Warning: Permanently added '10.128.1.28' (ED25519) to the list of known hosts.
2025/11/21 04:02:01 parsed 1 programs
[   71.201579][ T4189] cgroup: Unknown subsys name 'net'
[   71.332932][ T4189] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   72.858337][ T4189] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   74.972108][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.996177][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.008962][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   75.020593][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.029058][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.038125][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   75.954053][ T4233] chnl_net:caif_netlink_parms(): no params data found
[   76.022412][ T4233] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.031588][ T4233] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.041064][ T4233] device bridge_slave_0 entered promiscuous mode
[   76.052823][ T4233] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.060475][ T4233] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.070194][ T4233] device bridge_slave_1 entered promiscuous mode
[   76.097077][ T4233] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.108771][ T4233] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.141063][ T4233] team0: Port device team_slave_0 added
[   76.151346][ T4233] team0: Port device team_slave_1 added
[   76.175484][ T4233] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.182575][ T4233] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.208706][ T4233] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.221730][ T4233] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.229396][ T4233] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.255847][ T4233] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.294327][ T4233] device hsr_slave_0 entered promiscuous mode
[   76.302148][ T4233] device hsr_slave_1 entered promiscuous mode
[   76.424638][ T4233] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   76.438294][ T4233] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   76.449912][ T4233] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   76.463014][ T4233] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   76.599683][ T4233] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.607247][ T4233] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.615529][ T4233] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.622699][ T4233] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.673646][ T4233] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.689996][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.699270][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.708706][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   76.719637][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   76.728253][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   76.740365][ T4233] 8021q: adding VLAN 0 to HW filter on device team0
[   76.755700][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.765395][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.772539][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.784389][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.793881][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.801029][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.841479][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.852154][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   76.865083][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.880241][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   76.905488][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   76.917293][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   77.034229][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   77.042757][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   77.057282][ T4233] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.074961][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   77.085501][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   77.119772][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   77.129513][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   77.138853][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   77.146920][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   77.158059][ T4233] device veth0_vlan entered promiscuous mode
[   77.187589][ T4233] device veth1_vlan entered promiscuous mode
[   77.209238][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   77.217800][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   77.227382][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   77.238806][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   77.249799][ T4233] device veth0_macvtap entered promiscuous mode
[   77.275754][ T4233] device veth1_macvtap entered promiscuous mode
[   77.292023][ T4233] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.301869][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   77.310802][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   77.318983][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   77.328466][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   77.341675][ T4233] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.349483][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   77.360921][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   77.383893][ T4233] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.393496][ T4233] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.403514][ T4233] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.414127][ T4233] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.523569][ T4233] syz-executor (4233) used greatest stack depth: 20288 bytes left
