id=syz:syz: Now mounting FS (format 1801)...
[ 141.614339][ T6313] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 141.623926][ T932] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 141.631166][ T932] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 141.670518][ T932] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 39ms
[ 141.678159][ T932] gfs2: fsid=syz:syz.0: jid=0: Done
[ 141.684869][ T6313] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 141.715908][ T6317] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 141.732191][ T6317] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 141.741602][ T6317] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6317 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 141.752343][ T6317] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 141.756520][ T6313] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 141.761487][ T6317] CPU: 1 UID: 0 PID: 6317 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 141.761513][ T6317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 141.761523][ T6317] Call Trace:
[ 141.761533][ T6317]
[ 141.761542][ T6317] dump_stack_lvl+0x189/0x250
[ 141.761571][ T6317] ? __pfx_dump_stack_lvl+0x10/0x10
[ 141.761592][ T6317] ? queue_delayed_work_on+0x11a/0x280
[ 141.761613][ T6317] ? lockdep_hardirqs_on+0x98/0x140
[ 141.761633][ T6317] ? preempt_schedule+0xae/0xc0
[ 141.761659][ T6317] gfs2_withdraw+0xc3/0x1b0
[ 141.761679][ T6317] inode_go_instantiate+0xdd0/0x1210
[ 141.761713][ T6317] ? __pfx_inode_go_instantiate+0x10/0x10
[ 141.761741][ T6317] ? gfs2_glock_nq+0xedd/0x15f0
[ 141.761765][ T6317] gfs2_instantiate+0x168/0x220
[ 141.761786][ T6317] gfs2_glock_wait+0x1d4/0x2a0
[ 141.761808][ T6317] do_sync+0x46f/0xc60
[ 141.761827][ T6317] ? _raw_spin_unlock+0x28/0x50
[ 141.761843][ T6317] ? gfs2_quota_sync+0x359/0x460
[ 141.761873][ T6317] ? __pfx_do_sync+0x10/0x10
[ 141.761903][ T6317] ? gfs2_quota_sync+0x359/0x460
[ 141.761927][ T6317] ? do_raw_spin_unlock+0x122/0x240
[ 141.761954][ T6317] gfs2_quota_sync+0x359/0x460
[ 141.761985][ T6317] gfs2_quotad+0x3d5/0x930
[ 141.762021][ T6317] ? __pfx_gfs2_quotad+0x10/0x10
[ 141.762046][ T6317] ? __kthread_parkme+0x7b/0x200
[ 141.762065][ T6317] ? __kthread_parkme+0x1a1/0x200
[ 141.762089][ T6317] kthread+0x711/0x8a0
[ 141.762113][ T6317] ? __pfx_gfs2_quotad+0x10/0x10
[ 141.762133][ T6317] ? __pfx_kthread+0x10/0x10
[ 141.762155][ T6317] ? _raw_spin_unlock_irq+0x23/0x50
[ 141.762172][ T6317] ? lockdep_hardirqs_on+0x98/0x140
[ 141.762189][ T6317] ? __pfx_kthread+0x10/0x10
[ 141.762210][ T6317] ret_from_fork+0x599/0xb30
[ 141.762229][ T6317] ? __pfx_ret_from_fork+0x10/0x10
[ 141.762256][ T6317] ? __switch_to_asm+0x39/0x70
[ 141.762275][ T6317] ? __switch_to_asm+0x33/0x70
[ 141.762293][ T6317] ? __pfx_kthread+0x10/0x10
[ 141.762404][ T6317] ret_from_fork_asm+0x1a/0x30
[ 141.762450][ T6317]
[ 141.995312][ T6313] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 142.336548][ T6318] loop0: detected capacity change from 0 to 32768
[ 142.377687][ T6318] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 142.387030][ T6318] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 142.402060][ T6318] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 142.412286][ T932] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 142.419781][ T932] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 142.456253][ T932] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 36ms
[ 142.465955][ T932] gfs2: fsid=syz:syz.0: jid=0: Done
[ 142.471490][ T6318] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 142.488485][ T6322] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 142.503038][ T6322] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 142.516740][ T6322] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6322 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 142.522761][ T6318] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 142.528937][ T6322] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 142.548061][ T6322] CPU: 0 UID: 0 PID: 6322 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 142.548085][ T6322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 142.548095][ T6322] Call Trace:
[ 142.548103][ T6322]
[ 142.548111][ T6322] dump_stack_lvl+0x189/0x250
[ 142.548140][ T6322] ? __pfx_dump_stack_lvl+0x10/0x10
[ 142.548179][ T6322] ? queue_delayed_work_on+0x11a/0x280
[ 142.548200][ T6322] ? lockdep_hardirqs_on+0x98/0x140
[ 142.548220][ T6322] ? preempt_schedule+0xae/0xc0
[ 142.548252][ T6322] gfs2_withdraw+0xc3/0x1b0
[ 142.548272][ T6322] inode_go_instantiate+0xdd0/0x1210
[ 142.548307][ T6322] ? __pfx_inode_go_instantiate+0x10/0x10
[ 142.548335][ T6322] ? gfs2_glock_nq+0xedd/0x15f0
[ 142.548359][ T6322] gfs2_instantiate+0x168/0x220
[ 142.548380][ T6322] gfs2_glock_wait+0x1d4/0x2a0
[ 142.548402][ T6322] do_sync+0x46f/0xc60
[ 142.548422][ T6322] ? _raw_spin_unlock+0x28/0x50
[ 142.548439][ T6322] ? gfs2_quota_sync+0x359/0x460
[ 142.548470][ T6322] ? __pfx_do_sync+0x10/0x10
[ 142.548501][ T6322] ? gfs2_quota_sync+0x359/0x460
[ 142.548526][ T6322] ? do_raw_spin_unlock+0x122/0x240
[ 142.548554][ T6322] gfs2_quota_sync+0x359/0x460
[ 142.548587][ T6322] gfs2_quotad+0x3d5/0x930
[ 142.548626][ T6322] ? __pfx_gfs2_quotad+0x10/0x10
[ 142.548652][ T6322] ? __kthread_parkme+0x7b/0x200
[ 142.548672][ T6322] ? __kthread_parkme+0x1a1/0x200
[ 142.548699][ T6322] kthread+0x711/0x8a0
[ 142.548723][ T6322] ? __pfx_gfs2_quotad+0x10/0x10
[ 142.548744][ T6322] ? __pfx_kthread+0x10/0x10
[ 142.548768][ T6322] ? _raw_spin_unlock_irq+0x23/0x50
[ 142.548785][ T6322] ? lockdep_hardirqs_on+0x98/0x140
[ 142.548802][ T6322] ? __pfx_kthread+0x10/0x10
[ 142.548825][ T6322] ret_from_fork+0x599/0xb30
[ 142.548844][ T6322] ? __pfx_ret_from_fork+0x10/0x10
[ 142.548868][ T6322] ? __switch_to_asm+0x39/0x70
[ 142.548885][ T6322] ? __switch_to_asm+0x33/0x70
[ 142.548897][ T6322] ? __pfx_kthread+0x10/0x10
[ 142.548909][ T6322] ret_from_fork_asm+0x1a/0x30
[ 142.548929][ T6322]
[ 142.775537][ T6318] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 143.116813][ T6323] loop0: detected capacity change from 0 to 32768
[ 143.141164][ T6323] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 143.150393][ T6323] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 143.169979][ T6323] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 143.185754][ T932] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 143.192547][ T932] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 143.243722][ T932] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 51ms
[ 143.254132][ T932] gfs2: fsid=syz:syz.0: jid=0: Done
[ 143.265248][ T6323] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 143.305650][ T6327] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 143.333531][ T6323] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 143.347243][ T6327] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 143.373417][ T6323] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 143.379663][ T6327] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6327 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 143.395548][ T6327] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 143.403754][ T6327] CPU: 1 UID: 0 PID: 6327 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 143.403777][ T6327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 143.403787][ T6327] Call Trace:
[ 143.403795][ T6327]
[ 143.403802][ T6327] dump_stack_lvl+0x189/0x250
[ 143.403831][ T6327] ? __pfx_dump_stack_lvl+0x10/0x10
[ 143.403852][ T6327] ? queue_delayed_work_on+0x11a/0x280
[ 143.403873][ T6327] ? lockdep_hardirqs_on+0x98/0x140
[ 143.403894][ T6327] ? preempt_schedule+0xae/0xc0
[ 143.403920][ T6327] gfs2_withdraw+0xc3/0x1b0
[ 143.403939][ T6327] inode_go_instantiate+0xdd0/0x1210
[ 143.403974][ T6327] ? __pfx_inode_go_instantiate+0x10/0x10
[ 143.404002][ T6327] ? gfs2_glock_nq+0xedd/0x15f0
[ 143.404026][ T6327] gfs2_instantiate+0x168/0x220
[ 143.404047][ T6327] gfs2_glock_wait+0x1d4/0x2a0
[ 143.404069][ T6327] do_sync+0x46f/0xc60
[ 143.404094][ T6327] ? _raw_spin_unlock+0x28/0x50
[ 143.404111][ T6327] ? gfs2_quota_sync+0x359/0x460
[ 143.404142][ T6327] ? __pfx_do_sync+0x10/0x10
[ 143.404172][ T6327] ? gfs2_quota_sync+0x359/0x460
[ 143.404197][ T6327] ? do_raw_spin_unlock+0x122/0x240
[ 143.404225][ T6327] gfs2_quota_sync+0x359/0x460
[ 143.404257][ T6327] gfs2_quotad+0x3d5/0x930
[ 143.404296][ T6327] ? __pfx_gfs2_quotad+0x10/0x10
[ 143.404323][ T6327] ? __kthread_parkme+0x7b/0x200
[ 143.404343][ T6327] ? __kthread_parkme+0x1a1/0x200
[ 143.404369][ T6327] kthread+0x711/0x8a0
[ 143.404393][ T6327] ? __pfx_gfs2_quotad+0x10/0x10
[ 143.404419][ T6327] ? __pfx_kthread+0x10/0x10
[ 143.404442][ T6327] ? _raw_spin_unlock_irq+0x23/0x50
[ 143.404460][ T6327] ? lockdep_hardirqs_on+0x98/0x140
[ 143.404477][ T6327] ? __pfx_kthread+0x10/0x10
[ 143.404503][ T6327] ret_from_fork+0x599/0xb30
[ 143.404521][ T6327] ? __pfx_ret_from_fork+0x10/0x10
[ 143.404546][ T6327] ? __switch_to_asm+0x39/0x70
[ 143.404565][ T6327] ? __switch_to_asm+0x33/0x70
[ 143.404584][ T6327] ? __pfx_kthread+0x10/0x10
[ 143.404607][ T6327] ret_from_fork_asm+0x1a/0x30
[ 143.404646][ T6327]
[ 143.605187][ T6327] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 143.958098][ T6328] loop0: detected capacity change from 0 to 32768
[ 143.972972][ T6328] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 143.990588][ T6328] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 144.006196][ T6328] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 144.026371][ T932] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 144.033411][ T932] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 144.077887][ T932] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 44ms
[ 144.087485][ T932] gfs2: fsid=syz:syz.0: jid=0: Done
[ 144.092763][ T6328] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 144.115422][ T6332] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 144.130691][ T6332] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 144.140048][ T6332] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6332 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 144.150843][ T6332] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 144.159128][ T6332] CPU: 1 UID: 0 PID: 6332 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 144.159150][ T6332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 144.159160][ T6332] Call Trace:
[ 144.159167][ T6332]
[ 144.159174][ T6332] dump_stack_lvl+0x189/0x250
[ 144.159199][ T6332] ? __pfx_dump_stack_lvl+0x10/0x10
[ 144.159218][ T6332] ? queue_delayed_work_on+0x11a/0x280
[ 144.159238][ T6332] ? lockdep_hardirqs_on+0x98/0x140
[ 144.159257][ T6332] ? preempt_schedule+0xae/0xc0
[ 144.159279][ T6332] gfs2_withdraw+0xc3/0x1b0
[ 144.159296][ T6332] inode_go_instantiate+0xdd0/0x1210
[ 144.159328][ T6332] ? __pfx_inode_go_instantiate+0x10/0x10
[ 144.159362][ T6332] ? gfs2_glock_nq+0xedd/0x15f0
[ 144.159387][ T6332] gfs2_instantiate+0x168/0x220
[ 144.159406][ T6332] gfs2_glock_wait+0x1d4/0x2a0
[ 144.159425][ T6332] do_sync+0x46f/0xc60
[ 144.159445][ T6332] ? _raw_spin_unlock+0x28/0x50
[ 144.159461][ T6332] ? gfs2_quota_sync+0x359/0x460
[ 144.159492][ T6332] ? __pfx_do_sync+0x10/0x10
[ 144.159519][ T6332] ? gfs2_quota_sync+0x359/0x460
[ 144.159544][ T6332] ? do_raw_spin_unlock+0x122/0x240
[ 144.159571][ T6332] gfs2_quota_sync+0x359/0x460
[ 144.159602][ T6332] gfs2_quotad+0x3d5/0x930
[ 144.159641][ T6332] ? __pfx_gfs2_quotad+0x10/0x10
[ 144.159667][ T6332] ? __kthread_parkme+0x7b/0x200
[ 144.159686][ T6332] ? __kthread_parkme+0x1a1/0x200
[ 144.159712][ T6332] kthread+0x711/0x8a0
[ 144.159736][ T6332] ? __pfx_gfs2_quotad+0x10/0x10
[ 144.159757][ T6332] ? __pfx_kthread+0x10/0x10
[ 144.159779][ T6332] ? _raw_spin_unlock_irq+0x23/0x50
[ 144.159796][ T6332] ? lockdep_hardirqs_on+0x98/0x140
[ 144.159812][ T6332] ? __pfx_kthread+0x10/0x10
[ 144.159834][ T6332] ret_from_fork+0x599/0xb30
[ 144.159854][ T6332] ? __pfx_ret_from_fork+0x10/0x10
[ 144.159882][ T6332] ? __switch_to_asm+0x39/0x70
[ 144.159901][ T6332] ? __switch_to_asm+0x33/0x70
[ 144.159920][ T6332] ? __pfx_kthread+0x10/0x10
[ 144.159942][ T6332] ret_from_fork_asm+0x1a/0x30
[ 144.159980][ T6332]
[ 144.394998][ T6328] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 144.726662][ T6333] loop0: detected capacity change from 0 to 32768
[ 144.745606][ T6333] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 144.753814][ T6333] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 144.769792][ T6333] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 144.779374][ T184] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 144.786389][ T184] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 144.822710][ T184] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 36ms
[ 144.830486][ T184] gfs2: fsid=syz:syz.0: jid=0: Done
[ 144.837867][ T6333] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 144.870454][ T6337] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 144.885451][ T6337] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 144.895888][ T6337] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6337 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 144.907241][ T6337] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 144.918739][ T6337] CPU: 0 UID: 0 PID: 6337 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 144.918761][ T6337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 144.918771][ T6337] Call Trace:
[ 144.918778][ T6337]
[ 144.918786][ T6337] dump_stack_lvl+0x189/0x250
[ 144.918815][ T6337] ? __pfx_dump_stack_lvl+0x10/0x10
[ 144.918835][ T6337] ? queue_delayed_work_on+0x11a/0x280
[ 144.918856][ T6337] ? lockdep_hardirqs_on+0x98/0x140
[ 144.918876][ T6337] ? preempt_schedule+0xae/0xc0
[ 144.918902][ T6337] gfs2_withdraw+0xc3/0x1b0
[ 144.918922][ T6337] inode_go_instantiate+0xdd0/0x1210
[ 144.918957][ T6337] ? __pfx_inode_go_instantiate+0x10/0x10
[ 144.918983][ T6337] ? gfs2_glock_nq+0xedd/0x15f0
[ 144.919008][ T6337] gfs2_instantiate+0x168/0x220
[ 144.919028][ T6337] gfs2_glock_wait+0x1d4/0x2a0
[ 144.919049][ T6337] do_sync+0x46f/0xc60
[ 144.919069][ T6337] ? _raw_spin_unlock+0x28/0x50
[ 144.919085][ T6337] ? gfs2_quota_sync+0x359/0x460
[ 144.919115][ T6337] ? __pfx_do_sync+0x10/0x10
[ 144.919146][ T6337] ? gfs2_quota_sync+0x359/0x460
[ 144.919171][ T6337] ? do_raw_spin_unlock+0x122/0x240
[ 144.919198][ T6337] gfs2_quota_sync+0x359/0x460
[ 144.919236][ T6337] gfs2_quotad+0x3d5/0x930
[ 144.919274][ T6337] ? __pfx_gfs2_quotad+0x10/0x10
[ 144.919300][ T6337] ? __kthread_parkme+0x7b/0x200
[ 144.919320][ T6337] ? __kthread_parkme+0x1a1/0x200
[ 144.919342][ T6337] kthread+0x711/0x8a0
[ 144.919364][ T6337] ? __pfx_gfs2_quotad+0x10/0x10
[ 144.919382][ T6337] ? __pfx_kthread+0x10/0x10
[ 144.919402][ T6337] ? _raw_spin_unlock_irq+0x23/0x50
[ 144.919419][ T6337] ? lockdep_hardirqs_on+0x98/0x140
[ 144.919433][ T6337] ? __pfx_kthread+0x10/0x10
[ 144.919451][ T6337] ret_from_fork+0x599/0xb30
[ 144.919470][ T6337] ? __pfx_ret_from_fork+0x10/0x10
[ 144.919496][ T6337] ? __switch_to_asm+0x39/0x70
[ 144.919513][ T6337] ? __switch_to_asm+0x33/0x70
[ 144.919530][ T6337] ? __pfx_kthread+0x10/0x10
[ 144.919551][ T6337] ret_from_fork_asm+0x1a/0x30
[ 144.919588][ T6337]
[ 145.135023][ T6333] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 145.470088][ T6338] loop0: detected capacity change from 0 to 32768
[ 145.487129][ T6338] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 145.496973][ T6338] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 145.509017][ T6338] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 145.518600][ T184] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 145.526554][ T184] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 145.562876][ T184] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 36ms
[ 145.570608][ T184] gfs2: fsid=syz:syz.0: jid=0: Done
[ 145.576292][ T6338] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 145.644202][ T6338] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 145.655536][ T6338] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 145.670943][ T6338] CPU: 1 UID: 0 PID: 6338 Comm: syz.0.85 Not tainted syzkaller #0 PREEMPT(full)
