1
[ 626.283445][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.283735][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.284161][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.284194][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.285054][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.285091][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.285469][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.289345][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.289392][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.290611][ T8519] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 1ms
[ 626.293113][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.294270][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.294485][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.296179][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.296578][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.297264][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.299186][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.301920][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.304959][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.305712][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.308672][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.309453][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.310370][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.312884][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.313577][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.315722][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.319546][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.320268][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.322389][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.323375][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.325666][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.325710][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.326538][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.331425][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.339933][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.341232][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[ 626.385874][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.388874][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.391343][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.412850][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.415063][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.449400][ T8519] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 626.459435][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.460278][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.463768][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 626.464624][ T8519] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 626.464642][ T8519] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 626.464669][ T8519] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 626.464698][ T8519] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8519 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 626.464735][ T8519] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 626.464763][ T8519] CPU: 1 UID: 0 PID: 8519 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 626.464785][ T8519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 626.464797][ T8519] Call Trace:
[ 626.464805][ T8519]
[ 626.464813][ T8519] dump_stack_lvl+0xe8/0x150
[ 626.464857][ T8519] gfs2_withdraw+0xc3/0x1b0
[ 626.464879][ T8519] gfs2_dirent_scan+0x545/0x690
[ 626.464903][ T8519] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 626.464928][ T8519] gfs2_dirent_search+0x358/0x920
[ 626.464952][ T8519] ? gfs2_permission+0x383/0x460
[ 626.464972][ T8519] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 626.464994][ T8519] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 626.465016][ T8519] ? __pfx_gfs2_permission+0x10/0x10
[ 626.465052][ T8519] gfs2_dir_search+0x4c/0x220
[ 626.465077][ T8519] gfs2_lookupi+0x45e/0x640
[ 626.465102][ T8519] ? __pfx_gfs2_lookupi+0x10/0x10
[ 626.465119][ T8519] ? d_alloc_parallel+0x14c4/0x1610
[ 626.465146][ T8519] ? __gfs2_lookup+0xac/0x2a0
[ 626.465170][ T8519] ? d_alloc_parallel+0x366/0x1610
[ 626.465198][ T8519] __gfs2_lookup+0xac/0x2a0
[ 626.465224][ T8519] ? __pfx___gfs2_lookup+0x10/0x10
[ 626.465246][ T8519] ? gfs2_permission+0x360/0x460
[ 626.465272][ T8519] ? __rt_spin_lock_init+0x3e/0x50
[ 626.465300][ T8519] ? __init_waitqueue_head+0xae/0x160
[ 626.465327][ T8519] __lookup_slow+0x2d2/0x440
[ 626.465354][ T8519] ? __pfx___lookup_slow+0x10/0x10
[ 626.465391][ T8519] ? down_read+0x156/0x200
[ 626.465415][ T8519] ? __pfx_down_read+0x10/0x10
[ 626.465440][ T8519] ? lookup_fast+0x192/0x5b0
[ 626.465468][ T8519] lookup_slow+0x53/0x70
[ 626.465493][ T8519] path_lookupat+0x3f5/0x8c0
[ 626.465532][ T8519] filename_lookup+0x256/0x5d0
[ 626.465560][ T8519] ? __pfx_filename_lookup+0x10/0x10
[ 626.465604][ T8519] ? __might_fault+0xaf/0x130
[ 626.465644][ T8519] vfs_statx+0xfc/0x200
[ 626.465666][ T8519] ? __pfx_vfs_statx+0x10/0x10
[ 626.465690][ T8519] ? strncpy_from_user+0x150/0x2b0
[ 626.465714][ T8519] ? do_getname+0x151/0x250
[ 626.465738][ T8519] vfs_fstatat+0x11b/0x170
[ 626.465761][ T8519] __x64_sys_newfstatat+0x151/0x200
[ 626.465787][ T8519] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 626.465808][ T8519] ? _copy_from_user+0x4c/0xb0
[ 626.465850][ T8519] ? rcu_is_watching+0x15/0xb0
[ 626.465882][ T8519] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 626.465903][ T8519] do_syscall_64+0x15f/0xf80
[ 626.465924][ T8519] ? trace_irq_disable+0x3b/0x140
[ 626.465958][ T8519] ? clear_bhb_loop+0x40/0x90
[ 626.465980][ T8519] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 626.465999][ T8519] RIP: 0033:0x7f8897166a59
[ 626.466017][ T8519] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 626.466038][ T8519] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 626.466059][ T8519] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 626.466073][ T8519] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 626.466086][ T8519] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 626.466099][ T8519] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 626.466112][ T8519] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 626.466143][ T8519]
[ 626.466576][ T8519] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 626.466644][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 626.634127][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 627.211527][ T8524] loop0: detected capacity change from 0 to 32768
[ 627.219499][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.220706][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.221772][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.221973][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.222805][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.223515][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.224099][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.225161][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.225791][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.227099][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.227700][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.229617][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.230376][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.230970][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.231578][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.232160][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.233093][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.233872][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.235277][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.239184][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.240386][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.242432][ T8524] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 627.242454][ T8524] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 627.253393][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.253446][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.261574][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.262465][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.263002][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.263992][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.264030][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.265478][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.266248][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.266573][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.267262][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.267527][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.270266][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.270590][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.271710][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.271875][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.272455][ T8524] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 627.275486][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.275601][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.275626][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.276412][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.277101][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.280271][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.281154][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.282396][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.285502][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.285542][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.285575][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.287862][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.293437][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.299432][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.301428][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.319251][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.322337][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.324450][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.345269][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.347364][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.362520][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.364057][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.365998][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[ 627.372773][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.374630][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.404172][ T8524] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 627.408234][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.409525][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.413698][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 627.414473][ T8524] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 627.414490][ T8524] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 627.414518][ T8524] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 627.414546][ T8524] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8524 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 627.414584][ T8524] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 627.414612][ T8524] CPU: 1 UID: 0 PID: 8524 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 627.414634][ T8524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 627.414645][ T8524] Call Trace:
[ 627.414652][ T8524]
[ 627.414661][ T8524] dump_stack_lvl+0xe8/0x150
[ 627.414687][ T8524] gfs2_withdraw+0xc3/0x1b0
[ 627.414709][ T8524] gfs2_dirent_scan+0x545/0x690
[ 627.414733][ T8524] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 627.414758][ T8524] gfs2_dirent_search+0x358/0x920
[ 627.414782][ T8524] ? gfs2_permission+0x383/0x460
[ 627.414801][ T8524] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 627.414824][ T8524] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 627.414846][ T8524] ? __pfx_gfs2_permission+0x10/0x10
[ 627.414876][ T8524] gfs2_dir_search+0x4c/0x220
[ 627.414900][ T8524] gfs2_lookupi+0x45e/0x640
[ 627.414928][ T8524] ? __pfx_gfs2_lookupi+0x10/0x10
[ 627.414947][ T8524] ? d_alloc_parallel+0x14c4/0x1610
[ 627.414978][ T8524] ? __gfs2_lookup+0xac/0x2a0
[ 627.415004][ T8524] ? d_alloc_parallel+0x366/0x1610
[ 627.415035][ T8524] __gfs2_lookup+0xac/0x2a0
[ 627.415062][ T8524] ? __pfx___gfs2_lookup+0x10/0x10
[ 627.415084][ T8524] ? gfs2_permission+0x360/0x460
[ 627.415110][ T8524] ? __rt_spin_lock_init+0x3e/0x50
[ 627.415138][ T8524] ? __init_waitqueue_head+0xae/0x160
[ 627.415161][ T8524] __lookup_slow+0x2d2/0x440
[ 627.415192][ T8524] ? __pfx___lookup_slow+0x10/0x10
[ 627.415244][ T8524] ? down_read+0x156/0x200
[ 627.415268][ T8524] ? __pfx_down_read+0x10/0x10
[ 627.415294][ T8524] ? lookup_fast+0x192/0x5b0
[ 627.415323][ T8524] lookup_slow+0x53/0x70
[ 627.415348][ T8524] path_lookupat+0x3f5/0x8c0
[ 627.415386][ T8524] filename_lookup+0x256/0x5d0
[ 627.415413][ T8524] ? __pfx_filename_lookup+0x10/0x10
[ 627.415458][ T8524] ? __might_fault+0xaf/0x130
[ 627.415497][ T8524] vfs_statx+0xfc/0x200
[ 627.415520][ T8524] ? __pfx_vfs_statx+0x10/0x10
[ 627.415539][ T8524] ? strncpy_from_user+0x150/0x2b0
[ 627.415564][ T8524] ? do_getname+0x151/0x250
[ 627.415588][ T8524] vfs_fstatat+0x11b/0x170
[ 627.415610][ T8524] __x64_sys_newfstatat+0x151/0x200
[ 627.415636][ T8524] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 627.415658][ T8524] ? _copy_from_user+0x4c/0xb0
[ 627.415700][ T8524] ? rcu_is_watching+0x15/0xb0
[ 627.415731][ T8524] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 627.415752][ T8524] do_syscall_64+0x15f/0xf80
[ 627.415773][ T8524] ? trace_irq_disable+0x3b/0x140
[ 627.415802][ T8524] ? clear_bhb_loop+0x40/0x90
[ 627.415824][ T8524] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 627.415843][ T8524] RIP: 0033:0x7f8897166a59
[ 627.415861][ T8524] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 627.415877][ T8524] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 627.415897][ T8524] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 627.415911][ T8524] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 627.415924][ T8524] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 627.415938][ T8524] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 627.415950][ T8524] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 627.415981][ T8524]
[ 627.416010][ T8524] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 627.416081][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 627.582063][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 628.165202][ T8529] loop0: detected capacity change from 0 to 32768
[ 628.173396][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.174499][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.175598][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.175748][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.176445][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.177076][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.177678][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.181461][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.182950][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.185978][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.186705][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.188380][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.189301][ T8529] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 628.189317][ T8529] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 628.202656][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.203410][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.205561][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.205601][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.213721][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.215103][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.215147][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.216672][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.217201][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.222522][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.222572][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.223737][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.223778][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.224669][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.225617][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.226063][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.226098][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.226477][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.227021][ T8529] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 628.228899][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.230051][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.231240][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.232938][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.233150][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.234610][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.236720][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.237351][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.240368][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.241556][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.243118][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.244502][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.246643][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.249673][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.253229][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.253908][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.255486][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.255524][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.255551][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.257841][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.262249][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.264681][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.264797][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.281587][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.283284][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.312497][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.313068][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.326432][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.327001][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.327096][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.342607][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.373157][ T8529] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 628.377000][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[ 628.378201][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.381801][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 628.382966][ T8529] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 628.382984][ T8529] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 628.383011][ T8529] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 628.383039][ T8529] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8529 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 628.383076][ T8529] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 628.383104][ T8529] CPU: 1 UID: 0 PID: 8529 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 628.383126][ T8529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 628.383138][ T8529] Call Trace:
[ 628.383145][ T8529]
[ 628.383153][ T8529] dump_stack_lvl+0xe8/0x150
[ 628.383180][ T8529] gfs2_withdraw+0xc3/0x1b0
[ 628.383203][ T8529] gfs2_dirent_scan+0x545/0x690
[ 628.383227][ T8529] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 628.383252][ T8529] gfs2_dirent_search+0x358/0x920
[ 628.383277][ T8529] ? gfs2_permission+0x383/0x460
[ 628.383297][ T8529] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 628.383319][ T8529] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 628.383340][ T8529] ? __pfx_gfs2_permission+0x10/0x10
[ 628.383370][ T8529] gfs2_dir_search+0x4c/0x220
[ 628.383395][ T8529] gfs2_lookupi+0x45e/0x640
[ 628.383423][ T8529] ? __pfx_gfs2_lookupi+0x10/0x10
[ 628.383442][ T8529] ? d_alloc_parallel+0x14c4/0x1610
[ 628.383473][ T8529] ? __gfs2_lookup+0xac/0x2a0
[ 628.383499][ T8529] ? d_alloc_parallel+0x366/0x1610
[ 628.383530][ T8529] __gfs2_lookup+0xac/0x2a0
[ 628.383555][ T8529] ? __pfx___gfs2_lookup+0x10/0x10
[ 628.383576][ T8529] ? gfs2_permission+0x360/0x460
[ 628.383603][ T8529] ? __rt_spin_lock_init+0x3e/0x50
[ 628.383631][ T8529] ? __init_waitqueue_head+0xae/0x160
[ 628.383653][ T8529] __lookup_slow+0x2d2/0x440
[ 628.383680][ T8529] ? __pfx___lookup_slow+0x10/0x10
[ 628.383720][ T8529] ? down_read+0x156/0x200
[ 628.383744][ T8529] ? __pfx_down_read+0x10/0x10
[ 628.383770][ T8529] ? lookup_fast+0x192/0x5b0
[ 628.383799][ T8529] lookup_slow+0x53/0x70
[ 628.383823][ T8529] path_lookupat+0x3f5/0x8c0
[ 628.383867][ T8529] filename_lookup+0x256/0x5d0
[ 628.383896][ T8529] ? __pfx_filename_lookup+0x10/0x10
[ 628.383939][ T8529] ? __might_fault+0xaf/0x130
[ 628.383977][ T8529] vfs_statx+0xfc/0x200
[ 628.384000][ T8529] ? __pfx_vfs_statx+0x10/0x10
[ 628.384019][ T8529] ? strncpy_from_user+0x150/0x2b0
[ 628.384043][ T8529] ? do_getname+0x151/0x250
[ 628.384066][ T8529] vfs_fstatat+0x11b/0x170
[ 628.384090][ T8529] __x64_sys_newfstatat+0x151/0x200
[ 628.384115][ T8529] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 628.384137][ T8529] ? _copy_from_user+0x4c/0xb0
[ 628.384178][ T8529] ? rcu_is_watching+0x15/0xb0
[ 628.384210][ T8529] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 628.384231][ T8529] do_syscall_64+0x15f/0xf80
[ 628.384252][ T8529] ? trace_irq_disable+0x3b/0x140
[ 628.384280][ T8529] ? clear_bhb_loop+0x40/0x90
[ 628.384304][ T8529] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 628.384322][ T8529] RIP: 0033:0x7f8897166a59
[ 628.384340][ T8529] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 628.384356][ T8529] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 628.384376][ T8529] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 628.384390][ T8529] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 628.384404][ T8529] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 628.384418][ T8529] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 628.384431][ T8529] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 628.384461][ T8529]
[ 628.384611][ T8529] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 628.384673][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 628.557876][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 629.134064][ T8533] loop0: detected capacity change from 0 to 32768
[ 629.136948][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.144314][ T8533] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 629.144339][ T8533] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 629.153485][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.154419][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.154600][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.163623][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.164834][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.165057][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.166458][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.167386][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.168877][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.169514][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.169721][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.171029][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.171679][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.171942][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.172908][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.173181][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.173284][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.173719][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.174273][ T8533] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 629.175271][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.175378][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.176181][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.179742][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.180471][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.181706][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.184441][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.185176][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.185860][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.192450][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.194077][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.197993][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.199400][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.203251][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.205384][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.206045][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.208562][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.210111][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.213092][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.213763][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.216035][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.217930][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.220616][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.222781][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.224302][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.224353][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.224382][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.226188][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.227222][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.232325][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.234007][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.266382][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.272900][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.276822][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.307618][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.309311][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.343951][ T8533] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 629.348258][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.349030][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.353061][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 629.353813][ T8533] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 629.353830][ T8533] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 629.353858][ T8533] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 629.353885][ T8533] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8533 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 629.353924][ T8533] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 629.353952][ T8533] CPU: 1 UID: 0 PID: 8533 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 629.353974][ T8533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 629.353986][ T8533] Call Trace:
[ 629.353994][ T8533]
[ 629.354001][ T8533] dump_stack_lvl+0xe8/0x150
[ 629.354028][ T8533] gfs2_withdraw+0xc3/0x1b0
[ 629.354051][ T8533] gfs2_dirent_scan+0x545/0x690
[ 629.354076][ T8533] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 629.354100][ T8533] gfs2_dirent_search+0x358/0x920
[ 629.354132][ T8533] ? gfs2_permission+0x383/0x460
[ 629.354153][ T8533] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 629.354176][ T8533] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 629.354196][ T8533] ? __pfx_gfs2_permission+0x10/0x10
[ 629.354227][ T8533] gfs2_dir_search+0x4c/0x220
[ 629.354252][ T8533] gfs2_lookupi+0x45e/0x640
[ 629.354279][ T8533] ? __pfx_gfs2_lookupi+0x10/0x10
[ 629.354299][ T8533] ? d_alloc_parallel+0x14c4/0x1610
[ 629.354330][ T8533] ? __gfs2_lookup+0xac/0x2a0
[ 629.354356][ T8533] ? d_alloc_parallel+0x366/0x1610
[ 629.354386][ T8533] __gfs2_lookup+0xac/0x2a0
[ 629.354412][ T8533] ? __pfx___gfs2_lookup+0x10/0x10
[ 629.354435][ T8533] ? gfs2_permission+0x360/0x460
[ 629.354461][ T8533] ? __rt_spin_lock_init+0x3e/0x50
[ 629.354489][ T8533] ? __init_waitqueue_head+0xae/0x160
[ 629.354513][ T8533] __lookup_slow+0x2d2/0x440
[ 629.354540][ T8533] ? __pfx___lookup_slow+0x10/0x10
[ 629.354577][ T8533] ? down_read+0x156/0x200
[ 629.354600][ T8533] ? __pfx_down_read+0x10/0x10
[ 629.354629][ T8533] ? lookup_fast+0x192/0x5b0
[ 629.354658][ T8533] lookup_slow+0x53/0x70
[ 629.354683][ T8533] path_lookupat+0x3f5/0x8c0
executing program
[ 629.354721][ T8533] filename_lookup+0x256/0x5d0
[ 629.354751][ T8533] ? __pfx_filename_lookup+0x10/0x10
[ 629.354795][ T8533] ? __might_fault+0xaf/0x130
[ 629.354834][ T8533] vfs_statx+0xfc/0x200
[ 629.354858][ T8533] ? __pfx_vfs_statx+0x10/0x10
[ 629.354877][ T8533] ? strncpy_from_user+0x150/0x2b0
[ 629.354902][ T8533] ? do_getname+0x151/0x250
[ 629.354924][ T8533] vfs_fstatat+0x11b/0x170
[ 629.354946][ T8533] __x64_sys_newfstatat+0x151/0x200
[ 629.354971][ T8533] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 629.354993][ T8533] ? _copy_from_user+0x4c/0xb0
[ 629.355035][ T8533] ? rcu_is_watching+0x15/0xb0
[ 629.355067][ T8533] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 629.355088][ T8533] do_syscall_64+0x15f/0xf80
[ 629.355116][ T8533] ? trace_irq_disable+0x3b/0x140
[ 629.355144][ T8533] ? clear_bhb_loop+0x40/0x90
[ 629.355168][ T8533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 629.355186][ T8533] RIP: 0033:0x7f8897166a59
[ 629.355204][ T8533] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 629.355220][ T8533] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 629.355240][ T8533] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 629.355255][ T8533] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 629.355268][ T8533] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 629.355282][ T8533] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 629.355295][ T8533] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 629.355325][ T8533]
[ 629.355441][ T8533] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 629.355503][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 629.692291][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 630.156514][ T8540] loop0: detected capacity change from 0 to 32768
[ 630.160060][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.168209][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.173274][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.174082][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.174749][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.175430][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.176188][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.180223][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.181000][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.182027][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.182694][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.183353][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.184050][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.184637][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.185252][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.185878][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.189270][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.191245][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.193983][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.196365][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.199283][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.199969][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.200652][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.201263][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.201960][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.202635][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.203368][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.204142][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.205578][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.206257][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.206907][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.209491][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.211745][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.211788][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.211835][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.214732][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.280405][ T8540] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 630.280424][ T8540] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 630.292978][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.314778][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.315641][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.316827][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.321333][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.321650][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.321958][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.322271][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.322509][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.322805][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.323362][ T8540] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 630.324365][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.324472][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.326586][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.367588][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.371715][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.389030][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.391130][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.393379][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.406882][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.411620][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.453733][ T8540] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 630.460086][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.460905][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.471879][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 630.472669][ T8540] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 630.472687][ T8540] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 630.472713][ T8540] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 630.472742][ T8540] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8540 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 630.472780][ T8540] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 630.472809][ T8540] CPU: 0 UID: 0 PID: 8540 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 630.472830][ T8540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 630.472842][ T8540] Call Trace:
[ 630.472849][ T8540]
[ 630.472858][ T8540] dump_stack_lvl+0xe8/0x150
[ 630.472885][ T8540] gfs2_withdraw+0xc3/0x1b0
[ 630.472907][ T8540] gfs2_dirent_scan+0x545/0x690
[ 630.472931][ T8540] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 630.472957][ T8540] gfs2_dirent_search+0x358/0x920
[ 630.472982][ T8540] ? gfs2_permission+0x383/0x460
[ 630.473008][ T8540] ? __pfx_gfs2_dirent_find+0x10/0x10
executing program
[ 630.473031][ T8540] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 630.473052][ T8540] ? __pfx_gfs2_permission+0x10/0x10
[ 630.473083][ T8540] gfs2_dir_search+0x4c/0x220
[ 630.473108][ T8540] gfs2_lookupi+0x45e/0x640
[ 630.473135][ T8540] ? __pfx_gfs2_lookupi+0x10/0x10
[ 630.473155][ T8540] ? d_alloc_parallel+0x14c4/0x1610
[ 630.473187][ T8540] ? __gfs2_lookup+0xac/0x2a0
[ 630.473213][ T8540] ? d_alloc_parallel+0x366/0x1610
[ 630.473244][ T8540] __gfs2_lookup+0xac/0x2a0
[ 630.473270][ T8540] ? __pfx___gfs2_lookup+0x10/0x10
[ 630.473292][ T8540] ? gfs2_permission+0x360/0x460
[ 630.473319][ T8540] ? __rt_spin_lock_init+0x3e/0x50
[ 630.473347][ T8540] ? __init_waitqueue_head+0xae/0x160
[ 630.473375][ T8540] __lookup_slow+0x2d2/0x440
[ 630.473403][ T8540] ? __pfx___lookup_slow+0x10/0x10
[ 630.473439][ T8540] ? down_read+0x156/0x200
[ 630.473463][ T8540] ? __pfx_down_read+0x10/0x10
