_slowunlock+0x10/0x10
[  619.415159][ T8279]  ? __pfx_inode_dio_wait+0x10/0x10
[  619.415192][ T8279]  ? __pfx_gfs2_dir_read+0x10/0x10
[  619.415226][ T8279]  ? gfs2_glock_wait+0x212/0x2a0
executing program
[  619.415251][ T8279]  gfs2_readdir+0x16c/0x1e0
[  619.415280][ T8279]  ? __pfx_gfs2_readdir+0x10/0x10
[  619.415297][ T8279]  ? down_read_killable+0x14c/0x220
[  619.415325][ T8279]  ? iterate_dir+0x3a5/0x580
[  619.415344][ T8279]  ? apparmor_file_permission+0x1f4/0x300
[  619.415375][ T8279]  iterate_dir+0x3a5/0x580
[  619.415400][ T8279]  __se_sys_getdents64+0xf1/0x280
[  619.415423][ T8279]  ? __pfx___se_sys_getdents64+0x10/0x10
[  619.415442][ T8279]  ? __pfx_filldir64+0x10/0x10
[  619.415463][ T8279]  ? rcu_is_watching+0x15/0xb0
[  619.415496][ T8279]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.415517][ T8279]  do_syscall_64+0x15f/0xf80
[  619.415543][ T8279]  ? trace_irq_disable+0x3b/0x140
[  619.415571][ T8279]  ? clear_bhb_loop+0x40/0x90
[  619.415595][ T8279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.415614][ T8279] RIP: 0033:0x7f1f4ac8fb19
[  619.415631][ T8279] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  619.415648][ T8279] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  619.415668][ T8279] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  619.415683][ T8279] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  619.415696][ T8279] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  619.415710][ T8279] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  619.415724][ T8279] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  619.415756][ T8279]  </TASK>
[  619.415852][ T8279] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  619.415913][   T37] gfs2: fsid=syz:syz.0: file system withdrawn
[  619.594795][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  620.104032][ T8283] loop0: detected capacity change from 0 to 32768
[  620.111497][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.112189][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.113364][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.114225][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.115088][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.115898][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.118085][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.119325][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.120449][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.121163][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.121876][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.122461][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.123163][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.124757][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.125982][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.126789][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.127576][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.130029][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.130828][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.133314][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.134686][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.135938][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.136733][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.137524][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.138223][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.141724][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.142054][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.142863][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.143558][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.144649][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.145585][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.146422][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.147120][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.148301][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.149086][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.150277][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.153374][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.166487][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.167956][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.232553][ T8283] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  620.232572][ T8283] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  620.240361][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.247931][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.248718][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.252745][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.253076][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.253377][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.253762][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.254078][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.254446][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.254951][ T8283] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  620.255971][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.256939][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.257088][   T32] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  620.257101][   T32] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  620.272130][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.274671][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.284310][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.285124][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.296250][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.298343][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.304595][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.306622][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.313003][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.340374][   T32] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 83ms
[  620.340695][   T32] gfs2: fsid=syz:syz.0: jid=0: Done
[  620.340751][ T8283] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  620.342096][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.343789][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.345538][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.364062][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[  620.376650][ T8283] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  620.376672][ T8283] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  620.376701][ T8283] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  620.376740][ T8283] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8283 [syz-executor125] iterate_dir+0x3a5/0x580
[  620.376774][ T8283] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  620.376803][ T8283] CPU: 1 UID: 0 PID: 8283 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  620.376827][ T8283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  620.376838][ T8283] Call Trace:
[  620.376846][ T8283]  <TASK>
[  620.376854][ T8283]  dump_stack_lvl+0xe8/0x150
[  620.376881][ T8283]  gfs2_withdraw+0xc3/0x1b0
[  620.376905][ T8283]  gfs2_dirent_scan+0x545/0x690
[  620.376930][ T8283]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  620.376953][ T8283]  gfs2_dir_read+0x78e/0x1760
[  620.376980][ T8283]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  620.377011][ T8283]  ? __pfx_inode_dio_wait+0x10/0x10
[  620.377047][ T8283]  ? __pfx_gfs2_dir_read+0x10/0x10
[  620.377082][ T8283]  ? gfs2_glock_wait+0x212/0x2a0
[  620.377107][ T8283]  gfs2_readdir+0x16c/0x1e0
[  620.377128][ T8283]  ? __pfx_gfs2_readdir+0x10/0x10
[  620.377145][ T8283]  ? down_read_killable+0x14c/0x220
[  620.377173][ T8283]  ? iterate_dir+0x3a5/0x580
[  620.377192][ T8283]  ? apparmor_file_permission+0x1f4/0x300
[  620.377225][ T8283]  iterate_dir+0x3a5/0x580
[  620.377248][ T8283]  __se_sys_getdents64+0xf1/0x280
[  620.377271][ T8283]  ? __pfx___se_sys_getdents64+0x10/0x10
[  620.377291][ T8283]  ? __pfx_filldir64+0x10/0x10
[  620.377311][ T8283]  ? rcu_is_watching+0x15/0xb0
[  620.377343][ T8283]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  620.377364][ T8283]  do_syscall_64+0x15f/0xf80
[  620.377386][ T8283]  ? trace_irq_disable+0x3b/0x140
[  620.377415][ T8283]  ? clear_bhb_loop+0x40/0x90
[  620.377437][ T8283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  620.377456][ T8283] RIP: 0033:0x7f1f4ac8fb19
[  620.377474][ T8283] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  620.377490][ T8283] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  620.377510][ T8283] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  620.377525][ T8283] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  620.377538][ T8283] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  620.377552][ T8283] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  620.377565][ T8283] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  620.377597][ T8283]  </TASK>
[  620.377701][ T8283] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  620.377834][   T32] gfs2: fsid=syz:syz.0: file system withdrawn
[  620.557269][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.558095][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.560234][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.560949][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.564157][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.564961][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.566708][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.569245][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.570466][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.571213][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.571964][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.572622][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.574868][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.575761][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.580286][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.581579][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.582262][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.583915][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.584599][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.588027][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.591368][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.592228][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.594543][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.595358][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.596277][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.596961][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.597708][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.602752][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.603941][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.604744][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.605708][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.606032][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.606587][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.607619][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.611280][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  620.647126][ T7827] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  621.284571][ T8287] loop0: detected capacity change from 0 to 32768
[  621.291513][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.292198][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.293008][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.293784][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.294454][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.296052][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.296666][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.297638][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.298611][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.300776][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.303224][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.304083][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.304881][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.305854][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.306643][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.307415][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.308178][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.309897][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.311387][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.312629][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.313366][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.314769][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.315503][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.316729][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.318344][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.319786][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.321011][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.321928][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.322706][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.323397][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.324233][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.325018][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.326575][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.328157][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.330618][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.331653][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.331965][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.332412][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.333462][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.335915][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.488852][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.619575][ T8287] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  621.619596][ T8287] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  621.626301][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.657830][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.666211][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.667083][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.667336][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.667565][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.667812][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.668057][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.668373][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.668961][ T8287] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  621.688392][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.692422][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.692615][   T32] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  621.692627][   T32] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  621.712833][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.714364][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.732358][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.733979][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.736311][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.736760][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.749616][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.751444][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.755074][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.787722][   T32] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 95ms
[  621.788930][   T32] gfs2: fsid=syz:syz.0: jid=0: Done
[  621.789222][ T8287] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  621.792851][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.797169][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.798272][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.825221][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  621.839674][ T8287] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  621.839696][ T8287] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  621.839725][ T8287] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  621.839754][ T8287] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8287 [syz-executor125] iterate_dir+0x3a5/0x580
[  621.839808][ T8287] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  621.839847][ T8287] CPU: 1 UID: 0 PID: 8287 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  621.839869][ T8287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  621.839881][ T8287] Call Trace:
[  621.839889][ T8287]  <TASK>
[  621.839897][ T8287]  dump_stack_lvl+0xe8/0x150
[  621.839925][ T8287]  gfs2_withdraw+0xc3/0x1b0
[  621.839949][ T8287]  gfs2_dirent_scan+0x545/0x690
[  621.839972][ T8287]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  621.839998][ T8287]  gfs2_dir_read+0x78e/0x1760
[  621.840025][ T8287]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  621.840056][ T8287]  ? __pfx_inode_dio_wait+0x10/0x10
[  621.840090][ T8287]  ? __pfx_gfs2_dir_read+0x10/0x10
[  621.840124][ T8287]  ? gfs2_glock_wait+0x212/0x2a0
[  621.840148][ T8287]  gfs2_readdir+0x16c/0x1e0
[  621.840170][ T8287]  ? __pfx_gfs2_readdir+0x10/0x10
[  621.840186][ T8287]  ? down_read_killable+0x14c/0x220
[  621.840214][ T8287]  ? iterate_dir+0x3a5/0x580
[  621.840233][ T8287]  ? apparmor_file_permission+0x1f4/0x300
[  621.840266][ T8287]  iterate_dir+0x3a5/0x580
[  621.840287][ T8287]  __se_sys_getdents64+0xf1/0x280
[  621.840314][ T8287]  ? __pfx___se_sys_getdents64+0x10/0x10
[  621.840333][ T8287]  ? __pfx_filldir64+0x10/0x10
[  621.840353][ T8287]  ? rcu_is_watching+0x15/0xb0
[  621.840389][ T8287]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  621.840410][ T8287]  do_syscall_64+0x15f/0xf80
[  621.840432][ T8287]  ? trace_irq_disable+0x3b/0x140
[  621.840460][ T8287]  ? clear_bhb_loop+0x40/0x90
[  621.840484][ T8287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  621.840502][ T8287] RIP: 0033:0x7f1f4ac8fb19
[  621.840520][ T8287] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  621.840537][ T8287] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  621.840558][ T8287] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  621.840573][ T8287] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  621.840586][ T8287] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
executing program
[  621.840601][ T8287] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  621.840614][ T8287] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  621.840645][ T8287]  </TASK>
[  621.840857][ T8287] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  621.840924][   T32] gfs2: fsid=syz:syz.0: file system withdrawn
[  622.007724][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  622.446750][ T8291] loop0: detected capacity change from 0 to 32768
