[  420.123032][ T7294] RIP: 0033:0x7f4a0019c18a
[  420.123043][ T7294] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  420.123059][ T7294] RSP: 002b:00007f4a01110e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  420.123073][ T7294] RAX: ffffffffffffffda RBX: 00007f4a01110ee0 RCX: 00007f4a0019c18a
[  420.123084][ T7294] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007f4a01110ea0
[  420.123095][ T7294] RBP: 0000200000037f40 R08: 00007f4a01110ee0 R09: 0000000000210000
[  420.123106][ T7294] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f80
[  420.123116][ T7294] R13: 00007f4a01110ea0 R14: 0000000000037fdb R15: 0000200000000200
[  420.123129][ T7294]  </TASK>
[  420.123290][ T7294] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[  427.071506][ T7304] loop0: detected capacity change from 0 to 32768
[  427.082124][ T7304] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  427.090467][ T7304] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  427.102605][ T7304] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  427.110567][ T6754] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  427.117631][ T6754] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  427.131028][ T6754] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  427.138710][ T6754] gfs2: fsid=syz:syz.0: jid=0: Done
[  427.143940][ T7304] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  427.151720][ T6848] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  427.166522][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  427.166540][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  427.166549][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  427.166573][ T6848] Call Trace:
[  427.166577][ T6848]  <TASK>
[  427.166581][ T6848]  dump_stack_lvl+0x97/0xe0
[  427.166602][ T6848]  gfs2_withdraw.cold+0xa/0x77
[  427.166620][ T6848]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  427.166639][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  427.166661][ T6848]  inode_go_inval+0x1df/0x1f0
[  427.166684][ T6848]  do_xmote+0x12a/0x310
[  427.166704][ T6848]  run_queue+0x288/0x300
[  427.166725][ T6848]  glock_work_func+0xac/0x280
[  427.166745][ T6848]  process_one_work+0x26c/0x5d0
[  427.166772][ T6848]  worker_thread+0x243/0x490
[  427.166791][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  427.166810][ T6848]  kthread+0x14e/0x1a0
[  427.166833][ T6848]  ? __pfx_kthread+0x10/0x10
[  427.166857][ T6848]  ret_from_fork+0x23c/0x4b0
[  427.166881][ T6848]  ? __pfx_kthread+0x10/0x10
[  427.166905][ T6848]  ret_from_fork_asm+0x1a/0x30
[  427.166931][ T6848]  </TASK>
[  427.166955][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  427.166975][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  427.166984][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  427.167004][ T6848] Call Trace:
[  427.167008][ T6848]  <TASK>
[  427.167013][ T6848]  dump_stack_lvl+0x97/0xe0
[  427.167033][ T6848]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  427.167059][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  427.167082][ T6848]  inode_go_inval+0x1df/0x1f0
[  427.167104][ T6848]  do_xmote+0x12a/0x310
[  427.167124][ T6848]  run_queue+0x288/0x300
[  427.167143][ T6848]  glock_work_func+0xac/0x280
[  427.167164][ T6848]  process_one_work+0x26c/0x5d0
[  427.167184][ T6848]  worker_thread+0x243/0x490
[  427.167202][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  427.167221][ T6848]  kthread+0x14e/0x1a0
[  427.167244][ T6848]  ? __pfx_kthread+0x10/0x10
[  427.167267][ T6848]  ret_from_fork+0x23c/0x4b0
[  427.167290][ T6848]  ? __pfx_kthread+0x10/0x10
[  427.167314][ T6848]  ret_from_fork_asm+0x1a/0x30
[  427.167339][ T6848]  </TASK>
[  427.167854][ T7304] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
Warning: Permanently added '10.128.1.97' (ED25519) to the list of known hosts.
[  433.601267][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  433.607521][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
Setting up swapspace version 1, size = 127995904 bytes
[  435.643669][ T7314] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  435.674582][ T7316] chnl_net:caif_netlink_parms(): no params data found
[  435.692863][ T7316] bridge0: port 1(bridge_slave_0) entered blocking state
[  435.699899][ T7316] bridge0: port 1(bridge_slave_0) entered disabled state
[  435.707023][ T7316] bridge_slave_0: entered allmulticast mode
[  435.713154][ T7316] bridge_slave_0: entered promiscuous mode
[  435.719355][ T7316] bridge0: port 2(bridge_slave_1) entered blocking state
[  435.726489][ T7316] bridge0: port 2(bridge_slave_1) entered disabled state
[  435.733561][ T7316] bridge_slave_1: entered allmulticast mode
[  435.739652][ T7316] bridge_slave_1: entered promiscuous mode
[  435.749864][ T7316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  435.759449][ T7316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  435.772539][ T7316] team0: Port device team_slave_0 added
[  435.778506][ T7316] team0: Port device team_slave_1 added
[  435.787729][ T7316] batman_adv: batadv0: Adding interface: batadv_slave_0
[  435.794831][ T7316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  435.820883][ T7316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  435.831868][ T7316] batman_adv: batadv0: Adding interface: batadv_slave_1
[  435.838784][ T7316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  435.864942][ T7316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  435.881531][ T7316] hsr_slave_0: entered promiscuous mode
[  435.887235][ T7316] hsr_slave_1: entered promiscuous mode
[  435.892972][ T7316] debugfs: 'hsr0' already exists in 'hsr'
[  435.898792][ T7316] Cannot create hsr debugfs directory
[  435.920338][ T7316] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.971923][ T7316] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.041844][ T7316] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.092319][ T7316] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.168631][ T7316] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  436.176189][ T7316] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  436.183596][ T7316] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  436.191105][ T7316] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  436.202708][ T7316] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.209736][ T7316] bridge0: port 2(bridge_slave_1) entered forwarding state
[  436.216985][ T7316] bridge0: port 1(bridge_slave_0) entered blocking state
[  436.224015][ T7316] bridge0: port 1(bridge_slave_0) entered forwarding state
[  436.240924][ T7316] 8021q: adding VLAN 0 to HW filter on device bond0
[  436.249539][   T30] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.257033][   T30] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.266868][ T7316] 8021q: adding VLAN 0 to HW filter on device team0
[  436.274855][   T34] bridge0: port 1(bridge_slave_0) entered blocking state
[  436.281885][   T34] bridge0: port 1(bridge_slave_0) entered forwarding state
[  436.290375][   T30] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.297440][   T30] bridge0: port 2(bridge_slave_1) entered forwarding state
[  436.316851][ T7316] 8021q: adding VLAN 0 to HW filter on device batadv0
[  436.331172][ T7316] veth0_vlan: entered promiscuous mode
[  436.337895][ T7316] veth1_vlan: entered promiscuous mode
[  436.348882][ T7316] veth0_macvtap: entered promiscuous mode
[  436.355440][ T7316] veth1_macvtap: entered promiscuous mode
executing program
[  436.364195][ T7316] batman_adv: batadv0: Interface activated: batadv_slave_0
[  436.373498][ T7316] batman_adv: batadv0: Interface activated: batadv_slave_1
[  436.382241][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  436.391128][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  436.401086][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  436.409923][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  436.491820][ T7329] loop0: detected capacity change from 0 to 32768
[  436.500595][ T7329] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  436.511174][ T7329] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  436.522186][ T7329] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  436.529997][  T794] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  436.537150][  T794] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  436.550221][  T794] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  436.557779][  T794] gfs2: fsid=syz:syz.0: jid=0: Done
[  436.563041][ T7329] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  436.571032][ T6848] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  436.585804][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  436.585823][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  436.585833][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  436.585853][ T6848] Call Trace:
[  436.585856][ T6848]  <TASK>
[  436.585859][ T6848]  dump_stack_lvl+0x97/0xe0
[  436.585874][ T6848]  gfs2_withdraw.cold+0xa/0x77
[  436.585885][ T6848]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  436.585897][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  436.585912][ T6848]  inode_go_inval+0x1df/0x1f0
