Warning: Permanently added '10.128.0.227' (ED25519) to the list of known hosts. 2026/05/10 19:29:38 ignoring optional flag "type"="gce" 2026/05/10 19:29:38 parsed 1 programs 2026/05/10 19:29:40 executed programs: 0 [ 106.638706][ T5828] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 106.712926][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 106.715484][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 106.716203][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 106.737750][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 106.743128][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 107.407898][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.408045][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.408145][ T5835] bridge_slave_0: entered allmulticast mode [ 107.409608][ T5835] bridge_slave_0: entered promiscuous mode [ 107.411573][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.411688][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.411789][ T5835] bridge_slave_1: entered allmulticast mode [ 107.413115][ T5835] bridge_slave_1: entered promiscuous mode [ 107.560873][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.564638][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.749763][ T5835] team0: Port device team_slave_0 added [ 107.751795][ T5835] team0: Port device team_slave_1 added [ 107.880272][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.880288][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.880306][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.881743][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.881754][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.881774][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.082483][ T5835] hsr_slave_0: entered promiscuous mode [ 108.083392][ T5835] hsr_slave_1: entered promiscuous mode [ 108.826548][ T5624] Bluetooth: hci0: command tx timeout [ 110.094211][ T5835] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 110.132212][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 110.134619][ T5835] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 110.170981][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 110.172506][ T5835] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 110.213481][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 110.215369][ T5835] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 110.250091][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 110.460625][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.485482][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.504084][ T813] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.504768][ T813] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.521908][ T813] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.523160][ T813] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.896622][ T5624] Bluetooth: hci0: command tx timeout [ 111.190885][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 111.300350][ T5835] veth0_vlan: entered promiscuous mode [ 111.335887][ T5835] veth1_vlan: entered promiscuous mode [ 111.411447][ T5835] veth0_macvtap: entered promiscuous mode [ 111.431708][ T5835] veth1_macvtap: entered promiscuous mode [ 111.465085][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 111.483829][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 111.511013][ T39] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.513835][ T39] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.555438][ T39] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.571001][ T3329] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.431954][ T5956] loop0: detected capacity change from 0 to 32768 [ 112.612687][ T5956] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 112.612704][ T5956] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 112.752717][ T5956] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 112.776088][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 112.776105][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 112.986593][ T5624] Bluetooth: hci0: command tx timeout [ 113.076024][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 299ms [ 113.094748][ T9] gfs2: fsid=syz:syz.0: jid=0: Done [ 113.104820][ T5956] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 113.290957][ T5956] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 113.290978][ T5956] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 5956, name: syz-executor.0 [ 113.290993][ T5956] preempt_count: 1, expected: 0 [ 113.291001][ T5956] RCU nest depth: 1, expected: 1 [ 113.291023][ T5956] 4 locks held by syz-executor.0/5956: [ 113.291033][ T5956] #0: ffff8880118b80d0 (&type->s_umount_key#53){+.+.