Warning: Permanently added '10.128.0.143' (ED25519) to the list of known hosts.
2026/01/09 10:25:33 parsed 1 programs
[  123.443245][ T6145] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  125.920226][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.929502][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  125.956297][ T3445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.964884][ T3445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.111715][ T6178] chnl_net:caif_netlink_parms(): no params data found
[  127.184202][ T6178] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.191886][ T6178] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.199501][ T6178] bridge_slave_0: entered allmulticast mode
[  127.206745][ T6178] bridge_slave_0: entered promiscuous mode
[  127.215433][ T6178] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.222980][ T6178] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.231364][ T6178] bridge_slave_1: entered allmulticast mode
[  127.240115][ T6178] bridge_slave_1: entered promiscuous mode
[  127.272749][ T6178] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  127.285299][ T6178] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  127.344140][ T6178] team0: Port device team_slave_0 added
[  127.353172][ T6178] team0: Port device team_slave_1 added
[  127.381202][ T6178] batman_adv: batadv0: Adding interface: batadv_slave_0
[  127.388552][ T6178] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  127.415885][ T6178] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  127.430362][ T6178] batman_adv: batadv0: Adding interface: batadv_slave_1
[  127.437591][ T6178] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  127.464285][ T6178] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  127.512106][ T6178] hsr_slave_0: entered promiscuous mode
[  127.518581][ T6178] hsr_slave_1: entered promiscuous mode
[  128.108958][ T6178] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  128.122224][ T6178] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  128.134179][ T6178] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  128.147822][ T6178] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  128.278190][ T6178] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.306203][ T6178] 8021q: adding VLAN 0 to HW filter on device team0
[  128.327403][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.335264][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.354429][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.362410][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.416381][ T6178] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  128.607695][ T6178] 8021q: adding VLAN 0 to HW filter on device batadv0
[  128.672757][ T6178] veth0_vlan: entered promiscuous mode
[  128.688285][ T6178] veth1_vlan: entered promiscuous mode
[  128.734876][ T6178] veth0_macvtap: entered promiscuous mode
[  128.745983][ T6178] veth1_macvtap: entered promiscuous mode
[  128.773917][ T6178] batman_adv: batadv0: Interface activated: batadv_slave_0
[  128.794895][ T6178] batman_adv: batadv0: Interface activated: batadv_slave_1
[  128.817666][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  128.828896][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  128.851927][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  128.878805][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.034655][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  129.044660][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.057572][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  129.066401][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  129.079086][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  129.094435][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  129.141313][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.217181][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.312117][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.446238][   T12] bridge_slave_1: left allmulticast mode
[  131.452667][   T12] bridge_slave_1: left promiscuous mode
[  131.458843][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.505718][   T12] bridge_slave_0: left allmulticast mode
[  131.515619][   T12] bridge_slave_0: left promiscuous mode
[  131.527578][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.873729][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  131.888778][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  131.903945][   T12] bond0 (unregistering): Released all slaves
[  132.029156][   T12] hsr_slave_0: left promiscuous mode
[  132.044224][   T12] hsr_slave_1: left promiscuous mode
