[  655.498759][ T7658] loop0: detected capacity change from 0 to 32768
[  655.560259][ T7658] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  655.568943][ T7658] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  655.628989][ T7658] gfs2: fsid=syz:syz.0: journal 0 mapped with 7 extents in 0ms
[  655.668483][   T24] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  655.675793][   T24] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  655.870333][   T24] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 194ms
[  655.879080][   T24] gfs2: fsid=syz:syz.0: jid=0: Done
[  655.891121][ T7658] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  655.989438][ T7658] syz.0.156: attempt to access beyond end of device
[  655.989438][ T7658] loop0: rw=12288, sector=2251799813685248, nr_sectors = 8 limit=32768
[  656.004778][ T7658] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 281474976710656 (bad magic number), function = gfs2_quota_init, file = fs/gfs2/quota.c, line = 1430
[  656.021324][ T7658] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  656.056215][ T7658] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  656.065428][ T7658] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  656.073116][ T7658] gfs2: fsid=syz:syz.0: File system withdrawn
[  656.079434][ T7658] CPU: 0 UID: 0 PID: 7658 Comm: syz.0.156 Tainted: G        W           6.16.0-rc7-syzkaller-g89be9a83ccf1 #0 PREEMPT(none) 
[  656.079598][ T7658] Tainted: [W]=WARN
[  656.079645][ T7658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  656.079739][ T7658] Call Trace:
[  656.079792][ T7658]  <TASK>
[  656.079841][ T7658]  __dump_stack+0x26/0x30
[  656.080010][ T7658]  dump_stack_lvl+0x1df/0x270
[  656.080174][ T7658]  dump_stack+0x1e/0x25
[  656.080322][ T7658]  gfs2_withdraw+0x1d26/0x22e0
[  656.080535][ T7658]  ? kmsan_get_metadata+0xfb/0x160
[  656.080695][ T7658]  gfs2_meta_check_ii+0xe0/0x120
[  656.080868][ T7658]  gfs2_quota_init+0x2204/0x2800
[  656.081039][ T7658]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  656.081269][ T7658]  gfs2_make_fs_rw+0x1d5/0x460
[  656.081441][ T7658]  gfs2_fill_super+0x3d2e/0x3f50
[  656.081610][ T7658]  ? init_locking+0xed/0x500
[  656.081812][ T7658]  get_tree_bdev_flags+0x6e6/0x920
[  656.081968][ T7658]  ? __pfx_gfs2_fill_super+0x10/0x10
[  656.082136][ T7658]  ? __pfx_gfs2_fill_super+0x10/0x10
[  656.082296][ T7658]  ? __pfx_gfs2_get_tree+0x10/0x10
[  656.082456][ T7658]  get_tree_bdev+0x38/0x50
[  656.082593][ T7658]  gfs2_get_tree+0x57/0x350
[  656.082755][ T7658]  ? __pfx_gfs2_get_tree+0x10/0x10
[  656.082914][ T7658]  vfs_get_tree+0xb3/0x5c0
[  656.083060][ T7658]  ? mount_capable+0x99/0x100
[  656.083245][ T7658]  do_new_mount+0x738/0x1610
[  656.083391][ T7658]  ? kmsan_get_metadata+0xfb/0x160
[  656.083530][ T7658]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  656.083708][ T7658]  path_mount+0x6db/0x1e90
[  656.083863][ T7658]  ? user_path_at+0x32d/0x3d0
[  656.084052][ T7658]  __se_sys_mount+0x6eb/0x7d0
[  656.084201][ T7658]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  656.084413][ T7658]  __x64_sys_mount+0xe4/0x150
[  656.084578][ T7658]  x64_sys_call+0xfa7/0x3db0
[  656.084753][ T7658]  do_syscall_64+0xd9/0x210
[  656.084902][ T7658]  ? irqentry_exit+0x16/0x60
[  656.085029][ T7658]  ? clear_bhb_loop+0x40/0x90
[  656.085181][ T7658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.085327][ T7658] RIP: 0033:0x7f2b8cb7ffba
[  656.085442][ T7658] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.085554][ T7658] RSP: 002b:00007f2b8d9e6e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  656.085690][ T7658] RAX: ffffffffffffffda RBX: 00007f2b8d9e6ef0 RCX: 00007f2b8cb7ffba
[  656.085791][ T7658] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f2b8d9e6eb0
[  656.085882][ T7658] RBP: 0000000020000080 R08: 00007f2b8d9e6ef0 R09: 0000000000000000
[  656.085969][ T7658] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000200000c0
[  656.086053][ T7658] R13: 00007f2b8d9e6eb0 R14: 0000000000012551 R15: 0000000020000000
[  656.086174][ T7658]  </TASK>
[  656.393729][ T7658] gfs2: fsid=syz:syz.0: can't make FS RW: -5
Warning: Permanently added '10.128.1.120' (ED25519) to the list of known hosts.