}-{4:4}, at: path_mount+0xd7d/0x10e0 [ 113.291116][ T5956] #1: ffffffff8e620578 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 113.291163][ T5956] #2: ffffffff8dfc8140 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 113.291203][ T5956] #3: ffff88804ee70b78 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 113.291246][ T5956] Preemption disabled at: [ 113.291250][ T5956] [] spin_lock_bucket+0x3b/0x150 [ 113.291293][ T5956] CPU: 1 UID: 0 PID: 5956 Comm: syz-executor.0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 113.291305][ T5956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 113.291316][ T5956] Call Trace: [ 113.291322][ T5956] [ 113.291327][ T5956] dump_stack_lvl+0xe8/0x150 [ 113.291340][ T5956] __might_resched+0x329/0x480 [ 113.291352][ T5956] ? spin_lock_bucket+0x3b/0x150 [ 113.291367][ T5956] rt_spin_lock+0xc2/0x400 [ 113.291378][ T5956] ? __pfx_rt_spin_lock+0x10/0x10 [ 113.291394][ T5956] ? preempt_count_add+0x91/0x190 [ 113.291405][ T5956] ? rt_spin_lock+0x2ce/0x400 [ 113.291416][ T5956] lockref_get_not_dead+0x28/0xd0 [ 113.291428][ T5956] gfs2_qd_search_bucket+0x139/0x210 [ 113.291444][ T5956] gfs2_quota_init+0x86c/0x1220 [ 113.291458][ T5956] ? lockdep_hardirqs_on+0x7a/0x110 [ 113.291481][ T5956] ? __pfx_gfs2_quota_init+0x10/0x10 [ 113.291499][ T5956] ? inode_go_inval+0x2a0/0x360 [ 113.291510][ T5956] gfs2_make_fs_rw+0x143/0x230 [ 113.291524][ T5956] gfs2_reconfigure+0x617/0xb20 [ 113.291541][ T5956] reconfigure_super+0x227/0x8a0 [ 113.291556][ T5956] path_mount+0xdc5/0x10e0 [ 113.291572][ T5956] ? user_path_at+0xd4/0x160 [ 113.291583][ T5956] __se_sys_mount+0x31d/0x420 [ 113.291605][ T5956] ? __pfx___se_sys_mount+0x10/0x10 [ 113.291633][ T5956] ? __x64_sys_mount+0x20/0xc0 [ 113.291649][ T5956] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.291660][ T5956] do_syscall_64+0x15f/0xf80 [ 113.291671][ T5956] ? trace_irq_disable+0x3b/0x140 [ 113.291683][ T5956] ? clear_bhb_loop+0x40/0x90 [ 113.291695][ T5956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.291705][ T5956] RIP: 0033:0x7f888dcee3b9 [ 113.291719][ T5956] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 113.291726][ T5956] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 113.291736][ T5956] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 113.291743][ T5956] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 113.291748][ T5956] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 113.291754][ T5956] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 113.291759][ T5956] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 113.291774][ T5956] [ 113.291916][ T5956] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 113.302499][ T5956] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 113.302534][ T5956] CPU: 1 UID: 0 PID: 5956 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 113.302558][ T5956] Tainted: [W]=WARN [ 113.302563][ T5956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 113.302573][ T5956] Call Trace: [ 113.302580][ T5956] [ 113.302587][ T5956] dump_stack_lvl+0xe8/0x150 [ 113.302613][ T5956] gfs2_assert_warn_i+0x194/0x2c0 [ 113.302640][ T5956] gfs2_qd_dispose+0x466/0x570 [ 113.302663][ T5956] gfs2_quota_init+0xcda/0x1220 [ 113.302686][ T5956] ? lockdep_hardirqs_on+0x7a/0x110 [ 113.302726][ T5956] ? __pfx_gfs2_quota_init+0x10/0x10 [ 113.302756][ T5956] ? inode_go_inval+0x2a0/0x360 [ 113.302776][ T5956] gfs2_make_fs_rw+0x143/0x230 [ 113.302799][ T5956] gfs2_reconfigure+0x617/0xb20 [ 113.302829][ T5956] reconfigure_super+0x227/0x8a0 [ 113.302857][ T5956] path_mount+0xdc5/0x10e0 [ 113.302886][ T5956] ? user_path_at+0xd4/0x160 [ 113.302959][ T5956] __se_sys_mount+0x31d/0x420 [ 113.302990][ T5956] ? __pfx___se_sys_mount+0x10/0x10 [ 113.303019][ T5956] ? __x64_sys_mount+0x20/0xc0 [ 113.303040][ T5956] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.303058][ T5956] do_syscall_64+0x15f/0xf80 [ 113.303077][ T5956] ? trace_irq_disable+0x3b/0x140 [ 113.303102][ T5956] ? clear_bhb_loop+0x40/0x90 [ 113.303123][ T5956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.303140][ T5956] RIP: 0033:0x7f888dcee3b9 [ 113.303161][ T5956] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 113.303174][ T5956] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 113.303192][ T5956] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 113.303204][ T5956] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 113.303214][ T5956] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 113.303224][ T5956] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 113.303234][ T5956] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 113.303261][ T5956] 2026/05/10 19:29:48 executed programs: 1 [ 114.035538][ T5956] gfs2: fsid=syz:syz.0: found 1 quota changes [ 114.972998][ T5997] loop0: detected capacity change from 0 to 32768 [ 115.019595][ T5997] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 115.019613][ T5997] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 115.058328][ T5624] Bluetooth: hci0: command tx timeout [ 115.141873][ T5997] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 115.158484][ T5640] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 115.158500][ T5640] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 115.471910][ T5640] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 313ms [ 115.478792][ T5640] gfs2: fsid=syz:syz.0: jid=0: Done [ 115.478892][ T5997] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 115.554652][ T5997] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 115.554670][ T5997] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 5997, name: syz-executor.0 [ 115.554683][ T5997] preempt_count: 1, expected: 0 [ 115.554691][ T5997] RCU nest depth: 1, expected: 1 [ 115.554698][ T5997] 4 locks held by syz-executor.0/5997: [ 115.554707][ T5997] #0: ffff888037cba0d0 (&type->s_umount_key#53){+.+.