[ 630.473489][ T8540] ? lookup_fast+0x192/0x5b0
[ 630.473518][ T8540] lookup_slow+0x53/0x70
[ 630.473542][ T8540] path_lookupat+0x3f5/0x8c0
[ 630.473580][ T8540] filename_lookup+0x256/0x5d0
[ 630.473609][ T8540] ? __pfx_filename_lookup+0x10/0x10
[ 630.473653][ T8540] ? __might_fault+0xaf/0x130
[ 630.473693][ T8540] vfs_statx+0xfc/0x200
[ 630.473716][ T8540] ? __pfx_vfs_statx+0x10/0x10
[ 630.473735][ T8540] ? strncpy_from_user+0x150/0x2b0
[ 630.473759][ T8540] ? do_getname+0x151/0x250
[ 630.473783][ T8540] vfs_fstatat+0x11b/0x170
[ 630.473808][ T8540] __x64_sys_newfstatat+0x151/0x200
[ 630.473833][ T8540] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 630.473854][ T8540] ? _copy_from_user+0x4c/0xb0
[ 630.473896][ T8540] ? rcu_is_watching+0x15/0xb0
[ 630.473928][ T8540] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 630.473949][ T8540] do_syscall_64+0x15f/0xf80
[ 630.473971][ T8540] ? trace_irq_disable+0x3b/0x140
[ 630.474004][ T8540] ? clear_bhb_loop+0x40/0x90
[ 630.474027][ T8540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 630.474046][ T8540] RIP: 0033:0x7f8897166a59
[ 630.474064][ T8540] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 630.474080][ T8540] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 630.474100][ T8540] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 630.474114][ T8540] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 630.474128][ T8540] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 630.474142][ T8540] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 630.474154][ T8540] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 630.474184][ T8540]
[ 630.474212][ T8540] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 630.474283][ T5687] gfs2: fsid=syz:syz.s: file system withdrawn
[ 630.637837][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 631.125306][ T8545] loop0: detected capacity change from 0 to 32768
[ 631.130787][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.132818][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.133494][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.134202][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.134864][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.135609][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.136320][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.139398][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.140152][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.141221][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.141900][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.142802][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.143537][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.144269][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.145132][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.145940][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.146661][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.147379][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.151240][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.152077][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.154374][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.155076][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.155764][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.156704][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.157401][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.159466][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.161089][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.164781][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.165697][ T8545] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 631.165712][ T8545] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 631.173832][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.175289][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.181440][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.181483][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.189625][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.189675][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.189705][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.192387][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.193046][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.211016][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.211765][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.212858][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.213100][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.213345][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.213598][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.213834][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.214225][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.216484][ T8545] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 631.219081][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.219201][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.227495][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.230981][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.255532][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.256815][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.262744][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.297865][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.298567][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.304200][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.307650][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.308353][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.317971][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.318644][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.321402][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.322051][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.323066][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.325652][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.326303][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.326599][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.327248][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.331014][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.333179][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.333818][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.334454][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.336576][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.337279][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.340314][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.341032][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[ 631.343163][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.346073][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.346742][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.352603][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.353274][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.355519][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.356181][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.358892][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.361167][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.363346][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.366233][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.366877][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.367595][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.371604][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.371649][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.372146][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.374842][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.378592][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.393581][ T8545] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 631.399313][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.400111][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.405682][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 631.408894][ T8545] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 631.408921][ T8545] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 631.408952][ T8545] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 631.408982][ T8545] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8545 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 631.409020][ T8545] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 631.409048][ T8545] CPU: 0 UID: 0 PID: 8545 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 631.409069][ T8545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 631.409081][ T8545] Call Trace:
[ 631.409089][ T8545]
[ 631.409096][ T8545] dump_stack_lvl+0xe8/0x150
[ 631.409123][ T8545] gfs2_withdraw+0xc3/0x1b0
[ 631.409146][ T8545] gfs2_dirent_scan+0x545/0x690
[ 631.409169][ T8545] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 631.409194][ T8545] gfs2_dirent_search+0x358/0x920
[ 631.409219][ T8545] ? gfs2_permission+0x383/0x460
[ 631.409239][ T8545] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 631.409260][ T8545] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 631.409282][ T8545] ? __pfx_gfs2_permission+0x10/0x10
[ 631.409311][ T8545] gfs2_dir_search+0x4c/0x220
[ 631.409335][ T8545] gfs2_lookupi+0x45e/0x640
[ 631.409363][ T8545] ? __pfx_gfs2_lookupi+0x10/0x10
[ 631.409383][ T8545] ? d_alloc_parallel+0x14c4/0x1610
[ 631.409413][ T8545] ? __gfs2_lookup+0xac/0x2a0
[ 631.409439][ T8545] ? d_alloc_parallel+0x366/0x1610
[ 631.409470][ T8545] __gfs2_lookup+0xac/0x2a0
[ 631.409495][ T8545] ? __pfx___gfs2_lookup+0x10/0x10
[ 631.409517][ T8545] ? gfs2_permission+0x360/0x460
[ 631.409543][ T8545] ? __rt_spin_lock_init+0x3e/0x50
[ 631.409572][ T8545] ? __init_waitqueue_head+0xae/0x160
[ 631.409594][ T8545] __lookup_slow+0x2d2/0x440
[ 631.409622][ T8545] ? __pfx___lookup_slow+0x10/0x10
[ 631.409658][ T8545] ? down_read+0x156/0x200
[ 631.409727][ T8545] ? __pfx_down_read+0x10/0x10
[ 631.409753][ T8545] ? lookup_fast+0x192/0x5b0
[ 631.409782][ T8545] lookup_slow+0x53/0x70
[ 631.409806][ T8545] path_lookupat+0x3f5/0x8c0
[ 631.409844][ T8545] filename_lookup+0x256/0x5d0
[ 631.409873][ T8545] ? __pfx_filename_lookup+0x10/0x10
[ 631.409916][ T8545] ? __might_fault+0xaf/0x130
[ 631.410004][ T8545] vfs_statx+0xfc/0x200
[ 631.410032][ T8545] ? __pfx_vfs_statx+0x10/0x10
[ 631.410052][ T8545] ? strncpy_from_user+0x150/0x2b0
[ 631.410077][ T8545] ? do_getname+0x151/0x250
[ 631.410101][ T8545] vfs_fstatat+0x11b/0x170
[ 631.410125][ T8545] __x64_sys_newfstatat+0x151/0x200
[ 631.410151][ T8545] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 631.410173][ T8545] ? _copy_from_user+0x4c/0xb0
[ 631.410216][ T8545] ? rcu_is_watching+0x15/0xb0
[ 631.410247][ T8545] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 631.410270][ T8545] do_syscall_64+0x15f/0xf80
[ 631.410292][ T8545] ? trace_irq_disable+0x3b/0x140
[ 631.410320][ T8545] ? clear_bhb_loop+0x40/0x90
[ 631.410344][ T8545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 631.410363][ T8545] RIP: 0033:0x7f8897166a59
[ 631.410382][ T8545] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 631.410398][ T8545] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 631.410419][ T8545] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 631.410434][ T8545] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 631.410447][ T8545] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 631.410460][ T8545] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 631.410473][ T8545] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 631.410503][ T8545]
[ 631.412016][ T8545] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 631.412094][ T5687] gfs2: fsid=syz:syz.s: file system withdrawn
[ 631.572582][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 632.153101][ T8549] loop0: detected capacity change from 0 to 32768
[ 632.161729][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.162803][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.163634][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.164428][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.166020][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.167980][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.169844][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.174748][ T8549] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 632.174764][ T8549] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 632.185085][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.186110][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.188646][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.188694][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.195557][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.195940][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.197137][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.197175][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.199440][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.200559][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.200975][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.201008][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.201852][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.201897][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.202705][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.203287][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.203707][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.204386][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.204421][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.205074][ T8549] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 632.206603][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.206713][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.207557][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.208499][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.214116][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.216338][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.217034][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.217637][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.219282][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.222447][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.223249][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.225401][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.226069][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.226753][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.228195][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.230754][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.233015][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.235208][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.235991][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.238081][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.238635][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.239155][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[ 632.243081][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.243123][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.243152][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.244346][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.248250][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.261318][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.263300][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.283510][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.284161][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.300953][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.301583][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.303440][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.317140][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.363569][ T8549] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 632.368893][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.369649][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.373250][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 632.374079][ T8549] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 632.374097][ T8549] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 632.374125][ T8549] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 632.374154][ T8549] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8549 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 632.374192][ T8549] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 632.374220][ T8549] CPU: 0 UID: 0 PID: 8549 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 632.374242][ T8549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 632.374255][ T8549] Call Trace:
[ 632.374262][ T8549]
[ 632.374271][ T8549] dump_stack_lvl+0xe8/0x150
[ 632.374297][ T8549] gfs2_withdraw+0xc3/0x1b0
[ 632.374320][ T8549] gfs2_dirent_scan+0x545/0x690
[ 632.374345][ T8549] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 632.374370][ T8549] gfs2_dirent_search+0x358/0x920
[ 632.374394][ T8549] ? gfs2_permission+0x383/0x460
[ 632.374415][ T8549] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 632.374437][ T8549] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 632.374458][ T8549] ? __pfx_gfs2_permission+0x10/0x10
[ 632.374488][ T8549] gfs2_dir_search+0x4c/0x220
[ 632.374513][ T8549] gfs2_lookupi+0x45e/0x640
[ 632.374540][ T8549] ? __pfx_gfs2_lookupi+0x10/0x10
[ 632.374560][ T8549] ? d_alloc_parallel+0x14c4/0x1610
[ 632.374598][ T8549] ? __gfs2_lookup+0xac/0x2a0
[ 632.374624][ T8549] ? d_alloc_parallel+0x366/0x1610
[ 632.374658][ T8549] __gfs2_lookup+0xac/0x2a0
[ 632.374684][ T8549] ? __pfx___gfs2_lookup+0x10/0x10
[ 632.374706][ T8549] ? gfs2_permission+0x360/0x460
[ 632.374733][ T8549] ? __rt_spin_lock_init+0x3e/0x50
[ 632.374761][ T8549] ? __init_waitqueue_head+0xae/0x160
[ 632.374784][ T8549] __lookup_slow+0x2d2/0x440
[ 632.374811][ T8549] ? __pfx___lookup_slow+0x10/0x10
[ 632.374848][ T8549] ? down_read+0x156/0x200
[ 632.374871][ T8549] ? __pfx_down_read+0x10/0x10
[ 632.374897][ T8549] ? lookup_fast+0x192/0x5b0
[ 632.374925][ T8549] lookup_slow+0x53/0x70
[ 632.374950][ T8549] path_lookupat+0x3f5/0x8c0
[ 632.374988][ T8549] filename_lookup+0x256/0x5d0
