Warning: Permanently added '10.128.0.20' (ED25519) to the list of known hosts.
2025/11/27 03:39:36 parsed 1 programs
[   59.030062][ T4187] cgroup: Unknown subsys name 'net'
[   59.189786][ T4187] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   60.583126][ T4187] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   62.729440][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.744066][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.754746][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   62.770893][ T1159] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.778969][ T1159] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.787607][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   63.464835][ T4227] chnl_net:caif_netlink_parms(): no params data found
[   63.529663][ T4227] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.538608][ T4227] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.547047][ T4227] device bridge_slave_0 entered promiscuous mode
[   63.557077][ T4227] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.564658][ T4227] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.572680][ T4227] device bridge_slave_1 entered promiscuous mode
[   63.599852][ T4227] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.611368][ T4227] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.640992][ T4227] team0: Port device team_slave_0 added
[   63.648915][ T4227] team0: Port device team_slave_1 added
[   63.672388][ T4227] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.679462][ T4227] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.705494][ T4227] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.719478][ T4227] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.726903][ T4227] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.753274][ T4227] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.790743][ T4227] device hsr_slave_0 entered promiscuous mode
[   63.798058][ T4227] device hsr_slave_1 entered promiscuous mode
[   63.913383][ T4227] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   63.947875][ T4227] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   63.988495][ T4227] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   64.003379][ T4227] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   64.069189][ T4227] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.082615][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   64.091066][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   64.101672][ T4227] 8021q: adding VLAN 0 to HW filter on device team0
[   64.111342][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   64.120352][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   64.129337][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.136566][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.145923][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   64.156999][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   64.165657][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   64.174104][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.181160][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.192225][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   64.202531][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   64.214055][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   64.222720][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   64.232075][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   64.242368][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   64.251271][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   64.262113][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   64.274884][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   64.300313][ T4227] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   64.390496][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   64.398400][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   64.425902][ T4227] 8021q: adding VLAN 0 to HW filter on device batadv0
[   64.442117][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   64.473827][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   64.482476][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   64.490997][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   64.501009][ T4227] device veth0_vlan entered promiscuous mode
[   64.511737][ T4227] device veth1_vlan entered promiscuous mode
[   64.543264][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   64.551749][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   64.560208][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   64.571273][ T4227] device veth0_macvtap entered promiscuous mode
[   64.598931][ T4227] device veth1_macvtap entered promiscuous mode