}-{4:4}, at: path_mount+0xd7d/0x10e0 [ 115.554788][ T5997] #1: ffffffff8e620578 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 115.554834][ T5997] #2: ffffffff8dfc8140 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 115.554872][ T5997] #3: ffff88804ee70858 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 115.554917][ T5997] Preemption disabled at: [ 115.554921][ T5997] [] spin_lock_bucket+0x3b/0x150 [ 115.554964][ T5997] CPU: 1 UID: 0 PID: 5997 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 115.554988][ T5997] Tainted: [W]=WARN [ 115.554994][ T5997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 115.555003][ T5997] Call Trace: [ 115.555009][ T5997] [ 115.555016][ T5997] dump_stack_lvl+0xe8/0x150 [ 115.555038][ T5997] __might_resched+0x329/0x480 [ 115.555058][ T5997] ? spin_lock_bucket+0x3b/0x150 [ 115.555084][ T5997] rt_spin_lock+0xc2/0x400 [ 115.555104][ T5997] ? __pfx_rt_spin_lock+0x10/0x10 [ 115.555121][ T5997] ? preempt_count_add+0x91/0x190 [ 115.555139][ T5997] ? rt_spin_lock+0x2ce/0x400 [ 115.555158][ T5997] lockref_get_not_dead+0x28/0xd0 [ 115.555179][ T5997] gfs2_qd_search_bucket+0x139/0x210 [ 115.555207][ T5997] gfs2_quota_init+0x86c/0x1220 [ 115.555229][ T5997] ? lockdep_hardirqs_on+0x7a/0x110 [ 115.555271][ T5997] ? __pfx_gfs2_quota_init+0x10/0x10 [ 115.555306][ T5997] ? inode_go_inval+0x2a0/0x360 [ 115.555327][ T5997] gfs2_make_fs_rw+0x143/0x230 [ 115.555350][ T5997] gfs2_reconfigure+0x617/0xb20 [ 115.555381][ T5997] reconfigure_super+0x227/0x8a0 [ 115.555417][ T5997] path_mount+0xdc5/0x10e0 [ 115.555448][ T5997] ? user_path_at+0xd4/0x160 [ 115.555468][ T5997] __se_sys_mount+0x31d/0x420 [ 115.555495][ T5997] ? __pfx___se_sys_mount+0x10/0x10 [ 115.555524][ T5997] ? __x64_sys_mount+0x20/0xc0 [ 115.555546][ T5997] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.555565][ T5997] do_syscall_64+0x15f/0xf80 [ 115.555584][ T5997] ? trace_irq_disable+0x3b/0x140 [ 115.555605][ T5997] ? clear_bhb_loop+0x40/0x90 [ 115.555627][ T5997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.555644][ T5997] RIP: 0033:0x7f888dcee3b9 [ 115.555669][ T5997] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 115.555682][ T5997] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 115.555699][ T5997] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 115.555711][ T5997] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 115.555721][ T5997] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 115.555731][ T5997] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 115.555742][ T5997] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 115.555772][ T5997] [ 115.555805][ T5997] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 115.556014][ T5997] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 115.556038][ T5997] CPU: 1 UID: 0 PID: 5997 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 115.556061][ T5997] Tainted: [W]=WARN [ 115.556066][ T5997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 115.556074][ T5997] Call Trace: [ 115.556081][ T5997] [ 115.556088][ T5997] dump_stack_lvl+0xe8/0x150 [ 115.556110][ T5997] gfs2_assert_warn_i+0x194/0x2c0 [ 115.556137][ T5997] gfs2_qd_dispose+0x466/0x570 [ 115.556157][ T5997] gfs2_quota_init+0xcda/0x1220 [ 115.556179][ T5997] ? lockdep_hardirqs_on+0x7a/0x110 [ 115.556219][ T5997] ? __pfx_gfs2_quota_init+0x10/0x10 [ 115.556250][ T5997] ? inode_go_inval+0x2a0/0x360 [ 115.556271][ T5997] gfs2_make_fs_rw+0x143/0x230 [ 115.556293][ T5997] gfs2_reconfigure+0x617/0xb20 [ 115.556324][ T5997] reconfigure_super+0x227/0x8a0 [ 115.556351][ T5997] path_mount+0xdc5/0x10e0 [ 115.556384][ T5997] ? user_path_at+0xd4/0x160 [ 115.556409][ T5997] __se_sys_mount+0x31d/0x420 [ 115.556437][ T5997] ? __pfx___se_sys_mount+0x10/0x10 [ 115.556466][ T5997] ? __x64_sys_mount+0x20/0xc0 [ 115.556488][ T5997] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.556507][ T5997] do_syscall_64+0x15f/0xf80 [ 115.556526][ T5997] ? trace_irq_disable+0x3b/0x140 [ 115.556546][ T5997] ? clear_bhb_loop+0x40/0x90 [ 115.556567][ T5997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.556584][ T5997] RIP: 0033:0x7f888dcee3b9 [ 115.556599][ T5997] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 115.556613][ T5997] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 115.556630][ T5997] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 115.556642][ T5997] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 115.556652][ T5997] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 115.556662][ T5997] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 115.556672][ T5997] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 115.556700][ T5997] [ 115.929801][ T5997] gfs2: fsid=syz:syz.0: found 1 quota changes [ 116.962026][ T6031] loop0: detected capacity change from 0 to 32768 [ 117.028805][ T6031] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 117.028838][ T6031] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 117.116502][ T6031] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 117.123825][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 117.123843][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 117.326168][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 202ms [ 117.339894][ T9] gfs2: fsid=syz:syz.0: jid=0: Done [ 117.343697][ T6031] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 117.380877][ T6031] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 117.380898][ T6031] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6031, name: syz-executor.0 [ 117.380913][ T6031] preempt_count: 1, expected: 0 [ 117.380921][ T6031] RCU nest depth: 1, expected: 1 [ 117.380929][ T6031] 4 locks held by syz-executor.0/6031: [ 117.380939][ T6031] #0: ffff8880387de0d0 (&type->s_umount_key#53){+.+.