[  132.057737][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  132.069230][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  132.090695][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  132.098215][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  132.148246][   T12] veth1_macvtap: left promiscuous mode
[  132.164043][   T12] veth0_macvtap: left promiscuous mode
[  132.175514][   T12] veth1_vlan: left promiscuous mode
[  132.183528][   T12] veth0_vlan: left promiscuous mode
2026/01/09 10:25:46 executed programs: 0
[  132.562341][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  132.593422][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  132.606010][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  132.614804][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  132.627721][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  132.837095][   T12] team0 (unregistering): Port device team_slave_1 removed
[  132.876953][   T12] team0 (unregistering): Port device team_slave_0 removed
[  133.018857][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  133.031223][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  133.451608][ T6360] chnl_net:caif_netlink_parms(): no params data found
[  133.603526][ T6360] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.612995][ T6360] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.622865][ T6360] bridge_slave_0: entered allmulticast mode
[  133.631396][ T6360] bridge_slave_0: entered promiscuous mode
[  133.650422][ T6360] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.658231][ T6360] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.666077][ T6360] bridge_slave_1: entered allmulticast mode
[  133.674690][ T6360] bridge_slave_1: entered promiscuous mode
[  133.733958][ T6360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  134.130366][ T6360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  134.247834][ T6360] team0: Port device team_slave_0 added
[  134.273296][ T6360] team0: Port device team_slave_1 added
[  134.435666][ T6360] batman_adv: batadv0: Adding interface: batadv_slave_0
[  134.444549][ T6360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  134.479399][ T6360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.500218][ T6360] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.507446][ T6360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  134.544626][ T6360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.615140][ T6360] hsr_slave_0: entered promiscuous mode
[  134.627233][ T6360] hsr_slave_1: entered promiscuous mode
[  134.682555][ T5145] Bluetooth: hci0: command tx timeout
[  135.343317][ T6360] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  135.355881][ T6360] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  135.368999][ T6360] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  135.383414][ T6360] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  135.493025][ T6360] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.526890][ T6360] 8021q: adding VLAN 0 to HW filter on device team0
[  135.547654][ T3005] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.555041][ T3005] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.582987][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.590467][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.796486][ T6360] 8021q: adding VLAN 0 to HW filter on device batadv0
[  135.844231][ T6360] veth0_vlan: entered promiscuous mode
[  135.855961][ T6360] veth1_vlan: entered promiscuous mode
[  135.882916][ T6360] veth0_macvtap: entered promiscuous mode
[  135.892177][ T6360] veth1_macvtap: entered promiscuous mode
[  135.910864][ T6360] batman_adv: batadv0: Interface activated: batadv_slave_0
[  135.925096][ T6360] batman_adv: batadv0: Interface activated: batadv_slave_1
[  135.938739][   T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.950414][   T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.964513][   T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.974541][   T49] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.027043][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.038906][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.064221][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.073172][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.325586][ T6456] loop0: detected capacity change from 0 to 32768
[  136.372639][ T6456] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  136.383740][ T6456] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  136.401915][ T6456] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  136.444715][ T6456] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  136.458018][ T6456] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  136.469449][ T6456] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  136.484920][ T6456] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  136.494155][ T6456] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6456 [syz.0.16] iterate_dir+0x399/0x570
