loop3: detected capacity change from 0 to 32768
(syz.3.88,6132,0):ocfs2_read_locked_inode:611 ERROR: bug expression: !!(fe->i_flags & cpu_to_le32(OCFS2_SYSTEM_FL)) != !!(args->fi_flags & OCFS2_FI_FLAG_SYSFILE)
(syz.3.88,6132,0):ocfs2_read_locked_inode:611 ERROR: Inode 71: system file state is ambiguous
------------[ cut here ]------------
kernel BUG at fs/ocfs2/inode.c:611!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 6132 Comm: syz.3.88 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
RIP: 0010:ocfs2_read_locked_inode+0x13af/0x1440 fs/ocfs2/inode.c:611
Code: 89 6c 24 60 80 3c 02 00 75 7f 4d 8b 04 24 ba 63 02 00 00 48 89 df 48 c7 c1 a0 b5 00 8c 48 c7 c6 e0 bc 00 8c e8 d2 2d 16 00 90 <0f> 0b 4c 89 e7 e8 87 74 69 fe e9 03 ef ff ff e8 3d 75 69 fe e9 d5
RSP: 0018:ffffc90005887638 EFLAGS: 00010246
RAX: 0000000000000000 RBX: ffffc90005887698 RCX: ffffc900070d2000
RDX: 0000000000080000 RSI: ffffffff84221d3e RDI: fffff52000b10e90
RBP: 1000000000000000 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000000 R12: ffffc90005887770
R13: 0000000000000000 R14: 0000000000000001 R15: ffff88802e58c000
FS:  00007f69afafb6c0(0000) GS:ffff88812436a000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f69aeb85b00 CR3: 000000007b6e6000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 ocfs2_iget+0x95f/0xbf0 fs/ocfs2/inode.c:157
 _ocfs2_get_system_file_inode fs/ocfs2/sysfile.c:142 [inline]
 ocfs2_get_system_file_inode+0x29c/0x840 fs/ocfs2/sysfile.c:112
 ocfs2_init_global_system_inodes fs/ocfs2/super.c:461 [inline]
 ocfs2_initialize_super.isra.0+0x1bf3/0x3160 fs/ocfs2/super.c:2196
 ocfs2_fill_super+0x828/0x3ec0 fs/ocfs2/super.c:993
 get_tree_bdev_flags+0x38c/0x620 fs/super.c:1694
 vfs_get_tree+0x92/0x320 fs/super.c:1754
 fc_mount fs/namespace.c:1193 [inline]
 do_new_mount_fc fs/namespace.c:3758 [inline]
 do_new_mount fs/namespace.c:3834 [inline]
 path_mount+0x7d0/0x23d0 fs/namespace.c:4154
 do_mount fs/namespace.c:4167 [inline]
 __do_sys_mount fs/namespace.c:4383 [inline]
 __se_sys_mount fs/namespace.c:4360 [inline]
 __x64_sys_mount+0x293/0x310 fs/namespace.c:4360
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x10b/0x860 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f69aeb9e0ca
Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f69afafae58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007f69afafaee0 RCX: 00007f69aeb9e0ca
RDX: 0000200000004440 RSI: 0000200000000040 RDI: 00007f69afafaea0
RBP: 0000200000004440 R08: 00007f69afafaee0 R09: 0000000000200840
R10: 0000000000200840 R11: 0000000000000246 R12: 0000200000000040
R13: 00007f69afafaea0 R14: 0000000000004446 R15: 0000200000000600
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:ocfs2_read_locked_inode+0x13af/0x1440 fs/ocfs2/inode.c:611
Code: 89 6c 24 60 80 3c 02 00 75 7f 4d 8b 04 24 ba 63 02 00 00 48 89 df 48 c7 c1 a0 b5 00 8c 48 c7 c6 e0 bc 00 8c e8 d2 2d 16 00 90 <0f> 0b 4c 89 e7 e8 87 74 69 fe e9 03 ef ff ff e8 3d 75 69 fe e9 d5
RSP: 0018:ffffc90005887638 EFLAGS: 00010246
RAX: 0000000000000000 RBX: ffffc90005887698 RCX: ffffc900070d2000
RDX: 0000000000080000 RSI: ffffffff84221d3e RDI: fffff52000b10e90
RBP: 1000000000000000 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000000 R12: ffffc90005887770
R13: 0000000000000000 R14: 0000000000000001 R15: ffff88802e58c000
FS:  00007f69afafb6c0(0000) GS:ffff88812436a000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f69aeb85b00 CR3: 000000007b6e6000 CR4: 0000000000350ef0