Warning: Permanently added '10.128.10.15' (ED25519) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
[  108.934042][ T3530] loop2: detected capacity change from 0 to 32768
[  109.017277][ T3528] loop4: detected capacity change from 0 to 32768
[  109.075901][ T3529] loop0: detected capacity change from 0 to 32768
[  109.154078][ T3525] loop3: detected capacity change from 0 to 32768
[  109.238921][ T3526] loop1: detected capacity change from 0 to 32768
[  109.262466][ T3528] loop4: detected capacity change from 32768 to 32767
[  109.281746][ T3529] loop0: detected capacity change from 32768 to 32767
[  109.301534][ T3530] loop2: detected capacity change from 32768 to 32767
[  109.356754][ T3520] ERROR: (device loop0): diRead: i_ino != di_number
[  109.356754][ T3520] 
[  109.390277][ T3524] ERROR: (device loop4): diRead: i_ino != di_number
[  109.390277][ T3524] 
[  109.419686][ T3520] ERROR: (device loop0): remounting filesystem as read-only
[  109.459300][ T3522] ERROR: (device loop2): diRead: i_ino != di_number
[  109.459300][ T3522] 
[  109.515709][ T3524] ERROR: (device loop4): remounting filesystem as read-only
[  109.548339][ T3522] ERROR: (device loop2): remounting filesystem as read-only
[  109.557827][ T3524] jfs_lookup: iget failed on inum 32
[  109.568170][ T3526] loop1: detected capacity change from 32768 to 32767
[  109.585349][ T3524] ERROR: (device loop4): diRead: i_ino != di_number
[  109.585349][ T3524] 
[  109.595379][ T3522] jfs_lookup: iget failed on inum 32
[  109.616616][ T3525] loop_set_status: loop3 () has still dirty pages (nrpages=1)
[  109.657734][ T3521] ERROR: (device loop1): diRead: i_ino != di_number
[  109.657734][ T3521] 
[  109.665195][ T3520] jfs_lookup: iget failed on inum 32
[  109.692875][ T3522] ERROR: (device loop2): diRead: i_ino != di_number
[  109.692875][ T3522] 
[  109.729110][ T3524] jfs_lookup: iget failed on inum 32
[  109.736114][ T3522] jfs_lookup: iget failed on inum 32
[  109.757675][ T3523] non-latin1 character 0x2e66 found in JFS file name
[  109.777678][ T3521] ERROR: (device loop1): remounting filesystem as read-only
[  109.795186][ T3520] ERROR: (device loop0): diRead: i_ino != di_number
[  109.795186][ T3520] 
[  109.814566][ T3523] mount with iocharset=utf8 to access
[  109.853149][ T3521] jfs_lookup: iget failed on inum 32
[  109.871358][ T3520] jfs_lookup: iget failed on inum 32
[  109.890551][ T3521] ERROR: (device loop1): diRead: i_ino != di_number
[  109.890551][ T3521] 
[  109.914460][ T3521] jfs_lookup: iget failed on inum 32
[  114.193757][  T275] ================================================================================
[  114.193872][  T276] ==================================================================
[  114.210137][  T275] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2846:24
[  114.230413][  T276] BUG: KASAN: use-after-free in dbJoin+0x205/0x310
[  114.230450][  T276] Read of size 1 at addr ffff88817b6f5061 by task jfsCommit/276
[  114.230467][  T276] 
[  114.230488][  T276] CPU: 1 PID: 276 Comm: jfsCommit Not tainted 5.15.158-syzkaller #0
