o(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.475225][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.475910][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.477140][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.479080][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.480203][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.480520][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.480807][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.481886][ T6635] syz.0.47: attempt to access beyond end of device
[  201.481886][ T6635] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  201.481965][ T6635] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  201.481991][ T6635] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  201.482018][ T6635] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6635 [syz.0.47] init_journal+0x16d9/0x2280
[  201.482052][ T6635] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  201.482079][ T6635] CPU: 1 UID: 0 PID: 6635 Comm: syz.0.47 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  201.482101][ T6635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  201.482111][ T6635] Call Trace:
[  201.482118][ T6635]  <TASK>
[  201.482126][ T6635]  dump_stack_lvl+0xe8/0x150
[  201.482152][ T6635]  gfs2_withdraw+0xc3/0x1b0
[  201.482174][ T6635]  gfs2_jdesc_check+0x17d/0x2f0
[  201.482201][ T6635]  check_journal_clean+0x18d/0x360
[  201.482220][ T6635]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  201.482245][ T6635]  ? __pfx_check_journal_clean+0x10/0x10
[  201.482262][ T6635]  ? rt_spin_lock+0x1e0/0x400
[  201.482291][ T6635]  ? init_journal+0x16d9/0x2280
[  201.482319][ T6635]  ? rt_spin_unlock+0x160/0x200
[  201.482348][ T6635]  ? gfs2_jdesc_find+0xab/0xc0
[  201.482373][ T6635]  init_journal+0x16d9/0x2280
[  201.482392][ T6635]  ? rt_spin_lock+0x1e0/0x400
[  201.482428][ T6635]  ? init_inodes+0xdb/0x320
[  201.482448][ T6635]  ? __asan_memcpy+0x40/0x70
[  201.482471][ T6635]  ? __pfx_init_journal+0x10/0x10
[  201.482489][ T6635]  ? vsnprintf+0xe42/0xef0
[  201.482527][ T6635]  ? snprintf+0xe8/0x140
[  201.482546][ T6635]  ? init_inodes+0xdb/0x320
[  201.482565][ T6635]  ? __pfx_snprintf+0x10/0x10
[  201.482584][ T6635]  ? gfs2_glock_nq_num+0x13d/0x170
[  201.482614][ T6635]  init_inodes+0xdb/0x320
[  201.482636][ T6635]  gfs2_fill_super+0x1a92/0x2220
[  201.482669][ T6635]  ? __pfx_gfs2_fill_super+0x10/0x10
[  201.482688][ T6635]  ? rt_spin_unlock+0x14f/0x200
[  201.482717][ T6635]  ? init_locking+0xb8/0x210
[  201.482735][ T6635]  ? sb_set_blocksize+0x11b/0x210
[  201.482762][ T6635]  ? setup_bdev_super+0x4c1/0x5b0
[  201.482792][ T6635]  get_tree_bdev_flags+0x431/0x4f0
[  201.482820][ T6635]  ? __pfx_gfs2_fill_super+0x10/0x10
[  201.482840][ T6635]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  201.482865][ T6635]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  201.482902][ T6635]  gfs2_get_tree+0x51/0x1e0
[  201.482925][ T6635]  vfs_get_tree+0x92/0x2a0
[  201.482954][ T6635]  do_new_mount+0x341/0xd30
[  201.482974][ T6635]  ? apparmor_capable+0x126/0x170
[  201.483001][ T6635]  ? __pfx_do_new_mount+0x10/0x10
[  201.483023][ T6635]  ? ns_capable+0x89/0xe0
[  201.483052][ T6635]  ? user_path_at+0xd4/0x160
[  201.483080][ T6635]  ? user_path_at+0xd4/0x160
[  201.483106][ T6635]  __se_sys_mount+0x31d/0x420
[  201.483134][ T6635]  ? __pfx___se_sys_mount+0x10/0x10
[  201.483162][ T6635]  ? __x64_sys_mount+0x20/0xc0
[  201.483184][ T6635]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.483204][ T6635]  do_syscall_64+0x15f/0xf80
[  201.483225][ T6635]  ? trace_irq_disable+0x3b/0x140
[  201.483252][ T6635]  ? clear_bhb_loop+0x40/0x90
[  201.483274][ T6635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.483292][ T6635] RIP: 0033:0x7f249f4ee04a
[  201.483310][ T6635] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  201.483325][ T6635] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  201.483344][ T6635] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  201.483358][ T6635] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  201.483371][ T6635] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  201.483384][ T6635] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  201.483395][ T6635] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  201.483424][ T6635]  </TASK>
[  201.484411][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.492528][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.493395][ T6635] gfs2: fsid=..s: Error checking journal for spectator mount.
[  201.523418][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.527017][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.528695][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.530026][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.533540][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.535429][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.538341][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.545718][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.546503][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.547173][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.548760][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.548800][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.548828][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.551065][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.554755][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  201.647969][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  202.226981][ T6639] loop0: detected capacity change from 0 to 32768
[  202.230166][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.236344][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.237029][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.237745][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.238416][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.239105][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.241696][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.242895][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.243502][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.244454][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.245073][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.245641][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.246236][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.247075][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.247734][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.248333][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.248998][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.250304][ T6639] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  202.250319][ T6639] gfs2: fsid=.: Now mounting FS (format 1801)...
[  202.255530][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.257784][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.258022][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.264225][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.268843][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.269369][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.270445][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.278122][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.278871][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.280792][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.281658][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.291453][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.292756][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.293105][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.293338][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.294169][ T6639] syz.0.48: attempt to access beyond end of device
[  202.294169][ T6639] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  202.294259][ T6639] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  202.294285][ T6639] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  202.294313][ T6639] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6639 [syz.0.48] init_journal+0x16d9/0x2280
[  202.294357][ T6639] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  202.294385][ T6639] CPU: 1 UID: 0 PID: 6639 Comm: syz.0.48 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  202.294405][ T6639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  202.294416][ T6639] Call Trace:
[  202.294423][ T6639]  <TASK>
[  202.294431][ T6639]  dump_stack_lvl+0xe8/0x150
[  202.294459][ T6639]  gfs2_withdraw+0xc3/0x1b0
[  202.294480][ T6639]  gfs2_jdesc_check+0x17d/0x2f0
[  202.294508][ T6639]  check_journal_clean+0x18d/0x360
[  202.294526][ T6639]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  202.294551][ T6639]  ? __pfx_check_journal_clean+0x10/0x10
[  202.294569][ T6639]  ? rt_spin_lock+0x1e0/0x400
[  202.294597][ T6639]  ? init_journal+0x16d9/0x2280
[  202.294625][ T6639]  ? rt_spin_unlock+0x160/0x200
[  202.294655][ T6639]  ? gfs2_jdesc_find+0xab/0xc0
[  202.294679][ T6639]  init_journal+0x16d9/0x2280
[  202.294697][ T6639]  ? rt_spin_lock+0x1e0/0x400
[  202.294732][ T6639]  ? init_inodes+0xdb/0x320
[  202.294754][ T6639]  ? __asan_memcpy+0x40/0x70
[  202.294776][ T6639]  ? __pfx_init_journal+0x10/0x10
[  202.294795][ T6639]  ? vsnprintf+0xe42/0xef0
[  202.294833][ T6639]  ? snprintf+0xe8/0x140
[  202.294853][ T6639]  ? init_inodes+0xdb/0x320
[  202.294877][ T6639]  ? __pfx_snprintf+0x10/0x10
[  202.294896][ T6639]  ? gfs2_glock_nq_num+0x13d/0x170
[  202.294921][ T6639]  init_inodes+0xdb/0x320
[  202.294943][ T6639]  gfs2_fill_super+0x1a92/0x2220
[  202.294982][ T6639]  ? __pfx_gfs2_fill_super+0x10/0x10
[  202.294999][ T6639]  ? rt_spin_unlock+0x14f/0x200
[  202.295028][ T6639]  ? init_locking+0xb8/0x210
[  202.295046][ T6639]  ? sb_set_blocksize+0x11b/0x210
[  202.295068][ T6639]  ? setup_bdev_super+0x4c1/0x5b0
[  202.295098][ T6639]  get_tree_bdev_flags+0x431/0x4f0
[  202.295126][ T6639]  ? __pfx_gfs2_fill_super+0x10/0x10
[  202.295145][ T6639]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  202.295171][ T6639]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  202.295208][ T6639]  gfs2_get_tree+0x51/0x1e0
[  202.295230][ T6639]  vfs_get_tree+0x92/0x2a0
[  202.295259][ T6639]  do_new_mount+0x341/0xd30
[  202.295279][ T6639]  ? apparmor_capable+0x126/0x170
[  202.295305][ T6639]  ? __pfx_do_new_mount+0x10/0x10
[  202.295327][ T6639]  ? ns_capable+0x89/0xe0
[  202.295362][ T6639]  ? user_path_at+0xd4/0x160
[  202.295391][ T6639]  ? user_path_at+0xd4/0x160
[  202.295418][ T6639]  __se_sys_mount+0x31d/0x420
[  202.295445][ T6639]  ? __pfx___se_sys_mount+0x10/0x10
[  202.295474][ T6639]  ? __x64_sys_mount+0x20/0xc0
[  202.295495][ T6639]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.295515][ T6639]  do_syscall_64+0x15f/0xf80
[  202.295536][ T6639]  ? trace_irq_disable+0x3b/0x140
[  202.295563][ T6639]  ? clear_bhb_loop+0x40/0x90
[  202.295586][ T6639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.295604][ T6639] RIP: 0033:0x7f249f4ee04a
[  202.295622][ T6639] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  202.295637][ T6639] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  202.295657][ T6639] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  202.295671][ T6639] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  202.295684][ T6639] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  202.295696][ T6639] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  202.295709][ T6639] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  202.295737][ T6639]  </TASK>
[  202.298908][ T6639] gfs2: fsid=..s: Error checking journal for spectator mount.
[  202.332286][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.333434][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.334299][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.335077][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.336184][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.337370][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.339329][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.340444][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.341976][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.344330][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.344379][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.345921][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.349286][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  202.444143][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  203.099033][ T6643] loop0: detected capacity change from 0 to 32768
[  203.108151][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.112740][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.116499][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.118952][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.121223][ T6643] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  203.121240][ T6643] gfs2: fsid=.: Now mounting FS (format 1801)...
[  203.128707][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.137426][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.137611][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.162959][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.164628][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.164767][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.167436][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.168446][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.168502][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.169645][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.170585][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.173364][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.174395][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.175830][ T6643] syz.0.49: attempt to access beyond end of device
[  203.175830][ T6643] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  203.175920][ T6643] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  203.175962][ T6643] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  203.175991][ T6643] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6643 [syz.0.49] init_journal+0x16d9/0x2280
[  203.176026][ T6643] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  203.176123][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.178270][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.178483][ T6643] CPU: 1 UID: 0 PID: 6643 Comm: syz.0.49 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  203.178507][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  203.178519][ T6643] Call Trace:
[  203.178526][ T6643]  <TASK>
[  203.178532][ T6643]  dump_stack_lvl+0xe8/0x150
[  203.178567][ T6643]  gfs2_withdraw+0xc3/0x1b0
[  203.178590][ T6643]  gfs2_jdesc_check+0x17d/0x2f0
[  203.178618][ T6643]  check_journal_clean+0x18d/0x360
[  203.178637][ T6643]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  203.178663][ T6643]  ? __pfx_check_journal_clean+0x10/0x10
[  203.178681][ T6643]  ? rt_spin_lock+0x1e0/0x400
[  203.178709][ T6643]  ? init_journal+0x16d9/0x2280
[  203.178738][ T6643]  ? rt_spin_unlock+0x160/0x200
[  203.178768][ T6643]  ? gfs2_jdesc_find+0xab/0xc0
[  203.178792][ T6643]  init_journal+0x16d9/0x2280
[  203.178812][ T6643]  ? rt_spin_lock+0x1e0/0x400
[  203.178847][ T6643]  ? init_inodes+0xdb/0x320
[  203.178868][ T6643]  ? __asan_memcpy+0x40/0x70
[  203.178892][ T6643]  ? __pfx_init_journal+0x10/0x10
[  203.178911][ T6643]  ? vsnprintf+0xe42/0xef0
[  203.178949][ T6643]  ? snprintf+0xe8/0x140
[  203.178969][ T6643]  ? init_inodes+0xdb/0x320
[  203.178988][ T6643]  ? __pfx_snprintf+0x10/0x10
[  203.179007][ T6643]  ? gfs2_glock_nq_num+0x13d/0x170
[  203.179034][ T6643]  init_inodes+0xdb/0x320
[  203.179056][ T6643]  gfs2_fill_super+0x1a92/0x2220
[  203.179091][ T6643]  ? __pfx_gfs2_fill_super+0x10/0x10
[  203.179109][ T6643]  ? rt_spin_unlock+0x14f/0x200
[  203.179137][ T6643]  ? init_locking+0xb8/0x210
[  203.179156][ T6643]  ? sb_set_blocksize+0x11b/0x210
[  203.179177][ T6643]  ? setup_bdev_super+0x4c1/0x5b0
[  203.179207][ T6643]  get_tree_bdev_flags+0x431/0x4f0
[  203.179236][ T6643]  ? __pfx_gfs2_fill_super+0x10/0x10
[  203.179255][ T6643]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  203.179280][ T6643]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  203.179316][ T6643]  gfs2_get_tree+0x51/0x1e0
[  203.179339][ T6643]  vfs_get_tree+0x92/0x2a0
[  203.179369][ T6643]  do_new_mount+0x341/0xd30
[  203.179390][ T6643]  ? apparmor_capable+0x126/0x170
[  203.179416][ T6643]  ? __pfx_do_new_mount+0x10/0x10
[  203.179439][ T6643]  ? ns_capable+0x89/0xe0
[  203.179469][ T6643]  ? user_path_at+0xd4/0x160
[  203.179497][ T6643]  ? user_path_at+0xd4/0x160
[  203.179524][ T6643]  __se_sys_mount+0x31d/0x420
[  203.179552][ T6643]  ? __pfx___se_sys_mount+0x10/0x10
[  203.179585][ T6643]  ? __x64_sys_mount+0x20/0xc0
[  203.179607][ T6643]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.179628][ T6643]  do_syscall_64+0x15f/0xf80
[  203.179649][ T6643]  ? trace_irq_disable+0x3b/0x140
[  203.179677][ T6643]  ? clear_bhb_loop+0x40/0x90
[  203.179696][ T6643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.179714][ T6643] RIP: 0033:0x7f249f4ee04a
[  203.179731][ T6643] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  203.179745][ T6643] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  203.179764][ T6643] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  203.179776][ T6643] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  203.179788][ T6643] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  203.179801][ T6643] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  203.179813][ T6643] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  203.179843][ T6643]  </TASK>
[  203.180627][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.183091][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.183243][ T6643] gfs2: fsid=..s: Error checking journal for spectator mount.