[  622.449497][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.453240][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.453921][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.454665][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.455385][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.456039][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.456787][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.457991][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.458684][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.460471][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.462114][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.462855][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.463569][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.464240][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.464880][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.465681][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.466372][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.467226][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.468684][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.470418][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.472636][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.473328][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.474076][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.474739][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.475424][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.476081][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.476775][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.478642][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.482193][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.482874][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.483596][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.484418][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.484726][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.485204][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.486098][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.487604][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.553942][ T8291] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  622.553977][ T8291] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  622.568241][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.579137][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.581338][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.582447][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.582771][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.583297][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.583720][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.584075][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.584612][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.585113][ T8291] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  622.586474][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.587650][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.587928][ T5738] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  622.587942][ T5738] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  622.603616][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.605714][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.616256][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.618135][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.632814][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.634250][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.641938][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.643669][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.643770][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.650782][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.652423][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.678308][ T5738] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 90ms
[  622.678939][ T5738] gfs2: fsid=syz:syz.0: jid=0: Done
[  622.679037][ T8291] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  622.683627][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.689492][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.695663][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.706915][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  622.729201][ T8291] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  622.729223][ T8291] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  622.729252][ T8291] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  622.729333][ T8291] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8291 [syz-executor125] iterate_dir+0x3a5/0x580
[  622.729367][ T8291] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  622.729396][ T8291] CPU: 1 UID: 0 PID: 8291 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  622.729417][ T8291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  622.729438][ T8291] Call Trace:
[  622.729446][ T8291]  <TASK>
[  622.729454][ T8291]  dump_stack_lvl+0xe8/0x150
[  622.729482][ T8291]  gfs2_withdraw+0xc3/0x1b0
[  622.729505][ T8291]  gfs2_dirent_scan+0x545/0x690
[  622.729529][ T8291]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  622.729554][ T8291]  gfs2_dir_read+0x78e/0x1760
[  622.729580][ T8291]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  622.729612][ T8291]  ? __pfx_inode_dio_wait+0x10/0x10
[  622.729647][ T8291]  ? __pfx_gfs2_dir_read+0x10/0x10
[  622.729680][ T8291]  ? gfs2_glock_wait+0x212/0x2a0
[  622.729705][ T8291]  gfs2_readdir+0x16c/0x1e0
[  622.729727][ T8291]  ? __pfx_gfs2_readdir+0x10/0x10
[  622.729744][ T8291]  ? down_read_killable+0x14c/0x220
[  622.729771][ T8291]  ? iterate_dir+0x3a5/0x580
[  622.729790][ T8291]  ? apparmor_file_permission+0x1f4/0x300
[  622.729823][ T8291]  iterate_dir+0x3a5/0x580
[  622.729847][ T8291]  __se_sys_getdents64+0xf1/0x280
[  622.729870][ T8291]  ? __pfx___se_sys_getdents64+0x10/0x10
[  622.729889][ T8291]  ? __pfx_filldir64+0x10/0x10
[  622.729909][ T8291]  ? rcu_is_watching+0x15/0xb0
[  622.729941][ T8291]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.729962][ T8291]  do_syscall_64+0x15f/0xf80
[  622.729985][ T8291]  ? trace_irq_disable+0x3b/0x140
[  622.730014][ T8291]  ? clear_bhb_loop+0x40/0x90
[  622.730036][ T8291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.730056][ T8291] RIP: 0033:0x7f1f4ac8fb19
[  622.730073][ T8291] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  622.730089][ T8291] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  622.730110][ T8291] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  622.730124][ T8291] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
executing program
[  622.730137][ T8291] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  622.730151][ T8291] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  622.730165][ T8291] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  622.730196][ T8291]  </TASK>
[  622.730204][ T8291] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  622.730543][ T5738] gfs2: fsid=syz:syz.0: file system withdrawn
[  623.095970][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  623.552789][ T8295] loop0: detected capacity change from 0 to 32768
[  623.555246][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.563626][ T8295] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  623.565551][ T8295] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  623.589062][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.589880][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.590575][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.591226][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.591841][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.592458][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.593079][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.594104][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.594710][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.595665][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.596279][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.596875][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.597608][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.598559][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.706881][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.707035][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.707716][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.707823][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.708454][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.747798][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.747922][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.749896][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.750182][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.750834][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.750872][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.752857][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.754646][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.755004][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.755518][ T8295] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  623.757662][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.800943][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.801370][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.805785][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.806467][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.806650][ T5737] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  623.806663][ T5737] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  623.811016][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.811903][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.814860][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.817103][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.817826][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.821392][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.823593][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.824300][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.825179][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.827507][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.827551][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.828930][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.833368][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.874457][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.881509][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.885416][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.888654][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.894596][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.894857][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.923600][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.987631][ T5737] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 180ms
[  623.989007][ T5737] gfs2: fsid=syz:syz.0: jid=0: Done
[  623.989200][ T8295] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  623.992468][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.994843][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  623.996303][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.006406][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.035914][ T8295] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  624.035935][ T8295] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  624.035964][ T8295] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  624.035992][ T8295] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8295 [syz-executor125] iterate_dir+0x3a5/0x580
[  624.036025][ T8295] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  624.036066][ T8295] CPU: 0 UID: 0 PID: 8295 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  624.036089][ T8295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  624.036101][ T8295] Call Trace:
[  624.036109][ T8295]  <TASK>
[  624.036117][ T8295]  dump_stack_lvl+0xe8/0x150
[  624.036145][ T8295]  gfs2_withdraw+0xc3/0x1b0
[  624.036169][ T8295]  gfs2_dirent_scan+0x545/0x690
[  624.036193][ T8295]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  624.036219][ T8295]  gfs2_dir_read+0x78e/0x1760
[  624.036245][ T8295]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  624.036277][ T8295]  ? __pfx_inode_dio_wait+0x10/0x10
[  624.036310][ T8295]  ? __pfx_gfs2_dir_read+0x10/0x10
[  624.036343][ T8295]  ? gfs2_glock_wait+0x212/0x2a0
[  624.036368][ T8295]  gfs2_readdir+0x16c/0x1e0
[  624.036391][ T8295]  ? __pfx_gfs2_readdir+0x10/0x10
[  624.036408][ T8295]  ? down_read_killable+0x14c/0x220
[  624.036434][ T8295]  ? iterate_dir+0x3a5/0x580
[  624.036463][ T8295]  ? apparmor_file_permission+0x1f4/0x300
[  624.036496][ T8295]  iterate_dir+0x3a5/0x580
[  624.036520][ T8295]  __se_sys_getdents64+0xf1/0x280
[  624.036549][ T8295]  ? __pfx___se_sys_getdents64+0x10/0x10
[  624.036569][ T8295]  ? __pfx_filldir64+0x10/0x10
[  624.036590][ T8295]  ? rcu_is_watching+0x15/0xb0
[  624.036624][ T8295]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.036645][ T8295]  do_syscall_64+0x15f/0xf80
[  624.036667][ T8295]  ? trace_irq_disable+0x3b/0x140
[  624.036696][ T8295]  ? clear_bhb_loop+0x40/0x90
[  624.036719][ T8295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.036739][ T8295] RIP: 0033:0x7f1f4ac8fb19
[  624.036755][ T8295] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  624.036772][ T8295] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  624.036792][ T8295] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  624.036813][ T8295] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
executing program
[  624.036825][ T8295] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  624.036840][ T8295] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  624.036856][ T8295] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  624.036888][ T8295]  </TASK>
[  624.038186][ T8295] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  624.038253][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  624.216562][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  624.473066][ T1339] ieee802154 phy0 wpan0: encryption failed: -22
[  624.473169][ T1339] ieee802154 phy1 wpan1: encryption failed: -22
[  624.700507][ T8301] loop0: detected capacity change from 0 to 32768
[  624.705845][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.708032][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.713621][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.722906][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.723855][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.724654][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.725310][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.726457][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.727107][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.728132][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.728948][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.729601][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.730303][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.733188][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.733940][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.734662][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.736797][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.737592][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.741777][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.743284][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.745532][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.746220][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.746907][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.747518][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.748208][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.749000][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.749650][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.750345][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.751742][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.752362][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.753130][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.754068][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.755585][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.755627][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.755672][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.756819][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.861514][ T8301] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  624.861535][ T8301] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  624.881614][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.896816][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.897625][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.904761][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.905134][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.905429][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.905927][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.906253][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.906602][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.907259][ T8301] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  624.908699][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.911010][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.911175][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  624.911188][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  624.934196][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.937726][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.957452][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.962050][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.963553][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.978371][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  624.982227][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.012282][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 101ms
[  625.015366][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  625.015414][ T8301] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  625.020058][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.023123][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.023630][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.034355][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.053701][ T8301] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  625.053721][ T8301] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  625.053750][ T8301] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  625.053778][ T8301] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8301 [syz-executor125] iterate_dir+0x3a5/0x580
[  625.053811][ T8301] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  625.053840][ T8301] CPU: 0 UID: 0 PID: 8301 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  625.053863][ T8301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  625.053875][ T8301] Call Trace:
[  625.053883][ T8301]  <TASK>
[  625.053891][ T8301]  dump_stack_lvl+0xe8/0x150
[  625.053919][ T8301]  gfs2_withdraw+0xc3/0x1b0
[  625.053942][ T8301]  gfs2_dirent_scan+0x545/0x690
[  625.053968][ T8301]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  625.053994][ T8301]  gfs2_dir_read+0x78e/0x1760