[  136.504258][ T6456] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  136.512811][ T6456] CPU: 0 UID: 0 PID: 6456 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT(full) 
[  136.512832][ T6456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  136.512847][ T6456] Call Trace:
[  136.512855][ T6456]  <TASK>
[  136.512862][ T6456]  dump_stack_lvl+0xe8/0x150
[  136.512891][ T6456]  gfs2_withdraw+0xc3/0x1b0
[  136.512926][ T6456]  gfs2_dirent_scan+0x545/0x690
[  136.512949][ T6456]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  136.512974][ T6456]  gfs2_dir_read+0x804/0x16f0
[  136.513003][ T6456]  ? __pfx_inode_dio_wait+0x10/0x10
[  136.513025][ T6456]  ? do_raw_spin_unlock+0x122/0x240
[  136.513049][ T6456]  ? __pfx_gfs2_dir_read+0x10/0x10
[  136.513079][ T6456]  ? gfs2_glock_wait+0x20f/0x2a0
[  136.513106][ T6456]  gfs2_readdir+0x14c/0x1b0
[  136.513127][ T6456]  ? iterate_dir+0x292/0x570
[  136.513149][ T6456]  ? __pfx_gfs2_readdir+0x10/0x10
[  136.513171][ T6456]  ? iterate_dir+0x399/0x570
[  136.513192][ T6456]  ? iterate_dir+0x292/0x570
[  136.513221][ T6456]  ? down_read_killable+0x1bc/0x350
[  136.513254][ T6456]  iterate_dir+0x399/0x570
[  136.513283][ T6456]  __se_sys_getdents64+0xe4/0x260
[  136.513310][ T6456]  ? __pfx___se_sys_getdents64+0x10/0x10
[  136.513333][ T6456]  ? __pfx_filldir64+0x10/0x10
[  136.513357][ T6456]  ? __pfx___se_sys_chdir+0x10/0x10
[  136.513396][ T6456]  do_syscall_64+0xec/0xf80
[  136.513417][ T6456]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.513435][ T6456]  ? trace_irq_disable+0x37/0x100
[  136.513458][ T6456]  ? clear_bhb_loop+0x40/0x90
[  136.513479][ T6456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.513497][ T6456] RIP: 0033:0x7fc31898e929
[  136.513519][ T6456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.513533][ T6456] RSP: 002b:00007fc3198ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  136.513552][ T6456] RAX: ffffffffffffffda RBX: 00007fc318bb5fa0 RCX: 00007fc31898e929
[  136.513565][ T6456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  136.513575][ T6456] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  136.513586][ T6456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.513596][ T6456] R13: 0000000000000000 R14: 00007fc318bb5fa0 R15: 00007ffc14f881f8
[  136.513626][ T6456]  </TASK>
[  136.513633][ T6456] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  136.756978][ T5958] gfs2: fsid=syz:syz.s: file system withdrawn
[  136.764120][ T5145] Bluetooth: hci0: command tx timeout
[  137.105330][ T6461] loop0: detected capacity change from 0 to 32768
[  137.135970][ T6461] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  137.144394][ T6461] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  137.163778][ T6461] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  137.230251][ T6461] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  137.253486][ T6461] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  137.263623][ T6461] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  137.282128][ T6461] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  137.291421][ T6461] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6461 [syz.0.17] iterate_dir+0x399/0x570
[  137.301490][ T6461] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  137.310759][ T6461] CPU: 0 UID: 0 PID: 6461 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  137.310785][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  137.310796][ T6461] Call Trace:
[  137.310804][ T6461]  <TASK>
[  137.310812][ T6461]  dump_stack_lvl+0xe8/0x150
[  137.310843][ T6461]  gfs2_withdraw+0xc3/0x1b0
[  137.310871][ T6461]  gfs2_dirent_scan+0x545/0x690
[  137.310897][ T6461]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  137.310922][ T6461]  gfs2_dir_read+0x804/0x16f0
[  137.310950][ T6461]  ? __pfx_inode_dio_wait+0x10/0x10
[  137.310973][ T6461]  ? do_raw_spin_unlock+0x122/0x240
[  137.310999][ T6461]  ? __pfx_gfs2_dir_read+0x10/0x10
[  137.311031][ T6461]  ? gfs2_glock_wait+0x20f/0x2a0
[  137.311058][ T6461]  gfs2_readdir+0x14c/0x1b0
[  137.311077][ T6461]  ? iterate_dir+0x292/0x570
[  137.311098][ T6461]  ? __pfx_gfs2_readdir+0x10/0x10
[  137.311121][ T6461]  ? iterate_dir+0x399/0x570
[  137.311152][ T6461]  ? iterate_dir+0x292/0x570
[  137.311171][ T6461]  ? down_read_killable+0x1bc/0x350
[  137.311201][ T6461]  iterate_dir+0x399/0x570
[  137.311226][ T6461]  __se_sys_getdents64+0xe4/0x260