[  436.585927][ T6848]  do_xmote+0x12a/0x310
[  436.585940][ T6848]  run_queue+0x288/0x300
[  436.585953][ T6848]  glock_work_func+0xac/0x280
[  436.585973][ T6848]  process_one_work+0x26c/0x5d0
[  436.585987][ T6848]  worker_thread+0x243/0x490
[  436.585999][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  436.586012][ T6848]  kthread+0x14e/0x1a0
[  436.586027][ T6848]  ? __pfx_kthread+0x10/0x10
[  436.586043][ T6848]  ret_from_fork+0x23c/0x4b0
[  436.586060][ T6848]  ? __pfx_kthread+0x10/0x10
[  436.586075][ T6848]  ret_from_fork_asm+0x1a/0x30
[  436.586092][ T6848]  </TASK>
[  436.586096][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  436.586108][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  436.586115][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  436.586128][ T6848] Call Trace:
[  436.586131][ T6848]  <TASK>
[  436.586134][ T6848]  dump_stack_lvl+0x97/0xe0
[  436.586146][ T6848]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  436.586157][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  436.586172][ T6848]  inode_go_inval+0x1df/0x1f0
[  436.586187][ T6848]  do_xmote+0x12a/0x310
[  436.586200][ T6848]  run_queue+0x288/0x300
[  436.586213][ T6848]  glock_work_func+0xac/0x280
[  436.586227][ T6848]  process_one_work+0x26c/0x5d0
[  436.586239][ T6848]  worker_thread+0x243/0x490
[  436.586251][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  436.586264][ T6848]  kthread+0x14e/0x1a0
[  436.586279][ T6848]  ? __pfx_kthread+0x10/0x10
[  436.586295][ T6848]  ret_from_fork+0x23c/0x4b0
[  436.586310][ T6848]  ? __pfx_kthread+0x10/0x10
[  436.586325][ T6848]  ret_from_fork_asm+0x1a/0x30
[  436.586342][ T6848]  </TASK>
[  436.586645][ T7329] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  442.504051][ T7335] loop0: detected capacity change from 0 to 32768
[  442.512510][ T7335] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  442.522502][ T7335] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  442.533545][ T7335] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  442.543076][ T5841] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  442.549816][ T5841] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  442.563928][ T5841] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 14ms
[  442.571622][ T5841] gfs2: fsid=syz:syz.0: jid=0: Done
[  442.576826][ T7335] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  442.584669][ T6848] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  442.599591][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  442.599611][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  442.599621][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  442.599642][ T6848] Call Trace:
[  442.599645][ T6848]  <TASK>
[  442.599648][ T6848]  dump_stack_lvl+0x97/0xe0
[  442.599662][ T6848]  gfs2_withdraw.cold+0xa/0x77
[  442.599674][ T6848]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  442.599685][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  442.599700][ T6848]  inode_go_inval+0x1df/0x1f0
[  442.599715][ T6848]  do_xmote+0x12a/0x310
[  442.599729][ T6848]  run_queue+0x288/0x300
[  442.599742][ T6848]  glock_work_func+0xac/0x280
[  442.599756][ T6848]  process_one_work+0x26c/0x5d0
[  442.599769][ T6848]  worker_thread+0x243/0x490
[  442.599782][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  442.599794][ T6848]  kthread+0x14e/0x1a0
[  442.599810][ T6848]  ? __pfx_kthread+0x10/0x10
[  442.599826][ T6848]  ret_from_fork+0x23c/0x4b0
[  442.599842][ T6848]  ? __pfx_kthread+0x10/0x10
[  442.599857][ T6848]  ret_from_fork_asm+0x1a/0x30
[  442.599874][ T6848]  </TASK>
[  442.599950][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  442.599968][ T7335] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
[  442.599969][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  442.599979][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  442.599998][ T6848] Call Trace:
[  442.600002][ T6848]  <TASK>
[  442.600006][ T6848]  dump_stack_lvl+0x97/0xe0
[  442.600026][ T6848]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  442.600043][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  442.600065][ T6848]  inode_go_inval+0x1df/0x1f0
[  442.600086][ T6848]  do_xmote+0x12a/0x310
[  442.600105][ T6848]  run_queue+0x288/0x300
[  442.600125][ T6848]  glock_work_func+0xac/0x280
[  442.600151][ T6848]  process_one_work+0x26c/0x5d0
[  442.600170][ T6848]  worker_thread+0x243/0x490
[  442.600188][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  442.600207][ T6848]  kthread+0x14e/0x1a0
[  442.600228][ T6848]  ? __pfx_kthread+0x10/0x10
[  442.600251][ T6848]  ret_from_fork+0x23c/0x4b0
[  442.600273][ T6848]  ? __pfx_kthread+0x10/0x10
[  442.600295][ T6848]  ret_from_fork_asm+0x1a/0x30
[  442.600319][ T6848]  </TASK>
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  448.432272][ T7342] loop0: detected capacity change from 0 to 32768
[  448.440708][ T7342] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  448.448864][ T7342] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  448.466974][ T7342] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  448.474852][  T795] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  448.481632][  T795] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  448.494830][  T795] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  448.502261][  T795] gfs2: fsid=syz:syz.0: jid=0: Done
[  448.507461][ T7342] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  448.515461][ T6764] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  448.530332][ T6764] CPU: 0 UID: 0 PID: 6764 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full) 
[  448.530351][ T6764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  448.530361][ T6764] Workqueue: gfs2-glock/syz:syz glock_work_func
[  448.530385][ T6764] Call Trace:
[  448.530389][ T6764]  <TASK>
[  448.530393][ T6764]  dump_stack_lvl+0x97/0xe0
[  448.530413][ T6764]  gfs2_withdraw.cold+0xa/0x77
[  448.530429][ T6764]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  448.530446][ T6764]  ? __pfx_inode_go_inval+0x10/0x10
[  448.530469][ T6764]  inode_go_inval+0x1df/0x1f0
[  448.530491][ T6764]  do_xmote+0x12a/0x310
[  448.530511][ T6764]  run_queue+0x288/0x300
[  448.530530][ T6764]  glock_work_func+0xac/0x280
[  448.530550][ T6764]  process_one_work+0x26c/0x5d0
[  448.530577][ T6764]  worker_thread+0x243/0x490
[  448.530596][ T6764]  ? __pfx_worker_thread+0x10/0x10
[  448.530614][ T6764]  kthread+0x14e/0x1a0
[  448.530640][ T6764]  ? __pfx_kthread+0x10/0x10
[  448.530662][ T6764]  ret_from_fork+0x23c/0x4b0
[  448.530684][ T6764]  ? __pfx_kthread+0x10/0x10
[  448.530706][ T6764]  ret_from_fork_asm+0x1a/0x30
[  448.530730][ T6764]  </TASK>
[  448.538503][ T7342] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
[  448.540322][ T6764] CPU: 0 UID: 0 PID: 6764 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full) 
[  448.540342][ T6764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  448.540352][ T6764] Workqueue: gfs2-glock/syz:syz glock_work_func
[  448.540379][ T6764] Call Trace:
[  448.540383][ T6764]  <TASK>
[  448.540388][ T6764]  dump_stack_lvl+0x97/0xe0
[  448.540408][ T6764]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  448.540426][ T6764]  ? __pfx_inode_go_inval+0x10/0x10
[  448.540448][ T6764]  inode_go_inval+0x1df/0x1f0
[  448.540470][ T6764]  do_xmote+0x12a/0x310
[  448.540488][ T6764]  run_queue+0x288/0x300
[  448.540508][ T6764]  glock_work_func+0xac/0x280
[  448.540528][ T6764]  process_one_work+0x26c/0x5d0
[  448.540547][ T6764]  worker_thread+0x243/0x490
[  448.540574][ T6764]  ? __pfx_worker_thread+0x10/0x10
[  448.540592][ T6764]  kthread+0x14e/0x1a0
[  448.540614][ T6764]  ? __pfx_kthread+0x10/0x10
[  448.540636][ T6764]  ret_from_fork+0x23c/0x4b0
[  448.540659][ T6764]  ? __pfx_kthread+0x10/0x10
[  448.540681][ T6764]  ret_from_fork_asm+0x1a/0x30
[  448.540704][ T6764]  </TASK>
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  454.354702][ T7350] loop0: detected capacity change from 0 to 32768
[  454.367823][ T7350] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  454.378945][ T7350] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  454.389698][ T7350] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  454.397533][ T6754] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  454.404306][ T6754] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  454.417415][ T6754] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  454.424865][ T6754] gfs2: fsid=syz:syz.0: jid=0: Done
[  454.430058][ T7350] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  454.438153][ T6848] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  454.452958][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  454.452978][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  454.452989][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  454.453014][ T6848] Call Trace:
[  454.453019][ T6848]  <TASK>
[  454.453024][ T6848]  dump_stack_lvl+0x97/0xe0
[  454.453045][ T6848]  gfs2_withdraw.cold+0xa/0x77