[ 632.375016][ T8549] ? __pfx_filename_lookup+0x10/0x10
[ 632.375060][ T8549] ? __might_fault+0xaf/0x130
[ 632.375098][ T8549] vfs_statx+0xfc/0x200
[ 632.375122][ T8549] ? __pfx_vfs_statx+0x10/0x10
[ 632.375140][ T8549] ? strncpy_from_user+0x150/0x2b0
[ 632.375165][ T8549] ? do_getname+0x151/0x250
[ 632.375187][ T8549] vfs_fstatat+0x11b/0x170
[ 632.375211][ T8549] __x64_sys_newfstatat+0x151/0x200
[ 632.375236][ T8549] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 632.375258][ T8549] ? _copy_from_user+0x4c/0xb0
[ 632.375300][ T8549] ? rcu_is_watching+0x15/0xb0
[ 632.375331][ T8549] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 632.375352][ T8549] do_syscall_64+0x15f/0xf80
[ 632.375374][ T8549] ? trace_irq_disable+0x3b/0x140
[ 632.375401][ T8549] ? clear_bhb_loop+0x40/0x90
[ 632.375423][ T8549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 632.375442][ T8549] RIP: 0033:0x7f8897166a59
[ 632.375460][ T8549] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 632.375476][ T8549] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 632.375496][ T8549] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 632.375511][ T8549] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 632.375524][ T8549] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 632.375537][ T8549] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 632.375550][ T8549] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 632.375591][ T8549]
[ 632.376172][ T8549] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 632.376235][ T5687] gfs2: fsid=syz:syz.s: file system withdrawn
[ 632.556552][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 633.129941][ T8553] loop0: detected capacity change from 0 to 32768
[ 633.141889][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.143478][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.145186][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.145975][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.146671][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.147366][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.148983][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.150156][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.150843][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.151878][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.152579][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.153240][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.153911][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.154681][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.156962][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.157623][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.159694][ T8553] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 633.159710][ T8553] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 633.165136][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.172862][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.173799][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.180962][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.182090][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.182267][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.183011][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.184078][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.184352][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.184691][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.184971][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.185258][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.185609][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.186173][ T8553] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 633.187466][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.187577][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.190646][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.192875][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.193575][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.196398][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.197870][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.199562][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.201163][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.203352][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.204092][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.221344][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.223077][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.224791][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.225747][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.230697][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.233091][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.233816][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.235391][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.235495][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.235589][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.237185][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.241409][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.274955][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.276070][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.284206][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.284657][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.310779][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.311812][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.346936][ T8553] gfs2: fsid=syz:syz.s: first mount done, others may mount
executing program
[ 633.353161][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.354231][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.358444][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 633.360048][ T8553] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 633.360066][ T8553] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 633.360093][ T8553] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 633.360122][ T8553] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8553 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 633.360174][ T8553] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 633.360203][ T8553] CPU: 0 UID: 0 PID: 8553 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 633.360226][ T8553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 633.360238][ T8553] Call Trace:
[ 633.360245][ T8553]
[ 633.360253][ T8553] dump_stack_lvl+0xe8/0x150
[ 633.360279][ T8553] gfs2_withdraw+0xc3/0x1b0
[ 633.360302][ T8553] gfs2_dirent_scan+0x545/0x690
[ 633.360326][ T8553] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 633.360351][ T8553] gfs2_dirent_search+0x358/0x920
[ 633.360375][ T8553] ? gfs2_permission+0x383/0x460
[ 633.360395][ T8553] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 633.360419][ T8553] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 633.360440][ T8553] ? __pfx_gfs2_permission+0x10/0x10
[ 633.360470][ T8553] gfs2_dir_search+0x4c/0x220
[ 633.360496][ T8553] gfs2_lookupi+0x45e/0x640
[ 633.360522][ T8553] ? __pfx_gfs2_lookupi+0x10/0x10
[ 633.360541][ T8553] ? d_alloc_parallel+0x14c4/0x1610
[ 633.360572][ T8553] ? __gfs2_lookup+0xac/0x2a0
[ 633.360598][ T8553] ? d_alloc_parallel+0x366/0x1610
[ 633.360629][ T8553] __gfs2_lookup+0xac/0x2a0
[ 633.360655][ T8553] ? __pfx___gfs2_lookup+0x10/0x10
[ 633.360678][ T8553] ? gfs2_permission+0x360/0x460
[ 633.360707][ T8553] ? __rt_spin_lock_init+0x3e/0x50
[ 633.360735][ T8553] ? __init_waitqueue_head+0xae/0x160
[ 633.360759][ T8553] __lookup_slow+0x2d2/0x440
[ 633.360792][ T8553] ? __pfx___lookup_slow+0x10/0x10
[ 633.360828][ T8553] ? down_read+0x156/0x200
[ 633.360852][ T8553] ? __pfx_down_read+0x10/0x10
[ 633.360878][ T8553] ? lookup_fast+0x192/0x5b0
[ 633.360907][ T8553] lookup_slow+0x53/0x70
[ 633.360931][ T8553] path_lookupat+0x3f5/0x8c0
[ 633.360970][ T8553] filename_lookup+0x256/0x5d0
[ 633.360998][ T8553] ? __pfx_filename_lookup+0x10/0x10
[ 633.361042][ T8553] ? __might_fault+0xaf/0x130
[ 633.361081][ T8553] vfs_statx+0xfc/0x200
[ 633.361104][ T8553] ? __pfx_vfs_statx+0x10/0x10
[ 633.361124][ T8553] ? strncpy_from_user+0x150/0x2b0
[ 633.361149][ T8553] ? do_getname+0x151/0x250
[ 633.361172][ T8553] vfs_fstatat+0x11b/0x170
[ 633.361195][ T8553] __x64_sys_newfstatat+0x151/0x200
[ 633.361221][ T8553] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 633.361242][ T8553] ? _copy_from_user+0x4c/0xb0
[ 633.361285][ T8553] ? rcu_is_watching+0x15/0xb0
[ 633.361314][ T8553] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 633.361334][ T8553] do_syscall_64+0x15f/0xf80
[ 633.361354][ T8553] ? trace_irq_disable+0x3b/0x140
[ 633.361381][ T8553] ? clear_bhb_loop+0x40/0x90
[ 633.361404][ T8553] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 633.361423][ T8553] RIP: 0033:0x7f8897166a59
[ 633.361440][ T8553] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 633.361456][ T8553] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 633.361477][ T8553] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 633.361490][ T8553] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 633.361503][ T8553] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 633.361517][ T8553] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 633.361529][ T8553] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 633.361560][ T8553]
[ 633.364106][ T8553] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 633.364171][ T5687] gfs2: fsid=syz:syz.s: file system withdrawn
[ 633.524978][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 634.083432][ T8557] loop0: detected capacity change from 0 to 32768
[ 634.090864][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.092190][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.092883][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.094011][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.095276][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.096078][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.096812][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.100820][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.101593][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.103742][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.106795][ T8557] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 634.106820][ T8557] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 634.113987][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.117469][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.119660][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.125634][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.126486][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.127120][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.127711][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.129128][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.129901][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.130502][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.131929][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.133063][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.134186][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.135267][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.135383][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.136434][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.141588][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.144316][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.145069][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.145999][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.146268][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.146521][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.146844][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.147432][ T8557] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 634.148616][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.150599][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.150639][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.150739][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.153332][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.154190][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.156457][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.157196][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.161107][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.163369][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.166751][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.167858][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.170494][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.173529][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.173571][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.173599][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.174284][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.178457][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.198193][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.199488][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.233917][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.236806][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.239521][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.259812][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.262459][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.294616][ T8557] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 634.314817][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.315597][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.320769][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 634.322406][ T8557] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 634.322423][ T8557] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
executing program
[ 634.322450][ T8557] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 634.322479][ T8557] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8557 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 634.322517][ T8557] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 634.322546][ T8557] CPU: 0 UID: 0 PID: 8557 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 634.322568][ T8557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 634.322579][ T8557] Call Trace:
[ 634.322587][ T8557]
[ 634.322596][ T8557] dump_stack_lvl+0xe8/0x150
[ 634.322623][ T8557] gfs2_withdraw+0xc3/0x1b0
[ 634.322646][ T8557] gfs2_dirent_scan+0x545/0x690
[ 634.322674][ T8557] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 634.322699][ T8557] gfs2_dirent_search+0x358/0x920
[ 634.322729][ T8557] ? gfs2_permission+0x383/0x460
[ 634.322750][ T8557] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 634.322773][ T8557] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 634.322794][ T8557] ? __pfx_gfs2_permission+0x10/0x10
[ 634.322824][ T8557] gfs2_dir_search+0x4c/0x220
[ 634.322850][ T8557] gfs2_lookupi+0x45e/0x640
[ 634.322878][ T8557] ? __pfx_gfs2_lookupi+0x10/0x10
[ 634.322898][ T8557] ? d_alloc_parallel+0x14c4/0x1610
[ 634.322928][ T8557] ? __gfs2_lookup+0xac/0x2a0
[ 634.322955][ T8557] ? d_alloc_parallel+0x366/0x1610
[ 634.322985][ T8557] __gfs2_lookup+0xac/0x2a0
[ 634.323012][ T8557] ? __pfx___gfs2_lookup+0x10/0x10
[ 634.323034][ T8557] ? gfs2_permission+0x360/0x460
[ 634.323060][ T8557] ? __rt_spin_lock_init+0x3e/0x50
[ 634.323089][ T8557] ? __init_waitqueue_head+0xae/0x160
[ 634.323112][ T8557] __lookup_slow+0x2d2/0x440
[ 634.323139][ T8557] ? __pfx___lookup_slow+0x10/0x10
[ 634.323176][ T8557] ? down_read+0x156/0x200
[ 634.323200][ T8557] ? __pfx_down_read+0x10/0x10
[ 634.323226][ T8557] ? lookup_fast+0x192/0x5b0
[ 634.323255][ T8557] lookup_slow+0x53/0x70
[ 634.323281][ T8557] path_lookupat+0x3f5/0x8c0
[ 634.323318][ T8557] filename_lookup+0x256/0x5d0
[ 634.323346][ T8557] ? __pfx_filename_lookup+0x10/0x10
[ 634.323390][ T8557] ? __might_fault+0xaf/0x130
[ 634.323428][ T8557] vfs_statx+0xfc/0x200
[ 634.323451][ T8557] ? __pfx_vfs_statx+0x10/0x10
[ 634.323470][ T8557] ? strncpy_from_user+0x150/0x2b0
[ 634.323495][ T8557] ? do_getname+0x151/0x250
[ 634.323519][ T8557] vfs_fstatat+0x11b/0x170
[ 634.323542][ T8557] __x64_sys_newfstatat+0x151/0x200
[ 634.323569][ T8557] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 634.323590][ T8557] ? _copy_from_user+0x4c/0xb0
[ 634.323631][ T8557] ? rcu_is_watching+0x15/0xb0
[ 634.323663][ T8557] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 634.323684][ T8557] do_syscall_64+0x15f/0xf80
[ 634.323705][ T8557] ? trace_irq_disable+0x3b/0x140
[ 634.323737][ T8557] ? clear_bhb_loop+0x40/0x90
[ 634.323761][ T8557] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 634.323779][ T8557] RIP: 0033:0x7f8897166a59
[ 634.323798][ T8557] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 634.323813][ T8557] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 634.323834][ T8557] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 634.323848][ T8557] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 634.323861][ T8557] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 634.323875][ T8557] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 634.323888][ T8557] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 634.323918][ T8557]
[ 634.324041][ T8557] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 634.324105][ T5687] gfs2: fsid=syz:syz.s: file system withdrawn
[ 634.507916][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 635.186904][ T8561] loop0: detected capacity change from 0 to 32768
