Warning: Permanently added '10.128.0.107' (ED25519) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
[   53.144609][ T4170] loop3: detected capacity change from 0 to 32768
[   53.196440][ T4170] =======================================================
[   53.196440][ T4170] WARNING: The mand mount option has been deprecated and
[   53.196440][ T4170]          and is ignored by this kernel. Remove the mand
[   53.196440][ T4170]          option from the mount to silence this warning.
[   53.196440][ T4170] =======================================================
[   53.237106][ T4168] loop1: detected capacity change from 0 to 32768
[   53.238941][ T4171] loop4: detected capacity change from 0 to 32768
[   53.249856][ T4167] loop2: detected capacity change from 0 to 32768
[   53.259132][ T4169] loop0: detected capacity change from 0 to 32768
[   53.355174][ T4171] loop4: detected capacity change from 32768 to 32745
[   53.355226][ T4170] loop3: detected capacity change from 32768 to 32745
[   53.362124][ T4167] loop2: detected capacity change from 32768 to 32745
[   53.368853][ T4169] loop0: detected capacity change from 32768 to 32745
[   53.381691][ T4168] loop1: detected capacity change from 32768 to 32745
[   53.396304][ T4166] ERROR: (device loop4): diRead: i_ino != di_number
[   53.396304][ T4166] 
[   53.408072][ T4165] ERROR: (device loop3): diRead: i_ino != di_number
[   53.408072][ T4165] 
[   53.416950][ T4164] ERROR: (device loop2): diRead: i_ino != di_number
[   53.416950][ T4164] 
[   53.427654][ T4166] ERROR: (device loop4): remounting filesystem as read-only
[   53.430497][ T4162] ERROR: (device loop0): diRead: i_ino != di_number
[   53.430497][ T4162] 
[   53.435450][ T4166] jfs_lookup: iget failed on inum 32
[   53.445477][ T4164] ERROR: (device loop2): remounting filesystem as read-only
[   53.458513][ T4163] ERROR: (device loop1): diRead: i_ino != di_number
[   53.458513][ T4163] 
[   53.458835][ T4164] jfs_lookup: iget failed on inum 32
[   53.473246][ T4165] ERROR: (device loop3): remounting filesystem as read-only
[   53.473578][ T4166] ERROR: (device loop4): diRead: i_ino != di_number
[   53.473578][ T4166] 
[   53.480591][ T4162] ERROR: (device loop0): remounting filesystem as read-only
[   53.490086][ T4163] ERROR: (device loop1): remounting filesystem as read-only
[   53.497245][ T4164] ERROR: (device loop2): diRead: i_ino != di_number
[   53.497245][ T4164] 
[   53.512773][ T4163] jfs_lookup: iget failed on inum 32
[   53.516462][ T4165] jfs_lookup: iget failed on inum 32
[   53.529071][ T4163] ERROR: (device loop1): diRead: i_ino != di_number
[   53.529071][ T4163] 
[   53.542022][ T4165] ERROR: (device loop3): diRead: i_ino != di_number
[   53.542022][ T4165] 
[   53.550254][ T4166] jfs_lookup: iget failed on inum 32
[   53.561491][ T4163] jfs_lookup: iget failed on inum 32
[   53.581379][ T4165] jfs_lookup: iget failed on inum 32
[   53.586887][ T4162] jfs_lookup: iget failed on inum 32
[   53.587284][ T4164] jfs_lookup: iget failed on inum 32
[   53.593910][ T4162] ERROR: (device loop0): diRead: i_ino != di_number
[   53.593910][ T4162] 
[   53.617379][ T4162] jfs_lookup: iget failed on inum 32
[   58.327614][  T275] ================================================================================
[   58.328581][  T276] ERROR: (device loop4): dbAdjCtl: Corrupt dmapctl page
[   58.328581][  T276] 
[   58.337096][  T275] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2846:24
[   58.346259][  T276] ================================================================================
[   58.354245][  T275] index 4294967295 is out of range for type 's8[1365]' (aka 'signed char[1365]')
