Warning: Permanently added '10.128.0.28' (ED25519) to the list of known hosts.
[   41.314441][   T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   41.317335][   T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   41.319947][   T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   41.323871][   T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   41.326315][   T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   41.328426][   T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
executing program
[   41.377455][ T6092] syz-executor306[6092]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   41.540805][ T6092] loop0: detected capacity change from 0 to 32768
executing program
[   41.756958][ T6096] loop0: detected capacity change from 0 to 32768
executing program
[   41.980958][ T6100] loop0: detected capacity change from 0 to 32768
executing program
[   42.194319][ T6104] loop0: detected capacity change from 0 to 32768
executing program
[   42.413162][ T6108] loop0: detected capacity change from 0 to 32768
executing program
[   42.636116][ T6112] loop0: detected capacity change from 0 to 32768
executing program
[   42.844092][ T6116] loop0: detected capacity change from 0 to 32768
executing program
[   43.053774][ T6120] loop0: detected capacity change from 0 to 32768
executing program
[   43.278842][ T6124] loop0: detected capacity change from 0 to 32768
executing program
[   43.352747][   T50] Bluetooth: hci0: command 0x0409 tx timeout
[   43.499527][ T6128] loop0: detected capacity change from 0 to 32768
executing program
[   43.717294][ T6132] loop0: detected capacity change from 0 to 32768
executing program
[   43.975893][ T6136] loop0: detected capacity change from 0 to 32768
executing program
[   44.193708][ T6140] loop0: detected capacity change from 0 to 32768
executing program
[   44.398367][ T6144] loop0: detected capacity change from 0 to 32768
executing program
[   44.623837][ T6148] loop0: detected capacity change from 0 to 32768
executing program
[   44.831047][ T6152] loop0: detected capacity change from 0 to 32768
executing program
[   45.057678][ T6156] loop0: detected capacity change from 0 to 32768
executing program
[   45.296825][ T6160] loop0: detected capacity change from 0 to 32768
executing program
[   45.432225][   T50] Bluetooth: hci0: command 0x041b tx timeout
[   45.516130][ T6164] loop0: detected capacity change from 0 to 32768
executing program
[   45.735947][ T6168] loop0: detected capacity change from 0 to 32768
executing program
[   45.954394][ T6172] loop0: detected capacity change from 0 to 32768
executing program
[   46.175104][ T6176] loop0: detected capacity change from 0 to 32768
executing program
[   46.385717][ T6180] loop0: detected capacity change from 0 to 32768
executing program
[   46.604350][ T6184] loop0: detected capacity change from 0 to 32768
executing program
[   46.828787][ T6188] loop0: detected capacity change from 0 to 32768
executing program
[   47.048644][ T6192] loop0: detected capacity change from 0 to 32768
executing program
[   47.266819][ T6196] loop0: detected capacity change from 0 to 32768
executing program
[   47.482784][ T6200] loop0: detected capacity change from 0 to 32768
executing program
[   47.522630][   T50] Bluetooth: hci0: command 0x040f tx timeout
[   47.699337][ T6204] loop0: detected capacity change from 0 to 32768
executing program
[   47.894444][ T6208] loop0: detected capacity change from 0 to 32768
executing program
[   48.116964][ T6212] loop0: detected capacity change from 0 to 32768
executing program
[   48.325147][ T6216] loop0: detected capacity change from 0 to 32768
executing program
[   48.542555][ T6220] loop0: detected capacity change from 0 to 32768
executing program
[   48.751415][ T6224] loop0: detected capacity change from 0 to 32768
executing program
[   48.977806][ T6228] loop0: detected capacity change from 0 to 32768
executing program
[   49.192718][ T6232] loop0: detected capacity change from 0 to 32768
executing program
[   49.402967][ T6236] loop0: detected capacity change from 0 to 32768