[ 145.670958][ T6338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 145.670964][ T6338] Call Trace:
[ 145.670969][ T6338]
[ 145.670973][ T6338] dump_stack_lvl+0x189/0x250
[ 145.670992][ T6338] ? __pfx_dump_stack_lvl+0x10/0x10
[ 145.671003][ T6338] ? __pfx__printk+0x10/0x10
[ 145.671019][ T6338] ? do_raw_spin_unlock+0x122/0x240
[ 145.671035][ T6338] gfs2_assert_warn_i+0x194/0x2c0
[ 145.671049][ T6338] gfs2_qd_dispose+0x466/0x570
[ 145.671065][ T6338] gfs2_quota_init+0xcb0/0x1200
[ 145.671088][ T6338] ? __pfx_gfs2_quota_init+0x10/0x10
[ 145.671099][ T6338] ? rcu_is_watching+0x15/0xb0
[ 145.671110][ T6338] ? __pfx_wake_up_bit+0x10/0x10
[ 145.671121][ T6338] ? kfree+0x4d/0x660
[ 145.671137][ T6338] ? inode_go_inval+0x2a0/0x360
[ 145.671152][ T6338] gfs2_make_fs_rw+0x143/0x220
[ 145.671164][ T6338] gfs2_fill_super+0x1b6a/0x21b0
[ 145.671181][ T6338] ? __pfx_gfs2_fill_super+0x10/0x10
[ 145.671192][ T6338] ? init_locking+0xb8/0x210
[ 145.671200][ T6338] ? sb_set_blocksize+0x155/0x240
[ 145.671214][ T6338] ? setup_bdev_super+0x4c1/0x5b0
[ 145.671226][ T6338] get_tree_bdev_flags+0x40e/0x4d0
[ 145.671236][ T6338] ? __pfx_gfs2_fill_super+0x10/0x10
[ 145.671250][ T6338] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 145.671258][ T6338] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 145.671277][ T6338] gfs2_get_tree+0x51/0x1e0
[ 145.671288][ T6338] vfs_get_tree+0x92/0x2a0
[ 145.671299][ T6338] do_new_mount+0x302/0xa10
[ 145.671310][ T6338] ? apparmor_capable+0x137/0x1a0
[ 145.671326][ T6338] ? __pfx_do_new_mount+0x10/0x10
[ 145.671337][ T6338] ? ns_capable+0x8a/0xf0
[ 145.671348][ T6338] ? kmem_cache_free+0x197/0x620
[ 145.671364][ T6338] __se_sys_mount+0x313/0x410
[ 145.671378][ T6338] ? __pfx___se_sys_mount+0x10/0x10
[ 145.671392][ T6338] ? do_syscall_64+0xbe/0xf80
[ 145.671402][ T6338] ? __x64_sys_mount+0x20/0xc0
[ 145.671415][ T6338] do_syscall_64+0xfa/0xf80
[ 145.671425][ T6338] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 145.671435][ T6338] ? clear_bhb_loop+0x60/0xb0
[ 145.671446][ T6338] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 145.671455][ T6338] RIP: 0033:0x7f8532990eea
[ 145.671465][ T6338] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 145.671473][ T6338] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 145.671484][ T6338] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 145.671490][ T6338] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 145.671497][ T6338] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 145.671503][ T6338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 145.671509][ T6338] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 145.671525][ T6338]
[ 145.968201][ T6338] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 146.311328][ T6343] loop0: detected capacity change from 0 to 32768
[ 146.338876][ T6343] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 146.347932][ T6343] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 146.361167][ T6343] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 146.370764][ T184] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 146.377623][ T184] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 146.420399][ T184] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 42ms
[ 146.428684][ T184] gfs2: fsid=syz:syz.0: jid=0: Done
[ 146.434316][ T6343] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 146.496265][ T6343] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 146.507548][ T6343] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 146.522027][ T6343] CPU: 1 UID: 0 PID: 6343 Comm: syz.0.86 Not tainted syzkaller #0 PREEMPT(full)
[ 146.522042][ T6343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 146.522048][ T6343] Call Trace:
[ 146.522052][ T6343]
[ 146.522056][ T6343] dump_stack_lvl+0x189/0x250
[ 146.522074][ T6343] ? __pfx_dump_stack_lvl+0x10/0x10
[ 146.522086][ T6343] ? __pfx__printk+0x10/0x10
[ 146.522102][ T6343] ? do_raw_spin_unlock+0x122/0x240
[ 146.522135][ T6343] gfs2_assert_warn_i+0x194/0x2c0
[ 146.522150][ T6343] gfs2_qd_dispose+0x466/0x570
[ 146.522166][ T6343] gfs2_quota_init+0xcb0/0x1200
[ 146.522190][ T6343] ? __pfx_gfs2_quota_init+0x10/0x10
[ 146.522201][ T6343] ? rcu_is_watching+0x15/0xb0
[ 146.522213][ T6343] ? __pfx_wake_up_bit+0x10/0x10
[ 146.522224][ T6343] ? kfree+0x4d/0x660
[ 146.522241][ T6343] ? inode_go_inval+0x2a0/0x360
[ 146.522255][ T6343] gfs2_make_fs_rw+0x143/0x220
[ 146.522267][ T6343] gfs2_fill_super+0x1b6a/0x21b0
[ 146.522285][ T6343] ? __pfx_gfs2_fill_super+0x10/0x10
[ 146.522296][ T6343] ? init_locking+0xb8/0x210
[ 146.522304][ T6343] ? sb_set_blocksize+0x155/0x240
[ 146.522317][ T6343] ? setup_bdev_super+0x4c1/0x5b0
[ 146.522329][ T6343] get_tree_bdev_flags+0x40e/0x4d0
[ 146.522339][ T6343] ? __pfx_gfs2_fill_super+0x10/0x10
[ 146.522349][ T6343] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 146.522357][ T6343] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 146.522376][ T6343] gfs2_get_tree+0x51/0x1e0
[ 146.522387][ T6343] vfs_get_tree+0x92/0x2a0
[ 146.522398][ T6343] do_new_mount+0x302/0xa10
[ 146.522409][ T6343] ? apparmor_capable+0x137/0x1a0
[ 146.522425][ T6343] ? __pfx_do_new_mount+0x10/0x10
[ 146.522436][ T6343] ? ns_capable+0x8a/0xf0
[ 146.522448][ T6343] ? kmem_cache_free+0x197/0x620
[ 146.522463][ T6343] __se_sys_mount+0x313/0x410
[ 146.522478][ T6343] ? __pfx___se_sys_mount+0x10/0x10
[ 146.522492][ T6343] ? do_syscall_64+0xbe/0xf80
[ 146.522502][ T6343] ? __x64_sys_mount+0x20/0xc0
[ 146.522515][ T6343] do_syscall_64+0xfa/0xf80
[ 146.522526][ T6343] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 146.522535][ T6343] ? clear_bhb_loop+0x60/0xb0
[ 146.522546][ T6343] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 146.522555][ T6343] RIP: 0033:0x7f8532990eea
[ 146.522565][ T6343] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 146.522574][ T6343] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 146.522585][ T6343] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 146.522592][ T6343] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 146.522598][ T6343] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 146.522604][ T6343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 146.522610][ T6343] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 146.522625][ T6343]
[ 146.821589][ T6343] gfs2: fsid=syz:syz.0: found 1 quota changes
2025/12/11 14:38:52 executed programs: 72
[ 147.149432][ T6348] loop0: detected capacity change from 0 to 32768
[ 147.194986][ T6348] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 147.204945][ T6348] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 147.223395][ T6348] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 147.248379][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 147.255444][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 147.288405][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 32ms
[ 147.296298][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 147.301523][ T6348] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 147.317209][ T6352] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 147.332071][ T6352] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 147.342068][ T6352] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6352 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 147.352778][ T6352] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 147.361686][ T6352] CPU: 1 UID: 0 PID: 6352 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 147.361708][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 147.361718][ T6352] Call Trace:
[ 147.361726][ T6352]
[ 147.361733][ T6352] dump_stack_lvl+0x189/0x250
[ 147.361761][ T6352] ? __pfx_dump_stack_lvl+0x10/0x10
[ 147.361781][ T6352] ? queue_delayed_work_on+0x11a/0x280
[ 147.361802][ T6352] ? lockdep_hardirqs_on+0x98/0x140
[ 147.361822][ T6352] ? preempt_schedule+0xae/0xc0
[ 147.361848][ T6352] gfs2_withdraw+0xc3/0x1b0
[ 147.361868][ T6352] inode_go_instantiate+0xdd0/0x1210
[ 147.361902][ T6352] ? __pfx_inode_go_instantiate+0x10/0x10
[ 147.361929][ T6352] ? gfs2_glock_nq+0xedd/0x15f0
[ 147.361954][ T6352] gfs2_instantiate+0x168/0x220
[ 147.361974][ T6352] gfs2_glock_wait+0x1d4/0x2a0
[ 147.361995][ T6352] do_sync+0x46f/0xc60
[ 147.362014][ T6352] ? _raw_spin_unlock+0x28/0x50
[ 147.362038][ T6352] ? gfs2_quota_sync+0x359/0x460
[ 147.362068][ T6352] ? __pfx_do_sync+0x10/0x10
[ 147.362098][ T6352] ? gfs2_quota_sync+0x359/0x460
[ 147.362124][ T6352] ? do_raw_spin_unlock+0x122/0x240
[ 147.362151][ T6352] gfs2_quota_sync+0x359/0x460
[ 147.362183][ T6352] gfs2_quotad+0x3d5/0x930
[ 147.362220][ T6352] ? __pfx_gfs2_quotad+0x10/0x10
[ 147.362247][ T6352] ? __kthread_parkme+0x7b/0x200
[ 147.362266][ T6352] ? __kthread_parkme+0x1a1/0x200
[ 147.362292][ T6352] kthread+0x711/0x8a0
[ 147.362316][ T6352] ? __pfx_gfs2_quotad+0x10/0x10
[ 147.362337][ T6352] ? __pfx_kthread+0x10/0x10
[ 147.362359][ T6352] ? _raw_spin_unlock_irq+0x23/0x50
[ 147.362376][ T6352] ? lockdep_hardirqs_on+0x98/0x140
[ 147.362391][ T6352] ? __pfx_kthread+0x10/0x10
[ 147.362413][ T6352] ret_from_fork+0x599/0xb30
[ 147.362433][ T6352] ? __pfx_ret_from_fork+0x10/0x10
[ 147.362461][ T6352] ? __switch_to_asm+0x39/0x70
[ 147.362478][ T6352] ? __switch_to_asm+0x33/0x70
[ 147.362496][ T6352] ? __pfx_kthread+0x10/0x10
[ 147.362516][ T6352] ret_from_fork_asm+0x1a/0x30
[ 147.362555][ T6352]
[ 147.565526][ T6348] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 147.901427][ T6353] loop0: detected capacity change from 0 to 32768
[ 147.918572][ T6353] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 147.930765][ T6353] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 147.946787][ T6353] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 147.957344][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 147.964483][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 148.011521][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 47ms
[ 148.019974][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 148.025308][ T6353] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 148.047876][ T6357] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 148.063646][ T6357] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 148.073512][ T6357] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6357 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 148.082124][ T6353] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 148.085074][ T6357] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 148.103268][ T6357] CPU: 1 UID: 0 PID: 6357 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 148.103291][ T6357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 148.103301][ T6357] Call Trace:
[ 148.103309][ T6357]
[ 148.103317][ T6357] dump_stack_lvl+0x189/0x250
[ 148.103345][ T6357] ? __pfx_dump_stack_lvl+0x10/0x10
[ 148.103366][ T6357] ? queue_delayed_work_on+0x11a/0x280
[ 148.103386][ T6357] ? lockdep_hardirqs_on+0x98/0x140
[ 148.103405][ T6357] ? preempt_schedule+0xae/0xc0
[ 148.103431][ T6357] gfs2_withdraw+0xc3/0x1b0
[ 148.103449][ T6357] inode_go_instantiate+0xdd0/0x1210
[ 148.103483][ T6357] ? __pfx_inode_go_instantiate+0x10/0x10
[ 148.103510][ T6357] ? gfs2_glock_nq+0xedd/0x15f0
[ 148.103534][ T6357] gfs2_instantiate+0x168/0x220
[ 148.103554][ T6357] gfs2_glock_wait+0x1d4/0x2a0
[ 148.103575][ T6357] do_sync+0x46f/0xc60
[ 148.103594][ T6357] ? _raw_spin_unlock+0x28/0x50
[ 148.103611][ T6357] ? gfs2_quota_sync+0x359/0x460
[ 148.103641][ T6357] ? __pfx_do_sync+0x10/0x10
[ 148.103670][ T6357] ? gfs2_quota_sync+0x359/0x460
[ 148.103695][ T6357] ? do_raw_spin_unlock+0x122/0x240
[ 148.103722][ T6357] gfs2_quota_sync+0x359/0x460
[ 148.103764][ T6357] gfs2_quotad+0x3d5/0x930
[ 148.103802][ T6357] ? __pfx_gfs2_quotad+0x10/0x10
[ 148.103827][ T6357] ? __kthread_parkme+0x7b/0x200
[ 148.103847][ T6357] ? __kthread_parkme+0x1a1/0x200
[ 148.103871][ T6357] kthread+0x711/0x8a0
[ 148.103896][ T6357] ? __pfx_gfs2_quotad+0x10/0x10
[ 148.103916][ T6357] ? __pfx_kthread+0x10/0x10
[ 148.103939][ T6357] ? _raw_spin_unlock_irq+0x23/0x50
[ 148.103957][ T6357] ? lockdep_hardirqs_on+0x98/0x140
[ 148.103973][ T6357] ? __pfx_kthread+0x10/0x10
[ 148.103995][ T6357] ret_from_fork+0x599/0xb30
[ 148.104013][ T6357] ? __pfx_ret_from_fork+0x10/0x10
[ 148.104041][ T6357] ? __switch_to_asm+0x39/0x70
[ 148.104060][ T6357] ? __switch_to_asm+0x33/0x70
[ 148.104078][ T6357] ? __pfx_kthread+0x10/0x10
[ 148.104100][ T6357] ret_from_fork_asm+0x1a/0x30
[ 148.104138][ T6357]
[ 148.109207][ T6353] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 148.307186][ T6353] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 148.643659][ T6358] loop0: detected capacity change from 0 to 32768
[ 148.666025][ T6358] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 148.674376][ T6358] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 148.688994][ T6358] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 148.700252][ T932] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 148.708025][ T932] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 148.742264][ T932] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 34ms
[ 148.750765][ T932] gfs2: fsid=syz:syz.0: jid=0: Done
[ 148.756399][ T6358] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 148.775790][ T6362] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 148.790224][ T6362] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 148.800063][ T6362] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6362 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 148.808570][ T6358] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 148.811307][ T6362] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 148.829884][ T6362] CPU: 1 UID: 0 PID: 6362 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 148.829906][ T6362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 148.829916][ T6362] Call Trace:
[ 148.829924][ T6362]
[ 148.829932][ T6362] dump_stack_lvl+0x189/0x250
[ 148.829960][ T6362] ? __pfx_dump_stack_lvl+0x10/0x10
[ 148.829991][ T6362] ? queue_delayed_work_on+0x11a/0x280
[ 148.830012][ T6362] ? lockdep_hardirqs_on+0x98/0x140
[ 148.830032][ T6362] ? preempt_schedule+0xae/0xc0
[ 148.830057][ T6362] gfs2_withdraw+0xc3/0x1b0
[ 148.830076][ T6362] inode_go_instantiate+0xdd0/0x1210
[ 148.830109][ T6362] ? __pfx_inode_go_instantiate+0x10/0x10
[ 148.830136][ T6362] ? gfs2_glock_nq+0xedd/0x15f0
[ 148.830161][ T6362] gfs2_instantiate+0x168/0x220
[ 148.830181][ T6362] gfs2_glock_wait+0x1d4/0x2a0
[ 148.830203][ T6362] do_sync+0x46f/0xc60
[ 148.830222][ T6362] ? _raw_spin_unlock+0x28/0x50
[ 148.830239][ T6362] ? gfs2_quota_sync+0x359/0x460
[ 148.830269][ T6362] ? __pfx_do_sync+0x10/0x10
[ 148.830299][ T6362] ? gfs2_quota_sync+0x359/0x460
[ 148.830324][ T6362] ? do_raw_spin_unlock+0x122/0x240
[ 148.830351][ T6362] gfs2_quota_sync+0x359/0x460
[ 148.830383][ T6362] gfs2_quotad+0x3d5/0x930
[ 148.830420][ T6362] ? __pfx_gfs2_quotad+0x10/0x10
[ 148.830446][ T6362] ? __kthread_parkme+0x7b/0x200
[ 148.830465][ T6362] ? __kthread_parkme+0x1a1/0x200
[ 148.830491][ T6362] kthread+0x711/0x8a0
[ 148.830515][ T6362] ? __pfx_gfs2_quotad+0x10/0x10
[ 148.830536][ T6362] ? __pfx_kthread+0x10/0x10
[ 148.830558][ T6362] ? _raw_spin_unlock_irq+0x23/0x50
[ 148.830575][ T6362] ? lockdep_hardirqs_on+0x98/0x140
[ 148.830592][ T6362] ? __pfx_kthread+0x10/0x10
[ 148.830614][ T6362] ret_from_fork+0x599/0xb30
[ 148.830634][ T6362] ? __pfx_ret_from_fork+0x10/0x10
[ 148.830661][ T6362] ? __switch_to_asm+0x39/0x70
[ 148.830681][ T6362] ? __switch_to_asm+0x33/0x70
[ 148.830699][ T6362] ? __pfx_kthread+0x10/0x10
[ 148.830719][ T6362] ret_from_fork_asm+0x1a/0x30
[ 148.830757][ T6362]
[ 148.833549][ T6358] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 149.034981][ T6358] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 149.372861][ T6363] loop0: detected capacity change from 0 to 32768
[ 149.417428][ T6363] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 149.428212][ T6363] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 149.447929][ T6363] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 149.458606][ T932] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 149.466742][ T932] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 149.513329][ T932] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 46ms