}-{4:4}, at: path_mount+0xd7d/0x10e0 [ 117.380997][ T6031] #1: ffffffff8e620578 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 117.381025][ T6031] #2: ffffffff8dfc8140 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 117.381047][ T6031] #3: ffff88804ee70538 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 117.381073][ T6031] Preemption disabled at: [ 117.381075][ T6031] [] spin_lock_bucket+0x3b/0x150 [ 117.381096][ T6031] CPU: 1 UID: 0 PID: 6031 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 117.381110][ T6031] Tainted: [W]=WARN [ 117.381113][ T6031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 117.381119][ T6031] Call Trace: [ 117.381123][ T6031] [ 117.381128][ T6031] dump_stack_lvl+0xe8/0x150 [ 117.381140][ T6031] __might_resched+0x329/0x480 [ 117.381152][ T6031] ? spin_lock_bucket+0x3b/0x150 [ 117.381167][ T6031] rt_spin_lock+0xc2/0x400 [ 117.381178][ T6031] ? __pfx_rt_spin_lock+0x10/0x10 [ 117.381188][ T6031] ? preempt_count_add+0x91/0x190 [ 117.381199][ T6031] ? rt_spin_lock+0x2ce/0x400 [ 117.381210][ T6031] lockref_get_not_dead+0x28/0xd0 [ 117.381224][ T6031] gfs2_qd_search_bucket+0x139/0x210 [ 117.381241][ T6031] gfs2_quota_init+0x86c/0x1220 [ 117.381254][ T6031] ? lockdep_hardirqs_on+0x7a/0x110 [ 117.381276][ T6031] ? __pfx_gfs2_quota_init+0x10/0x10 [ 117.381295][ T6031] ? inode_go_inval+0x2a0/0x360 [ 117.381306][ T6031] gfs2_make_fs_rw+0x143/0x230 [ 117.381319][ T6031] gfs2_reconfigure+0x617/0xb20 [ 117.381336][ T6031] reconfigure_super+0x227/0x8a0 [ 117.381351][ T6031] path_mount+0xdc5/0x10e0 [ 117.381368][ T6031] ? user_path_at+0xd4/0x160 [ 117.381379][ T6031] __se_sys_mount+0x31d/0x420 [ 117.381396][ T6031] ? __pfx___se_sys_mount+0x10/0x10 [ 117.381413][ T6031] ? __x64_sys_mount+0x20/0xc0 [ 117.381426][ T6031] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.381437][ T6031] do_syscall_64+0x15f/0xf80 [ 117.381448][ T6031] ? trace_irq_disable+0x3b/0x140 [ 117.381460][ T6031] ? clear_bhb_loop+0x40/0x90 [ 117.381472][ T6031] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.381482][ T6031] RIP: 0033:0x7f888dcee3b9 [ 117.381492][ T6031] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 117.381500][ T6031] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 117.381509][ T6031] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 117.381516][ T6031] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 117.381521][ T6031] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 117.381527][ T6031] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 117.381532][ T6031] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 117.381547][ T6031] [ 117.381560][ T6031] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 117.381576][ T6031] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 117.381588][ T6031] CPU: 1 UID: 0 PID: 6031 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 117.381600][ T6031] Tainted: [W]=WARN [ 117.381603][ T6031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 117.381608][ T6031] Call Trace: [ 117.381611][ T6031] [ 117.381615][ T6031] dump_stack_lvl+0xe8/0x150 [ 117.381626][ T6031] gfs2_assert_warn_i+0x194/0x2c0 [ 117.381641][ T6031] gfs2_qd_dispose+0x466/0x570 [ 117.381653][ T6031] gfs2_quota_init+0xcda/0x1220 [ 117.381674][ T6031] ? lockdep_hardirqs_on+0x7a/0x110 [ 117.381708][ T6031] ? __pfx_gfs2_quota_init+0x10/0x10 [ 117.381739][ T6031] ? inode_go_inval+0x2a0/0x360 [ 117.381758][ T6031] gfs2_make_fs_rw+0x143/0x230 [ 117.381779][ T6031] gfs2_reconfigure+0x617/0xb20 [ 117.381802][ T6031] reconfigure_super+0x227/0x8a0 [ 117.381817][ T6031] path_mount+0xdc5/0x10e0 [ 117.381833][ T6031] ? user_path_at+0xd4/0x160 [ 117.381844][ T6031] __se_sys_mount+0x31d/0x420 [ 117.381860][ T6031] ? __pfx___se_sys_mount+0x10/0x10 [ 117.381877][ T6031] ? __x64_sys_mount+0x20/0xc0 [ 117.381890][ T6031] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.381900][ T6031] do_syscall_64+0x15f/0xf80 [ 117.381912][ T6031] ? trace_irq_disable+0x3b/0x140 [ 117.381922][ T6031] ? clear_bhb_loop+0x40/0x90 [ 117.381933][ T6031] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.381942][ T6031] RIP: 0033:0x7f888dcee3b9 [ 117.381951][ T6031] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 117.381958][ T6031] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 117.382017][ T6031] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 117.382027][ T6031] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 117.382034][ T6031] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 117.382039][ T6031] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 117.382045][ T6031] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 117.382062][ T6031] [ 117.899432][ T6031] gfs2: fsid=syz:syz.0: found 1 quota changes [ 118.445063][ T6052] loop0: detected capacity change from 0 to 32768 [ 118.476901][ T6052] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 118.476920][ T6052] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 118.536998][ T6052] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 118.539832][ T5640] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 118.539844][ T5640] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 118.713178][ T5640] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 173ms [ 118.713343][ T5640] gfs2: fsid=syz:syz.0: jid=0: Done [ 118.714666][ T6052] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 118.794560][ T6052] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 118.794582][ T6052] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6052, name: syz-executor.0 [ 118.794597][ T6052] preempt_count: 1, expected: 0 [ 118.794604][ T6052] RCU nest depth: 1, expected: 1 [ 118.794613][ T6052] 4 locks held by syz-executor.0/6052: [ 118.794623][ T6052] #0: ffff88803a3400d0 (&type->s_umount_key#53){+.