[  137.311252][ T6461]  ? __pfx___se_sys_getdents64+0x10/0x10
[  137.311274][ T6461]  ? __pfx_filldir64+0x10/0x10
[  137.311298][ T6461]  ? rcu_is_watching+0x15/0xb0
[  137.311330][ T6461]  do_syscall_64+0xec/0xf80
[  137.311352][ T6461]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.311368][ T6461]  ? trace_irq_disable+0x37/0x100
[  137.311392][ T6461]  ? clear_bhb_loop+0x40/0x90
[  137.311413][ T6461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.311430][ T6461] RIP: 0033:0x7fc31898e929
[  137.311447][ T6461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.311462][ T6461] RSP: 002b:00007fc3198ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  137.311481][ T6461] RAX: ffffffffffffffda RBX: 00007fc318bb5fa0 RCX: 00007fc31898e929
[  137.311495][ T6461] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  137.311505][ T6461] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  137.311516][ T6461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  137.311526][ T6461] R13: 0000000000000000 R14: 00007fc318bb5fa0 R15: 00007ffc14f881f8
[  137.311555][ T6461]  </TASK>
[  137.311563][ T6461] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  137.553229][ T5958] gfs2: fsid=syz:syz.s: file system withdrawn
2026/01/09 10:25:51 executed programs: 4
[  137.891831][ T6466] loop0: detected capacity change from 0 to 32768
[  137.923991][ T6466] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  137.934882][ T6466] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  137.952169][ T6466] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  138.026608][ T6466] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  138.042612][ T6466] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  138.053091][ T6466] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  138.068325][ T6466] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  138.077907][ T6466] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6466 [syz.0.18] iterate_dir+0x399/0x570
[  138.088617][ T6466] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  138.097704][ T6466] CPU: 1 UID: 0 PID: 6466 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  138.097728][ T6466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  138.097737][ T6466] Call Trace:
[  138.097747][ T6466]  <TASK>
[  138.097755][ T6466]  dump_stack_lvl+0xe8/0x150
[  138.097784][ T6466]  gfs2_withdraw+0xc3/0x1b0
[  138.097805][ T6466]  gfs2_dirent_scan+0x545/0x690
[  138.097819][ T6466]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  138.097833][ T6466]  gfs2_dir_read+0x804/0x16f0
[  138.097850][ T6466]  ? __pfx_inode_dio_wait+0x10/0x10
[  138.097864][ T6466]  ? do_raw_spin_unlock+0x122/0x240
[  138.097880][ T6466]  ? __pfx_gfs2_dir_read+0x10/0x10
[  138.097900][ T6466]  ? gfs2_glock_wait+0x20f/0x2a0
[  138.097914][ T6466]  gfs2_readdir+0x14c/0x1b0
[  138.097926][ T6466]  ? iterate_dir+0x292/0x570
[  138.097939][ T6466]  ? __pfx_gfs2_readdir+0x10/0x10
[  138.097952][ T6466]  ? iterate_dir+0x399/0x570
[  138.097964][ T6466]  ? iterate_dir+0x292/0x570
[  138.097975][ T6466]  ? down_read_killable+0x1bc/0x350
[  138.097992][ T6466]  iterate_dir+0x399/0x570
[  138.098007][ T6466]  __se_sys_getdents64+0xe4/0x260
[  138.098021][ T6466]  ? __pfx___se_sys_getdents64+0x10/0x10
[  138.098033][ T6466]  ? __pfx_filldir64+0x10/0x10
[  138.098047][ T6466]  ? rcu_is_watching+0x15/0xb0
[  138.098065][ T6466]  do_syscall_64+0xec/0xf80
[  138.098079][ T6466]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.098089][ T6466]  ? trace_irq_disable+0x37/0x100
[  138.098103][ T6466]  ? clear_bhb_loop+0x40/0x90
[  138.098115][ T6466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.098131][ T6466] RIP: 0033:0x7fc31898e929
[  138.098148][ T6466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.098161][ T6466] RSP: 002b:00007fc3198ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  138.098177][ T6466] RAX: ffffffffffffffda RBX: 00007fc318bb5fa0 RCX: 00007fc31898e929
[  138.098189][ T6466] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  138.098198][ T6466] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  138.098204][ T6466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  138.098210][ T6466] R13: 0000000000000000 R14: 00007fc318bb5fa0 R15: 00007ffc14f881f8
[  138.098226][ T6466]  </TASK>
[  138.098231][ T6466] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  138.341893][  T105] gfs2: fsid=syz:syz.s: file system withdrawn
[  138.663349][ T6471] loop0: detected capacity change from 0 to 32768
