[ 427.451792][ T6610] gfs2: fsid=syz:syz.0: warning: assertion "gfs2_log_is_empty(sdp)" failed - function = gfs2_make_fs_ro, file = fs/gfs2/super.c, line = 566
[ 427.466355][ T6610] CPU: 1 UID: 0 PID: 6610 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)
[ 427.466370][ T6610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 427.466376][ T6610] Call Trace:
[ 427.466379][ T6610]
[ 427.466383][ T6610] dump_stack_lvl+0x97/0xe0
[ 427.466400][ T6610] gfs2_assert_warn_i.cold+0x38/0x94
[ 427.466413][ T6610] gfs2_make_fs_ro+0x13d/0x220
[ 427.466424][ T6610] ? __pfx_autoremove_wake_function+0x10/0x10
[ 427.466440][ T6610] gfs2_put_super+0xb4/0x2d0
[ 427.466449][ T6610] ? __pfx_gfs2_put_super+0x10/0x10
[ 427.466460][ T6610] generic_shutdown_super+0xa4/0x160
[ 427.466473][ T6610] kill_block_super+0x1d/0x50
[ 427.466483][ T6610] gfs2_kill_sb+0x1b6/0x1e0
[ 427.466500][ T6610] deactivate_locked_super+0x4f/0x120
[ 427.466512][ T6610] deactivate_super+0xa4/0xc0
[ 427.466524][ T6610] cleanup_mnt+0x145/0x1f0
[ 427.466538][ T6610] task_work_run+0x95/0xf0
[ 427.466551][ T6610] exit_to_user_mode_loop+0xcf/0x440
[ 427.466569][ T6610] do_syscall_64+0x407/0xf80
[ 427.466587][ T6610] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 427.466599][ T6610] RIP: 0033:0x7f424b59c157
[ 427.466607][ T6610] Code: a2 c7 05 3c 84 23 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 427.466618][ T6610] RSP: 002b:00007ffe3d52a118 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 427.466635][ T6610] RAX: 0000000000000000 RBX: 00007f424b62f33b RCX: 00007f424b59c157
[ 427.466642][ T6610] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe3d52a1d0
[ 427.466648][ T6610] RBP: 00007ffe3d52a1d0 R08: 00007ffe3d52b1d0 R09: 00000000ffffffff
[ 427.466655][ T6610] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe3d52b260
[ 427.466661][ T6610] R13: 00007f424b62f33b R14: 0000000000067163 R15: 00007ffe3d52b2a0
[ 427.466670][ T6610]
[ 427.727724][ T7330] loop0: detected capacity change from 0 to 32768
[ 427.738488][ T7330] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 427.746982][ T7330] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 427.758681][ T7330] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 427.772735][ T794] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 427.779499][ T794] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 427.793124][ T794] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 427.800593][ T794] gfs2: fsid=syz:syz.0: jid=0: Done
[ 427.805911][ T7330] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 427.813962][ T7064] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 427.828736][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 427.828759][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 427.828769][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 427.828793][ T7064] Call Trace:
[ 427.828798][ T7064]
[ 427.828803][ T7064] dump_stack_lvl+0x97/0xe0
[ 427.828822][ T7064] gfs2_withdraw.cold+0xa/0x77
[ 427.828837][ T7064] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 427.828851][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 427.828872][ T7064] inode_go_inval+0x1df/0x1f0
[ 427.828893][ T7064] do_xmote+0x12a/0x310
[ 427.828916][ T7330] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 427.828912][ T7064] run_queue+0x288/0x300
[ 427.828932][ T7064] glock_work_func+0xac/0x280
[ 427.828950][ T7064] process_one_work+0x26c/0x5d0
[ 427.828970][ T7064] worker_thread+0x243/0x490
[ 427.828990][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 427.829008][ T7064] kthread+0x14e/0x1a0
[ 427.829031][ T7064] ? __pfx_kthread+0x10/0x10
[ 427.829053][ T7064] ret_from_fork+0x23c/0x4b0
[ 427.829075][ T7064] ? __pfx_kthread+0x10/0x10
[ 427.829098][ T7064] ret_from_fork_asm+0x1a/0x30
[ 427.829122][ T7064]
[ 427.829144][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 427.829163][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 427.829172][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 427.829192][ T7064] Call Trace:
[ 427.829195][ T7064]
[ 427.829200][ T7064] dump_stack_lvl+0x97/0xe0
[ 427.829219][ T7064] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 427.829235][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 427.829257][ T7064] inode_go_inval+0x1df/0x1f0
[ 427.829278][ T7064] do_xmote+0x12a/0x310
[ 427.829297][ T7064] run_queue+0x288/0x300
[ 427.829316][ T7064] glock_work_func+0xac/0x280
[ 427.829336][ T7064] process_one_work+0x26c/0x5d0
[ 427.829355][ T7064] worker_thread+0x243/0x490
[ 427.829372][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 427.829390][ T7064] kthread+0x14e/0x1a0
[ 427.829412][ T7064] ? __pfx_kthread+0x10/0x10
[ 427.829435][ T7064] ret_from_fork+0x23c/0x4b0
[ 427.829457][ T7064] ? __pfx_kthread+0x10/0x10
[ 427.829479][ T7064] ret_from_fork_asm+0x1a/0x30
[ 427.829502][ T7064]
Warning: Permanently added '10.128.0.176' (ED25519) to the list of known hosts.
[ 433.613911][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[ 433.620237][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[ 434.552032][ T7340] loop0: detected capacity change from 0 to 32768
[ 434.565109][ T7340] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 434.573337][ T7340] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 434.585634][ T7340] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 434.593711][ T795] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 434.600457][ T795] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 434.614070][ T795] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 434.621513][ T795] gfs2: fsid=syz:syz.0: jid=0: Done
[ 434.626743][ T7340] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 434.688364][ T6759] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 434.703691][ T5905] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 434.719134][ T794] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 434.734515][ T6774] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 434.750212][ T6759] CPU: 0 UID: 0 PID: 6759 Comm: kworker/0:4 Not tainted syzkaller #0 PREEMPT(full)
[ 434.750230][ T6759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 434.750240][ T6759] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 434.750266][ T6759] Call Trace:
[ 434.750272][ T6759]
[ 434.750278][ T6759] dump_stack_lvl+0x97/0xe0
[ 434.750299][ T6759] gfs2_meta_check_ii.cold+0xa/0x77
[ 434.750317][ T6759] gfs2_meta_buffer+0x1a2/0x1b0
[ 434.750336][ T6759] inode_go_instantiate+0x61/0x560
[ 434.750359][ T6759] gfs2_instantiate+0xa7/0x130
[ 434.750377][ T6759] gfs2_inode_lookup+0x49a/0x520
[ 434.750392][ T6759] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 434.750408][ T6759] gfs2_lookup_by_inum+0x2f/0xb0
[ 434.750422][ T6759] delete_work_func+0xa3/0x2d0
[ 434.750443][ T6759] ? wg_peer_put+0x8c/0xc0
[ 434.750467][ T6759] process_one_work+0x26c/0x5d0
[ 434.750488][ T6759] worker_thread+0x243/0x490
[ 434.750506][ T6759] ? __pfx_worker_thread+0x10/0x10
[ 434.750525][ T6759] kthread+0x14e/0x1a0
[ 434.750547][ T6759] ? __pfx_kthread+0x10/0x10
[ 434.750569][ T6759] ret_from_fork+0x23c/0x4b0
[ 434.750592][ T6759] ? __pfx_kthread+0x10/0x10
[ 434.750610][ T6759] ret_from_fork_asm+0x1a/0x30
[ 434.750627][ T6759]
[ 434.750631][ T6759] gfs2: fsid=syz:syz.0: about to withdraw this file system
Setting up swapspace version 1, size = 127995904 bytes
[ 439.698470][ T7338] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 439.728473][ T7348] chnl_net:caif_netlink_parms(): no params data found
[ 439.746656][ T7348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 439.753744][ T7348] bridge0: port 1(bridge_slave_0) entered disabled state
[ 439.760800][ T7348] bridge_slave_0: entered allmulticast mode
[ 439.767012][ T7348] bridge_slave_0: entered promiscuous mode
[ 439.773360][ T7348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 439.780453][ T7348] bridge0: port 2(bridge_slave_1) entered disabled state
[ 439.787632][ T7348] bridge_slave_1: entered allmulticast mode
[ 439.793759][ T7348] bridge_slave_1: entered promiscuous mode
[ 439.804110][ T7348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 439.813713][ T7348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 439.826885][ T7348] team0: Port device team_slave_0 added
[ 439.833194][ T7348] team0: Port device team_slave_1 added
[ 439.842684][ T7348] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 439.849673][ T7348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 439.875543][ T7348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 439.886507][ T7348] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 439.893447][ T7348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 439.919403][ T7348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 439.936115][ T7348] hsr_slave_0: entered promiscuous mode
[ 439.942588][ T6774] gfs2: fsid=syz:syz.0: file system withdrawn
[ 439.944822][ T7348] hsr_slave_1: entered promiscuous mode
[ 439.955548][ T7348] debugfs: 'hsr0' already exists in 'hsr'
[ 439.961769][ T7348] Cannot create hsr debugfs directory
[ 439.993922][ T7348] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 440.022954][ T7348] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 440.072896][ T7348] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 440.133072][ T7348] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 440.179535][ T7348] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 440.187182][ T7348] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 440.194642][ T7348] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 440.202143][ T7348] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 440.214071][ T7348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 440.221102][ T7348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 440.228342][ T7348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 440.235376][ T7348] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 440.252351][ T7348] 8021q: adding VLAN 0 to HW filter on device bond0
[ 440.260921][ T77] bridge0: port 1(bridge_slave_0) entered disabled state
[ 440.268268][ T77] bridge0: port 2(bridge_slave_1) entered disabled state
[ 440.277388][ T7348] 8021q: adding VLAN 0 to HW filter on device team0
[ 440.285572][ T34] bridge0: port 1(bridge_slave_0) entered blocking state
[ 440.292609][ T34] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 440.301266][ T77] bridge0: port 2(bridge_slave_1) entered blocking state
[ 440.308312][ T77] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 440.328677][ T7348] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 440.343896][ T7348] veth0_vlan: entered promiscuous mode
[ 440.350671][ T7348] veth1_vlan: entered promiscuous mode
[ 440.361454][ T7348] veth0_macvtap: entered promiscuous mode
[ 440.368236][ T7348] veth1_macvtap: entered promiscuous mode
[ 440.377242][ T7348] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 440.386557][ T7348] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 440.395654][ T77] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 440.404383][ T77] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 440.413574][ T77] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
executing program
[ 440.422494][ T77] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 440.502178][ T7361] loop0: detected capacity change from 0 to 32768
[ 440.517179][ T7361] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 440.525398][ T7361] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 440.536176][ T7361] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 440.544059][ T6759] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 440.550808][ T6759] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 440.564127][ T6759] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 440.571531][ T6759] gfs2: fsid=syz:syz.0: jid=0: Done
[ 440.576907][ T7361] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 440.585045][ T6849] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 440.591852][ T7361] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 440.600156][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full)
[ 440.600175][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 440.600186][ T6849] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 440.600211][ T6849] Call Trace:
[ 440.600215][ T6849]
[ 440.600220][ T6849] dump_stack_lvl+0x97/0xe0
[ 440.600241][ T6849] gfs2_withdraw.cold+0xa/0x77
[ 440.600257][ T6849] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 440.600273][ T6849] ? __pfx_inode_go_inval+0x10/0x10
[ 440.600295][ T6849] inode_go_inval+0x1df/0x1f0
[ 440.600316][ T6849] do_xmote+0x12a/0x310
[ 440.600336][ T6849] run_queue+0x288/0x300
[ 440.600355][ T6849] glock_work_func+0xac/0x280
[ 440.600374][ T6849] process_one_work+0x26c/0x5d0
[ 440.600393][ T6849] worker_thread+0x243/0x490
[ 440.600419][ T6849] ? __pfx_worker_thread+0x10/0x10
[ 440.600437][ T6849] kthread+0x14e/0x1a0
[ 440.600459][ T6849] ? __pfx_kthread+0x10/0x10
[ 440.600482][ T6849] ret_from_fork+0x23c/0x4b0
[ 440.600504][ T6849] ? __pfx_kthread+0x10/0x10
[ 440.600526][ T6849] ret_from_fork_asm+0x1a/0x30
[ 440.600550][ T6849]
[ 440.600556][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full)
[ 440.600574][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 440.600583][ T6849] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 440.600602][ T6849] Call Trace:
[ 440.600606][ T6849]
[ 440.600610][ T6849] dump_stack_lvl+0x97/0xe0
[ 440.600629][ T6849] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 440.600646][ T6849] ? __pfx_inode_go_inval+0x10/0x10
[ 440.600667][ T6849] inode_go_inval+0x1df/0x1f0
[ 440.600688][ T6849] do_xmote+0x12a/0x310
[ 440.600707][ T6849] run_queue+0x288/0x300
[ 440.600726][ T6849] glock_work_func+0xac/0x280
[ 440.600746][ T6849] process_one_work+0x26c/0x5d0
[ 440.600764][ T6849] worker_thread+0x243/0x490
[ 440.600782][ T6849] ? __pfx_worker_thread+0x10/0x10
[ 440.600800][ T6849] kthread+0x14e/0x1a0
[ 440.600822][ T6849] ? __pfx_kthread+0x10/0x10
[ 440.600844][ T6849] ret_from_fork+0x23c/0x4b0
[ 440.600866][ T6849] ? __pfx_kthread+0x10/0x10
[ 440.600889][ T6849] ret_from_fork_asm+0x1a/0x30
[ 440.600912][ T6849]
[ 440.829237][ T7361] CPU: 1 UID: 0 PID: 7361 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 440.829256][ T7361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 440.829265][ T7361] Call Trace:
[ 440.829269][ T7361]
[ 440.829275][ T7361] dump_stack_lvl+0x97/0xe0
[ 440.829297][ T7361] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 440.829314][ T7361] inode_go_inval+0x1df/0x1f0
[ 440.829336][ T7361] gfs2_make_fs_rw+0x34/0xf0
[ 440.829350][ T7361] gfs2_fill_super+0xfbb/0x1210
[ 440.829381][ T7361] ? gfs2_fill_super+0xa23/0x1210
[ 440.829403][ T7361] ? setup_bdev_super+0x19d/0x330
[ 440.829421][ T7361] ? __pfx_gfs2_fill_super+0x10/0x10
[ 440.829443][ T7361] get_tree_bdev_flags+0x1c0/0x290
[ 440.829463][ T7361] gfs2_get_tree+0x26/0xd0
[ 440.829484][ T7361] vfs_get_tree+0x30/0x120
[ 440.829500][ T7361] path_mount+0x5a9/0x1360
[ 440.829525][ T7361] __x64_sys_mount+0x1a3/0x1e0
[ 440.829551][ T7361] do_syscall_64+0xe2/0xf80
[ 440.829574][ T7361] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 440.829590][ T7361] RIP: 0033:0x7f610c33132a
[ 440.829600][ T7361] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 440.829612][ T7361] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 440.829623][ T7361] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 440.829630][ T7361] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 440.829643][ T7361] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 440.829650][ T7361] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 440.829656][ T7361] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 440.829664][ T7361]
[ 440.829767][ T7361] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 446.835206][ T7367] loop0: detected capacity change from 0 to 32768
[ 446.844560][ T7367] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 446.853050][ T7367] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 446.866812][ T7367] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 446.874696][ T795] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 446.881440][ T795] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 446.894641][ T795] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 446.902171][ T795] gfs2: fsid=syz:syz.0: jid=0: Done
[ 446.907368][ T7367] gfs2: fsid=syz:syz.0: first mount done, others may mount
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 446.972806][ T6774] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 446.988333][ T6759] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 447.003629][ T5905] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 447.018988][ T5905] CPU: 0 UID: 0 PID: 5905 Comm: kworker/0:3 Not tainted syzkaller #0 PREEMPT(full)
[ 447.019007][ T5905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 447.019016][ T5905] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 447.019040][ T5905] Call Trace:
[ 447.019044][ T5905]
[ 447.019049][ T5905] dump_stack_lvl+0x97/0xe0
[ 447.019068][ T5905] gfs2_meta_check_ii.cold+0xa/0x77
[ 447.019085][ T5905] gfs2_meta_buffer+0x1a2/0x1b0
[ 447.019103][ T5905] inode_go_instantiate+0x61/0x560
[ 447.019125][ T5905] gfs2_instantiate+0xa7/0x130
[ 447.019141][ T5905] gfs2_inode_lookup+0x49a/0x520
[ 447.019157][ T5905] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 447.019171][ T5905] gfs2_lookup_by_inum+0x2f/0xb0
[ 447.019184][ T5905] delete_work_func+0xa3/0x2d0
[ 447.019203][ T5905] ? wg_peer_put+0x8c/0xc0
[ 447.019226][ T5905] process_one_work+0x26c/0x5d0
[ 447.019244][ T5905] worker_thread+0x243/0x490
[ 447.019261][ T5905] ? __pfx_worker_thread+0x10/0x10
[ 447.019279][ T5905] kthread+0x14e/0x1a0
[ 447.019298][ T5905] ? __pfx_kthread+0x10/0x10
[ 447.019314][ T5905] ret_from_fork+0x23c/0x4b0
[ 447.019330][ T5905] ? __pfx_kthread+0x10/0x10
[ 447.019346][ T5905] ret_from_fork_asm+0x1a/0x30
[ 447.019363][ T5905]
[ 447.019428][ T5905] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 452.172567][ T6774] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[ 457.764311][ T7377] loop0: detected capacity change from 0 to 32768
[ 457.772472][ T7377] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 457.782185][ T7377] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 457.796573][ T7377] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 457.804525][ T6774] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 457.811276][ T6774] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 457.824533][ T6774] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 457.832010][ T6774] gfs2: fsid=syz:syz.0: jid=0: Done
[ 457.837235][ T7377] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 457.845211][ T7064] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 457.860205][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 457.860224][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 457.860234][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 457.860254][ T7064] Call Trace:
[ 457.860257][ T7064]
[ 457.860261][ T7064] dump_stack_lvl+0x97/0xe0
[ 457.860276][ T7064] gfs2_withdraw.cold+0xa/0x77
[ 457.860287][ T7064] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 457.860298][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 457.860313][ T7064] inode_go_inval+0x1df/0x1f0
[ 457.860328][ T7064] do_xmote+0x12a/0x310
[ 457.860342][ T7064] run_queue+0x288/0x300
[ 457.860361][ T7064] glock_work_func+0xac/0x280
[ 457.860375][ T7064] process_one_work+0x26c/0x5d0
[ 457.860389][ T7064] worker_thread+0x243/0x490
[ 457.860401][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 457.860414][ T7064] kthread+0x14e/0x1a0
[ 457.860435][ T7064] ? __pfx_kthread+0x10/0x10
[ 457.860451][ T7064] ret_from_fork+0x23c/0x4b0
[ 457.860467][ T7064] ? __pfx_kthread+0x10/0x10
[ 457.860483][ T7064] ret_from_fork_asm+0x1a/0x30
[ 457.860500][ T7064]
[ 457.860505][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 457.860517][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 457.860523][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 457.860537][ T7064] Call Trace:
[ 457.860539][ T7064]
[ 457.860542][ T7064] dump_stack_lvl+0x97/0xe0
[ 457.860554][ T7064] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 457.860566][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 457.860584][ T7064] inode_go_inval+0x1df/0x1f0
[ 457.860599][ T7064] do_xmote+0x12a/0x310
[ 457.860613][ T7064] run_queue+0x288/0x300
[ 457.860626][ T7064] glock_work_func+0xac/0x280
[ 457.860640][ T7064] process_one_work+0x26c/0x5d0
[ 457.860652][ T7064] worker_thread+0x243/0x490
[ 457.860664][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 457.860677][ T7064] kthread+0x14e/0x1a0
[ 457.860692][ T7064] ? __pfx_kthread+0x10/0x10
[ 457.860708][ T7064] ret_from_fork+0x23c/0x4b0
[ 457.860723][ T7064] ? __pfx_kthread+0x10/0x10
[ 457.860739][ T7064] ret_from_fork_asm+0x1a/0x30
[ 457.860757][ T7064]
[ 457.860953][ T7377] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 463.756820][ T7388] loop0: detected capacity change from 0 to 32768
[ 463.772526][ T7388] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 463.780685][ T7388] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 463.791876][ T7388] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 463.800079][ T5905] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 463.806954][ T5905] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 463.823686][ T5905] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 16ms
[ 463.831101][ T5905] gfs2: fsid=syz:syz.0: jid=0: Done
[ 463.836555][ T7388] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 463.898298][ T794] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 463.913871][ T6759] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 463.929261][ T5905] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 463.944585][ T6774] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 463.959926][ T794] CPU: 0 UID: 0 PID: 794 Comm: kworker/0:2 Not tainted syzkaller #0 PREEMPT(full)
[ 463.959945][ T794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 463.959955][ T794] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 463.959980][ T794] Call Trace:
[ 463.959985][ T794]
[ 463.959990][ T794] dump_stack_lvl+0x97/0xe0
[ 463.960011][ T794] gfs2_meta_check_ii.cold+0xa/0x77
[ 463.960028][ T794] gfs2_meta_buffer+0x1a2/0x1b0
[ 463.960047][ T794] inode_go_instantiate+0x61/0x560
[ 463.960070][ T794] gfs2_instantiate+0xa7/0x130
[ 463.960087][ T794] gfs2_inode_lookup+0x49a/0x520
[ 463.960103][ T794] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 463.960118][ T794] gfs2_lookup_by_inum+0x2f/0xb0
[ 463.960133][ T794] delete_work_func+0xa3/0x2d0
[ 463.960154][ T794] ? wg_peer_put+0x8c/0xc0
[ 463.960179][ T794] process_one_work+0x26c/0x5d0
[ 463.960198][ T794] worker_thread+0x243/0x490
[ 463.960217][ T794] ? __pfx_worker_thread+0x10/0x10
[ 463.960235][ T794] kthread+0x14e/0x1a0
[ 463.960258][ T794] ? __pfx_kthread+0x10/0x10
[ 463.960286][ T794] ret_from_fork+0x23c/0x4b0
[ 463.960306][ T794] ? __pfx_kthread+0x10/0x10
[ 463.960330][ T794] ret_from_fork_asm+0x1a/0x30
[ 463.960354][ T794]
[ 463.960358][ T794] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 469.132526][ T10] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[ 474.731052][ T7397] loop0: detected capacity change from 0 to 32768
[ 474.741455][ T7397] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 474.749775][ T7397] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 474.762086][ T7397] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 474.770826][ T5823] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 474.777806][ T5823] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 474.792505][ T5823] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 14ms
[ 474.799986][ T5823] gfs2: fsid=syz:syz.0: jid=0: Done
[ 474.805270][ T7397] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 474.873426][ T23] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 474.888735][ T6751] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 474.904318][ T795] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 474.919613][ T5823] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 474.934912][ T23] CPU: 1 UID: 0 PID: 23 Comm: kworker/1:0 Not tainted syzkaller #0 PREEMPT(full)
[ 474.934930][ T23] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 474.934940][ T23] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 474.934966][ T23] Call Trace:
[ 474.934971][ T23]
[ 474.934977][ T23] dump_stack_lvl+0x97/0xe0
[ 474.934998][ T23] gfs2_meta_check_ii.cold+0xa/0x77
[ 474.935016][ T23] gfs2_meta_buffer+0x1a2/0x1b0
[ 474.935035][ T23] inode_go_instantiate+0x61/0x560
[ 474.935059][ T23] gfs2_instantiate+0xa7/0x130
[ 474.935076][ T23] gfs2_inode_lookup+0x49a/0x520
[ 474.935092][ T23] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 474.935107][ T23] gfs2_lookup_by_inum+0x2f/0xb0
[ 474.935128][ T23] delete_work_func+0xa3/0x2d0
[ 474.935155][ T23] ? wg_peer_put+0x8c/0xc0
[ 474.935179][ T23] process_one_work+0x26c/0x5d0
[ 474.935196][ T23] worker_thread+0x243/0x490
[ 474.935213][ T23] ? __pfx_worker_thread+0x10/0x10
[ 474.935231][ T23] kthread+0x14e/0x1a0
[ 474.935255][ T23] ? __pfx_kthread+0x10/0x10
[ 474.935275][ T23] ret_from_fork+0x23c/0x4b0
[ 474.935297][ T23] ? __pfx_kthread+0x10/0x10
[ 474.935318][ T23] ret_from_fork_asm+0x1a/0x30
[ 474.935341][ T23]
[ 474.935347][ T23] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 480.092503][ T5823] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[ 485.675994][ T7405] loop0: detected capacity change from 0 to 32768
[ 485.685832][ T7405] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 485.694130][ T7405] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 485.706831][ T7405] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 485.714839][ T5905] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 485.721633][ T5905] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 485.735090][ T5905] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 485.742506][ T5905] gfs2: fsid=syz:syz.0: jid=0: Done
[ 485.747688][ T7405] gfs2: fsid=syz:syz.0: first mount done, others may mount
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 485.812566][ T5905] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 485.827898][ T6774] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 485.843207][ T10] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 485.858521][ T794] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 485.874004][ T6774] CPU: 0 UID: 0 PID: 6774 Comm: kworker/0:5 Not tainted syzkaller #0 PREEMPT(full)
[ 485.874025][ T6774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 485.874035][ T6774] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 485.874059][ T6774] Call Trace:
[ 485.874064][ T6774]
[ 485.874068][ T6774] dump_stack_lvl+0x97/0xe0
[ 485.874088][ T6774] gfs2_meta_check_ii.cold+0xa/0x77
[ 485.874105][ T6774] gfs2_meta_buffer+0x1a2/0x1b0
[ 485.874124][ T6774] inode_go_instantiate+0x61/0x560
[ 485.874146][ T6774] gfs2_instantiate+0xa7/0x130
[ 485.874162][ T6774] gfs2_inode_lookup+0x49a/0x520
[ 485.874177][ T6774] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 485.874192][ T6774] gfs2_lookup_by_inum+0x2f/0xb0
[ 485.874207][ T6774] delete_work_func+0xa3/0x2d0
[ 485.874228][ T6774] ? wg_peer_put+0x8c/0xc0
[ 485.874252][ T6774] process_one_work+0x26c/0x5d0
[ 485.874272][ T6774] worker_thread+0x243/0x490
[ 485.874291][ T6774] ? __pfx_worker_thread+0x10/0x10
[ 485.874309][ T6774] kthread+0x14e/0x1a0
[ 485.874340][ T6774] ? __pfx_kthread+0x10/0x10
[ 485.874365][ T6774] ret_from_fork+0x23c/0x4b0
[ 485.874389][ T6774] ? __pfx_kthread+0x10/0x10
[ 485.874412][ T6774] ret_from_fork_asm+0x1a/0x30
[ 485.874437][ T6774]
[ 485.874442][ T6774] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 491.051683][ T7348] gfs2: fsid=syz:syz.0: warning: assertion "gfs2_log_is_empty(sdp)" failed - function = gfs2_make_fs_ro, file = fs/gfs2/super.c, line = 566
[ 491.065946][ T7348] CPU: 1 UID: 0 PID: 7348 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 491.065961][ T7348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 491.065968][ T7348] Call Trace:
[ 491.065973][ T7348]
[ 491.065977][ T7348] dump_stack_lvl+0x97/0xe0
[ 491.065994][ T7348] gfs2_assert_warn_i.cold+0x38/0x94
[ 491.066007][ T7348] gfs2_make_fs_ro+0x13d/0x220
[ 491.066018][ T7348] ? __pfx_autoremove_wake_function+0x10/0x10
[ 491.066034][ T7348] gfs2_put_super+0xb4/0x2d0
[ 491.066043][ T7348] ? __pfx_gfs2_put_super+0x10/0x10
[ 491.066053][ T7348] generic_shutdown_super+0xa4/0x160
[ 491.066066][ T7348] kill_block_super+0x1d/0x50
[ 491.066077][ T7348] gfs2_kill_sb+0x1b6/0x1e0
[ 491.066093][ T7348] deactivate_locked_super+0x4f/0x120
[ 491.066106][ T7348] deactivate_super+0xa4/0xc0
[ 491.066118][ T7348] cleanup_mnt+0x145/0x1f0
[ 491.066132][ T7348] task_work_run+0x95/0xf0
[ 491.066144][ T7348] exit_to_user_mode_loop+0xcf/0x440
[ 491.066162][ T7348] do_syscall_64+0x407/0xf80
[ 491.066180][ T7348] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 491.066192][ T7348] RIP: 0033:0x7f610c3312f7
[ 491.066201][ T7348] Code: a2 c7 05 68 85 0c 00 00 00 00 00 eb 96 e8 c1 08 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8
[ 491.066212][ T7348] RSP: 002b:00007ffe85282fc8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[ 491.066222][ T7348] RAX: 0000000000000000 RBX: 00000000000768dc RCX: 00007f610c3312f7
[ 491.066229][ T7348] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe85283080
[ 491.066235][ T7348] RBP: 00007ffe85283080 R08: 00007ffe85284080 R09: 00000000ffffffff
[ 491.066242][ T7348] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffe85284110
[ 491.066249][ T7348] R13: 00005555634807f0 R14: 00007ffe852840d8 R15: 00007ffe85284110
[ 491.066257][ T7348]
[ 495.052252][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[ 495.058517][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
executing program
[ 496.842073][ T7413] loop0: detected capacity change from 0 to 32768
[ 496.857018][ T7413] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 496.865470][ T7413] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 496.876925][ T7413] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 496.885129][ T6774] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 496.892223][ T6774] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 496.905957][ T6774] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 496.913675][ T6774] gfs2: fsid=syz:syz.0: jid=0: Done
[ 496.919063][ T7413] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 496.927393][ T7413] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 496.942260][ T7413] CPU: 0 UID: 0 PID: 7413 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 496.942280][ T7413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 496.942288][ T7413] Call Trace:
[ 496.942292][ T7413]
[ 496.942297][ T7413] dump_stack_lvl+0x97/0xe0
[ 496.942321][ T7413] gfs2_withdraw.cold+0xa/0x77
[ 496.942336][ T7413] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 496.942351][ T7413] inode_go_inval+0x1df/0x1f0
[ 496.942374][ T7413] gfs2_make_fs_rw+0x34/0xf0
[ 496.942388][ T7413] gfs2_fill_super+0xfbb/0x1210
[ 496.942412][ T7413] ? gfs2_fill_super+0xa23/0x1210
[ 496.942435][ T7413] ? setup_bdev_super+0x19d/0x330
[ 496.942449][ T7413] ? __pfx_gfs2_fill_super+0x10/0x10
[ 496.942466][ T7413] get_tree_bdev_flags+0x1c0/0x290
[ 496.942480][ T7413] gfs2_get_tree+0x26/0xd0
[ 496.942495][ T7413] vfs_get_tree+0x30/0x120
[ 496.942506][ T7413] path_mount+0x5a9/0x1360
[ 496.942524][ T7413] __x64_sys_mount+0x1a3/0x1e0
[ 496.942541][ T7413] do_syscall_64+0xe2/0xf80
[ 496.942558][ T7413] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 496.942570][ T7413] RIP: 0033:0x7f610c33132a
[ 496.942578][ T7413] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 496.942589][ T7413] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 496.942599][ T7413] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 496.942606][ T7413] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 496.942613][ T7413] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 496.942620][ T7413] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 496.942626][ T7413] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 496.942634][ T7413]
[ 496.942638][ T7413] CPU: 0 UID: 0 PID: 7413 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 496.942651][ T7413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 496.942657][ T7413] Call Trace:
[ 496.942659][ T7413]
[ 496.942662][ T7413] dump_stack_lvl+0x97/0xe0
[ 496.942675][ T7413] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 496.942686][ T7413] inode_go_inval+0x1df/0x1f0
[ 496.942701][ T7413] gfs2_make_fs_rw+0x34/0xf0
[ 496.942710][ T7413] gfs2_fill_super+0xfbb/0x1210
[ 496.942727][ T7413] ? gfs2_fill_super+0xa23/0x1210
[ 496.942743][ T7413] ? setup_bdev_super+0x19d/0x330
[ 496.942753][ T7413] ? __pfx_gfs2_fill_super+0x10/0x10
[ 496.942770][ T7413] get_tree_bdev_flags+0x1c0/0x290
[ 496.942783][ T7413] gfs2_get_tree+0x26/0xd0
[ 496.942798][ T7413] vfs_get_tree+0x30/0x120
[ 496.942808][ T7413] path_mount+0x5a9/0x1360
[ 496.942825][ T7413] __x64_sys_mount+0x1a3/0x1e0
[ 496.942842][ T7413] do_syscall_64+0xe2/0xf80
[ 496.942858][ T7413] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 496.942869][ T7413] RIP: 0033:0x7f610c33132a
[ 496.942875][ T7413] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 496.942885][ T7413] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 496.942894][ T7413] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 496.942901][ T7413] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 496.942907][ T7413] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 496.942914][ T7413] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 496.942920][ T7413] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 496.942928][ T7413]
[ 496.943018][ T7413] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 502.949340][ T7419] loop0: detected capacity change from 0 to 32768
[ 502.966809][ T7419] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 502.975282][ T7419] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 502.986324][ T7419] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 502.994319][ T6774] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 503.001064][ T6774] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 503.014348][ T6774] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 503.021820][ T6774] gfs2: fsid=syz:syz.0: jid=0: Done
[ 503.027023][ T7419] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 503.035249][ T6849] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 503.050048][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full)
[ 503.050066][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 503.050075][ T6849] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 503.050099][ T6849] Call Trace:
[ 503.050104][ T6849]
[ 503.050109][ T6849] dump_stack_lvl+0x97/0xe0
[ 503.050129][ T6849] gfs2_withdraw.cold+0xa/0x77
[ 503.050145][ T6849] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 503.050160][ T6849] ? __pfx_inode_go_inval+0x10/0x10
[ 503.050181][ T6849] inode_go_inval+0x1df/0x1f0
[ 503.050201][ T6849] do_xmote+0x12a/0x310
[ 503.050220][ T6849] run_queue+0x288/0x300
[ 503.050240][ T6849] glock_work_func+0xac/0x280
[ 503.050261][ T6849] process_one_work+0x26c/0x5d0
[ 503.050281][ T6849] worker_thread+0x243/0x490
[ 503.050301][ T6849] ? __pfx_worker_thread+0x10/0x10
[ 503.050320][ T6849] kthread+0x14e/0x1a0
[ 503.050341][ T6849] ? __pfx_kthread+0x10/0x10
[ 503.050364][ T6849] ret_from_fork+0x23c/0x4b0
[ 503.050386][ T6849] ? __pfx_kthread+0x10/0x10
[ 503.050409][ T6849] ret_from_fork_asm+0x1a/0x30
[ 503.050433][ T6849]
[ 503.050440][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: kworker/1:2H Not tainted syzkaller #0 PREEMPT(full)
[ 503.050457][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 503.050466][ T6849] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 503.050486][ T6849] Call Trace:
[ 503.050490][ T6849]
[ 503.050514][ T6849] dump_stack_lvl+0x97/0xe0
[ 503.050533][ T6849] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 503.050550][ T6849] ? __pfx_inode_go_inval+0x10/0x10
[ 503.050571][ T6849] inode_go_inval+0x1df/0x1f0
[ 503.050593][ T6849] do_xmote+0x12a/0x310
[ 503.050612][ T6849] run_queue+0x288/0x300
[ 503.050631][ T6849] glock_work_func+0xac/0x280
[ 503.050652][ T6849] process_one_work+0x26c/0x5d0
[ 503.050670][ T6849] worker_thread+0x243/0x490
[ 503.050688][ T6849] ? __pfx_worker_thread+0x10/0x10
[ 503.050707][ T6849] kthread+0x14e/0x1a0
[ 503.050729][ T6849] ? __pfx_kthread+0x10/0x10
[ 503.050752][ T6849] ret_from_fork+0x23c/0x4b0
[ 503.050775][ T6849] ? __pfx_kthread+0x10/0x10
[ 503.050799][ T6849] ret_from_fork_asm+0x1a/0x30
[ 503.050824][ T6849]
[ 503.050987][ T7419] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 508.903388][ T7426] loop0: detected capacity change from 0 to 32768
[ 508.911695][ T7426] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 508.919839][ T7426] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 508.932612][ T7426] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 508.940471][ T794] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 508.947244][ T794] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 508.960606][ T794] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 508.968087][ T794] gfs2: fsid=syz:syz.0: jid=0: Done
[ 508.973309][ T7426] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 509.032417][ T10] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 509.047722][ T794] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 509.063106][ T5905] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 509.078391][ T6774] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 509.093715][ T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted syzkaller #0 PREEMPT(full)
[ 509.093735][ T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 509.093746][ T10] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 509.093772][ T10] Call Trace:
[ 509.093776][ T10]
[ 509.093782][ T10] dump_stack_lvl+0x97/0xe0
[ 509.093803][ T10] gfs2_meta_check_ii.cold+0xa/0x77
[ 509.093821][ T10] gfs2_meta_buffer+0x1a2/0x1b0
[ 509.093839][ T10] inode_go_instantiate+0x61/0x560
[ 509.093859][ T10] gfs2_instantiate+0xa7/0x130
[ 509.093876][ T10] gfs2_inode_lookup+0x49a/0x520
[ 509.093892][ T10] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 509.093908][ T10] gfs2_lookup_by_inum+0x2f/0xb0
[ 509.093923][ T10] delete_work_func+0xa3/0x2d0
[ 509.093943][ T10] ? wg_peer_put+0x8c/0xc0
[ 509.093969][ T10] process_one_work+0x26c/0x5d0
[ 509.093989][ T10] worker_thread+0x243/0x490
[ 509.094008][ T10] ? __pfx_worker_thread+0x10/0x10
[ 509.094026][ T10] kthread+0x14e/0x1a0
[ 509.094049][ T10] ? __pfx_kthread+0x10/0x10
[ 509.094072][ T10] ret_from_fork+0x23c/0x4b0
[ 509.094096][ T10] ? __pfx_kthread+0x10/0x10
[ 509.094119][ T10] ret_from_fork_asm+0x1a/0x30
[ 509.094143][ T10]
[ 509.094148][ T10] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 514.252479][ T6759] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[ 519.909992][ T7435] loop0: detected capacity change from 0 to 32768
[ 519.921739][ T7435] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 519.930318][ T7435] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 519.944042][ T7435] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 519.953106][ T10] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 519.959937][ T10] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 519.976622][ T10] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 16ms
[ 519.984068][ T10] gfs2: fsid=syz:syz.0: jid=0: Done
[ 519.989262][ T7435] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 519.997325][ T7425] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 520.012664][ T7425] CPU: 1 UID: 0 PID: 7425 Comm: kworker/1:0H Not tainted syzkaller #0 PREEMPT(full)
[ 520.012685][ T7425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 520.012695][ T7425] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 520.012720][ T7425] Call Trace:
[ 520.012724][ T7425]
[ 520.012729][ T7425] dump_stack_lvl+0x97/0xe0
[ 520.012750][ T7425] gfs2_withdraw.cold+0xa/0x77
[ 520.012767][ T7425] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 520.012785][ T7425] ? __pfx_inode_go_inval+0x10/0x10
[ 520.012807][ T7425] inode_go_inval+0x1df/0x1f0
[ 520.012829][ T7425] do_xmote+0x12a/0x310
[ 520.012850][ T7425] run_queue+0x288/0x300
[ 520.012869][ T7425] glock_work_func+0xac/0x280
[ 520.012888][ T7425] process_one_work+0x26c/0x5d0
[ 520.012907][ T7425] worker_thread+0x243/0x490
[ 520.012926][ T7425] ? __pfx_worker_thread+0x10/0x10
[ 520.012944][ T7425] kthread+0x14e/0x1a0
[ 520.012967][ T7425] ? __pfx_kthread+0x10/0x10
[ 520.012991][ T7425] ret_from_fork+0x23c/0x4b0
[ 520.013014][ T7425] ? __pfx_kthread+0x10/0x10
[ 520.013038][ T7425] ret_from_fork_asm+0x1a/0x30
[ 520.013062][ T7425]
[ 520.013070][ T7425] CPU: 1 UID: 0 PID: 7425 Comm: kworker/1:0H Not tainted syzkaller #0 PREEMPT(full)
[ 520.013089][ T7425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 520.013099][ T7425] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 520.013119][ T7425] Call Trace:
[ 520.013123][ T7425]
[ 520.013128][ T7425] dump_stack_lvl+0x97/0xe0
[ 520.013148][ T7425] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 520.013174][ T7425] ? __pfx_inode_go_inval+0x10/0x10
[ 520.013199][ T7425] inode_go_inval+0x1df/0x1f0
[ 520.013221][ T7425] do_xmote+0x12a/0x310
[ 520.013242][ T7425] run_queue+0x288/0x300
[ 520.013262][ T7425] glock_work_func+0xac/0x280
[ 520.013283][ T7425] process_one_work+0x26c/0x5d0
[ 520.013304][ T7425] worker_thread+0x243/0x490
[ 520.013323][ T7425] ? __pfx_worker_thread+0x10/0x10
[ 520.013343][ T7425] kthread+0x14e/0x1a0
[ 520.013366][ T7435] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 520.013366][ T7425] ? __pfx_kthread+0x10/0x10
[ 520.013389][ T7425] ret_from_fork+0x23c/0x4b0
[ 520.013410][ T7425] ? __pfx_kthread+0x10/0x10
[ 520.013433][ T7425] ret_from_fork_asm+0x1a/0x30
[ 520.013457][ T7425]
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 525.918065][ T7447] loop0: detected capacity change from 0 to 32768
[ 525.926499][ T7447] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 525.934800][ T7447] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 525.945470][ T7447] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 525.953440][ T6759] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 525.960183][ T6759] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 525.973302][ T6759] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 525.980713][ T6759] gfs2: fsid=syz:syz.0: jid=0: Done
[ 525.985998][ T7447] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 525.994260][ T7447] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 526.009158][ T7447] CPU: 0 UID: 0 PID: 7447 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 526.009179][ T7447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 526.009188][ T7447] Call Trace:
[ 526.009192][ T7447]
[ 526.009200][ T7447] dump_stack_lvl+0x97/0xe0
[ 526.009218][ T7447] gfs2_withdraw.cold+0xa/0x77
[ 526.009230][ T7447] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 526.009241][ T7447] inode_go_inval+0x1df/0x1f0
[ 526.009257][ T7447] gfs2_make_fs_rw+0x34/0xf0
[ 526.009267][ T7447] gfs2_fill_super+0xfbb/0x1210
[ 526.009284][ T7447] ? gfs2_fill_super+0xa23/0x1210
[ 526.009300][ T7447] ? setup_bdev_super+0x19d/0x330
[ 526.009312][ T7447] ? __pfx_gfs2_fill_super+0x10/0x10
[ 526.009328][ T7447] get_tree_bdev_flags+0x1c0/0x290
[ 526.009348][ T7447] gfs2_get_tree+0x26/0xd0
[ 526.009363][ T7447] vfs_get_tree+0x30/0x120
[ 526.009374][ T7447] path_mount+0x5a9/0x1360
[ 526.009392][ T7447] __x64_sys_mount+0x1a3/0x1e0
[ 526.009409][ T7447] do_syscall_64+0xe2/0xf80
[ 526.009427][ T7447] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 526.009438][ T7447] RIP: 0033:0x7f610c33132a
[ 526.009446][ T7447] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 526.009457][ T7447] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 526.009467][ T7447] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 526.009475][ T7447] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 526.009481][ T7447] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 526.009488][ T7447] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 526.009494][ T7447] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 526.009502][ T7447]
[ 526.009517][ T7447] CPU: 0 UID: 0 PID: 7447 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 526.009535][ T7447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 526.009543][ T7447] Call Trace:
[ 526.009546][ T7447]
[ 526.009551][ T7447] dump_stack_lvl+0x97/0xe0
[ 526.009566][ T7447] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 526.009577][ T7447] inode_go_inval+0x1df/0x1f0
[ 526.009593][ T7447] gfs2_make_fs_rw+0x34/0xf0
[ 526.009602][ T7447] gfs2_fill_super+0xfbb/0x1210
[ 526.009619][ T7447] ? gfs2_fill_super+0xa23/0x1210
[ 526.009635][ T7447] ? setup_bdev_super+0x19d/0x330
[ 526.009646][ T7447] ? __pfx_gfs2_fill_super+0x10/0x10
[ 526.009663][ T7447] get_tree_bdev_flags+0x1c0/0x290
[ 526.009676][ T7447] gfs2_get_tree+0x26/0xd0
[ 526.009691][ T7447] vfs_get_tree+0x30/0x120
[ 526.009701][ T7447] path_mount+0x5a9/0x1360
[ 526.009718][ T7447] __x64_sys_mount+0x1a3/0x1e0
[ 526.009735][ T7447] do_syscall_64+0xe2/0xf80
[ 526.009752][ T7447] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 526.009763][ T7447] RIP: 0033:0x7f610c33132a
[ 526.009770][ T7447] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 526.009780][ T7447] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 526.009789][ T7447] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 526.009796][ T7447] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 526.009803][ T7447] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 526.009809][ T7447] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 526.009816][ T7447] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 526.009824][ T7447]
[ 526.009929][ T7447] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 532.111010][ T7454] loop0: detected capacity change from 0 to 32768
[ 532.123051][ T7454] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 532.131205][ T7454] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 532.143508][ T7454] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 532.157168][ T5823] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 532.163953][ T5823] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 532.177919][ T5823] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 532.185359][ T5823] gfs2: fsid=syz:syz.0: jid=0: Done
[ 532.190546][ T7454] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 532.198278][ T7425] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 532.213088][ T7425] CPU: 1 UID: 0 PID: 7425 Comm: kworker/1:0H Not tainted syzkaller #0 PREEMPT(full)
[ 532.213101][ T7425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 532.213109][ T7425] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 532.213127][ T7425] Call Trace:
[ 532.213131][ T7425]
[ 532.213134][ T7425] dump_stack_lvl+0x97/0xe0
[ 532.213148][ T7425] gfs2_withdraw.cold+0xa/0x77
[ 532.213159][ T7425] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 532.213171][ T7425] ? __pfx_inode_go_inval+0x10/0x10
[ 532.213186][ T7425] inode_go_inval+0x1df/0x1f0
[ 532.213201][ T7425] do_xmote+0x12a/0x310
[ 532.213215][ T7425] run_queue+0x288/0x300
[ 532.213228][ T7425] glock_work_func+0xac/0x280
[ 532.213242][ T7425] process_one_work+0x26c/0x5d0
[ 532.213256][ T7425] worker_thread+0x243/0x490
[ 532.213268][ T7425] ? __pfx_worker_thread+0x10/0x10
[ 532.213280][ T7425] kthread+0x14e/0x1a0
[ 532.213297][ T7425] ? __pfx_kthread+0x10/0x10
[ 532.213312][ T7425] ret_from_fork+0x23c/0x4b0
[ 532.213329][ T7425] ? __pfx_kthread+0x10/0x10
[ 532.213345][ T7425] ret_from_fork_asm+0x1a/0x30
[ 532.213361][ T7425]
[ 532.213366][ T7425] CPU: 1 UID: 0 PID: 7425 Comm: kworker/1:0H Not tainted syzkaller #0 PREEMPT(full)
[ 532.213377][ T7425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 532.213384][ T7425] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 532.213400][ T7425] Call Trace:
[ 532.213403][ T7425]
[ 532.213408][ T7425] dump_stack_lvl+0x97/0xe0
[ 532.213427][ T7425] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 532.213441][ T7425] ? __pfx_inode_go_inval+0x10/0x10
[ 532.213456][ T7425] inode_go_inval+0x1df/0x1f0
[ 532.213472][ T7425] do_xmote+0x12a/0x310
[ 532.213485][ T7425] run_queue+0x288/0x300
[ 532.213498][ T7425] glock_work_func+0xac/0x280
[ 532.213512][ T7425] process_one_work+0x26c/0x5d0
[ 532.213525][ T7425] worker_thread+0x243/0x490
[ 532.213537][ T7425] ? __pfx_worker_thread+0x10/0x10
[ 532.213549][ T7425] kthread+0x14e/0x1a0
[ 532.213565][ T7425] ? __pfx_kthread+0x10/0x10
[ 532.213581][ T7425] ret_from_fork+0x23c/0x4b0
[ 532.213596][ T7425] ? __pfx_kthread+0x10/0x10
[ 532.213612][ T7425] ret_from_fork_asm+0x1a/0x30
[ 532.213628][ T7425]
[ 532.213951][ T7454] gfs2: fsid=syz:syz.0: can't lock the freeze glock: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 538.105175][ T7461] loop0: detected capacity change from 0 to 32768
[ 538.114931][ T7461] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 538.125000][ T7461] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 538.135687][ T7461] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 538.143545][ T5823] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 538.150285][ T5823] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 538.163909][ T5823] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 538.171311][ T5823] gfs2: fsid=syz:syz.0: jid=0: Done
[ 538.176651][ T7461] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 538.184876][ T7461] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 538.199795][ T7461] CPU: 1 UID: 0 PID: 7461 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 538.199814][ T7461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 538.199822][ T7461] Call Trace:
[ 538.199826][ T7461]
[ 538.199831][ T7461] dump_stack_lvl+0x97/0xe0
[ 538.199852][ T7461] gfs2_withdraw.cold+0xa/0x77
[ 538.199869][ T7461] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 538.199886][ T7461] inode_go_inval+0x1df/0x1f0
[ 538.199909][ T7461] gfs2_make_fs_rw+0x34/0xf0
[ 538.199923][ T7461] gfs2_fill_super+0xfbb/0x1210
[ 538.199945][ T7461] ? gfs2_fill_super+0xa23/0x1210
[ 538.199962][ T7461] ? setup_bdev_super+0x19d/0x330
[ 538.199974][ T7461] ? __pfx_gfs2_fill_super+0x10/0x10
[ 538.199990][ T7461] get_tree_bdev_flags+0x1c0/0x290
[ 538.200004][ T7461] gfs2_get_tree+0x26/0xd0
[ 538.200019][ T7461] vfs_get_tree+0x30/0x120
[ 538.200030][ T7461] path_mount+0x5a9/0x1360
[ 538.200048][ T7461] __x64_sys_mount+0x1a3/0x1e0
[ 538.200065][ T7461] do_syscall_64+0xe2/0xf80
[ 538.200082][ T7461] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 538.200093][ T7461] RIP: 0033:0x7f610c33132a
[ 538.200102][ T7461] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 538.200113][ T7461] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 538.200123][ T7461] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 538.200130][ T7461] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 538.200137][ T7461] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 538.200143][ T7461] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 538.200149][ T7461] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 538.200157][ T7461]
[ 538.200162][ T7461] CPU: 1 UID: 0 PID: 7461 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 538.200174][ T7461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 538.200180][ T7461] Call Trace:
[ 538.200183][ T7461]
[ 538.200186][ T7461] dump_stack_lvl+0x97/0xe0
[ 538.200200][ T7461] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 538.200211][ T7461] inode_go_inval+0x1df/0x1f0
[ 538.200226][ T7461] gfs2_make_fs_rw+0x34/0xf0
[ 538.200235][ T7461] gfs2_fill_super+0xfbb/0x1210
[ 538.200252][ T7461] ? gfs2_fill_super+0xa23/0x1210
[ 538.200268][ T7461] ? setup_bdev_super+0x19d/0x330
[ 538.200279][ T7461] ? __pfx_gfs2_fill_super+0x10/0x10
[ 538.200295][ T7461] get_tree_bdev_flags+0x1c0/0x290
[ 538.200308][ T7461] gfs2_get_tree+0x26/0xd0
[ 538.200323][ T7461] vfs_get_tree+0x30/0x120
[ 538.200333][ T7461] path_mount+0x5a9/0x1360
[ 538.200350][ T7461] __x64_sys_mount+0x1a3/0x1e0
[ 538.200368][ T7461] do_syscall_64+0xe2/0xf80
[ 538.200384][ T7461] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 538.200394][ T7461] RIP: 0033:0x7f610c33132a
[ 538.200401][ T7461] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 538.200411][ T7461] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 538.200420][ T7461] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 538.200426][ T7461] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 538.200433][ T7461] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 538.200445][ T7461] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 538.200451][ T7461] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 538.200461][ T7461]
[ 538.200562][ T7461] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 544.222788][ T7468] loop0: detected capacity change from 0 to 32768
[ 544.236071][ T7468] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 544.247199][ T7468] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 544.258775][ T7468] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 544.266906][ T23] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 544.273746][ T23] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 544.286884][ T23] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 544.294695][ T23] gfs2: fsid=syz:syz.0: jid=0: Done
[ 544.299974][ T7468] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 544.358017][ T5823] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 544.373318][ T795] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 544.388702][ T6751] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 544.403980][ T23] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 544.419262][ T5823] CPU: 1 UID: 0 PID: 5823 Comm: kworker/1:3 Not tainted syzkaller #0 PREEMPT(full)
[ 544.419280][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 544.419290][ T5823] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 544.419315][ T5823] Call Trace:
[ 544.419319][ T5823]
[ 544.419324][ T5823] dump_stack_lvl+0x97/0xe0
[ 544.419343][ T5823] gfs2_meta_check_ii.cold+0xa/0x77
[ 544.419359][ T5823] gfs2_meta_buffer+0x1a2/0x1b0
[ 544.419378][ T5823] inode_go_instantiate+0x61/0x560
[ 544.419401][ T5823] gfs2_instantiate+0xa7/0x130
[ 544.419418][ T5823] gfs2_inode_lookup+0x49a/0x520
[ 544.419434][ T5823] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 544.419450][ T5823] gfs2_lookup_by_inum+0x2f/0xb0
[ 544.419464][ T5823] delete_work_func+0xa3/0x2d0
[ 544.419485][ T5823] ? wg_peer_put+0x8c/0xc0
[ 544.419511][ T5823] process_one_work+0x26c/0x5d0
[ 544.419531][ T5823] worker_thread+0x243/0x490
[ 544.419549][ T5823] ? __pfx_worker_thread+0x10/0x10
[ 544.419568][ T5823] kthread+0x14e/0x1a0
[ 544.419598][ T5823] ? __pfx_kthread+0x10/0x10
[ 544.419619][ T5823] ret_from_fork+0x23c/0x4b0
[ 544.419641][ T5823] ? __pfx_kthread+0x10/0x10
[ 544.419665][ T5823] ret_from_fork_asm+0x1a/0x30
[ 544.419686][ T5823]
[ 544.419691][ T5823] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 549.612529][ T23] gfs2: fsid=syz:syz.0: file system withdrawn
executing program
[ 555.222301][ T7477] loop0: detected capacity change from 0 to 32768
[ 555.231126][ T7477] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 555.241516][ T7477] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 555.263279][ T7477] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 555.271141][ T6759] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 555.278260][ T6759] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 555.291111][ T6759] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 12ms
[ 555.298556][ T6759] gfs2: fsid=syz:syz.0: jid=0: Done
[ 555.303749][ T7477] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 555.311809][ T7064] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 555.325262][ T7477] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 555.326613][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 555.326633][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 555.326644][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 555.326669][ T7064] Call Trace:
[ 555.326673][ T7064]
[ 555.326679][ T7064] dump_stack_lvl+0x97/0xe0
[ 555.326700][ T7064] gfs2_withdraw.cold+0xa/0x77
[ 555.326716][ T7064] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 555.326732][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 555.326754][ T7064] inode_go_inval+0x1df/0x1f0
[ 555.326776][ T7064] do_xmote+0x12a/0x310
[ 555.326801][ T7064] run_queue+0x288/0x300
[ 555.326821][ T7064] glock_work_func+0xac/0x280
[ 555.326841][ T7064] process_one_work+0x26c/0x5d0
[ 555.326860][ T7064] worker_thread+0x243/0x490
[ 555.326879][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 555.326897][ T7064] kthread+0x14e/0x1a0
[ 555.326918][ T7064] ? __pfx_kthread+0x10/0x10
[ 555.326941][ T7064] ret_from_fork+0x23c/0x4b0
[ 555.326964][ T7064] ? __pfx_kthread+0x10/0x10
[ 555.326987][ T7064] ret_from_fork_asm+0x1a/0x30
[ 555.327010][ T7064]
[ 555.327017][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 555.327035][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 555.327044][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 555.327063][ T7064] Call Trace:
[ 555.327067][ T7064]
[ 555.327072][ T7064] dump_stack_lvl+0x97/0xe0
[ 555.327090][ T7064] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 555.327107][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 555.327128][ T7064] inode_go_inval+0x1df/0x1f0
[ 555.327150][ T7064] do_xmote+0x12a/0x310
[ 555.327169][ T7064] run_queue+0x288/0x300
[ 555.327189][ T7064] glock_work_func+0xac/0x280
[ 555.327208][ T7064] process_one_work+0x26c/0x5d0
[ 555.327227][ T7064] worker_thread+0x243/0x490
[ 555.327245][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 555.327263][ T7064] kthread+0x14e/0x1a0
[ 555.327286][ T7064] ? __pfx_kthread+0x10/0x10
[ 555.327308][ T7064] ret_from_fork+0x23c/0x4b0
[ 555.327330][ T7064] ? __pfx_kthread+0x10/0x10
[ 555.327353][ T7064] ret_from_fork_asm+0x1a/0x30
[ 555.327377][ T7064]
[ 555.555846][ T7477] CPU: 0 UID: 0 PID: 7477 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 555.555867][ T7477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 555.555877][ T7477] Call Trace:
[ 555.555883][ T7477]
[ 555.555889][ T7477] dump_stack_lvl+0x97/0xe0
[ 555.555913][ T7477] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 555.555938][ T7477] inode_go_inval+0x1df/0x1f0
[ 555.555963][ T7477] gfs2_make_fs_rw+0x34/0xf0
[ 555.555978][ T7477] gfs2_fill_super+0xfbb/0x1210
[ 555.556003][ T7477] ? gfs2_fill_super+0xa23/0x1210
[ 555.556027][ T7477] ? setup_bdev_super+0x19d/0x330
[ 555.556045][ T7477] ? __pfx_gfs2_fill_super+0x10/0x10
[ 555.556069][ T7477] get_tree_bdev_flags+0x1c0/0x290
[ 555.556090][ T7477] gfs2_get_tree+0x26/0xd0
[ 555.556112][ T7477] vfs_get_tree+0x30/0x120
[ 555.556128][ T7477] path_mount+0x5a9/0x1360
[ 555.556154][ T7477] __x64_sys_mount+0x1a3/0x1e0
[ 555.556185][ T7477] do_syscall_64+0xe2/0xf80
[ 555.556208][ T7477] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 555.556220][ T7477] RIP: 0033:0x7f610c33132a
[ 555.556229][ T7477] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 555.556240][ T7477] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 555.556250][ T7477] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 555.556257][ T7477] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 555.556264][ T7477] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 555.556270][ T7477] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 555.556277][ T7477] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 555.556284][ T7477]
[ 555.556396][ T7477] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 556.492374][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[ 556.498692][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
executing program
[ 561.379490][ T7483] loop0: detected capacity change from 0 to 32768
[ 561.388127][ T7483] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 561.396698][ T7483] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 561.408366][ T7483] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 561.421794][ T10] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 561.428639][ T10] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 561.442066][ T10] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 561.449708][ T10] gfs2: fsid=syz:syz.0: jid=0: Done
[ 561.455108][ T7483] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 561.463442][ T7483] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 561.478208][ T7483] CPU: 0 UID: 0 PID: 7483 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 561.478228][ T7483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 561.478235][ T7483] Call Trace:
[ 561.478239][ T7483]
[ 561.478242][ T7483] dump_stack_lvl+0x97/0xe0
[ 561.478258][ T7483] gfs2_withdraw.cold+0xa/0x77
[ 561.478270][ T7483] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 561.478281][ T7483] inode_go_inval+0x1df/0x1f0
[ 561.478297][ T7483] gfs2_make_fs_rw+0x34/0xf0
[ 561.478307][ T7483] gfs2_fill_super+0xfbb/0x1210
[ 561.478324][ T7483] ? gfs2_fill_super+0xa23/0x1210
[ 561.478340][ T7483] ? setup_bdev_super+0x19d/0x330
[ 561.478352][ T7483] ? __pfx_gfs2_fill_super+0x10/0x10
[ 561.478369][ T7483] get_tree_bdev_flags+0x1c0/0x290
[ 561.478383][ T7483] gfs2_get_tree+0x26/0xd0
[ 561.478398][ T7483] vfs_get_tree+0x30/0x120
[ 561.478408][ T7483] path_mount+0x5a9/0x1360
[ 561.478427][ T7483] __x64_sys_mount+0x1a3/0x1e0
[ 561.478444][ T7483] do_syscall_64+0xe2/0xf80
[ 561.478461][ T7483] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 561.478472][ T7483] RIP: 0033:0x7f610c33132a
[ 561.478481][ T7483] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 561.478492][ T7483] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 561.478502][ T7483] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 561.478509][ T7483] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 561.478516][ T7483] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 561.478522][ T7483] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 561.478529][ T7483] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 561.478537][ T7483]
[ 561.478541][ T7483] CPU: 0 UID: 0 PID: 7483 Comm: syz-executor219 Not tainted syzkaller #0 PREEMPT(full)
[ 561.478553][ T7483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 561.478559][ T7483] Call Trace:
[ 561.478561][ T7483]
[ 561.478564][ T7483] dump_stack_lvl+0x97/0xe0
[ 561.478577][ T7483] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 561.478588][ T7483] inode_go_inval+0x1df/0x1f0
[ 561.478603][ T7483] gfs2_make_fs_rw+0x34/0xf0
[ 561.478612][ T7483] gfs2_fill_super+0xfbb/0x1210
[ 561.478628][ T7483] ? gfs2_fill_super+0xa23/0x1210
[ 561.478644][ T7483] ? setup_bdev_super+0x19d/0x330
[ 561.478655][ T7483] ? __pfx_gfs2_fill_super+0x10/0x10
[ 561.478671][ T7483] get_tree_bdev_flags+0x1c0/0x290
[ 561.478685][ T7483] gfs2_get_tree+0x26/0xd0
[ 561.478699][ T7483] vfs_get_tree+0x30/0x120
[ 561.478709][ T7483] path_mount+0x5a9/0x1360
[ 561.478726][ T7483] __x64_sys_mount+0x1a3/0x1e0
[ 561.478744][ T7483] do_syscall_64+0xe2/0xf80
[ 561.478759][ T7483] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 561.478770][ T7483] RIP: 0033:0x7f610c33132a
[ 561.478777][ T7483] Code: 48 c7 c2 d8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 d8 ff ff ff f7 d8 64 89 01 48
[ 561.478787][ T7483] RSP: 002b:00007ffe85283f18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 561.478796][ T7483] RAX: ffffffffffffffda RBX: 00007ffe85283f30 RCX: 00007f610c33132a
[ 561.478803][ T7483] RDX: 0000200000037f40 RSI: 0000200000037f80 RDI: 00007ffe85283f30
[ 561.478809][ T7483] RBP: 0000200000037f80 R08: 00007ffe85283f70 R09: 0000000000000000
[ 561.478816][ T7483] R10: 0000000000210000 R11: 0000000000000246 R12: 0000200000037f40
[ 561.478822][ T7483] R13: 00007ffe85283f70 R14: 0000000000000003 R15: 0000000000210000
[ 561.478830][ T7483]
[ 561.478945][ T7483] gfs2: fsid=syz:syz.0: can't make FS RW: -5
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 567.508021][ T7490] loop0: detected capacity change from 0 to 32768
[ 567.518323][ T7490] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 567.526514][ T7490] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 567.540695][ T7490] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 567.548593][ T6759] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 567.555454][ T6759] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 567.569966][ T6759] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 14ms
[ 567.577474][ T6759] gfs2: fsid=syz:syz.0: jid=0: Done
[ 567.582773][ T7490] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 567.590760][ T7064] gfs2: fsid=syz:syz.0: fatal: assertion "!atomic_read(&gl->gl_ail_count)" failed - function = inode_go_inval, file = fs/gfs2/glops.c, line = 362
[ 567.605543][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 567.605561][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 567.605571][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 567.605594][ T7064] Call Trace:
[ 567.605599][ T7064]
[ 567.605603][ T7064] dump_stack_lvl+0x97/0xe0
[ 567.605622][ T7064] gfs2_withdraw.cold+0xa/0x77
[ 567.605637][ T7064] gfs2_assert_withdraw_i.cold+0x2c/0x36
[ 567.605654][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 567.605674][ T7490] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[ 567.605674][ T7064] inode_go_inval+0x1df/0x1f0
[ 567.605696][ T7064] do_xmote+0x12a/0x310
[ 567.605715][ T7064] run_queue+0x288/0x300
[ 567.605734][ T7064] glock_work_func+0xac/0x280
[ 567.605755][ T7064] process_one_work+0x26c/0x5d0
[ 567.605775][ T7064] worker_thread+0x243/0x490
[ 567.605793][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 567.605811][ T7064] kthread+0x14e/0x1a0
[ 567.605833][ T7064] ? __pfx_kthread+0x10/0x10
[ 567.605864][ T7064] ret_from_fork+0x23c/0x4b0
[ 567.605887][ T7064] ? __pfx_kthread+0x10/0x10
[ 567.605909][ T7064] ret_from_fork_asm+0x1a/0x30
[ 567.605933][ T7064]
[ 567.605940][ T7064] CPU: 0 UID: 0 PID: 7064 Comm: kworker/0:2H Not tainted syzkaller #0 PREEMPT(full)
[ 567.605958][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 567.605967][ T7064] Workqueue: gfs2-glock/syz:syz glock_work_func
[ 567.605987][ T7064] Call Trace:
[ 567.605991][ T7064]
[ 567.605995][ T7064] dump_stack_lvl+0x97/0xe0
[ 567.606014][ T7064] gfs2_assert_withdraw_i.cold+0x31/0x36
[ 567.606030][ T7064] ? __pfx_inode_go_inval+0x10/0x10
[ 567.606052][ T7064] inode_go_inval+0x1df/0x1f0
[ 567.606073][ T7064] do_xmote+0x12a/0x310
[ 567.606092][ T7064] run_queue+0x288/0x300
[ 567.606111][ T7064] glock_work_func+0xac/0x280
[ 567.606131][ T7064] process_one_work+0x26c/0x5d0
[ 567.606149][ T7064] worker_thread+0x243/0x490
[ 567.606167][ T7064] ? __pfx_worker_thread+0x10/0x10
[ 567.606185][ T7064] kthread+0x14e/0x1a0
[ 567.606207][ T7064] ? __pfx_kthread+0x10/0x10
[ 567.606229][ T7064] ret_from_fork+0x23c/0x4b0
[ 567.606251][ T7064] ? __pfx_kthread+0x10/0x10
[ 567.606273][ T7064] ret_from_fork_asm+0x1a/0x30
[ 567.606297][ T7064]
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
executing program
[ 573.482372][ T7497] loop0: detected capacity change from 0 to 32768
[ 573.493031][ T7497] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 573.501249][ T7497] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 573.515774][ T7497] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 573.523669][ T5823] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 573.530414][ T5823] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 573.543692][ T5823] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 13ms
[ 573.551101][ T5823] gfs2: fsid=syz:syz.0: jid=0: Done
[ 573.556318][ T7497] gfs2: fsid=syz:syz.0: first mount done, others may mount
the reproducer may not work as expected: 802154 injection setup failed: NL802154_CMD_SET_SHORT_ADDR failed
[ 573.615640][ T6751] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9387 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 573.630958][ T795] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9390 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 573.646464][ T5823] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9381 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 573.661790][ T23] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 9386 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 573.677082][ T6751] CPU: 1 UID: 0 PID: 6751 Comm: kworker/1:5 Not tainted syzkaller #0 PREEMPT(full)
[ 573.677100][ T6751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 573.677111][ T6751] Workqueue: gfs2-delete/syz:syz delete_work_func
[ 573.677135][ T6751] Call Trace:
[ 573.677140][ T6751]
[ 573.677145][ T6751] dump_stack_lvl+0x97/0xe0
[ 573.677166][ T6751] gfs2_meta_check_ii.cold+0xa/0x77
[ 573.677183][ T6751] gfs2_meta_buffer+0x1a2/0x1b0
[ 573.677202][ T6751] inode_go_instantiate+0x61/0x560
[ 573.677225][ T6751] gfs2_instantiate+0xa7/0x130
[ 573.677241][ T6751] gfs2_inode_lookup+0x49a/0x520
[ 573.677257][ T6751] ? gfs2_lookup_by_inum+0x2f/0xb0
[ 573.677272][ T6751] gfs2_lookup_by_inum+0x2f/0xb0
[ 573.677287][ T6751] delete_work_func+0xa3/0x2d0
[ 573.677307][ T6751] ? wg_peer_put+0x8c/0xc0
[ 573.677330][ T6751] process_one_work+0x26c/0x5d0
[ 573.677347][ T6751] worker_thread+0x243/0x490
[ 573.677362][ T6751] ? __pfx_worker_thread+0x10/0x10
[ 573.677380][ T6751] kthread+0x14e/0x1a0
[ 573.677401][ T6751] ? __pfx_kthread+0x10/0x10
[ 573.677421][ T6751] ret_from_fork+0x23c/0x4b0
[ 573.677437][ T6751] ? __pfx_kthread+0x10/0x10
[ 573.677454][ T6751] ret_from_fork_asm+0x1a/0x30
[ 573.677471][ T6751]
[ 573.677474][ T6751] gfs2: fsid=syz:syz.0: about to withdraw this file system