executing program
[  661.324690][ T7667] loop0: detected capacity change from 0 to 32768
[  661.354321][ T7667] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  661.362925][ T7667] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  661.417003][ T7667] gfs2: fsid=syz:syz.0: journal 0 mapped with 7 extents in 0ms
[  661.428887][   T24] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  661.436223][   T24] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  661.560291][   T24] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 124ms
[  661.568974][   T24] gfs2: fsid=syz:syz.0: jid=0: Done
[  661.577091][ T7667] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  661.646704][ T7667] syz-executor172: attempt to access beyond end of device
[  661.646704][ T7667] loop0: rw=12288, sector=2251799813685248, nr_sectors = 8 limit=32768
[  661.662436][ T7667] =====================================================
[  661.669739][ T7667] BUG: KMSAN: uninit-value in gfs2_quota_init+0x21b2/0x2800
[  661.679022][ T7667]  gfs2_quota_init+0x21b2/0x2800
[  661.684926][ T7667]  gfs2_make_fs_rw+0x1d5/0x460
[  661.689927][ T7667]  gfs2_fill_super+0x3d2e/0x3f50
[  661.695244][ T7667]  get_tree_bdev_flags+0x6e6/0x920
[  661.700555][ T7667]  get_tree_bdev+0x38/0x50
[  661.705361][ T7667]  gfs2_get_tree+0x57/0x350
[  661.710036][ T7667]  vfs_get_tree+0xb3/0x5c0
[  661.714682][ T7667]  do_new_mount+0x738/0x1610
[  661.719424][ T7667]  path_mount+0x6db/0x1e90
[  661.724375][ T7667]  __se_sys_mount+0x6eb/0x7d0
[  661.729211][ T7667]  __x64_sys_mount+0xe4/0x150
[  661.734247][ T7667]  x64_sys_call+0xfa7/0x3db0
[  661.739048][ T7667]  do_syscall_64+0xd9/0x210
[  661.743859][ T7667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.749923][ T7667] 
[  661.752303][ T7667] Uninit was created at:
[  661.756940][ T7667]  __alloc_frozen_pages_noprof+0x689/0xf00
[  661.763117][ T7667]  alloc_pages_mpol+0x328/0x860
[  661.768152][ T7667]  folio_alloc_noprof+0x109/0x360
[  661.773454][ T7667]  filemap_alloc_folio_noprof+0x9d/0x420
[  661.779282][ T7667]  __filemap_get_folio+0xb45/0x1930
[  661.786757][ T7667]  gfs2_getbuf+0x246/0xce0
[  661.791380][ T7667]  gfs2_meta_ra+0x13c/0x720
[  661.796126][ T7667]  gfs2_quota_init+0x759/0x2800
[  661.801135][ T7667]  gfs2_make_fs_rw+0x1d5/0x460
[  661.806186][ T7667]  gfs2_fill_super+0x3d2e/0x3f50
[  661.811299][ T7667]  get_tree_bdev_flags+0x6e6/0x920
[  661.816830][ T7667]  get_tree_bdev+0x38/0x50
[  661.821399][ T7667]  gfs2_get_tree+0x57/0x350
[  661.826208][ T7667]  vfs_get_tree+0xb3/0x5c0
[  661.830782][ T7667]  do_new_mount+0x738/0x1610
[  661.835613][ T7667]  path_mount+0x6db/0x1e90
[  661.840175][ T7667]  __se_sys_mount+0x6eb/0x7d0
[  661.845125][ T7667]  __x64_sys_mount+0xe4/0x150
[  661.849983][ T7667]  x64_sys_call+0xfa7/0x3db0
[  661.855005][ T7667]  do_syscall_64+0xd9/0x210
[  661.859690][ T7667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.865991][ T7667] 
[  661.868422][ T7667] CPU: 1 UID: 0 PID: 7667 Comm: syz-executor172 Tainted: G        W           6.16.0-rc7-syzkaller-g89be9a83ccf1 #0 PREEMPT(none) 
[  661.883843][ T7667] Tainted: [W]=WARN
[  661.887758][ T7667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  661.898703][ T7667] =====================================================
[  661.905837][ T7667] Disabling lock debugging due to kernel taint
[  661.912071][ T7667] Kernel panic - not syncing: kmsan.panic set ...