[  138.689749][ T6471] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  138.698661][ T6471] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  138.714404][ T6471] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  138.791337][ T6471] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  138.806357][ T6471] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  138.816824][ T6471] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  138.831707][ T6471] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  138.841914][ T5145] Bluetooth: hci0: command tx timeout
[  138.847392][ T6471] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6471 [syz.0.19] iterate_dir+0x399/0x570
[  138.857182][ T6471] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  138.865850][ T6471] CPU: 1 UID: 0 PID: 6471 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT(full) 
[  138.865871][ T6471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  138.865881][ T6471] Call Trace:
[  138.865887][ T6471]  <TASK>
[  138.865894][ T6471]  dump_stack_lvl+0xe8/0x150
[  138.865925][ T6471]  gfs2_withdraw+0xc3/0x1b0
[  138.865953][ T6471]  gfs2_dirent_scan+0x545/0x690
[  138.865980][ T6471]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  138.866002][ T6471]  gfs2_dir_read+0x804/0x16f0
[  138.866040][ T6471]  ? __pfx_inode_dio_wait+0x10/0x10
[  138.866066][ T6471]  ? do_raw_spin_unlock+0x122/0x240
[  138.866096][ T6471]  ? __pfx_gfs2_dir_read+0x10/0x10
[  138.866133][ T6471]  ? gfs2_glock_wait+0x20f/0x2a0
[  138.866161][ T6471]  gfs2_readdir+0x14c/0x1b0
[  138.866182][ T6471]  ? iterate_dir+0x292/0x570
[  138.866205][ T6471]  ? __pfx_gfs2_readdir+0x10/0x10
[  138.866230][ T6471]  ? iterate_dir+0x399/0x570
[  138.866253][ T6471]  ? iterate_dir+0x292/0x570
[  138.866273][ T6471]  ? down_read_killable+0x1bc/0x350
[  138.866308][ T6471]  iterate_dir+0x399/0x570
[  138.866337][ T6471]  __se_sys_getdents64+0xe4/0x260
[  138.866365][ T6471]  ? __pfx___se_sys_getdents64+0x10/0x10
[  138.866389][ T6471]  ? __pfx_filldir64+0x10/0x10
[  138.866414][ T6471]  ? rcu_is_watching+0x15/0xb0
[  138.866445][ T6471]  do_syscall_64+0xec/0xf80
[  138.866467][ T6471]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.866484][ T6471]  ? trace_irq_disable+0x37/0x100
[  138.866510][ T6471]  ? clear_bhb_loop+0x40/0x90
[  138.866534][ T6471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.866553][ T6471] RIP: 0033:0x7fc31898e929
[  138.866571][ T6471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.866587][ T6471] RSP: 002b:00007fc3198ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  138.866606][ T6471] RAX: ffffffffffffffda RBX: 00007fc318bb5fa0 RCX: 00007fc31898e929
[  138.866618][ T6471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  138.866628][ T6471] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  138.866637][ T6471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  138.866647][ T6471] R13: 0000000000000000 R14: 00007fc318bb5fa0 R15: 00007ffc14f881f8
[  138.866673][ T6471]  </TASK>
[  138.866679][ T6471] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  139.109828][  T105] gfs2: fsid=syz:syz.s: file system withdrawn
[  139.445666][ T6476] loop0: detected capacity change from 0 to 32768
[  139.465509][ T6476] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  139.479610][ T6476] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  139.497452][ T6476] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  139.570249][ T6476] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  139.584440][ T6476] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  139.594661][ T6476] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  139.609658][ T6476] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  139.619136][ T6476] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6476 [syz.0.20] iterate_dir+0x399/0x570
[  139.628489][ T6476] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  139.637319][ T6476] CPU: 1 UID: 0 PID: 6476 Comm: syz.0.20 Not tainted syzkaller #0 PREEMPT(full) 
[  139.637351][ T6476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  139.637360][ T6476] Call Trace:
[  139.637370][ T6476]  <TASK>
[  139.637378][ T6476]  dump_stack_lvl+0xe8/0x150
[  139.637405][ T6476]  gfs2_withdraw+0xc3/0x1b0
[  139.637430][ T6476]  gfs2_dirent_scan+0x545/0x690
[  139.637456][ T6476]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  139.637481][ T6476]  gfs2_dir_read+0x804/0x16f0
[  139.637508][ T6476]  ? __pfx_inode_dio_wait+0x10/0x10
[  139.637531][ T6476]  ? do_raw_spin_unlock+0x122/0x240
[  139.637560][ T6476]  ? __pfx_gfs2_dir_read+0x10/0x10
[  139.637597][ T6476]  ? gfs2_glock_wait+0x20f/0x2a0
[  139.637626][ T6476]  gfs2_readdir+0x14c/0x1b0
[  139.637647][ T6476]  ? iterate_dir+0x292/0x570
[  139.637670][ T6476]  ? __pfx_gfs2_readdir+0x10/0x10
[  139.637696][ T6476]  ? iterate_dir+0x399/0x570