2025/11/21 04:02:12 executed programs: 0
[   79.396673][ T1282] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.588913][ T4296] chnl_net:caif_netlink_parms(): no params data found
[   79.633174][ T4296] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.641070][ T4296] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.650733][ T4296] device bridge_slave_0 entered promiscuous mode
[   79.661603][ T4296] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.670360][ T4296] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.679609][ T4296] device bridge_slave_1 entered promiscuous mode
[   79.703598][ T4296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.717205][ T4296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.742445][ T4296] team0: Port device team_slave_0 added
[   79.750725][ T4296] team0: Port device team_slave_1 added
[   79.771027][ T4296] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.779498][ T4296] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.807905][ T4296] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.820853][ T4296] batman_adv: batadv0: Adding interface: batadv_slave_1
[   79.828723][ T4296] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.856193][ T4296] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   79.889020][ T4296] device hsr_slave_0 entered promiscuous mode
[   79.898506][ T4296] device hsr_slave_1 entered promiscuous mode
[   79.906265][ T4296] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   79.914932][ T4296] Cannot create hsr debugfs directory
[   81.517042][ T4196] Bluetooth: hci0: command 0x0409 tx timeout
[   82.813482][ T1282] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.892512][ T1282] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.965462][ T1282] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.606234][ T1108] Bluetooth: hci0: command 0x041b tx timeout
[   83.751601][ T4296] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   83.780259][ T4296] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   83.790944][ T4296] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   83.800444][ T4296] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   83.876371][ T4296] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.889683][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   83.898123][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   83.909783][ T4296] 8021q: adding VLAN 0 to HW filter on device team0
[   83.937368][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   83.947884][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   83.956622][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.963682][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.972792][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   84.005112][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   84.013872][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   84.022770][  T898] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.030010][  T898] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.048544][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   84.060336][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   84.069412][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   84.079961][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   84.088897][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   84.116961][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   84.127890][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   84.156385][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   84.165045][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   84.175630][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   84.184543][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   84.196807][ T4296] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   84.212282][ T1282] device hsr_slave_0 left promiscuous mode
[   84.219577][ T1282] device hsr_slave_1 left promiscuous mode
[   84.226612][ T1282] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.234074][ T1282] batman_adv: batadv0: Removing interface: batadv_slave_0
[   84.242893][ T1282] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   84.251183][ T1282] batman_adv: batadv0: Removing interface: batadv_slave_1
[   84.259194][ T1282] device bridge_slave_1 left promiscuous mode
[   84.266304][ T1282] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.281740][ T1282] device bridge_slave_0 left promiscuous mode
[   84.288156][ T1282] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.305745][ T1282] device veth1_macvtap left promiscuous mode
[   84.312696][ T1282] device veth0_macvtap left promiscuous mode
[   84.319755][ T1282] device veth1_vlan left promiscuous mode
[   84.326061][ T1282] device veth0_vlan left promiscuous mode
[   84.499318][ T1282] team0 (unregistering): Port device team_slave_1 removed
[   84.513807][ T1282] team0 (unregistering): Port device team_slave_0 removed
[   84.529261][ T1282] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   84.547506][ T1282] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   84.608921][ T1282] bond0 (unregistering): Released all slaves