[  114.230509][  T276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  114.230521][  T276] Call Trace:
[  114.230531][  T276]  <TASK>
[  114.230541][  T276]  dump_stack_lvl+0x1e3/0x2d0
[  114.261955][  T275] index 4294967295 is out of range for type 's8[1365]' (aka 'signed char[1365]')
[  114.267152][  T276]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  114.423672][  T276]  ? _printk+0xd1/0x120
[  114.441300][  T276]  ? __wake_up_klogd+0xcc/0x100
[  114.447376][  T276]  ? panic+0x860/0x860
[  114.464779][  T276]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  114.479639][  T276]  print_address_description+0x63/0x3b0
[  114.486432][  T276]  ? dbJoin+0x205/0x310
[  114.501594][  T276]  kasan_report+0x16b/0x1c0
[  114.506980][  T276]  ? dbJoin+0x205/0x310
[  114.522456][  T276]  dbJoin+0x205/0x310
[  114.527268][  T276]  dbFreeBits+0x4ef/0xdb0
[  114.543620][  T276]  dbFree+0x357/0x670
[  114.548121][  T276]  txFreeMap+0x966/0xd50
[  114.564025][  T276]  ? _raw_spin_unlock+0x24/0x40
[  114.581262][  T276]  ? __mark_inode_dirty+0x5c1/0xd60
[  114.587310][  T276]  xtTruncate+0xe58/0x3260
[  114.602004][  T276]  ? xtInitRoot+0x160/0x160
[  114.607705][  T276]  ? invalidate_inode_page+0x370/0x370
[  114.623673][  T276]  jfs_free_zero_link+0x46a/0x6e0
[  114.636758][  T276]  ? jfs_write_failed+0x190/0x190
[  114.648232][  T276]  ? bit_waitqueue+0x30/0x30
[  114.663456][  T276]  jfs_evict_inode+0x35b/0x440
[  114.668380][  T276]  ? jfs_write_inode+0x210/0x210
[  114.688094][  T276]  evict+0x2a4/0x620
[  114.703479][  T276]  txUpdateMap+0x825/0x9e0
[  114.708410][  T276]  ? txCommit+0x6ba0/0x6ba0
[  114.724222][  T276]  jfs_lazycommit+0x470/0xc30
[  114.729725][  T276]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  114.749079][  T276]  ? lockdep_hardirqs_on+0x94/0x130
[  114.767969][  T276]  ? txFreelock+0x580/0x580
[  114.782982][  T276]  ? sched_dynamic_update+0x240/0x240
[  114.802827][  T276]  kthread+0x3f6/0x4f0
[  114.807616][  T276]  ? txFreelock+0x580/0x580
[  114.823751][  T276]  ? kthread_blkcg+0xd0/0xd0
[  114.829284][  T276]  ret_from_fork+0x1f/0x30
[  114.844954][  T276]  </TASK>
[  114.850037][  T276] 
[  114.850038][  T275] CPU: 0 PID: 275 Comm: jfsCommit Not tainted 5.15.158-syzkaller #0
[  114.862824][  T276] The buggy address belongs to the page:
[  114.862841][  T276] page:ffffea0005edbd40 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x17b6f5
[  114.879512][  T275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  114.888590][  T276] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[  114.922864][  T275] Call Trace:
[  114.922883][  T275]  <TASK>
[  114.943671][  T276] raw: 057ff00000000000 ffffea0005edbd48 ffffea0005edbd48 0000000000000000
[  114.961774][  T275]  dump_stack_lvl+0x1e3/0x2d0
[  114.965660][  T276] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  114.969969][  T275]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  114.989363][  T276] page dumped because: kasan: bad access detected
[  115.004876][  T275]  ? panic+0x860/0x860
[  115.025904][  T276] page_owner info is not present (never set?)
