Warning: Permanently added '10.128.10.5' (ED25519) to the list of known hosts. 2025/09/15 02:00:52 ignoring optional flag "type"="gce" 2025/09/15 02:00:53 parsed 1 programs 2025/09/15 02:00:56 executed programs: 0 [ 109.900001][ T5967] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 109.960224][ T5154] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 109.962466][ T5154] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 109.963353][ T5154] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 109.964407][ T5154] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 109.965176][ T5154] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 110.192116][ T6030] chnl_net:caif_netlink_parms(): no params data found [ 110.471117][ T6030] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.471254][ T6030] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.471350][ T6030] bridge_slave_0: entered allmulticast mode [ 110.472890][ T6030] bridge_slave_0: entered promiscuous mode [ 110.475493][ T6030] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.475613][ T6030] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.475893][ T6030] bridge_slave_1: entered allmulticast mode [ 110.477332][ T6030] bridge_slave_1: entered promiscuous mode [ 110.732346][ T6030] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 110.735168][ T6030] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 110.873600][ T6030] team0: Port device team_slave_0 added [ 110.875944][ T6030] team0: Port device team_slave_1 added [ 111.040125][ T6030] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 111.040142][ T6030] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.040162][ T6030] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 111.042320][ T6030] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 111.042333][ T6030] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.042353][ T6030] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 111.426394][ T6030] hsr_slave_0: entered promiscuous mode [ 111.427171][ T6030] hsr_slave_1: entered promiscuous mode [ 112.058418][ T5154] Bluetooth: hci0: command tx timeout [ 113.123104][ T6030] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 113.172884][ T6030] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 113.203354][ T6030] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 113.261535][ T6030] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 113.433034][ T6030] 8021q: adding VLAN 0 to HW filter on device bond0 [ 113.460776][ T6030] 8021q: adding VLAN 0 to HW filter on device team0 [ 113.483361][ T151] bridge0: port 1(bridge_slave_0) entered blocking state [ 113.483598][ T151] bridge0: port 1(bridge_slave_0) entered forwarding state [ 113.507166][ T151] bridge0: port 2(bridge_slave_1) entered blocking state [ 113.507473][ T151] bridge0: port 2(bridge_slave_1) entered forwarding state [ 113.890155][ T6030] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 113.969400][ T6030] veth0_vlan: entered promiscuous mode [ 113.980448][ T6030] veth1_vlan: entered promiscuous mode [ 114.036706][ T6030] veth0_macvtap: entered promiscuous mode [ 114.043867][ T6030] veth1_macvtap: entered promiscuous mode [ 114.077647][ T6030] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 114.100136][ T6030] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 114.121726][ T67] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.126005][ T67] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.126755][ T67] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.126986][ T67] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.138472][ T5154] Bluetooth: hci0: command tx timeout [ 115.221491][ T6116] loop0: detected capacity change from 0 to 32768 [ 115.311198][ T6116] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 115.311221][ T6116] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 115.471988][ T6116] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 115.479310][ T49] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 115.479329][ T49] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 115.796782][ T49] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 317ms [ 115.806146][ T49] gfs2: fsid=syz:syz.0: jid=0: Done [ 115.808885][ T6116] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 115.894219][ T6116] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 115.894239][ T6116] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6116, name: syz-executor.0 [ 115.894252][ T6116] preempt_count: 1, expected: 0 [ 115.894259][ T6116] RCU nest depth: 1, expected: 1 [ 115.894279][ T6116] 4 locks held by syz-executor.0/6116: [ 115.894289][ T6116] #0: ffff88804d1b00d0 (&type->s_umount_key#51){+.+.