syzbot

XFS (loop4): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
list_add corruption. prev->next should be next (fffffdffbf764038), but was fffffdffbf76403c. (prev=fffffdffbf764038).
------------[ cut here ]------------
kernel BUG at lib/list_debug.c:34!
Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP
Modules linked in:
CPU: 1 UID: 0 PID: 6430 Comm: syz-executor Not tainted 6.12.0-rc7-syzkaller-gbaa007e8da32 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __list_add_valid_or_report+0x10c/0x110 lib/list_debug.c:32
lr : __list_add_valid_or_report+0x10c/0x110 lib/list_debug.c:32
sp : ffff8000ae087420
x29: ffff8000ae087420 x28: dfff800000000000 x27: ffff0000cb8f1c40
x26: 1fffffbff7eec808 x25: 1fffe00019c2e6df x24: fffffdffbf764038
x23: dfff800000000000 x22: fffffdffbf764040 x21: ffff0000ce1736f8
x20: fffffdffbf764038 x19: fffffdffbf764038 x18: 0000000000000008
x17: 3833303436376662 x16: ffff8000830cd010 x15: 0000000000000001
x14: 1fffe000366cb4e2 x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000000002 x10: 0000000000ff0100 x9 : f38dafec71bfd300
x8 : f38dafec71bfd300 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000ae086b78 x4 : ffff80008f8fd0c0 x3 : ffff8000806257e0
x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000075
Call trace:
 __list_add_valid_or_report+0x10c/0x110 lib/list_debug.c:32 (P)
 __list_add_valid_or_report+0x10c/0x110 lib/list_debug.c:32 (L)
 __list_add_valid include/linux/list.h:88 [inline]
 __list_add include/linux/list.h:150 [inline]
 list_add_tail include/linux/list.h:183 [inline]
 xlog_cil_insert_items fs/xfs/xfs_log_cil.c:672 [inline]
 xlog_cil_commit+0x17f8/0x2ce4 fs/xfs/xfs_log_cil.c:1763
 __xfs_trans_commit+0x84c/0x1144 fs/xfs/xfs_trans.c:891
 xfs_trans_commit+0x24/0x34 fs/xfs/xfs_trans.c:935
 xfs_sync_sb+0x254/0x2c4 fs/xfs/libxfs/xfs_sb.c:1095
 xfs_log_cover fs/xfs/xfs_log.c:1214 [inline]
 xfs_log_quiesce+0x274/0x4fc fs/xfs/xfs_log.c:1023
 xfs_log_clean+0xb0/0xacc fs/xfs/xfs_log.c:1030
 xfs_log_unmount+0x38/0x1a4 fs/xfs/xfs_log.c:1045
 xfs_unmountfs+0x174/0x254 fs/xfs/xfs_mount.c:1124
 xfs_fs_put_super+0x6c/0x130 fs/xfs/xfs_super.c:1145
 generic_shutdown_super+0x12c/0x2bc fs/super.c:642
 kill_block_super+0x44/0x90 fs/super.c:1710
 xfs_kill_sb+0x20/0x58 fs/xfs/xfs_super.c:2056
 deactivate_locked_super+0xc4/0x12c fs/super.c:473
 deactivate_super+0xe0/0x100 fs/super.c:506
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1373
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1380
 task_work_run+0x230/0x2e0 kernel/task_work.c:239
 resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]
 do_notify_resume+0x178/0x1f4 arch/arm64/kernel/entry-common.c:151
 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]
 el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:745
 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600
Code: 910c8000 aa1303e1 aa1403e3 9539755a (d4210000) 
---[ end trace 0000000000000000 ]---