[  115.025917][  T276] 
[  115.042397][  T275]  __ubsan_handle_out_of_bounds+0x118/0x140
[  115.051134][  T276] Memory state around the buggy address:
[  115.051154][  T276]  ffff88817b6f4f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  115.057410][  T275]  ? __might_sleep+0xc0/0xc0
[  115.074412][  T276]  ffff88817b6f4f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  115.077664][  T275]  dbJoin+0x2e9/0x310
[  115.092184][  T276] >ffff88817b6f5000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  115.101613][  T275]  dbFreeBits+0x4ef/0xdb0
[  115.119736][  T276]                                                        ^
[  115.133155][  T275]  dbFree+0x357/0x670
[  115.148112][  T276]  ffff88817b6f5080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  115.156958][  T275]  txFreeMap+0x966/0xd50
[  115.174464][  T276]  ffff88817b6f5100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  115.183964][  T275]  ? _raw_spin_unlock+0x24/0x40
[  115.198200][  T276] ==================================================================
[  115.198215][  T276] Disabling lock debugging due to kernel taint
[  115.213968][  T275]  ? __mark_inode_dirty+0x5c1/0xd60
[  115.232691][  T276] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  115.237680][  T275]  xtTruncate+0xe58/0x3260
[  115.340795][  T275]  ? xtInitRoot+0x160/0x160
[  115.359439][  T275]  ? invalidate_inode_page+0x370/0x370
[  115.371715][  T275]  jfs_free_zero_link+0x46a/0x6e0
[  115.378336][  T275]  ? jfs_write_failed+0x190/0x190
[  115.388292][  T275]  ? bit_waitqueue+0x30/0x30
[  115.396090][  T275]  jfs_evict_inode+0x35b/0x440
[  115.402247][  T275]  ? jfs_write_inode+0x210/0x210
[  115.413528][  T275]  evict+0x2a4/0x620
[  115.419483][  T275]  txUpdateMap+0x825/0x9e0
[  115.432481][  T275]  ? txCommit+0x6ba0/0x6ba0
[  115.438373][  T275]  jfs_lazycommit+0x470/0xc30
[  115.450617][  T275]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  115.458602][  T275]  ? lockdep_hardirqs_on+0x94/0x130
[  115.474263][  T275]  ? txFreelock+0x580/0x580
[  115.479671][  T275]  ? sched_dynamic_update+0x240/0x240
[  115.493792][  T275]  kthread+0x3f6/0x4f0
[  115.498534][  T275]  ? txFreelock+0x580/0x580
[  115.512373][  T275]  ? kthread_blkcg+0xd0/0xd0
[  115.520130][  T275]  ret_from_fork+0x1f/0x30
[  115.540313][  T275]  </TASK>
[  115.544712][  T276] CPU: 1 PID: 276 Comm: jfsCommit Tainted: G    B             5.15.158-syzkaller #0
[  115.548121][  T275] ================================================================================
[  115.570905][  T276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  115.570926][  T276] Call Trace:
[  115.570935][  T276]  <TASK>
[  115.570944][  T276]  dump_stack_lvl+0x1e3/0x2d0
[  115.570983][  T276]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  115.571003][  T276]  ? panic+0x860/0x860
[  115.571025][  T276]  ? preempt_schedule_common+0xa6/0xd0
[  115.571046][  T276]  ? preempt_schedule+0xd9/0xe0
[  115.571068][  T276]  panic+0x318/0x860
[  115.571090][  T276]  ? check_panic_on_warn+0x1d/0xa0
[  115.571111][  T276]  ? fb_is_primary_device+0xd0/0xd0
[  115.571135][  T276]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[  115.592936][  T275] ================================================================================
[  115.614544][  T276]  ? _raw_spin_unlock+0x40/0x40
[  115.614589][  T276]  ? print_memory_metadata+0xe2/0x140
[  115.614613][  T276]  check_panic_on_warn+0x7e/0xa0
[  115.614636][  T276]  ? dbJoin+0x205/0x310
[  115.619333][  T275] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2968:18
[  115.631820][  T276]  end_report+0x6d/0xf0
[  115.631856][  T276]  kasan_report+0x18e/0x1c0