[  661.918600][ T7667] CPU: 1 UID: 0 PID: 7667 Comm: syz-executor172 Tainted: G    B   W           6.16.0-rc7-syzkaller-g89be9a83ccf1 #0 PREEMPT(none) 
[  661.932507][ T7667] Tainted: [B]=BAD_PAGE, [W]=WARN
[  661.937671][ T7667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  661.947824][ T7667] Call Trace:
[  661.951175][ T7667]  <TASK>
[  661.954188][ T7667]  __dump_stack+0x26/0x30
[  661.958643][ T7667]  dump_stack_lvl+0x53/0x270
[  661.963386][ T7667]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  661.969365][ T7667]  dump_stack+0x1e/0x25
[  661.973657][ T7667]  panic+0x4bd/0xd50
[  661.977744][ T7667]  kmsan_report+0x31c/0x320
[  661.982357][ T7667]  ? __msan_warning+0x1b/0x30
[  661.987147][ T7667]  ? gfs2_quota_init+0x21b2/0x2800
[  661.992383][ T7667]  ? gfs2_make_fs_rw+0x1d5/0x460
[  661.997457][ T7667]  ? gfs2_fill_super+0x3d2e/0x3f50
[  662.002689][ T7667]  ? get_tree_bdev_flags+0x6e6/0x920
[  662.008125][ T7667]  ? get_tree_bdev+0x38/0x50
[  662.012860][ T7667]  ? gfs2_get_tree+0x57/0x350
[  662.017720][ T7667]  ? vfs_get_tree+0xb3/0x5c0
[  662.022418][ T7667]  ? do_new_mount+0x738/0x1610
[  662.027295][ T7667]  ? path_mount+0x6db/0x1e90
[  662.031982][ T7667]  ? __se_sys_mount+0x6eb/0x7d0
[  662.036940][ T7667]  ? __x64_sys_mount+0xe4/0x150
[  662.041895][ T7667]  ? x64_sys_call+0xfa7/0x3db0
[  662.046790][ T7667]  ? do_syscall_64+0xd9/0x210
[  662.051580][ T7667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.057759][ T7667]  ? submit_bio+0x5a9/0x5d0
[  662.062378][ T7667]  ? submit_bh_wbc+0x7e0/0x870
[  662.067267][ T7667]  ? kmsan_get_metadata+0xfb/0x160
[  662.072517][ T7667]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  662.078504][ T7667]  ? gfs2_meta_ra+0x68b/0x720
[  662.083306][ T7667]  ? kmsan_get_metadata+0xfb/0x160
[  662.088564][ T7667]  __msan_warning+0x1b/0x30
[  662.093288][ T7667]  gfs2_quota_init+0x21b2/0x2800
[  662.098411][ T7667]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  662.104916][ T7667]  gfs2_make_fs_rw+0x1d5/0x460
[  662.109811][ T7667]  gfs2_fill_super+0x3d2e/0x3f50
[  662.114995][ T7667]  ? init_locking+0xed/0x500
[  662.119820][ T7667]  get_tree_bdev_flags+0x6e6/0x920
[  662.125144][ T7667]  ? __pfx_gfs2_fill_super+0x10/0x10
[  662.130552][ T7667]  ? __pfx_gfs2_fill_super+0x10/0x10
[  662.136016][ T7667]  ? __pfx_gfs2_get_tree+0x10/0x10
[  662.141242][ T7667]  get_tree_bdev+0x38/0x50
[  662.145765][ T7667]  gfs2_get_tree+0x57/0x350
[  662.150385][ T7667]  ? __pfx_gfs2_get_tree+0x10/0x10
[  662.155610][ T7667]  vfs_get_tree+0xb3/0x5c0
[  662.160146][ T7667]  ? mount_capable+0x99/0x100
[  662.165029][ T7667]  do_new_mount+0x738/0x1610
[  662.169799][ T7667]  ? kmsan_get_metadata+0xfb/0x160
[  662.175109][ T7667]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  662.181087][ T7667]  path_mount+0x6db/0x1e90
[  662.185706][ T7667]  ? user_path_at+0x32d/0x3d0
[  662.190532][ T7667]  __se_sys_mount+0x6eb/0x7d0
[  662.195353][ T7667]  __x64_sys_mount+0xe4/0x150
[  662.200157][ T7667]  x64_sys_call+0xfa7/0x3db0
[  662.204895][ T7667]  do_syscall_64+0xd9/0x210
[  662.209569][ T7667]  ? irqentry_exit+0x16/0x60
[  662.214335][ T7667]  ? clear_bhb_loop+0x40/0x90
[  662.219199][ T7667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.225278][ T7667] RIP: 0033:0x7fe19fcb1daa
[  662.229824][ T7667] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  662.249647][ T7667] RSP: 002b:00007fff1fe3c578 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[  662.258228][ T7667] RAX: ffffffffffffffda RBX: 00007fff1fe3c590 RCX: 00007fe19fcb1daa
[  662.266375][ T7667] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fff1fe3c590
[  662.274488][ T7667] RBP: 0000000000000004 R08: 00007fff1fe3c5d0 R09: 000000000001254b
[  662.282579][ T7667] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[  662.290676][ T7667] R13: 00007fff1fe3c5d0 R14: 0000000000000003 R15: 0000000001000000
[  662.298807][ T7667]  </TASK>
[  662.302283][ T7667] Kernel Offset: disabled
[  662.306702][ T7667] Rebooting in 86400 seconds..