Warning: Permanently added '10.128.0.13' (ED25519) to the list of known hosts.
2025/12/22 17:58:05 parsed 1 programs
[  118.455400][ T6146] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  121.246084][ T5899] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  121.254158][ T5899] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  121.262678][ T5899] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  121.274031][ T5899] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  121.282020][ T5899] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  122.184909][ T3432] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.200978][ T3432] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.251943][ T1007] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.261757][ T1007] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  123.146705][ T6202] chnl_net:caif_netlink_parms(): no params data found
[  123.257176][ T6202] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.264383][ T6202] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.271991][ T6202] bridge_slave_0: entered allmulticast mode
[  123.280483][ T6202] bridge_slave_0: entered promiscuous mode
[  123.292259][ T6202] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.299463][ T6202] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.306916][ T6202] bridge_slave_1: entered allmulticast mode
[  123.313883][ T6202] bridge_slave_1: entered promiscuous mode
[  123.346709][ T6202] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  123.358689][ T6202] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  123.396851][ T6202] team0: Port device team_slave_0 added
[  123.404810][ T6202] team0: Port device team_slave_1 added
[  123.430861][ T6202] batman_adv: batadv0: Adding interface: batadv_slave_0
[  123.437865][ T6202] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  123.464328][ T6202] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  123.476591][ T6202] batman_adv: batadv0: Adding interface: batadv_slave_1
[  123.483545][ T6202] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  123.509914][ T6202] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  123.549499][ T6202] hsr_slave_0: entered promiscuous mode
[  123.555817][ T6202] hsr_slave_1: entered promiscuous mode
[  124.051846][ T6202] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  124.063923][ T6202] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  124.075277][ T6202] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  124.087505][ T6202] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  124.190264][ T6202] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.238449][ T6202] 8021q: adding VLAN 0 to HW filter on device team0
[  124.254500][ T1007] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.262158][ T1007] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.283482][ T3432] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.290713][ T3432] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.554690][ T6202] 8021q: adding VLAN 0 to HW filter on device batadv0
[  124.618601][ T6202] veth0_vlan: entered promiscuous mode
[  124.635823][ T6202] veth1_vlan: entered promiscuous mode
[  124.669500][ T6202] veth0_macvtap: entered promiscuous mode
[  124.681548][ T6202] veth1_macvtap: entered promiscuous mode
[  124.704636][ T6202] batman_adv: batadv0: Interface activated: batadv_slave_0
[  124.721440][ T6202] batman_adv: batadv0: Interface activated: batadv_slave_1
[  124.743974][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.758718][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.772620][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.786198][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.980442][ T3432] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.063499][ T3432] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.144562][ T3432] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.239612][ T3432] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/22 17:58:17 executed programs: 0
