Warning: Permanently added '10.128.1.188' (ED25519) to the list of known hosts.
2025/12/22 18:17:09 parsed 1 programs
[  119.358755][ T6261] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  122.446367][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  122.454329][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  122.462249][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  122.470658][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  122.479063][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  122.818225][   T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.827309][   T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.875717][ T1314] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.890868][ T1314] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  124.578184][ T6321] chnl_net:caif_netlink_parms(): no params data found
[  124.695572][ T6321] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.703027][ T6321] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.710487][ T6321] bridge_slave_0: entered allmulticast mode
[  124.718722][ T6321] bridge_slave_0: entered promiscuous mode
[  124.726835][ T6321] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.734136][ T6321] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.742251][ T6321] bridge_slave_1: entered allmulticast mode
[  124.749285][ T6321] bridge_slave_1: entered promiscuous mode
[  124.779723][ T6321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  124.793046][ T6321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  124.822720][ T6321] team0: Port device team_slave_0 added
[  124.830564][ T6321] team0: Port device team_slave_1 added
[  124.857474][ T6321] batman_adv: batadv0: Adding interface: batadv_slave_0
[  124.864482][ T6321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  124.891027][ T6321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  124.906318][ T6321] batman_adv: batadv0: Adding interface: batadv_slave_1
[  124.914724][ T6321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  124.940811][ T6321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  124.979857][ T6321] hsr_slave_0: entered promiscuous mode
[  124.986536][ T6321] hsr_slave_1: entered promiscuous mode
[  125.484744][ T6321] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  125.497277][ T6321] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  125.508698][ T6321] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  125.525365][ T6321] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  125.654088][ T6321] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.678755][ T6321] 8021q: adding VLAN 0 to HW filter on device team0
[  125.697719][ T3457] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.705137][ T3457] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.732542][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.739757][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.996683][ T6321] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.059856][ T6321] veth0_vlan: entered promiscuous mode
[  126.078603][ T6321] veth1_vlan: entered promiscuous mode
[  126.115477][ T6321] veth0_macvtap: entered promiscuous mode
[  126.127574][ T6321] veth1_macvtap: entered promiscuous mode
[  126.151602][ T6321] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.168171][ T6321] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.193749][ T3457] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.206932][ T3457] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.224995][ T3457] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.236406][ T3457] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.477378][ T3457] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.558195][ T3457] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.660257][ T3457] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.749251][ T3457] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/22 18:17:21 executed programs: 0
[  128.345565][ T5886] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  128.356365][ T5886] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  128.365025][ T5886] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  128.374802][ T5886] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  128.383065][ T5886] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  128.656244][ T6438] chnl_net:caif_netlink_parms(): no params data found