[ 635.195956][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.197076][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.213161][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.213832][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.214326][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.214814][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.215537][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.216349][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.216821][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.217572][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.221326][ T8561] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 635.221341][ T8561] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 635.237481][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.294067][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.296140][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.296597][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.297731][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.299425][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.300585][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.300867][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.301151][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.301429][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.301726][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.302134][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.303459][ T8561] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 635.304438][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.304859][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.309136][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.311346][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.312223][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.312877][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.313561][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.314173][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.314785][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.315373][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.315980][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.316699][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.319521][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.322515][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.323693][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.325827][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.326505][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.327261][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.330511][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.331183][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.332259][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.336935][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.337584][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.339132][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.341156][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.341193][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.341224][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.344309][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.344404][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.358863][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.362276][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.395053][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.396574][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.397523][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.427629][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.431083][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.432915][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.436637][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.439247][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.439938][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.440898][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.515080][ T8561] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 635.517076][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.519450][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.523170][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 635.524443][ T8561] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 635.524462][ T8561] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 635.524489][ T8561] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 635.524517][ T8561] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8561 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 635.524555][ T8561] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 635.524583][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 635.524604][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 635.524616][ T8561] Call Trace:
[ 635.524623][ T8561]
[ 635.524632][ T8561] dump_stack_lvl+0xe8/0x150
[ 635.524665][ T8561] gfs2_withdraw+0xc3/0x1b0
[ 635.524688][ T8561] gfs2_dirent_scan+0x545/0x690
[ 635.524716][ T8561] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 635.524741][ T8561] gfs2_dirent_search+0x358/0x920
executing program
[ 635.524766][ T8561] ? gfs2_permission+0x383/0x460
[ 635.524786][ T8561] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 635.524809][ T8561] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 635.524830][ T8561] ? __pfx_gfs2_permission+0x10/0x10
[ 635.524861][ T8561] gfs2_dir_search+0x4c/0x220
[ 635.524886][ T8561] gfs2_lookupi+0x45e/0x640
[ 635.524913][ T8561] ? __pfx_gfs2_lookupi+0x10/0x10
[ 635.524933][ T8561] ? d_alloc_parallel+0x14c4/0x1610
[ 635.524963][ T8561] ? __gfs2_lookup+0xac/0x2a0
[ 635.524988][ T8561] ? d_alloc_parallel+0x366/0x1610
[ 635.525019][ T8561] __gfs2_lookup+0xac/0x2a0
[ 635.525045][ T8561] ? __pfx___gfs2_lookup+0x10/0x10
[ 635.525068][ T8561] ? gfs2_permission+0x360/0x460
[ 635.525094][ T8561] ? __rt_spin_lock_init+0x3e/0x50
[ 635.525122][ T8561] ? __init_waitqueue_head+0xae/0x160
[ 635.525146][ T8561] __lookup_slow+0x2d2/0x440
[ 635.525174][ T8561] ? __pfx___lookup_slow+0x10/0x10
[ 635.525210][ T8561] ? down_read+0x156/0x200
[ 635.525234][ T8561] ? __pfx_down_read+0x10/0x10
[ 635.525259][ T8561] ? lookup_fast+0x192/0x5b0
[ 635.525288][ T8561] lookup_slow+0x53/0x70
[ 635.525313][ T8561] path_lookupat+0x3f5/0x8c0
[ 635.525352][ T8561] filename_lookup+0x256/0x5d0
[ 635.525381][ T8561] ? __pfx_filename_lookup+0x10/0x10
[ 635.525425][ T8561] ? __might_fault+0xaf/0x130
[ 635.525464][ T8561] vfs_statx+0xfc/0x200
[ 635.525491][ T8561] ? __pfx_vfs_statx+0x10/0x10
[ 635.525510][ T8561] ? strncpy_from_user+0x150/0x2b0
[ 635.525535][ T8561] ? do_getname+0x151/0x250
[ 635.525559][ T8561] vfs_fstatat+0x11b/0x170
[ 635.525582][ T8561] __x64_sys_newfstatat+0x151/0x200
[ 635.525607][ T8561] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 635.525629][ T8561] ? _copy_from_user+0x4c/0xb0
[ 635.525676][ T8561] ? rcu_is_watching+0x15/0xb0
[ 635.525708][ T8561] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 635.525729][ T8561] do_syscall_64+0x15f/0xf80
[ 635.525751][ T8561] ? trace_irq_disable+0x3b/0x140
[ 635.525779][ T8561] ? clear_bhb_loop+0x40/0x90
[ 635.525802][ T8561] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 635.525821][ T8561] RIP: 0033:0x7f8897166a59
[ 635.525838][ T8561] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 635.525854][ T8561] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 635.525874][ T8561] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 635.525888][ T8561] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 635.525901][ T8561] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 635.525915][ T8561] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 635.525928][ T8561] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 635.525958][ T8561]
[ 635.533628][ T8561] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 635.533799][ T5687] gfs2: fsid=syz:syz.s: file system withdrawn
[ 635.691039][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 636.203403][ T8565] loop0: detected capacity change from 0 to 32768
[ 636.213439][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.217397][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.220399][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.221166][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.221870][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.223139][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.226098][ T8565] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 636.226115][ T8565] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 636.240030][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.243705][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.244891][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.245002][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.251966][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.252987][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.253669][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.253707][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.255088][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.255126][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.261810][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.262831][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.262871][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.263793][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.264253][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.264288][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.265205][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.265626][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.265660][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.266559][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.266596][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.267233][ T8565] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 636.270305][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.271423][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.272167][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.273723][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.273837][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.276080][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.276774][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.278966][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.280548][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.283465][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.284127][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.284728][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.285322][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.285917][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.286518][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.287204][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.290541][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.292112][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.294150][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.294823][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.296580][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.296625][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.298739][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.298806][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.299329][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.303677][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.307509][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.323328][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.323903][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.342516][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.343298][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.359784][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.363273][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.363552][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.375259][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.376708][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.407150][ T8565] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 636.411053][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.412328][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 636.420112][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[ 636.421010][ T8565] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 636.421028][ T8565] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 636.421055][ T8565] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 636.421083][ T8565] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8565 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 636.421123][ T8565] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 636.421152][ T8565] CPU: 0 UID: 0 PID: 8565 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 636.421174][ T8565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 636.421186][ T8565] Call Trace:
[ 636.421193][ T8565]
[ 636.421201][ T8565] dump_stack_lvl+0xe8/0x150
[ 636.421228][ T8565] gfs2_withdraw+0xc3/0x1b0
[ 636.421251][ T8565] gfs2_dirent_scan+0x545/0x690
[ 636.421274][ T8565] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 636.421299][ T8565] gfs2_dirent_search+0x358/0x920
[ 636.421324][ T8565] ? gfs2_permission+0x383/0x460
[ 636.421344][ T8565] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 636.421366][ T8565] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 636.421386][ T8565] ? __pfx_gfs2_permission+0x10/0x10
[ 636.421417][ T8565] gfs2_dir_search+0x4c/0x220
[ 636.421447][ T8565] gfs2_lookupi+0x45e/0x640
[ 636.421475][ T8565] ? __pfx_gfs2_lookupi+0x10/0x10
[ 636.421494][ T8565] ? d_alloc_parallel+0x14c4/0x1610
[ 636.421525][ T8565] ? __gfs2_lookup+0xac/0x2a0
[ 636.421551][ T8565] ? d_alloc_parallel+0x366/0x1610
[ 636.421582][ T8565] __gfs2_lookup+0xac/0x2a0
[ 636.421618][ T8565] ? __pfx___gfs2_lookup+0x10/0x10
[ 636.421640][ T8565] ? gfs2_permission+0x360/0x460
[ 636.421666][ T8565] ? __rt_spin_lock_init+0x3e/0x50
[ 636.421694][ T8565] ? __init_waitqueue_head+0xae/0x160
[ 636.421717][ T8565] __lookup_slow+0x2d2/0x440
[ 636.421745][ T8565] ? __pfx___lookup_slow+0x10/0x10
[ 636.421779][ T8565] ? down_read+0x156/0x200
[ 636.421802][ T8565] ? __pfx_down_read+0x10/0x10
[ 636.421828][ T8565] ? lookup_fast+0x192/0x5b0
[ 636.421857][ T8565] lookup_slow+0x53/0x70
[ 636.421882][ T8565] path_lookupat+0x3f5/0x8c0
[ 636.421920][ T8565] filename_lookup+0x256/0x5d0
[ 636.421950][ T8565] ? __pfx_filename_lookup+0x10/0x10
[ 636.421993][ T8565] ? __might_fault+0xaf/0x130
[ 636.422032][ T8565] vfs_statx+0xfc/0x200
[ 636.422055][ T8565] ? __pfx_vfs_statx+0x10/0x10
[ 636.422074][ T8565] ? strncpy_from_user+0x150/0x2b0
[ 636.422099][ T8565] ? do_getname+0x151/0x250
[ 636.422123][ T8565] vfs_fstatat+0x11b/0x170
[ 636.422147][ T8565] __x64_sys_newfstatat+0x151/0x200
[ 636.422173][ T8565] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 636.422195][ T8565] ? _copy_from_user+0x4c/0xb0
[ 636.422237][ T8565] ? rcu_is_watching+0x15/0xb0
[ 636.422269][ T8565] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 636.422290][ T8565] do_syscall_64+0x15f/0xf80
[ 636.422311][ T8565] ? trace_irq_disable+0x3b/0x140
[ 636.422338][ T8565] ? clear_bhb_loop+0x40/0x90
[ 636.422361][ T8565] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 636.422380][ T8565] RIP: 0033:0x7f8897166a59
[ 636.422398][ T8565] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 636.422414][ T8565] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 636.422435][ T8565] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 636.422449][ T8565] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 636.422462][ T8565] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 636.422476][ T8565] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 636.422490][ T8565] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 636.422520][ T8565]
[ 636.422551][ T8565] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 636.422670][ T5687] gfs2: fsid=syz:syz.s: file system withdrawn
[ 636.618993][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 637.170281][ T8569] loop0: detected capacity change from 0 to 32768
[ 637.172277][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.175603][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.176329][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.176817][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.177283][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.187004][ T8569] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 637.187033][ T8569] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 637.192989][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.193763][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.193877][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.200569][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.201266][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.201989][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.202676][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.203853][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.204975][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.205067][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.205305][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.206004][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.206986][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.207024][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.208212][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.208553][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.209025][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.209059][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.210072][ T8569] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 637.211009][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.211953][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.214047][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.214086][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.214194][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.216866][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.217600][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.219884][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.220568][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.221260][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.223689][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.226415][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.229650][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.230345][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.231005][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.233306][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.234132][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.236369][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.237650][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.238521][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.241506][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.241551][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.245327][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.246055][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.248320][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.249187][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.249808][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.251827][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.253539][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.256513][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.264355][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.264924][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.292224][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.292785][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.298394][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.301115][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.320117][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.347633][ T8569] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 637.352241][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.353127][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.360500][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 637.363406][ T8569] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 637.363426][ T8569] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