[  126.432063][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  126.440621][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  126.453972][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  126.466140][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  126.476135][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  126.726919][ T6316] chnl_net:caif_netlink_parms(): no params data found
[  126.880621][ T6316] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.887938][ T6316] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.895155][ T6316] bridge_slave_0: entered allmulticast mode
[  126.903212][ T6316] bridge_slave_0: entered promiscuous mode
[  126.913518][ T6316] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.921671][ T6316] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.929686][ T6316] bridge_slave_1: entered allmulticast mode
[  126.938069][ T6316] bridge_slave_1: entered promiscuous mode
[  126.982432][ T6316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  126.997481][ T6316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  127.046455][ T6316] team0: Port device team_slave_0 added
[  127.055466][ T6316] team0: Port device team_slave_1 added
[  127.098432][ T6316] batman_adv: batadv0: Adding interface: batadv_slave_0
[  127.105636][ T6316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  127.131817][ T6316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  127.145341][ T6316] batman_adv: batadv0: Adding interface: batadv_slave_1
[  127.152725][ T6316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  127.182186][ T6316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  127.240305][ T6316] hsr_slave_0: entered promiscuous mode
[  127.250148][ T6316] hsr_slave_1: entered promiscuous mode
[  127.257050][ T6316] debugfs: 'hsr0' already exists in 'hsr'
[  127.270333][ T6316] Cannot create hsr debugfs directory
[  127.431579][ T3432] bridge_slave_1: left allmulticast mode
[  127.439767][ T3432] bridge_slave_1: left promiscuous mode
[  127.445623][ T3432] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.456984][ T3432] bridge_slave_0: left allmulticast mode
[  127.462652][ T3432] bridge_slave_0: left promiscuous mode
[  127.472909][ T3432] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.822643][ T3432] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  127.838479][ T3432] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  127.849882][ T3432] bond0 (unregistering): Released all slaves
[  127.958318][ T3432] hsr_slave_0: left promiscuous mode
[  127.964449][ T3432] hsr_slave_1: left promiscuous mode
[  127.976036][ T3432] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.983909][ T3432] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.992140][ T3432] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.999671][ T3432] batman_adv: batadv0: Removing interface: batadv_slave_1
[  128.016981][ T3432] veth1_macvtap: left promiscuous mode
[  128.022544][ T3432] veth0_macvtap: left promiscuous mode
[  128.028377][ T3432] veth1_vlan: left promiscuous mode
[  128.033885][ T3432] veth0_vlan: left promiscuous mode
[  128.529272][ T5899] Bluetooth: hci0: command tx timeout
[  128.543843][ T3432] team0 (unregistering): Port device team_slave_1 removed
[  128.584702][ T3432] team0 (unregistering): Port device team_slave_0 removed
[  129.237888][ T6316] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  129.445511][ T6316] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  129.458939][ T6316] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  129.470699][ T6316] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  129.722533][ T6316] 8021q: adding VLAN 0 to HW filter on device bond0
[  129.757564][ T6316] 8021q: adding VLAN 0 to HW filter on device team0