[   84.769445][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   84.777700][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   84.790971][ T4296] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.817138][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   84.826382][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   84.846667][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   84.855146][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   84.867364][ T4296] device veth0_vlan entered promiscuous mode
[   84.880163][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   84.888274][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   84.900061][ T4296] device veth1_vlan entered promiscuous mode
[   84.925545][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   84.934369][  T898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   84.948211][ T4296] device veth0_macvtap entered promiscuous mode
[   84.958860][ T4296] device veth1_macvtap entered promiscuous mode
[   84.976954][ T4296] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.984456][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   84.992908][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   85.001939][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   85.011368][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   85.022862][ T4296] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.030412][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   85.039939][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   85.062248][ T4296] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.071362][ T4296] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.082086][ T4296] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.091882][ T4296] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.155987][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.164093][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.192761][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.195260][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   85.207830][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.218131][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   85.627634][ T4347] loop0: detected capacity change from 0 to 32768
[   85.686366][   T13] Bluetooth: hci0: command 0x040f tx timeout
[   85.708002][ T4347] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[   85.717618][ T4347] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[   85.743816][ T4347] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[   85.755464][   T13] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[   85.763288][   T13] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[   85.791197][   T13] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 27ms
[   85.801841][   T13] gfs2: fsid=syz:syz.0: jid=0: Done
[   85.808424][ T4347] gfs2: fsid=syz:syz.0: first mount done, others may mount
[   85.942456][ T4347] gfs2: fsid=syz:syz.0: found 1 quota changes
[   85.998299][ T4296] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[   85.998299][ T4296]   inode = 11 2339
[   85.998299][ T4296]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[   86.065887][ T4296] gfs2: fsid=syz:syz.0: about to withdraw this file system
[   86.117434][ T4296] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[   86.159700][ T4296] CPU: 1 PID: 4296 Comm: syz-executor Not tainted syzkaller #0
[   86.167315][ T4296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   86.177412][ T4296] Call Trace:
[   86.180727][ T4296]  <TASK>
[   86.183695][ T4296]  dump_stack_lvl+0x168/0x230
[   86.188428][ T4296]  ? show_regs_print_info+0x20/0x20
[   86.193758][ T4296]  ? load_image+0x3b0/0x3b0
[   86.198292][ T4296]  ? __lock_acquire+0x7c60/0x7c60
[   86.203343][ T4296]  ? do_raw_spin_unlock+0x11d/0x230
[   86.209304][ T4296]  gfs2_assert_warn_i+0x18f/0x2c0
[   86.214366][ T4296]  gfs2_quota_cleanup+0x4b4/0x6a0
[   86.219435][ T4296]  gfs2_make_fs_ro+0x237/0x5d0
[   86.224242][ T4296]  ? gfs2_dinode_out+0xb00/0xb00
[   86.229204][ T4296]  ? _raw_spin_unlock+0x24/0x40
[   86.234077][ T4296]  ? gfs2_glock_nq+0xcb0/0x1550
[   86.238971][ T4296]  gfs2_withdraw+0x5f9/0x1460
[   86.243690][ T4296]  ? gfs2_lm+0x220/0x220
[   86.247960][ T4296]  ? __schedule+0x11c3/0x4390
[   86.252672][ T4296]  ? gfs2_freeze_lock+0x52/0xc0
[   86.258404][ T4296]  ? gfs2_consist_inode_i+0xc0/0xe0
[   86.263728][ T4296]  gfs2_inode_refresh+0xb5e/0xfe0
[   86.268805][ T4296]  ? do_promote+0x71a/0xab0
[   86.273442][ T4296]  ? gfs2_inode_metasync+0xf0/0xf0
[   86.278591][ T4296]  ? __lock_acquire+0x7c60/0x7c60
[   86.283724][ T4296]  inode_go_lock+0x127/0x470
[   86.288360][ T4296]  do_promote+0x741/0xab0
[   86.292726][ T4296]  finish_xmote+0x514/0xb70
[   86.297266][ T4296]  do_xmote+0x7b6/0x1120
[   86.301545][ T4296]  gfs2_glock_nq+0xc7a/0x1550
[   86.306264][ T4296]  do_sync+0x486/0xc00
[   86.310374][ T4296]  ? slot_put+0x1e0/0x1e0
[   86.314754][ T4296]  ? do_sync+0x47e/0xc00
[   86.319029][ T4296]  ? do_raw_spin_unlock+0x11d/0x230
[   86.324268][ T4296]  gfs2_quota_sync+0x32c/0x6f0
[   86.329068][ T4296]  gfs2_sync_fs+0x48/0xb0
[   86.333420][ T4296]  sync_filesystem+0xe6/0x220
[   86.338131][ T4296]  generic_shutdown_super+0x6b/0x300
[   86.343537][ T4296]  kill_block_super+0x7c/0xe0
[   86.348242][ T4296]  deactivate_locked_super+0x93/0xf0
[   86.353595][ T4296]  cleanup_mnt+0x418/0x4d0
[   86.358044][ T4296]  ? lockdep_hardirqs_on+0x94/0x140
[   86.363365][ T4296]  task_work_run+0x125/0x1a0
[   86.368078][ T4296]  exit_to_user_mode_loop+0x10f/0x130
[   86.373487][ T4296]  exit_to_user_mode_prepare+0xee/0x180
[   86.379063][ T4296]  syscall_exit_to_user_mode+0x16/0x40
[   86.385086][ T4296]  do_syscall_64+0x58/0xa0
[   86.389537][ T4296]  ? clear_bhb_loop+0x30/0x80
[   86.394242][ T4296]  ? clear_bhb_loop+0x30/0x80