[  454.453062][ T6848]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  454.453079][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  454.453102][ T6848]  inode_go_inval+0x1df/0x1f0
[  454.453124][ T6848]  do_xmote+0x12a/0x310
[  454.453144][ T6848]  run_queue+0x288/0x300
[  454.453164][ T6848]  glock_work_func+0xac/0x280
[  454.453185][ T6848]  process_one_work+0x26c/0x5d0
[  454.453205][ T6848]  worker_thread+0x243/0x490
[  454.453224][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  454.453243][ T6848]  kthread+0x14e/0x1a0
[  454.453266][ T6848]  ? __pfx_kthread+0x10/0x10
[  454.453296][ T6848]  ret_from_fork+0x23c/0x4b0
[  454.453319][ T6848]  ? __pfx_kthread+0x10/0x10
[  454.453342][ T6848]  ret_from_fork_asm+0x1a/0x30
[  454.453367][ T6848]  </TASK>
[  454.453374][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  454.453392][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  454.453402][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  454.453423][ T6848] Call Trace:
[  454.453427][ T6848]  <TASK>
[  454.453431][ T6848]  dump_stack_lvl+0x97/0xe0
[  454.453451][ T6848]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  454.453469][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  454.453493][ T6848]  inode_go_inval+0x1df/0x1f0
[  454.453515][ T6848]  do_xmote+0x12a/0x310
[  454.453536][ T6848]  run_queue+0x288/0x300
[  454.453556][ T6848]  glock_work_func+0xac/0x280
[  454.453578][ T6848]  process_one_work+0x26c/0x5d0
[  454.453598][ T6848]  worker_thread+0x243/0x490
[  454.453617][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  454.453637][ T6848]  kthread+0x14e/0x1a0
[  454.453661][ T7350] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[  454.453660][ T6848]  ? __pfx_kthread+0x10/0x10
[  454.453682][ T6848]  ret_from_fork+0x23c/0x4b0
[  454.453703][ T6848]  ? __pfx_kthread+0x10/0x10
[  454.453726][ T6848]  ret_from_fork_asm+0x1a/0x30
[  454.453751][ T6848]  </TASK>
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  460.292083][ T7362] loop0: detected capacity change from 0 to 32768
[  460.300337][ T7362] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  460.309762][ T7362] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  460.321013][ T7362] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  460.328897][ T6754] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  460.335701][ T6754] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  460.348914][ T6754] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  460.356680][ T6754] gfs2: fsid=syz:syz.0: jid=0: Done
[  460.361894][ T7362] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  460.370106][ T7362] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  460.384921][ T7362] CPU: 1 UID: 0 PID: 7362 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  460.384940][ T7362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  460.384949][ T7362] Call Trace:
[  460.384953][ T7362]  <TASK>
[  460.384958][ T7362]  dump_stack_lvl+0x97/0xe0
[  460.384980][ T7362]  gfs2_withdraw.cold+0xa/0x77
[  460.384997][ T7362]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  460.385015][ T7362]  inode_go_inval+0x1df/0x1f0
[  460.385039][ T7362]  gfs2_make_fs_rw+0x34/0xf0
[  460.385054][ T7362]  gfs2_fill_super+0xfbb/0x1210
[  460.385077][ T7362]  ? gfs2_fill_super+0xa23/0x1210
[  460.385100][ T7362]  ? setup_bdev_super+0x19d/0x330
[  460.385117][ T7362]  ? __pfx_gfs2_fill_super+0x10/0x10
[  460.385141][ T7362]  get_tree_bdev_flags+0x1c0/0x290
[  460.385162][ T7362]  gfs2_get_tree+0x26/0xd0
[  460.385185][ T7362]  vfs_get_tree+0x30/0x120
[  460.385200][ T7362]  path_mount+0x5a9/0x1360
[  460.385224][ T7362]  __x64_sys_mount+0x1a3/0x1e0
[  460.385248][ T7362]  do_syscall_64+0xe2/0xf80
[  460.385272][ T7362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.385289][ T7362] RIP: 0033:0x7f23dcf4232a
[  460.385301][ T7362] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  460.385316][ T7362] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  460.385331][ T7362] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  460.385341][ T7362] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  460.385351][ T7362] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  460.385361][ T7362] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  460.385371][ T7362] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  460.385383][ T7362]  </TASK>
[  460.385390][ T7362] CPU: 1 UID: 0 PID: 7362 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  460.385408][ T7362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  460.385416][ T7362] Call Trace:
[  460.385420][ T7362]  <TASK>
[  460.385424][ T7362]  dump_stack_lvl+0x97/0xe0
[  460.385443][ T7362]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  460.385461][ T7362]  inode_go_inval+0x1df/0x1f0
[  460.385483][ T7362]  gfs2_make_fs_rw+0x34/0xf0
[  460.385497][ T7362]  gfs2_fill_super+0xfbb/0x1210
[  460.385523][ T7362]  ? gfs2_fill_super+0xa23/0x1210
[  460.385547][ T7362]  ? setup_bdev_super+0x19d/0x330
[  460.385563][ T7362]  ? __pfx_gfs2_fill_super+0x10/0x10
[  460.385586][ T7362]  get_tree_bdev_flags+0x1c0/0x290
[  460.385606][ T7362]  gfs2_get_tree+0x26/0xd0
[  460.385628][ T7362]  vfs_get_tree+0x30/0x120
[  460.385643][ T7362]  path_mount+0x5a9/0x1360
[  460.385667][ T7362]  __x64_sys_mount+0x1a3/0x1e0
[  460.385692][ T7362]  do_syscall_64+0xe2/0xf80
[  460.385715][ T7362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.385731][ T7362] RIP: 0033:0x7f23dcf4232a
[  460.385749][ T7362] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  460.385763][ T7362] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  460.385777][ T7362] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  460.385787][ T7362] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  460.385797][ T7362] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  460.385807][ T7362] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  460.385817][ T7362] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  460.385829][ T7362]  </TASK>
[  460.386004][ T7362] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  466.419594][ T7371] loop0: detected capacity change from 0 to 32768
[  466.428066][ T7371] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  466.438081][ T7371] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  466.448861][ T7371] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  466.456771][ T5918] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  466.463593][ T5918] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  466.476717][ T5918] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  466.484433][ T5918] gfs2: fsid=syz:syz.0: jid=0: Done
[  466.489726][ T7371] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  466.497748][ T7349] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  466.512742][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  466.512756][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  466.512763][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  466.512783][ T7349] Call Trace:
[  466.512786][ T7349]  <TASK>
[  466.512790][ T7349]  dump_stack_lvl+0x97/0xe0
[  466.512804][ T7349]  gfs2_withdraw.cold+0xa/0x77
[  466.512815][ T7349]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  466.512826][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  466.512842][ T7349]  inode_go_inval+0x1df/0x1f0
[  466.512857][ T7349]  do_xmote+0x12a/0x310
[  466.512870][ T7349]  run_queue+0x288/0x300
[  466.512883][ T7349]  glock_work_func+0xac/0x280
[  466.512897][ T7349]  process_one_work+0x26c/0x5d0
[  466.512911][ T7349]  worker_thread+0x243/0x490
[  466.512923][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  466.512936][ T7349]  kthread+0x14e/0x1a0
[  466.512951][ T7349]  ? __pfx_kthread+0x10/0x10
[  466.512970][ T7349]  ret_from_fork+0x23c/0x4b0
[  466.512987][ T7349]  ? __pfx_kthread+0x10/0x10
[  466.513003][ T7349]  ret_from_fork_asm+0x1a/0x30
[  466.513020][ T7349]  </TASK>
[  466.513024][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  466.513036][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  466.513042][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  466.513056][ T7349] Call Trace:
[  466.513058][ T7349]  <TASK>
[  466.513061][ T7349]  dump_stack_lvl+0x97/0xe0
[  466.513074][ T7349]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  466.513085][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  466.513100][ T7349]  inode_go_inval+0x1df/0x1f0
[  466.513114][ T7349]  do_xmote+0x12a/0x310
[  466.513127][ T7349]  run_queue+0x288/0x300
[  466.513140][ T7349]  glock_work_func+0xac/0x280
[  466.513154][ T7349]  process_one_work+0x26c/0x5d0
[  466.513167][ T7349]  worker_thread+0x243/0x490
[  466.513179][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  466.513191][ T7349]  kthread+0x14e/0x1a0
[  466.513206][ T7349]  ? __pfx_kthread+0x10/0x10
[  466.513228][ T7349]  ret_from_fork+0x23c/0x4b0
[  466.513243][ T7349]  ? __pfx_kthread+0x10/0x10
[  466.513259][ T7349]  ret_from_fork_asm+0x1a/0x30
[  466.513276][ T7349]  </TASK>
[  466.513697][ T7371] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  472.367865][ T7378] loop0: detected capacity change from 0 to 32768