}-{4:4}, at: path_mount+0xcd2/0xfe0 [ 115.894354][ T6116] #1: ffffffff8df7ef98 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x845/0x1240 [ 115.894399][ T6116] #2: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0 [ 115.894443][ T6116] #3: ffff888041a54088 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 115.894491][ T6116] Preemption disabled at: [ 115.894496][ T6116] [] spin_lock_bucket+0x3b/0x150 [ 115.894541][ T6116] CPU: 1 UID: 0 PID: 6116 Comm: syz-executor.0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 115.894559][ T6116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 115.894575][ T6116] Call Trace: [ 115.894582][ T6116] [ 115.894590][ T6116] dump_stack_lvl+0x189/0x250 [ 115.894615][ T6116] ? __pfx_dump_stack_lvl+0x10/0x10 [ 115.894637][ T6116] ? __pfx__printk+0x10/0x10 [ 115.894658][ T6116] ? print_lock_name+0xde/0x100 [ 115.894678][ T6116] ? spin_lock_bucket+0x3b/0x150 [ 115.894696][ T6116] __might_resched+0x44b/0x5d0 [ 115.894719][ T6116] ? spin_lock_bucket+0x3b/0x150 [ 115.894736][ T6116] ? __pfx___might_resched+0x10/0x10 [ 115.894753][ T6116] ? lockref_get_not_dead+0x28/0xd0 [ 115.894784][ T6116] rt_spin_lock+0xc7/0x2c0 [ 115.894805][ T6116] ? __pfx_rt_spin_lock+0x10/0x10 [ 115.894823][ T6116] ? migrate_disable+0xd5/0x190 [ 115.894845][ T6116] ? rt_spin_lock+0x223/0x2c0 [ 115.894868][ T6116] lockref_get_not_dead+0x28/0xd0 [ 115.894890][ T6116] gfs2_qd_search_bucket+0x139/0x210 [ 115.894912][ T6116] gfs2_quota_init+0x85d/0x1240 [ 115.894953][ T6116] ? __pfx_gfs2_quota_init+0x10/0x10 [ 115.894971][ T6116] ? __pfx_wake_up_bit+0x10/0x10 [ 115.894997][ T6116] ? inode_go_inval+0x259/0x2c0 [ 115.895019][ T6116] gfs2_make_fs_rw+0x181/0x2b0 [ 115.895043][ T6116] gfs2_reconfigure+0x617/0xb20 [ 115.895077][ T6116] reconfigure_super+0x224/0x890 [ 115.895103][ T6116] path_mount+0xd18/0xfe0 [ 115.895135][ T6116] __se_sys_mount+0x317/0x410 [ 115.895162][ T6116] ? __pfx___se_sys_mount+0x10/0x10 [ 115.895181][ T6116] ? rcu_is_watching+0x15/0xb0 [ 115.895210][ T6116] ? do_syscall_64+0xbe/0x3b0 [ 115.895225][ T6116] ? __x64_sys_mount+0x20/0xc0 [ 115.895248][ T6116] do_syscall_64+0xfa/0x3b0 [ 115.895262][ T6116] ? lockdep_hardirqs_on+0x9c/0x150 [ 115.895283][ T6116] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.895299][ T6116] ? clear_bhb_loop+0x60/0xb0 [ 115.895318][ T6116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.895334][ T6116] RIP: 0033:0x7f138461dda9 [ 115.895355][ T6116] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 115.895367][ T6116] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 115.895384][ T6116] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 115.895395][ T6116] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 115.895405][ T6116] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 115.895415][ T6116] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 115.895423][ T6116] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 115.895451][ T6116] [ 115.895683][ T6116] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 115.897591][ T6116] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 115.897621][ T6116] CPU: 1 UID: 0 PID: 6116 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 115.897644][ T6116] Tainted: [W]=WARN [ 115.897650][ T6116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 115.897659][ T6116] Call Trace: [ 115.897665][ T6116] [ 115.897672][ T6116] dump_stack_lvl+0x189/0x250 [ 115.897700][ T6116] ? reacquire_held_locks+0x127/0x1d0 [ 115.897726][ T6116] ? __pfx_dump_stack_lvl+0x10/0x10 [ 115.897748][ T6116] ? __pfx__printk+0x10/0x10 [ 115.897770][ T6116] ? rt_spin_unlock+0x65/0x80 [ 115.897795][ T6116] gfs2_assert_warn_i+0x194/0x2c0 [ 115.897824][ T6116] gfs2_qd_dispose+0x4aa/0x5b0 [ 115.897848][ T6116] gfs2_quota_init+0xcce/0x1240 [ 115.897888][ T6116] ? __pfx_gfs2_quota_init+0x10/0x10 [ 115.897906][ T6116] ? __pfx_wake_up_bit+0x10/0x10 [ 115.897932][ T6116] ? inode_go_inval+0x259/0x2c0 [ 115.897954][ T6116] gfs2_make_fs_rw+0x181/0x2b0 [ 115.897977][ T6116] gfs2_reconfigure+0x617/0xb20 [ 115.898009][ T6116] reconfigure_super+0x224/0x890 [ 115.898038][ T6116] path_mount+0xd18/0xfe0 [ 115.898070][ T6116] __se_sys_mount+0x317/0x410 [ 115.898101][ T6116] ? __pfx___se_sys_mount+0x10/0x10 [ 115.898120][ T6116] ? rcu_is_watching+0x15/0xb0 [ 115.898147][ T6116] ? do_syscall_64+0xbe/0x3b0 [ 115.898161][ T6116] ? __x64_sys_mount+0x20/0xc0 [ 115.898183][ T6116] do_syscall_64+0xfa/0x3b0 [ 115.898196][ T6116] ? lockdep_hardirqs_on+0x9c/0x150 [ 115.898218][ T6116] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.898234][ T6116] ? clear_bhb_loop+0x60/0xb0 [ 115.898255][ T6116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.898275][ T6116] RIP: 0033:0x7f138461dda9 [ 115.898290][ T6116] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 115.898303][ T6116] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 115.898321][ T6116] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 115.898334][ T6116] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 115.898345][ T6116] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 115.898356][ T6116] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 2025/09/15 02:01:02 executed programs: 1 [ 115.898365][ T6116] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 115.898394][ T6116] [ 116.218268][ T5154] Bluetooth: hci0: command tx timeout [ 116.478447][ T6116] gfs2: fsid=syz:syz.0: found 1 quota changes [ 117.566857][ T6159] loop0: detected capacity change from 0 to 32768 [ 117.593089][ T6159] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 117.593107][ T6159] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 117.630043][ T6159] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 117.647367][ T1877] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 117.647387][ T1877] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 117.983860][ T1877] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 336ms [ 117.985651][ T1877] gfs2: fsid=syz:syz.0: jid=0: Done [ 117.986859][ T6159] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 118.059704][ T6159] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 118.059726][ T6159] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6159, name: syz-executor.0 [ 118.059742][ T6159] preempt_count: 1, expected: 0 [ 118.059750][ T6159] RCU nest depth: 1, expected: 1 [ 118.059759][ T6159] 4 locks held by syz-executor.0/6159: [ 118.059769][ T6159] #0: ffff888033c7e0d0 (&type->s_umount_key#51){+.