[   86.398954][ T4296]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   86.404887][ T4296] RIP: 0033:0x7f2064838a77
[   86.409322][ T4296] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   86.428954][ T4296] RSP: 002b:00007ffef4728cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   86.437404][ T4296] RAX: 0000000000000000 RBX: 00007f20648bbd7d RCX: 00007f2064838a77
[   86.445405][ T4296] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffef4728db0
[   86.453403][ T4296] RBP: 00007ffef4728db0 R08: 0000000000000000 R09: 0000000000000000
[   86.461410][ T4296] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffef4729e40
[   86.469412][ T4296] R13: 00007f20648bbd7d R14: 0000000000014ce2 R15: 00007ffef4729e80
[   86.477433][ T4296]  </TASK>
[   86.497724][ T4296] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[   86.506880][ T4296] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[   86.514639][ T4296] gfs2: fsid=syz:syz.0: File system withdrawn
[   86.522806][ T4296] CPU: 1 PID: 4296 Comm: syz-executor Not tainted syzkaller #0
[   86.530383][ T4296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   86.540463][ T4296] Call Trace:
[   86.543770][ T4296]  <TASK>
[   86.546728][ T4296]  dump_stack_lvl+0x168/0x230
[   86.551441][ T4296]  ? kobject_uevent_env+0x371/0x890
[   86.556671][ T4296]  ? show_regs_print_info+0x20/0x20
[   86.561895][ T4296]  ? load_image+0x3b0/0x3b0
[   86.566427][ T4296]  ? kobject_uevent_env+0x371/0x890
[   86.571647][ T4296]  ? lockref_put_or_lock+0x6e/0xb0
[   86.576795][ T4296]  gfs2_withdraw+0x111b/0x1460
[   86.581596][ T4296]  ? gfs2_lm+0x220/0x220
[   86.585853][ T4296]  ? __schedule+0x11c3/0x4390
[   86.590562][ T4296]  ? gfs2_consist_inode_i+0xc0/0xe0
[   86.595890][ T4296]  gfs2_inode_refresh+0xb5e/0xfe0
[   86.600953][ T4296]  ? do_promote+0x71a/0xab0
[   86.605483][ T4296]  ? gfs2_inode_metasync+0xf0/0xf0
[   86.610627][ T4296]  ? __lock_acquire+0x7c60/0x7c60
[   86.615789][ T4296]  inode_go_lock+0x127/0x470
[   86.620431][ T4296]  do_promote+0x741/0xab0
[   86.624800][ T4296]  finish_xmote+0x514/0xb70
[   86.629343][ T4296]  do_xmote+0x7b6/0x1120
[   86.633708][ T4296]  gfs2_glock_nq+0xc7a/0x1550
[   86.638435][ T4296]  do_sync+0x486/0xc00
[   86.642533][ T4296]  ? slot_put+0x1e0/0x1e0
[   86.646987][ T4296]  ? do_sync+0x47e/0xc00
[   86.651261][ T4296]  ? do_raw_spin_unlock+0x11d/0x230
[   86.656493][ T4296]  gfs2_quota_sync+0x32c/0x6f0
[   86.661391][ T4296]  gfs2_sync_fs+0x48/0xb0
[   86.665749][ T4296]  sync_filesystem+0xe6/0x220
[   86.670444][ T4296]  generic_shutdown_super+0x6b/0x300
[   86.675746][ T4296]  kill_block_super+0x7c/0xe0
[   86.680634][ T4296]  deactivate_locked_super+0x93/0xf0
[   86.685941][ T4296]  cleanup_mnt+0x418/0x4d0
[   86.690376][ T4296]  ? lockdep_hardirqs_on+0x94/0x140
[   86.695675][ T4296]  task_work_run+0x125/0x1a0
[   86.700302][ T4296]  exit_to_user_mode_loop+0x10f/0x130
[   86.705695][ T4296]  exit_to_user_mode_prepare+0xee/0x180
[   86.711259][ T4296]  syscall_exit_to_user_mode+0x16/0x40
[   86.716734][ T4296]  do_syscall_64+0x58/0xa0
[   86.721154][ T4296]  ? clear_bhb_loop+0x30/0x80
[   86.725844][ T4296]  ? clear_bhb_loop+0x30/0x80
[   86.730543][ T4296]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   86.736446][ T4296] RIP: 0033:0x7f2064838a77
[   86.740870][ T4296] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   86.760593][ T4296] RSP: 002b:00007ffef4728cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   86.769013][ T4296] RAX: 0000000000000000 RBX: 00007f20648bbd7d RCX: 00007f2064838a77
[   86.777006][ T4296] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffef4728db0
[   86.784991][ T4296] RBP: 00007ffef4728db0 R08: 0000000000000000 R09: 0000000000000000
[   86.792965][ T4296] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffef4729e40
[   86.800958][ T4296] R13: 00007f20648bbd7d R14: 0000000000014ce2 R15: 00007ffef4729e80
[   86.808948][ T4296]  </TASK>
[   86.817245][    T7] cfg80211: failed to load regulatory.db
[   86.906328][ T4296] ==================================================================
[   86.914753][ T4296] BUG: KASAN: use-after-free in qd_unlock+0x30/0x2d0
[   86.921477][ T4296] Read of size 8 at addr ffff88805c4d9090 by task syz-executor/4296
[   86.930006][ T4296] 
[   86.932357][ T4296] CPU: 0 PID: 4296 Comm: syz-executor Not tainted syzkaller #0
[   86.940011][ T4296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   86.950096][ T4296] Call Trace:
[   86.953499][ T4296]  <TASK>
[   86.956490][ T4296]  dump_stack_lvl+0x168/0x230
[   86.961216][ T4296]  ? show_regs_print_info+0x20/0x20
[   86.966449][ T4296]  ? _printk+0xcc/0x110
[   86.970695][ T4296]  ? load_image+0x3b0/0x3b0
[   86.975514][ T4296]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[   86.980919][ T4296]  print_address_description+0x60/0x2d0
[   86.986606][ T4296]  ? qd_unlock+0x30/0x2d0
[   86.991047][ T4296]  kasan_report+0xdf/0x130
[   86.995494][ T4296]  ? qd_unlock+0x30/0x2d0
[   86.999945][ T4296]  kasan_check_range+0x27b/0x290
[   87.004914][ T4296]  qd_unlock+0x30/0x2d0
[   87.009102][ T4296]  gfs2_quota_sync+0x5bf/0x6f0
[   87.014081][ T4296]  gfs2_sync_fs+0x48/0xb0
[   87.018433][ T4296]  sync_filesystem+0xe6/0x220
[   87.023233][ T4296]  generic_shutdown_super+0x6b/0x300
[   87.028542][ T4296]  kill_block_super+0x7c/0xe0
[   87.033245][ T4296]  deactivate_locked_super+0x93/0xf0
[   87.038639][ T4296]  cleanup_mnt+0x418/0x4d0
[   87.043090][ T4296]  ? lockdep_hardirqs_on+0x94/0x140
[   87.048409][ T4296]  task_work_run+0x125/0x1a0
[   87.053044][ T4296]  exit_to_user_mode_loop+0