[  139.637719][ T6476]  ? iterate_dir+0x292/0x570
[  139.637738][ T6476]  ? down_read_killable+0x1bc/0x350
[  139.637769][ T6476]  iterate_dir+0x399/0x570
[  139.637795][ T6476]  __se_sys_getdents64+0xe4/0x260
[  139.637818][ T6476]  ? __pfx___se_sys_getdents64+0x10/0x10
[  139.637838][ T6476]  ? __pfx_filldir64+0x10/0x10
[  139.637860][ T6476]  ? rcu_is_watching+0x15/0xb0
[  139.637894][ T6476]  do_syscall_64+0xec/0xf80
[  139.637916][ T6476]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.637933][ T6476]  ? trace_irq_disable+0x37/0x100
[  139.637956][ T6476]  ? clear_bhb_loop+0x40/0x90
[  139.637977][ T6476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.637994][ T6476] RIP: 0033:0x7fc31898e929
[  139.638008][ T6476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.638020][ T6476] RSP: 002b:00007fc3198ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  139.638035][ T6476] RAX: ffffffffffffffda RBX: 00007fc318bb5fa0 RCX: 00007fc31898e929
[  139.638046][ T6476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  139.638054][ T6476] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  139.638063][ T6476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  139.638072][ T6476] R13: 0000000000000000 R14: 00007fc318bb5fa0 R15: 00007ffc14f881f8
[  139.638095][ T6476]  </TASK>
[  139.638101][ T6476] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  139.884041][ T5861] gfs2: fsid=syz:syz.s: file system withdrawn
[  140.213624][ T6481] loop0: detected capacity change from 0 to 32768
[  140.233951][ T6481] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  140.244308][ T6481] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  140.262805][ T6481] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  140.341303][ T6481] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  140.364345][ T6481] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  140.380882][ T6481] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  140.395995][ T6481] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  140.407153][ T6481] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6481 [syz.0.21] iterate_dir+0x399/0x570
[  140.416951][ T6481] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  140.425629][ T6481] CPU: 0 UID: 0 PID: 6481 Comm: syz.0.21 Not tainted syzkaller #0 PREEMPT(full) 
[  140.425653][ T6481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  140.425665][ T6481] Call Trace:
[  140.425675][ T6481]  <TASK>
[  140.425684][ T6481]  dump_stack_lvl+0xe8/0x150
[  140.425715][ T6481]  gfs2_withdraw+0xc3/0x1b0
[  140.425741][ T6481]  gfs2_dirent_scan+0x545/0x690
[  140.425763][ T6481]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  140.425787][ T6481]  gfs2_dir_read+0x804/0x16f0
[  140.425815][ T6481]  ? __pfx_inode_dio_wait+0x10/0x10
[  140.425837][ T6481]  ? do_raw_spin_unlock+0x122/0x240
[  140.425863][ T6481]  ? __pfx_gfs2_dir_read+0x10/0x10
[  140.425899][ T6481]  ? gfs2_glock_wait+0x20f/0x2a0
[  140.425927][ T6481]  gfs2_readdir+0x14c/0x1b0
[  140.425948][ T6481]  ? iterate_dir+0x292/0x570
[  140.425972][ T6481]  ? __pfx_gfs2_readdir+0x10/0x10
[  140.426101][ T6481]  ? iterate_dir+0x399/0x570
[  140.426124][ T6481]  ? iterate_dir+0x292/0x570
[  140.426146][ T6481]  ? down_read_killable+0x1bc/0x350
[  140.426181][ T6481]  iterate_dir+0x399/0x570
[  140.426210][ T6481]  __se_sys_getdents64+0xe4/0x260
[  140.426237][ T6481]  ? __pfx___se_sys_getdents64+0x10/0x10
[  140.426260][ T6481]  ? __pfx_filldir64+0x10/0x10
[  140.426286][ T6481]  ? rcu_is_watching+0x15/0xb0
[  140.426320][ T6481]  do_syscall_64+0xec/0xf80
[  140.426345][ T6481]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.426359][ T6481]  ? trace_irq_disable+0x37/0x100
[  140.426384][ T6481]  ? clear_bhb_loop+0x40/0x90
[  140.426407][ T6481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.426426][ T6481] RIP: 0033:0x7fc31898e929
[  140.426442][ T6481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.426456][ T6481] RSP: 002b:00007fc3198ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  140.426474][ T6481] RAX: ffffffffffffffda RBX: 00007fc318bb5fa0 RCX: 00007fc31898e929
[  140.426488][ T6481] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  140.426499][ T6481] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  140.426510][ T6481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  140.426520][ T6481] R13: 0000000000000000 R14: 00007fc318bb5fa0 R15: 00007ffc14f881f8
[  140.426545][ T6481]  </TASK>
[  140.427591][ T6481] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  140.670774][  T105] gfs2: fsid=syz:syz.s: file system withdrawn
[  140.919407][ T5145] Bluetooth: hci0: command tx timeout
[  141.033536][ T6486] loop0: detected capacity change from 0 to 32768