[  115.631875][  T276]  ? dbJoin+0x205/0x310
[  115.631896][  T276]  dbJoin+0x205/0x310
[  115.631915][  T276]  dbFreeBits+0x4ef/0xdb0
[  115.631939][  T276]  dbFree+0x357/0x670
[  115.631970][  T276]  txFreeMap+0x966/0xd50
[  115.637949][  T275] index -3 is out of range for type 's8[1365]' (aka 'signed char[1365]')
[  115.654577][  T276]  ? _raw_spin_unlock+0x24/0x40
[  115.654614][  T276]  ? __mark_inode_dirty+0x5c1/0xd60
[  115.654639][  T276]  xtTruncate+0xe58/0x3260
[  115.654671][  T276]  ? xtInitRoot+0x160/0x160
[  115.973378][  T276]  ? invalidate_inode_page+0x370/0x370
[  115.979399][  T276]  jfs_free_zero_link+0x46a/0x6e0
[  115.997974][  T276]  ? jfs_write_failed+0x190/0x190
[  116.011949][  T276]  ? bit_waitqueue+0x30/0x30
[  116.019978][  T276]  jfs_evict_inode+0x35b/0x440
[  116.036662][  T276]  ? jfs_write_inode+0x210/0x210
[  116.058099][  T276]  evict+0x2a4/0x620
[  116.092250][  T276]  txUpdateMap+0x825/0x9e0
[  116.099656][  T276]  ? txCommit+0x6ba0/0x6ba0
[  116.133371][  T276]  jfs_lazycommit+0x470/0xc30
[  116.140252][  T276]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  116.207763][  T276]  ? lockdep_hardirqs_on+0x94/0x130
[  116.219300][  T276]  ? txFreelock+0x580/0x580
[  116.235388][  T276]  ? sched_dynamic_update+0x240/0x240
[  116.254286][  T276]  kthread+0x3f6/0x4f0
[  116.271258][  T276]  ? txFreelock+0x580/0x580
[  116.297330][  T276]  ? kthread_blkcg+0xd0/0xd0
[  116.327834][  T276]  ret_from_fork+0x1f/0x30
[  116.355433][  T276]  </TASK>
[  116.374038][  T275] CPU: 0 PID: 275 Comm: jfsCommit Tainted: G    B             5.15.158-syzkaller #0
[  116.418225][  T275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  116.451901][  T275] Call Trace:
[  116.463348][  T275]  <TASK>
[  116.473585][  T275]  dump_stack_lvl+0x1e3/0x2d0
[  116.486093][  T275]  ? __wake_up_klogd+0xd5/0x100
[  116.496221][  T275]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  116.514077][  T275]  ? panic+0x860/0x860
[  116.518638][  T275]  ? _printk+0xd1/0x120
[  116.535370][  T275]  ? dump_stack_lvl+0x24f/0x2d0
[  116.553790][  T275]  ? panic+0x860/0x860
[  116.563374][  T275]  __ubsan_handle_out_of_bounds+0x118/0x140
[  116.584900][  T275]  dbAdjTree+0x377/0x520
[  116.608835][  T275]  dbJoin+0x255/0x310
[  116.618013][  T275]  dbFreeBits+0x4ef/0xdb0
[  116.630989][  T275]  dbFree+0x357/0x670
[  116.640594][  T275]  txFreeMap+0x966/0xd50
[  116.657353][  T275]  ? _raw_spin_unlock+0x24/0x40
[  116.672420][  T275]  ? __mark_inode_dirty+0x5c1/0xd60
[  116.678372][  T275]  xtTruncate+0xe58/0x3260
[  116.696932][  T275]  ? xtInitRoot+0x160/0x160
[  116.712484][  T275]  ? invalidate_inode_page+0x370/0x370
[  116.727755][  T275]  jfs_free_zero_link+0x46a/0x6e0
[  116.740381][  T275]  ? jfs_write_failed+0x190/0x190
[  116.769956][  T275]  ? bit_waitqueue+0x30/0x30
[  116.793385][  T275]  jfs_evict_inode+0x35b/0x440
[  116.812085][  T275]  ? jfs_write_inode+0x210/0x210
[  116.833957][  T275]  evict+0x2a4/0x620
[  116.848377][  T275]  txUpdateMap+0x825/0x9e0
[  116.870831][  T275]  ? txCommit+0x6ba0/0x6ba0
[  116.892967][  T275]  jfs_lazycommit+0x470/0xc30
[  116.900559][  T275]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  116.920531][  T275]  ? lockdep_hardirqs_on+0x94/0x130
[  116.940476][  T275]  ? txFreelock+0x580/0x580
[  116.954104][  T275]  ? sched_dynamic_update+0x240/0x240
[  116.972997][  T275]  kthread+0x3f6/0x4f0
[  116.990979][  T275]  ? txFreelock+0x580/0x580
[  116.998486][  T275]  ? kthread_blkcg+0xd0/0xd0
[  117.017302][  T275]  ret_from_fork+0x1f/0x30
[  117.028659][  T275]  </TASK>
[  117.037531][  T276] Kernel Offset: disabled
[  117.057058][  T276] Rebooting in 86400 seconds..