[  472.377098][ T7378] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  472.385710][ T7378] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  472.397826][ T7378] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  472.407371][  T795] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  472.414390][  T795] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  472.427575][  T795] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  472.435014][  T795] gfs2: fsid=syz:syz.0: jid=0: Done
[  472.440217][ T7378] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  472.448708][ T7378] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  472.463735][ T7378] CPU: 0 UID: 0 PID: 7378 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  472.463749][ T7378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  472.463756][ T7378] Call Trace:
[  472.463759][ T7378]  <TASK>
[  472.463762][ T7378]  dump_stack_lvl+0x97/0xe0
[  472.463779][ T7378]  gfs2_withdraw.cold+0xa/0x77
[  472.463790][ T7378]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  472.463802][ T7378]  inode_go_inval+0x1df/0x1f0
[  472.463818][ T7378]  gfs2_make_fs_rw+0x34/0xf0
[  472.463828][ T7378]  gfs2_fill_super+0xfbb/0x1210
[  472.463845][ T7378]  ? gfs2_fill_super+0xa23/0x1210
[  472.463861][ T7378]  ? setup_bdev_super+0x19d/0x330
[  472.463873][ T7378]  ? __pfx_gfs2_fill_super+0x10/0x10
[  472.463889][ T7378]  get_tree_bdev_flags+0x1c0/0x290
[  472.463904][ T7378]  gfs2_get_tree+0x26/0xd0
[  472.463919][ T7378]  vfs_get_tree+0x30/0x120
[  472.463929][ T7378]  path_mount+0x5a9/0x1360
[  472.463947][ T7378]  __x64_sys_mount+0x1a3/0x1e0
[  472.463964][ T7378]  do_syscall_64+0xe2/0xf80
[  472.463981][ T7378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.463992][ T7378] RIP: 0033:0x7f23dcf4232a
[  472.464001][ T7378] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  472.464011][ T7378] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  472.464021][ T7378] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  472.464028][ T7378] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  472.464035][ T7378] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  472.464041][ T7378] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  472.464048][ T7378] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  472.464056][ T7378]  </TASK>
[  472.464060][ T7378] CPU: 0 UID: 0 PID: 7378 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  472.464072][ T7378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  472.464078][ T7378] Call Trace:
[  472.464080][ T7378]  <TASK>
[  472.464083][ T7378]  dump_stack_lvl+0x97/0xe0
[  472.464096][ T7378]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  472.464107][ T7378]  inode_go_inval+0x1df/0x1f0
[  472.464122][ T7378]  gfs2_make_fs_rw+0x34/0xf0
[  472.464131][ T7378]  gfs2_fill_super+0xfbb/0x1210
[  472.464149][ T7378]  ? gfs2_fill_super+0xa23/0x1210
[  472.464165][ T7378]  ? setup_bdev_super+0x19d/0x330
[  472.464176][ T7378]  ? __pfx_gfs2_fill_super+0x10/0x10
[  472.464192][ T7378]  get_tree_bdev_flags+0x1c0/0x290
[  472.464206][ T7378]  gfs2_get_tree+0x26/0xd0
[  472.464221][ T7378]  vfs_get_tree+0x30/0x120
[  472.464230][ T7378]  path_mount+0x5a9/0x1360
[  472.464248][ T7378]  __x64_sys_mount+0x1a3/0x1e0
[  472.464265][ T7378]  do_syscall_64+0xe2/0xf80
[  472.464281][ T7378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.464292][ T7378] RIP: 0033:0x7f23dcf4232a
[  472.464298][ T7378] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  472.464308][ T7378] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  472.464317][ T7378] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  472.464324][ T7378] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  472.464331][ T7378] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  472.464337][ T7378] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  472.464343][ T7378] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  472.464351][ T7378]  </TASK>
[  472.464459][ T7378] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  478.512016][ T7385] loop0: detected capacity change from 0 to 32768
[  478.522025][ T7385] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  478.530187][ T7385] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  478.540935][ T7385] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  478.548742][ T5841] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  478.555598][ T5841] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  478.570525][ T5841] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 14ms
[  478.577991][ T5841] gfs2: fsid=syz:syz.0: jid=0: Done
[  478.583481][ T7385] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  478.591586][ T7349] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  478.606572][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  478.606594][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  478.606604][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  478.606630][ T7349] Call Trace:
[  478.606634][ T7349]  <TASK>
[  478.606640][ T7349]  dump_stack_lvl+0x97/0xe0
[  478.606661][ T7349]  gfs2_withdraw.cold+0xa/0x77
[  478.606679][ T7349]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  478.606697][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  478.606715][ T7385] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[  478.606719][ T7349]  inode_go_inval+0x1df/0x1f0
[  478.606740][ T7349]  do_xmote+0x12a/0x310
[  478.606759][ T7349]  run_queue+0x288/0x300
[  478.606779][ T7349]  glock_work_func+0xac/0x280
[  478.606800][ T7349]  process_one_work+0x26c/0x5d0
[  478.606820][ T7349]  worker_thread+0x243/0x490
[  478.606839][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  478.606856][ T7349]  kthread+0x14e/0x1a0
[  478.606879][ T7349]  ? __pfx_kthread+0x10/0x10
[  478.606902][ T7349]  ret_from_fork+0x23c/0x4b0
[  478.606925][ T7349]  ? __pfx_kthread+0x10/0x10
[  478.606948][ T7349]  ret_from_fork_asm+0x1a/0x30
[  478.606972][ T7349]  </TASK>
[  478.606978][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  478.606997][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  478.607005][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  478.607025][ T7349] Call Trace:
[  478.607028][ T7349]  <TASK>
[  478.607033][ T7349]  dump_stack_lvl+0x97/0xe0
[  478.607051][ T7349]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  478.607068][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  478.607090][ T7349]  inode_go_inval+0x1df/0x1f0
[  478.607118][ T7349]  do_xmote+0x12a/0x310
[  478.607138][ T7349]  run_queue+0x288/0x300
[  478.607157][ T7349]  glock_work_func+0xac/0x280
[  478.607177][ T7349]  process_one_work+0x26c/0x5d0
[  478.607195][ T7349]  worker_thread+0x243/0x490
[  478.607213][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  478.607231][ T7349]  kthread+0x14e/0x1a0
[  478.607252][ T7349]  ? __pfx_kthread+0x10/0x10
[  478.607275][ T7349]  ret_from_fork+0x23c/0x4b0
[  478.607297][ T7349]  ? __pfx_kthread+0x10/0x10
[  478.607319][ T7349]  ret_from_fork_asm+0x1a/0x30
[  478.607343][ T7349]  </TASK>
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  484.460074][ T7392] loop0: detected capacity change from 0 to 32768
[  484.471249][ T7392] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  484.480684][ T7392] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  484.495599][ T7392] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  484.503469][ T5841] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  484.510213][ T5841] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  484.523893][ T5841] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  484.531434][ T5841] gfs2: fsid=syz:syz.0: jid=0: Done
[  484.536836][ T7392] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  484.545086][ T7392] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  484.559968][ T7392] CPU: 0 UID: 0 PID: 7392 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  484.559987][ T7392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  484.559996][ T7392] Call Trace:
[  484.560000][ T7392]  <TASK>
[  484.560004][ T7392]  dump_stack_lvl+0x97/0xe0
[  484.560028][ T7392]  gfs2_withdraw.cold+0xa/0x77
[  484.560044][ T7392]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  484.560060][ T7392]  inode_go_inval+0x1df/0x1f0
[  484.560076][ T7392]  gfs2_make_fs_rw+0x34/0xf0
[  484.560085][ T7392]  gfs2_fill_super+0xfbb/0x1210
[  484.560102][ T7392]  ? gfs2_fill_super+0xa23/0x1210
[  484.560119][ T7392]  ? setup_bdev_super+0x19d/0x330
[  484.560131][ T7392]  ? __pfx_gfs2_fill_super+0x10/0x10
[  484.560147][ T7392]  get_tree_bdev_flags+0x1c0/0x290
[  484.560161][ T7392]  gfs2_get_tree+0x26/0xd0
[  484.560176][ T7392]  vfs_get_tree+0x30/0x120
[  484.560186][ T7392]  path_mount+0x5a9/0x1360
[  484.560204][ T7392]  __x64_sys_mount+0x1a3/0x1e0
[  484.560221][ T7392]  do_syscall_64+0xe2/0xf80
[  484.560238][ T7392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.560250][ T7392] RIP: 0033:0x7f23dcf4232a
