Warning: Permanently added '10.128.0.136' (ED25519) to the list of known hosts. executing program [ 45.474755][ T4021] loop0: detected capacity change from 0 to 32768 executing program [ 46.391312][ T4023] loop0: detected capacity change from 0 to 32768 executing program [ 47.298269][ T4024] loop0: detected capacity change from 0 to 32768 executing program [ 47.660060][ T4025] loop0: detected capacity change from 0 to 32768 executing program [ 47.937606][ T4026] loop0: detected capacity change from 0 to 32768 executing program [ 48.571500][ T4027] loop0: detected capacity change from 0 to 32768 executing program [ 48.899210][ T4028] loop0: detected capacity change from 0 to 32768 executing program [ 49.177466][ T4029] loop0: detected capacity change from 0 to 32768 executing program [ 49.520844][ T4030] loop0: detected capacity change from 0 to 32768 executing program [ 49.844050][ T4031] loop0: detected capacity change from 0 to 32768 executing program [ 50.179906][ T4032] loop0: detected capacity change from 0 to 32768 executing program [ 50.480348][ T4033] loop0: detected capacity change from 0 to 32768 executing program [ 50.869083][ T4034] loop0: detected capacity change from 0 to 32768 executing program [ 51.214262][ T4035] loop0: detected capacity change from 0 to 32768 executing program [ 51.550354][ T4036] loop0: detected capacity change from 0 to 32768 executing program [ 51.842170][ T4037] loop0: detected capacity change from 0 to 32768 executing program [ 52.726613][ T4038] loop0: detected capacity change from 0 to 32768 executing program [ 53.026930][ T4039] loop0: detected capacity change from 0 to 32768 [ 53.123324][ T4039] ================================================================== [ 53.125000][ T4039] BUG: KASAN: slab-out-of-bounds in dtSearch+0x12c0/0x1f34 [ 53.126450][ T4039] Read of size 1 at addr ffff0000e1cb7f14 by task syz-executor137/4039 [ 53.128054][ T4039] [ 53.128511][ T4039] CPU: 0 PID: 4039 Comm: syz-executor137 Not tainted 5.15.173-syzkaller #0 [ 53.130172][ T4039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 53.132123][ T4039] Call trace: [ 53.132757][ T4039] dump_backtrace+0x0/0x530 [ 53.133657][ T4039] show_stack+0x2c/0x3c [ 53.134498][ T4039] dump_stack_lvl+0x108/0x170 [ 53.135410][ T4039] print_address_description+0x7c/0x3f0 [ 53.136463][ T4039] kasan_report+0x174/0x1e4 [ 53.137282][ T4039] __asan_report_load1_noabort+0x44/0x50 [ 53.138426][ T4039] dtSearch+0x12c0/0x1f34 [ 53.139260][ T4039] jfs_lookup+0x164/0x39c [ 53.140096][ T4039] __lookup_slow+0x250/0x388 [ 53.140982][ T4039] lookup_slow+0x60/0x84 [ 53.141802][ T4039] walk_component+0x394/0x4cc [ 53.142703][ T4039] path_lookupat+0x13c/0x3d0 [ 53.143581][ T4039] filename_lookup+0x1c4/0x4c8 [ 53.144547][ T4039] user_path_at_empty+0x5c/0x1a4 [ 53.145576][ T4039] __arm64_sys_chdir+0xc0/0x2d0 [ 53.146567][ T4039] invoke_syscall+0x98/0x2b8 [ 53.147471][ T4039] el0_svc_common+0x138/0x258 [ 53.148384][ T4039] do_el0_svc+0x58/0x14c [ 53.149236][ T4039] el0_svc+0x7c/0x1f0 [ 53.150015][ T4039] el0t_64_sync_handler+0x84/0xe4 [ 53.151004][ T4039] el0t_64_sync+0x1a0/0x1a4 [ 53.151855][ T4039] [ 53.152304][ T4039] Allocated by task 4039: [ 53.153130][ T4039] __kasan_slab_alloc+0x8c/0xcc [ 53.154183][ T4039] slab_post_alloc_hook+0x74/0x3f4 [ 53.155262][ T4039] kmem_cache_alloc+0x1dc/0x45c [ 53.156268][ T4039] jfs_alloc_inode+0x24/0x60 [ 53.157237][ T4039] iget_locked+0x180/0x720 [ 53.158063][ T4039] jfs_iget+0x30/0x364 [ 53.158931][ T4039] jfs_fill_super+0x65c/0xa08 [ 53.160040][ T4039] mount_bdev+0x274/0x370 [ 53.160982][ T4039] jfs_do_mount+0x44/0x58 [ 53.161947][ T4039] legacy_get_tree+0xd4/0x16c [ 53.162941][ T4039] vfs_get_tree+0x90/0x274 [ 53.163853][ T4039] do_new_mount+0x278/0x8fc [ 53.164861][ T4039] path_mount+0x594/0x101c [ 53.165853][ T4039] __arm64_sys_mount+0x510/0x5e0 [ 53.166886][ T4039] invoke_syscall+0x98/0x2b8 [ 53.167840][ T4039] el0_svc_common+0x138/0x258 [ 53.168822][ T4039] do_el0_svc+0x58/0x14c [ 53.169669][ T4039] el0_svc+0x7c/0x1f0 [ 53.170474][ T4039] el0t_64_sync_handler+0x84/0xe4 [ 53.171559][ T4039] el0t_64_sync+0x1a0/0x1a4 [ 53.172484][ T4039] [ 53.172908][ T4039] The buggy address belongs to the object at ffff0000e1cb6f00 [ 53.172908][ T4039] which belongs to the cache jfs_ip of size 2240 [ 53.175763][ T4039] The buggy address is located 1876 bytes to the right of [ 53.175763][ T4039] 2240-byte region [ffff0000e1cb6f00, ffff0000e1cb77c0) [ 53.178802][ T4039] The buggy address belongs to the page: [ 53.179905][ T4039] page:00000000942218eb refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x121cb0 [ 53.182002][ T4039] head:00000000942218eb order:3 compound_mapcount:0 compound_pincount:0 [ 53.183765][ T4039] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 53.185422][ T4039] raw: 05ffc00000010200 0000000000000000 dead000000000122 ffff0000c6166c00 [ 53.187171][ T4039] raw: 0000000000000000 00000000000d000d 00000001ffffffff 0000000000000000 [ 53.189018][ T4039] page dumped because: kasan: bad access detected [ 53.190305][ T4039] [ 53.190781][ T4039] Memory state around the buggy address: [ 53.191971][ T4039] ffff0000e1cb7e00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 53.193532][ T4039] ffff0000e1cb7e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 53.195184][ T4039] >ffff0000e1cb7f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 53.196744][ T4039] ^ [ 53.197655][ T4039] ffff0000e1cb7f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 53.199194][ T4039] ffff0000e1cb8000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 53.200865][ T4039] ================================================================== [ 53.202528][ T4039] Disabling lock debugging due to kernel taint executing program [ 53.682987][ T4040] loop0: detected capacity change from 0 to 32768 executing program [ 53.920182][ T4041] loop0: detected capacity change from 0 to 32768 executing program [ 54.753512][ T4042] loop0: detected capacity change from 0 to 32768 executing program [ 55.311697][ T4043] loop0: detected capacity change from 0 to 32768 executing program [ 55.599626][ T4044] loop0: detected capacity change from 0 to 32768 executing program [ 55.837662][ T4045] loop0: detected capacity change from 0 to 32768 executing program [ 56.060375][ T4046] loop0: detected capacity change from 0 to 32768 executing program [ 56.293537][ T4047] loop0: detected capacity change from 0 to 32768 executing program [ 56.528986][ T4048] loop0: detected capacity change from 0 to 32768 executing program [ 56.759613][ T4049] loop0: detected capacity change from 0 to 32768 executing program [ 57.058809][ T4050] loop0: detected capacity change from 0 to 32768 executing program [ 57.293862][ T4051] loop0: detected capacity change from 0 to 32768 executing program [ 58.182540][ T4052] loop0: detected capacity change from 0 to 32768 executing program [ 58.418115][ T4053] loop0: detected capacity change from 0 to 32768 executing program [ 58.973035][ T4054] loop0: detected capacity change from 0 to 32768 executing program [ 59.238264][ T4055] loop0: detected capacity change from 0 to 32768 executing program [ 60.083677][ T4056] loop0: detected capacity change from 0 to 32768 executing program [ 60.312783][ T4057] loop0: detected capacity change from 0 to 32768 executing program [ 60.568848][ T4058] loop0: detected capacity change from 0 to 32768 executing program [ 60.881875][ T4059] loop0: detected capacity change from 0 to 32768 executing program [ 61.123371][ T4060] loop0: detected capacity change from 0 to 32768 executing program [ 61.681150][ T4061] loop0: detected capacity change from 0 to 32768 executing program [ 62.052488][ T4062] loop0: detected capacity change from 0 to 32768 executing program [ 62.289894][ T4063] loop0: detected capacity change from 0 to 32768 executing program [ 62.812956][ T4064] loop0: detected capacity change from 0 to 32768