[   64.614898][ T4227] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.622325][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   64.631327][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   64.640057][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   64.652441][ T4227] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.659889][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   64.669145][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   64.697525][ T4227] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.706533][ T4227] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.715635][ T4227] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.724675][ T4227] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/11/27 03:39:45 executed programs: 0
[   66.123891][ T4281] chnl_net:caif_netlink_parms(): no params data found
[   66.193277][ T4281] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.200701][ T4281] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.209198][ T4281] device bridge_slave_0 entered promiscuous mode
[   66.217842][ T4281] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.225613][ T4281] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.233520][ T4281] device bridge_slave_1 entered promiscuous mode
[   66.261867][ T4281] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.274188][ T4281] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.300257][ T4281] team0: Port device team_slave_0 added
[   66.307672][ T4281] team0: Port device team_slave_1 added
[   66.327593][ T4281] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.335862][ T4281] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.362174][ T4281] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.377001][ T4281] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.384080][ T4281] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.414662][ T4281] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.453362][ T4281] device hsr_slave_0 entered promiscuous mode
[   66.460294][ T4281] device hsr_slave_1 entered promiscuous mode
[   66.467029][ T4281] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.475490][ T4281] Cannot create hsr debugfs directory
[   66.555999][ T4281] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.014845][ T4233] Bluetooth: hci0: command 0x0409 tx timeout
[   69.548758][ T4281] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.635171][ T4281] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.720046][ T4281] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.882107][ T4281] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   69.892190][ T4281] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   69.901473][ T4281] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   69.910371][ T4281] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   69.989523][ T4281] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.001876][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.010837][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.021508][ T4281] 8021q: adding VLAN 0 to HW filter on device team0
[   70.042882][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   70.051735][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   70.060458][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.067554][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.077493][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   70.087096][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   70.095426][ T4262] Bluetooth: hci0: command 0x041b tx timeout
[   70.098546][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   70.110426][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.117516][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.128261][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   70.143869][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   70.152450][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   70.161693][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   70.171072][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   70.186046][  T154] device hsr_slave_0 left promiscuous mode
[   70.192402][  T154] device hsr_slave_1 left promiscuous mode
[   70.199676][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   70.207511][  T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[   70.216240][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   70.224186][  T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[   70.231741][  T154] device bridge_slave_1 left promiscuous mode
[   70.238721][  T154] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.251716][  T154] device bridge_slave_0 left promiscuous mode
[   70.258111][  T154] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.274396][  T154] device veth1_macvtap left promiscuous mode
[   70.280560][  T154] device veth0_macvtap left promiscuous mode
[   70.286984][  T154] device veth1_vlan left promiscuous mode
[   70.292832][  T154] device veth0_vlan left promiscuous mode
[   70.445425][  T154] team0 (unregistering): Port device team_slave_1 removed
[   70.457785][  T154] team0 (unregistering): Port device team_slave_0 removed
