ T6060] gfs2_make_fs_rw+0x143/0x230 [ 117.998707][ T6060] gfs2_fill_super+0x1bfd/0x2220 [ 117.998728][ T6060] ? __pfx_gfs2_fill_super+0x10/0x10 [ 117.998739][ T6060] ? rt_spin_unlock+0x14f/0x200 [ 117.998752][ T6060] ? init_locking+0xb8/0x210 [ 117.998764][ T6060] ? sb_set_blocksize+0x11b/0x210 [ 117.998777][ T6060] ? setup_bdev_super+0x4c1/0x5b0 [ 117.998793][ T6060] get_tree_bdev_flags+0x431/0x4f0 [ 117.998808][ T6060] ? __pfx_gfs2_fill_super+0x10/0x10 [ 117.998821][ T6060] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 117.998834][ T6060] ? __pfx_vfs_parse_comma_sep+0x10/0x10 [ 117.998857][ T6060] gfs2_get_tree+0x51/0x1e0 [ 117.998872][ T6060] vfs_get_tree+0x92/0x2a0 [ 117.998888][ T6060] do_new_mount+0x341/0xd30 [ 117.998899][ T6060] ? apparmor_capable+0x126/0x170 [ 117.998914][ T6060] ? __pfx_do_new_mount+0x10/0x10 [ 117.998925][ T6060] ? ns_capable+0x89/0xe0 [ 117.998937][ T6060] ? user_path_at+0xd4/0x160 [ 117.998952][ T6060] ? user_path_at+0xd4/0x160 [ 117.998966][ T6060] __se_sys_mount+0x31d/0x420 [ 117.998980][ T6060] ? __pfx___se_sys_mount+0x10/0x10 [ 117.998995][ T6060] ? __x64_sys_mount+0x20/0xc0 [ 117.999006][ T6060] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.999017][ T6060] do_syscall_64+0x15f/0xf80 [ 117.999031][ T6060] ? trace_irq_disable+0x3b/0x140 [ 117.999042][ T6060] ? clear_bhb_loop+0x40/0x90 [ 117.999054][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.999064][ T6060] RIP: 0033:0x7fc2a800da8a [ 117.999072][ T6060] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 117.999080][ T6060] RSP: 002b:00007fff3b870ea8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 117.999089][ T6060] RAX: ffffffffffffffda RBX: 00007fff3b870f30 RCX: 00007fc2a800da8a [ 117.999097][ T6060] RDX: 00002000000124c0 RSI: 0000200000012500 RDI: 00007fff3b870ef0 [ 117.999103][ T6060] RBP: 00002000000124c0 R08: 00007fff3b870f30 R09: 0000000000004800 [ 117.999110][ T6060] R10: 0000000000004800 R11: 0000000000000246 R12: 0000200000012500 [ 117.999116][ T6060] R13: 00007fff3b870ef0 R14: 00000000000125fd R15: 0000200000000180 [ 117.999131][ T6060] [ 118.158020][ T6060] gfs2: fsid=syz:syz.0: found 1 quota changes [ 118.879184][ T6066] loop0: detected capacity change from 0 to 32768 [ 118.907453][ T6066] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 118.907473][ T6066] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 118.948345][ T6066] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 118.963843][ T819] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 118.963861][ T819] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 119.026717][ T819] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 62ms [ 119.040146][ T819] gfs2: fsid=syz:syz.0: jid=0: Done [ 119.040200][ T6066] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 119.120741][ T6066] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 119.120764][ T6066] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6066, name: syz.0.26 [ 119.120780][ T6066] preempt_count: 1, expected: 0 [ 119.120789][ T6066] RCU nest depth: 1, expected: 1 [ 119.120798][ T6066] 4 locks held by syz.0.26/6066: [ 119.120808][ T6066] #0: ffff88803a5380d0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 119.120867][ T6066] #1: ffffffff8e620a78 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 119.120892][ T6066] #2: ffffffff8dfc8100 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 119.120918][ T6066] #3: ffff88805d081e38 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 119.120953][ T6066] Preemption disabled at: [ 119.120956][ T6066] [] spin_lock_bucket+0x3b/0x150 [ 119.120976][ T6066] CPU: 0 UID: 0 PID: 6066 Comm: syz.0.26 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} 2026/04/15 08:06:02 executed programs: 12 [ 119.120990][ T6066] Tainted: [W]=WARN [ 119.120994][ T6066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 119.121001][ T6066] Call Trace: [ 119.121005][ T6066] [ 119.121010][ T6066] dump_stack_lvl+0xe8/0x150 [ 119.121031][ T6066] __might_resched+0x329/0x480 [ 119.121044][ T6066] ? spin_lock_bucket+0x3b/0x150 [ 119.121056][ T6066] rt_spin_lock+0xc2/0x400 [ 119.121069][ T6066] ? __pfx_rt_spin_lock+0x10/0x10 [ 119.121081][ T6066] ? preempt_count_add+0x91/0x190 [ 119.121092][ T6066] ? rt_spin_lock+0x2ce/0x400 [ 119.121106][ T6066] lockref_get_not_dead+0x28/0xd0 [ 119.121123][ T6066] gfs2_qd_search_bucket+0x139/0x210 [ 119.121136][ T6066] gfs2_quota_init+0x86c/0x1220 [ 119.121147][ T6066] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 119.121171][ T6066] ? __pfx_gfs2_quota_init+0x10/0x10 [ 119.121182][ T6066] ? __pfx_wake_up_bit+0x10/0x10 [ 119.121193][ T6066] ? rt_spin_unlock+0x160/0x200 [ 119.121208][ T6066] ? inode_go_inval+0x2a0/0x360 [ 119.121221][ T6066] gfs2_make_fs_rw+0x143/0x230 [ 119.121237][ T6066] gfs2_fill_super+0x1bfd/0x2220 [ 119.121258][ T6066] ? __pfx_gfs2_fill_super+0x10/0x10 [ 119.121270][ T6066] ? rt_spin_unlock+0x14f/0x200 [ 119.121283][ T6066] ? init_locking+0xb8/0x210 [ 119.121294][ T6066] ? sb_set_blocksize+0x11b/0x210 [ 119.121308][ T6066] ? setup_bdev_super+0x4c1/0x5b0 [ 119.121324][ T6066] get_tree_bdev_flags+0x431/0x4f0 [ 119.121339][ T6066] ? __pfx_gfs2_fill_super+0x10/0x10 [ 119.121352][ T6066] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 119.121366][ T6066] ? __pfx_vfs_parse_comma_sep+0x10/0x10