[  625.054021][ T8301]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  625.054053][ T8301]  ? __pfx_inode_dio_wait+0x10/0x10
[  625.054087][ T8301]  ? __pfx_gfs2_dir_read+0x10/0x10
[  625.054120][ T8301]  ? gfs2_glock_wait+0x212/0x2a0
[  625.054145][ T8301]  gfs2_readdir+0x16c/0x1e0
[  625.054167][ T8301]  ? __pfx_gfs2_readdir+0x10/0x10
[  625.054183][ T8301]  ? down_read_killable+0x14c/0x220
[  625.054211][ T8301]  ? iterate_dir+0x3a5/0x580
[  625.054230][ T8301]  ? apparmor_file_permission+0x1f4/0x300
[  625.054272][ T8301]  iterate_dir+0x3a5/0x580
[  625.054295][ T8301]  __se_sys_getdents64+0xf1/0x280
[  625.054319][ T8301]  ? __pfx___se_sys_getdents64+0x10/0x10
[  625.054338][ T8301]  ? __pfx_filldir64+0x10/0x10
[  625.054359][ T8301]  ? rcu_is_watching+0x15/0xb0
[  625.054391][ T8301]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.054412][ T8301]  do_syscall_64+0x15f/0xf80
[  625.054437][ T8301]  ? trace_irq_disable+0x3b/0x140
[  625.054466][ T8301]  ? clear_bhb_loop+0x40/0x90
[  625.054489][ T8301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.054508][ T8301] RIP: 0033:0x7f1f4ac8fb19
[  625.054526][ T8301] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  625.054543][ T8301] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  625.054563][ T8301] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  625.054578][ T8301] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  625.054591][ T8301] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
executing program
[  625.054604][ T8301] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  625.054617][ T8301] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  625.054648][ T8301]  </TASK>
[  625.054914][ T8301] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  625.055012][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  625.244919][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  625.789756][ T8305] loop0: detected capacity change from 0 to 32768
[  625.792910][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.796817][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.798182][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.801393][ T8305] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  625.801411][ T8305] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  625.809348][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.811048][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.825509][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.825708][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.826579][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.827315][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.828512][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.831553][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.832792][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.834363][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.834544][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.835297][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.836097][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.837166][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.841632][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.841765][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.842197][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.843035][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.843506][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.843749][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.844144][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.845055][ T8305] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  625.845855][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.847039][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.850894][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.851976][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.853281][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.853320][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.853626][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  625.853639][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  625.858250][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.859602][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.862932][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.865969][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.867440][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.868969][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.870503][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.873919][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.875019][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.876901][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.878077][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.878920][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.879493][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.885830][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.886686][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.888123][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.891728][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.892248][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.894942][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.895268][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.898602][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.909259][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.917733][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.938233][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.941158][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.963914][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.965967][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.966323][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.981943][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  625.982627][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.011655][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.052193][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 198ms
[  626.052416][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  626.053762][ T8305] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  626.059301][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.064749][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.067009][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.090669][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.115568][ T8305] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  626.115592][ T8305] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  626.115621][ T8305] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  626.115650][ T8305] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8305 [syz-executor125] iterate_dir+0x3a5/0x580
[  626.115686][ T8305] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  626.115714][ T8305] CPU: 0 UID: 0 PID: 8305 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  626.115736][ T8305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  626.115748][ T8305] Call Trace:
[  626.115755][ T8305]  <TASK>
[  626.115771][ T8305]  dump_stack_lvl+0xe8/0x150
[  626.115799][ T8305]  gfs2_withdraw+0xc3/0x1b0
[  626.115841][ T8305]  gfs2_dirent_scan+0x545/0x690
[  626.115864][ T8305]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  626.115890][ T8305]  gfs2_dir_read+0x78e/0x1760
[  626.115923][ T8305]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  626.115954][ T8305]  ? __pfx_inode_dio_wait+0x10/0x10
[  626.115989][ T8305]  ? __pfx_gfs2_dir_read+0x10/0x10
[  626.116022][ T8305]  ? gfs2_glock_wait+0x212/0x2a0
[  626.116050][ T8305]  gfs2_readdir+0x16c/0x1e0
executing program
[  626.116078][ T8305]  ? __pfx_gfs2_readdir+0x10/0x10
[  626.116094][ T8305]  ? down_read_killable+0x14c/0x220
[  626.116122][ T8305]  ? iterate_dir+0x3a5/0x580
[  626.116141][ T8305]  ? apparmor_file_permission+0x1f4/0x300
[  626.116173][ T8305]  iterate_dir+0x3a5/0x580
[  626.116197][ T8305]  __se_sys_getdents64+0xf1/0x280
[  626.116220][ T8305]  ? __pfx___se_sys_getdents64+0x10/0x10
[  626.116239][ T8305]  ? __pfx_filldir64+0x10/0x10
[  626.116260][ T8305]  ? rcu_is_watching+0x15/0xb0
[  626.116292][ T8305]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  626.116314][ T8305]  do_syscall_64+0x15f/0xf80
[  626.116336][ T8305]  ? trace_irq_disable+0x3b/0x140
[  626.116365][ T8305]  ? clear_bhb_loop+0x40/0x90
[  626.116388][ T8305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  626.116407][ T8305] RIP: 0033:0x7f1f4ac8fb19
[  626.116426][ T8305] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  626.116442][ T8305] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  626.116463][ T8305] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  626.116477][ T8305] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  626.116489][ T8305] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  626.116504][ T8305] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  626.116517][ T8305] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  626.116548][ T8305]  </TASK>
[  626.117280][ T8305] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  626.117883][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  626.314042][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  626.849897][ T8310] loop0: detected capacity change from 0 to 32768
[  626.853744][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.858285][ T8310] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  626.861731][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.861884][ T8310] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  626.872007][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.872064][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.878982][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.891198][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.892884][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.893882][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.895171][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.895725][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.900073][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.900372][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.901096][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.901400][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.901924][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.902449][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.903515][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.904375][ T8310] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  626.904782][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.906585][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.907335][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.910376][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.911168][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.911341][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  626.911354][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  626.917418][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.918484][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.921224][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.923856][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.926077][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.926814][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.928523][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.932905][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.934642][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.936310][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.938036][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.941507][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.942839][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.946218][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.947898][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.951595][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.953852][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.954689][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.955744][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.957739][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.959479][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.964028][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.965909][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.966462][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.967856][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.968682][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.973584][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.973635][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.973828][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.975341][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.979160][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.993788][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  626.995003][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.008545][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.010051][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.012151][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.026807][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.027717][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.079456][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.090580][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 179ms
[  627.091984][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  627.092903][ T8310] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  627.111973][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.116280][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.116801][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.130017][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  627.169355][ T8310] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  627.169375][ T8310] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  627.169404][ T8310] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  627.169433][ T8310] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8310 [syz-executor125] iterate_dir+0x3a5/0x580
[  627.169467][ T8310] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  627.169496][ T8310] CPU: 0 UID: 0 PID: 8310 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  627.169518][ T8310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  627.169530][ T8310] Call Trace:
[  627.169539][ T8310]  <TASK>
[  627.169547][ T8310]  dump_stack_lvl+0xe8/0x150
[  627.169574][ T8310]  gfs2_withdraw+0xc3/0x1b0
[  627.169598][ T8310]  gfs2_dirent_scan+0x545/0x690
[  627.169621][ T8310]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  627.169654][ T8310]  gfs2_dir_read+0x78e/0x1760
[  627.169681][ T8310]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  627.169710][ T8310]  ? __pfx_inode_dio_wait+0x10/0x10
[  627.169746][ T8310]  ? __pfx_gfs2_dir_read+0x10/0x10
[  627.169780][ T8310]  ? gfs2_glock_wait+0x212/0x2a0
[  627.169804][ T8310]  gfs2_readdir+0x16c/0x1e0
[  627.169824][ T8310]  ? __pfx_gfs2_readdir+0x10/0x10
[  627.169840][ T8310]  ? down_read_killable+0x14c/0x220
[  627.169866][ T8310]  ? iterate_dir+0x3a5/0x580
[  627.169886][ T8310]  ? apparmor_file_permission+0x1f4/0x300
[  627.169918][ T8310]  iterate_dir+0x3a5/0x580
[  627.169942][ T8310]  __se_sys_getdents64+0xf1/0x280
[  627.169964][ T8310]  ? __pfx___se_sys_getdents64+0x10/0x10
[  627.169983][ T8310]  ? __pfx_filldir64+0x10/0x10
[  627.170004][ T8310]  ? rcu_is_watching+0x15/0xb0
[  627.170038][ T8310]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  627.170059][ T8310]  do_syscall_64+0x15f/0xf80
[  627.170081][ T8310]  ? trace_irq_disable+0x3b/0x140
[  627.170110][ T8310]  ? clear_bhb_loop+0x40/0x90
[  627.170134][ T8310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  627.170153][ T8310] RIP: 0033:0x7f1f4ac8fb19
[  627.170173][ T8310] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  627.170189][ T8310] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  627.170210][ T8310] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  627.170225][ T8310] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  627.170237][ T8310] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  627.170252][ T8310] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  627.170266][ T8310] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  627.170297][ T8310]  </TASK>
[  627.172389][ T8310] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  627.172459][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  627.875798][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
executing program
[  628.235985][ T8316] loop0: detected capacity change from 0 to 32768
[  628.247668][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.259720][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.260396][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.261262][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.261775][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.262336][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.262801][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.263617][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.264077][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.264790][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.265247][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.280884][ T8316] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  628.280904][ T8316] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  628.293085][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.299401][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.300374][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.301457][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.301778][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.302085][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.302505][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.302822][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.303217][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.303786][ T8316] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  628.304883][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.305969][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.306143][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  628.306156][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  628.329179][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.330579][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.334503][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.351956][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.355747][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.356677][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.375576][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.376543][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.402223][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.403778][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.404535][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.405239][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.405851][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.407348][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.408427][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.411313][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.412863][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.415729][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.417216][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.418284][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.420681][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.424404][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.425808][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 119ms