[  128.780147][ T6438] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.787567][ T6438] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.795684][ T6438] bridge_slave_0: entered allmulticast mode
[  128.803636][ T6438] bridge_slave_0: entered promiscuous mode
[  128.812726][ T6438] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.820026][ T6438] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.828519][ T6438] bridge_slave_1: entered allmulticast mode
[  128.836520][ T6438] bridge_slave_1: entered promiscuous mode
[  128.879986][ T6438] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  128.893264][ T6438] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  128.941753][ T6438] team0: Port device team_slave_0 added
[  128.957651][ T6438] team0: Port device team_slave_1 added
[  129.071367][ T6438] batman_adv: batadv0: Adding interface: batadv_slave_0
[  129.078354][ T6438] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  129.113369][ T6438] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  129.146065][ T6438] batman_adv: batadv0: Adding interface: batadv_slave_1
[  129.156727][ T6438] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  129.184359][ T6438] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  129.196116][ T3457] bridge_slave_1: left allmulticast mode
[  129.203027][ T3457] bridge_slave_1: left promiscuous mode
[  129.208925][ T3457] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.219783][ T3457] bridge_slave_0: left allmulticast mode
[  129.226477][ T3457] bridge_slave_0: left promiscuous mode
[  129.233019][ T3457] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.577386][ T3457] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  129.589973][ T3457] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  129.602118][ T3457] bond0 (unregistering): Released all slaves
[  129.706598][ T6438] hsr_slave_0: entered promiscuous mode
[  129.713656][ T6438] hsr_slave_1: entered promiscuous mode
[  129.720221][ T6438] debugfs: 'hsr0' already exists in 'hsr'
[  129.726403][ T6438] Cannot create hsr debugfs directory
[  129.746391][ T3457] hsr_slave_0: left promiscuous mode
[  129.755104][ T3457] hsr_slave_1: left promiscuous mode
[  129.761780][ T3457] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.769200][ T3457] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.780689][ T3457] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.797351][ T3457] batman_adv: batadv0: Removing interface: batadv_slave_1
[  129.817477][ T3457] veth1_macvtap: left promiscuous mode
[  129.823449][ T3457] veth0_macvtap: left promiscuous mode
[  129.829980][ T3457] veth1_vlan: left promiscuous mode
[  129.835724][ T3457] veth0_vlan: left promiscuous mode
[  130.378472][ T3457] team0 (unregistering): Port device team_slave_1 removed
[  130.420466][ T3457] team0 (unregistering): Port device team_slave_0 removed
[  130.420892][ T5886] Bluetooth: hci0: command tx timeout
[  131.558326][ T6438] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  131.578485][ T6438] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  131.589442][ T6438] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  131.606220][ T6438] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  131.725506][ T6438] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.751813][ T6438] 8021q: adding VLAN 0 to HW filter on device team0
[  131.767409][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.774644][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.804448][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.811675][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[  132.125436][ T6438] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.206116][ T6438] veth0_vlan: entered promiscuous mode
[  132.235616][ T6438] veth1_vlan: entered promiscuous mode
[  132.276121][ T6438] veth0_macvtap: entered promiscuous mode
[  132.287057][ T6438] veth1_macvtap: entered promiscuous mode
[  132.313224][ T6438] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.334212][ T6438] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.359094][ T3457] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.369367][ T3457] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.385703][ T1314] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.408939][ T1314] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.491558][ T1314] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.502144][ T5886] Bluetooth: hci0: command tx timeout