[  203.200454][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.204954][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.222341][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.224305][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.225914][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.226729][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.228258][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.231245][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.235338][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.236885][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.237751][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.243945][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.246738][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.247597][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.248395][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.249739][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.251389][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.252971][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.280629][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.281469][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.283473][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.283515][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.283551][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.287586][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.289851][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.405095][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  203.972732][ T6647] loop0: detected capacity change from 0 to 32768
[  203.975793][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.982436][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.983229][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.983994][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.984840][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.985640][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.986371][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.987620][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.988375][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.992024][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.993204][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.994108][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.994873][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.995592][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.996342][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.997048][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.997764][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  203.998481][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.000864][ T6647] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  204.000895][ T6647] gfs2: fsid=.: Now mounting FS (format 1801)...
[  204.020655][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.024141][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.024352][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.045088][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.048354][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.048826][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.050290][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.054088][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.054701][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.054747][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.055100][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.055907][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.056794][ T6647] syz.0.50: attempt to access beyond end of device
[  204.056794][ T6647] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  204.056876][ T6647] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  204.056903][ T6647] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  204.056930][ T6647] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6647 [syz.0.50] init_journal+0x16d9/0x2280
[  204.056965][ T6647] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  204.056993][ T6647] CPU: 1 UID: 0 PID: 6647 Comm: syz.0.50 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  204.057014][ T6647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  204.057025][ T6647] Call Trace:
[  204.057032][ T6647]  <TASK>
[  204.057039][ T6647]  dump_stack_lvl+0xe8/0x150
[  204.057066][ T6647]  gfs2_withdraw+0xc3/0x1b0
[  204.057088][ T6647]  gfs2_jdesc_check+0x17d/0x2f0
[  204.057116][ T6647]  check_journal_clean+0x18d/0x360
[  204.057141][ T6647]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  204.057167][ T6647]  ? __pfx_check_journal_clean+0x10/0x10
[  204.057184][ T6647]  ? rt_spin_lock+0x1e0/0x400
[  204.057214][ T6647]  ? init_journal+0x16d9/0x2280
[  204.057242][ T6647]  ? rt_spin_unlock+0x160/0x200
[  204.057272][ T6647]  ? gfs2_jdesc_find+0xab/0xc0
[  204.057296][ T6647]  init_journal+0x16d9/0x2280
[  204.057315][ T6647]  ? rt_spin_lock+0x1e0/0x400
[  204.057351][ T6647]  ? init_inodes+0xdb/0x320
[  204.057372][ T6647]  ? __asan_memcpy+0x40/0x70
[  204.057394][ T6647]  ? __pfx_init_journal+0x10/0x10
[  204.057418][ T6647]  ? vsnprintf+0xe42/0xef0
[  204.057459][ T6647]  ? snprintf+0xe8/0x140
[  204.057479][ T6647]  ? init_inodes+0xdb/0x320
[  204.057499][ T6647]  ? __pfx_snprintf+0x10/0x10
[  204.057518][ T6647]  ? gfs2_glock_nq_num+0x13d/0x170
[  204.057543][ T6647]  init_inodes+0xdb/0x320
[  204.057566][ T6647]  gfs2_fill_super+0x1a92/0x2220
[  204.057600][ T6647]  ? __pfx_gfs2_fill_super+0x10/0x10
[  204.057619][ T6647]  ? rt_spin_unlock+0x14f/0x200
[  204.057647][ T6647]  ? init_locking+0xb8/0x210
[  204.057665][ T6647]  ? sb_set_blocksize+0x11b/0x210
[  204.057687][ T6647]  ? setup_bdev_super+0x4c1/0x5b0
[  204.057718][ T6647]  get_tree_bdev_flags+0x431/0x4f0
[  204.057745][ T6647]  ? __pfx_gfs2_fill_super+0x10/0x10
[  204.057765][ T6647]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  204.057790][ T6647]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  204.057827][ T6647]  gfs2_get_tree+0x51/0x1e0
[  204.057849][ T6647]  vfs_get_tree+0x92/0x2a0
[  204.057878][ T6647]  do_new_mount+0x341/0xd30
[  204.057898][ T6647]  ? apparmor_capable+0x126/0x170
[  204.057926][ T6647]  ? __pfx_do_new_mount+0x10/0x10
[  204.057948][ T6647]  ? ns_capable+0x89/0xe0
[  204.057992][ T6647]  ? user_path_at+0xd4/0x160
[  204.058021][ T6647]  ? user_path_at+0xd4/0x160
[  204.058047][ T6647]  __se_sys_mount+0x31d/0x420
[  204.058075][ T6647]  ? __pfx___se_sys_mount+0x10/0x10
[  204.058104][ T6647]  ? __x64_sys_mount+0x20/0xc0
[  204.058132][ T6647]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.058152][ T6647]  do_syscall_64+0x15f/0xf80
[  204.058173][ T6647]  ? trace_irq_disable+0x3b/0x140
[  204.058198][ T6647]  ? clear_bhb_loop+0x40/0x90
[  204.058219][ T6647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.058237][ T6647] RIP: 0033:0x7f249f4ee04a
[  204.058256][ T6647] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  204.058272][ T6647] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  204.058292][ T6647] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  204.058305][ T6647] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  204.058318][ T6647] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  204.058330][ T6647] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  204.058342][ T6647] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  204.058372][ T6647]  </TASK>
[  204.060826][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.064850][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.066035][ T6647] gfs2: fsid=..s: Error checking journal for spectator mount.
[  204.084227][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.088483][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.094447][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.098963][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.103244][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.108782][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.109633][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.110872][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.115344][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.115394][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.115422][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.115464][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.115540][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.257610][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  204.836167][ T6651] loop0: detected capacity change from 0 to 32768
[  204.844703][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.853940][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.856124][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.857743][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.859823][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.861157][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.862275][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.864937][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.865589][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.866548][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.867152][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.869301][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.873220][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.874512][ T6651] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  204.874528][ T6651] gfs2: fsid=.: Now mounting FS (format 1801)...
[  204.886473][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.888038][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.891061][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
2026/05/10 01:22:01 executed programs: 37
[  204.891121][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.902012][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.921903][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.921924][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.929088][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.929443][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.930148][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  204.931073][ T6651] syz.0.51: attempt to access beyond end of device
[  204.931073][ T6651] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  204.931154][ T6651] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  204.931180][ T6651] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  204.931206][ T6651] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6651 [syz.0.51] init_journal+0x16d9/0x2280
[  204.931242][ T6651] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  204.931269][ T6651] CPU: 1 UID: 0 PID: 6651 Comm: syz.0.51 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  204.931290][ T6651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  204.931301][ T6651] Call Trace:
[  204.931308][ T6651]  <TASK>
[  204.931315][ T6651]  dump_stack_lvl+0xe8/0x150
[  204.931342][ T6651]  gfs2_withdraw+0xc3/0x1b0
[  204.931363][ T6651]  gfs2_jdesc_check+0x17d/0x2f0
[  204.931391][ T6651]  check_journal_clean+0x18d/0x360
[  204.931408][ T6651]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  204.931434][ T6651]  ? __pfx_check_journal_clean+0x10/0x10
[  204.931451][ T6651]  ? rt_spin_lock+0x1e0/0x400
[  204.931480][ T6651]  ? init_journal+0x16d9/0x2280
[  204.931509][ T6651]  ? rt_spin_unlock+0x160/0x200
[  204.931537][ T6651]  ? gfs2_jdesc_find+0xab/0xc0
[  204.931565][ T6651]  init_journal+0x16d9/0x2280
[  204.931584][ T6651]  ? rt_spin_lock+0x1e0/0x400
[  204.931619][ T6651]  ? init_inodes+0xdb/0x320
[  204.931640][ T6651]  ? __asan_memcpy+0x40/0x70
[  204.931662][ T6651]  ? __pfx_init_journal+0x10/0x10
[  204.931681][ T6651]  ? vsnprintf+0xe42/0xef0
[  204.931717][ T6651]  ? snprintf+0xe8/0x140
[  204.931736][ T6651]  ? init_inodes+0xdb/0x320
[  204.931755][ T6651]  ? __pfx_snprintf+0x10/0x10
[  204.931774][ T6651]  ? gfs2_glock_nq_num+0x13d/0x170
[  204.931799][ T6651]  init_inodes+0xdb/0x320
[  204.931822][ T6651]  gfs2_fill_super+0x1a92/0x2220
[  204.931855][ T6651]  ? __pfx_gfs2_fill_super+0x10/0x10
[  204.931872][ T6651]  ? rt_spin_unlock+0x14f/0x200
[  204.931901][ T6651]  ? init_locking+0xb8/0x210
[  204.931919][ T6651]  ? sb_set_blocksize+0x11b/0x210
[  204.931940][ T6651]  ? setup_bdev_super+0x4c1/0x5b0
[  204.931970][ T6651]  get_tree_bdev_flags+0x431/0x4f0
[  204.932005][ T6651]  ? __pfx_gfs2_fill_super+0x10/0x10
[  204.932025][ T6651]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  204.932050][ T6651]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  204.932087][ T6651]  gfs2_get_tree+0x51/0x1e0
[  204.932109][ T6651]  vfs_get_tree+0x92/0x2a0
[  204.932138][ T6651]  do_new_mount+0x341/0xd30
[  204.932158][ T6651]  ? apparmor_capable+0x126/0x170
[  204.932195][ T6651]  ? __pfx_do_new_mount+0x10/0x10
[  204.932221][ T6651]  ? ns_capable+0x89/0xe0
[  204.932251][ T6651]  ? user_path_at+0xd4/0x160
[  204.932278][ T6651]  ? user_path_at+0xd4/0x160
[  204.932305][ T6651]  __se_sys_mount+0x31d/0x420
[  204.932332][ T6651]  ? __pfx___se_sys_mount+0x10/0x10
[  204.932360][ T6651]  ? __x64_sys_mount+0x20/0xc0
[  204.932381][ T6651]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.932402][ T6651]  do_syscall_64+0x15f/0xf80
[  204.932423][ T6651]  ? trace_irq_disable+0x3b/0x140
[  204.932450][ T6651]  ? clear_bhb_loop+0x40/0x90
[  204.932473][ T6651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.932491][ T6651] RIP: 0033:0x7f249f4ee04a
[  204.932508][ T6651] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  204.932524][ T6651] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  204.932543][ T6651] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  204.932557][ T6651] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  204.932570][ T6651] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  204.932582][ T6651] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  204.932594][ T6651] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  204.932623][ T6651]  </TASK>
[  204.935496][ T6651] gfs2: fsid=..s: Error checking journal for spectator mount.