[   58.363220][  T276] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2696:27
[   58.363235][  T276] index 4294967295 is out of range for type 's8[1365]' (aka 'signed char[1365]')
[   58.373281][  T275] CPU: 1 PID: 275 Comm: jfsCommit Not tainted 5.15.169-syzkaller #0
[   58.396968][  T275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.407017][  T275] Call Trace:
[   58.410286][  T275]  <TASK>
[   58.413201][  T275]  dump_stack_lvl+0x1e3/0x2d0
[   58.417876][  T275]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   58.423506][  T275]  ? panic+0x860/0x860
[   58.427581][  T275]  __ubsan_handle_out_of_bounds+0x118/0x140
[   58.433462][  T275]  ? __might_sleep+0xc0/0xc0
[   58.438040][  T275]  dbJoin+0x2e9/0x310
[   58.442012][  T275]  dbFreeBits+0x4ef/0xdb0
[   58.446332][  T275]  dbFree+0x357/0x670
[   58.450305][  T275]  txFreeMap+0x966/0xd50
[   58.454965][  T275]  ? _raw_spin_unlock+0x24/0x40
[   58.459808][  T275]  ? __mark_inode_dirty+0x5c1/0xd60
[   58.464994][  T275]  xtTruncate+0xe58/0x3260
[   58.469400][  T275]  ? reacquire_held_locks+0x660/0x660
[   58.474871][  T275]  ? xtInitRoot+0x160/0x160
[   58.479374][  T275]  ? invalidate_inode_page+0x370/0x370
[   58.484830][  T275]  jfs_free_zero_link+0x46a/0x6e0
[   58.489838][  T275]  ? jfs_write_failed+0x190/0x190
[   58.494850][  T275]  ? bit_waitqueue+0x30/0x30
[   58.499425][  T275]  jfs_evict_inode+0x35b/0x440
[   58.504171][  T275]  ? jfs_write_inode+0x210/0x210
[   58.509094][  T275]  evict+0x529/0x930
[   58.512981][  T275]  ? mode_strip_sgid+0x210/0x210
[   58.517911][  T275]  ? _raw_spin_unlock+0x24/0x40
[   58.522747][  T275]  ? iput+0x6f5/0x8b0
[   58.526719][  T275]  txUpdateMap+0x825/0x9e0
[   58.531140][  T275]  ? txCommit+0x6ba0/0x6ba0
[   58.535661][  T275]  jfs_lazycommit+0x470/0xc30
[   58.540324][  T275]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[   58.546204][  T275]  ? lockdep_hardirqs_on+0x94/0x130
[   58.551395][  T275]  ? txFreelock+0x580/0x580
[   58.555902][  T275]  ? sched_dynamic_update+0x240/0x240
[   58.561290][  T275]  kthread+0x3f6/0x4f0
[   58.565342][  T275]  ? txFreelock+0x580/0x580
[   58.569831][  T275]  ? kthread_blkcg+0xd0/0xd0
[   58.574406][  T275]  ret_from_fork+0x1f/0x30
[   58.578816][  T275]  </TASK>
[   58.581821][  T276] CPU: 0 PID: 276 Comm: jfsCommit Not tainted 5.15.169-syzkaller #0
[   58.586275][  T275] ================================================================================
[   58.589800][  T276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.599099][  T275] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[   58.609092][  T276] Call Trace:
[   58.609100][  T276]  <TASK>
[   58.622423][  T276]  dump_stack_lvl+0x1e3/0x2d0
[   58.627090][  T276]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   58.632710][  T276]  ? panic+0x860/0x860
[   58.636768][  T276]  ? rcu_is_watching+0x11/0xa0
[   58.641524][  T276]  ? kmem_cache_free+0x146/0x1f0
[   58.646448][  T276]  __ubsan_handle_out_of_bounds+0x118/0x140
[   58.652333][  T276]  dbSplit+0x1fd/0x220
[   58.656396][  T276]  dbAllocBits+0x4e5/0x9a0
[   58.660805][  T276]  dbFree+0x581/0x670
[   58.664776][  T276]  txFreeMap+0x966/0xd50
[   58.669007][  T276]  ? _raw_spin_unlock+0x24/0x40
[   58.673841][  T276]  ? __mark_inode_dirty+0x5c1/0xd60
[   58.679025][  T276]  xtTruncate+0xe58/0x3260
[   58.683511][  T276]  ? reacquire_held_locks+0x660/0x660
[   58.688887][  T276]  ? xtInitRoot+0x160/0x160
[   58.693391][  T276]  ? invalidate_inode_page+0x370/0x370
[   58.698845][  T276]  jfs_free_zero_link+0x46a/0x6e0
[   58.703854][  T276]  ? jfs_write_failed+0x190/0x190
[   58.708871][  T276]  ? bit_waitqueue+0x30/0x30
[   58.713453][  T276]  jfs_evict_inode+0x35b/0x440