+.}-{4:4}, at: path_mount+0xd7d/0x10e0 [ 118.794680][ T6052] #1: ffffffff8e620578 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 118.794728][ T6052] #2: ffffffff8dfc8140 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 118.794763][ T6052] #3: ffff88804ee70218 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 118.794788][ T6052] Preemption disabled at: [ 118.794791][ T6052] [] spin_lock_bucket+0x3b/0x150 [ 118.794813][ T6052] CPU: 0 UID: 0 PID: 6052 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 118.794833][ T6052] Tainted: [W]=WARN [ 118.794837][ T6052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 118.794845][ T6052] Call Trace: [ 118.794851][ T6052] [ 118.794858][ T6052] dump_stack_lvl+0xe8/0x150 [ 118.794877][ T6052] __might_resched+0x329/0x480 [ 118.794895][ T6052] ? spin_lock_bucket+0x3b/0x150 [ 118.794912][ T6052] rt_spin_lock+0xc2/0x400 [ 118.794928][ T6052] ? __pfx_rt_spin_lock+0x10/0x10 [ 118.794938][ T6052] ? preempt_count_add+0x91/0x190 [ 118.794949][ T6052] ? rt_spin_lock+0x2ce/0x400 [ 118.794959][ T6052] lockref_get_not_dead+0x28/0xd0 [ 118.794972][ T6052] gfs2_qd_search_bucket+0x139/0x210 [ 118.794988][ T6052] gfs2_quota_init+0x86c/0x1220 [ 118.795002][ T6052] ? lockdep_hardirqs_on+0x7a/0x110 [ 118.795024][ T6052] ? __pfx_gfs2_quota_init+0x10/0x10 [ 118.795042][ T6052] ? inode_go_inval+0x2a0/0x360 [ 118.795054][ T6052] gfs2_make_fs_rw+0x143/0x230 [ 118.795091][ T6052] gfs2_reconfigure+0x617/0xb20 [ 118.795108][ T6052] reconfigure_super+0x227/0x8a0 [ 118.795123][ T6052] path_mount+0xdc5/0x10e0 [ 118.795140][ T6052] ? user_path_at+0xd4/0x160 [ 118.795151][ T6052] __se_sys_mount+0x31d/0x420 [ 118.795169][ T6052] ? __pfx___se_sys_mount+0x10/0x10 [ 118.795186][ T6052] ? __x64_sys_mount+0x20/0xc0 [ 118.795199][ T6052] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.795210][ T6052] do_syscall_64+0x15f/0xf80 [ 118.795221][ T6052] ? trace_irq_disable+0x3b/0x140 [ 118.795232][ T6052] ? clear_bhb_loop+0x40/0x90 [ 118.795244][ T6052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.795254][ T6052] RIP: 0033:0x7f888dcee3b9 [ 118.795264][ T6052] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 118.795272][ T6052] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 118.795282][ T6052] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 118.795288][ T6052] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 118.795294][ T6052] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 118.795299][ T6052] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 118.795305][ T6052] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 118.795320][ T6052] [ 118.795342][ T6052] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 118.795359][ T6052] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 118.795372][ T6052] CPU: 0 UID: 0 PID: 6052 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 118.795384][ T6052] Tainted: [W]=WARN [ 118.795387][ T6052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 118.795392][ T6052] Call Trace: [ 118.795396][ T6052] [ 118.795399][ T6052] dump_stack_lvl+0xe8/0x150 [ 118.795411][ T6052] gfs2_assert_warn_i+0x194/0x2c0 [ 118.795427][ T6052] gfs2_qd_dispose+0x466/0x570 2026/05/10 19:29:53 executed programs: 4 [ 118.795438][ T6052] gfs2_quota_init+0xcda/0x1220 [ 118.795452][ T6052] ? lockdep_hardirqs_on+0x7a/0x110 [ 118.795473][ T6052] ? __pfx_gfs2_quota_init+0x10/0x10 [ 118.795491][ T6052] ? inode_go_inval+0x2a0/0x360 [ 118.795502][ T6052] gfs2_make_fs_rw+0x143/0x230 [ 118.795515][ T6052] gfs2_reconfigure+0x617/0xb20 [ 118.795532][ T6052] reconfigure_super+0x227/0x8a0 [ 118.795545][ T6052] path_mount+0xdc5/0x10e0 [ 118.795562][ T6052] ? user_path_at+0xd4/0x160 [ 118.795572][ T6052] __se_sys_mount+0x31d/0x420 [ 118.795589][ T6052] ? __pfx___se_sys_mount+0x10/0x10 [ 118.795606][ T6052] ? __x64_sys_mount+0x20/0xc0 [ 118.795619][ T6052] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.795628][ T6052] do_syscall_64+0x15f/0xf80 [ 118.795639][ T6052] ? trace_irq_disable+0x3b/0x140 [ 118.795650][ T6052] ? clear_bhb_loop+0x40/0x90 [ 118.795661][ T6052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.795670][ T6052] RIP: 0033:0x7f888dcee3b9 [ 118.795679][ T6052] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 118.795686][ T6052] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 118.795694][ T6052] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 118.795701][ T6052] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 118.795706][ T6052] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 118.795712][ T6052] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 118.795717][ T6052] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 118.795735][ T6052] [ 119.190792][ T6052] gfs2: fsid=syz:syz.0: found 1 quota changes [ 119.842642][ T6058] loop0: detected capacity change from 0 to 32768 [ 119.867371][ T6058] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 119.867388][ T6058] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 119.923426][ T6058] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 119.942715][ T5640] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 119.942751][ T5640] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 120.102316][ T5640] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 159ms [ 120.102493][ T5640] gfs2: fsid=syz:syz.0: jid=0: Done [ 120.104201][ T6058] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 120.174641][ T6058] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 120.174663][ T6058] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6058, name: syz-executor.0 [ 120.174678][ T6058] preempt_count: 1, expected: 0 [ 120.174686][ T6058] RCU nest depth: 1, expected: 1 [ 120.174695][ T6058] 4 locks held by syz-executor.0/6058: [ 120.174704][ T6058] #0: ffff88803a04a0d0 (&type->s_umount_key#53){+.