executing program
[   49.592127][   T50] Bluetooth: hci0: command 0x0419 tx timeout
[   49.624704][ T6240] loop0: detected capacity change from 0 to 32768
executing program
[   49.846015][ T6244] loop0: detected capacity change from 0 to 32768
executing program
[   50.094131][ T6248] loop0: detected capacity change from 0 to 32768
executing program
[   50.310334][ T6252] loop0: detected capacity change from 0 to 32768
executing program
[   50.520203][ T6256] loop0: detected capacity change from 0 to 32768
executing program
[   50.727052][ T6260] loop0: detected capacity change from 0 to 32768
executing program
[   50.944980][ T6264] loop0: detected capacity change from 0 to 32768
executing program
[   51.172507][ T6268] loop0: detected capacity change from 0 to 32768
executing program
[   51.386093][ T6272] loop0: detected capacity change from 0 to 32768
executing program
[   51.578423][ T6276] loop0: detected capacity change from 0 to 32768
executing program
[   51.809893][ T6280] loop0: detected capacity change from 0 to 32768
executing program
[   52.013048][ T6284] loop0: detected capacity change from 0 to 32768
executing program
[   52.237146][ T6288] loop0: detected capacity change from 0 to 32768
executing program
[   52.466181][ T6292] loop0: detected capacity change from 0 to 32768
executing program
[   52.684061][ T6296] loop0: detected capacity change from 0 to 32768
executing program
[   52.905639][ T6300] loop0: detected capacity change from 0 to 32768
executing program
[   53.102395][ T6304] loop0: detected capacity change from 0 to 32768
executing program
[   53.304458][ T6308] loop0: detected capacity change from 0 to 32768
executing program
[   53.515947][ T6312] loop0: detected capacity change from 0 to 32768
executing program
[   53.710449][ T6316] loop0: detected capacity change from 0 to 32768
executing program
[   53.931925][ T6320] loop0: detected capacity change from 0 to 32768
executing program
[   54.144885][ T6324] loop0: detected capacity change from 0 to 32768
executing program
[   54.379573][ T6328] loop0: detected capacity change from 0 to 32768
executing program
[   54.590064][ T6332] loop0: detected capacity change from 0 to 32768
executing program
[   54.811971][ T6336] loop0: detected capacity change from 0 to 32768
executing program
[   55.032096][ T6340] loop0: detected capacity change from 0 to 32768
executing program
[   55.241194][ T6344] loop0: detected capacity change from 0 to 32768
executing program
[   55.454992][ T6348] loop0: detected capacity change from 0 to 32768
executing program
[   55.669408][ T6352] loop0: detected capacity change from 0 to 32768
executing program
[   55.887314][ T6356] loop0: detected capacity change from 0 to 32768
executing program
[   56.100080][ T6360] loop0: detected capacity change from 0 to 32768
executing program
[   56.329683][ T6364] loop0: detected capacity change from 0 to 32768
executing program
[   56.536488][ T6368] loop0: detected capacity change from 0 to 32768
executing program
[   56.757614][ T6372] loop0: detected capacity change from 0 to 32768
executing program
[   56.963310][ T6376] loop0: detected capacity change from 0 to 32768
executing program
[   57.177745][ T6380] loop0: detected capacity change from 0 to 32768
executing program
[   57.383508][ T6384] loop0: detected capacity change from 0 to 32768
executing program
[   57.617618][ T6388] loop0: detected capacity change from 0 to 32768
executing program
[   57.692145][   T94] ==================================================================
[   57.694401][   T94] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x644/0x988
[   57.696574][   T94] Read of size 4 at addr ffff0000c1bb6494 by task jfsCommit/94
[   57.698676][   T94] 
[   57.699286][   T94] CPU: 0 PID: 94 Comm: jfsCommit Not tainted 6.6.0-rc7-syzkaller-g8de1e7afcc1c #0
[   57.701750][   T94] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[   57.704526][   T94] Call trace:
[   57.705433][   T94]  dump_backtrace+0x1b8/0x1e4
[   57.706764][   T94]  show_stack+0x2c/0x44
[   57.707982][   T94]  dump_stack_lvl+0xd0/0x124
[   57.709321][   T94]  print_report+0x174/0x514
[   57.710565][   T94]  kasan_report+0xd8/0x138
[   57.711734][   T94]  __asan_report_load4_noabort+0x20/0x2c
[   57.713243][   T94]  jfs_lazycommit+0x644/0x988
[   57.714526][   T94]  kthread+0x288/0x310
[   57.715651][   T94]  ret_from_fork+0x10/0x20
[   57.716894][   T94] 
[   57.717516][   T94] Allocated by task 6388:
[   57.718733][   T94]  kasan_set_track+0x4c/0x7c
[   57.720012][   T94]  kasan_save_alloc_info+0x24/0x30
[   57.721465][   T94]  __kasan_kmalloc+0xac/0xc4
[   57.722773][   T94]  kmalloc_trace+0x70/0x88
[   57.723996][   T94]  jfs_fill_super+0x108/0x9f0
[   57.725261][   T94]  mount_bdev+0x1e8/0x2b4
[   57.726488][   T94]  jfs_do_mount+0x44/0x58
[   57.727725][   T94]  legacy_get_tree+0xd4/0x16c
[   57.729096][   T94]  vfs_get_tree+0x90/0x288
[   57.730339][   T94]  do_new_mount+0x25c/0x8c8
[   57.731542][   T94]  path_mount+0x590/0xe04
[   57.732683][   T94]  __arm64_sys_mount+0x45c/0x594
[   57.734045][   T94]  invoke_syscall+0x98/0x2b8
[   57.735287][   T94]  el0_svc_common+0x130/0x23c
[   57.736584][   T94]  do_el0_svc+0x48/0x58
[   57.737685][   T94]  el0_svc+0x54/0x158
[   57.738785][   T94]  el0t_64_sync_handler+0x84/0xfc
[   57.740194][   T94]  el0t_64_sync+0x190/0x194
[   57.741424][   T94] 
[   57.741994][   T94] Freed by task 6390:
[   57.743106][   T94]  kasan_set_track+0x4c/0x7c
[   57.744404][   T94]  kasan_save_free_info+0x38/0x5c
[   57.745746][   T94]  ____kasan_slab_free+0x144/0x1c0
[   57.747187][   T94]  __kasan_slab_free+0x18/0x28
[   57.748478][   T94]  __kmem_cache_free+0x2ac/0x480
[   57.749867][   T94]  kfree+0xb8/0x19c
[   57.750901][   T94]  jfs_put_super+0x144/0x188
[   57.752120][   T94]  generic_shutdown_super+0x130/0x2b8
[   57.753552][   T94]  kill_block_super+0x40/0x74
[   57.754866][   T94]  deactivate_locked_super+0xac/0x12c
[   57.756387][   T94]  deactivate_super+0xe0/0x100
[   57.757673][   T94]  cleanup_mnt+0x34c/0x3dc
[   57.758880][   T94]  __cleanup_mnt+0x20/0x30
[   57.760089][   T94]  task_work_run+0x230/0x2e0
[   57.761368][   T94]  do_exit+0x63c/0x1f58
[   57.762531][   T94]  do_group_exit+0x194/0x22c
[   57.763773][   T94]  get_signal+0x1500/0x15ec
[   57.765064][   T94]  do_notify_resume+0x328/0x393c
[   57.766452][   T94]  el0_da+0xac/0x168
[   57.767549][   T94]  el0t_64_sync_handler+0xcc/0xfc
[   57.768932][   T94]  el0t_64_sync+0x190/0x194
[   57.770164][   T94] 
[   57.770779][   T94] The buggy address belongs to the object at ffff0000c1bb6400
[   57.770779][   T94]  which belongs to the cache kmalloc-256 of size 256
[   57.774638][   T94] The buggy address is located 148 bytes inside of
[   57.774638][   T94]  freed 256-byte region [ffff0000c1bb6400, ffff0000c1bb6500)
[   57.778559][   T94] 
[   57.779179][   T94] The buggy address belongs to the physical page:
[   57.780872][   T94] page:000000002e49d571 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x101bb6
[   57.783721][   T94] head:000000002e49d571 order:1 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   57.786240][   T94] ksm flags: 0x5ffc00000000840(slab|head|node=0|zone=2|lastcpupid=0x7ff)
[   57.788578][   T94] page_type: 0xffffffff()
[   57.789737][   T94] raw: 05ffc00000000840 ffff0000c0001b40 fffffc0003174780 dead000000000007
[   57.792141][   T94] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   57.794477][   T94] page dumped because: kasan: bad access detected
[   57.796180][   T94] 
[   57.796790][   T94] Memory state around the buggy address:
[   57.798298][   T94]  ffff0000c1bb6380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   57.800451][   T94]  ffff0000c1bb6400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   57.802649][   T94] >ffff0000c1bb6480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   57.804872][   T94]                          ^
[   57.806095][   T94]  ffff0000c1bb6500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   57.808256][   T94]  ffff0000c1bb6580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   57.810395][   T94] ==================================================================
[   57.812568][   T94] Disabling lock debugging due to kernel taint
[   57.853715][ T6392] loop0: detected capacity change from 0 to 32768
executing program
[   57.975584][ T6396] loop0: detected capacity change from 0 to 32768
executing program
[   58.110952][ T6400] loop0: detected capacity change from 0 to 32768
executing program
[   58.245198][ T6404] loop0: detected capacity change from 0 to 32768
executing program
[   58.386434][ T6408] loop0: detected capacity change from 0 to 32768
executing program
[   58.504503][ T6412] loop0: detected capacity change from 0 to 32768
executing program
[   58.634691][ T6416] loop0: detected capacity change from 0 to 32768
executing program
[   58.756589][ T6420] loop0: detected capacity change from 0 to 32768
executing program
[   58.888675][ T6424] loop0: detected capacity change from 0 to 32768
executing program
[   59.019045][ T6428] loop0: detected capacity change from 0 to 32768
executing program
[   59.149195][ T6432] loop0: detected capacity change from 0 to 32768
executing program
[   59.278634][ T6436] loop0: detected capacity change from 0 to 32768
executing program
[   59.408158][ T6440] loop0: detected capacity change from 0 to 32768
executing program
[   59.525238][ T6444] loop0: detected capacity change from 0 to 32768
executing program
[   59.639603][ T6448] loop0: detected capacity change from 0 to 32768
executing program
[   59.753530][ T6452] loop0: detected capacity change from 0 to 32768
executing program
[   59.874491][ T6456] loop0: detected capacity change from 0 to 32768
executing program
[   60.000771][ T6460] loop0: detected capacity change from 0 to 32768
executing program
[   60.131112][ T6464] loop0: detected capacity change from 0 to 32768
executing program
[   60.260604][ T6468] loop0: detected capacity change from 0 to 32768
executing program
[   60.394346][ T6472] loop0: detected capacity change from 0 to 32768
executing program
[   60.521341][ T6476] loop0: detected capacity change from 0 to 32768
executing program
[   60.644644][ T6480] loop0: detected capacity change from 0 to 32768
executing program
[   60.760515][ T6484] loop0: detected capacity change from 0 to 32768
executing program
[   60.896187][ T6488] loop0: detected capacity change from 0 to 32768
executing program
[   61.024203][ T6492] loop0: detected capacity change from 0 to 32768
executing program
[   61.157647][ T6496] loop0: detected capacity change from 0 to 32768
executing program
[   61.286184][ T6500] loop0: detected capacity change from 0 to 32768
executing program
[   61.408964][ T6504] loop0: detected capacity change from 0 to 32768
executing program
[   61.538789][ T6508] loop0: detected capacity change from 0 to 32768
executing program
[   61.666447][ T6512] loop0: detected capacity change from 0 to 32768
executing program
[   61.795459][ T6516] loop0: detected capacity change from 0 to 32768
executing program
[   61.929223][ T6520] loop0: detected capacity change from 0 to 32768
executing program
[   62.061430][ T6524] loop0: detected capacity change from 0 to 32768
executing program
[   62.185678][ T6528] loop0: detected capacity change from 0 to 32768
executing program
[   62.311543][ T6532] loop0: detected capacity change from 0 to 32768
executing program
[   62.438389][ T6536] loop0: detected capacity change from 0 to 32768
executing program
[   62.575060][ T6540] loop0: detected capacity change from 0 to 32768
executing program
[   62.700137][ T6544] loop0: detected capacity change from 0 to 32768
executing program
[   62.832217][ T6548] loop0: detected capacity change from 0 to 32768
executing program
[   62.948494][ T6552] loop0: detected capacity change from 0 to 32768
executing program
[   63.078051][ T6556] loop0: detected capacity change from 0 to 32768
executing program
[   63.200950][ T6560] loop0: detected capacity change from 0 to 32768
executing program
[   63.324948][ T6564] loop0: detected capacity change from 0 to 32768
executing program