[   58.718202][  T276]  ? jfs_write_inode+0x210/0x210
[   58.723127][  T276]  evict+0x529/0x930
[   58.727015][  T276]  ? mode_strip_sgid+0x210/0x210
[   58.731938][  T276]  ? _raw_spin_unlock+0x24/0x40
[   58.736770][  T276]  ? iput+0x6f5/0x8b0
[   58.740737][  T276]  txUpdateMap+0x825/0x9e0
[   58.745146][  T276]  ? txCommit+0x6ba0/0x6ba0
[   58.749639][  T276]  jfs_lazycommit+0x470/0xc30
[   58.754295][  T276]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[   58.760172][  T276]  ? lockdep_hardirqs_on+0x94/0x130
[   58.765358][  T276]  ? txFreelock+0x580/0x580
[   58.769846][  T276]  ? sched_dynamic_update+0x240/0x240
[   58.775223][  T276]  kthread+0x3f6/0x4f0
[   58.779274][  T276]  ? txFreelock+0x580/0x580
[   58.783769][  T276]  ? kthread_blkcg+0xd0/0xd0
[   58.788343][  T276]  ret_from_fork+0x1f/0x30
[   58.792756][  T276]  </TASK>
[   58.795761][  T275] CPU: 1 PID: 275 Comm: jfsCommit Not tainted 5.15.169-syzkaller #0
[   58.796222][  T276] ================================================================================
[   58.803728][  T275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.813199][  T276] ==================================================================
[   58.823011][  T275] Call Trace:
[   58.823019][  T275]  <TASK>
[   58.823027][  T275]  dump_stack_lvl+0x1e3/0x2d0
[   58.831098][  T276] BUG: KASAN: use-after-free in dbSplit+0x1ca/0x220
[   58.834363][  T275]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   58.837271][  T276] Read of size 1 at addr ffff888173f9c021 by task jfsCommit/276
[   58.841921][  T275]  ? panic+0x860/0x860
[   58.848473][  T276] 
[   58.868034][  T275]  panic+0x318/0x860
[   58.871915][  T275]  ? check_panic_on_warn+0x1d/0xa0
[   58.877009][  T275]  ? fb_is_primary_device+0xd0/0xd0
[   58.882192][  T275]  ? dump_stack_lvl+0x24f/0x2d0
[   58.887031][  T275]  check_panic_on_warn+0x7e/0xa0
[   58.891953][  T275]  __ubsan_handle_out_of_bounds+0x138/0x140
[   58.897846][  T275]  ? __might_sleep+0xc0/0xc0
[   58.902497][  T275]  dbJoin+0x2e9/0x310
[   58.906483][  T275]  dbFreeBits+0x4ef/0xdb0
[   58.910811][  T275]  dbFree+0x357/0x670
[   58.914805][  T275]  txFreeMap+0x966/0xd50
[   58.919044][  T275]  ? _raw_spin_unlock+0x24/0x40
[   58.923898][  T275]  ? __mark_inode_dirty+0x5c1/0xd60
[   58.929104][  T275]  xtTruncate+0xe58/0x3260
[   58.933526][  T275]  ? reacquire_held_locks+0x660/0x660
[   58.938905][  T275]  ? xtInitRoot+0x160/0x160
[   58.943406][  T275]  ? invalidate_inode_page+0x370/0x370
[   58.948861][  T275]  jfs_free_zero_link+0x46a/0x6e0
[   58.953871][  T275]  ? jfs_write_failed+0x190/0x190
[   58.958885][  T275]  ? bit_waitqueue+0x30/0x30
[   58.963456][  T275]  jfs_evict_inode+0x35b/0x440
[   58.968203][  T275]  ? jfs_write_inode+0x210/0x210
[   58.973127][  T275]  evict+0x529/0x930
[   58.977009][  T275]  ? mode_strip_sgid+0x210/0x210
[   58.981935][  T275]  ? _raw_spin_unlock+0x24/0x40
[   58.986855][  T275]  ? iput+0x6f5/0x8b0
[   58.990824][  T275]  txUpdateMap+0x825/0x9e0
[   58.995230][  T275]  ? txCommit+0x6ba0/0x6ba0
[   58.999720][  T275]  jfs_lazycommit+0x470/0xc30
[   59.004375][  T275]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[   59.010249][  T275]  ? lockdep_hardirqs_on+0x94/0x130
[   59.015432][  T275]  ? txFreelock+0x580/0x580
[   59.019916][  T275]  ? sched_dynamic_update+0x240/0x240
[   59.025279][  T275]  kthread+0x3f6/0x4f0
[   59.029328][  T275]  ? txFreelock+0x580/0x580
[   59.033815][  T275]  ? kthread_blkcg+0xd0/0xd0
[   59.038387][  T275]  ret_from_fork+0x1f/0x30
[   59.042799][  T275]  </TASK>
[   59.045805][  T276] CPU: 0 PID: 276 Comm: jfsCommit Not tainted 5.15.169-syzkaller #0