[   70.471008][  T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   70.485854][  T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   70.542791][  T154] bond0 (unregistering): Released all slaves
[   70.589307][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   70.598212][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   70.610775][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   70.619417][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.631099][ T4281] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.642359][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   70.650745][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   70.659332][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.758842][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   70.766384][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   70.786390][ T4281] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.806714][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   70.818223][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   70.836619][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   70.845256][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   70.854644][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   70.862269][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   70.873064][ T4281] device veth0_vlan entered promiscuous mode
[   70.886541][ T4281] device veth1_vlan entered promiscuous mode
[   70.910839][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   70.919052][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   70.927418][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   70.936449][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   70.946948][ T4281] device veth0_macvtap entered promiscuous mode
[   70.956834][ T4281] device veth1_macvtap entered promiscuous mode
[   70.971814][ T4281] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.979778][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   70.987945][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   70.996013][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   71.005196][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   71.025980][ T4281] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.033335][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   71.041961][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   71.055907][ T4281] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.065632][ T4281] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.075094][ T4281] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.084032][ T4281] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.145698][ T1159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.158404][ T1159] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.179595][ T4217] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.190395][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   71.198372][ T4217] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.209130][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   71.227362][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[   71.234425][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[   71.573360][ T4316] loop0: detected capacity change from 0 to 32768
[   71.594627][ T4316] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[   71.608486][ T4316] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[   71.637186][ T4316] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[   71.648968][ T4239] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[   71.657491][ T4239] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[   71.706842][ T4239] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 49ms
[   71.716282][ T4239] gfs2: fsid=syz:syz.0: jid=0: Done
[   71.721967][ T4316] gfs2: fsid=syz:syz.0: first mount done, others may mount
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   71.836277][ T4316] gfs2: fsid=syz:syz.0: found 1 quota changes
[   71.897699][ T4281] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[   71.897699][ T4281]   inode = 11 2339
[   71.897699][ T4281]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[   71.941554][ T4281] gfs2: fsid=syz:syz.0: about to withdraw this file system
[   71.965156][ T4281] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[   71.993711][ T4281] CPU: 0 PID: 4281 Comm: syz-executor Not tainted syzkaller #0
[   72.001292][ T4281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   72.011489][ T4281] Call Trace:
[   72.014781][ T4281]  <TASK>
[   72.017729][ T4281]  dump_stack_lvl+0x168/0x230
[   72.022445][ T4281]  ? show_regs_print_info+0x20/0x20
[   72.027659][ T4281]  ? load_image+0x3b0/0x3b0
[   72.032182][ T4281]  ? __lock_acquire+0x7c60/0x7c60
[   72.037225][ T4281]  ? do_raw_spin_unlock+0x11d/0x230
[   72.042446][ T4281]  gfs2_assert_warn_i+0x18f/0x2c0
[   72.047490][ T4281]  gfs2_quota_cleanup+0x4b4/0x6a0
[   72.052543][ T4281]  gfs2_make_fs_ro+0x237/0x5d0