[  132.507908][ T1314] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.535072][   T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.543916][   T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.804657][ T6550] loop0: detected capacity change from 0 to 32768
[  132.826361][ T6550] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  132.837926][ T6550] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  132.864578][ T6550] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  132.879760][   T10] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  132.887797][   T10] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  132.912418][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  132.919191][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  132.979438][   T10] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 91ms
[  132.991822][   T10] gfs2: fsid=syz:syz.0: jid=0: Done
[  132.997885][ T6550] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  133.019416][ T6550] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  133.029903][ T6550] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  133.044396][ T6550] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  133.053598][ T6550] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:6550 [syz.0.17] iterate_dir+0x399/0x570
[  133.064592][ T6550] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  133.073862][ T6550] CPU: 1 UID: 0 PID: 6550 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  133.073884][ T6550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  133.073900][ T6550] Call Trace:
[  133.073908][ T6550]  <TASK>
[  133.073915][ T6550]  dump_stack_lvl+0x189/0x250
[  133.073944][ T6550]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.073966][ T6550]  ? __pfx__printk+0x10/0x10
[  133.073996][ T6550]  gfs2_withdraw+0xc3/0x1b0
[  133.074015][ T6550]  gfs2_dirent_scan+0x545/0x690
[  133.074036][ T6550]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  133.074056][ T6550]  gfs2_dir_read+0x804/0x16f0
[  133.074081][ T6550]  ? __pfx_inode_dio_wait+0x10/0x10
[  133.074102][ T6550]  ? __pfx___might_resched+0x10/0x10
[  133.074122][ T6550]  ? __pfx_gfs2_dir_read+0x10/0x10
[  133.074139][ T6550]  ? gfs2_glock_nq+0xedd/0x15f0
[  133.074168][ T6550]  ? gfs2_glock_wait+0x20f/0x2a0
[  133.074188][ T6550]  gfs2_readdir+0x14c/0x1b0
[  133.074202][ T6550]  ? iterate_dir+0x292/0x570
[  133.074230][ T6550]  ? __pfx_gfs2_readdir+0x10/0x10
[  133.074250][ T6550]  ? iterate_dir+0x399/0x570
[  133.074266][ T6550]  ? iterate_dir+0x292/0x570
[  133.074281][ T6550]  ? down_read_killable+0x1bc/0x350
[  133.074303][ T6550]  iterate_dir+0x399/0x570
[  133.074326][ T6550]  __se_sys_getdents64+0xe4/0x260
[  133.074346][ T6550]  ? __pfx___se_sys_getdents64+0x10/0x10
[  133.074363][ T6550]  ? __pfx_filldir64+0x10/0x10
[  133.074390][ T6550]  ? do_syscall_64+0xbe/0xf80
[  133.074414][ T6550]  do_syscall_64+0xfa/0xf80
[  133.074436][ T6550]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.074452][ T6550]  ? clear_bhb_loop+0x60/0xb0
[  133.074472][ T6550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.074487][ T6550] RIP: 0033:0x7fac9598eec9
[  133.074509][ T6550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.074522][ T6550] RSP: 002b:00007fac968ca038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  133.074540][ T6550] RAX: ffffffffffffffda RBX: 00007fac95be5fa0 RCX: 00007fac9598eec9
[  133.074552][ T6550] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  133.074561][ T6550] RBP: 00007fac95a11f91 R08: 0000000000000000 R09: 0000000000000000
[  133.074570][ T6550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.074578][ T6550] R13: 00007fac95be6038 R14: 00007fac95be5fa0 R15: 00007ffc2796da98
[  133.074607][ T6550]  </TASK>
[  133.074614][ T6550] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  133.322965][   T10] gfs2: fsid=syz:syz.0: file system withdrawn
2025/12/22 18:17:26 executed programs: 3
[  133.670692][ T6555] loop0: detected capacity change from 0 to 32768
[  133.692806][ T6555] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  133.701611][ T6555] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  133.716818][ T6555] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  133.727993][   T10] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  133.735634][   T10] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  133.813789][   T10] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 78ms
[  133.822018][   T10] gfs2: fsid=syz:syz.0: jid=0: Done