[  129.772702][ T1007] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.779901][ T1007] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.802974][ T4311] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.810255][ T4311] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.074617][ T6316] 8021q: adding VLAN 0 to HW filter on device batadv0
[  130.143032][ T6316] veth0_vlan: entered promiscuous mode
[  130.159928][ T6316] veth1_vlan: entered promiscuous mode
[  130.198783][ T6316] veth0_macvtap: entered promiscuous mode
[  130.212701][ T6316] veth1_macvtap: entered promiscuous mode
[  130.234825][ T6316] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.256924][ T6316] batman_adv: batadv0: Interface activated: batadv_slave_1
[  130.274695][ T1007] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.284698][ T1007] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.298160][ T1007] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.311825][ T1007] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  130.402147][ T3432] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.420810][ T3432] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.450322][ T3432] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.459484][ T3432] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.606635][ T5899] Bluetooth: hci0: command tx timeout
[  130.824547][ T6431] loop0: detected capacity change from 0 to 32768
[  130.847045][ T6431] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  130.855322][ T6431] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  130.879931][ T6431] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  130.941577][ T6431] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  130.953957][ T6431] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  130.964026][ T6431] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  130.978637][ T6431] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  130.988539][ T6431] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6431 [syz.0.16] iterate_dir+0x399/0x570
[  130.999804][ T6431] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  131.009446][ T6431] CPU: 0 UID: 0 PID: 6431 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT(full) 
[  131.009467][ T6431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  131.009485][ T6431] Call Trace:
[  131.009492][ T6431]  <TASK>
[  131.009500][ T6431]  dump_stack_lvl+0x189/0x250
[  131.009528][ T6431]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.009552][ T6431]  ? __pfx__printk+0x10/0x10
[  131.009583][ T6431]  gfs2_withdraw+0xc3/0x1b0
[  131.009604][ T6431]  gfs2_dirent_scan+0x545/0x690
[  131.009626][ T6431]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  131.009647][ T6431]  gfs2_dir_read+0x804/0x16f0
[  131.009682][ T6431]  ? __pfx_inode_dio_wait+0x10/0x10
[  131.009703][ T6431]  ? __pfx___might_resched+0x10/0x10
[  131.009724][ T6431]  ? __pfx_gfs2_dir_read+0x10/0x10
[  131.009740][ T6431]  ? gfs2_glock_nq+0xedd/0x15f0
[  131.009771][ T6431]  ? gfs2_glock_wait+0x20f/0x2a0
[  131.009793][ T6431]  gfs2_readdir+0x14c/0x1b0
[  131.009808][ T6431]  ? iterate_dir+0x292/0x570
[  131.009827][ T6431]  ? __pfx_gfs2_readdir+0x10/0x10
[  131.009847][ T6431]  ? iterate_dir+0x399/0x570
[  131.009865][ T6431]  ? iterate_dir+0x292/0x570
[  131.009881][ T6431]  ? down_read_killable+0x1bc/0x350
[  131.009903][ T6431]  iterate_dir+0x399/0x570
[  131.009926][ T6431]  __se_sys_getdents64+0xe4/0x260
[  131.009948][ T6431]  ? __pfx___se_sys_getdents64+0x10/0x10
[  131.009965][ T6431]  ? __pfx_filldir64+0x10/0x10
[  131.009993][ T6431]  ? do_syscall_64+0xbe/0xf80
[  131.010020][ T6431]  do_syscall_64+0xfa/0xf80
[  131.010042][ T6431]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.010060][ T6431]  ? clear_bhb_loop+0x60/0xb0
[  131.010080][ T6431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.010096][ T6431] RIP: 0033:0x7f71ca18e929
[  131.010118][ T6431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.010130][ T6431] RSP: 002b:00007f71cb0be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  131.010146][ T6431] RAX: ffffffffffffffda RBX: 00007f71ca3b5fa0 RCX: 00007f71ca18e929