[   72.057324][ T4281]  ? gfs2_dinode_out+0xb00/0xb00
[   72.062272][ T4281]  ? _raw_spin_unlock+0x24/0x40
[   72.067134][ T4281]  ? gfs2_glock_nq+0xcb0/0x1550
[   72.072023][ T4281]  gfs2_withdraw+0x5f9/0x1460
[   72.076727][ T4281]  ? gfs2_lm+0x220/0x220
[   72.080979][ T4281]  ? __schedule+0x11c3/0x4390
[   72.085686][ T4281]  ? gfs2_freeze_lock+0x52/0xc0
[   72.090561][ T4281]  ? gfs2_consist_inode_i+0xc0/0xe0
[   72.095784][ T4281]  gfs2_inode_refresh+0xb5e/0xfe0
[   72.100841][ T4281]  ? do_promote+0x71a/0xab0
[   72.105361][ T4281]  ? gfs2_inode_metasync+0xf0/0xf0
[   72.110496][ T4281]  ? __lock_acquire+0x7c60/0x7c60
[   72.115570][ T4281]  inode_go_lock+0x127/0x470
[   72.120192][ T4281]  do_promote+0x741/0xab0
[   72.124548][ T4281]  finish_xmote+0x514/0xb70
[   72.129077][ T4281]  do_xmote+0x7b6/0x1120
[   72.133344][ T4281]  gfs2_glock_nq+0xc7a/0x1550
[   72.138049][ T4281]  do_sync+0x486/0xc00
[   72.142144][ T4281]  ? slot_put+0x1e0/0x1e0
[   72.146517][ T4281]  ? do_sync+0x47e/0xc00
[   72.150780][ T4281]  ? do_raw_spin_unlock+0x11d/0x230
[   72.155998][ T4281]  gfs2_quota_sync+0x32c/0x6f0
[   72.160788][ T4281]  gfs2_sync_fs+0x48/0xb0
[   72.165132][ T4281]  sync_filesystem+0xe6/0x220
[   72.169920][ T4281]  generic_shutdown_super+0x6b/0x300
[   72.175236][ T4281]  kill_block_super+0x7c/0xe0
[   72.179935][ T4281]  deactivate_locked_super+0x93/0xf0
[   72.185329][ T4281]  cleanup_mnt+0x418/0x4d0
[   72.189774][ T4281]  ? lockdep_hardirqs_on+0x94/0x140
[   72.195013][ T4281]  task_work_run+0x125/0x1a0
[   72.199632][ T4281]  get_signal+0x1222/0x12c0
[   72.204157][ T4281]  ? kick_process+0xd4/0x140
[   72.208757][ T4281]  ? task_work_add+0x1a7/0x1d0
[   72.213534][ T4281]  ? mntput_no_expire+0x55e/0x780
[   72.218569][ T4281]  arch_do_signal_or_restart+0xc1/0x1300
[   72.224219][ T4281]  ? lockref_put_or_lock+0x6e/0xb0
[   72.229345][ T4281]  ? path_umount+0x34c/0xfc0
[   72.233953][ T4281]  ? get_sigframe_size+0x10/0x10
[   72.238924][ T4281]  ? exit_to_user_mode_loop+0x3b/0x130
[   72.244394][ T4281]  exit_to_user_mode_loop+0x9e/0x130
[   72.249740][ T4281]  exit_to_user_mode_prepare+0xee/0x180
[   72.255302][ T4281]  syscall_exit_to_user_mode+0x16/0x40
[   72.260788][ T4281]  do_syscall_64+0x58/0xa0
[   72.265225][ T4281]  ? clear_bhb_loop+0x30/0x80
[   72.269931][ T4281]  ? clear_bhb_loop+0x30/0x80
[   72.274787][ T4281]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   72.280718][ T4281] RIP: 0033:0x7f17aed87a77
[   72.285229][ T4281] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   72.304849][ T4281] RSP: 002b:00007ffc90d3cce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   72.313281][ T4281] RAX: 0000000000000000 RBX: 00007f17aee0ad7d RCX: 00007f17aed87a77
[   72.321250][ T4281] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc90d3cda0
[   72.329217][ T4281] RBP: 00007ffc90d3cda0 R08: 0000000000000000 R09: 0000000000000000
[   72.337187][ T4281] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc90d3de30
[   72.345165][ T4281] R13: 00007f17aee0ad7d R14: 0000000000011644 R15: 00007ffc90d3de70
[   72.353173][ T4281]  </TASK>
[   72.358574][ T4299] Bluetooth: hci0: command 0x040f tx timeout
[   72.375897][ T4281] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[   72.384815][ T4281] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[   72.396092][ T4281] gfs2: fsid=syz:syz.0: File system withdrawn
[   72.402185][ T4281] CPU: 0 PID: 4281 Comm: syz-executor Not tainted syzkaller #0
[   72.409737][ T4281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   72.419802][ T4281] Call Trace:
[   72.423090][ T4281]  <TASK>
[   72.426029][ T4281]  dump_stack_lvl+0x168/0x230
[   72.430815][ T4281]  ? kobject_uevent_env+0x371/0x890
[   72.436028][ T4281]  ? show_regs_print_info+0x20/0x20
[   72.441262][ T4281]  ? load_image+0x3b0/0x3b0
[   72.445777][ T4281]  ? kobject_uevent_env+0x371/0x890
[   72.450984][ T4281]  ? lockref_put_or_lock+0x6e/0xb0
[   72.456123][ T4281]  gfs2_withdraw+0x111b/0x1460
[   72.460911][ T4281]  ? gfs2_lm+0x220/0x220
[   72.465148][ T4281]  ? __schedule+0x11c3/0x4390
[   72.469835][ T4281]  ? gfs2_consist_inode_i+0xc0/0xe0
[   72.475038][ T4281]  gfs2_inode_refresh+0xb5e/0xfe0
[   72.480086][ T4281]  ? do_promote+0x71a/0xab0
[   72.484593][ T4281]  ? gfs2_inode_metasync+0xf0/0xf0
[   72.489713][ T4281]  ? __lock_acquire+0x7c60/0x7c60
[   72.494748][ T4281]  inode_go_lock+0x127/0x470
[   72.499354][ T4281]  do_promote+0x741/0xab0
[   72.503691][ T4281]  finish_xmote+0x514/0xb70
[   72.508199][ T4281]  do_xmote+0x7b6/0x1120
[   72.512449][ T4281]  gfs2_glock_nq+0xc7a/0x1550
[   72.517136][ T4281]  do_sync+0x486/0xc00
[   72.521211][ T4281]  ? slot_put+0x1e0/0x1e0
[   72.525549][ T4281]  ? do_sync+0x47e/0xc00
[   72.529808][ T4281]  ? do_raw_spin_unlock+0x11d/0x230
[   72.535012][ T4281]  gfs2_quota_sync+0x32c/0x6f0
[   72.539787][ T4281]  gfs2_sync_fs+0x48/0xb0
[   72.544116][ T4281]  sync_filesystem+0xe6/0x220
[   72.548796][ T4281]  generic_shutdown_super+0x6b/0x300