[  484.560258][ T7392] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  484.560268][ T7392] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  484.560279][ T7392] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  484.560286][ T7392] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  484.560292][ T7392] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  484.560299][ T7392] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  484.560306][ T7392] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  484.560314][ T7392]  </TASK>
[  484.560319][ T7392] CPU: 0 UID: 0 PID: 7392 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  484.560337][ T7392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  484.560343][ T7392] Call Trace:
[  484.560345][ T7392]  <TASK>
[  484.560348][ T7392]  dump_stack_lvl+0x97/0xe0
[  484.560361][ T7392]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  484.560372][ T7392]  inode_go_inval+0x1df/0x1f0
[  484.560387][ T7392]  gfs2_make_fs_rw+0x34/0xf0
[  484.560396][ T7392]  gfs2_fill_super+0xfbb/0x1210
[  484.560413][ T7392]  ? gfs2_fill_super+0xa23/0x1210
[  484.560429][ T7392]  ? setup_bdev_super+0x19d/0x330
[  484.560440][ T7392]  ? __pfx_gfs2_fill_super+0x10/0x10
[  484.560457][ T7392]  get_tree_bdev_flags+0x1c0/0x290
[  484.560470][ T7392]  gfs2_get_tree+0x26/0xd0
[  484.560485][ T7392]  vfs_get_tree+0x30/0x120
[  484.560495][ T7392]  path_mount+0x5a9/0x1360
[  484.560513][ T7392]  __x64_sys_mount+0x1a3/0x1e0
[  484.560530][ T7392]  do_syscall_64+0xe2/0xf80
[  484.560546][ T7392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.560556][ T7392] RIP: 0033:0x7f23dcf4232a
[  484.560563][ T7392] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  484.560574][ T7392] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  484.560583][ T7392] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  484.560590][ T7392] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  484.560596][ T7392] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  484.560603][ T7392] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  484.560609][ T7392] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  484.560617][ T7392]  </TASK>
[  484.913547][ T7392] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  490.568374][ T7400] loop0: detected capacity change from 0 to 32768
[  490.582598][ T7400] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  490.590794][ T7400] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  490.606685][ T7400] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  490.614569][  T794] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  490.621345][  T794] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  490.635462][  T794] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 14ms
[  490.642918][  T794] gfs2: fsid=syz:syz.0: jid=0: Done
[  490.648103][ T7400] gfs2: fsid=syz:syz.0: first mount done, others may mount
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[  490.707822][ T6755] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  490.723148][ T5854] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  490.738534][ T6754] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  490.753821][  T795] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  490.769109][ T6755] CPU: 1 UID: 0 PID: 6755 Comm: kworker/1:6 Not tainted syzkaller #0 PREEMPT(full) 
[  490.769128][ T6755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  490.769139][ T6755] Workqueue: gfs2-delete/syz:syz delete_work_func
[  490.769164][ T6755] Call Trace:
[  490.769168][ T6755]  <TASK>
[  490.769173][ T6755]  dump_stack_lvl+0x97/0xe0
[  490.769193][ T6755]  gfs2_meta_check_ii.cold+0xa/0x77
[  490.769210][ T6755]  gfs2_meta_buffer+0x1a2/0x1b0
[  490.769229][ T6755]  inode_go_instantiate+0x61/0x560
[  490.769252][ T6755]  gfs2_instantiate+0xa7/0x130
[  490.769269][ T6755]  gfs2_inode_lookup+0x49a/0x520
[  490.769285][ T6755]  ? gfs2_lookup_by_inum+0x2f/0xb0
[  490.769301][ T6755]  gfs2_lookup_by_inum+0x2f/0xb0
[  490.769315][ T6755]  delete_work_func+0xa3/0x2d0
[  490.769335][ T6755]  ? wg_peer_put+0x8c/0xc0
[  490.769361][ T6755]  process_one_work+0x26c/0x5d0
[  490.769382][ T6755]  worker_thread+0x243/0x490
[  490.769400][ T6755]  ? __pfx_worker_thread+0x10/0x10
[  490.769418][ T6755]  kthread+0x14e/0x1a0
[  490.769442][ T6755]  ? __pfx_kthread+0x10/0x10
[  490.769464][ T6755]  ret_from_fork+0x23c/0x4b0
[  490.769487][ T6755]  ? __pfx_kthread+0x10/0x10
[  490.769511][ T6755]  ret_from_fork_asm+0x1a/0x30
[  490.769535][ T6755]  </TASK>
[  490.769540][ T6755] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  495.041229][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  495.047514][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  495.930692][ T7316] gfs2: fsid=syz:syz.0: warning: assertion "gfs2_log_is_empty(sdp)" failed - function = gfs2_make_fs_ro, file = fs/gfs2/super.c, line = 566
[  495.944962][ T7316] CPU: 0 UID: 0 PID: 7316 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  495.944977][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  495.944984][ T7316] Call Trace:
[  495.944988][ T7316]  <TASK>
[  495.944992][ T7316]  dump_stack_lvl+0x97/0xe0
[  495.945009][ T7316]  gfs2_assert_warn_i.cold+0x38/0x94
[  495.945022][ T7316]  gfs2_make_fs_ro+0x13d/0x220
[  495.945033][ T7316]  ? __pfx_autoremove_wake_function+0x10/0x10
[  495.945048][ T7316]  gfs2_put_super+0xb4/0x2d0
[  495.945058][ T7316]  ? __pfx_gfs2_put_super+0x10/0x10
[  495.945068][ T7316]  generic_shutdown_super+0xa4/0x160
[  495.945086][ T7316]  kill_block_super+0x1d/0x50
[  495.945102][ T7316]  gfs2_kill_sb+0x1b6/0x1e0
[  495.945124][ T7316]  deactivate_locked_super+0x4f/0x120
[  495.945137][ T7316]  deactivate_super+0xa4/0xc0
[  495.945149][ T7316]  cleanup_mnt+0x145/0x1f0
[  495.945163][ T7316]  task_work_run+0x95/0xf0
[  495.945175][ T7316]  exit_to_user_mode_loop+0xcf/0x440
[  495.945193][ T7316]  do_syscall_64+0x407/0xf80
[  495.945211][ T7316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.945222][ T7316] RIP: 0033:0x7f23dcf422f7
[  495.945231][ T7316] Code: a2 c7 05 68 85 0c 00 00 00 00 00 eb 96 e8 c1 08 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8
[  495.945241][ T7316] RSP: 002b:00007ffed9ea2fa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[  495.945251][ T7316] RAX: 0000000000000000 RBX: 0000000000077bfa RCX: 00007f23dcf422f7
[  495.945258][ T7316] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffed9ea3060
[  495.945264][ T7316] RBP: 00007ffed9ea3060 R08: 00007ffed9ea4060 R09: 00000000ffffffff
[  495.945271][ T7316] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffed9ea40f0
[  495.945277][ T7316] R13: 00005555850eb7f0 R14: 00007ffed9ea40b8 R15: 00007ffed9ea40f0
[  495.945286][ T7316]  </TASK>
executing program
[  501.695358][ T7408] loop0: detected capacity change from 0 to 32768
[  501.705777][ T7408] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  501.714130][ T7408] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  501.728712][ T7408] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  501.736576][ T6755] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  501.743347][ T6755] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  501.756982][ T6755] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  501.764423][ T6755] gfs2: fsid=syz:syz.0: jid=0: Done
[  501.769618][ T7408] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  501.777731][ T6848] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  501.792636][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  501.792655][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  501.792665][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  501.792684][ T6848] Call Trace:
[  501.792687][ T6848]  <TASK>
[  501.792690][ T6848]  dump_stack_lvl+0x97/0xe0
[  501.792706][ T6848]  gfs2_withdraw.cold+0xa/0x77
[  501.792717][ T6848]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  501.792729][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  501.792744][ T6848]  inode_go_inval+0x1df/0x1f0
[  501.792766][ T6848]  do_xmote+0x12a/0x310
[  501.792779][ T6848]  run_queue+0x288/0x300
[  501.792793][ T6848]  glock_work_func+0xac/0x280
[  501.792807][ T6848]  process_one_work+0x26c/0x5d0
[  501.792821][ T6848]  worker_thread+0x243/0x490
[  501.792833][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  501.792846][ T6848]  kthread+0x14e/0x1a0
[  501.792862][ T6848]  ? __pfx_kthread+0x10/0x10
[  501.792877][ T6848]  ret_from_fork+0x23c/0x4b0
[  501.792894][ T6848]  ? __pfx_kthread+0x10/0x10
[  501.792909][ T6848]  ret_from_fork_asm+0x1a/0x30
[  501.792926][ T6848]  </TASK>
[  501.792930][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  501.792942][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  501.792949][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  501.792962][ T6848] Call Trace:
[  501.792965][ T6848]  <TASK>
[  501.792967][ T6848]  dump_stack_lvl+0x97/0xe0
[  501.792980][ T6848]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  501.792991][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  501.793006][ T6848]  inode_go_inval+0x1df/0x1f0
[  501.793024][ T6848]  do_xmote+0x12a/0x310
[  501.793039][ T6848]  run_queue+0x288/0x300
[  501.793052][ T6848]  glock_work_func+0xac/0x280