[ 149.521770][ T932] gfs2: fsid=syz:syz.0: jid=0: Done
[ 149.527122][ T6363] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 149.547861][ T6367] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 149.562396][ T6367] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 149.572565][ T6367] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6367 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 149.581276][ T6363] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 149.583353][ T6367] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 149.603108][ T6367] CPU: 0 UID: 0 PID: 6367 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 149.603131][ T6367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 149.603141][ T6367] Call Trace:
[ 149.603148][ T6367]
[ 149.603155][ T6367] dump_stack_lvl+0x189/0x250
[ 149.603183][ T6367] ? __pfx_dump_stack_lvl+0x10/0x10
[ 149.603204][ T6367] ? queue_delayed_work_on+0x11a/0x280
[ 149.603225][ T6367] ? lockdep_hardirqs_on+0x98/0x140
[ 149.603244][ T6367] ? preempt_schedule+0xae/0xc0
[ 149.603270][ T6367] gfs2_withdraw+0xc3/0x1b0
[ 149.603289][ T6367] inode_go_instantiate+0xdd0/0x1210
[ 149.603323][ T6367] ? __pfx_inode_go_instantiate+0x10/0x10
[ 149.603352][ T6367] ? gfs2_glock_nq+0xedd/0x15f0
[ 149.603376][ T6367] gfs2_instantiate+0x168/0x220
[ 149.603396][ T6367] gfs2_glock_wait+0x1d4/0x2a0
[ 149.603417][ T6367] do_sync+0x46f/0xc60
[ 149.603437][ T6367] ? _raw_spin_unlock+0x28/0x50
[ 149.603453][ T6367] ? gfs2_quota_sync+0x359/0x460
[ 149.603484][ T6367] ? __pfx_do_sync+0x10/0x10
[ 149.603515][ T6367] ? gfs2_quota_sync+0x359/0x460
[ 149.603539][ T6367] ? do_raw_spin_unlock+0x122/0x240
[ 149.603566][ T6367] gfs2_quota_sync+0x359/0x460
[ 149.603598][ T6367] gfs2_quotad+0x3d5/0x930
[ 149.603644][ T6367] ? __pfx_gfs2_quotad+0x10/0x10
[ 149.603670][ T6367] ? __kthread_parkme+0x7b/0x200
[ 149.603690][ T6367] ? __kthread_parkme+0x1a1/0x200
[ 149.603715][ T6367] kthread+0x711/0x8a0
[ 149.603740][ T6367] ? __pfx_gfs2_quotad+0x10/0x10
[ 149.603760][ T6367] ? __pfx_kthread+0x10/0x10
[ 149.603784][ T6367] ? _raw_spin_unlock_irq+0x23/0x50
[ 149.603801][ T6367] ? lockdep_hardirqs_on+0x98/0x140
[ 149.603818][ T6367] ? __pfx_kthread+0x10/0x10
[ 149.603840][ T6367] ret_from_fork+0x599/0xb30
[ 149.603860][ T6367] ? __pfx_ret_from_fork+0x10/0x10
[ 149.603886][ T6367] ? __switch_to_asm+0x39/0x70
[ 149.603904][ T6367] ? __switch_to_asm+0x33/0x70
[ 149.603919][ T6367] ? __pfx_kthread+0x10/0x10
[ 149.603934][ T6367] ret_from_fork_asm+0x1a/0x30
[ 149.603955][ T6367]
[ 149.607606][ T6363] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 149.806911][ T6363] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 150.144285][ T6368] loop0: detected capacity change from 0 to 32768
[ 150.168624][ T6368] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 150.177062][ T6368] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 150.196595][ T6368] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 150.206093][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 150.212988][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 150.260734][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 47ms
[ 150.268932][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 150.274190][ T6368] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 150.329963][ T6368] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 150.341297][ T6368] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 150.355158][ T6368] CPU: 0 UID: 0 PID: 6368 Comm: syz.0.91 Not tainted syzkaller #0 PREEMPT(full)
[ 150.355179][ T6368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 150.355189][ T6368] Call Trace:
[ 150.355195][ T6368]
[ 150.355203][ T6368] dump_stack_lvl+0x189/0x250
[ 150.355230][ T6368] ? __pfx_dump_stack_lvl+0x10/0x10
[ 150.355249][ T6368] ? __pfx__printk+0x10/0x10
[ 150.355271][ T6368] ? do_raw_spin_unlock+0x122/0x240
[ 150.355292][ T6368] gfs2_assert_warn_i+0x194/0x2c0
[ 150.355312][ T6368] gfs2_qd_dispose+0x466/0x570
[ 150.355333][ T6368] gfs2_quota_init+0xcb0/0x1200
[ 150.355366][ T6368] ? __pfx_gfs2_quota_init+0x10/0x10
[ 150.355381][ T6368] ? rcu_is_watching+0x15/0xb0
[ 150.355396][ T6368] ? __pfx_wake_up_bit+0x10/0x10
[ 150.355411][ T6368] ? kfree+0x4d/0x660
[ 150.355433][ T6368] ? inode_go_inval+0x2a0/0x360
[ 150.355454][ T6368] gfs2_make_fs_rw+0x143/0x220
[ 150.355470][ T6368] gfs2_fill_super+0x1b6a/0x21b0
[ 150.355494][ T6368] ? __pfx_gfs2_fill_super+0x10/0x10
[ 150.355509][ T6368] ? init_locking+0xb8/0x210
[ 150.355519][ T6368] ? sb_set_blocksize+0x155/0x240
[ 150.355547][ T6368] ? setup_bdev_super+0x4c1/0x5b0
[ 150.355563][ T6368] get_tree_bdev_flags+0x40e/0x4d0
[ 150.355576][ T6368] ? __pfx_gfs2_fill_super+0x10/0x10
[ 150.355589][ T6368] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 150.355601][ T6368] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 150.355627][ T6368] gfs2_get_tree+0x51/0x1e0
[ 150.355642][ T6368] vfs_get_tree+0x92/0x2a0
[ 150.355657][ T6368] do_new_mount+0x302/0xa10
[ 150.355672][ T6368] ? apparmor_capable+0x137/0x1a0
[ 150.355694][ T6368] ? __pfx_do_new_mount+0x10/0x10
[ 150.355709][ T6368] ? ns_capable+0x8a/0xf0
[ 150.355725][ T6368] ? kmem_cache_free+0x197/0x620
[ 150.355746][ T6368] __se_sys_mount+0x313/0x410
[ 150.355767][ T6368] ? __pfx___se_sys_mount+0x10/0x10
[ 150.355786][ T6368] ? do_syscall_64+0xbe/0xf80
[ 150.355807][ T6368] ? __x64_sys_mount+0x20/0xc0
[ 150.355824][ T6368] do_syscall_64+0xfa/0xf80
[ 150.355840][ T6368] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 150.355853][ T6368] ? clear_bhb_loop+0x60/0xb0
[ 150.355868][ T6368] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 150.355880][ T6368] RIP: 0033:0x7f8532990eea
[ 150.355893][ T6368] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 150.355904][ T6368] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 150.355918][ T6368] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 150.355928][ T6368] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 150.355937][ T6368] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 150.355945][ T6368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 150.355953][ T6368] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 150.355975][ T6368]
[ 150.657363][ T6368] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 150.997923][ T6373] loop0: detected capacity change from 0 to 32768
[ 151.015363][ T6373] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 151.023616][ T6373] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 151.036037][ T6373] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 151.045366][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 151.052146][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 151.096730][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 44ms
[ 151.104341][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 151.110310][ T6373] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 151.179074][ T6373] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 151.189769][ T6373] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 151.205429][ T6373] CPU: 1 UID: 0 PID: 6373 Comm: syz.0.92 Not tainted syzkaller #0 PREEMPT(full)
[ 151.205444][ T6373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 151.205450][ T6373] Call Trace:
[ 151.205454][ T6373]
[ 151.205459][ T6373] dump_stack_lvl+0x189/0x250
[ 151.205477][ T6373] ? __pfx_dump_stack_lvl+0x10/0x10
[ 151.205488][ T6373] ? __pfx__printk+0x10/0x10
[ 151.205511][ T6373] ? do_raw_spin_unlock+0x122/0x240
[ 151.205528][ T6373] gfs2_assert_warn_i+0x194/0x2c0
[ 151.205542][ T6373] gfs2_qd_dispose+0x466/0x570
[ 151.205558][ T6373] gfs2_quota_init+0xcb0/0x1200
[ 151.205582][ T6373] ? __pfx_gfs2_quota_init+0x10/0x10
[ 151.205593][ T6373] ? rcu_is_watching+0x15/0xb0
[ 151.205605][ T6373] ? __pfx_wake_up_bit+0x10/0x10
[ 151.205616][ T6373] ? kfree+0x4d/0x660
[ 151.205632][ T6373] ? inode_go_inval+0x2a0/0x360
[ 151.205647][ T6373] gfs2_make_fs_rw+0x143/0x220
[ 151.205658][ T6373] gfs2_fill_super+0x1b6a/0x21b0
[ 151.205678][ T6373] ? __pfx_gfs2_fill_super+0x10/0x10
[ 151.205689][ T6373] ? init_locking+0xb8/0x210
[ 151.205697][ T6373] ? sb_set_blocksize+0x155/0x240
[ 151.205710][ T6373] ? setup_bdev_super+0x4c1/0x5b0
[ 151.205722][ T6373] get_tree_bdev_flags+0x40e/0x4d0
[ 151.205732][ T6373] ? __pfx_gfs2_fill_super+0x10/0x10
[ 151.205743][ T6373] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 151.205752][ T6373] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 151.205771][ T6373] gfs2_get_tree+0x51/0x1e0
[ 151.205781][ T6373] vfs_get_tree+0x92/0x2a0
[ 151.205792][ T6373] do_new_mount+0x302/0xa10
[ 151.205803][ T6373] ? apparmor_capable+0x137/0x1a0
[ 151.205819][ T6373] ? __pfx_do_new_mount+0x10/0x10
[ 151.205830][ T6373] ? ns_capable+0x8a/0xf0
[ 151.205841][ T6373] ? kmem_cache_free+0x197/0x620
[ 151.205857][ T6373] __se_sys_mount+0x313/0x410
[ 151.205871][ T6373] ? __pfx___se_sys_mount+0x10/0x10
[ 151.205885][ T6373] ? do_syscall_64+0xbe/0xf80
[ 151.205896][ T6373] ? __x64_sys_mount+0x20/0xc0
[ 151.205908][ T6373] do_syscall_64+0xfa/0xf80
[ 151.205919][ T6373] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 151.205929][ T6373] ? clear_bhb_loop+0x60/0xb0
[ 151.205940][ T6373] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 151.205949][ T6373] RIP: 0033:0x7f8532990eea
[ 151.205959][ T6373] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 151.205967][ T6373] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 151.205979][ T6373] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 151.205986][ T6373] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 151.205992][ T6373] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 151.206000][ T6373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 151.206007][ T6373] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 151.206023][ T6373]
[ 151.503716][ T6373] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 151.847688][ T6378] loop0: detected capacity change from 0 to 32768
[ 151.867869][ T6378] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 151.878114][ T6378] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 151.893966][ T6378] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 151.903557][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 151.911147][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 151.963741][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 52ms
[ 151.973237][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 151.979278][ T6378] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 152.028560][ T6378] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 152.039791][ T6378] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 152.053608][ T6378] CPU: 1 UID: 0 PID: 6378 Comm: syz.0.93 Not tainted syzkaller #0 PREEMPT(full)
[ 152.053632][ T6378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 152.053642][ T6378] Call Trace:
[ 152.053652][ T6378]
[ 152.053668][ T6378] dump_stack_lvl+0x189/0x250
[ 152.053694][ T6378] ? __pfx_dump_stack_lvl+0x10/0x10
[ 152.053710][ T6378] ? __pfx__printk+0x10/0x10
[ 152.053742][ T6378] ? do_raw_spin_unlock+0x122/0x240
[ 152.053764][ T6378] gfs2_assert_warn_i+0x194/0x2c0
[ 152.053784][ T6378] gfs2_qd_dispose+0x466/0x570
[ 152.053805][ T6378] gfs2_quota_init+0xcb0/0x1200
[ 152.053839][ T6378] ? __pfx_gfs2_quota_init+0x10/0x10
[ 152.053854][ T6378] ? rcu_is_watching+0x15/0xb0
[ 152.053870][ T6378] ? __pfx_wake_up_bit+0x10/0x10
[ 152.053885][ T6378] ? kfree+0x4d/0x660
[ 152.053907][ T6378] ? inode_go_inval+0x2a0/0x360
[ 152.053927][ T6378] gfs2_make_fs_rw+0x143/0x220
[ 152.053944][ T6378] gfs2_fill_super+0x1b6a/0x21b0
[ 152.053968][ T6378] ? __pfx_gfs2_fill_super+0x10/0x10
[ 152.053983][ T6378] ? init_locking+0xb8/0x210
[ 152.053994][ T6378] ? sb_set_blocksize+0x155/0x240
[ 152.054012][ T6378] ? setup_bdev_super+0x4c1/0x5b0
[ 152.054028][ T6378] get_tree_bdev_flags+0x40e/0x4d0
[ 152.054042][ T6378] ? __pfx_gfs2_fill_super+0x10/0x10
[ 152.054054][ T6378] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 152.054066][ T6378] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 152.054092][ T6378] gfs2_get_tree+0x51/0x1e0
[ 152.054108][ T6378] vfs_get_tree+0x92/0x2a0
[ 152.054126][ T6378] do_new_mount+0x302/0xa10
[ 152.054141][ T6378] ? apparmor_capable+0x137/0x1a0
[ 152.054164][ T6378] ? __pfx_do_new_mount+0x10/0x10
[ 152.054179][ T6378] ? ns_capable+0x8a/0xf0
[ 152.054194][ T6378] ? kmem_cache_free+0x197/0x620
[ 152.054215][ T6378] __se_sys_mount+0x313/0x410
[ 152.054235][ T6378] ? __pfx___se_sys_mount+0x10/0x10
[ 152.054254][ T6378] ? do_syscall_64+0xbe/0xf80
[ 152.054268][ T6378] ? __x64_sys_mount+0x20/0xc0
[ 152.054285][ T6378] do_syscall_64+0xfa/0xf80
[ 152.054301][ T6378] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.054314][ T6378] ? clear_bhb_loop+0x60/0xb0
[ 152.054329][ T6378] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.054342][ T6378] RIP: 0033:0x7f8532990eea
[ 152.054354][ T6378] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 152.054365][ T6378] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 152.054387][ T6378] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 152.054397][ T6378] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 152.054405][ T6378] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 152.054414][ T6378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 152.054421][ T6378] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 152.054444][ T6378]
[ 152.354274][ T6378] gfs2: fsid=syz:syz.0: found 1 quota changes
2025/12/11 14:38:57 executed programs: 79
[ 152.683653][ T6383] loop0: detected capacity change from 0 to 32768
[ 152.708203][ T6383] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 152.716628][ T6383] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 152.729840][ T6383] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 152.739849][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 152.748718][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 152.783932][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 35ms
[ 152.791723][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 152.797458][ T6383] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 152.868582][ T6383] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 152.879735][ T6383] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 152.893433][ T6383] CPU: 1 UID: 0 PID: 6383 Comm: syz.0.94 Not tainted syzkaller #0 PREEMPT(full)
[ 152.893454][ T6383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 152.893462][ T6383] Call Trace:
[ 152.893468][ T6383]
[ 152.893474][ T6383] dump_stack_lvl+0x189/0x250
[ 152.893500][ T6383] ? __pfx_dump_stack_lvl+0x10/0x10
[ 152.893519][ T6383] ? __pfx__printk+0x10/0x10
[ 152.893544][ T6383] ? do_raw_spin_unlock+0x122/0x240
[ 152.893568][ T6383] gfs2_assert_warn_i+0x194/0x2c0
[ 152.893592][ T6383] gfs2_qd_dispose+0x466/0x570
[ 152.893616][ T6383] gfs2_quota_init+0xcb0/0x1200
[ 152.893681][ T6383] ? __pfx_gfs2_quota_init+0x10/0x10
[ 152.893701][ T6383] ? rcu_is_watching+0x15/0xb0
[ 152.893721][ T6383] ? __pfx_wake_up_bit+0x10/0x10
[ 152.893739][ T6383] ? kfree+0x4d/0x660
[ 152.893768][ T6383] ? inode_go_inval+0x2a0/0x360
[ 152.893795][ T6383] gfs2_make_fs_rw+0x143/0x220
[ 152.893816][ T6383] gfs2_fill_super+0x1b6a/0x21b0
[ 152.893850][ T6383] ? __pfx_gfs2_fill_super+0x10/0x10
[ 152.893871][ T6383] ? init_locking+0xb8/0x210
[ 152.893886][ T6383] ? sb_set_blocksize+0x155/0x240
[ 152.893910][ T6383] ? setup_bdev_super+0x4c1/0x5b0
[ 152.893931][ T6383] get_tree_bdev_flags+0x40e/0x4d0
[ 152.893949][ T6383] ? __pfx_gfs2_fill_super+0x10/0x10
[ 152.893966][ T6383] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 152.893981][ T6383] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 152.894014][ T6383] gfs2_get_tree+0x51/0x1e0
[ 152.894034][ T6383] vfs_get_tree+0x92/0x2a0
[ 152.894054][ T6383] do_new_mount+0x302/0xa10
[ 152.894073][ T6383] ? apparmor_capable+0x137/0x1a0
[ 152.894100][ T6383] ? __pfx_do_new_mount+0x10/0x10
[ 152.894121][ T6383] ? ns_capable+0x8a/0xf0
[ 152.894142][ T6383] ? kmem_cache_free+0x197/0x620
[ 152.894170][ T6383] __se_sys_mount+0x313/0x410
[ 152.894196][ T6383] ? __pfx___se_sys_mount+0x10/0x10
[ 152.894220][ T6383] ? do_syscall_64+0xbe/0xf80
[ 152.894238][ T6383] ? __x64_sys_mount+0x20/0xc0