[  141.072720][ T6486] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  141.083338][ T6486] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  141.104687][ T6486] gfs2: fsid=syz:syz.s: journal 0 mapped with 18 extents in 0ms
[  141.173308][ T6486] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  141.194043][ T6486] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  141.204096][ T6486] gfs2: fsid=syz:syz.s: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  141.220567][ T6486] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  141.230234][ T6486] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6486 [syz.0.22] iterate_dir+0x399/0x570
[  141.241001][ T6486] gfs2: fsid=syz:syz.s:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  141.245579][ T6489] gfs2: fsid=syz:syz.s: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  141.249673][ T6486] CPU: 1 UID: 0 PID: 6486 Comm: syz.0.22 Not tainted syzkaller #0 PREEMPT(full) 
[  141.249696][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  141.249707][ T6486] Call Trace:
[  141.249716][ T6486]  <TASK>
[  141.249723][ T6486]  dump_stack_lvl+0xe8/0x150
[  141.249754][ T6486]  gfs2_withdraw+0xc3/0x1b0
[  141.249780][ T6486]  gfs2_dirent_scan+0x545/0x690
[  141.249805][ T6486]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  141.249833][ T6486]  gfs2_dir_read+0x804/0x16f0
[  141.249864][ T6486]  ? __pfx_inode_dio_wait+0x10/0x10
[  141.249888][ T6486]  ? do_raw_spin_unlock+0x122/0x240
[  141.249917][ T6486]  ? __pfx_gfs2_dir_read+0x10/0x10
[  141.249952][ T6486]  ? gfs2_glock_wait+0x20f/0x2a0
[  141.249978][ T6486]  gfs2_readdir+0x14c/0x1b0
[  141.249999][ T6486]  ? iterate_dir+0x292/0x570
[  141.250022][ T6486]  ? __pfx_gfs2_readdir+0x10/0x10
[  141.250046][ T6486]  ? iterate_dir+0x399/0x570
[  141.250069][ T6486]  ? iterate_dir+0x292/0x570
[  141.250089][ T6486]  ? down_read_killable+0x1bc/0x350
[  141.250121][ T6486]  iterate_dir+0x399/0x570
[  141.250148][ T6486]  __se_sys_getdents64+0xe4/0x260
[  141.250175][ T6486]  ? __pfx___se_sys_getdents64+0x10/0x10
[  141.250204][ T6486]  ? __pfx_filldir64+0x10/0x10
[  141.250227][ T6486]  ? rcu_is_watching+0x15/0xb0
[  141.250262][ T6486]  do_syscall_64+0xec/0xf80
[  141.250285][ T6486]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.250303][ T6486]  ? trace_irq_disable+0x37/0x100
[  141.250328][ T6486]  ? clear_bhb_loop+0x40/0x90
[  141.250351][ T6486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.250369][ T6486] RIP: 0033:0x7fc31898e929
[  141.250387][ T6486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.250402][ T6486] RSP: 002b:00007fc3198ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  141.250421][ T6486] RAX: ffffffffffffffda RBX: 00007fc318bb5fa0 RCX: 00007fc31898e929
[  141.250435][ T6486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  141.250445][ T6486] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  141.250457][ T6486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  141.250467][ T6486] R13: 0000000000000000 R14: 00007fc318bb5fa0 R15: 00007ffc14f881f8
[  141.250496][ T6486]  </TASK>
[  141.250503][ T6486] gfs2: fsid=syz:syz.s: about to withdraw this file system
[  141.262746][ T6489] gfs2: fsid=syz:syz.s: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  141.268684][  T794] gfs2: fsid=syz:syz.s: file system withdrawn
[  141.279371][ T6489] gfs2: fsid=syz:syz.s:  H: s:SH f:H e:0 p:6486 [syz.0.22] iterate_dir+0x399/0x570
[  141.525565][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.535784][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.545736][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.555528][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.566647][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.576883][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.587132][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.597221][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.607550][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.617913][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.627803][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.638105][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.648616][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.658934][ T6489] gfs2: fsid=syz:syz.s:  H: s:?? f:AnEcs e:536869152 p:0 [(ended)] 0xffffc90002ef7dc8
[  141.669039][ T6489] gfs2: fsid=syz:syz.s:  H: s:UN f: e:0 p:0 [(ended)] 0xffff88807f7d1dd0
[  141.678227][ T6489] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] SMP KASAN PTI
[  141.690202][ T6489] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027]
[  141.698600][ T6489] CPU: 1 UID: 0 PID: 6489 Comm: syz.0.22 Not tainted syzkaller #0 PREEMPT(full) 