[  501.793066][ T6848]  process_one_work+0x26c/0x5d0
[  501.793079][ T6848]  worker_thread+0x243/0x490
[  501.793091][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  501.793103][ T6848]  kthread+0x14e/0x1a0
[  501.793118][ T6848]  ? __pfx_kthread+0x10/0x10
[  501.793134][ T6848]  ret_from_fork+0x23c/0x4b0
[  501.793150][ T6848]  ? __pfx_kthread+0x10/0x10
[  501.793166][ T6848]  ret_from_fork_asm+0x1a/0x30
[  501.793182][ T6848]  </TASK>
[  501.793334][ T7408] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  507.649253][ T7414] loop0: detected capacity change from 0 to 32768
[  507.661107][ T7414] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  507.669293][ T7414] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  507.682121][ T7414] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  507.690182][  T794] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  507.697201][  T794] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  507.710870][  T794] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  507.718529][  T794] gfs2: fsid=syz:syz.0: jid=0: Done
[  507.723766][ T7414] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  507.731815][ T7349] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  507.746588][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  507.746607][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  507.746617][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  507.746640][ T7349] Call Trace:
[  507.746645][ T7349]  <TASK>
[  507.746650][ T7349]  dump_stack_lvl+0x97/0xe0
[  507.746670][ T7349]  gfs2_withdraw.cold+0xa/0x77
[  507.746687][ T7349]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  507.746694][ T7414] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[  507.746704][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  507.746724][ T7349]  inode_go_inval+0x1df/0x1f0
[  507.746747][ T7349]  do_xmote+0x12a/0x310
[  507.746766][ T7349]  run_queue+0x288/0x300
[  507.746786][ T7349]  glock_work_func+0xac/0x280
[  507.746807][ T7349]  process_one_work+0x26c/0x5d0
[  507.746827][ T7349]  worker_thread+0x243/0x490
[  507.746845][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  507.746863][ T7349]  kthread+0x14e/0x1a0
[  507.746885][ T7349]  ? __pfx_kthread+0x10/0x10
[  507.746907][ T7349]  ret_from_fork+0x23c/0x4b0
[  507.746930][ T7349]  ? __pfx_kthread+0x10/0x10
[  507.746952][ T7349]  ret_from_fork_asm+0x1a/0x30
[  507.746976][ T7349]  </TASK>
[  507.746982][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  507.747001][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  507.747010][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  507.747030][ T7349] Call Trace:
[  507.747033][ T7349]  <TASK>
[  507.747038][ T7349]  dump_stack_lvl+0x97/0xe0
[  507.747056][ T7349]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  507.747073][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  507.747094][ T7349]  inode_go_inval+0x1df/0x1f0
[  507.747115][ T7349]  do_xmote+0x12a/0x310
[  507.747135][ T7349]  run_queue+0x288/0x300
[  507.747153][ T7349]  glock_work_func+0xac/0x280
[  507.747174][ T7349]  process_one_work+0x26c/0x5d0
[  507.747192][ T7349]  worker_thread+0x243/0x490
[  507.747210][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  507.747228][ T7349]  kthread+0x14e/0x1a0
[  507.747256][ T7349]  ? __pfx_kthread+0x10/0x10
[  507.747279][ T7349]  ret_from_fork+0x23c/0x4b0
[  507.747301][ T7349]  ? __pfx_kthread+0x10/0x10
[  507.747323][ T7349]  ret_from_fork_asm+0x1a/0x30
[  507.747347][ T7349]  </TASK>
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  513.611125][ T7421] loop0: detected capacity change from 0 to 32768
[  513.624924][ T7421] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  513.633134][ T7421] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  513.644050][ T7421] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  513.652254][  T795] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  513.659003][  T795] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  513.672463][  T795] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  513.680169][  T795] gfs2: fsid=syz:syz.0: jid=0: Done
[  513.685521][ T7421] gfs2: fsid=syz:syz.0: first mount done, others may mount
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[  513.754313][ T6755] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  513.769677][   T41] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  513.785443][   T41] CPU: 1 UID: 0 PID: 41 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT(full) 
[  513.785465][   T41] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  513.785476][   T41] Workqueue: gfs2-delete/syz:syz delete_work_func
[  513.785499][   T41] Call Trace:
[  513.785503][   T41]  <TASK>
[  513.785507][   T41]  dump_stack_lvl+0x97/0xe0
[  513.785526][   T41]  gfs2_meta_check_ii.cold+0xa/0x77
[  513.785541][   T41]  gfs2_meta_buffer+0x1a2/0x1b0
[  513.785558][   T41]  inode_go_instantiate+0x61/0x560
[  513.785579][   T41]  gfs2_instantiate+0xa7/0x130
[  513.785595][   T41]  gfs2_inode_lookup+0x49a/0x520
[  513.785610][   T41]  ? gfs2_lookup_by_inum+0x2f/0xb0
[  513.785625][   T41]  gfs2_lookup_by_inum+0x2f/0xb0
[  513.785640][   T41]  delete_work_func+0xa3/0x2d0
[  513.785659][   T41]  ? wg_peer_put+0x8c/0xc0
[  513.785692][   T41]  process_one_work+0x26c/0x5d0
[  513.785709][   T41]  worker_thread+0x243/0x490
[  513.785726][   T41]  ? __pfx_worker_thread+0x10/0x10
[  513.785743][   T41]  kthread+0x14e/0x1a0
[  513.785764][   T41]  ? __pfx_kthread+0x10/0x10
[  513.785786][   T41]  ret_from_fork+0x23c/0x4b0
[  513.785808][   T41]  ? __pfx_kthread+0x10/0x10
[  513.785829][   T41]  ret_from_fork_asm+0x1a/0x30
[  513.785846][   T41]  </TASK>
[  513.785884][   T41] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  518.961586][ T6755] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[  524.543647][ T7436] loop0: detected capacity change from 0 to 32768
[  524.553835][ T7436] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  524.562070][ T7436] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  524.577292][ T7436] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  524.585367][   T41] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  524.592454][   T41] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  524.612595][   T41] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 20ms
[  524.620306][   T41] gfs2: fsid=syz:syz.0: jid=0: Done
[  524.625632][ T7436] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  524.688924][    T9] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  524.704232][ T5918] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  524.719610][  T794] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[  524.734893][ T5841] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  524.750260][    T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted syzkaller #0 PREEMPT(full) 
[  524.750281][    T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  524.750291][    T9] Workqueue: gfs2-delete/syz:syz delete_work_func
[  524.750317][    T9] Call Trace:
[  524.750322][    T9]  <TASK>
[  524.750328][    T9]  dump_stack_lvl+0x97/0xe0
[  524.750349][    T9]  gfs2_meta_check_ii.cold+0xa/0x77
[  524.750366][    T9]  gfs2_meta_buffer+0x1a2/0x1b0
[  524.750386][    T9]  inode_go_instantiate+0x61/0x560
[  524.750418][    T9]  gfs2_instantiate+0xa7/0x130
[  524.750435][    T9]  gfs2_inode_lookup+0x49a/0x520
[  524.750448][    T9]  ? gfs2_lookup_by_inum+0x2f/0xb0
[  524.750461][    T9]  gfs2_lookup_by_inum+0x2f/0xb0
[  524.750476][    T9]  delete_work_func+0xa3/0x2d0
[  524.750497][    T9]  ? wg_peer_put+0x8c/0xc0
[  524.750522][    T9]  process_one_work+0x26c/0x5d0
[  524.750542][    T9]  worker_thread+0x243/0x490
[  524.750561][    T9]  ? __pfx_worker_thread+0x10/0x10
[  524.750579][    T9]  kthread+0x14e/0x1a0
[  524.750602][    T9]  ? __pfx_kthread+0x10/0x10
[  524.750625][    T9]  ret_from_fork+0x23c/0x4b0
[  524.750651][    T9]  ? __pfx_kthread+0x10/0x10
[  524.750673][    T9]  ret_from_fork_asm+0x1a/0x30
[  524.750704][    T9]  </TASK>
[  524.871528][    T9] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  524.879533][ T5841] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[  530.444725][ T7444] loop0: detected capacity change from 0 to 32768
[  530.460966][ T7444] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  530.469257][ T7444] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  530.481189][ T7444] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  530.489016][ T7428] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  530.495784][ T7428] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  530.508884][ T7428] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  530.516369][ T7428] gfs2: fsid=syz:syz.0: jid=0: Done
[  530.522089][ T7444] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  530.582947][  T795] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  530.598288][ T6755] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  530.613686][   T41] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[  530.628973][ T7428] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  530.644272][  T795] CPU: 1 UID: 0 PID: 795 Comm: kworker/1:2 Not tainted syzkaller #0 PREEMPT(full) 