+.}-{4:4}, at: path_mount+0xcd2/0xfe0 [ 118.059826][ T6159] #1: ffffffff8df7ef98 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x845/0x1240 [ 118.059874][ T6159] #2: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0 [ 118.059917][ T6159] #3: ffff888041964218 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 118.059964][ T6159] Preemption disabled at: [ 118.059969][ T6159] [] spin_lock_bucket+0x3b/0x150 [ 118.060008][ T6159] CPU: 1 UID: 0 PID: 6159 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 118.060032][ T6159] Tainted: [W]=WARN [ 118.060037][ T6159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 118.060047][ T6159] Call Trace: [ 118.060054][ T6159] [ 118.060062][ T6159] dump_stack_lvl+0x189/0x250 [ 118.060097][ T6159] ? __pfx_dump_stack_lvl+0x10/0x10 [ 118.060120][ T6159] ? __pfx__printk+0x10/0x10 [ 118.060143][ T6159] ? print_lock_name+0xde/0x100 [ 118.060160][ T6159] ? spin_lock_bucket+0x3b/0x150 [ 118.060181][ T6159] __might_resched+0x44b/0x5d0 [ 118.060204][ T6159] ? spin_lock_bucket+0x3b/0x150 [ 118.060221][ T6159] ? __pfx___might_resched+0x10/0x10 [ 118.060240][ T6159] ? lockref_get_not_dead+0x28/0xd0 [ 118.060274][ T6159] rt_spin_lock+0xc7/0x2c0 [ 118.060297][ T6159] ? __pfx_rt_spin_lock+0x10/0x10 [ 118.060316][ T6159] ? migrate_disable+0xd5/0x190 [ 118.060337][ T6159] ? rt_spin_lock+0x223/0x2c0 [ 118.060361][ T6159] lockref_get_not_dead+0x28/0xd0 [ 118.060384][ T6159] gfs2_qd_search_bucket+0x139/0x210 [ 118.060406][ T6159] gfs2_quota_init+0x85d/0x1240 [ 118.060448][ T6159] ? __pfx_gfs2_quota_init+0x10/0x10 [ 118.060465][ T6159] ? __pfx_wake_up_bit+0x10/0x10 [ 118.060492][ T6159] ? inode_go_inval+0x259/0x2c0 [ 118.060518][ T6159] gfs2_make_fs_rw+0x181/0x2b0 [ 118.060543][ T6159] gfs2_reconfigure+0x617/0xb20 [ 118.060578][ T6159] reconfigure_super+0x224/0x890 [ 118.060607][ T6159] path_mount+0xd18/0xfe0 [ 118.060641][ T6159] __se_sys_mount+0x317/0x410 [ 118.060669][ T6159] ? __pfx___se_sys_mount+0x10/0x10 [ 118.060688][ T6159] ? rcu_is_watching+0x15/0xb0 [ 118.060717][ T6159] ? do_syscall_64+0xbe/0x3b0 [ 118.060732][ T6159] ? __x64_sys_mount+0x20/0xc0 [ 118.060754][ T6159] do_syscall_64+0xfa/0x3b0 [ 118.060768][ T6159] ? lockdep_hardirqs_on+0x9c/0x150 [ 118.060790][ T6159] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.060808][ T6159] ? clear_bhb_loop+0x60/0xb0 [ 118.060828][ T6159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.060844][ T6159] RIP: 0033:0x7f138461dda9 [ 118.060860][ T6159] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 118.060873][ T6159] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 118.060890][ T6159] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 118.060903][ T6159] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 118.060913][ T6159] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 118.060924][ T6159] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 118.060934][ T6159] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 118.060964][ T6159] [ 118.060999][ T6159] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 118.061310][ T6159] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 118.061334][ T6159] CPU: 1 UID: 0 PID: 6159 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 118.061357][ T6159] Tainted: [W]=WARN [ 118.061362][ T6159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 118.061372][ T6159] Call Trace: [ 118.061378][ T6159] [ 118.061385][ T6159] dump_stack_lvl+0x189/0x250 [ 118.061410][ T6159] ? reacquire_held_locks+0x127/0x1d0 [ 118.061434][ T6159] ? __pfx_dump_stack_lvl+0x10/0x10 [ 118.061456][ T6159] ? __pfx__printk+0x10/0x10 [ 118.061478][ T6159] ? rt_spin_unlock+0x65/0x80 [ 118.061503][ T6159] gfs2_assert_warn_i+0x194/0x2c0 [ 118.061532][ T6159] gfs2_qd_dispose+0x4aa/0x5b0 [ 118.061556][ T6159] gfs2_quota_init+0xcce/0x1240 [ 118.061596][ T6159] ? __pfx_gfs2_quota_init+0x10/0x10 [ 118.061614][ T6159] ? __pfx_wake_up_bit+0x10/0x10 [ 118.061641][ T6159] ? inode_go_inval+0x259/0x2c0 [ 118.061663][ T6159] gfs2_make_fs_rw+0x181/0x2b0 [ 118.061687][ T6159] gfs2_reconfigure+0x617/0xb20 [ 118.061721][ T6159] reconfigure_super+0x224/0x890 [ 118.061750][ T6159] path_mount+0xd18/0xfe0 [ 118.061783][ T6159] __se_sys_mount+0x317/0x410 [ 118.061810][ T6159] ? __pfx___se_sys_mount+0x10/0x10 [ 118.061829][ T6159] ? rcu_is_watching+0x15/0xb0 [ 118.061857][ T6159] ? do_syscall_64+0xbe/0x3b0 [ 118.061871][ T6159] ? __x64_sys_mount+0x20/0xc0 [ 118.061895][ T6159] do_syscall_64+0xfa/0x3b0 [ 118.061909][ T6159] ? lockdep_hardirqs_on+0x9c/0x150 [ 118.061929][ T6159] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.061943][ T6159] ? clear_bhb_loop+0x60/0xb0 [ 118.061962][ T6159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.061976][ T6159] RIP: 0033:0x7f138461dda9 [ 118.061989][ T6159] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 118.062001][ T6159] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 118.062018][ T6159] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 118.062028][ T6159] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 118.062037][ T6159] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 118.062046][ T6159] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 118.062055][ T6159] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 118.062089][ T6159] [ 118.298301][ T5154] Bluetooth: hci0: command tx timeout [ 118.454806][ T6159] gfs2: fsid=syz:syz.0: found 1 quota changes [ 119.731007][ T6194] loop0: detected capacity change from 0 to 32768 [ 119.795734][ T6194] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 119.795751][ T6194] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 119.833638][ T6194] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 119.842654][ T990] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 119.842672][ T990] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 120.094585][ T990] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 251ms [ 120.095330][ T990] gfs2: fsid=syz:syz.0: jid=0: Done [ 120.097746][ T6194] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 120.187969][ T6194] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 120.187990][ T6194] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6194, name: syz-executor.0 [ 120.188004][ T6194] preempt_count: 1, expected: 0 [ 120.188033][ T6194] RCU nest depth: 1, expected: 1 [ 120.188042][ T6194] 4 locks held by syz-executor.0/6194: [ 120.188052][ T6194] #0: ffff8880199780d0 (&type->s_umount_key#51){+.+.}-{4:4}, at: path_mount+0xcd2/0xfe0 [ 120.188174][ T6194] #1: ffffffff8df7ef98 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x845/0x1240 [ 120.188217][ T6194] #2: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0 [ 120.188259][ T6194] #3: ffff888041964538 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 120.188305][ T6194] Preemption disabled at: [ 120.188309][ T6194] [] spin_lock_bucket+0x3b/0x150 [ 120.188346][ T6194] CPU: 1 UID: 0 PID: 6194 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 120.188369][ T6194] Tainted: [W]=WARN [ 120.188375][ T6194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 120.188385][ T6194] Call Trace: [ 120.188392][ T6194] [ 120.188400][ T6194] dump_stack_lvl+0x189/0x250 [ 120.188428][ T6194] ? __pfx_dump_stack_lvl+0x10/0x10 [ 120.188450][ T6194] ? __pfx__printk+0x10/0x10 [ 120.188473][ T6194] ? print_lock_name+0xde/0x100 [ 120.188489][ T6194] ? spin_lock_bucket+0x3b/0x150 [ 120.188510][ T6194] __might_resched+0x44b/0x5d0 [ 120.188535][ T6194] ? spin_lock_bucket+0x3b/0x150 [ 120.188552][ T6194] ? __pfx___might_resched+0x10/0x10 [ 120.188570][ T6194] ? lockref_get_not_dead+0x28/0xd0 [ 120.188604][ T6194] rt_spin_lock+0xc7/0x2c0 [ 120.188627][ T6194] ? __pfx_rt_spin_lock+0x10/0x10 [ 120.188645][ T6194] ? migrate_disable+0xd5/0x190 [ 120.188667][ T6194] ? rt_spin_lock+0x223/0x2c0 [ 120.188690][ T6194] lockref_get_not_dead+0x28/0xd0 [ 120.188713][ T6194] gfs2_qd_search_bucket+0x139/0x210 [ 120.188735][ T6194] gfs2_quota_init+0x85d/0x1240 [ 120.188776][ T6194] ? __pfx_gfs2_quota_init+0x10/0x10 [ 120.188794][ T6194] ? __pfx_wake_up_bit+0x10/0x10 [ 120.188821][ T6194] ? inode_go_inval+0x259/0x2c0 [ 120.188841][ T6194] gfs2_make_fs_rw+0x181/0x2b0 [ 120.188864][ T6194] gfs2_reconfigure+0x617/0xb20 [ 120.188897][ T6194] reconfigure_super+0x224/0x890 [ 120.188926][ T6194] path_mount+0xd18/0xfe0 [ 120.188958][ T6194] __se_sys_mount+0x317/0x410 [ 120.188984][ T6194] ? __pfx___se_sys_mount+0x10/0x10 [ 120.189004][ T6194] ? rcu_is_watching+0x15/0xb0 [ 120.189032][ T6194] ? do_syscall_64+0xbe/0x3b0 [ 120.189046][ T6194] ? __x64_sys_mount+0x20/0xc0 [ 120.189070][ T6194] do_syscall_64+0xfa/0x3b0 [ 120.189085][ T6194] ? lockdep_hardirqs_on+0x9c/0x150 [ 120.189114][ T6194] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.189130][ T6194] ? clear_bhb_loop+0x60/0xb0 [ 120.189151][ T6194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.189167][ T6194] RIP: 0033:0x7f138461dda9 [ 120.189183][ T6194] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 120.189196][ T6194] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 120.189214][ T6194] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 120.189227][ T6194] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 120.189238][ T6194] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 120.189249][ T6194] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 120.189259][ T6194] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 120.189289][ T6194] [ 120.189307][ T6194] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 120.196585][ T6194] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 120.196620][ T6194] CPU: 1 UID: 0 PID: 6194 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 120.196644][ T6194] Tainted: [W]=WARN [ 120.196649][ T6194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 120.196659][ T6194] Call Trace: [ 120.196667][ T6194] [ 120.196674][ T6194] dump_stack_lvl+0x189/0x250 [ 120.196702][ T6194] ? reacquire_held_locks+0x127/0x1d0 [ 120.196727][ T6194] ? __pfx_dump_stack_lvl+0x10/0x10 [ 120.196748][ T6194] ? __pfx__printk+0x10/0x10 [ 120.196770][ T6194] ? rt_spin_unlock+0x65/0x80 [ 120.196797][ T6194] gfs2_assert_warn_i+0x194/0x2c0 [ 120.196825][ T6194] gfs2_qd_dispose+0x4aa/0x5b0 [ 120.196847][ T6194] gfs2_quota_init+0xcce/0x1240 [ 120.196887][ T6194] ? __pfx_gfs2_quota_init+0x10/0x10 [ 120.196905][ T6194] ? __pfx_wake_up_bit+0x10/0x10 [ 120.196931][ T6194] ? inode_go_inval+0x259/0x2c0 [ 120.196953][ T6194] gfs2_make_fs_rw+0x181/0x2b0 [ 120.196977][ T6194] gfs2_reconfigure+0x617/0xb20 [ 120.197010][ T6194] reconfigure_super+0x224/0x890 [ 120.197038][ T6194] path_mount+0xd18/0xfe0 [ 120.197072][ T6194] __se_sys_mount+0x317/0x410 [ 120.197122][ T6194] ? __pfx___se_sys_mount+0x10/0x10 [ 120.197141][ T6194] ? rcu_is_watching+0x15/0xb0 [ 120.197170][ T6194] ? do_syscall_64+0xbe/0x3b0 [ 120.197184][ T6194] ? __x64_sys_mount+0x20/0xc0 [ 120.197207][ T6194] do_syscall_64+0xfa/0x3b0 [ 120.197222][ T6194] ? lockdep_hardirqs_on+0x9c/0x150 [ 120.197243][ T6194] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.197259][ T6194] ? clear_bhb_loop+0x60/0xb0 [ 120.197279][ T6194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.197295][ T6194] RIP: 0033:0x7f138461dda9 [ 120.197310][ T6194] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 120.197323][ T6194] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 120.197341][ T6194] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 120.197353][ T6194] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 120.197364][ T6194] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 120.197374][ T6194] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 120.197384][ T6194] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 120.197411][ T6194] [ 120.677217][ T6194] gfs2: fsid=syz:syz.0: found 1 quota changes [ 121.670410][ T6228] loop0: detected capacity change from 0 to 32768 [ 121.711476][ T6228] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 121.711496][ T6228] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 121.737887][ T6228] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 121.748946][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 121.748967][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 121.890701][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 141ms [ 121.891047][ T9] gfs2: fsid=syz:syz.0: jid=0: Done [ 121.891936][ T6228] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 121.954034][ T6228] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 121.954056][ T6228] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6228, name: syz-executor.0 [ 121.954071][ T6228] preempt_count: 1, expected: 0 [ 121.954079][ T6228] RCU nest depth: 1, expected: 1 [ 121.954088][ T6228] 4 locks held by syz-executor.0/6228: [ 121.954098][ T6228] #0: ffff888019f0e0d0 (&type->s_umount_key#51){+.+.}-{4:4}, at: path_mount+0xcd2/0xfe0 [ 121.954155][ T6228] #1: ffffffff8df7ef98 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x845/0x1240 [ 121.954188][ T6228] #2: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0 [ 121.954212][ T6228] #3: ffff888041a54218 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 121.954239][ T6228] Preemption disabled at: [ 121.954241][ T6228] [] spin_lock_bucket+0x3b/0x150 [ 121.954260][ T6228] CPU: 0 UID: 0 PID: 6228 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 121.954274][ T6228] Tainted: [W]=WARN [ 121.954277][ T6228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 121.954283][ T6228] Call Trace: [ 121.954288][ T6228] [ 121.954293][ T6228] dump_stack_lvl+0x189/0x250 [ 121.954311][ T6228] ? __pfx_dump_stack_lvl+0x10/0x10 [ 121.954324][ T6228] ? __pfx__printk+0x10/0x10 [ 121.954336][ T6228] ? print_lock_name+0xde/0x100 [ 121.954346][ T6228] ? spin_lock_bucket+0x3b/0x150 [ 121.954357][ T6228] __might_resched+0x44b/0x5d0 [ 121.954374][ T6228] ? spin_lock_bucket+0x3b/0x150 [ 121.954384][ T6228] ? __pfx___might_resched+0x10/0x10 [ 121.954394][ T6228] ? lockref_get_not_dead+0x28/0xd0 [ 121.954412][ T6228] rt_spin_lock+0xc7/0x2c0 [ 121.954425][ T6228] ? __pfx_rt_spin_lock+0x10/0x10 [ 121.954436][ T6228] ? migrate_disable+0xd5/0x190 [ 121.954448][ T6228] ? rt_spin_lock+0x223/0x2c0 [ 121.954461][ T6228] lockref_get_not_dead+0x28/0xd0 [ 121.954474][ T6228] gfs2_qd_search_bucket+0x139/0x210 [ 121.954486][ T6228] gfs2_quota_init+0x85d/0x1240 [ 121.954508][ T6228] ? __pfx_gfs2_quota_init+0x10/0x10 [ 121.954518][ T6228] ? __pfx_wake_up_bit+0x10/0x10 [ 121.954533][ T6228] ? inode_go_inval+0x259/0x2c0 [ 121.954545][ T6228] gfs2_make_fs_rw+0x181/0x2b0 [ 121.954560][ T6228] gfs2_reconfigure+0x617/0xb20 [ 121.954579][ T6228] reconfigure_super+0x224/0x890 [ 121.954595][ T6228] path_mount+0xd18/0xfe0 [ 121.954619][ T6228] __se_sys_mount+0x317/0x410 [ 121.954636][ T6228] ? __pfx___se_sys_mount+0x10/0x10 [ 121.954648][ T6228] ? rcu_is_watching+0x15/0xb0 [ 121.954665][ T6228] ? do_syscall_64+0xbe/0x3b0 [ 121.954673][ T6228] ? __x64_sys_mount+0x20/0xc0 [ 121.954687][ T6228] do_syscall_64+0xfa/0x3b0 [ 121.954695][ T6228] ? lockdep_hardirqs_on+0x9c/0x150 [ 121.954708][ T6228] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.954718][ T6228] ? clear_bhb_loop+0x60/0xb0 [ 121.954729][ T6228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.954738][ T6228] RIP: 0033:0x7f138461dda9 [ 121.954748][ T6228] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 121.954755][ T6228] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 121.954765][ T6228] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 