+.}-{4:4}, at: path_mount+0xd7d/0x10e0 [ 120.174826][ T6058] #1: ffffffff8e620578 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 120.174854][ T6058] #2: ffffffff8dfc8140 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 120.174876][ T6058] #3: ffff88804efe5668 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 120.174902][ T6058] Preemption disabled at: [ 120.174905][ T6058] [] spin_lock_bucket+0x3b/0x150 [ 120.174927][ T6058] CPU: 0 UID: 0 PID: 6058 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 120.174940][ T6058] Tainted: [W]=WARN [ 120.174943][ T6058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 120.174949][ T6058] Call Trace: [ 120.174956][ T6058] [ 120.174964][ T6058] dump_stack_lvl+0xe8/0x150 [ 120.174984][ T6058] __might_resched+0x329/0x480 [ 120.175001][ T6058] ? spin_lock_bucket+0x3b/0x150 [ 120.175025][ T6058] rt_spin_lock+0xc2/0x400 [ 120.175044][ T6058] ? __pfx_rt_spin_lock+0x10/0x10 [ 120.175061][ T6058] ? preempt_count_add+0x91/0x190 [ 120.175079][ T6058] ? rt_spin_lock+0x2ce/0x400 [ 120.175099][ T6058] lockref_get_not_dead+0x28/0xd0 [ 120.175120][ T6058] gfs2_qd_search_bucket+0x139/0x210 [ 120.175141][ T6058] gfs2_quota_init+0x86c/0x1220 [ 120.175154][ T6058] ? lockdep_hardirqs_on+0x7a/0x110 [ 120.175176][ T6058] ? __pfx_gfs2_quota_init+0x10/0x10 [ 120.175195][ T6058] ? inode_go_inval+0x2a0/0x360 [ 120.175206][ T6058] gfs2_make_fs_rw+0x143/0x230 [ 120.175219][ T6058] gfs2_reconfigure+0x617/0xb20 [ 120.175237][ T6058] reconfigure_super+0x227/0x8a0 [ 120.175252][ T6058] path_mount+0xdc5/0x10e0 [ 120.175269][ T6058] ? user_path_at+0xd4/0x160 [ 120.175281][ T6058] __se_sys_mount+0x31d/0x420 [ 120.175298][ T6058] ? __pfx___se_sys_mount+0x10/0x10 [ 120.175315][ T6058] ? __x64_sys_mount+0x20/0xc0 [ 120.175328][ T6058] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.175339][ T6058] do_syscall_64+0x15f/0xf80 [ 120.175350][ T6058] ? trace_irq_disable+0x3b/0x140 [ 120.175361][ T6058] ? clear_bhb_loop+0x40/0x90 [ 120.175374][ T6058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.175384][ T6058] RIP: 0033:0x7f888dcee3b9 [ 120.175394][ T6058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 120.175401][ T6058] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 120.175411][ T6058] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 120.175418][ T6058] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 120.175424][ T6058] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 120.175429][ T6058] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 120.175435][ T6058] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 120.175450][ T6058] [ 120.175461][ T6058] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 120.175478][ T6058] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 120.175491][ T6058] CPU: 0 UID: 0 PID: 6058 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 120.175503][ T6058] Tainted: [W]=WARN [ 120.175506][ T6058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 120.175511][ T6058] Call Trace: [ 120.175515][ T6058] [ 120.175519][ T6058] dump_stack_lvl+0xe8/0x150 [ 120.175530][ T6058] gfs2_assert_warn_i+0x194/0x2c0 [ 120.175545][ T6058] gfs2_qd_dispose+0x466/0x570 [ 120.175557][ T6058] gfs2_quota_init+0xcda/0x1220 [ 120.175570][ T6058] ? lockdep_hardirqs_on+0x7a/0x110 [ 120.175591][ T6058] ? __pfx_gfs2_quota_init+0x10/0x10 [ 120.175609][ T6058] ? inode_go_inval+0x2a0/0x360 [ 120.175620][ T6058] gfs2_make_fs_rw+0x143/0x230 [ 120.175633][ T6058] gfs2_reconfigure+0x617/0xb20 [ 120.175650][ T6058] reconfigure_super+0x227/0x8a0 [ 120.175664][ T6058] path_mount+0xdc5/0x10e0 [ 120.175681][ T6058] ? user_path_at+0xd4/0x160 [ 120.175691][ T6058] __se_sys_mount+0x31d/0x420 [ 120.175708][ T6058] ? __pfx___se_sys_mount+0x10/0x10 [ 120.175733][ T6058] ? __x64_sys_mount+0x20/0xc0 [ 120.175746][ T6058] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.175756][ T6058] do_syscall_64+0x15f/0xf80 [ 120.175767][ T6058] ? trace_irq_disable+0x3b/0x140 [ 120.175778][ T6058] ? clear_bhb_loop+0x40/0x90 [ 120.175789][ T6058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.175798][ T6058] RIP: 0033:0x7f888dcee3b9 [ 120.175807][ T6058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 120.175814][ T6058] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 120.175823][ T6058] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 120.175829][ T6058] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 120.175834][ T6058] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 120.175840][ T6058] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 120.175845][ T6058] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 120.175859][ T6058] [ 120.617026][ T6058] gfs2: fsid=syz:syz.0: found 1 quota changes [ 121.200157][ T6065] loop0: detected capacity change from 0 to 32768 [ 121.221556][ T6065] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 121.221571][ T6065] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 121.261067][ T6065] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 121.263644][ T5640] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 121.263661][ T5640] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 121.425861][ T5640] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 162ms [ 121.435396][ T5640] gfs2: fsid=syz:syz.0: jid=0: Done [ 121.435484][ T6065] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 121.488996][ T6065] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 121.489016][ T6065] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6065, name: syz-executor.0 [ 121.489030][ T6065] preempt_count: 1, expected: 0 [ 121.489038][ T6065] RCU nest depth: 1, expected: 1 [ 121.489047][ T6065] 4 locks held by syz-executor.0/6065: [ 121.489056][ T6065] #0: ffff8880305860d0 (&type->s_umount_key#53){+.+.}-{4:4}, at: path_mount+0xd7d/0x10e0 [ 121.489115][ T6065] #1: ffffffff8e620578 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 121.489163][ T6065] #2: ffffffff8dfc8140 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 121.489203][ T6065] #3: ffff88804ee70088 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 121.489228][ T6065] Preemption disabled at: [ 121.489231][ T6065] [] spin_lock_bucket+0x3b/0x150 [ 121.489252][ T6065] CPU: 1 UID: 0 PID: 6065 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 121.489266][ T6065] Tainted: [W]=WARN [ 121.489269][ T6065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 121.489274][ T6065] Call Trace: [ 121.489278][ T6065] [ 121.489283][ T6065] dump_stack_lvl+0xe8/0x150 [ 121.489296][ T6065] __might_resched+0x329/0x480 [ 121.489309][ T6065] ? spin_lock_bucket+0x3b/0x150 [ 121.489324][ T6065] rt_spin_lock+0xc2/0x400 [ 121.489335][ T6065] ? __pfx_rt_spin_lock+0x10/0x10 [ 121.489345][ T6065] ? preempt_count_add+0x91/0x190 [ 121.489356][ T6065] ? rt_spin_lock+0x2ce/0x400 [ 121.489367][ T6065] lockref_get_not_dead+0x28/0xd0 [ 121.489379][ T6065] gfs2_qd_search_bucket+0x139/0x210 [ 121.489395][ T6065] gfs2_quota_init+0x86c/0x1220 [ 121.489409][ T6065] ? lockdep_hardirqs_on+0x7a/0x110 [ 121.489431][ T6065] ? __pfx_gfs2_quota_init+0x10/0x10 [ 121.489449][ T6065] ? inode_go_inval+0x2a0/0x360 [ 121.489460][ T6065] gfs2_make_fs_rw+0x143/0x230 [ 121.489474][ T6065] gfs2_reconfigure+0x617/0xb20 [ 121.489491][ T6065] reconfigure_super+0x227/0x8a0 [ 121.489506][ T6065] path_mount+0xdc5/0x10e0 [ 121.489526][ T6065] ? user_path_at+0xd4/0x160 [ 121.489537][ T6065] __se_sys_mount+0x31d/0x420 [ 121.489554][ T6065] ? __pfx___se_sys_mount+0x10/0x10 [ 121.489571][ T6065] ? __x64_sys_mount+0x20/0xc0 [ 121.489584][ T6065] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.489602][ T6065] do_syscall_64+0x15f/0xf80 [ 121.489613][ T6065] ? trace_irq_disable+0x3b/0x140 [ 121.489625][ T6065] ? clear_bhb_loop+0x40/0x90 [ 121.489637][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.489646][ T6065] RIP: 0033:0x7f888dcee3b9 [ 121.489656][ T6065] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 121.489664][ T6065] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 121.489673][ T6065] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 121.489680][ T6065] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 121.489686][ T6065] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 121.489691][ T6065] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 121.489697][ T6065] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 121.489712][ T6065] [ 121.489736][ T6065] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 121.489819][ T6065] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 121.489841][ T6065] CPU: 1 UID: 0 PID: 6065 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 121.489861][ T6065] Tainted: [W]=WARN [ 121.489864][ T6065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 121.489869][ T6065] Call Trace: [ 121.489874][ T6065] [ 121.489878][ T6065] dump_stack_lvl+0xe8/0x150 [ 121.489890][ T6065] gfs2_assert_warn_i+0x194/0x2c0 [ 121.489906][ T6065] gfs2_qd_dispose+0x466/0x570 [ 121.489917][ T6065] gfs2_quota_init+0xcda/0x1220 [ 121.489931][ T6065] ? lockdep_hardirqs_on+0x7a/0x110 [ 121.489952][ T6065] ? __pfx_gfs2_quota_init+0x10/0x10 [ 121.489970][ T6065] ? inode_go_inval+0x2a0/0x360 [ 121.489981][ T6065] gfs2_make_fs_rw+0x143/0x230 [ 121.489994][ T6065] gfs2_reconfigure+0x617/0xb20 [ 121.490011][ T6065] reconfigure_super+0x227/0x8a0 [ 121.490025][ T6065] path_mount+0xdc5/0x10e0 [ 121.490042][ T6065] ? user_path_at+0xd4/0x160 [ 121.490053][ T6065] __se_sys_mount+0x31d/0x420 [ 121.490069][ T6065] ? __pfx___se_sys_mount+0x10/0x10 [ 121.490086][ T6065] ? __x64_sys_mount+0x20/0xc0 [ 121.490099][ T6065] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.490109][ T6065] do_syscall_64+0x15f/0xf80 [ 121.490120][ T6065] ? trace_irq_disable+0x3b/0x140 [ 121.490131][ T6065] ? clear_bhb_loop+0x40/0x90 [ 121.490142][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.490152][ T6065] RIP: 0033:0x7f888dcee3b9 [ 121.490160][ T6065] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 121.490167][ T6065] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 121.490177][ T6065] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 121.490183][ T6065] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 121.490189][ T6065] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 121.490194][ T6065] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 121.490200][ T6065] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 121.490214][ T6065] [ 121.852055][ T6065] gfs2: fsid=syz:syz.0: found 1 quota changes [ 122.481390][ T6069] loop0: detected capacity change from 0 to 32768 [ 122.518089][ T6069] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 122.518108][ T6069] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 122.576544][ T6069] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 122.587067][ T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 122.587083][ T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 122.739706][ T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 152ms [ 122.739898][ T9] gfs2: fsid=syz:syz.0: jid=0: Done [ 122.740719][ T6069] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 122.795844][ T6069] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 122.795863][ T6069] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6069, name: syz-executor.0 [ 122.795878][ T6069] preempt_count: 1, expected: 0 [ 122.795886][ T6069] RCU nest depth: 1, expected: 1 [ 122.795894][ T6069] 4 locks held by syz-executor.0/6069: [ 122.795904][ T6069] #0: ffff888040c420d0 (&type->s_umount_key#53){+.+.}-{4:4}, at: path_mount+0xd7d/0x10e0 [ 122.795963][ T6069] #1: ffffffff8e620578 (qd_lock){+.+.}-{3:3}, at: gfs2_quota_init+0x854/0x1220 [ 122.796010][ T6069] #2: ffffffff8dfc8140 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400 [ 122.796050][ T6069] #3: ffff88804efe5348 (&lockref->lock#3){+.+.}-{3:3}, at: lockref_get_not_dead+0x28/0xd0 [ 122.796096][ T6069] Preemption disabled at: [ 122.796101][ T6069] [] spin_lock_bucket+0x3b/0x150 [ 122.796136][ T6069] CPU: 0 UID: 0 PID: 6069 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 122.796159][ T6069] Tainted: [W]=WARN [ 122.796165][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 122.796174][ T6069] Call Trace: [ 122.796181][ T6069] [ 122.796188][ T6069] dump_stack_lvl+0xe8/0x150 [ 122.796211][ T6069] __might_resched+0x329/0x480 [ 122.796231][ T6069] ? spin_lock_bucket+0x3b/0x150 [ 122.796273][ T6069] rt_spin_lock+0xc2/0x400 [ 122.796291][ T6069] ? __pfx_rt_spin_lock+0x10/0x10 [ 122.796305][ T6069] ? preempt_count_add+0x91/0x190 [ 122.796320][ T6069] ? rt_spin_lock+0x2ce/0x400 [ 122.796335][ T6069] lockref_get_not_dead+0x28/0xd0 [ 122.796351][ T6069] gfs2_qd_search_bucket+0x139/0x210 [ 122.796373][ T6069] gfs2_quota_init+0x86c/0x1220 [ 122.796396][ T6069] ? lockdep_hardirqs_on+0x7a/0x110 [ 122.796430][ T6069] ? __pfx_gfs2_quota_init+0x10/0x10 [ 122.796455][ T6069] ? inode_go_inval+0x2a0/0x360 [ 122.796472][ T6069] gfs2_make_fs_rw+0x143/0x230 [ 122.796492][ T6069] gfs2_reconfigure+0x617/0xb20 [ 122.796521][ T6069] reconfigure_super+0x227/0x8a0 [ 122.796545][ T6069] path_mount+0xdc5/0x10e0 [ 122.796573][ T6069] ? user_path_at+0xd4/0x160 [ 122.796592][ T6069] __se_sys_mount+0x31d/0x420 [ 122.796616][ T6069] ? __pfx___se_sys_mount+0x10/0x10 [ 122.796638][ T6069] ? __x64_sys_mount+0x20/0xc0 [ 122.796661][ T6069] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.796676][ T6069] do_syscall_64+0x15f/0xf80 [ 122.796691][ T6069] ? trace_irq_disable+0x3b/0x140 [ 122.796706][ T6069] ? clear_bhb_loop+0x40/0x90 [ 122.796723][ T6069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.796736][ T6069] RIP: 0033:0x7f888dcee3b9 [ 122.796749][ T6069] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48 [ 122.796759][ T6069] RSP: 002b:00007f888d07e078 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 122.796773][ T6069] RAX: ffffffffffffffda RBX: 00007f888de2bf80 RCX: 00007f888dcee3b9 [ 122.796782][ T6069] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 122.796790][ T6069] RBP: 00007f888dd4f498 R08: 0000000000000000 R09: 0000000000000000 [ 122.796797][ T6069] R10: 00000000000800b0 R11: 0000000000000246 R12: 0000000000000000 [ 122.796805][ T6069] R13: 000000000000000b R14: 00007f888de2bf80 R15: 00007ffce7e7bcd8 [ 122.796827][ T6069] [ 122.796895][ T6069] gfs2: fsid=syz:syz.0: Corruption found in quota_change0file: duplicate identifier in slot 26671 [ 122.799675][ T6069] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 122.799715][ T6069] CPU: 0 UID: 0 PID: 6069 Comm: syz-executor.0 Tainted: G W syzkaller #0 PREEMPT_{RT,(full)} [ 122.799733][ T6069] Tainted: [W]=WARN [ 122.799737][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 122.799745][ T6069] Call Trace: [ 122.799751][ T6069] [ 122.799757][ T6069] dump_stack_lvl+0xe8/0x150 [ 122.799779][ T6069] gfs2_assert_warn_i+0x194/0x2c0 [ 122.799801][ T6069] gfs2_qd_dispose+0x466/0x570 [ 122.799819][ T6069] gfs2_quota_init+0xcda/0x1220 [ 122.799839][ T6069] ? lockdep_hardirqs_on+0x7a/0x110 [ 122.799872][ T6069] ? __pfx_gfs2_quota_init+0x10/0x10 [ 122.799904][ T6069] ? inode_go_inval+0x2a0/0x360 [ 122.799922][ T6069] gfs2_make_fs_rw+0x143/0x230 [ 122.799941][ T6069] gfs2_reconfigure+0x617/0xb20 [ 122.799967][ T6069] reconfigure_super+0x227/0x8a0 [ 122.799991][ T6069] path_mount+0xdc5/0x10e0 [ 122.800015][ T6069] ? user_path_at+0xd4/0x160 [ 122.800030][ T6069] __se_sys_mount+0x31d/0x420 [ 122.800052][ T6069] ? __pfx___se_sys_mount+0x10/0x10 [ 122.800075][ T6069] ? __x64_sys_mount+0x20/0xc0 [ 122.800094][ T6069] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.800112][ T6069] do_syscall_64+0x15f/0xf80 [ 122.800131][ T6069] ? trace_irq_disable+0x3b/0x140 [ 122.800149][ T6069] ? clear_bhb_loop+0x40/0x90 [ 122.800166][ T6069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.800179][ T6069] RIP: 0033:0x7f888dcee3b9