executing program
[ 637.363453][ T8569] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 637.363481][ T8569] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8569 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 637.363518][ T8569] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 637.363547][ T8569] CPU: 1 UID: 0 PID: 8569 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 637.363569][ T8569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 637.363580][ T8569] Call Trace:
[ 637.363587][ T8569]
[ 637.363596][ T8569] dump_stack_lvl+0xe8/0x150
[ 637.363622][ T8569] gfs2_withdraw+0xc3/0x1b0
[ 637.363644][ T8569] gfs2_dirent_scan+0x545/0x690
[ 637.363668][ T8569] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 637.363692][ T8569] gfs2_dirent_search+0x358/0x920
[ 637.363716][ T8569] ? gfs2_permission+0x383/0x460
[ 637.363737][ T8569] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 637.363759][ T8569] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 637.363780][ T8569] ? __pfx_gfs2_permission+0x10/0x10
[ 637.363810][ T8569] gfs2_dir_search+0x4c/0x220
[ 637.363835][ T8569] gfs2_lookupi+0x45e/0x640
[ 637.363863][ T8569] ? __pfx_gfs2_lookupi+0x10/0x10
[ 637.363883][ T8569] ? d_alloc_parallel+0x14c4/0x1610
[ 637.363912][ T8569] ? __gfs2_lookup+0xac/0x2a0
[ 637.363938][ T8569] ? d_alloc_parallel+0x366/0x1610
[ 637.363969][ T8569] __gfs2_lookup+0xac/0x2a0
[ 637.363995][ T8569] ? __pfx___gfs2_lookup+0x10/0x10
[ 637.364016][ T8569] ? gfs2_permission+0x360/0x460
[ 637.364043][ T8569] ? __rt_spin_lock_init+0x3e/0x50
[ 637.364071][ T8569] ? __init_waitqueue_head+0xae/0x160
[ 637.364094][ T8569] __lookup_slow+0x2d2/0x440
[ 637.364137][ T8569] ? __pfx___lookup_slow+0x10/0x10
[ 637.364175][ T8569] ? down_read+0x156/0x200
[ 637.364198][ T8569] ? __pfx_down_read+0x10/0x10
[ 637.364223][ T8569] ? lookup_fast+0x192/0x5b0
[ 637.364253][ T8569] lookup_slow+0x53/0x70
[ 637.364278][ T8569] path_lookupat+0x3f5/0x8c0
[ 637.364321][ T8569] filename_lookup+0x256/0x5d0
[ 637.364349][ T8569] ? __pfx_filename_lookup+0x10/0x10
[ 637.364394][ T8569] ? __might_fault+0xaf/0x130
[ 637.364432][ T8569] vfs_statx+0xfc/0x200
[ 637.364456][ T8569] ? __pfx_vfs_statx+0x10/0x10
[ 637.364475][ T8569] ? strncpy_from_user+0x150/0x2b0
[ 637.364499][ T8569] ? do_getname+0x151/0x250
[ 637.364522][ T8569] vfs_fstatat+0x11b/0x170
[ 637.364545][ T8569] __x64_sys_newfstatat+0x151/0x200
[ 637.364572][ T8569] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 637.364593][ T8569] ? _copy_from_user+0x4c/0xb0
[ 637.364634][ T8569] ? rcu_is_watching+0x15/0xb0
[ 637.364667][ T8569] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 637.364693][ T8569] do_syscall_64+0x15f/0xf80
[ 637.364714][ T8569] ? trace_irq_disable+0x3b/0x140
[ 637.364742][ T8569] ? clear_bhb_loop+0x40/0x90
[ 637.364764][ T8569] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 637.364783][ T8569] RIP: 0033:0x7f8897166a59
[ 637.364802][ T8569] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 637.364818][ T8569] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 637.364839][ T8569] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 637.364853][ T8569] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 637.364867][ T8569] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 637.364881][ T8569] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 637.364894][ T8569] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 637.364925][ T8569]
[ 637.367544][ T8569] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 637.367619][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 637.563238][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 638.121012][ T8573] loop0: detected capacity change from 0 to 32768
[ 638.123016][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.126389][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.127072][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.128521][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.129169][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.129767][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.130359][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.131457][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.132167][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.133317][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.134016][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.134652][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.135345][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.136006][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.136664][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.137732][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.140589][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.141366][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.142853][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.143793][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.146308][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.147897][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.149006][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.149805][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.150584][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.151367][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.152328][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.153191][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.154798][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.155513][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.156182][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.157009][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.157322][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.160410][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.161429][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.162921][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.198906][ T8573] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 638.198926][ T8573] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 638.210410][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.219904][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.220782][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.221910][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.222298][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.222643][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.222979][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.223309][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.223766][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.224366][ T8573] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 638.225212][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.225781][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.246237][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.248164][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.251439][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.265853][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.269840][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.272556][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.284019][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.286584][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.320003][ T8573] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 638.321356][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.322170][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.323768][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 638.324553][ T8573] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
executing program
[ 638.324570][ T8573] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 638.324597][ T8573] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 638.324625][ T8573] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8573 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 638.324664][ T8573] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 638.324692][ T8573] CPU: 1 UID: 0 PID: 8573 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 638.324713][ T8573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 638.324725][ T8573] Call Trace:
[ 638.324733][ T8573]
[ 638.324740][ T8573] dump_stack_lvl+0xe8/0x150
[ 638.324767][ T8573] gfs2_withdraw+0xc3/0x1b0
[ 638.324796][ T8573] gfs2_dirent_scan+0x545/0x690
[ 638.324819][ T8573] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 638.324845][ T8573] gfs2_dirent_search+0x358/0x920
[ 638.324869][ T8573] ? gfs2_permission+0x383/0x460
[ 638.324890][ T8573] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 638.324912][ T8573] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 638.324933][ T8573] ? __pfx_gfs2_permission+0x10/0x10
[ 638.324964][ T8573] gfs2_dir_search+0x4c/0x220
[ 638.324989][ T8573] gfs2_lookupi+0x45e/0x640
[ 638.325016][ T8573] ? __pfx_gfs2_lookupi+0x10/0x10
[ 638.325037][ T8573] ? d_alloc_parallel+0x14c4/0x1610
[ 638.325067][ T8573] ? __gfs2_lookup+0xac/0x2a0
[ 638.325093][ T8573] ? d_alloc_parallel+0x366/0x1610
[ 638.325124][ T8573] __gfs2_lookup+0xac/0x2a0
[ 638.325150][ T8573] ? __pfx___gfs2_lookup+0x10/0x10
[ 638.325171][ T8573] ? gfs2_permission+0x360/0x460
[ 638.325197][ T8573] ? __rt_spin_lock_init+0x3e/0x50
[ 638.325226][ T8573] ? __init_waitqueue_head+0xae/0x160
[ 638.325253][ T8573] __lookup_slow+0x2d2/0x440
[ 638.325280][ T8573] ? __pfx___lookup_slow+0x10/0x10
[ 638.325316][ T8573] ? down_read+0x156/0x200
[ 638.325340][ T8573] ? __pfx_down_read+0x10/0x10
[ 638.325366][ T8573] ? lookup_fast+0x192/0x5b0
[ 638.325395][ T8573] lookup_slow+0x53/0x70
[ 638.325419][ T8573] path_lookupat+0x3f5/0x8c0
[ 638.325458][ T8573] filename_lookup+0x256/0x5d0
[ 638.325486][ T8573] ? __pfx_filename_lookup+0x10/0x10
[ 638.325537][ T8573] ? __might_fault+0xaf/0x130
[ 638.325575][ T8573] vfs_statx+0xfc/0x200
[ 638.325598][ T8573] ? __pfx_vfs_statx+0x10/0x10
[ 638.325617][ T8573] ? strncpy_from_user+0x150/0x2b0
[ 638.325642][ T8573] ? do_getname+0x151/0x250
[ 638.325666][ T8573] vfs_fstatat+0x11b/0x170
[ 638.325689][ T8573] __x64_sys_newfstatat+0x151/0x200
[ 638.325715][ T8573] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 638.325737][ T8573] ? _copy_from_user+0x4c/0xb0
[ 638.325780][ T8573] ? rcu_is_watching+0x15/0xb0
[ 638.325811][ T8573] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 638.325832][ T8573] do_syscall_64+0x15f/0xf80
[ 638.325854][ T8573] ? trace_irq_disable+0x3b/0x140
[ 638.325882][ T8573] ? clear_bhb_loop+0x40/0x90
[ 638.325905][ T8573] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 638.325923][ T8573] RIP: 0033:0x7f8897166a59
[ 638.325942][ T8573] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 638.325959][ T8573] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 638.325979][ T8573] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 638.325994][ T8573] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 638.326007][ T8573] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 638.326020][ T8573] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 638.326033][ T8573] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 638.326064][ T8573]
[ 638.326091][ T8573] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 638.326160][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 638.502027][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 639.042401][ T8577] loop0: detected capacity change from 0 to 32768
[ 639.044518][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.047193][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.049282][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.050110][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.050851][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.051547][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.052224][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.053425][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.054100][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.055133][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.055792][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.056474][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.057152][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.058407][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.060067][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.061920][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.063302][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.064055][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.065540][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.066241][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.069486][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.070211][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.070884][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.071599][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.072238][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.072955][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.073661][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.074403][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.076319][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.076936][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.077634][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.081133][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.081314][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.081346][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.082056][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.083599][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.120806][ T8577] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 639.120825][ T8577] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 639.137455][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.146116][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.147654][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.150512][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.150763][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.151011][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.151330][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.151911][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.152334][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.152929][ T8577] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 639.154879][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.154994][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.182252][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.183823][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.202199][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.205045][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.207340][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.220287][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.222295][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.255695][ T8577] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 639.263432][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.264209][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.280603][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 639.281428][ T8577] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 639.281446][ T8577] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 639.281473][ T8577] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 639.281501][ T8577] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8577 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 639.281540][ T8577] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 639.281568][ T8577] CPU: 1 UID: 0 PID: 8577 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 639.281589][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 639.281611][ T8577] Call Trace:
[ 639.281619][ T8577]
[ 639.281628][ T8577] dump_stack_lvl+0xe8/0x150
[ 639.281658][ T8577] gfs2_withdraw+0xc3/0x1b0
[ 639.281680][ T8577] gfs2_dirent_scan+0x545/0x690
[ 639.281704][ T8577] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 639.281729][ T8577] gfs2_dirent_search+0x358/0x920
[ 639.281754][ T8577] ? gfs2_permission+0x383/0x460
[ 639.281774][ T8577] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 639.281797][ T8577] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 639.281834][ T8577] ? __pfx_gfs2_permission+0x10/0x10
executing program
[ 639.281864][ T8577] gfs2_dir_search+0x4c/0x220