[  131.010158][ T6431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  131.010167][ T6431] RBP: 00007f71ca210b39 R08: 0000000000000000 R09: 0000000000000000
[  131.010177][ T6431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  131.010186][ T6431] R13: 0000000000000000 R14: 00007f71ca3b5fa0 R15: 00007ffff4873f08
[  131.010215][ T6431]  </TASK>
[  131.010222][ T6431] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  131.254536][  T980] gfs2: fsid=syz:syz.s: file system withdrawn
[  131.608935][ T6436] loop0: detected capacity change from 0 to 32768
[  131.630761][ T6436] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  131.639411][ T6436] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  131.653626][ T6436] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  131.731911][ T6436] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  131.743133][ T6436] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  131.753261][ T6436] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  131.768517][ T6436] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  131.778280][ T6436] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6436 [syz.0.17] iterate_dir+0x399/0x570
[  131.788016][ T6436] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  131.797465][ T6436] CPU: 1 UID: 0 PID: 6436 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  131.797486][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  131.797496][ T6436] Call Trace:
[  131.797502][ T6436]  <TASK>
[  131.797509][ T6436]  dump_stack_lvl+0x189/0x250
[  131.797538][ T6436]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.797562][ T6436]  ? __pfx__printk+0x10/0x10
[  131.797597][ T6436]  gfs2_withdraw+0xc3/0x1b0
[  131.797618][ T6436]  gfs2_dirent_scan+0x545/0x690
[  131.797638][ T6436]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  131.797661][ T6436]  gfs2_dir_read+0x804/0x16f0
[  131.797688][ T6436]  ? __pfx_inode_dio_wait+0x10/0x10
[  131.797709][ T6436]  ? __pfx___might_resched+0x10/0x10
[  131.797729][ T6436]  ? __pfx_gfs2_dir_read+0x10/0x10
[  131.797745][ T6436]  ? gfs2_glock_nq+0xedd/0x15f0
[  131.797776][ T6436]  ? gfs2_glock_wait+0x20f/0x2a0
[  131.797797][ T6436]  gfs2_readdir+0x14c/0x1b0
[  131.797814][ T6436]  ? iterate_dir+0x292/0x570
[  131.797833][ T6436]  ? __pfx_gfs2_readdir+0x10/0x10
[  131.797854][ T6436]  ? iterate_dir+0x399/0x570
[  131.797872][ T6436]  ? iterate_dir+0x292/0x570
[  131.797889][ T6436]  ? down_read_killable+0x1bc/0x350
[  131.797911][ T6436]  iterate_dir+0x399/0x570
[  131.797935][ T6436]  __se_sys_getdents64+0xe4/0x260
[  131.797957][ T6436]  ? __pfx___se_sys_getdents64+0x10/0x10
[  131.797974][ T6436]  ? __pfx_filldir64+0x10/0x10
[  131.798001][ T6436]  ? do_syscall_64+0xbe/0xf80
[  131.798027][ T6436]  do_syscall_64+0xfa/0xf80
[  131.798054][ T6436]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.798071][ T6436]  ? clear_bhb_loop+0x60/0xb0
[  131.798092][ T6436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.798109][ T6436] RIP: 0033:0x7f71ca18e929
[  131.798125][ T6436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.798139][ T6436] RSP: 002b:00007f71cb0be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  131.798156][ T6436] RAX: ffffffffffffffda RBX: 00007f71ca3b5fa0 RCX: 00007f71ca18e929
[  131.798168][ T6436] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  131.798177][ T6436] RBP: 00007f71ca210b39 R08: 0000000000000000 R09: 0000000000000000
[  131.798184][ T6436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  131.798192][ T6436] R13: 0000000000000000 R14: 00007f71ca3b5fa0 R15: 00007ffff4873f08
[  131.798233][ T6436]  </TASK>
[  131.798316][ T6436] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  132.041407][ T5882] gfs2: fsid=syz:syz.s: file system withdrawn
2025/12/22 17:58:23 executed programs: 4
[  132.378245][ T6441] loop0: detected capacity change from 0 to 32768