[ 152.894260][ T6383] do_syscall_64+0xfa/0xf80
[ 152.894280][ T6383] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.894297][ T6383] ? clear_bhb_loop+0x60/0xb0
[ 152.894317][ T6383] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.894333][ T6383] RIP: 0033:0x7f8532990eea
[ 152.894348][ T6383] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 152.894363][ T6383] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 152.894380][ T6383] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 152.894392][ T6383] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 152.894403][ T6383] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 152.894414][ T6383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 152.894425][ T6383] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 152.894454][ T6383]
[ 153.190150][ T6383] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 153.537133][ T6388] loop0: detected capacity change from 0 to 32768
[ 153.578428][ T6388] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 153.588802][ T6388] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 153.611195][ T6388] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 153.623905][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 153.631753][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 153.668260][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 36ms
[ 153.676442][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 153.681671][ T6388] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 153.698389][ T6392] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 153.712914][ T6392] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 153.725707][ T6392] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6392 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 153.736368][ T6392] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 153.739462][ T6388] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 153.756002][ T6392] CPU: 1 UID: 0 PID: 6392 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 153.756025][ T6392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 153.756036][ T6392] Call Trace:
[ 153.756042][ T6392]
[ 153.756048][ T6392] dump_stack_lvl+0x189/0x250
[ 153.756076][ T6392] ? __pfx_dump_stack_lvl+0x10/0x10
[ 153.756096][ T6392] ? queue_delayed_work_on+0x11a/0x280
[ 153.756118][ T6392] ? lockdep_hardirqs_on+0x98/0x140
[ 153.756136][ T6392] ? preempt_schedule+0xae/0xc0
[ 153.756161][ T6392] gfs2_withdraw+0xc3/0x1b0
[ 153.756180][ T6392] inode_go_instantiate+0xdd0/0x1210
[ 153.756214][ T6392] ? __pfx_inode_go_instantiate+0x10/0x10
[ 153.756240][ T6392] ? gfs2_glock_nq+0xedd/0x15f0
[ 153.756263][ T6392] gfs2_instantiate+0x168/0x220
[ 153.756283][ T6392] gfs2_glock_wait+0x1d4/0x2a0
[ 153.756304][ T6392] do_sync+0x46f/0xc60
[ 153.756324][ T6392] ? _raw_spin_unlock+0x28/0x50
[ 153.756340][ T6392] ? gfs2_quota_sync+0x359/0x460
[ 153.756369][ T6392] ? __pfx_do_sync+0x10/0x10
[ 153.756399][ T6392] ? gfs2_quota_sync+0x359/0x460
[ 153.756423][ T6392] ? do_raw_spin_unlock+0x122/0x240
[ 153.756450][ T6392] gfs2_quota_sync+0x359/0x460
[ 153.756481][ T6392] gfs2_quotad+0x3d5/0x930
[ 153.756528][ T6392] ? __pfx_gfs2_quotad+0x10/0x10
[ 153.756553][ T6392] ? __kthread_parkme+0x7b/0x200
[ 153.756572][ T6392] ? __kthread_parkme+0x1a1/0x200
[ 153.756597][ T6392] kthread+0x711/0x8a0
[ 153.756621][ T6392] ? __pfx_gfs2_quotad+0x10/0x10
[ 153.756641][ T6392] ? __pfx_kthread+0x10/0x10
[ 153.756663][ T6392] ? _raw_spin_unlock_irq+0x23/0x50
[ 153.756680][ T6392] ? lockdep_hardirqs_on+0x98/0x140
[ 153.756696][ T6392] ? __pfx_kthread+0x10/0x10
[ 153.756718][ T6392] ret_from_fork+0x599/0xb30
[ 153.756738][ T6392] ? __pfx_ret_from_fork+0x10/0x10
[ 153.756765][ T6392] ? __switch_to_asm+0x39/0x70
[ 153.756784][ T6392] ? __switch_to_asm+0x33/0x70
[ 153.756803][ T6392] ? __pfx_kthread+0x10/0x10
[ 153.756825][ T6392] ret_from_fork_asm+0x1a/0x30
[ 153.756870][ T6392]
[ 153.985749][ T6388] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 154.326468][ T6393] loop0: detected capacity change from 0 to 32768
[ 154.343906][ T6393] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 154.352432][ T6393] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 154.364345][ T6393] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 154.376637][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 154.383440][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 154.419750][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 36ms
[ 154.427742][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 154.433734][ T6393] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 154.498272][ T6393] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 154.509467][ T6393] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 154.524378][ T6393] CPU: 1 UID: 0 PID: 6393 Comm: syz.0.96 Not tainted syzkaller #0 PREEMPT(full)
[ 154.524393][ T6393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 154.524399][ T6393] Call Trace:
[ 154.524404][ T6393]
[ 154.524409][ T6393] dump_stack_lvl+0x189/0x250
[ 154.524426][ T6393] ? __pfx_dump_stack_lvl+0x10/0x10
[ 154.524438][ T6393] ? __pfx__printk+0x10/0x10
[ 154.524454][ T6393] ? do_raw_spin_unlock+0x122/0x240
[ 154.524472][ T6393] gfs2_assert_warn_i+0x194/0x2c0
[ 154.524486][ T6393] gfs2_qd_dispose+0x466/0x570
[ 154.524511][ T6393] gfs2_quota_init+0xcb0/0x1200
[ 154.524549][ T6393] ? __pfx_gfs2_quota_init+0x10/0x10
[ 154.524567][ T6393] ? rcu_is_watching+0x15/0xb0
[ 154.524585][ T6393] ? __pfx_wake_up_bit+0x10/0x10
[ 154.524602][ T6393] ? kfree+0x4d/0x660
[ 154.524620][ T6393] ? inode_go_inval+0x2a0/0x360
[ 154.524635][ T6393] gfs2_make_fs_rw+0x143/0x220
[ 154.524647][ T6393] gfs2_fill_super+0x1b6a/0x21b0
[ 154.524665][ T6393] ? __pfx_gfs2_fill_super+0x10/0x10
[ 154.524676][ T6393] ? init_locking+0xb8/0x210
[ 154.524684][ T6393] ? sb_set_blocksize+0x155/0x240
[ 154.524697][ T6393] ? setup_bdev_super+0x4c1/0x5b0
[ 154.524709][ T6393] get_tree_bdev_flags+0x40e/0x4d0
[ 154.524719][ T6393] ? __pfx_gfs2_fill_super+0x10/0x10
[ 154.524728][ T6393] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 154.524737][ T6393] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 154.524755][ T6393] gfs2_get_tree+0x51/0x1e0
[ 154.524766][ T6393] vfs_get_tree+0x92/0x2a0
[ 154.524777][ T6393] do_new_mount+0x302/0xa10
[ 154.524788][ T6393] ? apparmor_capable+0x137/0x1a0
[ 154.524804][ T6393] ? __pfx_do_new_mount+0x10/0x10
[ 154.524815][ T6393] ? ns_capable+0x8a/0xf0
[ 154.524826][ T6393] ? kmem_cache_free+0x197/0x620
[ 154.524841][ T6393] __se_sys_mount+0x313/0x410
[ 154.524856][ T6393] ? __pfx___se_sys_mount+0x10/0x10
[ 154.524870][ T6393] ? do_syscall_64+0xbe/0xf80
[ 154.524881][ T6393] ? __x64_sys_mount+0x20/0xc0
[ 154.524893][ T6393] do_syscall_64+0xfa/0xf80
[ 154.524905][ T6393] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.524914][ T6393] ? clear_bhb_loop+0x60/0xb0
[ 154.524925][ T6393] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.524934][ T6393] RIP: 0033:0x7f8532990eea
[ 154.524945][ T6393] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 154.524953][ T6393] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 154.524964][ T6393] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 154.524971][ T6393] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 154.524977][ T6393] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 154.524984][ T6393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 154.524989][ T6393] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 154.525005][ T6393]
[ 154.823855][ T6393] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 155.160027][ T6398] loop0: detected capacity change from 0 to 32768
[ 155.187487][ T6398] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 155.195806][ T6398] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 155.212567][ T6398] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 155.223310][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 155.230558][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 155.280454][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 49ms
[ 155.288663][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 155.293930][ T6398] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 155.315540][ T6402] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 155.330052][ T6402] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 155.340169][ T6402] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6402 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 155.349039][ T6398] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 155.351066][ T6402] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 155.369910][ T6402] CPU: 0 UID: 0 PID: 6402 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 155.369932][ T6402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 155.369941][ T6402] Call Trace:
[ 155.369947][ T6402]
[ 155.369954][ T6402] dump_stack_lvl+0x189/0x250
[ 155.369979][ T6402] ? __pfx_dump_stack_lvl+0x10/0x10
[ 155.369998][ T6402] ? queue_delayed_work_on+0x11a/0x280
[ 155.370018][ T6402] ? lockdep_hardirqs_on+0x98/0x140
[ 155.370034][ T6402] ? preempt_schedule+0xae/0xc0
[ 155.370056][ T6402] gfs2_withdraw+0xc3/0x1b0
[ 155.370075][ T6402] inode_go_instantiate+0xdd0/0x1210
[ 155.370108][ T6402] ? __pfx_inode_go_instantiate+0x10/0x10
[ 155.370135][ T6402] ? gfs2_glock_nq+0xedd/0x15f0
[ 155.370167][ T6402] gfs2_instantiate+0x168/0x220
[ 155.370186][ T6402] gfs2_glock_wait+0x1d4/0x2a0
[ 155.370207][ T6402] do_sync+0x46f/0xc60
[ 155.370227][ T6402] ? _raw_spin_unlock+0x28/0x50
[ 155.370244][ T6402] ? gfs2_quota_sync+0x359/0x460
[ 155.370276][ T6402] ? __pfx_do_sync+0x10/0x10
[ 155.370307][ T6402] ? gfs2_quota_sync+0x359/0x460
[ 155.370332][ T6402] ? do_raw_spin_unlock+0x122/0x240
[ 155.370359][ T6402] gfs2_quota_sync+0x359/0x460
[ 155.370389][ T6402] gfs2_quotad+0x3d5/0x930
[ 155.370426][ T6402] ? __pfx_gfs2_quotad+0x10/0x10
[ 155.370451][ T6402] ? __kthread_parkme+0x7b/0x200
[ 155.370471][ T6402] ? __kthread_parkme+0x1a1/0x200
[ 155.370496][ T6402] kthread+0x711/0x8a0
[ 155.370520][ T6402] ? __pfx_gfs2_quotad+0x10/0x10
[ 155.370541][ T6402] ? __pfx_kthread+0x10/0x10
[ 155.370562][ T6402] ? _raw_spin_unlock_irq+0x23/0x50
[ 155.370580][ T6402] ? lockdep_hardirqs_on+0x98/0x140
[ 155.370596][ T6402] ? __pfx_kthread+0x10/0x10
[ 155.370619][ T6402] ret_from_fork+0x599/0xb30
[ 155.370638][ T6402] ? __pfx_ret_from_fork+0x10/0x10
[ 155.370665][ T6402] ? __switch_to_asm+0x39/0x70
[ 155.370684][ T6402] ? __switch_to_asm+0x33/0x70
[ 155.370703][ T6402] ? __pfx_kthread+0x10/0x10
[ 155.370725][ T6402] ret_from_fork_asm+0x1a/0x30
[ 155.370762][ T6402]
[ 155.595043][ T6398] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 155.930218][ T6403] loop0: detected capacity change from 0 to 32768
[ 155.945087][ T6403] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 155.953440][ T6403] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 155.975991][ T6403] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 155.985493][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 155.992324][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 156.039295][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 46ms
[ 156.048878][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 156.054140][ T6403] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 156.082444][ T6407] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 156.096995][ T6407] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 156.109994][ T6407] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6407 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 156.121728][ T6407] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 156.130526][ T6407] CPU: 0 UID: 0 PID: 6407 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 156.130551][ T6407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 156.130561][ T6407] Call Trace:
[ 156.130569][ T6407]
[ 156.130577][ T6407] dump_stack_lvl+0x189/0x250
[ 156.130604][ T6407] ? __pfx_dump_stack_lvl+0x10/0x10
[ 156.130625][ T6407] ? queue_delayed_work_on+0x11a/0x280
[ 156.130646][ T6407] ? lockdep_hardirqs_on+0x98/0x140
[ 156.130666][ T6407] ? preempt_schedule+0xae/0xc0
[ 156.130691][ T6407] gfs2_withdraw+0xc3/0x1b0
[ 156.130710][ T6407] inode_go_instantiate+0xdd0/0x1210
[ 156.130744][ T6407] ? __pfx_inode_go_instantiate+0x10/0x10
[ 156.130771][ T6407] ? gfs2_glock_nq+0xedd/0x15f0
[ 156.130796][ T6407] gfs2_instantiate+0x168/0x220
[ 156.130815][ T6407] gfs2_glock_wait+0x1d4/0x2a0
[ 156.130837][ T6407] do_sync+0x46f/0xc60
[ 156.130857][ T6407] ? _raw_spin_unlock+0x28/0x50
[ 156.130873][ T6407] ? gfs2_quota_sync+0x359/0x460
[ 156.130903][ T6407] ? __pfx_do_sync+0x10/0x10
[ 156.130934][ T6407] ? gfs2_quota_sync+0x359/0x460
[ 156.130958][ T6407] ? do_raw_spin_unlock+0x122/0x240
[ 156.130986][ T6407] gfs2_quota_sync+0x359/0x460
[ 156.131017][ T6407] gfs2_quotad+0x3d5/0x930
[ 156.131062][ T6407] ? __pfx_gfs2_quotad+0x10/0x10
[ 156.131088][ T6407] ? __kthread_parkme+0x7b/0x200
[ 156.131108][ T6407] ? __kthread_parkme+0x1a1/0x200
[ 156.131134][ T6407] kthread+0x711/0x8a0
[ 156.131158][ T6407] ? __pfx_gfs2_quotad+0x10/0x10
[ 156.131179][ T6407] ? __pfx_kthread+0x10/0x10
[ 156.131202][ T6407] ? _raw_spin_unlock_irq+0x23/0x50
[ 156.131220][ T6407] ? lockdep_hardirqs_on+0x98/0x140
[ 156.131237][ T6407] ? __pfx_kthread+0x10/0x10
[ 156.131260][ T6407] ret_from_fork+0x599/0xb30
[ 156.131280][ T6407] ? __pfx_ret_from_fork+0x10/0x10
[ 156.131307][ T6407] ? __switch_to_asm+0x39/0x70
[ 156.131327][ T6407] ? __switch_to_asm+0x33/0x70
[ 156.131345][ T6407] ? __pfx_kthread+0x10/0x10
[ 156.131368][ T6407] ret_from_fork_asm+0x1a/0x30
[ 156.131407][ T6407]
[ 156.355719][ T6403] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 156.703301][ T6408] loop0: detected capacity change from 0 to 32768
[ 156.725332][ T6408] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 156.733544][ T6408] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 156.746562][ T6408] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 156.756031][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 156.763037][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 156.807961][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 44ms
[ 156.815616][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 156.820982][ T6408] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 156.873354][ T6408] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 156.884877][ T6408] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 156.898869][ T6408] CPU: 1 UID: 0 PID: 6408 Comm: syz.0.99 Not tainted syzkaller #0 PREEMPT(full)
[ 156.898888][ T6408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 156.898896][ T6408] Call Trace:
[ 156.898902][ T6408]
[ 156.898909][ T6408] dump_stack_lvl+0x189/0x250
[ 156.898931][ T6408] ? __pfx_dump_stack_lvl+0x10/0x10
[ 156.898946][ T6408] ? __pfx__printk+0x10/0x10
[ 156.898968][ T6408] ? do_raw_spin_unlock+0x122/0x240
[ 156.898990][ T6408] gfs2_assert_warn_i+0x194/0x2c0
[ 156.899011][ T6408] gfs2_qd_dispose+0x466/0x570
[ 156.899034][ T6408] gfs2_quota_init+0xcb0/0x1200
[ 156.899067][ T6408] ? __pfx_gfs2_quota_init+0x10/0x10
[ 156.899082][ T6408] ? rcu_is_watching+0x15/0xb0
[ 156.899097][ T6408] ? __pfx_wake_up_bit+0x10/0x10
[ 156.899112][ T6408] ? kfree+0x4d/0x660
[ 156.899134][ T6408] ? inode_go_inval+0x2a0/0x360
[ 156.899154][ T6408] gfs2_make_fs_rw+0x143/0x220
[ 156.899170][ T6408] gfs2_fill_super+0x1b6a/0x21b0
[ 156.899193][ T6408] ? __pfx_gfs2_fill_super+0x10/0x10
[ 156.899208][ T6408] ? init_locking+0xb8/0x210
[ 156.899219][ T6408] ? sb_set_blocksize+0x155/0x240
[ 156.899238][ T6408] ? setup_bdev_super+0x4c1/0x5b0
[ 156.899254][ T6408] get_tree_bdev_flags+0x40e/0x4d0
[ 156.899275][ T6408] ? __pfx_gfs2_fill_super+0x10/0x10
[ 156.899287][ T6408] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 156.899299][ T6408] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 156.899325][ T6408] gfs2_get_tree+0x51/0x1e0
[ 156.899340][ T6408] vfs_get_tree+0x92/0x2a0
[ 156.899354][ T6408] do_new_mount+0x302/0xa10
[ 156.899369][ T6408] ? apparmor_capable+0x137/0x1a0
[ 156.899391][ T6408] ? __pfx_do_new_mount+0x10/0x10
[ 156.899406][ T6408] ? ns_capable+0x8a/0xf0