[  628.425948][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.426843][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.427909][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  628.431538][ T8316] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  628.432579][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.435536][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.438864][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.439667][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.441534][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.453142][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.455115][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.456895][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.494267][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.494319][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.497707][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.499719][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.501867][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.503971][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.504019][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.504077][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.509630][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.522383][ T8316] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  628.522405][ T8316] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  628.522433][ T8316] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
executing program
[  628.522462][ T8316] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8316 [syz-executor125] iterate_dir+0x3a5/0x580
[  628.522496][ T8316] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  628.522525][ T8316] CPU: 0 UID: 0 PID: 8316 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  628.522547][ T8316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  628.522558][ T8316] Call Trace:
[  628.522567][ T8316]  <TASK>
[  628.522575][ T8316]  dump_stack_lvl+0xe8/0x150
[  628.522603][ T8316]  gfs2_withdraw+0xc3/0x1b0
[  628.522626][ T8316]  gfs2_dirent_scan+0x545/0x690
[  628.522650][ T8316]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  628.522675][ T8316]  gfs2_dir_read+0x78e/0x1760
[  628.522701][ T8316]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  628.522734][ T8316]  ? __pfx_inode_dio_wait+0x10/0x10
[  628.522769][ T8316]  ? __pfx_gfs2_dir_read+0x10/0x10
[  628.522802][ T8316]  ? gfs2_glock_wait+0x212/0x2a0
[  628.522846][ T8316]  gfs2_readdir+0x16c/0x1e0
[  628.522868][ T8316]  ? __pfx_gfs2_readdir+0x10/0x10
[  628.522886][ T8316]  ? down_read_killable+0x14c/0x220
[  628.522913][ T8316]  ? iterate_dir+0x3a5/0x580
[  628.522932][ T8316]  ? apparmor_file_permission+0x1f4/0x300
[  628.522964][ T8316]  iterate_dir+0x3a5/0x580
[  628.522989][ T8316]  __se_sys_getdents64+0xf1/0x280
[  628.523012][ T8316]  ? __pfx___se_sys_getdents64+0x10/0x10
[  628.523031][ T8316]  ? __pfx_filldir64+0x10/0x10
[  628.523051][ T8316]  ? rcu_is_watching+0x15/0xb0
[  628.523084][ T8316]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.523106][ T8316]  do_syscall_64+0x15f/0xf80
[  628.523128][ T8316]  ? trace_irq_disable+0x3b/0x140
[  628.523156][ T8316]  ? clear_bhb_loop+0x40/0x90
[  628.523179][ T8316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.523198][ T8316] RIP: 0033:0x7f1f4ac8fb19
[  628.523217][ T8316] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  628.523234][ T8316] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  628.523254][ T8316] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  628.523268][ T8316] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  628.523281][ T8316] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  628.523295][ T8316] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  628.523309][ T8316] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  628.523341][ T8316]  </TASK>
[  628.524803][ T8316] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  628.525365][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  628.584986][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.592606][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.594783][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.618147][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.629950][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.630927][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  628.738424][ T7831] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  629.306010][ T8321] loop0: detected capacity change from 0 to 32768
[  629.321187][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.322549][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.323450][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.324416][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.325725][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.326577][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.327235][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.327547][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.328460][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.340998][ T8321] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  629.341019][ T8321] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  629.349009][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.354592][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.355414][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.356387][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.356861][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.357292][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.357618][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.357975][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.358337][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.358947][ T8321] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  629.359971][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.360938][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.361129][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  629.361142][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  629.382979][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.386248][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.403678][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.406495][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.407170][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.407198][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.422118][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.424544][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.456382][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 95ms
[  629.456708][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  629.456752][ T8321] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  629.458073][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.460561][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.461046][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.468571][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.500147][ T8321] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  629.500171][ T8321] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  629.500202][ T8321] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  629.500231][ T8321] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8321 [syz-executor125] iterate_dir+0x3a5/0x580
[  629.500274][ T8321] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  629.500304][ T8321] CPU: 0 UID: 0 PID: 8321 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  629.500324][ T8321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  629.500336][ T8321] Call Trace:
[  629.500345][ T8321]  <TASK>
[  629.500353][ T8321]  dump_stack_lvl+0xe8/0x150
[  629.500381][ T8321]  gfs2_withdraw+0xc3/0x1b0
[  629.500404][ T8321]  gfs2_dirent_scan+0x545/0x690
[  629.500431][ T8321]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  629.500457][ T8321]  gfs2_dir_read+0x78e/0x1760
[  629.500483][ T8321]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  629.500514][ T8321]  ? __pfx_inode_dio_wait+0x10/0x10
executing program
[  629.500548][ T8321]  ? __pfx_gfs2_dir_read+0x10/0x10
[  629.500582][ T8321]  ? gfs2_glock_wait+0x212/0x2a0
[  629.500607][ T8321]  gfs2_readdir+0x16c/0x1e0
[  629.500629][ T8321]  ? __pfx_gfs2_readdir+0x10/0x10
[  629.500646][ T8321]  ? down_read_killable+0x14c/0x220
[  629.500673][ T8321]  ? iterate_dir+0x3a5/0x580
[  629.500693][ T8321]  ? apparmor_file_permission+0x1f4/0x300
[  629.500725][ T8321]  iterate_dir+0x3a5/0x580
[  629.500748][ T8321]  __se_sys_getdents64+0xf1/0x280
[  629.500772][ T8321]  ? __pfx___se_sys_getdents64+0x10/0x10
[  629.500791][ T8321]  ? __pfx_filldir64+0x10/0x10
[  629.500812][ T8321]  ? rcu_is_watching+0x15/0xb0
[  629.500844][ T8321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.500865][ T8321]  do_syscall_64+0x15f/0xf80
[  629.500887][ T8321]  ? trace_irq_disable+0x3b/0x140
[  629.500913][ T8321]  ? clear_bhb_loop+0x40/0x90
[  629.500932][ T8321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.500950][ T8321] RIP: 0033:0x7f1f4ac8fb19
[  629.500968][ T8321] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  629.500983][ T8321] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  629.501003][ T8321] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  629.501017][ T8321] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  629.501029][ T8321] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  629.501044][ T8321] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  629.501058][ T8321] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  629.501089][ T8321]  </TASK>
[  629.501501][ T8321] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  629.501668][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  629.512972][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.541737][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.544179][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.546426][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.547274][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.548597][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.552150][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.555153][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.560097][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.560849][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.561763][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.562792][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.604320][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.606344][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.607061][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.609225][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.616750][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.625738][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.626445][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.627231][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.632647][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.633589][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.634715][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.636409][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.638131][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.640828][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.644130][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.644188][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.644218][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.644262][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.646308][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  629.714491][ T7831] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  630.366691][ T8325] loop0: detected capacity change from 0 to 32768
[  630.372222][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.374670][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.375363][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.376077][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.376886][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.377574][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.378319][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.381358][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.382146][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.384086][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.384793][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.385496][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.386171][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.386857][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.387516][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.388188][   T44] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.389515][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.391836][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.394470][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.395212][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.397985][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.399783][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.400578][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.401327][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.402068][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.402828][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.403547][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.404305][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.405822][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.406500][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.407303][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.408170][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.408471][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.413606][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.413683][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.416407][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.510394][ T8325] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  630.510413][ T8325] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  630.690293][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.700134][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.701074][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.702234][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.702512][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.702885][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.703272][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.703626][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.704278][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.704812][ T8325] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  630.706001][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.707080][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.707265][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  630.707276][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  630.720045][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.720870][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.733421][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.734096][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.745371][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.746951][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.760194][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.761091][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.770317][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.806739][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 99ms
[  630.806965][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  630.807481][ T8325] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  630.819053][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.823128][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.823711][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.834098][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  630.845798][ T8325] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  630.845819][ T8325] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  630.845847][ T8325] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  630.845876][ T8325] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8325 [syz-executor125] iterate_dir+0x3a5/0x580
[  630.845910][ T8325] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  630.845938][ T8325] CPU: 0 UID: 0 PID: 8325 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  630.845960][ T8325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  630.845972][ T8325] Call Trace:
[  630.845980][ T8325]  <TASK>
[  630.845988][ T8325]  dump_stack_lvl+0xe8/0x150
[  630.846017][ T8325]  gfs2_withdraw+0xc3/0x1b0
[  630.846052][ T8325]  gfs2_dirent_scan+0x545/0x690
[  630.846076][ T8325]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  630.846101][ T8325]  gfs2_dir_read+0x78e/0x1760
[  630.846127][ T8325]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  630.846159][ T8325]  ? __pfx_inode_dio_wait+0x10/0x10
[  630.846193][ T8325]  ? __pfx_gfs2_dir_read+0x10/0x10
[  630.846227][ T8325]  ? gfs2_glock_wait+0x212/0x2a0
[  630.846253][ T8325]  gfs2_readdir+0x16c/0x1e0
[  630.846274][ T8325]  ? __pfx_gfs2_readdir+0x10/0x10
[  630.846291][ T8325]  ? down_read_killable+0x14c/0x220
[  630.846319][ T8325]  ? iterate_dir+0x3a5/0x580
[  630.846338][ T8325]  ? apparmor_file_permission+0x1f4/0x300
[  630.846373][ T8325]  iterate_dir+0x3a5/0x580
[  630.846396][ T8325]  __se_sys_getdents64+0xf1/0x280
[  630.846419][ T8325]  ? __pfx___se_sys_getdents64+0x10/0x10
[  630.846439][ T8325]  ? __pfx_filldir64+0x10/0x10
[  630.846460][ T8325]  ? rcu_is_watching+0x15/0xb0
[  630.846492][ T8325]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  630.846513][ T8325]  do_syscall_64+0x15f/0xf80
[  630.846535][ T8325]  ? trace_irq_disable+0x3b/0x140
[  630.846563][ T8325]  ? clear_bhb_loop+0x40/0x90
[  630.846586][ T8325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  630.846614][ T8325] RIP: 0033:0x7f1f4ac8fb19