[ 639.281898][ T8577] gfs2_lookupi+0x45e/0x640
[ 639.281926][ T8577] ? __pfx_gfs2_lookupi+0x10/0x10
[ 639.281946][ T8577] ? d_alloc_parallel+0x14c4/0x1610
[ 639.281976][ T8577] ? __gfs2_lookup+0xac/0x2a0
[ 639.282010][ T8577] ? d_alloc_parallel+0x366/0x1610
[ 639.282041][ T8577] __gfs2_lookup+0xac/0x2a0
[ 639.282066][ T8577] ? __pfx___gfs2_lookup+0x10/0x10
[ 639.282087][ T8577] ? gfs2_permission+0x360/0x460
[ 639.282123][ T8577] ? __rt_spin_lock_init+0x3e/0x50
[ 639.282151][ T8577] ? __init_waitqueue_head+0xae/0x160
[ 639.282173][ T8577] __lookup_slow+0x2d2/0x440
[ 639.282202][ T8577] ? __pfx___lookup_slow+0x10/0x10
[ 639.282238][ T8577] ? down_read+0x156/0x200
[ 639.282262][ T8577] ? __pfx_down_read+0x10/0x10
[ 639.282286][ T8577] ? lookup_fast+0x192/0x5b0
[ 639.282320][ T8577] lookup_slow+0x53/0x70
[ 639.282346][ T8577] path_lookupat+0x3f5/0x8c0
[ 639.282390][ T8577] filename_lookup+0x256/0x5d0
[ 639.282419][ T8577] ? __pfx_filename_lookup+0x10/0x10
[ 639.282462][ T8577] ? __might_fault+0xaf/0x130
[ 639.282501][ T8577] vfs_statx+0xfc/0x200
[ 639.282525][ T8577] ? __pfx_vfs_statx+0x10/0x10
[ 639.282544][ T8577] ? strncpy_from_user+0x150/0x2b0
[ 639.282569][ T8577] ? do_getname+0x151/0x250
[ 639.282593][ T8577] vfs_fstatat+0x11b/0x170
[ 639.282616][ T8577] __x64_sys_newfstatat+0x151/0x200
[ 639.282643][ T8577] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 639.282664][ T8577] ? _copy_from_user+0x4c/0xb0
[ 639.282706][ T8577] ? rcu_is_watching+0x15/0xb0
[ 639.282738][ T8577] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 639.282759][ T8577] do_syscall_64+0x15f/0xf80
[ 639.282781][ T8577] ? trace_irq_disable+0x3b/0x140
[ 639.282808][ T8577] ? clear_bhb_loop+0x40/0x90
[ 639.282832][ T8577] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 639.282851][ T8577] RIP: 0033:0x7f8897166a59
[ 639.282869][ T8577] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 639.282886][ T8577] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 639.282906][ T8577] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 639.282921][ T8577] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 639.282935][ T8577] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 639.282949][ T8577] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 639.282962][ T8577] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 639.282993][ T8577]
[ 639.285577][ T8577] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 639.285644][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 639.491244][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 639.997140][ T8581] loop0: detected capacity change from 0 to 32768
[ 640.003155][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.004215][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.004939][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.005644][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.006343][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.007014][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.009486][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.010302][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.011342][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.012020][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.012671][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.013450][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.014072][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.014668][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.015245][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.015830][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.016419][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.017967][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.020381][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.022614][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.023311][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.023972][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.024709][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.025445][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.026164][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.026884][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.027615][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.031450][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.032140][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.032848][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.033647][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.033982][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.035307][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.035363][ T3281] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.036610][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.073828][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.099434][ T8581] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 640.099454][ T8581] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 640.115643][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.126822][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.127643][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.129560][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.129900][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.130222][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.130565][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.130895][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.131275][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.131884][ T8581] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 640.132763][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.133136][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.153356][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.156174][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.156829][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.166011][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.167312][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.178142][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.179950][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.180611][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.185983][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.215158][ T8581] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 640.221631][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.222427][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.225987][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.226794][ T8581] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 640.226812][ T8581] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 640.226839][ T8581] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 640.226867][ T8581] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8581 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 640.226904][ T8581] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 640.226932][ T8581] CPU: 1 UID: 0 PID: 8581 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
executing program
[ 640.226954][ T8581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 640.226965][ T8581] Call Trace:
[ 640.226973][ T8581]
[ 640.226981][ T8581] dump_stack_lvl+0xe8/0x150
[ 640.227007][ T8581] gfs2_withdraw+0xc3/0x1b0
[ 640.227030][ T8581] gfs2_dirent_scan+0x545/0x690
[ 640.227054][ T8581] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 640.227079][ T8581] gfs2_dirent_search+0x358/0x920
[ 640.227111][ T8581] ? gfs2_permission+0x383/0x460
[ 640.227132][ T8581] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 640.227155][ T8581] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 640.227175][ T8581] ? __pfx_gfs2_permission+0x10/0x10
[ 640.227205][ T8581] gfs2_dir_search+0x4c/0x220
[ 640.227230][ T8581] gfs2_lookupi+0x45e/0x640
[ 640.227258][ T8581] ? __pfx_gfs2_lookupi+0x10/0x10
[ 640.227277][ T8581] ? d_alloc_parallel+0x14c4/0x1610
[ 640.227307][ T8581] ? __gfs2_lookup+0xac/0x2a0
[ 640.227334][ T8581] ? d_alloc_parallel+0x366/0x1610
[ 640.227364][ T8581] __gfs2_lookup+0xac/0x2a0
[ 640.227389][ T8581] ? __pfx___gfs2_lookup+0x10/0x10
[ 640.227411][ T8581] ? gfs2_permission+0x360/0x460
[ 640.227437][ T8581] ? __rt_spin_lock_init+0x3e/0x50
[ 640.227465][ T8581] ? __init_waitqueue_head+0xae/0x160
[ 640.227488][ T8581] __lookup_slow+0x2d2/0x440
[ 640.227515][ T8581] ? __pfx___lookup_slow+0x10/0x10
[ 640.227555][ T8581] ? down_read+0x156/0x200
[ 640.227578][ T8581] ? __pfx_down_read+0x10/0x10
[ 640.227604][ T8581] ? lookup_fast+0x192/0x5b0
[ 640.227634][ T8581] lookup_slow+0x53/0x70
[ 640.227662][ T8581] path_lookupat+0x3f5/0x8c0
[ 640.227699][ T8581] filename_lookup+0x256/0x5d0
[ 640.227727][ T8581] ? __pfx_filename_lookup+0x10/0x10
[ 640.227767][ T8581] ? __might_fault+0xaf/0x130
[ 640.227804][ T8581] vfs_statx+0xfc/0x200
[ 640.227825][ T8581] ? __pfx_vfs_statx+0x10/0x10
[ 640.227842][ T8581] ? strncpy_from_user+0x150/0x2b0
[ 640.227874][ T8581] ? do_getname+0x151/0x250
[ 640.227897][ T8581] vfs_fstatat+0x11b/0x170
[ 640.227927][ T8581] __x64_sys_newfstatat+0x151/0x200
[ 640.227953][ T8581] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 640.227975][ T8581] ? _copy_from_user+0x4c/0xb0
[ 640.228022][ T8581] ? rcu_is_watching+0x15/0xb0
[ 640.228054][ T8581] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 640.228075][ T8581] do_syscall_64+0x15f/0xf80
[ 640.228096][ T8581] ? trace_irq_disable+0x3b/0x140
[ 640.228130][ T8581] ? clear_bhb_loop+0x40/0x90
[ 640.228153][ T8581] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 640.228172][ T8581] RIP: 0033:0x7f8897166a59
[ 640.228190][ T8581] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 640.228205][ T8581] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 640.228225][ T8581] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 640.228239][ T8581] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 640.228252][ T8581] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 640.228266][ T8581] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 640.228279][ T8581] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 640.228309][ T8581]
[ 640.235407][ T8581] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 640.235478][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 640.417914][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 640.937134][ T8585] loop0: detected capacity change from 0 to 32768
[ 640.943300][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.943970][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.944720][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.945384][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.946072][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.946813][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.949599][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.950354][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.951608][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.952378][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.953067][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.953751][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.954417][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.955113][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.955910][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.956551][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.957232][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.960140][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.960980][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.963294][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.964010][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.964685][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.965421][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.966100][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.966794][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.967469][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.968868][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.971502][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.972187][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.972852][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.973636][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.973960][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.974426][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.975360][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 640.976816][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.013805][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.017613][ T8585] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 641.017630][ T8585] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 641.029998][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.035216][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.036011][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.037097][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.037407][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.037706][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.039956][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.040291][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.040689][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.041280][ T8585] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 641.042107][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.042497][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.061903][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.064774][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.081735][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.084558][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.085423][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.098694][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.101407][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.140583][ T8585] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 641.143960][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.144751][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.147506][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.149025][ T8585] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 641.149069][ T8585] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 641.149098][ T8585] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 641.149126][ T8585] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8585 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 641.149164][ T8585] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 641.149192][ T8585] CPU: 1 UID: 0 PID: 8585 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 641.149213][ T8585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 641.149225][ T8585] Call Trace:
[ 641.149233][ T8585]
executing program
[ 641.149240][ T8585] dump_stack_lvl+0xe8/0x150
[ 641.149267][ T8585] gfs2_withdraw+0xc3/0x1b0
[ 641.149291][ T8585] gfs2_dirent_scan+0x545/0x690
[ 641.149313][ T8585] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 641.149338][ T8585] gfs2_dirent_search+0x358/0x920
[ 641.149363][ T8585] ? gfs2_permission+0x383/0x460
[ 641.149383][ T8585] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 641.149406][ T8585] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 641.149427][ T8585] ? __pfx_gfs2_permission+0x10/0x10
[ 641.149457][ T8585] gfs2_dir_search+0x4c/0x220
[ 641.149483][ T8585] gfs2_lookupi+0x45e/0x640
[ 641.149510][ T8585] ? __pfx_gfs2_lookupi+0x10/0x10
[ 641.149529][ T8585] ? d_alloc_parallel+0x14c4/0x1610
[ 641.149560][ T8585] ? __gfs2_lookup+0xac/0x2a0
[ 641.149586][ T8585] ? d_alloc_parallel+0x366/0x1610
[ 641.149616][ T8585] __gfs2_lookup+0xac/0x2a0
[ 641.149642][ T8585] ? __pfx___gfs2_lookup+0x10/0x10
[ 641.149664][ T8585] ? gfs2_permission+0x360/0x460
[ 641.149690][ T8585] ? __rt_spin_lock_init+0x3e/0x50
[ 641.149718][ T8585] ? __init_waitqueue_head+0xae/0x160
[ 641.149741][ T8585] __lookup_slow+0x2d2/0x440
[ 641.149768][ T8585] ? __pfx___lookup_slow+0x10/0x10
[ 641.149805][ T8585] ? down_read+0x156/0x200
[ 641.149828][ T8585] ? __pfx_down_read+0x10/0x10
[ 641.149853][ T8585] ? lookup_fast+0x192/0x5b0
[ 641.149882][ T8585] lookup_slow+0x53/0x70
[ 641.149907][ T8585] path_lookupat+0x3f5/0x8c0
[ 641.149945][ T8585] filename_lookup+0x256/0x5d0
[ 641.149973][ T8585] ? __pfx_filename_lookup+0x10/0x10
[ 641.150017][ T8585] ? __might_fault+0xaf/0x130
[ 641.150060][ T8585] vfs_statx+0xfc/0x200
[ 641.150084][ T8585] ? __pfx_vfs_statx+0x10/0x10
[ 641.150102][ T8585] ? strncpy_from_user+0x150/0x2b0
[ 641.150126][ T8585] ? do_getname+0x151/0x250
[ 641.150151][ T8585] vfs_fstatat+0x11b/0x170
[ 641.150174][ T8585] __x64_sys_newfstatat+0x151/0x200
[ 641.150200][ T8585] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 641.150221][ T8585] ? _copy_from_user+0x4c/0xb0
[ 641.150263][ T8585] ? rcu_is_watching+0x15/0xb0
[ 641.150294][ T8585] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 641.150323][ T8585] do_syscall_64+0x15f/0xf80
[ 641.150348][ T8585] ? trace_irq_disable+0x3b/0x140
[ 641.150377][ T8585] ? clear_bhb_loop+0x40/0x90
[ 641.150400][ T8585] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 641.150419][ T8585] RIP: 0033:0x7f8897166a59
[ 641.150437][ T8585] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 641.150454][ T8585] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 641.150478][ T8585] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 641.150492][ T8585] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 641.150506][ T8585] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 641.150520][ T8585] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 641.150532][ T8585] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 641.150563][ T8585]
[ 641.150592][ T8585] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 641.150665][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 641.344954][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 641.859781][ T8589] loop0: detected capacity change from 0 to 32768