[   72.554084][ T4281]  kill_block_super+0x7c/0xe0
[   72.558762][ T4281]  deactivate_locked_super+0x93/0xf0
[   72.564046][ T4281]  cleanup_mnt+0x418/0x4d0
[   72.568569][ T4281]  ? lockdep_hardirqs_on+0x94/0x140
[   72.573790][ T4281]  task_work_run+0x125/0x1a0
[   72.578401][ T4281]  get_signal+0x1222/0x12c0
[   72.582912][ T4281]  ? kick_process+0xd4/0x140
[   72.587523][ T4281]  ? task_work_add+0x1a7/0x1d0
[   72.592307][ T4281]  ? mntput_no_expire+0x55e/0x780
[   72.597430][ T4281]  arch_do_signal_or_restart+0xc1/0x1300
[   72.603070][ T4281]  ? lockref_put_or_lock+0x6e/0xb0
[   72.608190][ T4281]  ? path_umount+0x34c/0xfc0
[   72.612786][ T4281]  ? get_sigframe_size+0x10/0x10
[   72.617746][ T4281]  ? exit_to_user_mode_loop+0x3b/0x130
[   72.623218][ T4281]  exit_to_user_mode_loop+0x9e/0x130
[   72.628515][ T4281]  exit_to_user_mode_prepare+0xee/0x180
[   72.634072][ T4281]  syscall_exit_to_user_mode+0x16/0x40
[   72.639538][ T4281]  do_syscall_64+0x58/0xa0
[   72.643959][ T4281]  ? clear_bhb_loop+0x30/0x80
[   72.648637][ T4281]  ? clear_bhb_loop+0x30/0x80
[   72.653320][ T4281]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   72.659220][ T4281] RIP: 0033:0x7f17aed87a77
[   72.663635][ T4281] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   72.683252][ T4281] RSP: 002b:00007ffc90d3cce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   72.691668][ T4281] RAX: 0000000000000000 RBX: 00007f17aee0ad7d RCX: 00007f17aed87a77
[   72.699639][ T4281] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc90d3cda0
[   72.707614][ T4281] RBP: 00007ffc90d3cda0 R08: 0000000000000000 R09: 0000000000000000
[   72.715589][ T4281] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc90d3de30
[   72.723565][ T4281] R13: 00007f17aee0ad7d R14: 0000000000011644 R15: 00007ffc90d3de70
[   72.731550][ T4281]  </TASK>
[   72.745577][ T4281] ==================================================================
[   72.754028][ T4281] BUG: KASAN: use-after-free in qd_unlock+0x30/0x2d0
[   72.760733][ T4281] Read of size 8 at addr ffff8880706c4090 by task syz-executor/4281
[   72.768718][ T4281] 
[   72.771049][ T4281] CPU: 1 PID: 4281 Comm: syz-executor Not tainted syzkaller #0
[   72.778617][ T4281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   72.788682][ T4281] Call Trace:
[   72.791971][ T4281]  <TASK>
[   72.794918][ T4281]  dump_stack_lvl+0x168/0x230
[   72.799621][ T4281]  ? show_regs_print_info+0x20/0x20
[   72.804828][ T4281]  ? _printk+0xcc/0x110
[   72.809006][ T4281]  ? load_image+0x3b0/0x3b0
[   72.813535][ T4281]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[   72.818937][ T4281]  print_address_description+0x60/0x2d0
[   72.824499][ T4281]  ? qd_unlock+0x30/0x2d0
[   72.828844][ T4281]  kasan_report+0xdf/0x130
[   72.833278][ T4281]  ? qd_unlock+0x30/0x2d0
[   72.837620][ T4281]  kasan_check_range+0x27b/0x290
[   72.842573][ T4281]  qd_unlock+0x30/0x2d0
[   72.846756][ T4281]  gfs2_quota_sync+0x5bf/0x6f0
[   72.851549][ T4281]  gfs2_sync_fs+0x48/0xb0
[   72.855895][ T4281]  sync_filesystem+0xe6/0x220
[   72.860584][ T4281]  generic_shutdown_super+0x6b/0x300
[   72.865891][ T4281]  kill_block_super+0x7c/0xe0
[   72.870586][ T4281]  deactivate_locked_super+0x93/0xf0
[   72.875981][ T4281]  cleanup_mnt+0x418/0x4d0
[   72.880414][ T4281]  ? lockdep_hardirqs_on+0x94/0x140
[   72.885634][ T4281]  task_work_run+0x125/0x1a0
[   72.890245][ T4281]  get_signal+0x1222/0x12c0
[   72.894764][ T4281]  ? kick_process+0xd4/0x140
[   72.899370][ T4281]  ? task_work_add+0x1a7/0x1d0
[   72.904154][ T4281]  ? mntput_no_expire+0x55e/0x780
[   72.909213][ T4281]  arch_do_signal_or_restart+0xc1/0x1300
[   72.914869][ T4281]  ? lockref_put_or_lock+0x6e/0xb0
[   72.920002][ T4281]  ? path_umount+0x34c/0xfc0
[   72.924619][ T4281]  ? get_sigframe_size+0x10/0x10
[   72.929692][ T4281]  ? exit_to_user_mode_loop+0x3b/0x130
[   72.935203][ T4281]  exit_to_user_mode_loop+0x9e/0x130
[   72.940515][ T4281]  exit_to_user_mode_prepare+0xee/0x180
[   72.946077][ T4281]  syscall_exit_to_user_mode+0x16/0x40
[   72.951549][ T4281]  do_syscall_64+0x58/0xa0
[   72.955979][ T4281]  ? clear_bhb_loop+0x30/0x80
[   72.960681][ T4281]  ? clear_bhb_loop+0x30/0x80
[   72.965376][ T4281]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   72.971374][ T4281] RIP: 0033:0x7f17aed87a77
[   72.975804][ T4281] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   72.995422][ T4281] RSP: 002b:00007ffc90d3cce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   73.003945][ T4281] RAX: 0000000000000000 RBX: 00007f17aee0ad7d RCX: 00007f17aed87a77
[   73.011932][ T4281] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc90d3cda0
[   73.019915][ T4281] RBP: 00007ffc90d3cda0 R08: 0000000000000000 R09: 0000000000000000
[   73.027920][ T4281] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc90d3de30
[   73.035902][ T4281] R13: 00007f17aee0ad7d R14: 0000000000011644 R15: 00007ffc90d3de70
[   73.043902][ T4281]  </TASK>
[   73.046926][ T4281]