[ 156.899422][ T6408] ? kmem_cache_free+0x197/0x620
[ 156.899443][ T6408] __se_sys_mount+0x313/0x410
[ 156.899463][ T6408] ? __pfx___se_sys_mount+0x10/0x10
[ 156.899482][ T6408] ? do_syscall_64+0xbe/0xf80
[ 156.899496][ T6408] ? __x64_sys_mount+0x20/0xc0
[ 156.899513][ T6408] do_syscall_64+0xfa/0xf80
[ 156.899528][ T6408] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.899541][ T6408] ? clear_bhb_loop+0x60/0xb0
[ 156.899556][ T6408] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.899569][ T6408] RIP: 0033:0x7f8532990eea
[ 156.899581][ T6408] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 156.899592][ T6408] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 156.899607][ T6408] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 156.899617][ T6408] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 156.899625][ T6408] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 156.899634][ T6408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 156.899642][ T6408] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 156.899665][ T6408]
[ 157.203023][ T6408] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 157.544877][ T6413] loop0: detected capacity change from 0 to 32768
[ 157.567120][ T6413] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 157.576228][ T6413] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 157.590371][ T6413] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 157.603766][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 157.612070][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 157.648544][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 36ms
[ 157.657476][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 157.663716][ T6413] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 157.697220][ T6417] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 157.712606][ T6417] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 157.722135][ T6417] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6417 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 157.733643][ T6417] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 157.743616][ T6417] CPU: 0 UID: 0 PID: 6417 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 157.743638][ T6417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 157.743648][ T6417] Call Trace:
[ 157.743655][ T6417]
[ 157.743663][ T6417] dump_stack_lvl+0x189/0x250
[ 157.743689][ T6417] ? __pfx_dump_stack_lvl+0x10/0x10
[ 157.743708][ T6417] ? queue_delayed_work_on+0x11a/0x280
[ 157.743715][ T6413] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 157.743728][ T6417] ? lockdep_hardirqs_on+0x98/0x140
[ 157.743747][ T6417] ? preempt_schedule+0xae/0xc0
[ 157.743766][ T6417] gfs2_withdraw+0xc3/0x1b0
[ 157.743783][ T6417] inode_go_instantiate+0xdd0/0x1210
[ 157.743816][ T6417] ? __pfx_inode_go_instantiate+0x10/0x10
[ 157.743844][ T6417] ? gfs2_glock_nq+0xedd/0x15f0
[ 157.743866][ T6417] gfs2_instantiate+0x168/0x220
[ 157.743895][ T6417] gfs2_glock_wait+0x1d4/0x2a0
[ 157.743916][ T6417] do_sync+0x46f/0xc60
[ 157.743936][ T6417] ? _raw_spin_unlock+0x28/0x50
[ 157.743953][ T6417] ? gfs2_quota_sync+0x359/0x460
[ 157.743984][ T6417] ? __pfx_do_sync+0x10/0x10
[ 157.744014][ T6417] ? gfs2_quota_sync+0x359/0x460
[ 157.744049][ T6417] ? do_raw_spin_unlock+0x122/0x240
[ 157.744076][ T6417] gfs2_quota_sync+0x359/0x460
[ 157.744106][ T6417] gfs2_quotad+0x3d5/0x930
[ 157.744142][ T6417] ? __pfx_gfs2_quotad+0x10/0x10
[ 157.744168][ T6417] ? __kthread_parkme+0x7b/0x200
[ 157.744187][ T6417] ? __kthread_parkme+0x1a1/0x200
[ 157.744211][ T6417] kthread+0x711/0x8a0
[ 157.744235][ T6417] ? __pfx_gfs2_quotad+0x10/0x10
[ 157.744256][ T6417] ? __pfx_kthread+0x10/0x10
[ 157.744279][ T6417] ? _raw_spin_unlock_irq+0x23/0x50
[ 157.744295][ T6417] ? lockdep_hardirqs_on+0x98/0x140
[ 157.744313][ T6417] ? __pfx_kthread+0x10/0x10
[ 157.744334][ T6417] ret_from_fork+0x599/0xb30
[ 157.744354][ T6417] ? __pfx_ret_from_fork+0x10/0x10
[ 157.744381][ T6417] ? __switch_to_asm+0x39/0x70
[ 157.744400][ T6417] ? __switch_to_asm+0x33/0x70
[ 157.744419][ T6417] ? __pfx_kthread+0x10/0x10
[ 157.744441][ T6417] ret_from_fork_asm+0x1a/0x30
[ 157.744479][ T6417]
[ 157.984871][ T6413] gfs2: fsid=syz:syz.0: can't make FS RW: -5
2025/12/11 14:39:03 executed programs: 86
[ 158.322805][ T6418] loop0: detected capacity change from 0 to 32768
[ 158.348098][ T6418] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 158.358279][ T6418] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 158.371036][ T6418] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 158.380635][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 158.389722][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 158.428648][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 38ms
[ 158.438299][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 158.443557][ T6418] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 158.470701][ T6422] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 158.487924][ T6422] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 158.497537][ T6422] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6422 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 158.524691][ T6422] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 158.532931][ T6422] CPU: 1 UID: 0 PID: 6422 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 158.532954][ T6422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 158.532964][ T6422] Call Trace:
[ 158.532971][ T6422]
[ 158.532979][ T6422] dump_stack_lvl+0x189/0x250
[ 158.533007][ T6422] ? __pfx_dump_stack_lvl+0x10/0x10
[ 158.533028][ T6422] ? queue_delayed_work_on+0x11a/0x280
[ 158.533047][ T6422] ? lockdep_hardirqs_on+0x98/0x140
[ 158.533067][ T6422] ? preempt_schedule+0xae/0xc0
[ 158.533092][ T6422] gfs2_withdraw+0xc3/0x1b0
[ 158.533111][ T6422] inode_go_instantiate+0xdd0/0x1210
[ 158.533145][ T6422] ? __pfx_inode_go_instantiate+0x10/0x10
[ 158.533172][ T6422] ? gfs2_glock_nq+0xedd/0x15f0
[ 158.533195][ T6422] gfs2_instantiate+0x168/0x220
[ 158.533216][ T6422] gfs2_glock_wait+0x1d4/0x2a0
[ 158.533237][ T6422] do_sync+0x46f/0xc60
[ 158.533256][ T6422] ? _raw_spin_unlock+0x28/0x50
[ 158.533273][ T6422] ? gfs2_quota_sync+0x359/0x460
[ 158.533304][ T6422] ? __pfx_do_sync+0x10/0x10
[ 158.533334][ T6422] ? gfs2_quota_sync+0x359/0x460
[ 158.533359][ T6422] ? do_raw_spin_unlock+0x122/0x240
[ 158.533386][ T6422] gfs2_quota_sync+0x359/0x460
[ 158.533419][ T6422] gfs2_quotad+0x3d5/0x930
[ 158.533455][ T6422] ? __pfx_gfs2_quotad+0x10/0x10
[ 158.533481][ T6422] ? __kthread_parkme+0x7b/0x200
[ 158.533500][ T6422] ? __kthread_parkme+0x1a1/0x200
[ 158.533524][ T6422] kthread+0x711/0x8a0
[ 158.533548][ T6422] ? __pfx_gfs2_quotad+0x10/0x10
[ 158.533569][ T6422] ? __pfx_kthread+0x10/0x10
[ 158.533592][ T6422] ? _raw_spin_unlock_irq+0x23/0x50
[ 158.533609][ T6422] ? lockdep_hardirqs_on+0x98/0x140
[ 158.533625][ T6422] ? __pfx_kthread+0x10/0x10
[ 158.533647][ T6422] ret_from_fork+0x599/0xb30
[ 158.533667][ T6422] ? __pfx_ret_from_fork+0x10/0x10
[ 158.533694][ T6422] ? __switch_to_asm+0x39/0x70
[ 158.533712][ T6422] ? __switch_to_asm+0x33/0x70
[ 158.533731][ T6422] ? __pfx_kthread+0x10/0x10
[ 158.533753][ T6422] ret_from_fork_asm+0x1a/0x30
[ 158.533797][ T6422]
[ 158.794965][ T6418] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 159.125026][ T6423] loop0: detected capacity change from 0 to 32768
[ 159.169927][ T6423] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 159.178875][ T6423] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 159.196111][ T6423] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 159.208249][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 159.215467][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 159.268413][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 52ms
[ 159.276877][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 159.282361][ T6423] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 159.344705][ T6423] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 159.355407][ T6423] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 159.369016][ T6423] CPU: 0 UID: 0 PID: 6423 Comm: syz.0.102 Not tainted syzkaller #0 PREEMPT(full)
[ 159.369038][ T6423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 159.369047][ T6423] Call Trace:
[ 159.369053][ T6423]
[ 159.369059][ T6423] dump_stack_lvl+0x189/0x250
[ 159.369083][ T6423] ? __pfx_dump_stack_lvl+0x10/0x10
[ 159.369101][ T6423] ? __pfx__printk+0x10/0x10
[ 159.369128][ T6423] ? do_raw_spin_unlock+0x122/0x240
[ 159.369152][ T6423] gfs2_assert_warn_i+0x194/0x2c0
[ 159.369174][ T6423] gfs2_qd_dispose+0x466/0x570
[ 159.369199][ T6423] gfs2_quota_init+0xcb0/0x1200
[ 159.369236][ T6423] ? __pfx_gfs2_quota_init+0x10/0x10
[ 159.369254][ T6423] ? rcu_is_watching+0x15/0xb0
[ 159.369274][ T6423] ? __pfx_wake_up_bit+0x10/0x10
[ 159.369293][ T6423] ? kfree+0x4d/0x660
[ 159.369321][ T6423] ? inode_go_inval+0x2a0/0x360
[ 159.369346][ T6423] gfs2_make_fs_rw+0x143/0x220
[ 159.369365][ T6423] gfs2_fill_super+0x1b6a/0x21b0
[ 159.369398][ T6423] ? __pfx_gfs2_fill_super+0x10/0x10
[ 159.369419][ T6423] ? init_locking+0xb8/0x210
[ 159.369435][ T6423] ? sb_set_blocksize+0x155/0x240
[ 159.369458][ T6423] ? setup_bdev_super+0x4c1/0x5b0
[ 159.369480][ T6423] get_tree_bdev_flags+0x40e/0x4d0
[ 159.369499][ T6423] ? __pfx_gfs2_fill_super+0x10/0x10
[ 159.369516][ T6423] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 159.369532][ T6423] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 159.369565][ T6423] gfs2_get_tree+0x51/0x1e0
[ 159.369585][ T6423] vfs_get_tree+0x92/0x2a0
[ 159.369605][ T6423] do_new_mount+0x302/0xa10
[ 159.369623][ T6423] ? apparmor_capable+0x137/0x1a0
[ 159.369652][ T6423] ? __pfx_do_new_mount+0x10/0x10
[ 159.369672][ T6423] ? ns_capable+0x8a/0xf0
[ 159.369692][ T6423] ? kmem_cache_free+0x197/0x620
[ 159.369720][ T6423] __se_sys_mount+0x313/0x410
[ 159.369747][ T6423] ? __pfx___se_sys_mount+0x10/0x10
[ 159.369771][ T6423] ? do_syscall_64+0xbe/0xf80
[ 159.369790][ T6423] ? __x64_sys_mount+0x20/0xc0
[ 159.369812][ T6423] do_syscall_64+0xfa/0xf80
[ 159.369832][ T6423] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.369849][ T6423] ? clear_bhb_loop+0x60/0xb0
[ 159.369880][ T6423] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.369897][ T6423] RIP: 0033:0x7f8532990eea
[ 159.369913][ T6423] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 159.369927][ T6423] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 159.369946][ T6423] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 159.369958][ T6423] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 159.369970][ T6423] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 159.369981][ T6423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 159.369992][ T6423] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 159.370021][ T6423]
[ 159.667745][ T6423] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 160.009351][ T6428] loop0: detected capacity change from 0 to 32768
[ 160.060079][ T6428] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 160.068885][ T6428] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 160.081233][ T6428] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 160.090868][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 160.098876][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 160.123924][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 25ms
[ 160.131494][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 160.136822][ T6428] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 160.191585][ T6428] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 160.202291][ T6428] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 160.216012][ T6428] CPU: 1 UID: 0 PID: 6428 Comm: syz.0.103 Not tainted syzkaller #0 PREEMPT(full)
[ 160.216035][ T6428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 160.216046][ T6428] Call Trace:
[ 160.216054][ T6428]
[ 160.216061][ T6428] dump_stack_lvl+0x189/0x250
[ 160.216088][ T6428] ? __pfx_dump_stack_lvl+0x10/0x10
[ 160.216108][ T6428] ? __pfx__printk+0x10/0x10
[ 160.216131][ T6428] ? do_raw_spin_unlock+0x122/0x240
[ 160.216152][ T6428] gfs2_assert_warn_i+0x194/0x2c0
[ 160.216171][ T6428] gfs2_qd_dispose+0x466/0x570
[ 160.216193][ T6428] gfs2_quota_init+0xcb0/0x1200
[ 160.216226][ T6428] ? __pfx_gfs2_quota_init+0x10/0x10
[ 160.216241][ T6428] ? rcu_is_watching+0x15/0xb0
[ 160.216256][ T6428] ? __pfx_wake_up_bit+0x10/0x10
[ 160.216271][ T6428] ? kfree+0x4d/0x660
[ 160.216293][ T6428] ? inode_go_inval+0x2a0/0x360
[ 160.216313][ T6428] gfs2_make_fs_rw+0x143/0x220
[ 160.216329][ T6428] gfs2_fill_super+0x1b6a/0x21b0
[ 160.216353][ T6428] ? __pfx_gfs2_fill_super+0x10/0x10
[ 160.216368][ T6428] ? init_locking+0xb8/0x210
[ 160.216379][ T6428] ? sb_set_blocksize+0x155/0x240
[ 160.216397][ T6428] ? setup_bdev_super+0x4c1/0x5b0
[ 160.216413][ T6428] get_tree_bdev_flags+0x40e/0x4d0
[ 160.216426][ T6428] ? __pfx_gfs2_fill_super+0x10/0x10
[ 160.216439][ T6428] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 160.216450][ T6428] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 160.216475][ T6428] gfs2_get_tree+0x51/0x1e0
[ 160.216491][ T6428] vfs_get_tree+0x92/0x2a0
[ 160.216506][ T6428] do_new_mount+0x302/0xa10
[ 160.216520][ T6428] ? apparmor_capable+0x137/0x1a0
[ 160.216542][ T6428] ? __pfx_do_new_mount+0x10/0x10
[ 160.216557][ T6428] ? ns_capable+0x8a/0xf0
[ 160.216572][ T6428] ? kmem_cache_free+0x197/0x620
[ 160.216593][ T6428] __se_sys_mount+0x313/0x410
[ 160.216613][ T6428] ? __pfx___se_sys_mount+0x10/0x10
[ 160.216632][ T6428] ? do_syscall_64+0xbe/0xf80
[ 160.216646][ T6428] ? __x64_sys_mount+0x20/0xc0
[ 160.216663][ T6428] do_syscall_64+0xfa/0xf80
[ 160.216678][ T6428] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.216691][ T6428] ? clear_bhb_loop+0x60/0xb0
[ 160.216743][ T6428] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.216756][ T6428] RIP: 0033:0x7f8532990eea
[ 160.216769][ T6428] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 160.216786][ T6428] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 160.216800][ T6428] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 160.216810][ T6428] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 160.216819][ T6428] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 160.216828][ T6428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 160.216836][ T6428] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 160.216858][ T6428]
[ 160.512989][ T6428] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 160.845730][ T6433] loop0: detected capacity change from 0 to 32768
[ 160.877439][ T6433] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 160.886415][ T6433] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 160.901115][ T6433] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 160.910433][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 160.918770][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 160.985525][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 66ms
[ 160.993102][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 160.998416][ T6433] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 161.017779][ T6437] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 161.032255][ T6437] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 161.042122][ T6437] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6437 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 161.050182][ T6433] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 161.052489][ T6437] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 161.072962][ T6437] CPU: 1 UID: 0 PID: 6437 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 161.072985][ T6437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 161.072995][ T6437] Call Trace:
[ 161.073002][ T6437]
[ 161.073009][ T6437] dump_stack_lvl+0x189/0x250
[ 161.073038][ T6437] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.073059][ T6437] ? queue_delayed_work_on+0x11a/0x280
[ 161.073080][ T6437] ? lockdep_hardirqs_on+0x98/0x140
[ 161.073099][ T6437] ? preempt_schedule+0xae/0xc0
[ 161.073124][ T6437] gfs2_withdraw+0xc3/0x1b0
[ 161.073143][ T6437] inode_go_instantiate+0xdd0/0x1210
[ 161.073177][ T6437] ? __pfx_inode_go_instantiate+0x10/0x10