[  141.708218][ T6489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  141.719261][ T6489] RIP: 0010:gfs2_dump_glock+0xde5/0x19c0
[  141.725097][ T6489] Code: c0 9f d2 8b be 54 03 00 00 48 c7 c2 00 a0 d2 8b e8 f0 2d 9e fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 30 0f b7 1b 89
[  141.745166][ T6489] RSP: 0018:ffffc90003057700 EFLAGS: 00010202
[  141.751496][ T6489] RAX: dffffc0000000000 RBX: 0000000000000020 RCX: ffff8880337a0000
[  141.759722][ T6489] RDX: 0000000000000000 RSI: ffffffff8be08c40 RDI: ffffffff8be08c00
[  141.768028][ T6489] RBP: ffffc900030579f0 R08: ffffffff84000f25 R09: ffffffff8e13efa0
[  141.776100][ T6489] R10: dffffc0000000000 R11: fffffbfff1bfa958 R12: ffffffff84000f25
[  141.784337][ T6489] R13: 0000000000000000 R14: 0000000000000004 R15: 0000000000000000
[  141.792769][ T6489] FS:  00007fc31988a6c0(0000) GS:ffff888125d07000(0000) knlGS:0000000000000000
[  141.802372][ T6489] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  141.809195][ T6489] CR2: 00007f88bf73d000 CR3: 0000000031590000 CR4: 00000000003526f0
[  141.817178][ T6489] Call Trace:
[  141.820452][ T6489]  <TASK>
[  141.823559][ T6489]  ? gfs2_dump_glock+0xd35/0x19c0
[  141.828873][ T6489]  ? __pfx_gfs2_dump_glock+0x10/0x10
[  141.834334][ T6489]  ? __pfx___irq_work_queue_local+0x10/0x10
[  141.840494][ T6489]  ? console_unlock+0x133/0x190
[  141.845521][ T6489]  ? irq_work_queue+0xbc/0x140
[  141.850293][ T6489]  ? __pfx__printk+0x10/0x10
[  141.854980][ T6489]  gfs2_consist_inode_i+0xf5/0x110
[  141.860530][ T6489]  gfs2_dirent_scan+0x545/0x690
[  141.865382][ T6489]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  141.871103][ T6489]  gfs2_dir_read+0x804/0x16f0
[  141.875867][ T6489]  ? __pfx_inode_dio_wait+0x10/0x10
[  141.881412][ T6489]  ? do_raw_spin_unlock+0x122/0x240
[  141.886610][ T6489]  ? __pfx_gfs2_dir_read+0x10/0x10
[  141.892121][ T6489]  ? gfs2_glock_wait+0x20f/0x2a0
[  141.897074][ T6489]  gfs2_readdir+0x14c/0x1b0
[  141.901750][ T6489]  ? iterate_dir+0x292/0x570
[  141.906336][ T6489]  ? __pfx_gfs2_readdir+0x10/0x10
[  141.911468][ T6489]  ? iterate_dir+0x399/0x570
[  141.916342][ T6489]  ? iterate_dir+0x292/0x570
[  141.921138][ T6489]  ? down_read_killable+0x1bc/0x350
[  141.926525][ T6489]  iterate_dir+0x399/0x570
[  141.931044][ T6489]  __se_sys_getdents+0xe4/0x250
[  141.936002][ T6489]  ? __pfx___se_sys_getdents+0x10/0x10
[  141.941552][ T6489]  ? __pfx_filldir+0x10/0x10
[  141.946235][ T6489]  ? rcu_is_watching+0x15/0xb0
[  141.951263][ T6489]  do_syscall_64+0xec/0xf80
[  141.955932][ T6489]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.962714][ T6489]  ? trace_irq_disable+0x37/0x100
[  141.967931][ T6489]  ? clear_bhb_loop+0x40/0x90
[  141.972603][ T6489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.979096][ T6489] RIP: 0033:0x7fc31898e929
[  141.983951][ T6489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.004811][ T6489] RSP: 002b:00007fc31988a038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  142.013840][ T6489] RAX: ffffffffffffffda RBX: 00007fc318bb6080 RCX: 00007fc31898e929
[  142.022073][ T6489] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  142.030898][ T6489] RBP: 00007fc318a10b39 R08: 0000000000000000 R09: 0000000000000000
[  142.039488][ T6489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.049840][ T6489] R13: 0000000000000000 R14: 00007fc318bb6080 R15: 00007ffc14f881f8
[  142.058417][ T6489]  </TASK>
[  142.061535][ T6489] Modules linked in:
[  142.066578][ T6489] ---[ end trace 0000000000000000 ]---
[  142.072789][ T6489] RIP: 0010:gfs2_dump_glock+0xde5/0x19c0
[  142.079106][ T6489] Code: c0 9f d2 8b be 54 03 00 00 48 c7 c2 00 a0 d2 8b e8 f0 2d 9e fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 30 0f b7 1b 89
[  142.100244][ T6489] RSP: 0018:ffffc90003057700 EFLAGS: 00010202
[  142.106484][ T6489] RAX: dffffc0000000000 RBX: 0000000000000020 RCX: ffff8880337a0000
[  142.114852][ T6489] RDX: 0000000000000000 RSI: ffffffff8be08c40 RDI: ffffffff8be08c00
[  142.123477][ T6489] RBP: ffffc900030579f0 R08: ffffffff84000f25 R09: ffffffff8e13efa0
[  142.131975][ T6489] R10: dffffc0000000000 R11: fffffbfff1bfa958 R12: ffffffff84000f25
[  142.140207][ T6489] R13: 0000000000000000 R14: 0000000000000004 R15: 0000000000000000
[  142.148808][ T6489] FS:  00007fc31988a6c0(0000) GS:ffff888125c07000(0000) knlGS:0000000000000000
[  142.158223][ T6489] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  142.165057][ T6489] CR2: 00007fc319889f98 CR3: 0000000031590000 CR4: 00000000003526f0
[  142.173397][ T6489] Kernel panic - not syncing: Fatal exception
[  142.180474][ T6489] Kernel Offset: disabled
[  142.185114][ T6489] Rebooting in 86400 seconds..