[  630.846632][ T8325] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  630.846648][ T8325] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  630.846669][ T8325] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  630.846683][ T8325] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  630.846694][ T8325] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  630.846709][ T8325] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  630.846723][ T8325] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  630.846754][ T8325]  </TASK>
[  630.846856][ T8325] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  630.846987][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[  631.047451][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  631.482117][ T8329] loop0: detected capacity change from 0 to 32768
[  631.485370][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.492275][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.494452][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.495165][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.495830][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.497419][ T8329] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  631.497434][ T8329] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  631.507135][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.509355][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.509403][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.510609][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.524251][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.524306][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.526143][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.529848][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.529897][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.531767][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.531951][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.532325][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.533220][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.533687][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.533722][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.534110][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.534630][ T8329] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  631.535906][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.536965][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.540879][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.541604][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.541792][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.542477][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  631.542491][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  631.543685][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.544475][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.554397][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.555220][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.557392][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.558075][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.558713][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.559559][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.565318][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.567371][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.571323][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.573593][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.574292][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.575411][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.577204][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.577249][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.577749][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.581633][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.583876][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.585365][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.587603][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.588243][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.592643][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.592690][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.592719][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.595548][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.598713][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.599702][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.601339][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.621700][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.624098][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.642068][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.645163][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.645635][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.659389][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.691437][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.695690][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.700555][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.731051][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 188ms
[  631.731277][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  631.732842][ T8329] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  631.737323][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.745090][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.746183][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.760887][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  631.787939][ T8329] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  631.787959][ T8329] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  631.787986][ T8329] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  631.788016][ T8329] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8329 [syz-executor125] iterate_dir+0x3a5/0x580
[  631.788049][ T8329] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
executing program
[  631.788077][ T8329] CPU: 0 UID: 0 PID: 8329 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  631.788098][ T8329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  631.788110][ T8329] Call Trace:
[  631.788118][ T8329]  <TASK>
[  631.788126][ T8329]  dump_stack_lvl+0xe8/0x150
[  631.788153][ T8329]  gfs2_withdraw+0xc3/0x1b0
[  631.788176][ T8329]  gfs2_dirent_scan+0x545/0x690
[  631.788201][ T8329]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  631.788226][ T8329]  gfs2_dir_read+0x78e/0x1760
[  631.788252][ T8329]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  631.788282][ T8329]  ? __pfx_inode_dio_wait+0x10/0x10
[  631.788318][ T8329]  ? __pfx_gfs2_dir_read+0x10/0x10
[  631.788352][ T8329]  ? gfs2_glock_wait+0x212/0x2a0
[  631.788380][ T8329]  gfs2_readdir+0x16c/0x1e0
[  631.788403][ T8329]  ? __pfx_gfs2_readdir+0x10/0x10
[  631.788420][ T8329]  ? down_read_killable+0x14c/0x220
[  631.788447][ T8329]  ? iterate_dir+0x3a5/0x580
[  631.788466][ T8329]  ? apparmor_file_permission+0x1f4/0x300
[  631.788499][ T8329]  iterate_dir+0x3a5/0x580
[  631.788524][ T8329]  __se_sys_getdents64+0xf1/0x280
[  631.788547][ T8329]  ? __pfx___se_sys_getdents64+0x10/0x10
[  631.788566][ T8329]  ? __pfx_filldir64+0x10/0x10
[  631.788587][ T8329]  ? rcu_is_watching+0x15/0xb0
[  631.788620][ T8329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  631.788641][ T8329]  do_syscall_64+0x15f/0xf80
[  631.788663][ T8329]  ? trace_irq_disable+0x3b/0x140
[  631.788698][ T8329]  ? clear_bhb_loop+0x40/0x90
[  631.788721][ T8329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  631.788738][ T8329] RIP: 0033:0x7f1f4ac8fb19
[  631.788756][ T8329] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  631.788770][ T8329] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  631.788789][ T8329] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  631.788803][ T8329] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  631.788815][ T8329] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  631.788829][ T8329] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  631.788842][ T8329] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  631.788874][ T8329]  </TASK>
[  631.797731][ T8329] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  631.799113][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  631.931449][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  632.509860][ T8333] loop0: detected capacity change from 0 to 32768
[  632.513324][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.524039][ T8333] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  632.524052][ T8333] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  632.549999][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.551022][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.551728][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.552460][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.553010][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.554427][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.555560][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.556299][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.557333][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.557985][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.559906][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.561015][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.561662][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.562646][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.563594][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.565984][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.567541][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.570082][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.570913][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.573307][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.574223][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.574982][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.575661][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.577845][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.578642][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.579996][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.580924][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.582568][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.583288][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.584071][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.585093][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.585401][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.585984][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.586956][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.588564][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.618374][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.742961][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.743936][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.745035][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.745365][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.746103][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.747039][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.747695][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.748602][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.749686][ T8333] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  632.750838][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.752129][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.752380][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  632.752395][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  632.776259][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.778365][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.799261][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.801844][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.803639][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.819798][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.822361][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.854132][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 101ms
[  632.854426][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  632.854519][ T8333] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  632.855875][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.858577][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.859612][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.873636][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  632.884909][ T8333] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  632.884929][ T8333] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  632.884958][ T8333] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  632.884987][ T8333] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8333 [syz-executor125] iterate_dir+0x3a5/0x580
[  632.885033][ T8333] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  632.885062][ T8333] CPU: 0 UID: 0 PID: 8333 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  632.885092][ T8333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  632.885104][ T8333] Call Trace:
[  632.885115][ T8333]  <TASK>
[  632.885123][ T8333]  dump_stack_lvl+0xe8/0x150
[  632.885151][ T8333]  gfs2_withdraw+0xc3/0x1b0
[  632.885175][ T8333]  gfs2_dirent_scan+0x545/0x690
[  632.885200][ T8333]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  632.885225][ T8333]  gfs2_dir_read+0x78e/0x1760
[  632.885251][ T8333]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  632.885282][ T8333]  ? __pfx_inode_dio_wait+0x10/0x10
executing program
[  632.885317][ T8333]  ? __pfx_gfs2_dir_read+0x10/0x10
[  632.885350][ T8333]  ? gfs2_glock_wait+0x212/0x2a0
[  632.885375][ T8333]  gfs2_readdir+0x16c/0x1e0
[  632.885397][ T8333]  ? __pfx_gfs2_readdir+0x10/0x10
[  632.885414][ T8333]  ? down_read_killable+0x14c/0x220
[  632.885441][ T8333]  ? iterate_dir+0x3a5/0x580
[  632.885460][ T8333]  ? apparmor_file_permission+0x1f4/0x300
[  632.885492][ T8333]  iterate_dir+0x3a5/0x580
[  632.885516][ T8333]  __se_sys_getdents64+0xf1/0x280
[  632.885539][ T8333]  ? __pfx___se_sys_getdents64+0x10/0x10
[  632.885558][ T8333]  ? __pfx_filldir64+0x10/0x10
[  632.885578][ T8333]  ? rcu_is_watching+0x15/0xb0
[  632.885608][ T8333]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  632.885628][ T8333]  do_syscall_64+0x15f/0xf80
[  632.885648][ T8333]  ? trace_irq_disable+0x3b/0x140
[  632.885675][ T8333]  ? clear_bhb_loop+0x40/0x90
[  632.885699][ T8333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  632.885718][ T8333] RIP: 0033:0x7f1f4ac8fb19
[  632.885736][ T8333] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  632.885753][ T8333] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  632.885773][ T8333] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  632.885786][ T8333] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  632.885799][ T8333] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  632.885813][ T8333] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  632.885827][ T8333] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  632.885858][ T8333]  </TASK>
[  632.885996][ T8333] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  632.886058][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  633.095419][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.096326][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.097152][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.097830][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.098591][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.118296][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.119956][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.120743][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.121853][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.122684][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.123328][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.124086][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.124707][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.125415][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.126252][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.127118][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.127782][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.134899][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.135937][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.147419][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.148252][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.149676][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.150495][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.151254][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.151872][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.152847][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.153713][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.157007][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.157792][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.161927][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.164045][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.164090][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.164120][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.167093][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.177989][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.297433][ T7831] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  633.758613][ T8337] loop0: detected capacity change from 0 to 32768