[ 641.862892][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.866709][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.867485][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.868713][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.869451][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.870171][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.870857][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.872051][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.872743][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.873810][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.874714][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.875542][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.876228][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.876930][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.877729][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.878680][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.879383][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.880069][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.881518][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.882223][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.884429][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.885135][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.885964][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.886632][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.887369][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.888354][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.889096][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.889898][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.891330][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.892046][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.892747][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.893559][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.893888][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.894344][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.895247][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.896856][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.931496][ T8589] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 641.931516][ T8589] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 641.938485][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.947023][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.948154][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.949407][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.949737][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.950049][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.950419][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.950737][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.951102][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.951669][ T8589] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 641.952527][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.954263][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.963641][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.964567][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.975782][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.979054][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.989162][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.989819][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 641.996377][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.000049][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.010466][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.050390][ T8589] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 642.051679][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.052639][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.054438][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.055239][ T8589] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 642.055257][ T8589] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 642.055283][ T8589] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 642.055312][ T8589] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8589 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 642.055349][ T8589] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
executing program
[ 642.055378][ T8589] CPU: 1 UID: 0 PID: 8589 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 642.055398][ T8589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 642.055411][ T8589] Call Trace:
[ 642.055418][ T8589]
[ 642.055427][ T8589] dump_stack_lvl+0xe8/0x150
[ 642.055455][ T8589] gfs2_withdraw+0xc3/0x1b0
[ 642.055478][ T8589] gfs2_dirent_scan+0x545/0x690
[ 642.055501][ T8589] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 642.055529][ T8589] gfs2_dirent_search+0x358/0x920
[ 642.055554][ T8589] ? gfs2_permission+0x383/0x460
[ 642.055575][ T8589] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 642.055598][ T8589] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 642.055616][ T8589] ? __pfx_gfs2_permission+0x10/0x10
[ 642.055647][ T8589] gfs2_dir_search+0x4c/0x220
[ 642.055672][ T8589] gfs2_lookupi+0x45e/0x640
[ 642.055699][ T8589] ? __pfx_gfs2_lookupi+0x10/0x10
[ 642.055719][ T8589] ? d_alloc_parallel+0x14c4/0x1610
[ 642.055748][ T8589] ? __gfs2_lookup+0xac/0x2a0
[ 642.055775][ T8589] ? d_alloc_parallel+0x366/0x1610
[ 642.055806][ T8589] __gfs2_lookup+0xac/0x2a0
[ 642.055832][ T8589] ? __pfx___gfs2_lookup+0x10/0x10
[ 642.055853][ T8589] ? gfs2_permission+0x360/0x460
[ 642.055879][ T8589] ? __rt_spin_lock_init+0x3e/0x50
[ 642.055908][ T8589] ? __init_waitqueue_head+0xae/0x160
[ 642.055931][ T8589] __lookup_slow+0x2d2/0x440
[ 642.055958][ T8589] ? __pfx___lookup_slow+0x10/0x10
[ 642.055994][ T8589] ? down_read+0x156/0x200
[ 642.056018][ T8589] ? __pfx_down_read+0x10/0x10
[ 642.056043][ T8589] ? lookup_fast+0x192/0x5b0
[ 642.056072][ T8589] lookup_slow+0x53/0x70
[ 642.056098][ T8589] path_lookupat+0x3f5/0x8c0
[ 642.056136][ T8589] filename_lookup+0x256/0x5d0
[ 642.056161][ T8589] ? __pfx_filename_lookup+0x10/0x10
[ 642.056202][ T8589] ? __might_fault+0xaf/0x130
[ 642.056255][ T8589] vfs_statx+0xfc/0x200
[ 642.056283][ T8589] ? __pfx_vfs_statx+0x10/0x10
[ 642.056301][ T8589] ? strncpy_from_user+0x150/0x2b0
[ 642.056326][ T8589] ? do_getname+0x151/0x250
[ 642.056348][ T8589] vfs_fstatat+0x11b/0x170
[ 642.056369][ T8589] __x64_sys_newfstatat+0x151/0x200
[ 642.056395][ T8589] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 642.056417][ T8589] ? _copy_from_user+0x4c/0xb0
[ 642.056459][ T8589] ? rcu_is_watching+0x15/0xb0
[ 642.056491][ T8589] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 642.056511][ T8589] do_syscall_64+0x15f/0xf80
[ 642.056533][ T8589] ? trace_irq_disable+0x3b/0x140
[ 642.056561][ T8589] ? clear_bhb_loop+0x40/0x90
[ 642.056584][ T8589] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 642.056604][ T8589] RIP: 0033:0x7f8897166a59
[ 642.056621][ T8589] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 642.056637][ T8589] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 642.056658][ T8589] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 642.056672][ T8589] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 642.056686][ T8589] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 642.056701][ T8589] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 642.056713][ T8589] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 642.056743][ T8589]
[ 642.056772][ T8589] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 642.056843][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 642.095497][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.096187][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.097575][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.098927][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.099829][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.100554][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.102867][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.103592][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.104645][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.105343][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.106020][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.106711][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.107382][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.109033][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.110138][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.110812][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.111509][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.112951][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.113752][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.115960][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.116636][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.117319][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.122730][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.124021][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.124751][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.125573][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.126284][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.127683][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.164383][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.165299][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.166896][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.166937][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.166969][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.170867][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.174292][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.252873][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 642.822111][ T8593] loop0: detected capacity change from 0 to 32768
[ 642.832182][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.833317][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.833517][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.834906][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.839076][ T8593] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 642.839093][ T8593] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 642.847400][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.848032][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.857732][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.858587][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.859619][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.859849][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.860077][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.860339][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.860574][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.860857][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.861399][ T8593] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[ 642.866275][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.866485][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.867339][ T56] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.872884][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.876433][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.878369][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.880893][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.881684][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.883352][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.884044][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.884636][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.885265][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.885859][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.886683][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.887301][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.890364][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.891325][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.893774][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.894344][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.896668][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.897470][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.901150][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.902614][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.904806][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.906701][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.907364][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.908957][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[ 642.911882][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.912589][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.914786][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.919134][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.920007][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.920049][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.921665][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.921708][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.926282][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.926325][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.926355][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.926398][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.930820][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.944194][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.945672][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.963535][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.964154][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.966110][ T185] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.978183][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 642.978778][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 643.022724][ T8593] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 643.026622][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 643.027436][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 643.035792][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 643.036638][ T8593] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[ 643.036655][ T8593] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[ 643.036683][ T8593] gfs2: fsid=syz:syz.s: G: s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 643.036711][ T8593] gfs2: fsid=syz:syz.s: H: s:SH f:H e:0 p:8593 [syz-executor960] __gfs2_lookup+0xac/0x2a0
[ 643.036754][ T8593] gfs2: fsid=syz:syz.s: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[ 643.036781][ T8593] CPU: 1 UID: 0 PID: 8593 Comm: syz-executor960 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 643.036803][ T8593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 643.036815][ T8593] Call Trace:
[ 643.036822][ T8593]
[ 643.036830][ T8593] dump_stack_lvl+0xe8/0x150
[ 643.036857][ T8593] gfs2_withdraw+0xc3/0x1b0
[ 643.036879][ T8593] gfs2_dirent_scan+0x545/0x690
[ 643.036903][ T8593] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 643.036936][ T8593] gfs2_dirent_search+0x358/0x920
[ 643.036959][ T8593] ? gfs2_permission+0x383/0x460
[ 643.036980][ T8593] ? __pfx_gfs2_dirent_find+0x10/0x10
[ 643.037002][ T8593] ? __pfx_gfs2_dirent_search+0x10/0x10
[ 643.037023][ T8593] ? __pfx_gfs2_permission+0x10/0x10
[ 643.037053][ T8593] gfs2_dir_search+0x4c/0x220
[ 643.037078][ T8593] gfs2_lookupi+0x45e/0x640
[ 643.037106][ T8593] ? __pfx_gfs2_lookupi+0x10/0x10
[ 643.037126][ T8593] ? d_alloc_parallel+0x14c4/0x1610
[ 643.037156][ T8593] ? __gfs2_lookup+0xac/0x2a0
[ 643.037181][ T8593] ? d_alloc_parallel+0x366/0x1610
[ 643.037212][ T8593] __gfs2_lookup+0xac/0x2a0
[ 643.037238][ T8593] ? __pfx___gfs2_lookup+0x10/0x10
[ 643.037260][ T8593] ? gfs2_permission+0x360/0x460
[ 643.037289][ T8593] ? __rt_spin_lock_init+0x3e/0x50
[ 643.037318][ T8593] ? __init_waitqueue_head+0xae/0x160
[ 643.037341][ T8593] __lookup_slow+0x2d2/0x440
[ 643.037380][ T8593] ? __pfx___lookup_slow+0x10/0x10
[ 643.037417][ T8593] ? down_read+0x156/0x200
[ 643.037441][ T8593] ? __pfx_down_read+0x10/0x10
[ 643.037466][ T8593] ? lookup_fast+0x192/0x5b0
[ 643.037494][ T8593] lookup_slow+0x53/0x70
[ 643.037519][ T8593] path_lookupat+0x3f5/0x8c0
[ 643.037557][ T8593] filename_lookup+0x256/0x5d0
[ 643.037585][ T8593] ? __pfx_filename_lookup+0x10/0x10
[ 643.037630][ T8593] ? __might_fault+0xaf/0x130
[ 643.037668][ T8593] vfs_statx+0xfc/0x200
[ 643.037691][ T8593] ? __pfx_vfs_statx+0x10/0x10
[ 643.037710][ T8593] ? strncpy_from_user+0x150/0x2b0
[ 643.037742][ T8593] ? do_getname+0x151/0x250
[ 643.037762][ T8593] vfs_fstatat+0x11b/0x170
[ 643.037784][ T8593] __x64_sys_newfstatat+0x151/0x200
[ 643.037809][ T8593] ? __pfx___x64_sys_newfstatat+0x10/0x10
[ 643.037831][ T8593] ? _copy_from_user+0x4c/0xb0
[ 643.037874][ T8593] ? rcu_is_watching+0x15/0xb0
[ 643.037906][ T8593] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 643.037935][ T8593] do_syscall_64+0x15f/0xf80
[ 643.037957][ T8593] ? trace_irq_disable+0x3b/0x140
[ 643.037986][ T8593] ? clear_bhb_loop+0x40/0x90
[ 643.038009][ T8593] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 643.038027][ T8593] RIP: 0033:0x7f8897166a59
[ 643.038045][ T8593] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[ 643.038062][ T8593] RSP: 002b:00007f88971331d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 643.038083][ T8593] RAX: ffffffffffffffda RBX: 00007f8897220e28 RCX: 00007f8897166a59
[ 643.038097][ T8593] RDX: 0000000000000000 RSI: 0000200000000e80 RDI: ffffffffffffff9c
[ 643.038110][ T8593] RBP: 00007f8897220e20 R08: 38203a6b63617473 R09: 38203a6b63617473
[ 643.038124][ T8593] R10: 0000000000002000 R11: 0000000000000246 R12: 00007f88971f1ca4
[ 643.038145][ T8593] R13: 0000200000000e80 R14: 0032656c69662f2e R15: 0000200000000080
[ 643.038174][ T8593]
[ 643.045540][ T8593] gfs2: fsid=syz:syz.s: about to withdraw this file system
[ 643.045613][ T49] gfs2: fsid=syz:syz.s: file system withdrawn
[ 643.217197][ T7939] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[ 643.789652][ T8597] loop0: detected capacity change from 0 to 32768
[ 643.798768][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 643.803891][ T169] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[ 643.805692][ T8597] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"