[  204.968999][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.029334][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.075600][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.156316][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.288015][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.431724][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.500356][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.501894][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.502710][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.503447][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.504217][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.505055][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.505792][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.506510][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.507360][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.508820][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.509542][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.512126][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.512986][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.513316][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.513780][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.514697][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.516352][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.557794][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  205.707345][ T6655] loop0: detected capacity change from 0 to 32768
[  205.719934][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.722833][ T6655] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  205.722850][ T6655] gfs2: fsid=.: Now mounting FS (format 1801)...
[  205.726915][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.747581][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.769019][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.769588][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.776208][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.777085][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.778335][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.778677][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.778971][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.780535][ T6655] syz.0.52: attempt to access beyond end of device
[  205.780535][ T6655] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  205.780617][ T6655] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  205.780643][ T6655] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  205.780671][ T6655] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6655 [syz.0.52] init_journal+0x16d9/0x2280
[  205.780706][ T6655] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  205.780734][ T6655] CPU: 1 UID: 0 PID: 6655 Comm: syz.0.52 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  205.780755][ T6655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  205.780766][ T6655] Call Trace:
[  205.780773][ T6655]  <TASK>
[  205.780780][ T6655]  dump_stack_lvl+0xe8/0x150
[  205.780808][ T6655]  gfs2_withdraw+0xc3/0x1b0
[  205.780830][ T6655]  gfs2_jdesc_check+0x17d/0x2f0
[  205.780857][ T6655]  check_journal_clean+0x18d/0x360
[  205.780875][ T6655]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  205.780901][ T6655]  ? __pfx_check_journal_clean+0x10/0x10
[  205.780919][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  205.780950][ T6655]  ? init_journal+0x16d9/0x2280
[  205.780978][ T6655]  ? rt_spin_unlock+0x160/0x200
[  205.781008][ T6655]  ? gfs2_jdesc_find+0xab/0xc0
[  205.781033][ T6655]  init_journal+0x16d9/0x2280
[  205.781051][ T6655]  ? rt_spin_lock+0x1e0/0x400
[  205.781087][ T6655]  ? init_inodes+0xdb/0x320
[  205.781108][ T6655]  ? __asan_memcpy+0x40/0x70
[  205.781131][ T6655]  ? __pfx_init_journal+0x10/0x10
[  205.781150][ T6655]  ? vsnprintf+0xe42/0xef0
[  205.781188][ T6655]  ? snprintf+0xe8/0x140
[  205.781208][ T6655]  ? init_inodes+0xdb/0x320
[  205.781238][ T6655]  ? __pfx_snprintf+0x10/0x10
[  205.781257][ T6655]  ? gfs2_glock_nq_num+0x13d/0x170
[  205.781283][ T6655]  init_inodes+0xdb/0x320
[  205.781305][ T6655]  gfs2_fill_super+0x1a92/0x2220
[  205.781340][ T6655]  ? __pfx_gfs2_fill_super+0x10/0x10
[  205.781358][ T6655]  ? rt_spin_unlock+0x14f/0x200
[  205.781388][ T6655]  ? init_locking+0xb8/0x210
[  205.781406][ T6655]  ? sb_set_blocksize+0x11b/0x210
[  205.781428][ T6655]  ? setup_bdev_super+0x4c1/0x5b0
[  205.781459][ T6655]  get_tree_bdev_flags+0x431/0x4f0
[  205.781486][ T6655]  ? __pfx_gfs2_fill_super+0x10/0x10
[  205.781507][ T6655]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  205.781531][ T6655]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  205.781568][ T6655]  gfs2_get_tree+0x51/0x1e0
[  205.781591][ T6655]  vfs_get_tree+0x92/0x2a0
[  205.781620][ T6655]  do_new_mount+0x341/0xd30
[  205.781641][ T6655]  ? apparmor_capable+0x126/0x170
[  205.781667][ T6655]  ? __pfx_do_new_mount+0x10/0x10
[  205.781689][ T6655]  ? ns_capable+0x89/0xe0
[  205.781719][ T6655]  ? user_path_at+0xd4/0x160
[  205.781746][ T6655]  ? user_path_at+0xd4/0x160
[  205.781772][ T6655]  __se_sys_mount+0x31d/0x420
[  205.781800][ T6655]  ? __pfx___se_sys_mount+0x10/0x10
[  205.781828][ T6655]  ? __x64_sys_mount+0x20/0xc0
[  205.781849][ T6655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.781869][ T6655]  do_syscall_64+0x15f/0xf80
[  205.781891][ T6655]  ? trace_irq_disable+0x3b/0x140
[  205.781918][ T6655]  ? clear_bhb_loop+0x40/0x90
[  205.781940][ T6655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.781958][ T6655] RIP: 0033:0x7f249f4ee04a
[  205.781976][ T6655] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  205.781992][ T6655] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  205.782012][ T6655] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  205.782025][ T6655] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  205.782038][ T6655] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  205.782051][ T6655] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  205.782063][ T6655] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  205.782092][ T6655]  </TASK>
[  205.782121][ T6655] gfs2: fsid=..s: Error checking journal for spectator mount.
[  205.800052][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.840331][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.847336][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.849226][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.853790][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.856097][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.862028][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.870610][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.871576][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.872260][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.872897][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.873499][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.874069][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.874680][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.875385][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.876368][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.877050][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.878770][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.885304][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.886074][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.886716][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.888905][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.889605][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.893550][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.895447][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.896338][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.897793][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.898493][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.899147][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.925764][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.925820][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.925850][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.925894][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  205.925970][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.051288][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  206.611752][ T6659] loop0: detected capacity change from 0 to 32768
[  206.613590][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.616785][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.617268][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.617759][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.618227][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.618694][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.619149][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.621812][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.632699][ T6659] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  206.632717][ T6659] gfs2: fsid=.: Now mounting FS (format 1801)...
[  206.640438][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.645311][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.646037][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.646829][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.647638][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.648346][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.649086][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.655178][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.657294][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.658869][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.665931][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.668552][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.669958][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.670092][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.670806][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.672877][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.673732][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.674883][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.675407][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.677753][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.678708][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.679109][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.680775][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.680906][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.682360][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.683392][ T6659] syz.0.53: attempt to access beyond end of device
[  206.683392][ T6659] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  206.683472][ T6659] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  206.683499][ T6659] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  206.683526][ T6659] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6659 [syz.0.53] init_journal+0x16d9/0x2280
[  206.683561][ T6659] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  206.683588][ T6659] CPU: 1 UID: 0 PID: 6659 Comm: syz.0.53 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  206.683608][ T6659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  206.683619][ T6659] Call Trace:
[  206.683626][ T6659]  <TASK>
[  206.683634][ T6659]  dump_stack_lvl+0xe8/0x150
[  206.683661][ T6659]  gfs2_withdraw+0xc3/0x1b0
[  206.683682][ T6659]  gfs2_jdesc_check+0x17d/0x2f0
[  206.683708][ T6659]  check_journal_clean+0x18d/0x360
[  206.683726][ T6659]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  206.683751][ T6659]  ? __pfx_check_journal_clean+0x10/0x10
[  206.683769][ T6659]  ? rt_spin_lock+0x1e0/0x400
[  206.683797][ T6659]  ? init_journal+0x16d9/0x2280
[  206.683826][ T6659]  ? rt_spin_unlock+0x160/0x200
[  206.683854][ T6659]  ? gfs2_jdesc_find+0xab/0xc0
[  206.683878][ T6659]  init_journal+0x16d9/0x2280
[  206.683918][ T6659]  ? init_inodes+0xdb/0x320
[  206.683939][ T6659]  ? __asan_memcpy+0x40/0x70
[  206.683962][ T6659]  ? __pfx_init_journal+0x10/0x10
[  206.683980][ T6659]  ? vsnprintf+0xe42/0xef0
[  206.684017][ T6659]  ? snprintf+0xe8/0x140
[  206.684036][ T6659]  ? init_inodes+0xdb/0x320
[  206.684055][ T6659]  ? __pfx_snprintf+0x10/0x10
[  206.684074][ T6659]  ? gfs2_glock_nq_num+0x13d/0x170
[  206.684099][ T6659]  init_inodes+0xdb/0x320
[  206.684121][ T6659]  gfs2_fill_super+0x1a92/0x2220
[  206.684159][ T6659]  ? __pfx_gfs2_fill_super+0x10/0x10
[  206.684178][ T6659]  ? rt_spin_unlock+0x14f/0x200
[  206.684207][ T6659]  ? init_locking+0xb8/0x210
[  206.684224][ T6659]  ? sb_set_blocksize+0x11b/0x210
[  206.684246][ T6659]  ? setup_bdev_super+0x4c1/0x5b0
[  206.684276][ T6659]  get_tree_bdev_flags+0x431/0x4f0
[  206.684304][ T6659]  ? __pfx_gfs2_fill_super+0x10/0x10
[  206.684323][ T6659]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  206.684348][ T6659]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  206.684385][ T6659]  gfs2_get_tree+0x51/0x1e0
[  206.684408][ T6659]  vfs_get_tree+0x92/0x2a0
[  206.684436][ T6659]  do_new_mount+0x341/0xd30
[  206.684457][ T6659]  ? apparmor_capable+0x126/0x170
[  206.684484][ T6659]  ? __pfx_do_new_mount+0x10/0x10
[  206.684505][ T6659]  ? ns_capable+0x89/0xe0
[  206.684534][ T6659]  ? user_path_at+0xd4/0x160
[  206.684562][ T6659]  ? user_path_at+0xd4/0x160
[  206.684590][ T6659]  __se_sys_mount+0x31d/0x420
[  206.684618][ T6659]  ? __pfx___se_sys_mount+0x10/0x10
[  206.684646][ T6659]  ? __x64_sys_mount+0x20/0xc0
[  206.684668][ T6659]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.684689][ T6659]  do_syscall_64+0x15f/0xf80
[  206.684710][ T6659]  ? trace_irq_disable+0x3b/0x140
[  206.684738][ T6659]  ? clear_bhb_loop+0x40/0x90
[  206.684760][ T6659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.684779][ T6659] RIP: 0033:0x7f249f4ee04a
[  206.684796][ T6659] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  206.684812][ T6659] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  206.684833][ T6659] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  206.684846][ T6659] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  206.684858][ T6659] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  206.684871][ T6659] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  206.684883][ T6659] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  206.684918][ T6659]  </TASK>
[  206.685053][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.687552][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.690638][ T6659] gfs2: fsid=..s: Error checking journal for spectator mount.
[  206.690870][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.708808][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.711048][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.722788][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.725094][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.725853][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.727477][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.727518][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.727545][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.729419][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.733749][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  206.858343][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  207.499513][ T6663] loop0: detected capacity change from 0 to 32768
[  207.512651][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.525122][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.526882][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.532200][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.534615][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.535332][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.536002][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.537257][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.537985][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.539029][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.540756][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.542017][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.542772][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.543425][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.544094][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.544740][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.545401][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.546640][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.548245][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.548925][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.553064][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.553917][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.554631][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.555320][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.556035][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.556719][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.557652][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.568334][ T6663] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  207.568352][ T6663] gfs2: fsid=.: Now mounting FS (format 1801)...