[ 161.073205][ T6437] ? gfs2_glock_nq+0xedd/0x15f0
[ 161.073228][ T6437] gfs2_instantiate+0x168/0x220
[ 161.073249][ T6437] gfs2_glock_wait+0x1d4/0x2a0
[ 161.073270][ T6437] do_sync+0x46f/0xc60
[ 161.073289][ T6437] ? _raw_spin_unlock+0x28/0x50
[ 161.073305][ T6437] ? gfs2_quota_sync+0x359/0x460
[ 161.073336][ T6437] ? __pfx_do_sync+0x10/0x10
[ 161.073366][ T6437] ? gfs2_quota_sync+0x359/0x460
[ 161.073391][ T6437] ? do_raw_spin_unlock+0x122/0x240
[ 161.073418][ T6437] gfs2_quota_sync+0x359/0x460
[ 161.073450][ T6437] gfs2_quotad+0x3d5/0x930
[ 161.073487][ T6437] ? __pfx_gfs2_quotad+0x10/0x10
[ 161.073513][ T6437] ? __kthread_parkme+0x7b/0x200
[ 161.073532][ T6437] ? __kthread_parkme+0x1a1/0x200
[ 161.073557][ T6437] kthread+0x711/0x8a0
[ 161.073581][ T6437] ? __pfx_gfs2_quotad+0x10/0x10
[ 161.073602][ T6437] ? __pfx_kthread+0x10/0x10
[ 161.073624][ T6437] ? _raw_spin_unlock_irq+0x23/0x50
[ 161.073642][ T6437] ? lockdep_hardirqs_on+0x98/0x140
[ 161.073658][ T6437] ? __pfx_kthread+0x10/0x10
[ 161.073680][ T6437] ret_from_fork+0x599/0xb30
[ 161.073699][ T6437] ? __pfx_ret_from_fork+0x10/0x10
[ 161.073727][ T6437] ? __switch_to_asm+0x39/0x70
[ 161.073746][ T6437] ? __switch_to_asm+0x33/0x70
[ 161.073765][ T6437] ? __pfx_kthread+0x10/0x10
[ 161.073787][ T6437] ret_from_fork_asm+0x1a/0x30
[ 161.073825][ T6437]
[ 161.272253][ T6433] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 161.279164][ T6433] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 161.627604][ T6438] loop0: detected capacity change from 0 to 32768
[ 161.657437][ T6438] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 161.665787][ T6438] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 161.678549][ T6438] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 161.691574][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 161.699309][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 161.747157][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 47ms
[ 161.754832][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 161.760530][ T6438] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 161.820868][ T6438] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 161.831643][ T6438] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 161.845342][ T6438] CPU: 1 UID: 0 PID: 6438 Comm: syz.0.105 Not tainted syzkaller #0 PREEMPT(full)
[ 161.845364][ T6438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 161.845372][ T6438] Call Trace:
[ 161.845379][ T6438]
[ 161.845386][ T6438] dump_stack_lvl+0x189/0x250
[ 161.845411][ T6438] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.845429][ T6438] ? __pfx__printk+0x10/0x10
[ 161.845454][ T6438] ? do_raw_spin_unlock+0x122/0x240
[ 161.845479][ T6438] gfs2_assert_warn_i+0x194/0x2c0
[ 161.845503][ T6438] gfs2_qd_dispose+0x466/0x570
[ 161.845528][ T6438] gfs2_quota_init+0xcb0/0x1200
[ 161.845583][ T6438] ? __pfx_gfs2_quota_init+0x10/0x10
[ 161.845600][ T6438] ? rcu_is_watching+0x15/0xb0
[ 161.845617][ T6438] ? __pfx_wake_up_bit+0x10/0x10
[ 161.845636][ T6438] ? kfree+0x4d/0x660
[ 161.845663][ T6438] ? inode_go_inval+0x2a0/0x360
[ 161.845687][ T6438] gfs2_make_fs_rw+0x143/0x220
[ 161.845706][ T6438] gfs2_fill_super+0x1b6a/0x21b0
[ 161.845739][ T6438] ? __pfx_gfs2_fill_super+0x10/0x10
[ 161.845758][ T6438] ? init_locking+0xb8/0x210
[ 161.845771][ T6438] ? sb_set_blocksize+0x155/0x240
[ 161.845793][ T6438] ? setup_bdev_super+0x4c1/0x5b0
[ 161.845814][ T6438] get_tree_bdev_flags+0x40e/0x4d0
[ 161.845830][ T6438] ? __pfx_gfs2_fill_super+0x10/0x10
[ 161.845847][ T6438] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 161.845862][ T6438] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 161.845891][ T6438] gfs2_get_tree+0x51/0x1e0
[ 161.845909][ T6438] vfs_get_tree+0x92/0x2a0
[ 161.845927][ T6438] do_new_mount+0x302/0xa10
[ 161.845945][ T6438] ? apparmor_capable+0x137/0x1a0
[ 161.845972][ T6438] ? __pfx_do_new_mount+0x10/0x10
[ 161.845991][ T6438] ? ns_capable+0x8a/0xf0
[ 161.846010][ T6438] ? kmem_cache_free+0x197/0x620
[ 161.846038][ T6438] __se_sys_mount+0x313/0x410
[ 161.846064][ T6438] ? __pfx___se_sys_mount+0x10/0x10
[ 161.846087][ T6438] ? do_syscall_64+0xbe/0xf80
[ 161.846104][ T6438] ? __x64_sys_mount+0x20/0xc0
[ 161.846123][ T6438] do_syscall_64+0xfa/0xf80
[ 161.846140][ T6438] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.846155][ T6438] ? clear_bhb_loop+0x60/0xb0
[ 161.846171][ T6438] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.846186][ T6438] RIP: 0033:0x7f8532990eea
[ 161.846201][ T6438] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 161.846213][ T6438] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 161.846230][ T6438] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 161.846241][ T6438] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 161.846251][ T6438] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 161.846262][ T6438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 161.846273][ T6438] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 161.846302][ T6438]
[ 162.143473][ T6438] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 162.474249][ T6443] loop0: detected capacity change from 0 to 32768
[ 162.489653][ T6443] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 162.498809][ T6443] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 162.511304][ T6443] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 162.520873][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 162.529391][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 162.563006][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 33ms
[ 162.571649][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 162.577268][ T6443] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 162.628795][ T6443] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 162.639490][ T6443] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 162.653848][ T6443] CPU: 1 UID: 0 PID: 6443 Comm: syz.0.106 Not tainted syzkaller #0 PREEMPT(full)
[ 162.653863][ T6443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 162.653869][ T6443] Call Trace:
[ 162.653873][ T6443]
[ 162.653878][ T6443] dump_stack_lvl+0x189/0x250
[ 162.653895][ T6443] ? __pfx_dump_stack_lvl+0x10/0x10
[ 162.653907][ T6443] ? __pfx__printk+0x10/0x10
[ 162.653923][ T6443] ? do_raw_spin_unlock+0x122/0x240
[ 162.653939][ T6443] gfs2_assert_warn_i+0x194/0x2c0
[ 162.653954][ T6443] gfs2_qd_dispose+0x466/0x570
[ 162.653970][ T6443] gfs2_quota_init+0xcb0/0x1200
[ 162.653993][ T6443] ? __pfx_gfs2_quota_init+0x10/0x10
[ 162.654004][ T6443] ? rcu_is_watching+0x15/0xb0
[ 162.654015][ T6443] ? __pfx_wake_up_bit+0x10/0x10
[ 162.654026][ T6443] ? kfree+0x4d/0x660
[ 162.654043][ T6443] ? inode_go_inval+0x2a0/0x360
[ 162.654058][ T6443] gfs2_make_fs_rw+0x143/0x220
[ 162.654069][ T6443] gfs2_fill_super+0x1b6a/0x21b0
[ 162.654086][ T6443] ? __pfx_gfs2_fill_super+0x10/0x10
[ 162.654097][ T6443] ? init_locking+0xb8/0x210
[ 162.654105][ T6443] ? sb_set_blocksize+0x155/0x240
[ 162.654119][ T6443] ? setup_bdev_super+0x4c1/0x5b0
[ 162.654131][ T6443] get_tree_bdev_flags+0x40e/0x4d0
[ 162.654140][ T6443] ? __pfx_gfs2_fill_super+0x10/0x10
[ 162.654149][ T6443] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 162.654158][ T6443] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 162.654177][ T6443] gfs2_get_tree+0x51/0x1e0
[ 162.654188][ T6443] vfs_get_tree+0x92/0x2a0
[ 162.654199][ T6443] do_new_mount+0x302/0xa10
[ 162.654209][ T6443] ? apparmor_capable+0x137/0x1a0
[ 162.654226][ T6443] ? __pfx_do_new_mount+0x10/0x10
[ 162.654237][ T6443] ? ns_capable+0x8a/0xf0
[ 162.654249][ T6443] ? kmem_cache_free+0x197/0x620
[ 162.654265][ T6443] __se_sys_mount+0x313/0x410
[ 162.654279][ T6443] ? __pfx___se_sys_mount+0x10/0x10
[ 162.654293][ T6443] ? do_syscall_64+0xbe/0xf80
[ 162.654303][ T6443] ? __x64_sys_mount+0x20/0xc0
[ 162.654316][ T6443] do_syscall_64+0xfa/0xf80
[ 162.654327][ T6443] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.654336][ T6443] ? clear_bhb_loop+0x60/0xb0
[ 162.654347][ T6443] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.654356][ T6443] RIP: 0033:0x7f8532990eea
[ 162.654367][ T6443] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 162.654374][ T6443] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 162.654386][ T6443] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 162.654394][ T6443] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 162.654400][ T6443] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 162.654406][ T6443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 162.654413][ T6443] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 162.654429][ T6443]
[ 162.950978][ T6443] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 163.282376][ T6448] loop0: detected capacity change from 0 to 32768
[ 163.336255][ T6448] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 163.345693][ T6448] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 163.357808][ T6448] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 163.367744][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 163.375102][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 163.410678][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 35ms
[ 163.418645][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 163.423961][ T6448] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 163.445634][ T6452] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 163.460794][ T6452] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 163.470136][ T6452] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6452 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 163.480452][ T6452] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 163.488725][ T6452] CPU: 1 UID: 0 PID: 6452 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 163.488747][ T6452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 163.488756][ T6452] Call Trace:
[ 163.488763][ T6452]
[ 163.488771][ T6452] dump_stack_lvl+0x189/0x250
[ 163.488797][ T6452] ? __pfx_dump_stack_lvl+0x10/0x10
[ 163.488814][ T6452] ? queue_delayed_work_on+0x11a/0x280
[ 163.488830][ T6452] ? lockdep_hardirqs_on+0x98/0x140
[ 163.488845][ T6452] ? preempt_schedule+0xae/0xc0
[ 163.488864][ T6452] gfs2_withdraw+0xc3/0x1b0
[ 163.488879][ T6452] inode_go_instantiate+0xdd0/0x1210
[ 163.488905][ T6452] ? __pfx_inode_go_instantiate+0x10/0x10
[ 163.488926][ T6452] ? gfs2_glock_nq+0xedd/0x15f0
[ 163.488944][ T6452] gfs2_instantiate+0x168/0x220
[ 163.488958][ T6452] gfs2_glock_wait+0x1d4/0x2a0
[ 163.488974][ T6452] do_sync+0x46f/0xc60
[ 163.488989][ T6452] ? _raw_spin_unlock+0x28/0x50
[ 163.489002][ T6452] ? gfs2_quota_sync+0x359/0x460
[ 163.489024][ T6452] ? __pfx_do_sync+0x10/0x10
[ 163.489047][ T6452] ? gfs2_quota_sync+0x359/0x460
[ 163.489066][ T6452] ? do_raw_spin_unlock+0x122/0x240
[ 163.489086][ T6452] gfs2_quota_sync+0x359/0x460
[ 163.489110][ T6452] gfs2_quotad+0x3d5/0x930
[ 163.489138][ T6452] ? __pfx_gfs2_quotad+0x10/0x10
[ 163.489158][ T6452] ? __kthread_parkme+0x7b/0x200
[ 163.489173][ T6452] ? __kthread_parkme+0x1a1/0x200
[ 163.489191][ T6452] kthread+0x711/0x8a0
[ 163.489209][ T6452] ? __pfx_gfs2_quotad+0x10/0x10
[ 163.489226][ T6452] ? __pfx_kthread+0x10/0x10
[ 163.489243][ T6452] ? _raw_spin_unlock_irq+0x23/0x50
[ 163.489256][ T6452] ? lockdep_hardirqs_on+0x98/0x140
[ 163.489269][ T6452] ? __pfx_kthread+0x10/0x10
[ 163.489286][ T6452] ret_from_fork+0x599/0xb30
[ 163.489302][ T6452] ? __pfx_ret_from_fork+0x10/0x10
[ 163.489322][ T6452] ? __switch_to_asm+0x39/0x70
[ 163.489337][ T6452] ? __switch_to_asm+0x33/0x70
[ 163.489351][ T6452] ? __pfx_kthread+0x10/0x10
[ 163.489368][ T6452] ret_from_fork_asm+0x1a/0x30
[ 163.489402][ T6452]
[ 163.725029][ T6448] gfs2: fsid=syz:syz.0: can't make FS RW: -5
2025/12/11 14:39:09 executed programs: 93
[ 164.070781][ T6453] loop0: detected capacity change from 0 to 32768
[ 164.097416][ T6453] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 164.106183][ T6453] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 164.119754][ T6453] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 164.130719][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 164.137653][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 164.184268][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 46ms
[ 164.194656][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 164.200000][ T6453] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 164.226557][ T6457] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 164.241588][ T6457] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 164.252035][ T6457] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6457 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 164.262420][ T6457] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 164.270758][ T6457] CPU: 1 UID: 0 PID: 6457 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 164.270782][ T6457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 164.270791][ T6457] Call Trace:
[ 164.270798][ T6457]
[ 164.270806][ T6457] dump_stack_lvl+0x189/0x250
[ 164.270833][ T6457] ? __pfx_dump_stack_lvl+0x10/0x10
[ 164.270853][ T6457] ? queue_delayed_work_on+0x11a/0x280
[ 164.270874][ T6457] ? lockdep_hardirqs_on+0x98/0x140
[ 164.270892][ T6457] ? preempt_schedule+0xae/0xc0
[ 164.270916][ T6457] gfs2_withdraw+0xc3/0x1b0
[ 164.270935][ T6457] inode_go_instantiate+0xdd0/0x1210
[ 164.270969][ T6457] ? __pfx_inode_go_instantiate+0x10/0x10
[ 164.270997][ T6457] ? gfs2_glock_nq+0xedd/0x15f0
[ 164.271021][ T6457] gfs2_instantiate+0x168/0x220
[ 164.271041][ T6457] gfs2_glock_wait+0x1d4/0x2a0
[ 164.271063][ T6457] do_sync+0x46f/0xc60
[ 164.271083][ T6457] ? _raw_spin_unlock+0x28/0x50
[ 164.271099][ T6457] ? gfs2_quota_sync+0x359/0x460
[ 164.271130][ T6457] ? __pfx_do_sync+0x10/0x10
[ 164.271161][ T6457] ? gfs2_quota_sync+0x359/0x460
[ 164.271186][ T6457] ? do_raw_spin_unlock+0x122/0x240
[ 164.271214][ T6457] gfs2_quota_sync+0x359/0x460
[ 164.271245][ T6457] gfs2_quotad+0x3d5/0x930
[ 164.271283][ T6457] ? __pfx_gfs2_quotad+0x10/0x10
[ 164.271310][ T6457] ? __kthread_parkme+0x7b/0x200
[ 164.271329][ T6457] ? __kthread_parkme+0x1a1/0x200
[ 164.271355][ T6457] kthread+0x711/0x8a0
[ 164.271387][ T6457] ? __pfx_gfs2_quotad+0x10/0x10
[ 164.271407][ T6457] ? __pfx_kthread+0x10/0x10
[ 164.271429][ T6457] ? _raw_spin_unlock_irq+0x23/0x50
[ 164.271446][ T6457] ? lockdep_hardirqs_on+0x98/0x140
[ 164.271463][ T6457] ? __pfx_kthread+0x10/0x10
[ 164.271484][ T6457] ret_from_fork+0x599/0xb30
[ 164.271504][ T6457] ? __pfx_ret_from_fork+0x10/0x10
[ 164.271531][ T6457] ? __switch_to_asm+0x39/0x70
[ 164.271550][ T6457] ? __switch_to_asm+0x33/0x70
[ 164.271568][ T6457] ? __pfx_kthread+0x10/0x10
[ 164.271590][ T6457] ret_from_fork_asm+0x1a/0x30
[ 164.271628][ T6457]
[ 164.495337][ T6453] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 164.838149][ T6458] loop0: detected capacity change from 0 to 32768
[ 164.857977][ T6458] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 164.867327][ T6458] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 164.881127][ T6458] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 164.894966][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 164.901761][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 164.958240][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 56ms
[ 164.965975][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 164.973100][ T6458] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 165.029558][ T6458] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 165.040440][ T6458] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 165.054219][ T6458] CPU: 0 UID: 0 PID: 6458 Comm: syz.0.109 Not tainted syzkaller #0 PREEMPT(full)
[ 165.054242][ T6458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 165.054252][ T6458] Call Trace:
[ 165.054258][ T6458]
[ 165.054266][ T6458] dump_stack_lvl+0x189/0x250
[ 165.054296][ T6458] ? __pfx_dump_stack_lvl+0x10/0x10
[ 165.054312][ T6458] ? __pfx__printk+0x10/0x10
[ 165.054337][ T6458] ? do_raw_spin_unlock+0x122/0x240
[ 165.054362][ T6458] gfs2_assert_warn_i+0x194/0x2c0
[ 165.054385][ T6458] gfs2_qd_dispose+0x466/0x570
[ 165.054409][ T6458] gfs2_quota_init+0xcb0/0x1200
[ 165.054447][ T6458] ? __pfx_gfs2_quota_init+0x10/0x10
[ 165.054466][ T6458] ? rcu_is_watching+0x15/0xb0