[  132.392893][ T6441] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  132.405444][ T6441] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  132.430068][ T6441] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  132.533189][ T6441] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  132.544080][ T6441] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  132.553905][ T6441] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  132.568329][ T6441] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  132.577436][ T6441] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6441 [syz.0.18] iterate_dir+0x399/0x570
[  132.586843][ T6441] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  132.595299][ T6441] CPU: 1 UID: 0 PID: 6441 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  132.595321][ T6441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  132.595329][ T6441] Call Trace:
[  132.595338][ T6441]  <TASK>
[  132.595346][ T6441]  dump_stack_lvl+0x189/0x250
[  132.595371][ T6441]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.595391][ T6441]  ? __pfx__printk+0x10/0x10
[  132.595421][ T6441]  gfs2_withdraw+0xc3/0x1b0
[  132.595441][ T6441]  gfs2_dirent_scan+0x545/0x690
[  132.595461][ T6441]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  132.595481][ T6441]  gfs2_dir_read+0x804/0x16f0
[  132.595505][ T6441]  ? __pfx_inode_dio_wait+0x10/0x10
[  132.595525][ T6441]  ? __pfx___might_resched+0x10/0x10
[  132.595545][ T6441]  ? __pfx_gfs2_dir_read+0x10/0x10
[  132.595562][ T6441]  ? gfs2_glock_nq+0xedd/0x15f0
[  132.595594][ T6441]  ? gfs2_glock_wait+0x20f/0x2a0
[  132.595616][ T6441]  gfs2_readdir+0x14c/0x1b0
[  132.595633][ T6441]  ? iterate_dir+0x292/0x570
[  132.595651][ T6441]  ? __pfx_gfs2_readdir+0x10/0x10
[  132.595672][ T6441]  ? iterate_dir+0x399/0x570
[  132.595690][ T6441]  ? iterate_dir+0x292/0x570
[  132.595705][ T6441]  ? down_read_killable+0x1bc/0x350
[  132.595725][ T6441]  iterate_dir+0x399/0x570
[  132.595748][ T6441]  __se_sys_getdents64+0xe4/0x260
[  132.595766][ T6441]  ? __pfx___se_sys_getdents64+0x10/0x10
[  132.595782][ T6441]  ? __pfx_filldir64+0x10/0x10
[  132.595805][ T6441]  ? do_syscall_64+0xbe/0xf80
[  132.595827][ T6441]  do_syscall_64+0xfa/0xf80
[  132.595847][ T6441]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.595863][ T6441]  ? clear_bhb_loop+0x60/0xb0
[  132.595883][ T6441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.595898][ T6441] RIP: 0033:0x7f71ca18e929
[  132.595913][ T6441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.595926][ T6441] RSP: 002b:00007f71cb0be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  132.595943][ T6441] RAX: ffffffffffffffda RBX: 00007f71ca3b5fa0 RCX: 00007f71ca18e929
[  132.595955][ T6441] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  132.595964][ T6441] RBP: 00007f71ca210b39 R08: 0000000000000000 R09: 0000000000000000
[  132.595973][ T6441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.595982][ T6441] R13: 0000000000000000 R14: 00007f71ca3b5fa0 R15: 00007ffff4873f08
[  132.596012][ T6441]  </TASK>
[  132.596017][ T6441] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  132.696313][ T5899] Bluetooth: hci0: command tx timeout
[  132.701113][   T48] gfs2: fsid=syz:syz.s: file system withdrawn
[  132.785473][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  132.861867][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  133.185783][ T6446] loop0: detected capacity change from 0 to 32768
[  133.202382][ T6446] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  133.212978][ T6446] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  133.227501][ T6446] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  133.310553][ T6446] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  133.324839][ T6446] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  133.338046][ T6446] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  133.352847][ T6446] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  133.362603][ T6446] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6446 [syz.0.19] iterate_dir+0x399/0x570