121.954772][ T6228] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 121.954777][ T6228] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 121.954783][ T6228] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 2025/09/15 02:01:08 executed programs: 4 [ 121.954789][ T6228] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 121.954804][ T6228] [ 121.954829][ T6228] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 121.954922][ T6228] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 121.954944][ T6228] CPU: 0 UID: 0 PID: 6228 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 121.954964][ T6228] Tainted: [W]=WARN [ 121.954967][ T6228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 121.954972][ T6228] Call Trace: [ 121.954976][ T6228] [ 121.954980][ T6228] dump_stack_lvl+0x189/0x250 [ 121.954995][ T6228] ? reacquire_held_locks+0x127/0x1d0 [ 121.955011][ T6228] ? __pfx_dump_stack_lvl+0x10/0x10 [ 121.955024][ T6228] ? __pfx__printk+0x10/0x10 [ 121.955036][ T6228] ? rt_spin_unlock+0x65/0x80 [ 121.955050][ T6228] gfs2_assert_warn_i+0x194/0x2c0 [ 121.955067][ T6228] gfs2_qd_dispose+0x4aa/0x5b0 [ 121.955080][ T6228] gfs2_quota_init+0xcce/0x1240 [ 121.955102][ T6228] ? __pfx_gfs2_quota_init+0x10/0x10 [ 121.955112][ T6228] ? __pfx_wake_up_bit+0x10/0x10 [ 121.955127][ T6228] ? inode_go_inval+0x259/0x2c0 [ 121.955139][ T6228] gfs2_make_fs_rw+0x181/0x2b0 [ 121.955153][ T6228] gfs2_reconfigure+0x617/0xb20 [ 121.955172][ T6228] reconfigure_super+0x224/0x890 [ 121.955188][ T6228] path_mount+0xd18/0xfe0 [ 121.955206][ T6228] __se_sys_mount+0x317/0x410 [ 121.955222][ T6228] ? __pfx___se_sys_mount+0x10/0x10 [ 121.955234][ T6228] ? rcu_is_watching+0x15/0xb0 [ 121.955251][ T6228] ? do_syscall_64+0xbe/0x3b0 [ 121.955258][ T6228] ? __x64_sys_mount+0x20/0xc0 [ 121.955272][ T6228] do_syscall_64+0xfa/0x3b0 [ 121.955281][ T6228] ? lockdep_hardirqs_on+0x9c/0x150 [ 121.955294][ T6228] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.955303][ T6228] ? clear_bhb_loop+0x60/0xb0 [ 121.955314][ T6228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.955322][ T6228] RIP: 0033:0x7f138461dda9 [ 121.955330][ T6228] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 121.955337][ T6228] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 121.955347][ T6228] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 121.955354][ T6228] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 121.955359][ T6228] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 121.955365][ T6228] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 121.955370][ T6228] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 121.955385][ T6228] [ 122.320780][ T6228] gfs2: fsid=syz:syz.0: found 1 quota changes [ 123.055651][ T6244] loop0: detected capacity change from 0 to 32768 [ 123.080559][ T6244] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 123.080577][ T6244] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 123.110049][ T6244] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 123.114272][ T990] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 123.114293][ T990] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 123.285194][ T990] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 170ms [ 123.285425][ T990] gfs2: fsid=syz:syz.0: jid=0: Done [ 123.285521][ T6244] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 123.334626][ T6244] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 123.334647][ T6244] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6244, name: syz-executor.0 [ 123.334663][ T6244] preempt_count: 1, expected: 0 [ 123.334671][ T6244] RCU nest depth: 1, expected: 1 [ 123.334679][ T6244] 4 locks held by syz-executor.0/6244: [ 123.334690][ T6244] #0: ffff88803df320d0 (&type->s_umount_key#51){+.+.}-{4:4}, at: path_mount+0xcd2/0xfe0 [ 123.334748][ T6244] #1: ffffffff8df7ef98 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x845/0x1240 [ 123.334787][ T6244] #2: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0 [ 123.334812][ T6244] #3: ffff888041964858 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 123.334837][ T6244] Preemption disabled at: [ 123.334840][ T6244] [] spin_lock_bucket+0x3b/0x150 [ 123.334858][ T6244] CPU: 0 UID: 0 PID: 6244 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 123.334871][ T6244] Tainted: [W]=WARN [ 123.334874][ T6244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 123.334880][ T6244] Call Trace: [ 123.334885][ T6244] [ 123.334889][ T6244] dump_stack_lvl+0x189/0x250 [ 123.334907][ T6244] ? __pfx_dump_stack_lvl+0x10/0x10 [ 123.334920][ T6244] ? __pfx__printk+0x10/0x10 [ 123.334932][ T6244] ? print_lock_name+0xde/0x100 [ 123.334942][ T6244] ? spin_lock_bucket+0x3b/0x150 [ 123.334953][ T6244] __might_resched+0x44b/0x5d0 [ 123.334967][ T6244] ? spin_lock_bucket+0x3b/0x150 [ 123.334976][ T6244] ? __pfx___might_resched+0x10/0x10 [ 123.334987][ T6244] ? lockref_get_not_dead+0x28/0xd0 [ 123.335004][ T6244] rt_spin_lock+0xc7/0x2c0 [ 123.335017][ T6244] ? __pfx_rt_spin_lock+0x10/0x10 [ 123.335028][ T6244] ? migrate_disable+0xd5/0x190 [ 123.335040][ T6244] ? rt_spin_lock+0x223/0x2c0 [ 123.335053][ T6244] lockref_get_not_dead+0x28/0xd0 [ 123.335066][ T6244] gfs2_qd_search_bucket+0x139/0x210 [ 123.335078][ T6244] gfs2_quota_init+0x85d/0x1240 [ 123.335100][ T6244] ? __pfx_gfs2_quota_init+0x10/0x10 [ 123.335110][ T6244] ? __pfx_wake_up_bit+0x10/0x10 [ 123.335125][ T6244] ? inode_go_inval+0x259/0x2c0 [ 123.335137][ T6244] gfs2_make_fs_rw+0x181/0x2b0 [ 123.335152][ T6244] gfs2_reconfigure+0x617/0xb20 [ 123.335171][ T6244] reconfigure_super+0x224/0x890 [ 123.335186][ T6244] path_mount+0xd18/0xfe0 [ 123.335205][ T6244] __se_sys_mount+0x317/0x410 [ 123.335220][ T6244] ? __pfx___se_sys_mount+0x10/0x10 [ 123.335232][ T6244] ? rcu_is_watching+0x15/0xb0 [ 123.335249][ T6244] ? do_syscall_64+0xbe/0x3b0 [ 123.335257][ T6244] ? __x64_sys_mount+0x20/0xc0 [ 123.335271][ T6244] do_syscall_64+0xfa/0x3b0 [ 123.335279][ T6244] ? lockdep_hardirqs_on+0x9c/0x150 [ 123.335292][ T6244] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.335301][ T6244] ? clear_bhb_loop+0x60/0xb0 [ 123.335313][ T6244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.335322][ T6244] RIP: 0033:0x7f138461dda9 [ 123.335331][ T6244] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 123.335338][ T6244] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 123.335348][ T6244] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 123.335355][ T6244] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 123.335360][ T6244] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 123.335366][ T6244] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 123.335372][ T6244] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 123.335387][ T6244] [ 123.335397][ T6244] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 123.335412][ T6244] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 123.335424][ T6244] CPU: 0 UID: 0 PID: 6244 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 123.335436][ T6244] Tainted: [W]=WARN [ 123.335439][ T6244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 123.335444][ T6244] Call Trace: [ 123.335448][ T6244] [ 123.335451][ T6244] dump_stack_lvl+0x189/0x250 [ 123.335465][ T6244] ? reacquire_held_locks+0x127/0x1d0 [ 123.335480][ T6244] ? __pfx_dump_stack_lvl+0x10/0x10 [ 123.335493][ T6244] ? __pfx__printk+0x10/0x10 [ 123.335505][ T6244] ? rt_spin_unlock+0x65/0x80 [ 123.335521][ T6244] gfs2_assert_warn_i+0x194/0x2c0 [ 123.335537][ T6244] gfs2_qd_dispose+0x4aa/0x5b0 [ 123.335554][ T6244] gfs2_quota_init+0xcce/0x1240 [ 123.335575][ T6244] ? __pfx_gfs2_quota_init+0x10/0x10 [ 123.335585][ T6244] ? __pfx_wake_up_bit+0x10/0x10 [ 123.335599][ T6244] ? inode_go_inval+0x259/0x2c0 [ 123.335611][ T6244] gfs2_make_fs_rw+0x181/0x2b0 [ 123.335625][ T6244] gfs2_reconfigure+0x617/0xb20 [ 123.335644][ T6244] reconfigure_super+0x224/0x890 [ 123.335659][ T6244] path_mount+0xd18/0xfe0 [ 123.335677][ T6244] __se_sys_mount+0x317/0x410 [ 123.335693][ T6244] ? __pfx___se_sys_mount+0x10/0x10 [ 123.335705][ T6244] ? rcu_is_watching+0x15/0xb0 [ 123.335721][ T6244] ? do_syscall_64+0xbe/0x3b0 [ 123.335728][ T6244] ? __x64_sys_mount+0x20/0xc0 [ 123.335742][ T6244] do_syscall_64+0xfa/0x3b0 [ 123.335750][ T6244] ? lockdep_hardirqs_on+0x9c/0x150 [ 123.335763][ T6244] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.335778][ T6244] ? clear_bhb_loop+0x60/0xb0 [ 123.335790][ T6244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.335798][ T6244] RIP: 0033:0x7f138461dda9 [ 123.335806][ T6244] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 123.335813][ T6244] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 123.335822][ T6244] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 123.335829][ T6244] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 123.335834][ T6244] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 123.335840][ T6244] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 123.335845][ T6244] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 123.335860][ T6244] [ 123.730774][ T6244] gfs2: fsid=syz:syz.0: found 1 quota changes [ 124.371440][ T6248] loop0: detected capacity change from 0 to 32768 [ 124.396397][ T6248] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 124.396413][ T6248] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 124.421701][ T6248] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 124.425782][ T990] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 124.425794][ T990] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 124.556201][ T990] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 130ms [ 124.556377][ T990] gfs2: fsid=syz:syz.0: jid=0: Done [ 124.556480][ T6248] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 124.614230][ T6248] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 124.614252][ T6248] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6248, name: syz-executor.0 [ 124.614267][ T6248] preempt_count: 1, expected: 0 [ 124.614276][ T6248] RCU nest depth: 1, expected: 1 [ 124.614285][ T6248] 4 locks held by syz-executor.0/6248: [ 124.614295][ T6248] #0: ffff88804ce9a0d0 (&type->s_umount_key#51){+.+.