[ 165.054486][ T6458] ? __pfx_wake_up_bit+0x10/0x10
[ 165.054508][ T6458] ? kfree+0x4d/0x660
[ 165.054535][ T6458] ? inode_go_inval+0x2a0/0x360
[ 165.054557][ T6458] gfs2_make_fs_rw+0x143/0x220
[ 165.054575][ T6458] gfs2_fill_super+0x1b6a/0x21b0
[ 165.054603][ T6458] ? __pfx_gfs2_fill_super+0x10/0x10
[ 165.054621][ T6458] ? init_locking+0xb8/0x210
[ 165.054633][ T6458] ? sb_set_blocksize+0x155/0x240
[ 165.054654][ T6458] ? setup_bdev_super+0x4c1/0x5b0
[ 165.054680][ T6458] get_tree_bdev_flags+0x40e/0x4d0
[ 165.054696][ T6458] ? __pfx_gfs2_fill_super+0x10/0x10
[ 165.054713][ T6458] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 165.054728][ T6458] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 165.054762][ T6458] gfs2_get_tree+0x51/0x1e0
[ 165.054783][ T6458] vfs_get_tree+0x92/0x2a0
[ 165.054804][ T6458] do_new_mount+0x302/0xa10
[ 165.054823][ T6458] ? apparmor_capable+0x137/0x1a0
[ 165.054850][ T6458] ? __pfx_do_new_mount+0x10/0x10
[ 165.054869][ T6458] ? ns_capable+0x8a/0xf0
[ 165.054887][ T6458] ? kmem_cache_free+0x197/0x620
[ 165.054912][ T6458] __se_sys_mount+0x313/0x410
[ 165.054938][ T6458] ? __pfx___se_sys_mount+0x10/0x10
[ 165.054961][ T6458] ? do_syscall_64+0xbe/0xf80
[ 165.054978][ T6458] ? __x64_sys_mount+0x20/0xc0
[ 165.054999][ T6458] do_syscall_64+0xfa/0xf80
[ 165.055019][ T6458] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 165.055034][ T6458] ? clear_bhb_loop+0x60/0xb0
[ 165.055055][ T6458] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 165.055069][ T6458] RIP: 0033:0x7f8532990eea
[ 165.055086][ T6458] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 165.055099][ T6458] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 165.055117][ T6458] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 165.055128][ T6458] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 165.055138][ T6458] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 165.055148][ T6458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 165.055157][ T6458] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 165.055181][ T6458]
[ 165.355789][ T6458] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 165.703863][ T6463] loop0: detected capacity change from 0 to 32768
[ 165.725719][ T6463] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 165.734009][ T6463] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 165.746683][ T6463] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 165.757082][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 165.763870][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 165.802765][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 38ms
[ 165.812250][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 165.818121][ T6463] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 165.882153][ T6463] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 165.892852][ T6463] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 165.908685][ T6463] CPU: 1 UID: 0 PID: 6463 Comm: syz.0.110 Not tainted syzkaller #0 PREEMPT(full)
[ 165.908709][ T6463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 165.908717][ T6463] Call Trace:
[ 165.908724][ T6463]
[ 165.908731][ T6463] dump_stack_lvl+0x189/0x250
[ 165.908759][ T6463] ? __pfx_dump_stack_lvl+0x10/0x10
[ 165.908778][ T6463] ? __pfx__printk+0x10/0x10
[ 165.908805][ T6463] ? do_raw_spin_unlock+0x122/0x240
[ 165.908832][ T6463] gfs2_assert_warn_i+0x194/0x2c0
[ 165.908857][ T6463] gfs2_qd_dispose+0x466/0x570
[ 165.908886][ T6463] gfs2_quota_init+0xcb0/0x1200
[ 165.908929][ T6463] ? __pfx_gfs2_quota_init+0x10/0x10
[ 165.908949][ T6463] ? rcu_is_watching+0x15/0xb0
[ 165.908968][ T6463] ? __pfx_wake_up_bit+0x10/0x10
[ 165.908988][ T6463] ? kfree+0x4d/0x660
[ 165.909017][ T6463] ? inode_go_inval+0x2a0/0x360
[ 165.909043][ T6463] gfs2_make_fs_rw+0x143/0x220
[ 165.909063][ T6463] gfs2_fill_super+0x1b6a/0x21b0
[ 165.909095][ T6463] ? __pfx_gfs2_fill_super+0x10/0x10
[ 165.909115][ T6463] ? init_locking+0xb8/0x210
[ 165.909129][ T6463] ? sb_set_blocksize+0x155/0x240
[ 165.909152][ T6463] ? setup_bdev_super+0x4c1/0x5b0
[ 165.909174][ T6463] get_tree_bdev_flags+0x40e/0x4d0
[ 165.909191][ T6463] ? __pfx_gfs2_fill_super+0x10/0x10
[ 165.909208][ T6463] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 165.909221][ T6463] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 165.909262][ T6463] gfs2_get_tree+0x51/0x1e0
[ 165.909282][ T6463] vfs_get_tree+0x92/0x2a0
[ 165.909302][ T6463] do_new_mount+0x302/0xa10
[ 165.909320][ T6463] ? apparmor_capable+0x137/0x1a0
[ 165.909349][ T6463] ? __pfx_do_new_mount+0x10/0x10
[ 165.909369][ T6463] ? ns_capable+0x8a/0xf0
[ 165.909390][ T6463] ? kmem_cache_free+0x197/0x620
[ 165.909418][ T6463] __se_sys_mount+0x313/0x410
[ 165.909445][ T6463] ? __pfx___se_sys_mount+0x10/0x10
[ 165.909470][ T6463] ? do_syscall_64+0xbe/0xf80
[ 165.909487][ T6463] ? __x64_sys_mount+0x20/0xc0
[ 165.909510][ T6463] do_syscall_64+0xfa/0xf80
[ 165.909528][ T6463] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 165.909545][ T6463] ? clear_bhb_loop+0x60/0xb0
[ 165.909566][ T6463] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 165.909582][ T6463] RIP: 0033:0x7f8532990eea
[ 165.909597][ T6463] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 165.909612][ T6463] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 165.909630][ T6463] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 165.909642][ T6463] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 165.909654][ T6463] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 165.909665][ T6463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 165.909676][ T6463] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 165.909705][ T6463]
[ 166.208756][ T6463] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 166.552351][ T6468] loop0: detected capacity change from 0 to 32768
[ 166.567305][ T6468] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 166.576977][ T6468] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 166.590298][ T6468] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 166.600002][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 166.606969][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 166.647477][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 40ms
[ 166.655172][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 166.661013][ T6468] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 166.686445][ T6472] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 166.701172][ T6472] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 166.713522][ T6472] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6472 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 166.724092][ T6472] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 166.733951][ T6472] CPU: 1 UID: 0 PID: 6472 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 166.733975][ T6472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 166.733985][ T6472] Call Trace:
[ 166.733992][ T6472]
[ 166.733999][ T6472] dump_stack_lvl+0x189/0x250
[ 166.734029][ T6472] ? __pfx_dump_stack_lvl+0x10/0x10
[ 166.734049][ T6472] ? queue_delayed_work_on+0x11a/0x280
[ 166.734070][ T6472] ? lockdep_hardirqs_on+0x98/0x140
[ 166.734091][ T6472] ? preempt_schedule+0xae/0xc0
[ 166.734116][ T6472] gfs2_withdraw+0xc3/0x1b0
[ 166.734136][ T6472] inode_go_instantiate+0xdd0/0x1210
[ 166.734169][ T6472] ? __pfx_inode_go_instantiate+0x10/0x10
[ 166.734205][ T6472] ? gfs2_glock_nq+0xedd/0x15f0
[ 166.734229][ T6472] gfs2_instantiate+0x168/0x220
[ 166.734249][ T6472] gfs2_glock_wait+0x1d4/0x2a0
[ 166.734270][ T6472] do_sync+0x46f/0xc60
[ 166.734290][ T6472] ? _raw_spin_unlock+0x28/0x50
[ 166.734306][ T6472] ? gfs2_quota_sync+0x359/0x460
[ 166.734337][ T6472] ? __pfx_do_sync+0x10/0x10
[ 166.734367][ T6472] ? gfs2_quota_sync+0x359/0x460
[ 166.734392][ T6472] ? do_raw_spin_unlock+0x122/0x240
[ 166.734420][ T6472] gfs2_quota_sync+0x359/0x460
[ 166.734451][ T6472] gfs2_quotad+0x3d5/0x930
[ 166.734492][ T6472] ? __pfx_gfs2_quotad+0x10/0x10
[ 166.734515][ T6472] ? __kthread_parkme+0x7b/0x200
[ 166.734532][ T6472] ? __kthread_parkme+0x1a1/0x200
[ 166.734558][ T6472] kthread+0x711/0x8a0
[ 166.734582][ T6472] ? __pfx_gfs2_quotad+0x10/0x10
[ 166.734603][ T6472] ? __pfx_kthread+0x10/0x10
[ 166.734626][ T6472] ? _raw_spin_unlock_irq+0x23/0x50
[ 166.734641][ T6472] ? lockdep_hardirqs_on+0x98/0x140
[ 166.734656][ T6472] ? __pfx_kthread+0x10/0x10
[ 166.734678][ T6472] ret_from_fork+0x599/0xb30
[ 166.734699][ T6472] ? __pfx_ret_from_fork+0x10/0x10
[ 166.734727][ T6472] ? __switch_to_asm+0x39/0x70
[ 166.734747][ T6472] ? __switch_to_asm+0x33/0x70
[ 166.734766][ T6472] ? __pfx_kthread+0x10/0x10
[ 166.734788][ T6472] ret_from_fork_asm+0x1a/0x30
[ 166.734826][ T6472]
[ 166.964906][ T6468] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 167.302752][ T6473] loop0: detected capacity change from 0 to 32768
[ 167.336002][ T6473] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 167.344205][ T6473] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 167.360166][ T6473] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 167.374073][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 167.381196][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 167.419269][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 38ms
[ 167.427652][ T9] gfs2: fsid=syz:syz.0: jid=0: Done
[ 167.432914][ T6473] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 167.455827][ T6477] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 167.470648][ T6477] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 167.480827][ T6477] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6477 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 167.491719][ T6477] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 167.500578][ T6477] CPU: 0 UID: 0 PID: 6477 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 167.500599][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 167.500609][ T6477] Call Trace:
[ 167.500616][ T6477]
[ 167.500623][ T6477] dump_stack_lvl+0x189/0x250
[ 167.500651][ T6477] ? __pfx_dump_stack_lvl+0x10/0x10
[ 167.500671][ T6477] ? queue_delayed_work_on+0x11a/0x280
[ 167.500691][ T6477] ? lockdep_hardirqs_on+0x98/0x140
[ 167.500711][ T6477] ? preempt_schedule+0xae/0xc0
[ 167.500736][ T6477] gfs2_withdraw+0xc3/0x1b0
[ 167.500756][ T6477] inode_go_instantiate+0xdd0/0x1210
[ 167.500790][ T6477] ? __pfx_inode_go_instantiate+0x10/0x10
[ 167.500817][ T6477] ? gfs2_glock_nq+0xedd/0x15f0
[ 167.500839][ T6477] gfs2_instantiate+0x168/0x220
[ 167.500860][ T6477] gfs2_glock_wait+0x1d4/0x2a0
[ 167.500881][ T6477] do_sync+0x46f/0xc60
[ 167.500900][ T6477] ? _raw_spin_unlock+0x28/0x50
[ 167.500916][ T6477] ? gfs2_quota_sync+0x359/0x460
[ 167.500947][ T6477] ? __pfx_do_sync+0x10/0x10
[ 167.500974][ T6477] ? gfs2_quota_sync+0x359/0x460
[ 167.500996][ T6477] ? do_raw_spin_unlock+0x122/0x240
[ 167.501022][ T6477] gfs2_quota_sync+0x359/0x460
[ 167.501053][ T6477] gfs2_quotad+0x3d5/0x930
[ 167.501083][ T6477] ? __pfx_gfs2_quotad+0x10/0x10
[ 167.501097][ T6477] ? __kthread_parkme+0x7b/0x200
[ 167.501109][ T6477] ? __kthread_parkme+0x1a1/0x200
[ 167.501123][ T6477] kthread+0x711/0x8a0
[ 167.501136][ T6477] ? __pfx_gfs2_quotad+0x10/0x10
[ 167.501148][ T6477] ? __pfx_kthread+0x10/0x10
[ 167.501161][ T6477] ? _raw_spin_unlock_irq+0x23/0x50
[ 167.501170][ T6477] ? lockdep_hardirqs_on+0x98/0x140
[ 167.501180][ T6477] ? __pfx_kthread+0x10/0x10
[ 167.501192][ T6477] ret_from_fork+0x599/0xb30
[ 167.501203][ T6477] ? __pfx_ret_from_fork+0x10/0x10
[ 167.501218][ T6477] ? __switch_to_asm+0x39/0x70
[ 167.501229][ T6477] ? __switch_to_asm+0x33/0x70
[ 167.501240][ T6477] ? __pfx_kthread+0x10/0x10
[ 167.501252][ T6477] ret_from_fork_asm+0x1a/0x30
[ 167.501272][ T6477]
[ 167.734899][ T6473] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 168.068889][ T6478] loop0: detected capacity change from 0 to 32768
[ 168.092950][ T6478] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 168.102593][ T6478] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 168.116564][ T6478] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 168.125773][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 168.132556][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 168.160617][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 28ms
[ 168.168459][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 168.173700][ T6478] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 168.227719][ T6478] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 168.238504][ T6478] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[ 168.252528][ T6478] CPU: 1 UID: 0 PID: 6478 Comm: syz.0.113 Not tainted syzkaller #0 PREEMPT(full)
[ 168.252550][ T6478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 168.252560][ T6478] Call Trace:
[ 168.252567][ T6478]
[ 168.252573][ T6478] dump_stack_lvl+0x189/0x250
[ 168.252590][ T6478] ? __pfx_dump_stack_lvl+0x10/0x10
[ 168.252602][ T6478] ? __pfx__printk+0x10/0x10
[ 168.252618][ T6478] ? do_raw_spin_unlock+0x122/0x240
[ 168.252634][ T6478] gfs2_assert_warn_i+0x194/0x2c0
[ 168.252648][ T6478] gfs2_qd_dispose+0x466/0x570
[ 168.252664][ T6478] gfs2_quota_init+0xcb0/0x1200
[ 168.252687][ T6478] ? __pfx_gfs2_quota_init+0x10/0x10
[ 168.252698][ T6478] ? rcu_is_watching+0x15/0xb0
[ 168.252710][ T6478] ? __pfx_wake_up_bit+0x10/0x10
[ 168.252721][ T6478] ? kfree+0x4d/0x660
[ 168.252737][ T6478] ? inode_go_inval+0x2a0/0x360
[ 168.252752][ T6478] gfs2_make_fs_rw+0x143/0x220
[ 168.252764][ T6478] gfs2_fill_super+0x1b6a/0x21b0
[ 168.252781][ T6478] ? __pfx_gfs2_fill_super+0x10/0x10
[ 168.252792][ T6478] ? init_locking+0xb8/0x210
[ 168.252800][ T6478] ? sb_set_blocksize+0x155/0x240
[ 168.252814][ T6478] ? setup_bdev_super+0x4c1/0x5b0
[ 168.252826][ T6478] get_tree_bdev_flags+0x40e/0x4d0
[ 168.252836][ T6478] ? __pfx_gfs2_fill_super+0x10/0x10
[ 168.252845][ T6478] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 168.252854][ T6478] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 168.252872][ T6478] gfs2_get_tree+0x51/0x1e0
[ 168.252883][ T6478] vfs_get_tree+0x92/0x2a0
[ 168.252894][ T6478] do_new_mount+0x302/0xa10
[ 168.252904][ T6478] ? apparmor_capable+0x137/0x1a0
[ 168.252920][ T6478] ? __pfx_do_new_mount+0x10/0x10
[ 168.252931][ T6478] ? ns_capable+0x8a/0xf0
[ 168.252943][ T6478] ? kmem_cache_free+0x197/0x620
[ 168.252957][ T6478] __se_sys_mount+0x313/0x410
[ 168.252972][ T6478] ? __pfx___se_sys_mount+0x10/0x10
[ 168.252985][ T6478] ? do_syscall_64+0xbe/0xf80
[ 168.252996][ T6478] ? __x64_sys_mount+0x20/0xc0
[ 168.253009][ T6478] do_syscall_64+0xfa/0xf80
[ 168.253019][ T6478] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 168.253029][ T6478] ? clear_bhb_loop+0x60/0xb0
[ 168.253040][ T6478] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 168.253049][ T6478] RIP: 0033:0x7f8532990eea
[ 168.253059][ T6478] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 168.253067][ T6478] RSP: 002b:00007ffcf3b89058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 168.253078][ T6478] RAX: ffffffffffffffda RBX: 00007ffcf3b890e0 RCX: 00007f8532990eea
[ 168.253092][ T6478] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007ffcf3b890a0
[ 168.253098][ T6478] RBP: 0000200000000100 R08: 00007ffcf3b890e0 R09: 0000000000000000
[ 168.253104][ T6478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000012500
[ 168.253110][ T6478] R13: 00007ffcf3b890a0 R14: 000000000001251b R15: 0000200000000140
[ 168.253126][ T6478]
[ 168.549004][ T6478] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 168.896446][ T6483] loop0: detected capacity change from 0 to 32768
[ 168.909702][ T6483] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 168.918722][ T6483] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 168.937555][ T6483] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 168.947062][ T5849] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 168.953898][ T5849] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 168.996544][ T5849] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 42ms
[ 169.004075][ T5849] gfs2: fsid=syz:syz.0: jid=0: Done