[  133.827961][ T6555] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  133.847883][ T6555] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  133.857820][ T6555] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  133.873172][ T6555] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  133.882600][ T6555] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:6555 [syz.0.18] iterate_dir+0x399/0x570
[  133.892567][ T6555] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  133.900622][ T6558] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  133.901336][ T6555] CPU: 0 UID: 0 PID: 6555 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  133.901353][ T6555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  133.901362][ T6555] Call Trace:
[  133.901367][ T6555]  <TASK>
[  133.901373][ T6555]  dump_stack_lvl+0x189/0x250
[  133.901400][ T6555]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.901423][ T6555]  ? __pfx__printk+0x10/0x10
[  133.901455][ T6555]  gfs2_withdraw+0xc3/0x1b0
[  133.901476][ T6555]  gfs2_dirent_scan+0x545/0x690
[  133.901496][ T6555]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  133.901516][ T6555]  gfs2_dir_read+0x804/0x16f0
[  133.901543][ T6555]  ? __pfx_inode_dio_wait+0x10/0x10
[  133.901564][ T6555]  ? __pfx___might_resched+0x10/0x10
[  133.901583][ T6555]  ? __pfx_gfs2_dir_read+0x10/0x10
[  133.901600][ T6555]  ? gfs2_glock_nq+0xedd/0x15f0
[  133.901630][ T6555]  ? gfs2_glock_wait+0x20f/0x2a0
[  133.901651][ T6555]  gfs2_readdir+0x14c/0x1b0
[  133.901666][ T6555]  ? iterate_dir+0x292/0x570
[  133.901685][ T6555]  ? __pfx_gfs2_readdir+0x10/0x10
[  133.901704][ T6555]  ? iterate_dir+0x399/0x570
[  133.901721][ T6555]  ? iterate_dir+0x292/0x570
[  133.901736][ T6555]  ? down_read_killable+0x1bc/0x350
[  133.901758][ T6555]  iterate_dir+0x399/0x570
[  133.901781][ T6555]  __se_sys_getdents64+0xe4/0x260
[  133.901802][ T6555]  ? __pfx___se_sys_getdents64+0x10/0x10
[  133.901817][ T6555]  ? __pfx_filldir64+0x10/0x10
[  133.901844][ T6555]  ? do_syscall_64+0xbe/0xf80
[  133.901869][ T6555]  do_syscall_64+0xfa/0xf80
[  133.901890][ T6555]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.901906][ T6555]  ? clear_bhb_loop+0x60/0xb0
[  133.901926][ T6555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.901941][ T6555] RIP: 0033:0x7fac9598eec9
[  133.901957][ T6555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.901969][ T6555] RSP: 002b:00007fac968ca038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  133.901987][ T6555] RAX: ffffffffffffffda RBX: 00007fac95be5fa0 RCX: 00007fac9598eec9
[  133.901998][ T6555] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  133.902008][ T6555] RBP: 00007fac95a11f91 R08: 0000000000000000 R09: 0000000000000000
[  133.902016][ T6555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.902025][ T6555] R13: 00007fac95be6038 R14: 00007fac95be5fa0 R15: 00007ffc2796da98
[  133.902055][ T6555]  </TASK>
[  133.902061][ T6555] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  133.913949][ T6558] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  133.920696][   T10] gfs2: fsid=syz:syz.0: file system withdrawn
[  133.931089][ T6558] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:6555 [syz.0.18] iterate_dir+0x399/0x570
[  134.182492][ T6558] Oops: general protection fault, probably for non-canonical address 0xe3fffa2202e18ef4: 0000 [#1] SMP KASAN PTI
[  134.194837][ T6558] KASAN: maybe wild-memory-access in range [0x1ffff110170c77a0-0x1ffff110170c77a7]
[  134.204282][ T6558] CPU: 0 UID: 0 PID: 6558 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  134.213438][ T6558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  134.223566][ T6558] RIP: 0010:gfs2_dump_glock+0xde5/0x19c0
[  134.229373][ T6558] Code: 00 95 d2 8b be 65 03 00 00 48 c7 c2 40 95 d2 8b e8 b0 f5 9d fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 30 0f b7 1b 89
[  134.248972][ T6558] RSP: 0018:ffffc90003107100 EFLAGS: 00010203
[  134.255023][ T6558] RAX: dffffc0000000000 RBX: 1ffff110170c77a4 RCX: ffff8880774fbd00
[  134.263067][ T6558] RDX: 0000000000000000 RSI: ffffffff8be07940 RDI: ffffffff8be07900
[  134.271352][ T6558] RBP: ffffc900031073f0 R08: ffffffff8400c475 R09: ffffffff8e13f2e0
[  134.279321][ T6558] R10: dffffc0000000000 R11: fffffbfff1f445ef R12: ffffffff8400c475
[  134.287284][ T6558] R13: 1ffff110170c7784 R14: 03fffe2202e18ef4 R15: 0000000000000000
[  134.295422][ T6558] FS:  00007fac968a96c0(0000) GS:ffff888125c25000(0000) knlGS:0000000000000000
[  134.304509][ T6558] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  134.311159][ T6558] CR2: 00007fac8ca3f000 CR3: 0000000076f4a000 CR4: 00000000003526f0
[  134.319149][ T6558] Call Trace:
[  134.322417][ T6558]  <TASK>
[  134.325331][ T6558]  ? gfs2_dump_glock+0xd35/0x19c0
[  134.330331][ T6558]  ? __pfx_gfs2_dump_glock+0x10/0x10
[  134.335619][ T6558]  ? preempt_count_add+0x91/0x190
[  134.340651][ T6558]  ? __pfx__printk+0x10/0x10
[  134.345243][ T6558]  gfs2_consist_inode_i+0xf5/0x110
[  134.350548][ T6558]  gfs2_dirent_scan+0x545/0x690
[  134.355479][ T6558]  ? __pfx_gfs2_dirent_find+0x10/0x10
[  134.360834][ T6558]  gfs2_dirent_search+0x2cb/0x710
[  134.365844][ T6558]  ? __pfx_gfs2_dirent_find+0x10/0x10
[  134.371210][ T6558]  ? __pfx___might_resched+0x10/0x10
[  134.376478][ T6558]  ? __pfx_gfs2_dirent_search+0x10/0x10
[  134.382105][ T6558]  ? __pfx_gfs2_permission+0x10/0x10
[  134.387375][ T6558]  gfs2_dir_search+0x4c/0x220
[  134.392045][ T6558]  gfs2_lookupi+0x3d9/0x5a0
[  134.396719][ T6558]  ? __pfx_gfs2_lookupi+0x10/0x10
[  134.401933][ T6558]  ? d_alloc_parallel+0x14ac/0x1610
[  134.407125][ T6558]  ? __gfs2_lookup+0x8f/0x270
[  134.411872][ T6558]  ? d_alloc_parallel+0x366/0x1610
[  134.417299][ T6558]  __gfs2_lookup+0x8f/0x270
[  134.421793][ T6558]  ? __pfx___gfs2_lookup+0x10/0x10
[  134.426973][ T6558]  ? __raw_spin_lock_init+0x45/0x100
[  134.432338][ T6558]  ? __init_waitqueue_head+0xa9/0x150
[  134.438327][ T6558]  __lookup_slow+0x297/0x3d0
[  134.443099][ T6558]  ? __pfx___lookup_slow+0x10/0x10
[  134.448213][ T6558]  ? down_read+0x274/0x2e0
[  134.452721][ T6558]  lookup_slow+0x53/0x70
[  134.457135][ T6558]  path_lookupat+0x3f5/0x8c0
[  134.462077][ T6558]  filename_lookup+0x212/0x570
[  134.466923][ T6558]  ? __pfx_filename_lookup+0x10/0x10
[  134.472194][ T6558]  ? __might_fault+0xb0/0x130
[  134.476871][ T6558]  vfs_statx+0xf8/0x550
[  134.481121][ T6558]  ? strncpy_from_user+0x150/0x2c0
[  134.486222][ T6558]  ? __pfx_vfs_statx+0x10/0x10
[  134.490987][ T6558]  ? getname_flags+0x1e5/0x540
[  134.495758][ T6558]  vfs_fstatat+0x118/0x170
[  134.500176][ T6558]  __x64_sys_newfstatat+0x116/0x190
[  134.505365][ T6558]  ? __pfx___x64_sys_newfstatat+0x10/0x10
[  134.511340][ T6558]  ? do_syscall_64+0xbe/0xf80
[  134.515998][ T6558]  do_syscall_64+0xfa/0xf80
[  134.520575][ T6558]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.526709][ T6558]  ? clear_bhb_loop+0x60/0xb0
[  134.531564][ T6558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.537452][ T6558] RIP: 0033:0x7fac9598eec9
[  134.541858][ T6558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.561571][ T6558] RSP: 002b:00007fac968a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  134.570141][ T6558] RAX: ffffffffffffffda RBX: 00007fac95be6090 RCX: 00007fac9598eec9
[  134.578188][ T6558] RDX: 0000000000000000 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  134.586248][ T6558] RBP: 00007fac95a11f91 R08: 0000000000000000 R09: 0000000000000000
[  134.594561][ T6558] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000000
[  134.602717][ T6558] R13: 00007fac95be6128 R14: 00007fac95be6090 R15: 00007ffc2796da98
[  134.610816][ T6558]  </TASK>
[  134.613840][ T6558] Modules linked in:
[  134.619124][ T6558] ---[ end trace 0000000000000000 ]---
[  134.625931][ T5886] Bluetooth: hci0: command tx timeout
[  134.626803][ T6558] RIP: 0010:gfs2_dump_glock+0xde5/0x19c0
[  134.637210][ T6558] Code: 00 95 d2 8b be 65 03 00 00 48 c7 c2 40 95 d2 8b e8 b0 f5 9d fd 49 8d 5d 20 49 89 de 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 28 06 00 00 48 89 5c 24 30 0f b7 1b 89
[  134.657141][ T6558] RSP: 0018:ffffc90003107100 EFLAGS: 00010203
[  134.663451][ T6558] RAX: dffffc0000000000 RBX: 1ffff110170c77a4 RCX: ffff8880774fbd00
[  134.671565][ T6558] RDX: 0000000000000000 RSI: ffffffff8be07940 RDI: ffffffff8be07900
[  134.679534][ T6558] RBP: ffffc900031073f0 R08: ffffffff8400c475 R09: ffffffff8e13f2e0
[  134.687644][ T6558] R10: dffffc0000000000 R11: fffffbfff1f445ef R12: ffffffff8400c475
[  134.695801][ T6558] R13: 1ffff110170c7784 R14: 03fffe2202e18ef4 R15: 0000000000000000
[  134.703840][ T6558] FS:  00007fac968a96c0(0000) GS:ffff888125c25000(0000) knlGS:0000000000000000
[  134.712859][ T6558] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  134.719611][ T6558] CR2: 00007fac8ca3f000 CR3: 0000000076f4a000 CR4: 00000000003526f0
[  134.727762][ T6558] Kernel panic - not syncing: Fatal exception
[  134.734426][ T6558] Kernel Offset: disabled
[  134.738748][ T6558] Rebooting in 86400 seconds..