[   59.053785][  T276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.063824][  T276] Call Trace:
[   59.067090][  T276]  <TASK>
[   59.070009][  T276]  dump_stack_lvl+0x1e3/0x2d0
[   59.074775][  T276]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   59.080393][  T276]  ? _printk+0xd1/0x120
[   59.084539][  T276]  ? __wake_up_klogd+0xcc/0x100
[   59.089397][  T276]  ? panic+0x860/0x860
[   59.093479][  T276]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   59.098936][  T276]  ? rcu_is_watching+0x11/0xa0
[   59.103700][  T276]  print_address_description+0x63/0x3b0
[   59.109239][  T276]  ? dbSplit+0x1ca/0x220
[   59.113472][  T276]  kasan_report+0x16b/0x1c0
[   59.117977][  T276]  ? dbSplit+0x1ca/0x220
[   59.122214][  T276]  dbSplit+0x1ca/0x220
[   59.126273][  T276]  dbAllocBits+0x4e5/0x9a0
[   59.130682][  T276]  dbFree+0x581/0x670
[   59.134658][  T276]  txFreeMap+0x966/0xd50
[   59.138889][  T276]  ? _raw_spin_unlock+0x24/0x40
[   59.143735][  T276]  ? __mark_inode_dirty+0x5c1/0xd60
[   59.148927][  T276]  xtTruncate+0xe58/0x3260
[   59.153456][  T276]  ? reacquire_held_locks+0x660/0x660
[   59.158846][  T276]  ? xtInitRoot+0x160/0x160
[   59.163358][  T276]  ? invalidate_inode_page+0x370/0x370
[   59.168820][  T276]  jfs_free_zero_link+0x46a/0x6e0
[   59.173847][  T276]  ? jfs_write_failed+0x190/0x190
[   59.178875][  T276]  ? bit_waitqueue+0x30/0x30
[   59.183456][  T276]  jfs_evict_inode+0x35b/0x440
[   59.188209][  T276]  ? jfs_write_inode+0x210/0x210
[   59.193137][  T276]  evict+0x529/0x930
[   59.197028][  T276]  ? mode_strip_sgid+0x210/0x210
[   59.201955][  T276]  ? _raw_spin_unlock+0x24/0x40
[   59.206790][  T276]  ? iput+0x6f5/0x8b0
[   59.210764][  T276]  txUpdateMap+0x825/0x9e0
[   59.215173][  T276]  ? txCommit+0x6ba0/0x6ba0
[   59.219668][  T276]  jfs_lazycommit+0x470/0xc30
[   59.224329][  T276]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[   59.230206][  T276]  ? lockdep_hardirqs_on+0x94/0x130
[   59.235396][  T276]  ? txFreelock+0x580/0x580
[   59.239885][  T276]  ? sched_dynamic_update+0x240/0x240
[   59.245250][  T276]  kthread+0x3f6/0x4f0
[   59.249302][  T276]  ? txFreelock+0x580/0x580
[   59.253791][  T276]  ? kthread_blkcg+0xd0/0xd0
[   59.258367][  T276]  ret_from_fork+0x1f/0x30
[   59.262779][  T276]  </TASK>
[   59.265783][  T276] 
[   59.268086][  T276] The buggy address belongs to the page:
[   59.273705][  T276] page:ffffea0005cfe700 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x173f9c
[   59.283926][  T276] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[   59.291114][  T276] raw: 057ff00000000000 ffffea0005cfe708 ffffea0005cfe708 0000000000000000
[   59.299681][  T276] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   59.308237][  T276] page dumped because: kasan: bad access detected
[   59.314629][  T276] page_owner info is not present (never set?)
[   59.320669][  T276] 
[   59.322972][  T276] Memory state around the buggy address:
[   59.328582][  T276]  ffff888173f9bf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   59.336625][  T276]  ffff888173f9bf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   59.344665][  T276] >ffff888173f9c000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   59.352705][  T276]                                ^
[   59.357792][  T276]  ffff888173f9c080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   59.365831][  T276]  ffff888173f9c100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   59.373873][  T276] ==================================================================
[   59.381911][  T276] Disabling lock debugging due to kernel taint
[   59.388120][  T275] Kernel Offset: disabled
[   59.392443][  T275] Rebooting in 86400 seconds..