}-{4:4}, at: path_mount+0xcd2/0xfe0 [ 124.614352][ T6248] #1: ffffffff8df7ef98 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x845/0x1240 [ 124.614382][ T6248] #2: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0 [ 124.614409][ T6248] #3: ffff8880419649e8 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 124.614435][ T6248] Preemption disabled at: [ 124.614438][ T6248] [] spin_lock_bucket+0x3b/0x150 [ 124.614456][ T6248] CPU: 1 UID: 0 PID: 6248 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 124.614470][ T6248] Tainted: [W]=WARN [ 124.614473][ T6248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 124.614479][ T6248] Call Trace: [ 124.614484][ T6248] [ 124.614489][ T6248] dump_stack_lvl+0x189/0x250 [ 124.614506][ T6248] ? __pfx_dump_stack_lvl+0x10/0x10 [ 124.614520][ T6248] ? __pfx__printk+0x10/0x10 [ 124.614532][ T6248] ? print_lock_name+0xde/0x100 [ 124.614547][ T6248] ? spin_lock_bucket+0x3b/0x150 [ 124.614566][ T6248] __might_resched+0x44b/0x5d0 [ 124.614589][ T6248] ? spin_lock_bucket+0x3b/0x150 [ 124.614606][ T6248] ? __pfx___might_resched+0x10/0x10 [ 124.614623][ T6248] ? lockref_get_not_dead+0x28/0xd0 [ 124.614662][ T6248] rt_spin_lock+0xc7/0x2c0 [ 124.614677][ T6248] ? __pfx_rt_spin_lock+0x10/0x10 [ 124.614687][ T6248] ? migrate_disable+0xd5/0x190 [ 124.614700][ T6248] ? rt_spin_lock+0x223/0x2c0 [ 124.614713][ T6248] lockref_get_not_dead+0x28/0xd0 [ 124.614726][ T6248] gfs2_qd_search_bucket+0x139/0x210 [ 124.614739][ T6248] gfs2_quota_init+0x85d/0x1240 [ 124.614761][ T6248] ? __pfx_gfs2_quota_init+0x10/0x10 [ 124.614771][ T6248] ? __pfx_wake_up_bit+0x10/0x10 [ 124.614786][ T6248] ? inode_go_inval+0x259/0x2c0 [ 124.614799][ T6248] gfs2_make_fs_rw+0x181/0x2b0 [ 124.614814][ T6248] gfs2_reconfigure+0x617/0xb20 [ 124.614833][ T6248] reconfigure_super+0x224/0x890 [ 124.614849][ T6248] path_mount+0xd18/0xfe0 [ 124.614868][ T6248] __se_sys_mount+0x317/0x410 [ 124.614884][ T6248] ? __pfx___se_sys_mount+0x10/0x10 [ 124.614895][ T6248] ? rcu_is_watching+0x15/0xb0 [ 124.614913][ T6248] ? do_syscall_64+0xbe/0x3b0 [ 124.614921][ T6248] ? __x64_sys_mount+0x20/0xc0 [ 124.614935][ T6248] do_syscall_64+0xfa/0x3b0 [ 124.614943][ T6248] ? lockdep_hardirqs_on+0x9c/0x150 [ 124.614956][ T6248] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.614965][ T6248] ? clear_bhb_loop+0x60/0xb0 [ 124.614977][ T6248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.614986][ T6248] RIP: 0033:0x7f138461dda9 [ 124.614996][ T6248] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 124.615004][ T6248] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 124.615014][ T6248] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 124.615021][ T6248] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 124.615027][ T6248] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 124.615033][ T6248] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 124.615039][ T6248] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 124.615054][ T6248] [ 124.615065][ T6248] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 124.615081][ T6248] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 124.615094][ T6248] CPU: 1 UID: 0 PID: 6248 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 124.615107][ T6248] Tainted: [W]=WARN [ 124.615110][ T6248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 124.615115][ T6248] Call Trace: [ 124.615119][ T6248] [ 124.615122][ T6248] dump_stack_lvl+0x189/0x250 [ 124.615136][ T6248] ? reacquire_held_locks+0x127/0x1d0 [ 124.615152][ T6248] ? __pfx_dump_stack_lvl+0x10/0x10 [ 124.615165][ T6248] ? __pfx__printk+0x10/0x10 [ 124.615177][ T6248] ? rt_spin_unlock+0x65/0x80 [ 124.615191][ T6248] gfs2_assert_warn_i+0x194/0x2c0 [ 124.615207][ T6248] gfs2_qd_dispose+0x4aa/0x5b0 [ 124.615220][ T6248] gfs2_quota_init+0xcce/0x1240 [ 124.615241][ T6248] ? __pfx_gfs2_quota_init+0x10/0x10 [ 124.615251][ T6248] ? __pfx_wake_up_bit+0x10/0x10 [ 124.615266][ T6248] ? inode_go_inval+0x259/0x2c0 [ 124.615278][ T6248] gfs2_make_fs_rw+0x181/0x2b0 [ 124.615292][ T6248] gfs2_reconfigure+0x617/0xb20 [ 124.615311][ T6248] reconfigure_super+0x224/0x890 [ 124.615326][ T6248] path_mount+0xd18/0xfe0 [ 124.615344][ T6248] __se_sys_mount+0x317/0x410 [ 124.615360][ T6248] ? __pfx___se_sys_mount+0x10/0x10 [ 124.615372][ T6248] ? rcu_is_watching+0x15/0xb0 [ 124.615388][ T6248] ? do_syscall_64+0xbe/0x3b0 [ 124.615398][ T6248] ? __x64_sys_mount+0x20/0xc0 [ 124.615412][ T6248] do_syscall_64+0xfa/0x3b0 [ 124.615420][ T6248] ? lockdep_hardirqs_on+0x9c/0x150 [ 124.615432][ T6248] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.615441][ T6248] ? clear_bhb_loop+0x60/0xb0 [ 124.615453][ T6248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.615461][ T6248] RIP: 0033:0x7f138461dda9 [ 124.615469][ T6248] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 124.615476][ T6248] RSP: 002b:00007f138399e0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 124.615485][ T6248] RAX: ffffffffffffffda RBX: 00007f138474bf80 RCX: 00007f138461dda9 [ 124.615492][ T6248] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 124.615497][ T6248] RBP: 00007f138466a47a R08: 0000000000000000 R09: 0000000000000000 [ 124.615503][ T6248] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 124.615509][ T6248] R13: 000000000000000b R14: 00007f138474bf80 R15: 00007ffff807a4d8 [ 124.615524][ T6248] [ 125.022321][ T6248] gfs2: fsid=syz:syz.0: found 1 quota changes [ 125.673793][ T6252] loop0: detected capacity change from 0 to 32768 [ 125.705453][ T6252] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 125.705471][ T6252] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 125.726477][ T6252] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 125.735783][ T990] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 125.735799][ T990] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...