[  133.372028][ T6446] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  133.376738][ T6449] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  133.380650][ T6446] CPU: 0 UID: 0 PID: 6446 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT(full) 
[  133.380669][ T6446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  133.380678][ T6446] Call Trace:
[  133.380685][ T6446]  <TASK>
[  133.380692][ T6446]  dump_stack_lvl+0x189/0x250
[  133.380720][ T6446]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.380743][ T6446]  ? __pfx__printk+0x10/0x10
[  133.380775][ T6446]  gfs2_withdraw+0xc3/0x1b0
[  133.380796][ T6446]  gfs2_dirent_scan+0x545/0x690
[  133.380816][ T6446]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  133.380838][ T6446]  gfs2_dir_read+0x804/0x16f0
[  133.380864][ T6446]  ? __pfx_inode_dio_wait+0x10/0x10
[  133.380885][ T6446]  ? __pfx___might_resched+0x10/0x10
[  133.380904][ T6446]  ? __pfx_gfs2_dir_read+0x10/0x10
[  133.380920][ T6446]  ? gfs2_glock_nq+0xedd/0x15f0
[  133.380951][ T6446]  ? gfs2_glock_wait+0x20f/0x2a0
[  133.380972][ T6446]  gfs2_readdir+0x14c/0x1b0
[  133.380987][ T6446]  ? iterate_dir+0x292/0x570
[  133.381005][ T6446]  ? __pfx_gfs2_readdir+0x10/0x10
[  133.381024][ T6446]  ? iterate_dir+0x399/0x570
[  133.381041][ T6446]  ? iterate_dir+0x292/0x570
[  133.381057][ T6446]  ? down_read_killable+0x1bc/0x350
[  133.381079][ T6446]  iterate_dir+0x399/0x570
[  133.381102][ T6446]  __se_sys_getdents64+0xe4/0x260
[  133.381123][ T6446]  ? __pfx___se_sys_getdents64+0x10/0x10
[  133.381139][ T6446]  ? __pfx_filldir64+0x10/0x10
[  133.381165][ T6446]  ? do_syscall_64+0xbe/0xf80
[  133.381206][ T6446]  do_syscall_64+0xfa/0xf80
[  133.381228][ T6446]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.381243][ T6446]  ? clear_bhb_loop+0x60/0xb0
[  133.381263][ T6446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.381279][ T6446] RIP: 0033:0x7f71ca18e929
[  133.381294][ T6446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.381307][ T6446] RSP: 002b:00007f71cb0be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  133.381324][ T6446] RAX: ffffffffffffffda RBX: 00007f71ca3b5fa0 RCX: 00007f71ca18e929
[  133.381336][ T6446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  133.381345][ T6446] RBP: 00007f71ca210b39 R08: 0000000000000000 R09: 0000000000000000
[  133.381353][ T6446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.381362][ T6446] R13: 0000000000000000 R14: 00007f71ca3b5fa0 R15: 00007ffff4873f08
[  133.381391][ T6446]  </TASK>
[  133.381397][ T6446] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  133.390415][ T6449] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  133.400008][ T5882] gfs2: fsid=syz:syz.s: file system withdrawn
[  133.413257][ T6449] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6446 [syz.0.19] iterate_dir+0x399/0x570
[  133.657707][ T6449] Oops: general protection fault, probably for non-canonical address 0xfcab529ea66a7684: 0000 [#1] SMP KASAN PTI
[  133.669607][ T6449] KASAN: maybe wild-memory-access in range [0xe55ab4f53353b420-0xe55ab4f53353b427]
[  133.678958][ T6449] CPU: 0 UID: 0 PID: 6449 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT(full) 
[  133.688039][ T6449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  133.698068][ T6449] RIP: 0010:gfs2_dump_glock+0xde5/0x19c0
[  133.703679][ T6449] Code: 00 95 d2 8b be 65 03 00 00 48 c7 c2 40 95 d2 8b e8 b0 f5 9d fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 30 0f b7 1b 89
[  133.723266][ T6449] RSP: 0018:ffffc90002ea7700 EFLAGS: 00010a06
[  133.729323][ T6449] RAX: dffffc0000000000 RBX: e55ab4f53353b420 RCX: ffff88802cd80000
[  133.737287][ T6449] RDX: 0000000000000000 RSI: ffffffff8be07940 RDI: ffffffff8be07900
[  133.745247][ T6449] RBP: ffffc90002ea79f0 R08: ffffffff8400c475 R09: ffffffff8e13f2e0
[  133.753201][ T6449] R10: dffffc0000000000 R11: fffffbfff1f445ef R12: ffffffff8400c475