[  207.577536][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.577944][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.587652][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.589124][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.595787][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.596604][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.597285][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.600417][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.600459][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.600492][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.608929][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.610290][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.612940][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.627579][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.628012][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.628310][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.629104][ T6663] syz.0.54: attempt to access beyond end of device
[  207.629104][ T6663] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  207.629181][ T6663] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  207.629207][ T6663] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  207.629235][ T6663] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6663 [syz.0.54] init_journal+0x16d9/0x2280
[  207.629269][ T6663] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  207.629298][ T6663] CPU: 1 UID: 0 PID: 6663 Comm: syz.0.54 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  207.629319][ T6663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  207.629330][ T6663] Call Trace:
[  207.629337][ T6663]  <TASK>
[  207.629345][ T6663]  dump_stack_lvl+0xe8/0x150
[  207.629372][ T6663]  gfs2_withdraw+0xc3/0x1b0
[  207.629393][ T6663]  gfs2_jdesc_check+0x17d/0x2f0
[  207.629420][ T6663]  check_journal_clean+0x18d/0x360
[  207.629438][ T6663]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  207.629463][ T6663]  ? __pfx_check_journal_clean+0x10/0x10
[  207.629481][ T6663]  ? rt_spin_lock+0x1e0/0x400
[  207.629511][ T6663]  ? init_journal+0x16d9/0x2280
[  207.629539][ T6663]  ? rt_spin_unlock+0x160/0x200
[  207.629568][ T6663]  ? gfs2_jdesc_find+0xab/0xc0
[  207.629593][ T6663]  init_journal+0x16d9/0x2280
[  207.629613][ T6663]  ? rt_spin_lock+0x1e0/0x400
[  207.629647][ T6663]  ? init_inodes+0xdb/0x320
[  207.629669][ T6663]  ? __asan_memcpy+0x40/0x70
[  207.629688][ T6663]  ? __pfx_init_journal+0x10/0x10
[  207.629705][ T6663]  ? vsnprintf+0xe42/0xef0
[  207.629739][ T6663]  ? snprintf+0xe8/0x140
[  207.629756][ T6663]  ? init_inodes+0xdb/0x320
[  207.629775][ T6663]  ? __pfx_snprintf+0x10/0x10
[  207.629792][ T6663]  ? gfs2_glock_nq_num+0x13d/0x170
[  207.629816][ T6663]  init_inodes+0xdb/0x320
[  207.629838][ T6663]  gfs2_fill_super+0x1a92/0x2220
[  207.629870][ T6663]  ? __pfx_gfs2_fill_super+0x10/0x10
[  207.629886][ T6663]  ? rt_spin_unlock+0x14f/0x200
[  207.629915][ T6663]  ? init_locking+0xb8/0x210
[  207.629933][ T6663]  ? sb_set_blocksize+0x11b/0x210
[  207.629954][ T6663]  ? setup_bdev_super+0x4c1/0x5b0
[  207.629984][ T6663]  get_tree_bdev_flags+0x431/0x4f0
[  207.630022][ T6663]  ? __pfx_gfs2_fill_super+0x10/0x10
[  207.630042][ T6663]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  207.630069][ T6663]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  207.630106][ T6663]  gfs2_get_tree+0x51/0x1e0
[  207.630128][ T6663]  vfs_get_tree+0x92/0x2a0
[  207.630158][ T6663]  do_new_mount+0x341/0xd30
[  207.630178][ T6663]  ? apparmor_capable+0x126/0x170
[  207.630205][ T6663]  ? __pfx_do_new_mount+0x10/0x10
[  207.630228][ T6663]  ? ns_capable+0x89/0xe0
[  207.630257][ T6663]  ? user_path_at+0xd4/0x160
[  207.630286][ T6663]  ? user_path_at+0xd4/0x160
[  207.630313][ T6663]  __se_sys_mount+0x31d/0x420
[  207.630339][ T6663]  ? __pfx___se_sys_mount+0x10/0x10
[  207.630368][ T6663]  ? __x64_sys_mount+0x20/0xc0
[  207.630389][ T6663]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.630407][ T6663]  do_syscall_64+0x15f/0xf80
[  207.630425][ T6663]  ? trace_irq_disable+0x3b/0x140
[  207.630452][ T6663]  ? clear_bhb_loop+0x40/0x90
[  207.630474][ T6663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.630492][ T6663] RIP: 0033:0x7f249f4ee04a
[  207.630511][ T6663] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  207.630527][ T6663] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  207.630547][ T6663] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  207.630559][ T6663] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  207.630572][ T6663] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  207.630585][ T6663] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  207.630598][ T6663] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  207.630628][ T6663]  </TASK>
[  207.633674][ T6663] gfs2: fsid=..s: Error checking journal for spectator mount.
[  207.688138][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.689995][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  207.774495][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  208.416488][ T6667] loop0: detected capacity change from 0 to 32768
[  208.424343][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.431380][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.432293][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.437227][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.438102][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.438763][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.439330][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.441367][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.445695][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.446883][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.447547][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.448281][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.449170][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.452650][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.453443][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.454148][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.455144][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.456055][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.457692][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.458481][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.462517][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.463352][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.464086][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.464761][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.465580][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.466357][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.468195][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.470580][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.472243][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.472933][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.473603][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.474392][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.474708][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.475164][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.476247][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.477502][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.520754][ T6667] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  208.520773][ T6667] gfs2: fsid=.: Now mounting FS (format 1801)...
[  208.547055][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.574913][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.576581][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.577348][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.578432][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.578813][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.579049][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.580730][ T6667] syz.0.55: attempt to access beyond end of device
[  208.580730][ T6667] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  208.580817][ T6667] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  208.580843][ T6667] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  208.580871][ T6667] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6667 [syz.0.55] init_journal+0x16d9/0x2280
[  208.580905][ T6667] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  208.580932][ T6667] CPU: 1 UID: 0 PID: 6667 Comm: syz.0.55 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  208.580952][ T6667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  208.580963][ T6667] Call Trace:
[  208.580970][ T6667]  <TASK>
[  208.580978][ T6667]  dump_stack_lvl+0xe8/0x150
[  208.581004][ T6667]  gfs2_withdraw+0xc3/0x1b0
[  208.581026][ T6667]  gfs2_jdesc_check+0x17d/0x2f0
[  208.581053][ T6667]  check_journal_clean+0x18d/0x360
[  208.581071][ T6667]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  208.581097][ T6667]  ? __pfx_check_journal_clean+0x10/0x10
[  208.581114][ T6667]  ? rt_spin_lock+0x1e0/0x400
[  208.581142][ T6667]  ? init_journal+0x16d9/0x2280
[  208.581171][ T6667]  ? rt_spin_unlock+0x160/0x200
[  208.581201][ T6667]  ? gfs2_jdesc_find+0xab/0xc0
[  208.581224][ T6667]  init_journal+0x16d9/0x2280
[  208.581244][ T6667]  ? rt_spin_lock+0x1e0/0x400
[  208.581279][ T6667]  ? init_inodes+0xdb/0x320
[  208.581300][ T6667]  ? __asan_memcpy+0x40/0x70
[  208.581327][ T6667]  ? __pfx_init_journal+0x10/0x10
[  208.581345][ T6667]  ? vsnprintf+0xe42/0xef0
[  208.581383][ T6667]  ? snprintf+0xe8/0x140
[  208.581402][ T6667]  ? init_inodes+0xdb/0x320
[  208.581422][ T6667]  ? __pfx_snprintf+0x10/0x10
[  208.581441][ T6667]  ? gfs2_glock_nq_num+0x13d/0x170
[  208.581467][ T6667]  init_inodes+0xdb/0x320
[  208.581490][ T6667]  gfs2_fill_super+0x1a92/0x2220
[  208.581524][ T6667]  ? __pfx_gfs2_fill_super+0x10/0x10
[  208.581541][ T6667]  ? rt_spin_unlock+0x14f/0x200
[  208.581571][ T6667]  ? init_locking+0xb8/0x210
[  208.581589][ T6667]  ? sb_set_blocksize+0x11b/0x210
[  208.581611][ T6667]  ? setup_bdev_super+0x4c1/0x5b0
[  208.581641][ T6667]  get_tree_bdev_flags+0x431/0x4f0
[  208.581675][ T6667]  ? __pfx_gfs2_fill_super+0x10/0x10
[  208.581694][ T6667]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  208.581720][ T6667]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  208.581755][ T6667]  gfs2_get_tree+0x51/0x1e0
[  208.581778][ T6667]  vfs_get_tree+0x92/0x2a0
[  208.581807][ T6667]  do_new_mount+0x341/0xd30
[  208.581827][ T6667]  ? apparmor_capable+0x126/0x170
[  208.581855][ T6667]  ? __pfx_do_new_mount+0x10/0x10
[  208.581877][ T6667]  ? ns_capable+0x89/0xe0
[  208.581907][ T6667]  ? user_path_at+0xd4/0x160
[  208.581935][ T6667]  ? user_path_at+0xd4/0x160
[  208.581961][ T6667]  __se_sys_mount+0x31d/0x420
[  208.581989][ T6667]  ? __pfx___se_sys_mount+0x10/0x10
[  208.582017][ T6667]  ? __x64_sys_mount+0x20/0xc0
[  208.582039][ T6667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.582058][ T6667]  do_syscall_64+0x15f/0xf80
[  208.582079][ T6667]  ? trace_irq_disable+0x3b/0x140
[  208.582107][ T6667]  ? clear_bhb_loop+0x40/0x90
[  208.582130][ T6667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.582149][ T6667] RIP: 0033:0x7f249f4ee04a
[  208.582166][ T6667] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  208.582182][ T6667] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  208.582202][ T6667] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  208.582216][ T6667] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  208.582228][ T6667] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  208.582240][ T6667] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  208.582253][ T6667] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  208.582281][ T6667]  </TASK>
[  208.584616][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.586533][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.587252][ T6667] gfs2: fsid=..s: Error checking journal for spectator mount.
[  208.617061][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.623805][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.627930][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.633135][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.645138][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.646522][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.649643][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.651411][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.653671][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.654483][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.655148][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.657386][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.658156][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.659876][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.663623][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.686185][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.688910][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.693593][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.694604][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.695487][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.696142][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.702049][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.702882][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.703579][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.706396][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.708754][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.709544][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.713408][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.713464][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.713493][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.713536][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.717336][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  208.797835][ T6065] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  209.407462][ T6671] loop0: detected capacity change from 0 to 32768
[  209.450416][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.457067][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.458961][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.463804][ T6671] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  209.463820][ T6671] gfs2: fsid=.: Now mounting FS (format 1801)...
[  209.485470][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.486399][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.487048][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.487650][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.488899][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.492762][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.496961][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.497898][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.498558][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.499144][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.501003][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.501811][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.502398][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.502991][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.503589][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.503736][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.513104][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.516371][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.516576][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.518052][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.525640][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.531409][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.533244][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.534702][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.534831][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.535175][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.535471][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.536311][ T6671] syz.0.56: attempt to access beyond end of device
[  209.536311][ T6671] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  209.536388][ T6671] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  209.536414][ T6671] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  209.536440][ T6671] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6671 [syz.0.56] init_journal+0x16d9/0x2280
[  209.536470][ T6671] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  209.536498][ T6671] CPU: 1 UID: 0 PID: 6671 Comm: syz.0.56 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  209.536520][ T6671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  209.536531][ T6671] Call Trace:
[  209.536538][ T6671]  <TASK>
[  209.536546][ T6671]  dump_stack_lvl+0xe8/0x150
[  209.536580][ T6671]  gfs2_withdraw+0xc3/0x1b0
[  209.536601][ T6671]  gfs2_jdesc_check+0x17d/0x2f0
[  209.536628][ T6671]  check_journal_clean+0x18d/0x360
[  209.536647][ T6671]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  209.536672][ T6671]  ? __pfx_check_journal_clean+0x10/0x10
[  209.536690][ T6671]  ? rt_spin_lock+0x1e0/0x400
[  209.536719][ T6671]  ? init_journal+0x16d9/0x2280
[  209.536748][ T6671]  ? rt_spin_unlock+0x160/0x200
[  209.536777][ T6671]  ? gfs2_jdesc_find+0xab/0xc0
[  209.536801][ T6671]  init_journal+0x16d9/0x2280
[  209.536820][ T6671]  ? rt_spin_lock+0x1e0/0x400
[  209.536855][ T6671]  ? init_inodes+0xdb/0x320
[  209.536876][ T6671]  ? __asan_memcpy+0x40/0x70
[  209.536899][ T6671]  ? __pfx_init_journal+0x10/0x10
[  209.536918][ T6671]  ? vsnprintf+0xe42/0xef0
[  209.536955][ T6671]  ? snprintf+0xe8/0x140
[  209.536974][ T6671]  ? init_inodes+0xdb/0x320
[  209.536998][ T6671]  ? __pfx_snprintf+0x10/0x10
[  209.537017][ T6671]  ? gfs2_glock_nq_num+0x13d/0x170
[  209.537042][ T6671]  init_inodes+0xdb/0x320
[  209.537064][ T6671]  gfs2_fill_super+0x1a92/0x2220
[  209.537098][ T6671]  ? __pfx_gfs2_fill_super+0x10/0x10
[  209.537116][ T6671]  ? rt_spin_unlock+0x14f/0x200
[  209.537146][ T6671]  ? init_locking+0xb8/0x210
[  209.537165][ T6671]  ? sb_set_blocksize+0x11b/0x210
[  209.537185][ T6671]  ? setup_bdev_super+0x4c1/0x5b0
[  209.537216][ T6671]  get_tree_bdev_flags+0x431/0x4f0
[  209.537245][ T6671]  ? __pfx_gfs2_fill_super+0x10/0x10
[  209.537264][ T6671]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  209.537290][ T6671]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  209.537342][ T6671]  gfs2_get_tree+0x51/0x1e0
[  209.537365][ T6671]  vfs_get_tree+0x92/0x2a0
[  209.537393][ T6671]  do_new_mount+0x341/0xd30
[  209.537413][ T6671]  ? apparmor_capable+0x126/0x170
[  209.537440][ T6671]  ? __pfx_do_new_mount+0x10/0x10
[  209.537462][ T6671]  ? ns_capable+0x89/0xe0
[  209.537492][ T6671]  ? user_path_at+0xd4/0x160
[  209.537520][ T6671]  ? user_path_at+0xd4/0x160
[  209.537547][ T6671]  __se_sys_mount+0x31d/0x420
[  209.537580][ T6671]  ? __pfx___se_sys_mount+0x10/0x10
[  209.537607][ T6671]  ? __x64_sys_mount+0x20/0xc0
[  209.537629][ T6671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.537650][ T6671]  do_syscall_64+0x15f/0xf80
[  209.537671][ T6671]  ? trace_irq_disable+0x3b/0x140
[  209.537698][ T6671]  ? clear_bhb_loop+0x40/0x90
[  209.537720][ T6671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.537738][ T6671] RIP: 0033:0x7f249f4ee04a
[  209.537757][ T6671] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  209.537772][ T6671] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  209.537792][ T6671] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  209.537805][ T6671] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  209.537816][ T6671] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  209.537829][ T6671] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  209.537841][ T6671] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  209.537871][ T6671]  </TASK>
[  209.545630][ T6671] gfs2: fsid=..s: Error checking journal for spectator mount.