[  530.644290][  T795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  530.644300][  T795] Workqueue: gfs2-delete/syz:syz delete_work_func
[  530.644325][  T795] Call Trace:
[  530.644329][  T795]  <TASK>
[  530.644335][  T795]  dump_stack_lvl+0x97/0xe0
[  530.644356][  T795]  gfs2_meta_check_ii.cold+0xa/0x77
[  530.644374][  T795]  gfs2_meta_buffer+0x1a2/0x1b0
[  530.644393][  T795]  inode_go_instantiate+0x61/0x560
[  530.644424][  T795]  gfs2_instantiate+0xa7/0x130
[  530.644442][  T795]  gfs2_inode_lookup+0x49a/0x520
[  530.644457][  T795]  ? gfs2_lookup_by_inum+0x2f/0xb0
[  530.644473][  T795]  gfs2_lookup_by_inum+0x2f/0xb0
[  530.644488][  T795]  delete_work_func+0xa3/0x2d0
[  530.644506][  T795]  ? wg_peer_put+0x8c/0xc0
[  530.644531][  T795]  process_one_work+0x26c/0x5d0
[  530.644552][  T795]  worker_thread+0x243/0x490
[  530.644568][  T795]  ? __pfx_worker_thread+0x10/0x10
[  530.644585][  T795]  kthread+0x14e/0x1a0
[  530.644607][  T795]  ? __pfx_kthread+0x10/0x10
[  530.644628][  T795]  ret_from_fork+0x23c/0x4b0
[  530.644649][  T795]  ? __pfx_kthread+0x10/0x10
[  530.644668][  T795]  ret_from_fork_asm+0x1a/0x30
[  530.644689][  T795]  </TASK>
[  530.644696][  T795] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  535.841575][   T41] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[  541.421465][ T7452] loop0: detected capacity change from 0 to 32768
[  541.431585][ T7452] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  541.439736][ T7452] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  541.458500][ T7452] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  541.466595][   T41] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  541.473371][   T41] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  541.487093][   T41] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  541.494515][   T41] gfs2: fsid=syz:syz.0: jid=0: Done
[  541.499714][ T7452] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  541.558213][ T5854] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  541.573522][ T7428] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  541.588898][  T795] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[  541.604327][   T41] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[  541.619648][ T5854] CPU: 1 UID: 0 PID: 5854 Comm: kworker/1:4 Not tainted syzkaller #0 PREEMPT(full) 
[  541.619665][ T5854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  541.619676][ T5854] Workqueue: gfs2-delete/syz:syz delete_work_func
[  541.619701][ T5854] Call Trace:
[  541.619706][ T5854]  <TASK>
[  541.619711][ T5854]  dump_stack_lvl+0x97/0xe0
[  541.619732][ T5854]  gfs2_meta_check_ii.cold+0xa/0x77
[  541.619750][ T5854]  gfs2_meta_buffer+0x1a2/0x1b0
[  541.619769][ T5854]  inode_go_instantiate+0x61/0x560
[  541.619792][ T5854]  gfs2_instantiate+0xa7/0x130
[  541.619808][ T5854]  gfs2_inode_lookup+0x49a/0x520
[  541.619824][ T5854]  ? gfs2_lookup_by_inum+0x2f/0xb0
[  541.619839][ T5854]  gfs2_lookup_by_inum+0x2f/0xb0
[  541.619854][ T5854]  delete_work_func+0xa3/0x2d0
[  541.619874][ T5854]  ? wg_peer_put+0x8c/0xc0
[  541.619899][ T5854]  process_one_work+0x26c/0x5d0
[  541.619919][ T5854]  worker_thread+0x243/0x490
[  541.619938][ T5854]  ? __pfx_worker_thread+0x10/0x10
[  541.619956][ T5854]  kthread+0x14e/0x1a0
[  541.619979][ T5854]  ? __pfx_kthread+0x10/0x10
[  541.620000][ T5854]  ret_from_fork+0x23c/0x4b0
[  541.620020][ T5854]  ? __pfx_kthread+0x10/0x10
[  541.620045][ T5854]  ret_from_fork_asm+0x1a/0x30
[  541.620067][ T5854]  </TASK>
[  541.620072][ T5854] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  546.801561][   T41] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[  552.376225][ T7460] loop0: detected capacity change from 0 to 32768
[  552.389705][ T7460] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  552.398006][ T7460] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  552.414220][ T7460] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  552.422088][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  552.428945][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  552.443581][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 14ms
[  552.451028][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  552.456217][ T7460] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  552.464492][ T7460] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  552.479310][ T7460] CPU: 0 UID: 0 PID: 7460 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  552.479331][ T7460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  552.479341][ T7460] Call Trace:
[  552.479346][ T7460]  <TASK>
[  552.479351][ T7460]  dump_stack_lvl+0x97/0xe0
[  552.479372][ T7460]  gfs2_withdraw.cold+0xa/0x77
[  552.479383][ T7460]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  552.479395][ T7460]  inode_go_inval+0x1df/0x1f0
[  552.479412][ T7460]  gfs2_make_fs_rw+0x34/0xf0
[  552.479421][ T7460]  gfs2_fill_super+0xfbb/0x1210
[  552.479440][ T7460]  ? gfs2_fill_super+0xa23/0x1210
[  552.479456][ T7460]  ? setup_bdev_super+0x19d/0x330
[  552.479468][ T7460]  ? __pfx_gfs2_fill_super+0x10/0x10
[  552.479484][ T7460]  get_tree_bdev_flags+0x1c0/0x290
[  552.479498][ T7460]  gfs2_get_tree+0x26/0xd0
[  552.479513][ T7460]  vfs_get_tree+0x30/0x120
[  552.479523][ T7460]  path_mount+0x5a9/0x1360
[  552.479541][ T7460]  __x64_sys_mount+0x1a3/0x1e0
[  552.479558][ T7460]  do_syscall_64+0xe2/0xf80
[  552.479576][ T7460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.479587][ T7460] RIP: 0033:0x7f23dcf4232a
[  552.479595][ T7460] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  552.479606][ T7460] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  552.479616][ T7460] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  552.479623][ T7460] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  552.479630][ T7460] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  552.479636][ T7460] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  552.479643][ T7460] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  552.479651][ T7460]  </TASK>
[  552.479656][ T7460] CPU: 0 UID: 0 PID: 7460 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  552.479668][ T7460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  552.479674][ T7460] Call Trace:
[  552.479676][ T7460]  <TASK>
[  552.479679][ T7460]  dump_stack_lvl+0x97/0xe0
[  552.479692][ T7460]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  552.479703][ T7460]  inode_go_inval+0x1df/0x1f0
[  552.479718][ T7460]  gfs2_make_fs_rw+0x34/0xf0
[  552.479727][ T7460]  gfs2_fill_super+0xfbb/0x1210
[  552.479743][ T7460]  ? gfs2_fill_super+0xa23/0x1210
[  552.479760][ T7460]  ? setup_bdev_super+0x19d/0x330
[  552.479770][ T7460]  ? __pfx_gfs2_fill_super+0x10/0x10
[  552.479787][ T7460]  get_tree_bdev_flags+0x1c0/0x290
[  552.479800][ T7460]  gfs2_get_tree+0x26/0xd0
[  552.479815][ T7460]  vfs_get_tree+0x30/0x120
[  552.479825][ T7460]  path_mount+0x5a9/0x1360
[  552.479842][ T7460]  __x64_sys_mount+0x1a3/0x1e0
[  552.479859][ T7460]  do_syscall_64+0xe2/0xf80
[  552.479875][ T7460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.479885][ T7460] RIP: 0033:0x7f23dcf4232a
[  552.479892][ T7460] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  552.479902][ T7460] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  552.479911][ T7460] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  552.479918][ T7460] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  552.479924][ T7460] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  552.479930][ T7460] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  552.479937][ T7460] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  552.479945][ T7460]  </TASK>
[  552.480045][ T7460] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[  556.491236][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  556.497500][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
executing program
[  558.503652][ T7466] loop0: detected capacity change from 0 to 32768
[  558.512015][ T7466] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  558.520226][ T7466] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  558.532354][ T7466] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  558.540157][   T41] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  558.547026][   T41] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  558.560341][   T41] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  558.567779][   T41] gfs2: fsid=syz:syz.0: jid=0: Done
[  558.572987][ T7466] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  558.581011][ T6848] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  558.595798][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  558.595815][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  558.595823][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  558.595843][ T6848] Call Trace:
[  558.595846][ T6848]  <TASK>
[  558.595849][ T6848]  dump_stack_lvl+0x97/0xe0
[  558.595864][ T6848]  gfs2_withdraw.cold+0xa/0x77