[  133.761155][ T6449] R13: e55ab4f53353b400 R14: 1cab569ea66a7684 R15: 0000000000000000
[  133.769104][ T6449] FS:  00007f71cb09d6c0(0000) GS:ffff888125c25000(0000) knlGS:0000000000000000
[  133.778006][ T6449] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  133.784587][ T6449] CR2: 00007f6383170000 CR3: 000000007bc84000 CR4: 00000000003526f0
[  133.792544][ T6449] Call Trace:
[  133.795805][ T6449]  <TASK>
[  133.798715][ T6449]  ? gfs2_dump_glock+0xd35/0x19c0
[  133.803718][ T6449]  ? __pfx_gfs2_dump_glock+0x10/0x10
[  133.808975][ T6449]  ? preempt_count_add+0x91/0x190
[  133.813972][ T6449]  ? __se_sys_getdents+0xe4/0x250
[  133.818968][ T6449]  ? do_syscall_64+0xfa/0xf80
[  133.823625][ T6449]  ? __pfx__printk+0x10/0x10
[  133.828193][ T6449]  gfs2_consist_inode_i+0xf5/0x110
[  133.833280][ T6449]  gfs2_dirent_scan+0x545/0x690
[  133.838123][ T6449]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  133.843658][ T6449]  gfs2_dir_read+0x804/0x16f0
[  133.848318][ T6449]  ? __pfx_inode_dio_wait+0x10/0x10
[  133.853494][ T6449]  ? __pfx___might_resched+0x10/0x10
[  133.858757][ T6449]  ? __pfx_gfs2_dir_read+0x10/0x10
[  133.863853][ T6449]  ? gfs2_glock_nq+0xedd/0x15f0
[  133.868704][ T6449]  ? gfs2_glock_wait+0x20f/0x2a0
[  133.873616][ T6449]  gfs2_readdir+0x14c/0x1b0
[  133.878093][ T6449]  ? iterate_dir+0x292/0x570
[  133.882655][ T6449]  ? __pfx_gfs2_readdir+0x10/0x10
[  133.887650][ T6449]  ? iterate_dir+0x399/0x570
[  133.892211][ T6449]  ? iterate_dir+0x292/0x570
[  133.896774][ T6449]  ? down_read_killable+0x1bc/0x350
[  133.901954][ T6449]  iterate_dir+0x399/0x570
[  133.906345][ T6449]  __se_sys_getdents+0xe4/0x250
[  133.911171][ T6449]  ? __pfx___se_sys_getdents+0x10/0x10
[  133.916697][ T6449]  ? __pfx_filldir+0x10/0x10
[  133.921261][ T6449]  ? do_syscall_64+0xbe/0xf80
[  133.925916][ T6449]  do_syscall_64+0xfa/0xf80
[  133.930400][ T6449]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.936437][ T6449]  ? clear_bhb_loop+0x60/0xb0
[  133.941089][ T6449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.946955][ T6449] RIP: 0033:0x7f71ca18e929
[  133.951366][ T6449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.970944][ T6449] RSP: 002b:00007f71cb09d038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  133.979331][ T6449] RAX: ffffffffffffffda RBX: 00007f71ca3b6080 RCX: 00007f71ca18e929
[  133.987297][ T6449] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  133.995241][ T6449] RBP: 00007f71ca210b39 R08: 0000000000000000 R09: 0000000000000000
[  134.003190][ T6449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.011135][ T6449] R13: 0000000000000000 R14: 00007f71ca3b6080 R15: 00007ffff4873f08
[  134.019087][ T6449]  </TASK>
[  134.022090][ T6449] Modules linked in:
[  134.026901][ T6449] ---[ end trace 0000000000000000 ]---
[  134.032677][ T6449] RIP: 0010:gfs2_dump_glock+0xde5/0x19c0
[  134.038360][ T6449] Code: 00 95 d2 8b be 65 03 00 00 48 c7 c2 40 95 d2 8b e8 b0 f5 9d fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 30 0f b7 1b 89
[  134.058836][ T6449] RSP: 0018:ffffc90002ea7700 EFLAGS: 00010a06
[  134.064918][ T6449] RAX: dffffc0000000000 RBX: e55ab4f53353b420 RCX: ffff88802cd80000
[  134.073104][ T6449] RDX: 0000000000000000 RSI: ffffffff8be07940 RDI: ffffffff8be07900
[  134.081202][ T6449] RBP: ffffc90002ea79f0 R08: ffffffff8400c475 R09: ffffffff8e13f2e0
[  134.089229][ T6449] R10: dffffc0000000000 R11: fffffbfff1f445ef R12: ffffffff8400c475
[  134.097269][ T6449] R13: e55ab4f53353b400 R14: 1cab569ea66a7684 R15: 0000000000000000
[  134.105266][ T6449] FS:  00007f71cb09d6c0(0000) GS:ffff888125d25000(0000) knlGS:0000000000000000
[  134.114218][ T6449] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  134.120922][ T6449] CR2: 00007f71cb09cf98 CR3: 000000007bc84000 CR4: 00000000003526f0
[  134.129041][ T6449] Kernel panic - not syncing: Fatal exception
[  134.135485][ T6449] Kernel Offset: disabled
[  134.139792][ T6449] Rebooting in 86400 seconds..