[  209.565823][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.566682][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.568490][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.575701][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.580838][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.583689][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.587271][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.590950][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.597388][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.599633][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.601544][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.604870][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.604913][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.605383][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.608194][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.609498][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  209.712824][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  210.455083][ T6675] loop0: detected capacity change from 0 to 32768
[  210.463562][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.478988][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.479532][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.480598][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.481334][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.481994][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.482660][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.485857][ T6675] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  210.485873][ T6675] gfs2: fsid=.: Now mounting FS (format 1801)...
[  210.506862][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.507773][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.507820][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.516731][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.517889][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.518084][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.528528][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.530755][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.530773][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.531551][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.534459][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.535214][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.537126][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.537802][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.538571][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.539194][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.541464][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.542188][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.542992][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.543953][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.545092][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.545846][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.547308][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.548012][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.548793][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.549453][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.550263][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.550972][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.551656][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.552313][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.553713][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.554378][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.555066][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.555959][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.556260][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.557792][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.557849][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.558910][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.602118][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.604450][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.605658][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.876443][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.876950][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  210.877905][ T6675] syz.0.57: attempt to access beyond end of device
[  210.877905][ T6675] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  210.877986][ T6675] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  210.878013][ T6675] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  210.878041][ T6675] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6675 [syz.0.57] init_journal+0x16d9/0x2280
[  210.878077][ T6675] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  210.878105][ T6675] CPU: 0 UID: 0 PID: 6675 Comm: syz.0.57 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  210.878127][ T6675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  210.878139][ T6675] Call Trace:
[  210.878146][ T6675]  <TASK>
[  210.878155][ T6675]  dump_stack_lvl+0xe8/0x150
[  210.878182][ T6675]  gfs2_withdraw+0xc3/0x1b0
[  210.878204][ T6675]  gfs2_jdesc_check+0x17d/0x2f0
[  210.878233][ T6675]  check_journal_clean+0x18d/0x360
[  210.878251][ T6675]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  210.878278][ T6675]  ? __pfx_check_journal_clean+0x10/0x10
[  210.878297][ T6675]  ? rt_spin_lock+0x1e0/0x400
[  210.878456][ T6675]  ? init_journal+0x16d9/0x2280
[  210.878492][ T6675]  ? rt_spin_unlock+0x160/0x200
[  210.878524][ T6675]  ? gfs2_jdesc_find+0xab/0xc0
[  210.878550][ T6675]  init_journal+0x16d9/0x2280
[  210.878578][ T6675]  ? rt_spin_lock+0x1e0/0x400
[  210.878614][ T6675]  ? init_inodes+0xdb/0x320
[  210.878632][ T6675]  ? __asan_memcpy+0x40/0x70
[  210.878656][ T6675]  ? __pfx_init_journal+0x10/0x10
[  210.878676][ T6675]  ? vsnprintf+0xe42/0xef0
[  210.878723][ T6675]  ? snprintf+0xe8/0x140
[  210.878749][ T6675]  ? init_inodes+0xdb/0x320
[  210.878769][ T6675]  ? __pfx_snprintf+0x10/0x10
[  210.878797][ T6675]  ? gfs2_glock_nq_num+0x13d/0x170
[  210.878829][ T6675]  init_inodes+0xdb/0x320
[  210.878853][ T6675]  gfs2_fill_super+0x1a92/0x2220
[  210.878890][ T6675]  ? __pfx_gfs2_fill_super+0x10/0x10
[  210.878909][ T6675]  ? rt_spin_unlock+0x14f/0x200
[  210.878941][ T6675]  ? init_locking+0xb8/0x210
[  210.878959][ T6675]  ? sb_set_blocksize+0x11b/0x210
[  210.878984][ T6675]  ? setup_bdev_super+0x4c1/0x5b0
[  210.879016][ T6675]  get_tree_bdev_flags+0x431/0x4f0
[  210.879046][ T6675]  ? __pfx_gfs2_fill_super+0x10/0x10
[  210.879067][ T6675]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  210.879095][ T6675]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  210.879136][ T6675]  gfs2_get_tree+0x51/0x1e0
[  210.879162][ T6675]  vfs_get_tree+0x92/0x2a0
[  210.879194][ T6675]  do_new_mount+0x341/0xd30
[  210.879216][ T6675]  ? apparmor_capable+0x126/0x170
[  210.879246][ T6675]  ? __pfx_do_new_mount+0x10/0x10
2026/05/10 01:22:07 executed programs: 43
[  210.879270][ T6675]  ? ns_capable+0x89/0xe0
[  210.879303][ T6675]  ? user_path_at+0xd4/0x160
[  210.879334][ T6675]  ? user_path_at+0xd4/0x160
[  210.879371][ T6675]  __se_sys_mount+0x31d/0x420
[  210.879402][ T6675]  ? __pfx___se_sys_mount+0x10/0x10
[  210.879434][ T6675]  ? __x64_sys_mount+0x20/0xc0
[  210.879460][ T6675]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.879483][ T6675]  do_syscall_64+0x15f/0xf80
[  210.879511][ T6675]  ? trace_irq_disable+0x3b/0x140
[  210.879541][ T6675]  ? clear_bhb_loop+0x40/0x90
[  210.879565][ T6675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.879586][ T6675] RIP: 0033:0x7f249f4ee04a
[  210.879608][ T6675] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  210.879625][ T6675] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  210.879646][ T6675] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  210.879659][ T6675] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  210.879671][ T6675] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  210.879682][ T6675] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  210.879693][ T6675] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  210.879724][ T6675]  </TASK>
[  210.880502][ T6675] gfs2: fsid=..s: Error checking journal for spectator mount.
[  210.969733][ T6675] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  211.523162][ T6679] loop0: detected capacity change from 0 to 32768
[  211.525309][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.532588][ T6679] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  211.532605][ T6679] gfs2: fsid=.: Now mounting FS (format 1801)...
[  211.536053][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.536923][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.559432][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.559889][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.571013][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.574375][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.575363][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.579019][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.581282][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.582698][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.584425][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.585503][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.585624][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.587402][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.588645][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.589053][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.589314][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.590651][ T6679] syz.0.58: attempt to access beyond end of device
[  211.590651][ T6679] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  211.590736][ T6679] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  211.590764][ T6679] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  211.590792][ T6679] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6679 [syz.0.58] init_journal+0x16d9/0x2280
[  211.590827][ T6679] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  211.590855][ T6679] CPU: 0 UID: 0 PID: 6679 Comm: syz.0.58 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  211.590880][ T6679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  211.590891][ T6679] Call Trace:
[  211.590899][ T6679]  <TASK>
[  211.590907][ T6679]  dump_stack_lvl+0xe8/0x150
[  211.590933][ T6679]  gfs2_withdraw+0xc3/0x1b0
[  211.590954][ T6679]  gfs2_jdesc_check+0x17d/0x2f0
[  211.590981][ T6679]  check_journal_clean+0x18d/0x360
[  211.590999][ T6679]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  211.591025][ T6679]  ? __pfx_check_journal_clean+0x10/0x10
[  211.591043][ T6679]  ? rt_spin_lock+0x1e0/0x400
[  211.591071][ T6679]  ? init_journal+0x16d9/0x2280
[  211.591100][ T6679]  ? rt_spin_unlock+0x160/0x200
[  211.591130][ T6679]  ? gfs2_jdesc_find+0xab/0xc0
[  211.591154][ T6679]  init_journal+0x16d9/0x2280
[  211.591173][ T6679]  ? rt_spin_lock+0x1e0/0x400
[  211.591209][ T6679]  ? init_inodes+0xdb/0x320
[  211.591229][ T6679]  ? __asan_memcpy+0x40/0x70
[  211.591252][ T6679]  ? __pfx_init_journal+0x10/0x10
[  211.591271][ T6679]  ? vsnprintf+0xe42/0xef0
[  211.591316][ T6679]  ? snprintf+0xe8/0x140
[  211.591335][ T6679]  ? init_inodes+0xdb/0x320
[  211.591355][ T6679]  ? __pfx_snprintf+0x10/0x10
[  211.591373][ T6679]  ? gfs2_glock_nq_num+0x13d/0x170
[  211.591399][ T6679]  init_inodes+0xdb/0x320
[  211.591421][ T6679]  gfs2_fill_super+0x1a92/0x2220
[  211.591455][ T6679]  ? __pfx_gfs2_fill_super+0x10/0x10
[  211.591473][ T6679]  ? rt_spin_unlock+0x14f/0x200
[  211.591502][ T6679]  ? init_locking+0xb8/0x210
[  211.591520][ T6679]  ? sb_set_blocksize+0x11b/0x210
[  211.591542][ T6679]  ? setup_bdev_super+0x4c1/0x5b0
[  211.591572][ T6679]  get_tree_bdev_flags+0x431/0x4f0
[  211.591599][ T6679]  ? __pfx_gfs2_fill_super+0x10/0x10
[  211.591619][ T6679]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  211.591644][ T6679]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  211.591681][ T6679]  gfs2_get_tree+0x51/0x1e0
[  211.591703][ T6679]  vfs_get_tree+0x92/0x2a0
[  211.591733][ T6679]  do_new_mount+0x341/0xd30
[  211.591753][ T6679]  ? apparmor_capable+0x126/0x170
[  211.591779][ T6679]  ? __pfx_do_new_mount+0x10/0x10
[  211.591800][ T6679]  ? ns_capable+0x89/0xe0
[  211.591830][ T6679]  ? user_path_at+0xd4/0x160
[  211.591858][ T6679]  ? user_path_at+0xd4/0x160
[  211.591884][ T6679]  __se_sys_mount+0x31d/0x420
[  211.591911][ T6679]  ? __pfx___se_sys_mount+0x10/0x10
[  211.591940][ T6679]  ? __x64_sys_mount+0x20/0xc0
[  211.591961][ T6679]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.591981][ T6679]  do_syscall_64+0x15f/0xf80
[  211.592002][ T6679]  ? trace_irq_disable+0x3b/0x140
[  211.592030][ T6679]  ? clear_bhb_loop+0x40/0x90
[  211.592053][ T6679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.592071][ T6679] RIP: 0033:0x7f249f4ee04a
[  211.592089][ T6679] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  211.592105][ T6679] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  211.592125][ T6679] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  211.592139][ T6679] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  211.592152][ T6679] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  211.592164][ T6679] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  211.592177][ T6679] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  211.592206][ T6679]  </TASK>
[  211.592269][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.595203][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.595976][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.598840][ T6679] gfs2: fsid=..s: Error checking journal for spectator mount.
[  211.598960][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.613154][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.619444][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.621475][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.622782][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.635978][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.638112][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.644608][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.645918][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.649072][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.651965][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.652748][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.654927][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.655663][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.656704][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.659286][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.662988][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.663720][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.683387][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.683439][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.683469][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.685020][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.687742][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  211.811998][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  212.385523][ T6683] loop0: detected capacity change from 0 to 32768
[  212.388737][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.398739][ T6683] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  212.398757][ T6683] gfs2: fsid=.: Now mounting FS (format 1801)...
[  212.406733][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.407775][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.428586][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.429453][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.431512][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.434247][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.436864][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.437756][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.440162][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.440736][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.455432][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.459559][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.463938][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.466309][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.466362][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.467186][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.468919][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.469092][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.469382][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.470246][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.471149][ T6683] syz.0.59: attempt to access beyond end of device
[  212.471149][ T6683] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  212.471225][ T6683] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  212.471251][ T6683] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  212.471278][ T6683] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6683 [syz.0.59] init_journal+0x16d9/0x2280
[  212.471313][ T6683] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  212.471341][ T6683] CPU: 0 UID: 0 PID: 6683 Comm: syz.0.59 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  212.471361][ T6683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  212.471373][ T6683] Call Trace:
[  212.471380][ T6683]  <TASK>
[  212.471387][ T6683]  dump_stack_lvl+0xe8/0x150
[  212.471414][ T6683]  gfs2_withdraw+0xc3/0x1b0
[  212.471436][ T6683]  gfs2_jdesc_check+0x17d/0x2f0
[  212.471469][ T6683]  check_journal_clean+0x18d/0x360
[  212.471487][ T6683]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  212.471514][ T6683]  ? __pfx_check_journal_clean+0x10/0x10
[  212.471532][ T6683]  ? rt_spin_lock+0x1e0/0x400
[  212.471561][ T6683]  ? init_journal+0x16d9/0x2280
[  212.471589][ T6683]  ? rt_spin_unlock+0x160/0x200
[  212.471618][ T6683]  ? gfs2_jdesc_find+0xab/0xc0
[  212.471642][ T6683]  init_journal+0x16d9/0x2280
[  212.471661][ T6683]  ? rt_spin_lock+0x1e0/0x400
[  212.471697][ T6683]  ? init_inodes+0xdb/0x320
[  212.471717][ T6683]  ? __asan_memcpy+0x40/0x70
[  212.471740][ T6683]  ? __pfx_init_journal+0x10/0x10
[  212.471759][ T6683]  ? vsnprintf+0xe42/0xef0
[  212.471796][ T6683]  ? snprintf+0xe8/0x140
[  212.471818][ T6683]  ? init_inodes+0xdb/0x320
[  212.471836][ T6683]  ? __pfx_snprintf+0x10/0x10
[  212.471854][ T6683]  ? gfs2_glock_nq_num+0x13d/0x170
[  212.471879][ T6683]  init_inodes+0xdb/0x320
[  212.471901][ T6683]  gfs2_fill_super+0x1a92/0x2220
[  212.471936][ T6683]  ? __pfx_gfs2_fill_super+0x10/0x10
[  212.471954][ T6683]  ? rt_spin_unlock+0x14f/0x200
[  212.471981][ T6683]  ? init_locking+0xb8/0x210
[  212.472000][ T6683]  ? sb_set_blocksize+0x11b/0x210
[  212.472022][ T6683]  ? setup_bdev_super+0x4c1/0x5b0
[  212.472053][ T6683]  get_tree_bdev_flags+0x431/0x4f0
[  212.472080][ T6683]  ? __pfx_gfs2_fill_super+0x10/0x10
[  212.472100][ T6683]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  212.472125][ T6683]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  212.472162][ T6683]  gfs2_get_tree+0x51/0x1e0
[  212.472185][ T6683]  vfs_get_tree+0x92/0x2a0
[  212.472213][ T6683]  do_new_mount+0x341/0xd30
[  212.472233][ T6683]  ? apparmor_capable+0x126/0x170
[  212.472260][ T6683]  ? __pfx_do_new_mount+0x10/0x10
[  212.472282][ T6683]  ? ns_capable+0x89/0xe0
[  212.472311][ T6683]  ? user_path_at+0xd4/0x160
[  212.472344][ T6683]  ? user_path_at+0xd4/0x160
[  212.472370][ T6683]  __se_sys_mount+0x31d/0x420
[  212.472397][ T6683]  ? __pfx___se_sys_mount+0x10/0x10
[  212.472426][ T6683]  ? __x64_sys_mount+0x20/0xc0
[  212.472447][ T6683]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.472474][ T6683]  do_syscall_64+0x15f/0xf80
[  212.472495][ T6683]  ? trace_irq_disable+0x3b/0x140
[  212.472523][ T6683]  ? clear_bhb_loop+0x40/0x90
[  212.472545][ T6683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.472564][ T6683] RIP: 0033:0x7f249f4ee04a
[  212.472582][ T6683] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  212.472597][ T6683] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  212.472617][ T6683] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  212.472630][ T6683] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  212.472643][ T6683] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  212.472655][ T6683] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  212.472667][ T6683] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  212.472696][ T6683]  </TASK>
[  212.474712][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.478737][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.483315][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.483786][ T6683] gfs2: fsid=..s: Error checking journal for spectator mount.
[  212.499419][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.509765][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.512851][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.518837][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.540351][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.549407][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.551744][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.552424][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.553180][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.553799][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.562313][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.565828][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.566722][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.567424][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.569404][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.571982][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.572702][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.574323][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.574436][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.574581][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.576197][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.576415][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  212.690681][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  213.437722][ T6687] loop0: detected capacity change from 0 to 32768
[  213.441534][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.447838][ T6687] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  213.447856][ T6687] gfs2: fsid=.: Now mounting FS (format 1801)...
[  213.472683][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.472746][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.473408][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.478869][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.480436][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.490683][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.491859][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.493009][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.493717][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.494875][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.495623][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.496322][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.497000][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.497688][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.499239][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.501254][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.502377][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.503090][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.503766][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.505163][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.506031][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.508393][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.509151][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.511567][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.513251][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.514758][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.515466][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.516155][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.516849][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.518514][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.519301][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.521021][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.522000][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.522338][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.522830][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.523625][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.525287][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.570684][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.583577][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.583648][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.584956][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.588585][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.588996][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  213.592419][ T6687] syz.0.60: attempt to access beyond end of device
[  213.592419][ T6687] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  213.592509][ T6687] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  213.593184][ T6687] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  213.593213][ T6687] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6687 [syz.0.60] init_journal+0x16d9/0x2280
[  213.593248][ T6687] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  213.593275][ T6687] CPU: 0 UID: 0 PID: 6687 Comm: syz.0.60 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  213.593296][ T6687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  213.593307][ T6687] Call Trace:
[  213.593313][ T6687]  <TASK>
[  213.593321][ T6687]  dump_stack_lvl+0xe8/0x150
[  213.593347][ T6687]  gfs2_withdraw+0xc3/0x1b0
[  213.593370][ T6687]  gfs2_jdesc_check+0x17d/0x2f0
[  213.593397][ T6687]  check_journal_clean+0x18d/0x360
[  213.593414][ T6687]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  213.593440][ T6687]  ? __pfx_check_journal_clean+0x10/0x10
[  213.593457][ T6687]  ? rt_spin_lock+0x1e0/0x400
[  213.593487][ T6687]  ? init_journal+0x16d9/0x2280
[  213.593515][ T6687]  ? rt_spin_unlock+0x160/0x200
[  213.593544][ T6687]  ? gfs2_jdesc_find+0xab/0xc0
[  213.593568][ T6687]  init_journal+0x16d9/0x2280
[  213.593588][ T6687]  ? rt_spin_lock+0x1e0/0x400
[  213.593622][ T6687]  ? init_inodes+0xdb/0x320
[  213.593643][ T6687]  ? __asan_memcpy+0x40/0x70
[  213.593665][ T6687]  ? __pfx_init_journal+0x10/0x10
[  213.593685][ T6687]  ? vsnprintf+0xe42/0xef0
[  213.593722][ T6687]  ? snprintf+0xe8/0x140
[  213.593741][ T6687]  ? init_inodes+0xdb/0x320
[  213.593761][ T6687]  ? __pfx_snprintf+0x10/0x10
[  213.593780][ T6687]  ? gfs2_glock_nq_num+0x13d/0x170
[  213.593806][ T6687]  init_inodes+0xdb/0x320
[  213.593827][ T6687]  gfs2_fill_super+0x1a92/0x2220
[  213.593862][ T6687]  ? __pfx_gfs2_fill_super+0x10/0x10
[  213.593880][ T6687]  ? rt_spin_unlock+0x14f/0x200
[  213.593909][ T6687]  ? init_locking+0xb8/0x210
[  213.593927][ T6687]  ? sb_set_blocksize+0x11b/0x210
[  213.593948][ T6687]  ? setup_bdev_super+0x4c1/0x5b0
[  213.593978][ T6687]  get_tree_bdev_flags+0x431/0x4f0
[  213.594010][ T6687]  ? __pfx_gfs2_fill_super+0x10/0x10
[  213.594029][ T6687]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  213.594054][ T6687]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  213.594096][ T6687]  gfs2_get_tree+0x51/0x1e0
[  213.594119][ T6687]  vfs_get_tree+0x92/0x2a0
[  213.594152][ T6687]  do_new_mount+0x341/0xd30
[  213.594172][ T6687]  ? apparmor_capable+0x126/0x170
[  213.594199][ T6687]  ? __pfx_do_new_mount+0x10/0x10
[  213.594221][ T6687]  ? ns_capable+0x89/0xe0
[  213.594250][ T6687]  ? user_path_at+0xd4/0x160
[  213.594279][ T6687]  ? user_path_at+0xd4/0x160
[  213.594305][ T6687]  __se_sys_mount+0x31d/0x420
[  213.594333][ T6687]  ? __pfx___se_sys_mount+0x10/0x10
[  213.594360][ T6687]  ? __x64_sys_mount+0x20/0xc0
[  213.594381][ T6687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.594402][ T6687]  do_syscall_64+0x15f/0xf80
[  213.594423][ T6687]  ? trace_irq_disable+0x3b/0x140
[  213.594450][ T6687]  ? clear_bhb_loop+0x40/0x90
[  213.594472][ T6687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.594491][ T6687] RIP: 0033:0x7f249f4ee04a
[  213.594508][ T6687] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  213.594524][ T6687] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  213.594544][ T6687] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  213.594557][ T6687] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  213.594570][ T6687] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  213.594583][ T6687] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  213.594595][ T6687] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  213.594624][ T6687]  </TASK>
[  213.599882][ T6687] gfs2: fsid=..s: Error checking journal for spectator mount.
[  213.774831][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  214.310684][ T6691] loop0: detected capacity change from 0 to 32768
[  214.314032][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.324790][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.326508][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.328949][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.330406][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.332999][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.333743][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.334819][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.335420][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.336444][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.337081][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.337674][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.338277][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.338915][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.339601][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.341722][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.344364][ T6691] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  214.344380][ T6691] gfs2: fsid=.: Now mounting FS (format 1801)...
[  214.347805][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.352751][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.352982][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.362688][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.370991][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.375985][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.387137][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.389102][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.389164][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.391833][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.392039][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.392351][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.392634][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.393417][ T6691] syz.0.61: attempt to access beyond end of device
[  214.393417][ T6691] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  214.393509][ T6691] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  214.393536][ T6691] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  214.393563][ T6691] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6691 [syz.0.61] init_journal+0x16d9/0x2280
[  214.393599][ T6691] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  214.393627][ T6691] CPU: 0 UID: 0 PID: 6691 Comm: syz.0.61 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  214.393648][ T6691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  214.393660][ T6691] Call Trace:
[  214.393667][ T6691]  <TASK>
[  214.393675][ T6691]  dump_stack_lvl+0xe8/0x150
[  214.393701][ T6691]  gfs2_withdraw+0xc3/0x1b0
[  214.393723][ T6691]  gfs2_jdesc_check+0x17d/0x2f0
[  214.393751][ T6691]  check_journal_clean+0x18d/0x360
[  214.393769][ T6691]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  214.393795][ T6691]  ? __pfx_check_journal_clean+0x10/0x10
[  214.393813][ T6691]  ? rt_spin_lock+0x1e0/0x400
[  214.393842][ T6691]  ? init_journal+0x16d9/0x2280
[  214.393870][ T6691]  ? rt_spin_unlock+0x160/0x200
[  214.393900][ T6691]  ? gfs2_jdesc_find+0xab/0xc0
[  214.393926][ T6691]  init_journal+0x16d9/0x2280
[  214.393952][ T6691]  ? rt_spin_lock+0x1e0/0x400
[  214.393987][ T6691]  ? init_inodes+0xdb/0x320
[  214.394009][ T6691]  ? __asan_memcpy+0x40/0x70
[  214.394032][ T6691]  ? __pfx_init_journal+0x10/0x10
[  214.394049][ T6691]  ? vsnprintf+0xe42/0xef0
[  214.394087][ T6691]  ? snprintf+0xe8/0x140
[  214.394106][ T6691]  ? init_inodes+0xdb/0x320
[  214.394125][ T6691]  ? __pfx_snprintf+0x10/0x10
[  214.394144][ T6691]  ? gfs2_glock_nq_num+0x13d/0x170
[  214.394173][ T6691]  init_inodes+0xdb/0x320
[  214.394195][ T6691]  gfs2_fill_super+0x1a92/0x2220
[  214.394229][ T6691]  ? __pfx_gfs2_fill_super+0x10/0x10
[  214.394247][ T6691]  ? rt_spin_unlock+0x14f/0x200
[  214.394275][ T6691]  ? init_locking+0xb8/0x210
[  214.394294][ T6691]  ? sb_set_blocksize+0x11b/0x210
[  214.394315][ T6691]  ? setup_bdev_super+0x4c1/0x5b0
[  214.394346][ T6691]  get_tree_bdev_flags+0x431/0x4f0
[  214.394373][ T6691]  ? __pfx_gfs2_fill_super+0x10/0x10
[  214.394393][ T6691]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  214.394419][ T6691]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  214.394455][ T6691]  gfs2_get_tree+0x51/0x1e0
[  214.394478][ T6691]  vfs_get_tree+0x92/0x2a0
[  214.394507][ T6691]  do_new_mount+0x341/0xd30
[  214.394527][ T6691]  ? apparmor_capable+0x126/0x170
[  214.394554][ T6691]  ? __pfx_do_new_mount+0x10/0x10
[  214.394575][ T6691]  ? ns_capable+0x89/0xe0
[  214.394605][ T6691]  ? user_path_at+0xd4/0x160
[  214.394633][ T6691]  ? user_path_at+0xd4/0x160
[  214.394660][ T6691]  __se_sys_mount+0x31d/0x420
[  214.394687][ T6691]  ? __pfx___se_sys_mount+0x10/0x10
[  214.394716][ T6691]  ? __x64_sys_mount+0x20/0xc0
[  214.394737][ T6691]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.394757][ T6691]  do_syscall_64+0x15f/0xf80
[  214.394777][ T6691]  ? trace_irq_disable+0x3b/0x140
[  214.394803][ T6691]  ? clear_bhb_loop+0x40/0x90
[  214.394826][ T6691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.394844][ T6691] RIP: 0033:0x7f249f4ee04a
[  214.394861][ T6691] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  214.394876][ T6691] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  214.394895][ T6691] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  214.394909][ T6691] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  214.394922][ T6691] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  214.394940][ T6691] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  214.394953][ T6691] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  214.394981][ T6691]  </TASK>
[  214.395697][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.397161][ T6691] gfs2: fsid=..s: Error checking journal for spectator mount.
[  214.416082][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.417953][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.421564][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.425211][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.429108][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.430935][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.432755][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.437432][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.449519][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.452215][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.457511][ T2267] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.458512][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.459792][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.459843][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.486421][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.486543][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  214.619494][ T6292] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  215.195391][ T6695] loop0: detected capacity change from 0 to 32768
[  215.197054][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.202976][ T6695] gfs2: fsid=.: Trying to join cluster "lock_nolock", "."
[  215.202994][ T6695] gfs2: fsid=.: Now mounting FS (format 1801)...
[  215.211570][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.217571][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.218447][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.219606][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.221361][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.222046][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.222163][ T2348] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.222808][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.223424][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.224009][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.224616][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.226662][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.227285][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.228700][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.229357][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.231406][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.234423][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.235243][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.237372][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.238162][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.238823][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.239508][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.241316][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.242006][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.244264][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.244930][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.245590][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.246233][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.246857][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.247546][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.247611][ T1188] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.248468][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.249132][  T804] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.250918][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.251595][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.252298][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.253129][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.253432][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.253894][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.254764][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.256190][   T72] lo_rw_aio(loop0) starting read with raw_refcnt=0x0, refcnt=1
[  215.272192][ T6695] syz.0.62: attempt to access beyond end of device
[  215.272192][ T6695] loop0: rw=12288, sector=18446744073709551608, nr_sectors = 8 limit=32768
[  215.272281][ T6695] gfs2: fsid=..s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119
[  215.272308][ T6695] gfs2: fsid=..s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:4
[  215.272337][ T6695] gfs2: fsid=..s:  H: s:SH f:eEcH e:0 p:6695 [syz.0.62] init_journal+0x16d9/0x2280
[  215.272373][ T6695] gfs2: fsid=..s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  215.272401][ T6695] CPU: 1 UID: 0 PID: 6695 Comm: syz.0.62 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  215.272422][ T6695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  215.272433][ T6695] Call Trace:
[  215.272440][ T6695]  <TASK>
[  215.272448][ T6695]  dump_stack_lvl+0xe8/0x150
[  215.272476][ T6695]  gfs2_withdraw+0xc3/0x1b0
[  215.272499][ T6695]  gfs2_jdesc_check+0x17d/0x2f0
[  215.272528][ T6695]  check_journal_clean+0x18d/0x360
[  215.272546][ T6695]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  215.272570][ T6695]  ? __pfx_check_journal_clean+0x10/0x10
[  215.272586][ T6695]  ? rt_spin_lock+0x1e0/0x400
[  215.272612][ T6695]  ? init_journal+0x16d9/0x2280
[  215.272638][ T6695]  ? rt_spin_unlock+0x160/0x200
[  215.272664][ T6695]  ? gfs2_jdesc_find+0xab/0xc0
[  215.272691][ T6695]  init_journal+0x16d9/0x2280
[  215.272710][ T6695]  ? rt_spin_lock+0x1e0/0x400
[  215.272748][ T6695]  ? init_inodes+0xdb/0x320
[  215.272769][ T6695]  ? __asan_memcpy+0x40/0x70
[  215.272793][ T6695]  ? __pfx_init_journal+0x10/0x10
[  215.272812][ T6695]  ? vsnprintf+0xe42/0xef0
[  215.272851][ T6695]  ? snprintf+0xe8/0x140
[  215.272870][ T6695]  ? init_inodes+0xdb/0x320
[  215.272890][ T6695]  ? __pfx_snprintf+0x10/0x10
[  215.272909][ T6695]  ? gfs2_glock_nq_num+0x13d/0x170
[  215.272937][ T6695]  init_inodes+0xdb/0x320
[  215.272959][ T6695]  gfs2_fill_super+0x1a92/0x2220
[  215.272995][ T6695]  ? __pfx_gfs2_fill_super+0x10/0x10
[  215.273013][ T6695]  ? rt_spin_unlock+0x14f/0x200
[  215.273043][ T6695]  ? init_locking+0xb8/0x210
[  215.273062][ T6695]  ? sb_set_blocksize+0x11b/0x210
[  215.273082][ T6695]  ? setup_bdev_super+0x4c1/0x5b0
[  215.273113][ T6695]  get_tree_bdev_flags+0x431/0x4f0
[  215.273151][ T6695]  ? __pfx_gfs2_fill_super+0x10/0x10
[  215.273171][ T6695]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  215.273198][ T6695]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  215.273238][ T6695]  gfs2_get_tree+0x51/0x1e0
[  215.273260][ T6695]  vfs_get_tree+0x92/0x2a0
[  215.273290][ T6695]  do_new_mount+0x341/0xd30
[  215.273311][ T6695]  ? apparmor_capable+0x126/0x170
[  215.273339][ T6695]  ? __pfx_do_new_mount+0x10/0x10
[  215.273363][ T6695]  ? ns_capable+0x89/0xe0
[  215.273395][ T6695]  ? user_path_at+0xd4/0x160
[  215.273425][ T6695]  ? user_path_at+0xd4/0x160
[  215.273452][ T6695]  __se_sys_mount+0x31d/0x420
[  215.273480][ T6695]  ? __pfx___se_sys_mount+0x10/0x10
[  215.273509][ T6695]  ? __x64_sys_mount+0x20/0xc0
[  215.273531][ T6695]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.273552][ T6695]  do_syscall_64+0x15f/0xf80
[  215.273574][ T6695]  ? trace_irq_disable+0x3b/0x140
[  215.273604][ T6695]  ? clear_bhb_loop+0x40/0x90
[  215.273628][ T6695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.273646][ T6695] RIP: 0033:0x7f249f4ee04a
[  215.273665][ T6695] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  215.273680][ T6695] RSP: 002b:00007f249eb4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  215.273701][ T6695] RAX: ffffffffffffffda RBX: 00007f249eb4dee0 RCX: 00007f249f4ee04a
[  215.273715][ T6695] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f249eb4dea0
[  215.273728][ T6695] RBP: 0000200000000000 R08: 00007f249eb4dee0 R09: 0000000000208c1b
[  215.273741][ T6695] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  215.273753][ T6695] R13: 00007f249eb4dea0 R14: 0000000000012754 R15: 00002000000128c0
[  215.273785][ T6695]  </TASK>
[  215.288860][ T6695] gfs2: fsid=..s: Error checking journal for spectator mount.
[  215.341138][ T6695] __loop_clr_fd(loop0) clearing lo_backing_file with raw_refcnt=0x0, refcnt=1
[  216.010356][ T6699] ==================================================================
[  216.010368][ T6699] BUG: KASAN: slab-use-after-free in lru_add+0x265/0xee0
[  216.010388][ T6699] Read of size 8 at addr ffff888032130fc0 by task syz.0.63/6699
[  216.010398][ T6699] 
[  216.010405][ T6699] CPU: 1 UID: 0 PID: 6699 Comm: syz.0.63 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  216.010418][ T6699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  216.010424][ T6699] Call Trace:
[  216.010429][ T6699]  <TASK>
[  216.010434][ T6699]  dump_stack_lvl+0xe8/0x150
[  216.010448][ T6699]  print_address_description+0x55/0x1e0
[  216.010463][ T6699]  ? lru_add+0x265/0xee0
[  216.010472][ T6699]  print_report+0x58/0x70
[  216.010483][ T6699]  kasan_report+0x117/0x150
[  216.010500][ T6699]  ? lru_add+0x265/0xee0
[  216.010511][ T6699]  kasan_check_range+0x264/0x2c0
[  216.010526][ T6699]  ? lru_add+0x1a2/0xee0
[  216.010536][ T6699]  lru_add+0x265/0xee0
[  216.010546][ T6699]  folio_batch_move_lru+0x57a/0x8a0
[  216.010558][ T6699]  ? __pfx_lru_add+0x10/0x10
[  216.010568][ T6699]  ? __pfx_folio_batch_move_lru+0x10/0x10
[  216.010585][ T6699]  ? __pfx_rt_spin_lock+0x10/0x10
[  216.010600][ T6699]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  216.010616][ T6699]  ? __pfx_lru_add+0x10/0x10
[  216.010626][ T6699]  __folio_batch_add_and_move+0x446/0xa90
[  216.010636][ T6699]  ? __pfx_lru_add+0x10/0x10
[  216.010647][ T6699]  shmem_get_folio_gfp+0xb73/0x1a80
[  216.010666][ T6699]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  216.010680][ T6699]  ? folio_mapping+0x16f/0x1f0
[  216.010694][ T6699]  shmem_write_begin+0x166/0x320
[  216.010710][ T6699]  generic_perform_write+0x2af/0x8b0
[  216.010724][ T6699]  ? __pfx_generic_perform_write+0x10/0x10
[  216.010735][ T6699]  ? preempt_count_add+0x91/0x190
[  216.010751][ T6699]  ? mnt_put_write_access_file+0xbf/0x100
[  216.010769][ T6699]  ? file_update_time_flags+0x406/0x4b0
[  216.010785][ T6699]  shmem_file_write_iter+0xfb/0x120
[  216.010797][ T6699]  vfs_write+0x629/0xba0
[  216.010813][ T6699]  ? __pfx_vfs_write+0x10/0x10
[  216.010829][ T6699]  ? __fget_files+0x2a/0x420
[  216.010843][ T6699]  ksys_write+0x156/0x270
[  216.010857][ T6699]  ? __pfx_ksys_write+0x10/0x10
[  216.010873][ T6699]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.010884][ T6699]  do_syscall_64+0x15f/0xf80
[  216.010896][ T6699]  ? trace_irq_disable+0x3b/0x140
[  216.010912][ T6699]  ? clear_bhb_loop+0x40/0x90
[  216.010923][ T6699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.010933][ T6699] RIP: 0033:0x7f249f4ad60e
[  216.010944][ T6699] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  216.010953][ T6699] RSP: 002b:00007f249eb4dda8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  216.010966][ T6699] RAX: ffffffffffffffda RBX: 00007f249eb4e6c0 RCX: 00007f249f4ad60e
[  216.010974][ T6699] RDX: 0000000001000000 RSI: 00007f249672e000 RDI: 0000000000000003
[  216.010981][ T6699] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  216.010987][ T6699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[  216.010993][ T6699] R13: 00007f249eb4dee0 R14: 00007f249eb4dea0 R15: 00007f249672e000
[  216.011004][ T6699]  </TASK>
[  216.011008][ T6699] 
[  216.011011][ T6699] Allocated by task 6695:
[  216.011022][ T6699]  kasan_save_track+0x3e/0x80
[  216.011035][ T6699]  __kasan_slab_alloc+0x6c/0x80
[  216.011048][ T6699]  kmem_cache_alloc_noprof+0x33b/0x680
[  216.011061][ T6699]  gfs2_glock_get+0x27b/0xf50
[  216.011071][ T6699]  gfs2_inode_lookup+0x29f/0xc50
[  216.011081][ T6699]  gfs2_dir_search+0x168/0x220
[  216.011090][ T6699]  gfs2_lookupi+0x45e/0x640
[  216.011100][ T6699]  init_journal+0x592/0x2280
[  216.011109][ T6699]  init_inodes+0xdb/0x320
[  216.011118][ T6699]  gfs2_fill_super+0x1a92/0x2220
[  216.011127][ T6699]  get_tree_bdev_flags+0x431/0x4f0
[  216.011141][ T6699]  gfs2_get_tree+0x51/0x1e0
[  216.011149][ T6699]  vfs_get_tree+0x92/0x2a0
[  216.011163][ T6699]  do_new_mount+0x341/0xd30
[  216.011172][ T6699]  __se_sys_mount+0x31d/0x420
[  216.011188][ T6699]  do_syscall_64+0x15f/0xf80
[  216.011198][ T6699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.011207][ T6699] 
[  216.011209][ T6699] Freed by task 21:
[  216.011214][ T6699]  kasan_save_track+0x3e/0x80
[  216.011226][ T6699]  kasan_save_free_info+0x46/0x50
[  216.011236][ T6699]  __kasan_slab_free+0x5c/0x80
[  216.011248][ T6699]  kmem_cache_free+0x187/0x6c0
[  216.011262][ T6699]  rcu_cpu_kthread+0x99e/0x1470
[  216.011272][ T6699]  smpboot_thread_fn+0x541/0xa50
[  216.011281][ T6699]  kthread+0x388/0x470
[  216.011290][ T6699]  ret_from_fork+0x514/0xb70
[  216.011300][ T6699]  ret_from_fork_asm+0x1a/0x30
[  216.011313][ T6699] 
[  216.011315][ T6699] Last potentially related work creation:
[  216.011319][ T6699]  kasan_save_stack+0x3e/0x60
[  216.011331][ T6699]  kasan_record_aux_stack+0xbd/0xd0
[  216.011341][ T6699]  call_rcu+0xee/0x890
[  216.011351][ T6699]  gfs2_glock_free+0x3c/0xa0
[  216.011360][ T6699]  gfs2_evict_inode+0xe50/0x1430
[  216.011371][ T6699]  evict+0x61e/0xb10
[  216.011379][ T6699]  gfs2_jindex_free+0x3a4/0x450
[  216.011389][ T6699]  init_journal+0x8aa/0x2280
[  216.011398][ T6699]  init_inodes+0xdb/0x320
[  216.011407][ T6699]  gfs2_fill_super+0x1a92/0x2220
[  216.011416][ T6699]  get_tree_bdev_flags+0x431/0x4f0
[  216.011430][ T6699]  gfs2_get_tree+0x51/0x1e0
[  216.011439][ T6699]  vfs_get_tree+0x92/0x2a0
[  216.011452][ T6699]  do_new_mount+0x341/0xd30
[  216.011462][ T6699]  __se_sys_mount+0x31d/0x420
[  216.011472][ T6699]  do_syscall_64+0x15f/0xf80
[  216.011483][ T6699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.011492][ T6699] 
[  216.011494][ T6699] Second to last potentially related work creation:
[  216.011498][ T6699]  kasan_save_stack+0x3e/0x60
[  216.011509][ T6699]  kasan_record_aux_stack+0xbd/0xd0
[  216.011519][ T6699]  insert_work+0x3d/0x330
[  216.011531][ T6699]  __queue_work+0xcfd/0x1010
[  216.011545][ T6699]  queue_delayed_work_on+0x11a/0x1e0
[  216.011558][ T6699]  do_xmote+0x51b/0x760
[  216.011570][ T6699]  glock_work_func+0x2a8/0x580
[  216.011580][ T6699]  process_one_work+0x98b/0x1630
[  216.011592][ T6699]  worker_thread+0xb49/0x1140
[  216.011604][ T6699]  kthread+0x388/0x470
[  216.011613][ T6699]  ret_from_fork+0x514/0xb70
[  216.011623][ T6699]  ret_from_fork_asm+0x1a/0x30
[  216.011635][ T6699] 
[  216.011637][ T6699] The buggy address belongs to the object at ffff888032130b90
[  216.011637][ T6699]  which belongs to the cache gfs2_glock(aspace) of size 1352
[  216.011646][ T6699] The buggy address is located 1072 bytes inside of
[  216.011646][ T6699]  freed 1352-byte region [ffff888032130b90, ffff8880321310d8)
[  216.011657][ T6699] 
[  216.011659][ T6699] The buggy address belongs to the physical page:
[  216.011668][ T6699] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888032130000 pfn:0x32130
[  216.011681][ T6699] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  216.011690][ T6699] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[  216.011702][ T6699] page_type: f5(slab)
[  216.011712][ T6699] raw: 0080000000000240 ffff888140eaf640 ffffea000093ac10 ffffea0000ea0810
[  216.011721][ T6699] raw: ffff888032130000 0000000800160013 00000000f5000000 0000000000000000
[  216.011730][ T6699] head: 0080000000000240 ffff888140eaf640 ffffea000093ac10 ffffea0000ea0810
[  216.011738][ T6699] head: ffff888032130000 0000000800160013 00000000f5000000 0000000000000000
[  216.011746][ T6699] head: 0080000000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[  216.011754][ T6699] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000008
[  216.011760][ T6699] page dumped because: kasan: bad access detected
[  216.011770][ T6699] page_owner tracks the page as allocated
[  216.011774][ T6699] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6508, tgid 6507 (syz.0.17), ts 173691898969, free_ts 173448709962
[  216.011792][ T6699]  post_alloc_hook+0x1f9/0x250
[  216.011805][ T6699]  get_page_from_freelist+0x27d6/0x2850
[  216.011814][ T6699]  __alloc_frozen_pages_noprof+0x18d/0x380
[  216.011823][ T6699]  allocate_slab+0x74/0x5e0
[  216.011834][ T6699]  refill_objects+0x33c/0x3d0
[  216.011843][ T6699]  __pcs_replace_empty_main+0x373/0x720
[  216.011853][ T6699]  kmem_cache_alloc_noprof+0x433/0x680
[  216.011866][ T6699]  gfs2_glock_get+0x27b/0xf50
[  216.011876][ T6699]  gfs2_inode_lookup+0x29f/0xc50
[  216.011885][ T6699]  init_sb+0xa5a/0x12f0
[  216.011894][ T6699]  gfs2_fill_super+0x1739/0x2220
[  216.011903][ T6699]  get_tree_bdev_flags+0x431/0x4f0
[  216.011917][ T6699]  gfs2_get_tree+0x51/0x1e0
[  216.011925][ T6699]  vfs_get_tree+0x92/0x2a0
[  216.011938][ T6699]  do_new_mount+0x341/0xd30
[  216.011948][ T6699]  __se_sys_mount+0x31d/0x420
[  216.011963][ T6699] page last free pid 4980 tgid 4980 stack trace:
[  216.011968][ T6699]  __free_frozen_pages+0x1075/0x11b0
[  216.011982][ T6699]  __slab_free+0x252/0x2a0
[  216.011994][ T6699]  qlist_free_all+0x99/0x100
[  216.012006][ T6699]  kasan_quarantine_reduce+0x148/0x160
[  216.012022][ T6699]  __kasan_slab_alloc+0x22/0x80
[  216.012035][ T6699]  __kmalloc_noprof+0x399/0x7b0
[  216.012047][ T6699]  tomoyo_realpath_from_path+0xe3/0x5d0
[  216.012057][ T6699]  tomoyo_path_perm+0x283/0x560
[  216.012069][ T6699]  security_inode_getattr+0x12b/0x310
[  216.012080][ T6699]  __x64_sys_newfstat+0x13b/0x270
[  216.012091][ T6699]  do_syscall_64+0x15f/0xf80
[  216.012101][ T6699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.012110][ T6699] 
[  216.012112][ T6699] Memory state around the buggy address:
[  216.012117][ T6699]  ffff888032130e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  216.012124][ T6699]  ffff888032130f00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  216.012131][ T6699] >ffff888032130f80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  216.012136][ T6699]                                            ^
[  216.012141][ T6699]  ffff888032131000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  216.012147][ T6699]  ffff888032131080: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc
[  216.012152][ T6699] ==================================================================
[  216.012191][ T6699] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  216.012202][ T6699] CPU: 1 UID: 0 PID: 6699 Comm: syz.0.63 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  216.012214][ T6699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  216.012220][ T6699] Call Trace:
[  216.012224][ T6699]  <TASK>
[  216.012228][ T6699]  vpanic+0x56c/0xa60
[  216.012243][ T6699]  ? __pfx_vpanic+0x10/0x10
[  216.012256][ T6699]  ? __pfx___schedule+0x10/0x10
[  216.012268][ T6699]  panic+0xc5/0xd0
[  216.012281][ T6699]  ? __pfx_panic+0x10/0x10
[  216.012294][ T6699]  ? preempt_schedule_thunk+0x16/0x40
[  216.012306][ T6699]  ? lru_add+0x265/0xee0
[  216.012315][ T6699]  check_panic_on_warn+0x89/0xb0
[  216.012328][ T6699]  ? lru_add+0x265/0xee0
[  216.012337][ T6699]  end_report+0x73/0x170
[  216.012352][ T6699]  ? lru_add+0x265/0xee0
[  216.012361][ T6699]  kasan_report+0x128/0x150
[  216.012376][ T6699]  ? lru_add+0x265/0xee0
[  216.012388][ T6699]  kasan_check_range+0x264/0x2c0
[  216.012402][ T6699]  ? lru_add+0x1a2/0xee0
[  216.012412][ T6699]  lru_add+0x265/0xee0
[  216.012423][ T6699]  folio_batch_move_lru+0x57a/0x8a0
[  216.012434][ T6699]  ? __pfx_lru_add+0x10/0x10
[  216.012445][ T6699]  ? __pfx_folio_batch_move_lru+0x10/0x10
[  216.012461][ T6699]  ? __pfx_rt_spin_lock+0x10/0x10
[  216.012476][ T6699]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  216.012492][ T6699]  ? __pfx_lru_add+0x10/0x10
[  216.012502][ T6699]  __folio_batch_add_and_move+0x446/0xa90
[  216.012512][ T6699]  ? __pfx_lru_add+0x10/0x10
[  216.012523][ T6699]  shmem_get_folio_gfp+0xb73/0x1a80
[  216.012541][ T6699]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  216.012555][ T6699]  ? folio_mapping+0x16f/0x1f0
[  216.012569][ T6699]  shmem_write_begin+0x166/0x320
[  216.012585][ T6699]  generic_perform_write+0x2af/0x8b0
[  216.012598][ T6699]  ? __pfx_generic_perform_write+0x10/0x10
[  216.012610][ T6699]  ? preempt_count_add+0x91/0x190
[  216.012624][ T6699]  ? mnt_put_write_access_file+0xbf/0x100
[  216.012640][ T6699]  ? file_update_time_flags+0x406/0x4b0
[  216.012655][ T6699]  shmem_file_write_iter+0xfb/0x120
[  216.012666][ T6699]  vfs_write+0x629/0xba0
[  216.012682][ T6699]  ? __pfx_vfs_write+0x10/0x10
[  216.012697][ T6699]  ? __fget_files+0x2a/0x420
[  216.012711][ T6699]  ksys_write+0x156/0x270
[  216.012726][ T6699]  ? __pfx_ksys_write+0x10/0x10
[  216.012742][ T6699]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.012752][ T6699]  do_syscall_64+0x15f/0xf80
[  216.012763][ T6699]  ? trace_irq_disable+0x3b/0x140
[  216.012778][ T6699]  ? clear_bhb_loop+0x40/0x90
[  216.012789][ T6699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.012799][ T6699] RIP: 0033:0x7f249f4ad60e
[  216.012808][ T6699] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  216.012816][ T6699] RSP: 002b:00007f249eb4dda8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  216.012827][ T6699] RAX: ffffffffffffffda RBX: 00007f249eb4e6c0 RCX: 00007f249f4ad60e
[  216.012835][ T6699] RDX: 0000000001000000 RSI: 00007f249672e000 RDI: 0000000000000003
[  216.012841][ T6699] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  216.012848][ T6699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[  216.012854][ T6699] R13: 00007f249eb4dee0 R14: 00007f249eb4dea0 R15: 00007f249672e000
[  216.012864][ T6699]  </TASK>
[  216.013491][ T6699] Kernel Offset: disabled