[ 169.009410][ T6483] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 169.027477][ T6487] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 169.042497][ T6487] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 169.052596][ T6487] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6487 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460
[ 169.062147][ T6483] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 48768
[ 169.063438][ T6487] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 169.083194][ T6487] CPU: 0 UID: 0 PID: 6487 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full)
[ 169.083217][ T6487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 169.083226][ T6487] Call Trace:
[ 169.083234][ T6487]
[ 169.083241][ T6487] dump_stack_lvl+0x189/0x250
[ 169.083270][ T6487] ? __pfx_dump_stack_lvl+0x10/0x10
[ 169.083301][ T6487] ? queue_delayed_work_on+0x11a/0x280
[ 169.083322][ T6487] ? lockdep_hardirqs_on+0x98/0x140
[ 169.083341][ T6487] ? preempt_schedule+0xae/0xc0
[ 169.083367][ T6487] gfs2_withdraw+0xc3/0x1b0
[ 169.083386][ T6487] inode_go_instantiate+0xdd0/0x1210
[ 169.083420][ T6487] ? __pfx_inode_go_instantiate+0x10/0x10
[ 169.083447][ T6487] ? gfs2_glock_nq+0xedd/0x15f0
[ 169.083470][ T6487] gfs2_instantiate+0x168/0x220
[ 169.083489][ T6487] gfs2_glock_wait+0x1d4/0x2a0
[ 169.083511][ T6487] do_sync+0x46f/0xc60
[ 169.083530][ T6487] ? _raw_spin_unlock+0x28/0x50
[ 169.083547][ T6487] ? gfs2_quota_sync+0x359/0x460
[ 169.083578][ T6487] ? __pfx_do_sync+0x10/0x10
[ 169.083607][ T6487] ? gfs2_quota_sync+0x359/0x460
[ 169.083632][ T6487] ? do_raw_spin_unlock+0x122/0x240
[ 169.083658][ T6487] gfs2_quota_sync+0x359/0x460
[ 169.083691][ T6487] gfs2_quotad+0x3d5/0x930
[ 169.083727][ T6487] ? __pfx_gfs2_quotad+0x10/0x10
[ 169.083754][ T6487] ? __kthread_parkme+0x7b/0x200
[ 169.083773][ T6487] ? __kthread_parkme+0x1a1/0x200
[ 169.083797][ T6487] kthread+0x711/0x8a0
[ 169.083821][ T6487] ? __pfx_gfs2_quotad+0x10/0x10
[ 169.083842][ T6487] ? __pfx_kthread+0x10/0x10
[ 169.083865][ T6487] ? _raw_spin_unlock_irq+0x23/0x50
[ 169.083883][ T6487] ? lockdep_hardirqs_on+0x98/0x140
[ 169.083900][ T6487] ? __pfx_kthread+0x10/0x10
[ 169.083922][ T6487] ret_from_fork+0x599/0xb30
[ 169.083942][ T6487] ? __pfx_ret_from_fork+0x10/0x10
[ 169.083970][ T6487] ? __switch_to_asm+0x39/0x70
[ 169.083989][ T6487] ? __switch_to_asm+0x33/0x70
[ 169.084022][ T6487] ? __pfx_kthread+0x10/0x10
[ 169.084044][ T6487] ret_from_fork_asm+0x1a/0x30
[ 169.084082][ T6487]
[ 169.284969][ T6483] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 169.291211][ T6483] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 169.314618][ C0] ==================================================================
[ 169.322721][ C0] BUG: KASAN: slab-use-after-free in gfs2_qd_dealloc+0x81/0xe0
[ 169.330287][ C0] Write of size 4 at addr ffff888029260b68 by task udevd/5200
[ 169.337755][ C0]
[ 169.340084][ C0] CPU: 0 UID: 0 PID: 5200 Comm: udevd Not tainted syzkaller #0 PREEMPT(full)
[ 169.340108][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 169.340121][ C0] Call Trace:
[ 169.340129][ C0]
[ 169.340137][ C0] dump_stack_lvl+0x189/0x250
[ 169.340163][ C0] ? __kasan_check_byte+0x12/0x40
[ 169.340188][ C0] ? __pfx_dump_stack_lvl+0x10/0x10
[ 169.340217][ C0] ? lock_release+0x4b/0x3b0
[ 169.340239][ C0] ? __virt_addr_valid+0x4a5/0x5c0
[ 169.340266][ C0] print_report+0xca/0x240
[ 169.340285][ C0] ? gfs2_qd_dealloc+0x81/0xe0
[ 169.340311][ C0] kasan_report+0x118/0x150
[ 169.340332][ C0] ? kasan_quarantine_put+0xdd/0x220
[ 169.340353][ C0] ? gfs2_qd_dealloc+0x81/0xe0
[ 169.340381][ C0] ? rcu_core+0xcfc/0x1870
[ 169.340403][ C0] kasan_check_range+0x2b0/0x2c0
[ 169.340426][ C0] ? __pfx_gfs2_qd_dealloc+0x10/0x10
[ 169.340452][ C0] ? rcu_core+0xcfc/0x1870
[ 169.340472][ C0] gfs2_qd_dealloc+0x81/0xe0
[ 169.340499][ C0] rcu_core+0xd70/0x1870
[ 169.340527][ C0] ? __pfx_rcu_core+0x10/0x10
[ 169.340549][ C0] ? sched_balance_domains+0x142/0x960
[ 169.340573][ C0] ? sched_balance_domains+0x142/0x960
[ 169.340593][ C0] ? sched_balance_domains+0x837/0x960
[ 169.340613][ C0] ? sched_balance_domains+0x142/0x960
[ 169.340634][ C0] handle_softirqs+0x27d/0x850
[ 169.340656][ C0] ? __irq_exit_rcu+0xca/0x1f0
[ 169.340677][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 169.340701][ C0] __irq_exit_rcu+0xca/0x1f0
[ 169.340721][ C0] ? __pfx___irq_exit_rcu+0x10/0x10
[ 169.340743][ C0] irq_exit_rcu+0x9/0x30
[ 169.340761][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0
[ 169.340784][ C0]
[ 169.340790][ C0]
[ 169.340798][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 169.340817][ C0] RIP: 0010:its_return_thunk+0x0/0x10
[ 169.340846][ C0] Code: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 e9 4b 43 d4 f5 cc
[ 169.340862][ C0] RSP: 0018:ffffc900021cf680 EFLAGS: 00000246
[ 169.340879][ C0] RAX: ffffed100f08b42f RBX: ffff88807845a178 RCX: 0000000000000000
[ 169.340893][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100f08b456
[ 169.340906][ C0] RBP: 0000000000000cc0 R08: 0000000000000001 R09: 0000000000000007
[ 169.340917][ C0] R10: ffffed100f08b42f R11: fffffbfff1f0456f R12: 0000000000000138
[ 169.340930][ C0] R13: 0000000000038308 R14: 0000000000000138 R15: dffffc0000000000
[ 169.340951][ C0] kasan_unpoison+0x48/0x70
[ 169.340969][ C0] __kasan_slab_alloc+0x58/0x80
[ 169.340991][ C0] kmem_cache_alloc_lru_noprof+0x36c/0x6e0
[ 169.341021][ C0] ? __d_alloc+0x37/0x6f0
[ 169.341048][ C0] __d_alloc+0x37/0x6f0
[ 169.341076][ C0] d_alloc_parallel+0xe1/0x1610
[ 169.341110][ C0] ? __d_lookup+0x66/0x780
[ 169.341128][ C0] ? __pfx_d_alloc_parallel+0x10/0x10
[ 169.341162][ C0] path_openat+0xc86/0x3dd0
[ 169.341187][ C0] ? stack_depot_save_flags+0x40/0x850
[ 169.341226][ C0] ? getname_flags+0xb8/0x540
[ 169.341250][ C0] ? __pfx_path_openat+0x10/0x10
[ 169.341276][ C0] do_filp_open+0x1fa/0x410
[ 169.341295][ C0] ? __pfx_do_filp_open+0x10/0x10
[ 169.341322][ C0] ? _raw_spin_unlock+0x28/0x50
[ 169.341340][ C0] ? alloc_fd+0x64c/0x6c0
[ 169.341367][ C0] do_sys_openat2+0x121/0x200
[ 169.341394][ C0] ? __pfx_do_sys_openat2+0x10/0x10
[ 169.341425][ C0] __x64_sys_openat+0x138/0x170
[ 169.341452][ C0] do_syscall_64+0xfa/0xf80
[ 169.341474][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 169.341493][ C0] ? clear_bhb_loop+0x60/0xb0
[ 169.341514][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 169.341532][ C0] RIP: 0033:0x7f1f6baa7407
[ 169.341548][ C0] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 169.341565][ C0] RSP: 002b:00007fff27dec1c0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 169.341584][ C0] RAX: ffffffffffffffda RBX: 00007f1f6c166880 RCX: 00007f1f6baa7407
[ 169.341598][ C0] RDX: 0000000000080141 RSI: 000055f60df5d02e RDI: ffffffffffffff9c
[ 169.341612][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 169.341623][ C0] R10: 00000000000001a4 R11: 0000000000000202 R12: 00000000ffffffff
[ 169.341635][ C0] R13: 00000000ffffffff R14: ffffffffffffffff R15: 0000000000000000
[ 169.341655][ C0]
[ 169.341662][ C0]
[ 169.778633][ C0] Allocated by task 6483:
[ 169.782942][ C0] kasan_save_track+0x3e/0x80
[ 169.787607][ C0] __kasan_kmalloc+0x93/0xb0
[ 169.792266][ C0] __kmalloc_cache_noprof+0x3e2/0x700
[ 169.797620][ C0] gfs2_fill_super+0x11f/0x21b0
[ 169.802456][ C0] get_tree_bdev_flags+0x40e/0x4d0
[ 169.807549][ C0] gfs2_get_tree+0x51/0x1e0
[ 169.812031][ C0] vfs_get_tree+0x92/0x2a0
[ 169.816426][ C0] do_new_mount+0x302/0xa10
[ 169.820911][ C0] __se_sys_mount+0x313/0x410
[ 169.825571][ C0] do_syscall_64+0xfa/0xf80
[ 169.830062][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 169.836210][ C0]
[ 169.838541][ C0] Freed by task 6483:
[ 169.842515][ C0] kasan_save_track+0x3e/0x80
[ 169.847189][ C0] kasan_save_free_info+0x46/0x50
[ 169.852220][ C0] __kasan_slab_free+0x5c/0x80
[ 169.856985][ C0] kfree+0x1c0/0x660
[ 169.860885][ C0] gfs2_fill_super+0x14ef/0x21b0
[ 169.865813][ C0] get_tree_bdev_flags+0x40e/0x4d0
[ 169.870935][ C0] gfs2_get_tree+0x51/0x1e0
[ 169.875427][ C0] vfs_get_tree+0x92/0x2a0
[ 169.879838][ C0] do_new_mount+0x302/0xa10
[ 169.884347][ C0] __se_sys_mount+0x313/0x410
[ 169.889135][ C0] do_syscall_64+0xfa/0xf80
[ 169.893641][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 169.899535][ C0]
[ 169.901852][ C0] The buggy address belongs to the object at ffff888029260000
[ 169.901852][ C0] which belongs to the cache kmalloc-8k of size 8192
[ 169.915913][ C0] The buggy address is located 2920 bytes inside of
[ 169.915913][ C0] freed 8192-byte region [ffff888029260000, ffff888029262000)
[ 169.929875][ C0]
[ 169.932189][ C0] The buggy address belongs to the physical page:
[ 169.938591][ C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29260
[ 169.947432][ C0] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 169.955926][ C0] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 169.963481][ C0] page_type: f5(slab)
[ 169.967461][ C0] raw: 00fff00000000040 ffff88813fe27280 ffffea0001f19c00 dead000000000002
[ 169.976042][ C0] raw: 0000000000000000 0000000080020002 00000000f5000000 0000000000000000
[ 169.984619][ C0] head: 00fff00000000040 ffff88813fe27280 ffffea0001f19c00 dead000000000002
[ 169.993275][ C0] head: 0000000000000000 0000000080020002 00000000f5000000 0000000000000000
[ 170.001954][ C0] head: 00fff00000000003 ffffea0000a49801 00000000ffffffff 00000000ffffffff
[ 170.010607][ C0] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 170.019251][ C0] page dumped because: kasan: bad access detected
[ 170.025652][ C0] page_owner tracks the page as allocated
[ 170.031347][ C0] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5494, tgid 5494 (dhcpcd), ts 46166298390, free_ts 46128693891
[ 170.052256][ C0] post_alloc_hook+0x234/0x290
[ 170.057008][ C0] get_page_from_freelist+0x2365/0x2440
[ 170.062543][ C0] __alloc_frozen_pages_noprof+0x181/0x370
[ 170.068352][ C0] alloc_pages_mpol+0x232/0x4a0
[ 170.073183][ C0] allocate_slab+0x86/0x3b0
[ 170.077673][ C0] ___slab_alloc+0xf2b/0x1960
[ 170.082332][ C0] __slab_alloc+0x65/0x100
[ 170.086746][ C0] __kmalloc_node_track_caller_noprof+0x5d4/0x820
[ 170.093340][ C0] kmalloc_reserve+0x136/0x290
[ 170.098104][ C0] __alloc_skb+0x27e/0x430
[ 170.102533][ C0] nl80211_get_wiphy+0x77/0x210
[ 170.107390][ C0] genl_family_rcv_msg_doit+0x215/0x300
[ 170.112940][ C0] genl_rcv_msg+0x60e/0x790
[ 170.117518][ C0] netlink_rcv_skb+0x208/0x470
[ 170.122272][ C0] genl_rcv+0x28/0x40
[ 170.126235][ C0] netlink_unicast+0x82f/0x9e0
[ 170.130989][ C0] page last free pid 5494 tgid 5494 stack trace:
[ 170.137386][ C0] __free_frozen_pages+0xbc8/0xd30
[ 170.142480][ C0] __put_partials+0x146/0x170
[ 170.147149][ C0] put_cpu_partial+0x1f2/0x2d0
[ 170.151901][ C0] __slab_free+0x288/0x2a0
[ 170.156305][ C0] qlist_free_all+0x97/0x100
[ 170.160928][ C0] kasan_quarantine_reduce+0x148/0x160
[ 170.166369][ C0] __kasan_slab_alloc+0x22/0x80
[ 170.171203][ C0] __kmalloc_node_track_caller_noprof+0x526/0x820
[ 170.177597][ C0] kmemdup_array+0x3f/0x80
[ 170.182003][ C0] bpf_prepare_filter+0xd67/0x12c0
[ 170.187095][ C0] bpf_prog_create_from_user+0x2c8/0x440
[ 170.192708][ C0] do_seccomp+0x7b1/0xd90
[ 170.197017][ C0] __se_sys_prctl+0x28a/0x18f0
[ 170.201774][ C0] do_syscall_64+0xfa/0xf80
[ 170.206271][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 170.212146][ C0]
[ 170.214453][ C0] Memory state around the buggy address:
[ 170.220495][ C0] ffff888029260a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 170.228625][ C0] ffff888029260a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 170.236666][ C0] >ffff888029260b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 170.244792][ C0] ^
[ 170.252225][ C0] ffff888029260b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 170.260277][ C0] ffff888029260c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 170.268324][ C0] ==================================================================
[ 170.276523][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 170.283715][ C0] CPU: 0 UID: 0 PID: 5200 Comm: udevd Not tainted syzkaller #0 PREEMPT(full)
[ 170.292555][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 170.302682][ C0] Call Trace:
[ 170.306034][ C0]
[ 170.308864][ C0] dump_stack_lvl+0x99/0x250
[ 170.313443][ C0] ? __asan_memcpy+0x40/0x70
[ 170.318031][ C0] ? __pfx_dump_stack_lvl+0x10/0x10
[ 170.323226][ C0] ? __pfx__printk+0x10/0x10
[ 170.327806][ C0] vpanic+0x237/0x6d0
[ 170.331776][ C0] ? __pfx_vpanic+0x10/0x10
[ 170.336266][ C0] panic+0xb9/0xc0
[ 170.339972][ C0] ? __pfx_panic+0x10/0x10
[ 170.344371][ C0] ? _raw_spin_unlock_irqrestore+0xa8/0x110
[ 170.350246][ C0] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 170.356133][ C0] ? gfs2_qd_dealloc+0x81/0xe0
[ 170.360885][ C0] check_panic_on_warn+0x89/0xb0
[ 170.365874][ C0] ? gfs2_qd_dealloc+0x81/0xe0
[ 170.370803][ C0] end_report+0x6f/0x140
[ 170.375053][ C0] kasan_report+0x129/0x150
[ 170.379553][ C0] ? kasan_quarantine_put+0xdd/0x220
[ 170.384840][ C0] ? gfs2_qd_dealloc+0x81/0xe0
[ 170.389615][ C0] ? rcu_core+0xcfc/0x1870
[ 170.394037][ C0] kasan_check_range+0x2b0/0x2c0
[ 170.398992][ C0] ? __pfx_gfs2_qd_dealloc+0x10/0x10
[ 170.404292][ C0] ? rcu_core+0xcfc/0x1870
[ 170.408713][ C0] gfs2_qd_dealloc+0x81/0xe0
[ 170.413304][ C0] rcu_core+0xd70/0x1870
[ 170.417538][ C0] ? __pfx_rcu_core+0x10/0x10
[ 170.422201][ C0] ? sched_balance_domains+0x142/0x960
[ 170.427652][ C0] ? sched_balance_domains+0x142/0x960
[ 170.433096][ C0] ? sched_balance_domains+0x837/0x960
[ 170.438545][ C0] ? sched_balance_domains+0x142/0x960
[ 170.444076][ C0] handle_softirqs+0x27d/0x850
[ 170.448841][ C0] ? __irq_exit_rcu+0xca/0x1f0
[ 170.453592][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 170.458890][ C0] __irq_exit_rcu+0xca/0x1f0
[ 170.464251][ C0] ? __pfx___irq_exit_rcu+0x10/0x10
[ 170.469442][ C0] irq_exit_rcu+0x9/0x30
[ 170.473682][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0
[ 170.479301][ C0]
[ 170.482222][ C0]
[ 170.485146][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 170.491120][ C0] RIP: 0010:its_return_thunk+0x0/0x10
[ 170.496481][ C0] Code: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 e9 4b 43 d4 f5 cc
[ 170.516071][ C0] RSP: 0018:ffffc900021cf680 EFLAGS: 00000246
[ 170.522250][ C0] RAX: ffffed100f08b42f RBX: ffff88807845a178 RCX: 0000000000000000
[ 170.530206][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100f08b456
[ 170.538282][ C0] RBP: 0000000000000cc0 R08: 0000000000000001 R09: 0000000000000007
[ 170.546330][ C0] R10: ffffed100f08b42f R11: fffffbfff1f0456f R12: 0000000000000138
[ 170.554293][ C0] R13: 0000000000038308 R14: 0000000000000138 R15: dffffc0000000000
[ 170.562257][ C0] kasan_unpoison+0x48/0x70
[ 170.566750][ C0] __kasan_slab_alloc+0x58/0x80
[ 170.571590][ C0] kmem_cache_alloc_lru_noprof+0x36c/0x6e0
[ 170.577387][ C0] ? __d_alloc+0x37/0x6f0
[ 170.581706][ C0] __d_alloc+0x37/0x6f0
[ 170.585851][ C0] d_alloc_parallel+0xe1/0x1610
[ 170.590956][ C0] ? __d_lookup+0x66/0x780
[ 170.595373][ C0] ? __pfx_d_alloc_parallel+0x10/0x10
[ 170.600737][ C0] path_openat+0xc86/0x3dd0
[ 170.605227][ C0] ? stack_depot_save_flags+0x40/0x850
[ 170.610677][ C0] ? getname_flags+0xb8/0x540
[ 170.615339][ C0] ? __pfx_path_openat+0x10/0x10
[ 170.620262][ C0] do_filp_open+0x1fa/0x410
[ 170.624750][ C0] ? __pfx_do_filp_open+0x10/0x10
[ 170.629768][ C0] ? _raw_spin_unlock+0x28/0x50
[ 170.634696][ C0] ? alloc_fd+0x64c/0x6c0
[ 170.639015][ C0] do_sys_openat2+0x121/0x200
[ 170.643681][ C0] ? __pfx_do_sys_openat2+0x10/0x10
[ 170.648954][ C0] __x64_sys_openat+0x138/0x170
[ 170.653790][ C0] do_syscall_64+0xfa/0xf80
[ 170.658277][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 170.664324][ C0] ? clear_bhb_loop+0x60/0xb0
[ 170.668984][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 170.674866][ C0] RIP: 0033:0x7f1f6baa7407
[ 170.679436][ C0] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 170.699034][ C0] RSP: 002b:00007fff27dec1c0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 170.707438][ C0] RAX: ffffffffffffffda RBX: 00007f1f6c166880 RCX: 00007f1f6baa7407
[ 170.715395][ C0] RDX: 0000000000080141 RSI: 000055f60df5d02e RDI: ffffffffffffff9c
[ 170.723362][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 170.731421][ C0] R10: 00000000000001a4 R11: 0000000000000202 R12: 00000000ffffffff
[ 170.739377][ C0] R13: 00000000ffffffff R14: ffffffffffffffff R15: 0000000000000000
[ 170.747339][ C0]
[ 170.750751][ C0] Kernel Offset: disabled
[ 170.755071][ C0] Rebooting in 86400 seconds..