[  558.595880][ T6848]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  558.595891][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  558.595906][ T6848]  inode_go_inval+0x1df/0x1f0
[  558.595921][ T6848]  do_xmote+0x12a/0x310
[  558.595935][ T6848]  run_queue+0x288/0x300
[  558.595948][ T6848]  glock_work_func+0xac/0x280
[  558.595962][ T6848]  process_one_work+0x26c/0x5d0
[  558.595975][ T6848]  worker_thread+0x243/0x490
[  558.595988][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  558.596000][ T6848]  kthread+0x14e/0x1a0
[  558.596016][ T6848]  ? __pfx_kthread+0x10/0x10
[  558.596032][ T6848]  ret_from_fork+0x23c/0x4b0
[  558.596053][ T6848]  ? __pfx_kthread+0x10/0x10
[  558.596076][ T6848]  ret_from_fork_asm+0x1a/0x30
[  558.596094][ T6848]  </TASK>
[  558.596099][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full) 
[  558.596111][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  558.596117][ T6848] Workqueue: gfs2-glock/syz:syz glock_work_func
[  558.596131][ T6848] Call Trace:
[  558.596134][ T6848]  <TASK>
[  558.596137][ T6848]  dump_stack_lvl+0x97/0xe0
[  558.596149][ T6848]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  558.596160][ T6848]  ? __pfx_inode_go_inval+0x10/0x10
[  558.596176][ T6848]  inode_go_inval+0x1df/0x1f0
[  558.596191][ T6848]  do_xmote+0x12a/0x310
[  558.596204][ T6848]  run_queue+0x288/0x300
[  558.596217][ T6848]  glock_work_func+0xac/0x280
[  558.596231][ T6848]  process_one_work+0x26c/0x5d0
[  558.596243][ T6848]  worker_thread+0x243/0x490
[  558.596256][ T6848]  ? __pfx_worker_thread+0x10/0x10
[  558.596268][ T6848]  kthread+0x14e/0x1a0
[  558.596283][ T6848]  ? __pfx_kthread+0x10/0x10
[  558.596299][ T6848]  ret_from_fork+0x23c/0x4b0
[  558.596315][ T6848]  ? __pfx_kthread+0x10/0x10
[  558.596330][ T6848]  ret_from_fork_asm+0x1a/0x30
[  558.596347][ T6848]  </TASK>
[  558.596662][ T7466] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  564.468777][ T7473] loop0: detected capacity change from 0 to 32768
[  564.479092][ T7473] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  564.487569][ T7473] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  564.500173][ T7473] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  564.508180][ T5841] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  564.515005][ T5841] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  564.530831][ T5841] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 15ms
[  564.538228][ T5841] gfs2: fsid=syz:syz.0: jid=0: Done
[  564.543514][ T7473] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  564.551735][ T7473] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  564.566628][ T7473] CPU: 0 UID: 0 PID: 7473 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  564.566649][ T7473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  564.566658][ T7473] Call Trace:
[  564.566661][ T7473]  <TASK>
[  564.566664][ T7473]  dump_stack_lvl+0x97/0xe0
[  564.566681][ T7473]  gfs2_withdraw.cold+0xa/0x77
[  564.566693][ T7473]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  564.566705][ T7473]  inode_go_inval+0x1df/0x1f0
[  564.566721][ T7473]  gfs2_make_fs_rw+0x34/0xf0
[  564.566731][ T7473]  gfs2_fill_super+0xfbb/0x1210
[  564.566747][ T7473]  ? gfs2_fill_super+0xa23/0x1210
[  564.566764][ T7473]  ? setup_bdev_super+0x19d/0x330
[  564.566776][ T7473]  ? __pfx_gfs2_fill_super+0x10/0x10
[  564.566792][ T7473]  get_tree_bdev_flags+0x1c0/0x290
[  564.566806][ T7473]  gfs2_get_tree+0x26/0xd0
[  564.566821][ T7473]  vfs_get_tree+0x30/0x120
[  564.566832][ T7473]  path_mount+0x5a9/0x1360
[  564.566850][ T7473]  __x64_sys_mount+0x1a3/0x1e0
[  564.566867][ T7473]  do_syscall_64+0xe2/0xf80
[  564.566884][ T7473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.566895][ T7473] RIP: 0033:0x7f23dcf4232a
[  564.566904][ T7473] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  564.566914][ T7473] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  564.566924][ T7473] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  564.566931][ T7473] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  564.566938][ T7473] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  564.566944][ T7473] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  564.566951][ T7473] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  564.566959][ T7473]  </TASK>
[  564.566963][ T7473] CPU: 0 UID: 0 PID: 7473 Comm: syz-executor127 Not tainted syzkaller #0 PREEMPT(full) 
[  564.566975][ T7473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  564.566981][ T7473] Call Trace:
[  564.566983][ T7473]  <TASK>
[  564.566986][ T7473]  dump_stack_lvl+0x97/0xe0
[  564.566999][ T7473]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  564.567010][ T7473]  inode_go_inval+0x1df/0x1f0
[  564.567025][ T7473]  gfs2_make_fs_rw+0x34/0xf0
[  564.567034][ T7473]  gfs2_fill_super+0xfbb/0x1210
[  564.567050][ T7473]  ? gfs2_fill_super+0xa23/0x1210
[  564.567066][ T7473]  ? setup_bdev_super+0x19d/0x330
[  564.567077][ T7473]  ? __pfx_gfs2_fill_super+0x10/0x10
[  564.567093][ T7473]  get_tree_bdev_flags+0x1c0/0x290
[  564.567107][ T7473]  gfs2_get_tree+0x26/0xd0
[  564.567121][ T7473]  vfs_get_tree+0x30/0x120
[  564.567131][ T7473]  path_mount+0x5a9/0x1360
[  564.567149][ T7473]  __x64_sys_mount+0x1a3/0x1e0
[  564.567166][ T7473]  do_syscall_64+0xe2/0xf80
[  564.567182][ T7473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.567192][ T7473] RIP: 0033:0x7f23dcf4232a
[  564.567199][ T7473] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[  564.567211][ T7473] RSP: 002b:00007ffed9ea3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  564.567220][ T7473] RAX: ffffffffffffffda RBX: 00007ffed9ea3f10 RCX: 00007f23dcf4232a
[  564.567227][ T7473] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffed9ea3f10
[  564.567233][ T7473] RBP: 0000200000037f80 R08: 00007ffed9ea3f50 R09: 0000000000000000
[  564.567240][ T7473] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[  564.567246][ T7473] R13: 00007ffed9ea3f50 R14: 0000000000000003 R15: 0000000000210000
[  564.567254][ T7473]  </TASK>
[  564.567370][ T7473] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[  570.582255][ T7480] loop0: detected capacity change from 0 to 32768
[  570.592251][ T7480] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  570.600406][ T7480] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  570.611546][ T7480] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  570.619378][ T5841] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  570.626504][ T5841] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  570.639679][ T5841] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[  570.647415][ T5841] gfs2: fsid=syz:syz.0: jid=0: Done
[  570.652628][ T7480] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  570.660759][ T7349] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[  570.675552][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  570.675572][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  570.675580][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  570.675606][ T7349] Call Trace:
[  570.675611][ T7349]  <TASK>
[  570.675616][ T7349]  dump_stack_lvl+0x97/0xe0
[  570.675634][ T7349]  gfs2_withdraw.cold+0xa/0x77
[  570.675645][ T7349]  gfs2_assert_withdraw_i.cold+0x2c/0x36
[  570.675656][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  570.675671][ T7349]  inode_go_inval+0x1df/0x1f0
[  570.675687][ T7349]  do_xmote+0x12a/0x310
[  570.675700][ T7349]  run_queue+0x288/0x300
[  570.675714][ T7349]  glock_work_func+0xac/0x280
[  570.675728][ T7349]  process_one_work+0x26c/0x5d0
[  570.675741][ T7349]  worker_thread+0x243/0x490
[  570.675753][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  570.675766][ T7349]  kthread+0x14e/0x1a0
[  570.675782][ T7349]  ? __pfx_kthread+0x10/0x10
[  570.675797][ T7349]  ret_from_fork+0x23c/0x4b0
[  570.675819][ T7349]  ? __pfx_kthread+0x10/0x10
[  570.675835][ T7349]  ret_from_fork_asm+0x1a/0x30
[  570.675852][ T7349]  </TASK>
[  570.675856][ T7349] CPU: 0 UID: 0 PID: 7349 Comm: kworker/0:1H Not tainted syzkaller #0 PREEMPT(full) 
[  570.675868][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  570.675875][ T7349] Workqueue: gfs2-glock/syz:syz glock_work_func
[  570.675889][ T7349] Call Trace:
[  570.675891][ T7349]  <TASK>
[  570.675894][ T7349]  dump_stack_lvl+0x97/0xe0
[  570.675907][ T7349]  gfs2_assert_withdraw_i.cold+0x31/0x36
[  570.675918][ T7349]  ? __pfx_inode_go_inval+0x10/0x10
[  570.675933][ T7349]  inode_go_inval+0x1df/0x1f0
[  570.675948][ T7349]  do_xmote+0x12a/0x310
[  570.675961][ T7349]  run_queue+0x288/0x300
[  570.675974][ T7349]  glock_work_func+0xac/0x280
[  570.675988][ T7349]  process_one_work+0x26c/0x5d0
[  570.676001][ T7349]  worker_thread+0x243/0x490
[  570.676013][ T7349]  ? __pfx_worker_thread+0x10/0x10
[  570.676026][ T7349]  kthread+0x14e/0x1a0
[  570.676041][ T7349]  ? __pfx_kthread+0x10/0x10
[  570.676057][ T7349]  ret_from_fork+0x23c/0x4b0
[  570.676072][ T7349]  ? __pfx_kthread+0x10/0x10
[  570.676088][ T7349]  ret_from_fork_asm+0x1a/0x30
[  570.676104][ T7349]  </TASK>
[  570.676312][ T7480] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed