Warning: Permanently added '10.128.1.170' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program [ 37.688786][ T6407] loop0: detected capacity change from 0 to 32768 [ 37.756950][ T6399] loop4: detected capacity change from 0 to 32768 [ 37.766236][ T6405] loop2: detected capacity change from 0 to 32768 [ 37.807578][ T6400] loop1: detected capacity change from 0 to 32768 [ 37.859782][ T6406] loop3: detected capacity change from 0 to 32768 executing program executing program executing program executing program executing program [ 38.193483][ T6416] loop4: detected capacity change from 0 to 32768 executing program [ 38.394199][ T6424] loop1: detected capacity change from 0 to 32768 [ 38.433139][ T6421] loop3: detected capacity change from 0 to 32768 [ 38.487397][ T6420] loop0: detected capacity change from 0 to 32768 [ 38.566779][ T6422] loop2: detected capacity change from 0 to 32768 executing program executing program executing program executing program [ 38.811987][ T6427] loop4: detected capacity change from 0 to 32768 executing program [ 39.004443][ T6433] loop3: detected capacity change from 0 to 32768 [ 39.093965][ T6430] loop1: detected capacity change from 0 to 32768 [ 39.120232][ T6436] loop0: detected capacity change from 0 to 32768 [ 39.168041][ T6438] loop2: detected capacity change from 0 to 32768 executing program executing program [ 39.364086][ T6441] loop4: detected capacity change from 0 to 32768 executing program executing program executing program [ 39.592997][ T6446] loop3: detected capacity change from 0 to 32768 [ 39.703113][ T6449] loop0: detected capacity change from 0 to 32768 [ 39.784762][ T6453] loop2: detected capacity change from 0 to 32768 executing program executing program executing program [ 39.918056][ T6457] loop4: detected capacity change from 0 to 32768 [ 40.002160][ T6454] loop1: detected capacity change from 0 to 32768 executing program executing program [ 40.232125][ T6459] loop3: detected capacity change from 0 to 32768 [ 40.332747][ T6464] loop2: detected capacity change from 0 to 32768 [ 40.341086][ T6462] loop0: detected capacity change from 0 to 32768 executing program [ 40.469387][ T6470] loop1: detected capacity change from 0 to 32768 [ 40.541601][ T6467] loop4: detected capacity change from 0 to 32768 executing program executing program executing program executing program [ 40.827806][ T6472] loop3: detected capacity change from 0 to 32768 executing program [ 41.018330][ T6481] loop1: detected capacity change from 0 to 32768 [ 41.020934][ T6476] loop2: detected capacity change from 0 to 32768 [ 41.064522][ T6478] loop0: detected capacity change from 0 to 32768 executing program executing program [ 41.266209][ T6483] loop4: detected capacity change from 0 to 32768 executing program executing program [ 41.470919][ T6492] loop2: detected capacity change from 0 to 32768 [ 41.516150][ T6489] loop1: detected capacity change from 0 to 32768 executing program [ 41.644792][ T6486] loop3: detected capacity change from 0 to 32768 executing program [ 41.782331][ T6495] loop4: detected capacity change from 0 to 32768 [ 41.811267][ T6493] loop0: detected capacity change from 0 to 32768 executing program [ 41.904995][ T6495] ================================================================== [ 41.907132][ T6495] BUG: KASAN: slab-use-after-free in __mutex_lock_common+0x100/0x21a0 [ 41.909197][ T6495] Read of size 8 at addr ffff0000d26e74b0 by task syz-executor133/6495 [ 41.911389][ T6495] [ 41.911993][ T6495] CPU: 0 UID: 0 PID: 6495 Comm: syz-executor133 Not tainted 6.11.0-rc5-syzkaller-gdf54f4a16f82 #0 [ 41.914890][ T6495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 41.917640][ T6495] Call trace: [ 41.918523][ T6495] dump_backtrace+0x1b8/0x1e4 [ 41.919790][ T6495] show_stack+0x2c/0x3c [ 41.920921][ T6495] dump_stack_lvl+0xe4/0x150 [ 41.922205][ T6495] print_report+0x198/0x538 [ 41.923413][ T6495] kasan_report+0xd8/0x138 [ 41.924338][ T6495] __asan_report_load8_noabort+0x20/0x2c [ 41.925449][ T6495] __mutex_lock_common+0x100/0x21a0 [ 41.926774][ T6495] mutex_lock_nested+0x2c/0x38 [ 41.927994][ T6495] dbFreeBits+0x734/0xc0c [ 41.929174][ T6495] dbFree+0x2d4/0x5b0 [ 41.930266][ T6495] dbDiscardAG+0x604/0x748 [ 41.931519][ T6495] jfs_ioc_trim+0x3cc/0x5d8 [ 41.932734][ T6495] jfs_ioctl+0x338/0x550 [ 41.933886][ T6495] __arm64_sys_ioctl+0x14c/0x1c8 [ 41.935268][ T6495] invoke_syscall+0x98/0x2b8 [ 41.936525][ T6495] el0_svc_common+0x130/0x23c [ 41.937789][ T6495] do_el0_svc+0x48/0x58 [ 41.938906][ T6495] el0_svc+0x54/0x168 [ 41.939982][ T6495] el0t_64_sync_handler+0x84/0xfc [ 41.941371][ T6495] el0t_64_sync+0x190/0x194 [ 41.942594][ T6495] [ 41.943102][ T6495] Allocated by task 6495: [ 41.944063][ T6495] kasan_save_track+0x40/0x78 [ 41.945181][ T6495] kasan_save_alloc_info+0x40/0x50 [ 41.946578][ T6495] __kasan_kmalloc+0xac/0xc4 [ 41.947828][ T6495] __kmalloc_cache_noprof+0x244/0x374 [ 41.949310][ T6495] dbMount+0x68/0x810 [ 41.950396][ T6495] jfs_mount+0x1c8/0x7a8 [ 41.951574][ T6495] jfs_fill_super+0x464/0x9f0 [ 41.952853][ T6495] mount_bdev+0x1d4/0x2a0 [ 41.954043][ T6495] jfs_do_mount+0x44/0x58 [ 41.955221][ T6495] legacy_get_tree+0xd4/0x16c [ 41.956499][ T6495] vfs_get_tree+0x90/0x28c [ 41.957716][ T6495] do_new_mount+0x278/0x900 [ 41.958925][ T6495] path_mount+0x590/0xe04 [ 41.960098][ T6495] __arm64_sys_mount+0x45c/0x5a8 [ 41.961336][ T6495] invoke_syscall+0x98/0x2b8 [ 41.962606][ T6495] el0_svc_common+0x130/0x23c [ 41.963750][ T6495] do_el0_svc+0x48/0x58 [ 41.964857][ T6495] el0_svc+0x54/0x168 [ 41.965939][ T6495] el0t_64_sync_handler+0x84/0xfc [ 41.967323][ T6495] el0t_64_sync+0x190/0x194 [ 41.968514][ T6495] [ 41.969142][ T6495] Freed by task 6503: [ 41.970257][ T6495] kasan_save_track+0x40/0x78 [ 41.971534][ T6495] kasan_save_free_info+0x54/0x6c [ 41.972933][ T6495] poison_slab_object+0x128/0x180 [ 41.974317][ T6495] __kasan_slab_free+0x3c/0x70 [ 41.975585][ T6495] kfree+0x154/0x3e0 [ 41.976671][ T6495] dbUnmount+0xfc/0x168 [ 41.977784][ T6495] jfs_mount_rw+0x3d0/0x5b8 [ 41.979054][ T6495] jfs_remount+0x328/0x594 [ 41.980189][ T6495] legacy_reconfigure+0xfc/0x114 [ 41.981373][ T6495] reconfigure_super+0x1d0/0x6f0 [ 41.982590][ T6495] path_mount+0xc0c/0xe04 [ 41.983750][ T6495] __arm64_sys_mount+0x45c/0x5a8 [ 41.985146][ T6495] invoke_syscall+0x98/0x2b8 [ 41.986389][ T6495] el0_svc_common+0x130/0x23c [ 41.987650][ T6495] do_el0_svc+0x48/0x58 [ 41.988774][ T6495] el0_svc+0x54/0x168 [ 41.989862][ T6495] el0t_64_sync_handler+0x84/0xfc [ 41.991171][ T6495] el0t_64_sync+0x190/0x194 [ 41.992338][ T6495] [ 41.992954][ T6495] The buggy address belongs to the object at ffff0000d26e7000 [ 41.992954][ T6495] which belongs to the cache kmalloc-2k of size 2048 [ 41.996505][ T6495] The buggy address is located 1200 bytes inside of [ 41.996505][ T6495] freed 2048-byte region [ffff0000d26e7000, ffff0000d26e7800) [ 41.997749][ T6500] loop1: detected capacity change from 0 to 32768 [ 41.999853][ T6495] [ 41.999861][ T6495] The buggy address belongs to the physical page: [ 41.999867][ T6495] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1126e0 [ 41.999879][ T6495] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 41.999890][ T6495] anon flags: 0x5ffc00000000040(head|node=0|zone=2|lastcpupid=0x7ff) [ 42.010559][ T6495] page_type: 0xfdffffff(slab) [ 42.011829][ T6495] raw: 05ffc00000000040 ffff0000c0002000 0000000000000000 0000000000000001 [ 42.014136][ T6495] raw: 0000000000000000 0000000080080008 00000001fdffffff 0000000000000000 [ 42.016445][ T6495] head: 05ffc00000000040 ffff0000c0002000 0000000000000000 0000000000000001 [ 42.019198][ T6495] head: 0000000000000000 0000000080080008 00000001fdffffff 0000000000000000 [ 42.021557][ T6495] head: 05ffc00000000003 fffffdffc349b801 ffffffffffffffff 0000000000000000 [ 42.023917][ T6495] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 42.026233][ T6495] page dumped because: kasan: bad access detected [ 42.027965][ T6495] [ 42.028576][ T6495] Memory state around the buggy address: [ 42.030082][ T6495] ffff0000d26e7380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 42.032251][ T6495] ffff0000d26e7400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 42.034396][ T6495] >ffff0000d26e7480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 42.036317][ T6495] ^ [ 42.037589][ T6495] ffff0000d26e7500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 42.039603][ T6495] ffff0000d26e7580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 42.041763][ T6495] ================================================================== [ 42.049453][ T6495] Disabling lock debugging due to kernel taint executing program executing program executing program [ 42.169834][ T6504] loop3: detected capacity change from 0 to 32768 [ 42.213081][ T6498] loop2: detected capacity change from 0 to 32768 executing program executing program [ 42.364768][ T6508] loop1: detected capacity change from 0 to 32768 [ 42.373482][ T6512] loop4: detected capacity change from 0 to 32768 [ 42.387765][ T6511] loop0: detected capacity change from 0 to 32768 [ 42.485267][ T6514] loop3: detected capacity change from 0 to 32768 executing program executing program executing program [ 42.602243][ T6516] loop2: detected capacity change from 0 to 32768 executing program [ 42.680080][ T6521] loop0: detected capacity change from 0 to 32768 executing program [ 42.789188][ T6527] loop3: detected capacity change from 0 to 32768 executing program [ 42.852159][ T6519] loop4: detected capacity change from 0 to 32768 [ 42.874000][ T6529] loop2: detected capacity change from 0 to 32768 [ 42.906183][ T6523] loop1: detected capacity change from 0 to 32768 executing program executing program [ 43.044087][ T6531] loop0: detected capacity change from 0 to 32768 executing program executing program [ 43.131289][ T6533] loop3: detected capacity change from 0 to 32768 executing program [ 43.253175][ T6539] loop1: detected capacity change from 0 to 32768 executing program [ 43.326137][ T6536] loop4: detected capacity change from 0 to 32768 executing program [ 43.426004][ T6540] loop2: detected capacity change from 0 to 32768 executing program [ 43.480944][ T6542] loop0: detected capacity change from 0 to 32768 executing program [ 43.582264][ T6549] loop4: detected capacity change from 0 to 32768 [ 43.607601][ T6544] loop3: detected capacity change from 0 to 32768 executing program executing program [ 43.716418][ T6554] loop0: detected capacity change from 0 to 32768 [ 43.783653][ T6552] loop2: detected capacity change from 0 to 32768 executing program [ 43.821764][ T6547] loop1: detected capacity change from 0 to 32768 executing program [ 43.881501][ T6556] loop4: detected capacity change from 0 to 32768 executing program executing program executing program [ 44.059789][ T6558] loop3: detected capacity change from 0 to 32768 [ 44.122950][ T6562] loop0: detected capacity change from 0 to 32768 [ 44.164220][ T6568] loop1: detected capacity change from 0 to 32768 executing program [ 44.209119][ T6566] loop4: detected capacity change from 0 to 32768 [ 44.253226][ T6563] loop2: detected capacity change from 0 to 32768 executing program executing program executing program executing program [ 44.411173][ T6573] loop0: detected capacity change from 0 to 32768 [ 44.412816][ T6570] loop3: detected capacity change from 0 to 32768 executing program executing program [ 44.575072][ T6578] loop4: detected capacity change from 0 to 32768 [ 44.614078][ T6580] loop2: detected capacity change from 0 to 32768 executing program executing program [ 44.743156][ T6583] loop3: detected capacity change from 0 to 32768 [ 44.754076][ T6576] loop1: detected capacity change from 0 to 32768 [ 44.756849][ T6584] loop0: detected capacity change from 0 to 32768 executing program executing program [ 44.912984][ T6588] loop2: detected capacity change from 0 to 32768 executing program executing program [ 45.040616][ T6594] loop1: detected capacity change from 0 to 32768 [ 45.058398][ T6586] loop4: detected capacity change from 0 to 32768 [ 45.146619][ T6596] loop2: detected capacity change from 0 to 32768 [ 45.181776][ T6590] loop0: detected capacity change from 0 to 32768 [ 45.195030][ T6592] loop3: detected capacity change from 0 to 32768 executing program executing program executing program executing program executing program [ 45.441274][ T6608] loop0: detected capacity change from 0 to 32768 [ 45.469938][ T6603] loop4: detected capacity change from 0 to 32768 [ 45.493629][ T6599] loop1: detected capacity change from 0 to 32768 [ 45.579174][ T6606] loop2: detected capacity change from 0 to 32768 executing program executing program [ 45.595405][ T6610] loop3: detected capacity change from 0 to 32768 executing program executing program executing program [ 45.820271][ T6617] loop1: detected capacity change from 0 to 32768 [ 45.864314][ T6619] loop2: detected capacity change from 0 to 32768 [ 45.911812][ T6614] loop0: detected capacity change from 0 to 32768 [ 45.915857][ T6621] loop3: detected capacity change from 0 to 32768 executing program [ 45.947135][ T6616] loop4: detected capacity change from 0 to 32768 executing program executing program executing program executing program [ 46.183808][ T6624] loop1: detected capacity change from 0 to 32768 [ 46.256009][ T6630] loop3: detected capacity change from 0 to 32768 [ 46.273522][ T6632] loop4: detected capacity change from 0 to 32768 [ 46.274721][ T6627] loop2: detected capacity change from 0 to 32768 executing program executing program [ 46.404959][ T6634] loop0: detected capacity change from 0 to 32768 executing program executing program executing program [ 46.533130][ T6636] loop1: detected capacity change from 0 to 32768 [ 46.533718][ T6643] loop4: detected capacity change from 0 to 32768 [ 46.624701][ T6645] loop0: detected capacity change from 0 to 32768 executing program executing program [ 46.745605][ T6642] loop3: detected capacity change from 0 to 32768 executing program [ 46.797007][ T6650] loop4: detected capacity change from 0 to 32768 [ 46.804078][ T6647] loop2: detected capacity change from 0 to 32768 executing program executing program executing program [ 46.988161][ T6654] loop0: detected capacity change from 0 to 32768 [ 47.057590][ T6655] loop1: detected capacity change from 0 to 32768 [ 47.105760][ T6662] loop2: detected capacity change from 0 to 32768 executing program [ 47.150004][ T6663] loop4: detected capacity change from 0 to 32768 [ 47.151413][ T6659] loop3: detected capacity change from 0 to 32768 executing program executing program executing program executing program [ 47.367288][ T6675] loop3: detected capacity change from 0 to 32768 [ 47.391868][ T6665] loop0: detected capacity change from 0 to 32768 [ 47.484180][ T6673] loop2: detected capacity change from 0 to 32768 executing program executing program [ 47.559723][ T6669] loop1: detected capacity change from 0 to 32768 [ 47.573011][ T6676] loop4: detected capacity change from 0 to 32768 executing program [ 47.646410][ T6680] loop0: detected capacity change from 0 to 32768 executing program executing program executing program [ 47.810533][ T6678] loop3: detected capacity change from 0 to 32768 [ 47.846821][ T6682] loop2: detected capacity change from 0 to 32768 [ 47.908178][ T6685] loop4: detected capacity change from 0 to 32768 executing program [ 47.948122][ T6688] loop1: detected capacity change from 0 to 32768 executing program [ 48.015280][ T6689] loop0: detected capacity change from 0 to 32768 executing program executing program executing program [ 48.201215][ T6693] loop4: detected capacity change from 0 to 32768 [ 48.211524][ T6691] loop3: detected capacity change from 0 to 32768 [ 48.242586][ T6695] loop2: detected capacity change from 0 to 32768 [ 48.288588][ T6698] loop1: detected capacity change from 0 to 32768 executing program executing program executing program executing program [ 48.426982][ T6700] loop0: detected capacity change from 0 to 32768 executing program [ 48.559959][ T6707] loop3: detected capacity change from 0 to 32768 [ 48.633995][ T6705] loop4: detected capacity change from 0 to 32768 executing program [ 48.689278][ T6704] loop2: detected capacity change from 0 to 32768 [ 48.726035][ T6711] loop0: detected capacity change from 0 to 32768 executing program [ 48.747240][ T6709] loop1: detected capacity change from 0 to 32768 [ 48.813510][ T6711] Unable to handle kernel paging request at virtual address dfff800000000000 [ 48.816242][ T6711] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 48.839728][ T6711] Mem abort info: [ 48.840708][ T6711] ESR = 0x0000000096000005 executing program [ 48.858682][ T6711] EC = 0x25: DABT (current EL), IL = 32 bits [ 48.865004][ T6711] SET = 0, FnV = 0 [ 48.868756][ T6711] EA = 0, S1PTW = 0 [ 48.871302][ T6711] FSC = 0x05: level 1 translation fault [ 48.873823][ T6711] Data abort info: [ 48.874725][ T6711] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 48.879463][ T6711] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 48.886507][ T6711] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 48.888685][ T6711] [dfff800000000000] address between user and kernel address ranges executing program [ 48.898180][ T6711] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP [ 48.899961][ T6711] Modules linked in: [ 48.900806][ T6711] CPU: 0 UID: 0 PID: 6711 Comm: syz-executor133 Tainted: G B 6.11.0-rc5-syzkaller-gdf54f4a16f82 #0 [ 48.903701][ T6711] Tainted: [B]=BAD_PAGE [ 48.904722][ T6711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 48.906993][ T6711] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 48.908621][ T6711] pc : dbFree+0xfc/0x5b0 [ 48.909718][ T6711] lr : dbFree+0xec/0x5b0 [ 48.910716][ T6711] sp : ffff8000a10379a0 [ 48.911709][ T6711] x29: ffff8000a10379e0 x28: 1ffff00014206f58 x27: dfff800000000000 [ 48.913618][ T6711] x26: dfff800000000000 x25: 1fffe0001c3a21b2 x24: ffff0000ce31e000 [ 48.915708][ T6711] x23: ffff0000e1d10d90 x22: 0000000000000004 x21: ffff0000d0effc00 [ 48.917674][ T6711] x20: 0000000000000ec8 x19: 0000000000000ecc x18: 1fffe00036799fe6 [ 48.919272][ T6711] x17: ffff80008f50d000 x16: ffff80008301a844 x15: 0000000000000001 [ 48.921044][ T6711] x14: 1fffe0001c3a2ba0 x13: 0000000000000000 x12: 0000000000000000 [ 48.922689][ T6711] x11: 0000000000000001 x10: 0000000000ff0100 x9 : 0000000000000000 [ 48.924548][ T6711] x8 : 0000000000000000 x7 : 0000000000000000 x6 : ffff800081a99c88 [ 48.926072][ T6711] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff80008033ef08 [ 48.927927][ T6711] x2 : 0000000000000001 x1 : 0000000000000ec8 x0 : 0000000000000000 [ 48.929679][ T6711] Call trace: [ 48.930381][ T6711] dbFree+0xfc/0x5b0 [ 48.931199][ T6711] dbDiscardAG+0x604/0x748 [ 48.932224][ T6711] jfs_ioc_trim+0x3cc/0x5d8 [ 48.933277][ T6711] jfs_ioctl+0x338/0x550 [ 48.934300][ T6711] __arm64_sys_ioctl+0x14c/0x1c8 [ 48.935463][ T6711] invoke_syscall+0x98/0x2b8 [ 48.936402][ T6711] el0_svc_common+0x130/0x23c [ 48.936815][ T6713] loop3: detected capacity change from 0 to 32768 [ 48.937449][ T6711] do_el0_svc+0x48/0x58 [ 48.939792][ T6711] el0_svc+0x54/0x168 [ 48.940602][ T6711] el0t_64_sync_handler+0x84/0xfc [ 48.941634][ T6711] el0t_64_sync+0x190/0x194 [ 48.942612][ T6711] Code: b4002114 f85f83a9 8b1402d3 d343fd28 (387a6908) [ 48.944147][ T6711] ---[ end trace 0000000000000000 ]--- [ 48.980459][ T6715] loop4: detected capacity change from 0 to 32768 [ 49.144159][ T6719] loop2: detected capacity change from 0 to 32768 [ 49.171665][ T6722] loop1: detected capacity change from 0 to 32768 [ 49.348887][ T6711] Kernel panic - not syncing: Oops: Fatal exception [ 49.350355][ T6711] SMP: stopping secondary CPUs [ 49.351490][ T6711] Kernel Offset: disabled [ 49.352558][ T6711] CPU features: 0x08,00000103,80100128,42017203 [ 49.353961][ T6711] Memory Limit: none [ 49.708476][ T6711] Rebooting in 86400 seconds..