[  633.764905][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.776549][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.777565][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.778671][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.801937][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.803107][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.803775][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.804946][ T8337] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  633.804970][ T8337] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  633.812180][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.818489][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.819694][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.821012][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.821811][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.822968][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.823005][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.823891][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.824011][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.824260][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.824512][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.824755][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.825655][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.825693][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.826265][ T8337] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  633.827115][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.832581][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.832718][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.833781][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.833937][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  633.833950][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  633.836100][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.836934][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.840531][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.842919][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.844753][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.846510][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.847687][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.848839][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.851529][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.852252][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.855003][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.856130][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.858058][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.859904][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.862470][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.863228][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.865104][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.866186][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.870857][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.874005][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.875576][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.879059][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.880200][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.880242][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.884077][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.887368][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.897866][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.901096][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.906157][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.930568][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.933425][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.954550][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.956360][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.956511][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.977788][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  633.980457][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.001790][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.006851][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.039509][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 205ms
[  634.040568][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  634.040658][ T8337] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  634.044570][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.052775][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.055790][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.074476][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.097901][ T8337] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  634.097923][ T8337] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  634.097953][ T8337] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  634.097982][ T8337] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8337 [syz-executor125] iterate_dir+0x3a5/0x580
[  634.098017][ T8337] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  634.098046][ T8337] CPU: 0 UID: 0 PID: 8337 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  634.098068][ T8337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  634.098081][ T8337] Call Trace:
[  634.098089][ T8337]  <TASK>
[  634.098097][ T8337]  dump_stack_lvl+0xe8/0x150
[  634.098124][ T8337]  gfs2_withdraw+0xc3/0x1b0
[  634.098148][ T8337]  gfs2_dirent_scan+0x545/0x690
[  634.098172][ T8337]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  634.098197][ T8337]  gfs2_dir_read+0x78e/0x1760
[  634.098224][ T8337]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
executing program
[  634.098254][ T8337]  ? __pfx_inode_dio_wait+0x10/0x10
[  634.098288][ T8337]  ? __pfx_gfs2_dir_read+0x10/0x10
[  634.098322][ T8337]  ? gfs2_glock_wait+0x212/0x2a0
[  634.098347][ T8337]  gfs2_readdir+0x16c/0x1e0
[  634.098373][ T8337]  ? __pfx_gfs2_readdir+0x10/0x10
[  634.098389][ T8337]  ? down_read_killable+0x14c/0x220
[  634.098417][ T8337]  ? iterate_dir+0x3a5/0x580
[  634.098437][ T8337]  ? apparmor_file_permission+0x1f4/0x300
[  634.098469][ T8337]  iterate_dir+0x3a5/0x580
[  634.098493][ T8337]  __se_sys_getdents64+0xf1/0x280
[  634.098516][ T8337]  ? __pfx___se_sys_getdents64+0x10/0x10
[  634.098535][ T8337]  ? __pfx_filldir64+0x10/0x10
[  634.098554][ T8337]  ? rcu_is_watching+0x15/0xb0
[  634.098587][ T8337]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.098608][ T8337]  do_syscall_64+0x15f/0xf80
[  634.098630][ T8337]  ? trace_irq_disable+0x3b/0x140
[  634.098659][ T8337]  ? clear_bhb_loop+0x40/0x90
[  634.098682][ T8337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.098704][ T8337] RIP: 0033:0x7f1f4ac8fb19
[  634.098722][ T8337] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  634.098736][ T8337] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  634.098754][ T8337] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  634.098768][ T8337] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  634.098872][ T8337] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  634.098886][ T8337] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  634.098900][ T8337] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  634.098931][ T8337]  </TASK>
[  634.103431][ T8337] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  634.103498][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  634.266332][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  634.912355][ T8341] loop0: detected capacity change from 0 to 32768
[  634.914680][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.925906][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.926280][ T8341] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  634.926296][ T8341] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  634.957431][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.957486][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.961494][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.971358][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.972031][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.978551][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.981794][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.982494][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.982532][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.983864][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.983903][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.985818][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.985856][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.986199][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.986457][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.987297][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.987335][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.987665][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.990802][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.990846][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.991413][ T8341] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  634.993381][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.994257][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.996647][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.996689][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  634.998903][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.001920][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.001975][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.003570][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.006206][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.006858][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.009714][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.011804][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.018160][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.018795][ T5737] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  635.018810][ T5737] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  635.046326][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.054286][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.128661][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.180764][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.180794][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.264674][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.265036][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.265391][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.265518][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.265533][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.265549][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.265940][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.335697][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.337398][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.337991][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.338460][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.356275][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.362906][ T5737] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 344ms
[  635.363884][ T5737] gfs2: fsid=syz:syz.0: jid=0: Done
[  635.363931][ T8341] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  635.368916][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.368960][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.377868][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.377899][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.383145][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.383192][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.403323][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.403373][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.403402][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.403445][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.418932][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.419039][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.422976][ T8341] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  635.422997][ T8341] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  635.423025][ T8341] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  635.423055][ T8341] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8341 [syz-executor125] iterate_dir+0x3a5/0x580
[  635.423089][ T8341] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  635.423118][ T8341] CPU: 0 UID: 0 PID: 8341 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  635.423140][ T8341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  635.423152][ T8341] Call Trace:
[  635.423161][ T8341]  <TASK>
[  635.423169][ T8341]  dump_stack_lvl+0xe8/0x150
[  635.423197][ T8341]  gfs2_withdraw+0xc3/0x1b0
[  635.423219][ T8341]  gfs2_dirent_scan+0x545/0x690
[  635.423243][ T8341]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  635.423268][ T8341]  gfs2_dir_read+0x78e/0x1760
[  635.423294][ T8341]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  635.423324][ T8341]  ? __pfx_inode_dio_wait+0x10/0x10
[  635.423362][ T8341]  ? __pfx_gfs2_dir_read+0x10/0x10
[  635.423396][ T8341]  ? gfs2_glock_wait+0x212/0x2a0
[  635.423420][ T8341]  gfs2_readdir+0x16c/0x1e0
[  635.423442][ T8341]  ? __pfx_gfs2_readdir+0x10/0x10
[  635.423459][ T8341]  ? down_read_killable+0x14c/0x220
[  635.423487][ T8341]  ? iterate_dir+0x3a5/0x580
[  635.423506][ T8341]  ? apparmor_file_permission+0x1f4/0x300
[  635.423538][ T8341]  iterate_dir+0x3a5/0x580
[  635.423562][ T8341]  __se_sys_getdents64+0xf1/0x280
[  635.423585][ T8341]  ? __pfx___se_sys_getdents64+0x10/0x10
[  635.423604][ T8341]  ? __pfx_filldir64+0x10/0x10
[  635.423625][ T8341]  ? rcu_is_watching+0x15/0xb0
executing program
[  635.423657][ T8341]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.423679][ T8341]  do_syscall_64+0x15f/0xf80
[  635.423701][ T8341]  ? trace_irq_disable+0x3b/0x140
[  635.423728][ T8341]  ? clear_bhb_loop+0x40/0x90
[  635.423752][ T8341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.423779][ T8341] RIP: 0033:0x7f1f4ac8fb19
[  635.423797][ T8341] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  635.423813][ T8341] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  635.423833][ T8341] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  635.423847][ T8341] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  635.423860][ T8341] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  635.423874][ T8341] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  635.423888][ T8341] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  635.423919][ T8341]  </TASK>
[  635.424016][ T8341] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  635.424076][ T5737] gfs2: fsid=syz:syz.0: file system withdrawn
[  635.575081][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  635.693776][ T7831] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  636.062165][ T8345] loop0: detected capacity change from 0 to 32768
[  636.064863][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.067521][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.068022][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.081246][ T8345] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  636.081265][ T8345] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  636.116521][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.116581][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.118426][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.119714][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.120361][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.121513][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.122219][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.123363][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.123983][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.124582][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.125194][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.125789][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.126483][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.127394][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.128105][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.129906][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.130564][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.131654][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.132351][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.133527][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.134952][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.135636][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.136311][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.136996][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.137627][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.138320][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.139568][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.141688][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.144831][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.145534][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.146195][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.147052][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.147364][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.148850][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.148912][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.151692][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.217371][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.266897][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.400429][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.400844][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.401281][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.401907][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.402491][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.403197][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.404049][ T8345] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  636.405502][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.406992][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.407167][ T5737] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  636.407180][ T5737] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  636.420450][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.422392][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.432712][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.434485][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.446286][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.446932][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.458986][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.460595][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.460963][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.467222][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.468559][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.494792][ T5737] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 87ms
[  636.497957][ T5737] gfs2: fsid=syz:syz.0: jid=0: Done
[  636.498453][ T8345] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  636.503116][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.506583][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.508239][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.525108][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  636.535800][ T8345] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  636.535821][ T8345] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  636.535851][ T8345] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  636.535880][ T8345] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8345 [syz-executor125] iterate_dir+0x3a5/0x580
[  636.536008][ T8345] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  636.536038][ T8345] CPU: 0 UID: 0 PID: 8345 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  636.536061][ T8345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  636.536073][ T8345] Call Trace:
[  636.536081][ T8345]  <TASK>
[  636.536089][ T8345]  dump_stack_lvl+0xe8/0x150
[  636.536117][ T8345]  gfs2_withdraw+0xc3/0x1b0
[  636.536140][ T8345]  gfs2_dirent_scan+0x545/0x690
[  636.536164][ T8345]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  636.536189][ T8345]  gfs2_dir_read+0x78e/0x1760
[  636.536215][ T8345]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  636.536246][ T8345]  ? __pfx_inode_dio_wait+0x10/0x10
[  636.536280][ T8345]  ? __pfx_gfs2_dir_read+0x10/0x10
[  636.536313][ T8345]  ? gfs2_glock_wait+0x212/0x2a0
[  636.536339][ T8345]  gfs2_readdir+0x16c/0x1e0
[  636.536361][ T8345]  ? __pfx_gfs2_readdir+0x10/0x10
[  636.536379][ T8345]  ? down_read_killable+0x14c/0x220
[  636.536405][ T8345]  ? iterate_dir+0x3a5/0x580
[  636.536425][ T8345]  ? apparmor_file_permission+0x1f4/0x300
[  636.536459][ T8345]  iterate_dir+0x3a5/0x580
[  636.536483][ T8345]  __se_sys_getdents64+0xf1/0x280
[  636.536512][ T8345]  ? __pfx___se_sys_getdents64+0x10/0x10
[  636.536531][ T8345]  ? __pfx_filldir64+0x10/0x10
[  636.536551][ T8345]  ? rcu_is_watching+0x15/0xb0
[  636.536580][ T8345]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  636.536601][ T8345]  do_syscall_64+0x15f/0xf80
[  636.536622][ T8345]  ? trace_irq_disable+0x3b/0x140
[  636.536650][ T8345]  ? clear_bhb_loop+0x40/0x90
[  636.536674][ T8345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  636.536693][ T8345] RIP: 0033:0x7f1f4ac8fb19
executing program
[  636.536712][ T8345] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  636.536728][ T8345] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  636.536748][ T8345] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  636.536763][ T8345] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  636.536776][ T8345] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  636.536790][ T8345] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  636.536804][ T8345] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  636.536835][ T8345]  </TASK>
[  636.536843][ T8345] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  636.536908][ T5737] gfs2: fsid=syz:syz.0: file system withdrawn
[  636.708627][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  637.172004][ T8349] loop0: detected capacity change from 0 to 32768
[  637.176878][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.182039][ T8349] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  637.182064][ T8349] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  637.190265][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.196249][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.196389][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.197172][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.205210][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.205485][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.205701][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.206499][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.206765][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.206800][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.207229][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.207761][ T8349] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  637.210069][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.212419][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.212593][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.213335][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.214006][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.214725][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.215899][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  637.215915][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  637.217358][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.218030][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.221262][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.221902][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.223962][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.224582][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.225166][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.225837][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.226597][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.227239][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.227938][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.234736][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.235561][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.241396][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.242201][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.244341][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.245149][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.247206][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.247860][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.251242][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.254575][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.257449][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.258261][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.261201][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.262787][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.262828][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.262855][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.264938][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.270393][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.272554][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.279440][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.311017][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.314931][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.317525][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.346858][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.350374][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.383374][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 167ms
[  637.383579][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  637.383672][ T8349] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  637.385019][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.386769][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
executing program
[  637.387247][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.394607][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  637.405190][ T8349] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  637.405210][ T8349] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  637.405239][ T8349] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  637.405268][ T8349] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8349 [syz-executor125] iterate_dir+0x3a5/0x580
[  637.405302][ T8349] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  637.405330][ T8349] CPU: 0 UID: 0 PID: 8349 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  637.405353][ T8349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  637.405366][ T8349] Call Trace:
[  637.405374][ T8349]  <TASK>
[  637.405383][ T8349]  dump_stack_lvl+0xe8/0x150
[  637.405409][ T8349]  gfs2_withdraw+0xc3/0x1b0
[  637.405433][ T8349]  gfs2_dirent_scan+0x545/0x690
[  637.405457][ T8349]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  637.405482][ T8349]  gfs2_dir_read+0x78e/0x1760
[  637.405508][ T8349]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  637.405538][ T8349]  ? __pfx_inode_dio_wait+0x10/0x10
[  637.405575][ T8349]  ? __pfx_gfs2_dir_read+0x10/0x10
[  637.405609][ T8349]  ? gfs2_glock_wait+0x212/0x2a0
[  637.405633][ T8349]  gfs2_readdir+0x16c/0x1e0
[  637.405655][ T8349]  ? __pfx_gfs2_readdir+0x10/0x10
[  637.405672][ T8349]  ? down_read_killable+0x14c/0x220
[  637.405702][ T8349]  ? iterate_dir+0x3a5/0x580
[  637.405721][ T8349]  ? apparmor_file_permission+0x1f4/0x300
[  637.405754][ T8349]  iterate_dir+0x3a5/0x580
[  637.405778][ T8349]  __se_sys_getdents64+0xf1/0x280
[  637.405801][ T8349]  ? __pfx___se_sys_getdents64+0x10/0x10
[  637.405820][ T8349]  ? __pfx_filldir64+0x10/0x10
[  637.405840][ T8349]  ? rcu_is_watching+0x15/0xb0
[  637.405872][ T8349]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.405893][ T8349]  do_syscall_64+0x15f/0xf80
[  637.405915][ T8349]  ? trace_irq_disable+0x3b/0x140
[  637.405943][ T8349]  ? clear_bhb_loop+0x40/0x90
[  637.405967][ T8349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.405994][ T8349] RIP: 0033:0x7f1f4ac8fb19
[  637.406012][ T8349] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  637.406028][ T8349] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  637.406048][ T8349] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  637.406063][ T8349] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  637.406076][ T8349] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  637.406090][ T8349] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  637.406104][ T8349] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  637.406135][ T8349]  </TASK>
[  637.406235][ T8349] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  637.406360][    T9] gfs2: fsid=syz:syz.0: file system withdrawn
[  637.754294][ T7827] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  638.184526][ T8353] loop0: detected capacity change from 0 to 32768
[  638.196952][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.197004][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.197856][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.211519][ T8353] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  638.211536][ T8353] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  638.229048][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.229104][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.234818][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.244936][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.246614][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.253323][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.268868][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.270560][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.271806][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.272555][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.274158][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.274981][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.275782][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.276574][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.277361][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.278143][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.281156][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.281981][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.282836][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.283502][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.284206][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.285347][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.286897][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.287582][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.288280][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.289180][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.291187][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.292905][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.294542][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.295397][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.297724][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.299233][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.300049][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.301006][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.301308][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.302723][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.302777][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.304097][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.328778][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.340984][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.341407][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.341736][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.342494][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.343640][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.345368][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.347094][ T8353] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 1ms
[  638.355589][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.360222][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.363623][ T5737] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  638.363641][ T5737] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  638.369744][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.401102][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.401917][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.426241][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.427491][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.463149][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.466110][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.468600][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.498129][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.498686][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.508030][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.542765][ T5737] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 179ms
[  638.543080][ T5737] gfs2: fsid=syz:syz.0: jid=0: Done
[  638.543339][ T8353] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  638.547209][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.552095][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.552576][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.571569][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  638.582092][ T8353] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  638.582114][ T8353] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  638.582144][ T8353] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  638.582173][ T8353] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8353 [syz-executor125] iterate_dir+0x3a5/0x580
[  638.582303][ T8353] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  638.582333][ T8353] CPU: 0 UID: 0 PID: 8353 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  638.582363][ T8353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  638.582376][ T8353] Call Trace:
[  638.582383][ T8353]  <TASK>
[  638.582392][ T8353]  dump_stack_lvl+0xe8/0x150
[  638.582419][ T8353]  gfs2_withdraw+0xc3/0x1b0
[  638.582443][ T8353]  gfs2_dirent_scan+0x545/0x690
[  638.582467][ T8353]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  638.582492][ T8353]  gfs2_dir_read+0x78e/0x1760
[  638.582518][ T8353]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  638.582549][ T8353]  ? __pfx_inode_dio_wait+0x10/0x10
[  638.582583][ T8353]  ? __pfx_gfs2_dir_read+0x10/0x10
[  638.582617][ T8353]  ? gfs2_glock_wait+0x212/0x2a0
[  638.582642][ T8353]  gfs2_readdir+0x16c/0x1e0
[  638.582664][ T8353]  ? __pfx_gfs2_readdir+0x10/0x10
[  638.582681][ T8353]  ? down_read_killable+0x14c/0x220
[  638.582706][ T8353]  ? iterate_dir+0x3a5/0x580
[  638.582725][ T8353]  ? apparmor_file_permission+0x1f4/0x300
[  638.582758][ T8353]  iterate_dir+0x3a5/0x580
[  638.582781][ T8353]  __se_sys_getdents64+0xf1/0x280
[  638.582804][ T8353]  ? __pfx___se_sys_getdents64+0x10/0x10
executing program
[  638.582823][ T8353]  ? __pfx_filldir64+0x10/0x10
[  638.582844][ T8353]  ? rcu_is_watching+0x15/0xb0
[  638.582876][ T8353]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  638.582897][ T8353]  do_syscall_64+0x15f/0xf80
[  638.582919][ T8353]  ? trace_irq_disable+0x3b/0x140
[  638.582948][ T8353]  ? clear_bhb_loop+0x40/0x90
[  638.582972][ T8353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  638.582990][ T8353] RIP: 0033:0x7f1f4ac8fb19
[  638.583009][ T8353] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  638.583025][ T8353] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  638.583046][ T8353] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  638.583061][ T8353] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  638.583073][ T8353] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  638.583087][ T8353] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  638.583100][ T8353] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  638.583131][ T8353]  </TASK>
[  638.583139][ T8353] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  638.583288][ T5737] gfs2: fsid=syz:syz.0: file system withdrawn
[  638.768927][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  639.250582][ T8357] loop0: detected capacity change from 0 to 32768
[  639.253791][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.263700][ T8357] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  639.263720][ T8357] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  639.265721][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.298546][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.298602][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.300661][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.301536][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.302705][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.303612][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.305014][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.305810][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.307023][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.316335][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.318261][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.318307][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.321174][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.321741][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.323102][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.323845][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.325528][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.325568][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.325949][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.326672][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.327261][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.327298][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.329031][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.329076][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.330113][ T8357] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  639.331744][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.334136][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.334450][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.336360][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.336569][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.336724][ T5737] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  639.336737][ T5737] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  639.338534][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.342432][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.344275][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.345813][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.349576][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.351165][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.352452][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.354278][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.355654][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.357271][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.358358][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.362095][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.366193][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.367257][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.368419][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.373734][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.374816][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.374865][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.375765][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.379292][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.382401][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.382745][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.406322][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.409603][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.432115][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.433783][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.440550][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.442104][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.456810][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.490209][ T5737] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 153ms
[  639.498311][ T5737] gfs2: fsid=syz:syz.0: jid=0: Done
[  639.498400][ T8357] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  639.501277][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.502910][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.503467][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.527392][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  639.537845][ T8357] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  639.537866][ T8357] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  639.537894][ T8357] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
executing program
[  639.537922][ T8357] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8357 [syz-executor125] iterate_dir+0x3a5/0x580
[  639.537955][ T8357] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  639.537985][ T8357] CPU: 0 UID: 0 PID: 8357 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  639.538007][ T8357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  639.538019][ T8357] Call Trace:
[  639.538026][ T8357]  <TASK>
[  639.538034][ T8357]  dump_stack_lvl+0xe8/0x150
[  639.538062][ T8357]  gfs2_withdraw+0xc3/0x1b0
[  639.538085][ T8357]  gfs2_dirent_scan+0x545/0x690
[  639.538111][ T8357]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  639.538136][ T8357]  gfs2_dir_read+0x78e/0x1760
[  639.538162][ T8357]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  639.538193][ T8357]  ? __pfx_inode_dio_wait+0x10/0x10
[  639.538226][ T8357]  ? __pfx_gfs2_dir_read+0x10/0x10
[  639.538260][ T8357]  ? gfs2_glock_wait+0x212/0x2a0
[  639.538285][ T8357]  gfs2_readdir+0x16c/0x1e0
[  639.538307][ T8357]  ? __pfx_gfs2_readdir+0x10/0x10
[  639.538324][ T8357]  ? down_read_killable+0x14c/0x220
[  639.538350][ T8357]  ? iterate_dir+0x3a5/0x580
[  639.538369][ T8357]  ? apparmor_file_permission+0x1f4/0x300
[  639.538402][ T8357]  iterate_dir+0x3a5/0x580
[  639.538426][ T8357]  __se_sys_getdents64+0xf1/0x280
[  639.538449][ T8357]  ? __pfx___se_sys_getdents64+0x10/0x10
[  639.538469][ T8357]  ? __pfx_filldir64+0x10/0x10
[  639.538489][ T8357]  ? rcu_is_watching+0x15/0xb0
[  639.538522][ T8357]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.538542][ T8357]  do_syscall_64+0x15f/0xf80
[  639.538564][ T8357]  ? trace_irq_disable+0x3b/0x140
[  639.538592][ T8357]  ? clear_bhb_loop+0x40/0x90
[  639.538616][ T8357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.538635][ T8357] RIP: 0033:0x7f1f4ac8fb19
[  639.538653][ T8357] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  639.538669][ T8357] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  639.538689][ T8357] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  639.538703][ T8357] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  639.538718][ T8357] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  639.538730][ T8357] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  639.538742][ T8357] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  639.538771][ T8357]  </TASK>
[  639.540674][ T8357] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  639.540744][ T5737] gfs2: fsid=syz:syz.0: file system withdrawn
[  639.716411][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  640.279980][ T8361] loop0: detected capacity change from 0 to 32768
[  640.283051][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.287394][ T8361] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  640.293080][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.320633][ T8361] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  640.320646][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.327639][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.330348][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.367334][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.367371][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.367940][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.384727][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.384765][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.389198][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.400325][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.400359][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.423528][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.423588][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.429560][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.430383][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.431462][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.432033][ T8361] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  640.433066][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.434376][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.434897][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.435973][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.437090][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.437269][ T5737] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  640.437282][ T5737] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  640.444436][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.445815][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.449299][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.450154][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.450766][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.452087][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.453171][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.456953][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.458440][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.461104][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.464363][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.466178][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.466657][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.469340][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.472338][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.473696][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.474871][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.476587][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.478024][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.480307][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.483600][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.485015][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.486878][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.488370][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.488411][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.490387][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.492080][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.493741][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.494277][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.498224][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.525089][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.528909][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.532975][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.559681][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.605536][ T5737] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 168ms
[  640.605826][ T5737] gfs2: fsid=syz:syz.0: jid=0: Done
[  640.605914][ T8361] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  640.607259][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.610397][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.611003][ T3365] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.633890][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.644026][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  640.665971][ T8361] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  640.665993][ T8361] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  640.666023][ T8361] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  640.666051][ T8361] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8361 [syz-executor125] iterate_dir+0x3a5/0x580
[  640.666084][ T8361] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  640.666113][ T8361] CPU: 0 UID: 0 PID: 8361 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  640.666135][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  640.666147][ T8361] Call Trace:
[  640.666155][ T8361]  <TASK>
[  640.666163][ T8361]  dump_stack_lvl+0xe8/0x150
[  640.666191][ T8361]  gfs2_withdraw+0xc3/0x1b0
[  640.666246][ T8361]  gfs2_dirent_scan+0x545/0x690
[  640.666279][ T8361]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  640.666304][ T8361]  gfs2_dir_read+0x78e/0x1760
[  640.666330][ T8361]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  640.666361][ T8361]  ? __pfx_inode_dio_wait+0x10/0x10
[  640.666396][ T8361]  ? __pfx_gfs2_dir_read+0x10/0x10
[  640.666430][ T8361]  ? gfs2_glock_wait+0x212/0x2a0
[  640.666455][ T8361]  gfs2_readdir+0x16c/0x1e0
[  640.666477][ T8361]  ? __pfx_gfs2_readdir+0x10/0x10
[  640.666494][ T8361]  ? down_read_killable+0x14c/0x220
[  640.666521][ T8361]  ? iterate_dir+0x3a5/0x580
[  640.666540][ T8361]  ? apparmor_file_permission+0x1f4/0x300
[  640.666572][ T8361]  iterate_dir+0x3a5/0x580
[  640.666597][ T8361]  __se_sys_getdents64+0xf1/0x280
[  640.666620][ T8361]  ? __pfx___se_sys_getdents64+0x10/0x10
[  640.666638][ T8361]  ? __pfx_filldir64+0x10/0x10
[  640.666659][ T8361]  ? rcu_is_watching+0x15/0xb0
[  640.666694][ T8361]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
executing program
[  640.666716][ T8361]  do_syscall_64+0x15f/0xf80
[  640.666738][ T8361]  ? trace_irq_disable+0x3b/0x140
[  640.666765][ T8361]  ? clear_bhb_loop+0x40/0x90
[  640.666789][ T8361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.666808][ T8361] RIP: 0033:0x7f1f4ac8fb19
[  640.666827][ T8361] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  640.666843][ T8361] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  640.666863][ T8361] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  640.666878][ T8361] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  640.666890][ T8361] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  640.666905][ T8361] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  640.666918][ T8361] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  640.666949][ T8361]  </TASK>
[  640.668146][ T8361] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  640.668226][ T5737] gfs2: fsid=syz:syz.0: file system withdrawn
[  640.827439][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  641.342383][ T8365] loop0: detected capacity change from 0 to 32768
[  641.359675][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.361164][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.361205][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.362233][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.364358][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.365158][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.366375][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.368589][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.369774][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.371114][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.372033][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.372875][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.373599][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.374420][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.375227][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.375930][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.377886][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.379413][ T7144] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.381904][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.382609][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.385078][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.385777][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.386544][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.387326][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.388017][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.391838][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.392872][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.393715][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.395534][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.396237][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.397792][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.399039][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.399366][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.400263][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.408640][ T8365] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  641.408652][ T8365] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  641.428878][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.428984][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.477891][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.587818][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.598314][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.600639][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.602255][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.602569][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.602868][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.603292][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.603633][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.603994][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.604584][ T8365] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  641.605693][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.606794][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.606985][ T5737] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  641.606997][ T5737] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  641.628945][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.630398][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.633585][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.651939][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.654763][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.656880][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.669078][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.670336][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.674770][ T7671] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.705629][ T5737] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 98ms
[  641.705858][ T5737] gfs2: fsid=syz:syz.0: jid=0: Done
[  641.708291][ T8365] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  641.712376][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.715613][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.716221][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.727874][   T13] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  641.739861][ T8365] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  641.739881][ T8365] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 590
[  641.740002][ T8365] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  641.740040][ T8365] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:8365 [syz-executor125] iterate_dir+0x3a5/0x580
[  641.740074][ T8365] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  641.740103][ T8365] CPU: 0 UID: 0 PID: 8365 Comm: syz-executor125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  641.740125][ T8365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  641.740137][ T8365] Call Trace:
[  641.740145][ T8365]  <TASK>
[  641.740154][ T8365]  dump_stack_lvl+0xe8/0x150
[  641.740181][ T8365]  gfs2_withdraw+0xc3/0x1b0
[  641.740204][ T8365]  gfs2_dirent_scan+0x545/0x690
[  641.740229][ T8365]  ? __pfx_gfs2_dirent_gather+0x10/0x10
[  641.740254][ T8365]  gfs2_dir_read+0x78e/0x1760
[  641.740280][ T8365]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  641.740310][ T8365]  ? __pfx_inode_dio_wait+0x10/0x10
[  641.740344][ T8365]  ? __pfx_gfs2_dir_read+0x10/0x10
[  641.740378][ T8365]  ? gfs2_glock_wait+0x212/0x2a0
[  641.740403][ T8365]  gfs2_readdir+0x16c/0x1e0
[  641.740424][ T8365]  ? __pfx_gfs2_readdir+0x10/0x10
[  641.740442][ T8365]  ? down_read_killable+0x14c/0x220
[  641.740469][ T8365]  ? iterate_dir+0x3a5/0x580
[  641.740488][ T8365]  ? apparmor_file_permission+0x1f4/0x300
[  641.740521][ T8365]  iterate_dir+0x3a5/0x580
[  641.740544][ T8365]  __se_sys_getdents64+0xf1/0x280
[  641.740568][ T8365]  ? __pfx___se_sys_getdents64+0x10/0x10
[  641.740587][ T8365]  ? __pfx_filldir64+0x10/0x10
[  641.740607][ T8365]  ? rcu_is_watching+0x15/0xb0
[  641.740645][ T8365]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  641.740667][ T8365]  do_syscall_64+0x15f/0xf80
[  641.740688][ T8365]  ? trace_irq_disable+0x3b/0x140
executing program
[  641.740717][ T8365]  ? clear_bhb_loop+0x40/0x90
[  641.740741][ T8365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  641.740761][ T8365] RIP: 0033:0x7f1f4ac8fb19
[  641.740779][ T8365] Code: c0 79 93 eb d5 48 8d 7c 1d 00 eb 99 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d0 ff ff ff f7 d8 64 89 01 48
[  641.740795][ T8365] RSP: 002b:00007f1f4ac5c1d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  641.740815][ T8365] RAX: ffffffffffffffda RBX: 00007f1f4ad4ae28 RCX: 00007f1f4ac8fb19
[  641.740830][ T8365] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  641.740843][ T8365] RBP: 00007f1f4ad4ae20 R08: 38203a6b63617473 R09: 38203a6b63617473
[  641.740856][ T8365] R10: 38203a6b63617473 R11: 0000000000000246 R12: 00007f1f4ad1b058
[  641.740870][ T8365] R13: 0030656c69662f2e R14: 0000200000000000 R15: 0000200000000100
[  641.740901][ T8365]  </TASK>
[  641.740908][ T8365] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  641.740970][ T5737] gfs2: fsid=syz:syz.0: file system withdrawn
[  641.888095][ T7824] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1