Warning: Permanently added '10.128.0.164' (ED25519) to the list of known hosts.
executing program
[   81.607343][ T4246] loop0: detected capacity change from 0 to 32768
[   81.628238][ T4246] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 1
[   81.628238][ T4246] 
[   81.641006][ T4246] ERROR: (device loop0): remounting filesystem as read-only
[   81.648666][ T4246] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 3
[   81.648666][ T4246] 
[   81.660766][ T4246] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   81.660766][ T4246] 
[   81.688415][  T108] BUG: Bad page state in process jfsCommit  pfn:799d7
[   81.695456][  T108] page:ffffea0001e675c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x799d7
[   81.707623][  T108] flags: 0xfff00000002047(locked|referenced|uptodate|workingset|private|node=0|zone=1|lastcpupid=0x7ff)
[   81.720741][  T108] raw: 00fff00000002047 dead000000000100 dead000000000122 0000000000000000
[   81.732577][  T108] raw: 000000000000001c ffff8880290949b0 00000000ffffffff 0000000000000000
[   81.741852][  T108] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[   81.749605][  T108] page_owner tracks the page as allocated
[   81.755436][  T108] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x40c40(GFP_NOFS|__GFP_COMP), pid 4246, tgid 4246 (syz-executor110), ts 81625670049, free_ts 72067259651
[   81.773425][  T108]  post_alloc_hook+0x18d/0x1b0
[   81.778608][  T108]  get_page_from_freelist+0x3731/0x38d0
[   81.784265][  T108]  __alloc_pages+0x28d/0x770
[   81.790497][  T108]  folio_alloc+0x1a/0x50
[   81.794878][  T108]  filemap_alloc_folio+0xda/0x4f0
[   81.800285][  T108]  do_read_cache_folio+0x2a7/0x810
[   81.806074][  T108]  do_read_cache_page+0x32/0x220
[   81.811553][  T108]  __get_metapage+0x32c/0x1040
[   81.816502][  T108]  diRead+0x707/0xbb0
[   81.820633][  T108]  jfs_iget+0x88/0x3b0
[   81.824816][  T108]  jfs_fill_super+0x804/0xc40
[   81.829975][  T108]  mount_bdev+0x2c9/0x3f0
[   81.834378][  T108]  legacy_get_tree+0xeb/0x180
[   81.839402][  T108]  vfs_get_tree+0x88/0x270
[   81.844258][  T108]  do_new_mount+0x2ba/0xb40
[   81.849410][  T108]  __se_sys_mount+0x2d5/0x3c0
[   81.854234][  T108] page last free stack trace:
[   81.859164][  T108]  free_unref_page_prepare+0x12a6/0x15b0
[   81.864885][  T108]  free_unref_page+0x33/0x3e0
[   81.870428][  T108]  pipe_read+0x6e1/0x12a0
[   81.875105][  T108]  vfs_read+0x88d/0xbf0
[   81.879487][  T108]  ksys_read+0x19c/0x2c0
[   81.883934][  T108]  do_syscall_64+0x3b/0xb0
[   81.888482][  T108]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   81.894452][  T108] Modules linked in:
[   81.898726][  T108] CPU: 1 PID: 108 Comm: jfsCommit Not tainted 6.1.134-syzkaller #0
[   81.906753][  T108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   81.916927][  T108] Call Trace:
[   81.920479][  T108]  <TASK>
[   81.923419][  T108]  dump_stack_lvl+0x1e3/0x2cb
[   81.928161][  T108]  ? nf_tcp_handle_invalid+0x647/0x647
[   81.934883][  T108]  ? is_module_text_address+0x140/0x140
[   81.940663][  T108]  bad_page+0x14b/0x170
[   81.945234][  T108]  free_unref_page_prepare+0x60f/0x15b0
[   81.951191][  T108]  free_unref_page+0x33/0x3e0
[   81.956060][  T108]  txUnlock+0x282/0xca0
[   81.960391][  T108]  ? lockdep_hardirqs_on+0x94/0x130
[   81.965735][  T108]  jfs_lazycommit+0x5d0/0xb60
[   81.970563][  T108]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[   81.976713][  T108]  ? lockdep_hardirqs_on+0x94/0x130
[   81.982002][  T108]  ? txFreelock+0x580/0x580
[   81.986582][  T108]  ? do_task_dead+0xd0/0xd0
[   81.991207][  T108]  ? _raw_spin_unlock+0x40/0x40
[   81.996161][  T108]  ? __kthread_parkme+0x168/0x1c0
[   82.001654][  T108]  kthread+0x28d/0x320
[   82.005857][  T108]  ? txFreelock+0x580/0x580
[   82.010372][  T108]  ? kthread_blkcg+0xd0/0xd0
[   82.015262][  T108]  ret_from_fork+0x1f/0x30
[   82.019726][  T108]  </TASK>
[   82.023345][  T108] Disabling lock debugging due to kernel taint
[   82.029722][  T108] page:ffffea0001e675c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x799d7
[   82.040094][  T108] flags: 0xfff00000002047(locked|referenced|uptodate|workingset|private|node=0|zone=1|lastcpupid=0x7ff)
[   82.052026][  T108] raw: 00fff00000002047 dead000000000100 dead000000000122 0000000000000000
[   82.060909][  T108] raw: 000000000000001c ffff8880290949b0 00000000ffffffff 0000000000000000
[   82.069890][  T108] page dumped because: VM_BUG_ON_FOLIO(((unsigned int) folio_ref_count(folio) + 127u <= 127u))
[   82.080345][  T108] page_owner tracks the page as allocated
[   82.086353][  T108] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x40c40(GFP_NOFS|__GFP_COMP), pid 4246, tgid 4246 (syz-executor110), ts 81625670049, free_ts 72067259651
[   82.103486][  T108]  post_alloc_hook+0x18d/0x1b0
[   82.108436][  T108]  get_page_from_freelist+0x3731/0x38d0
[   82.114032][  T108]  __alloc_pages+0x28d/0x770
[   82.118843][  T108]  folio_alloc+0x1a/0x50
[   82.123664][  T108]  filemap_alloc_folio+0xda/0x4f0
[   82.129051][  T108]  do_read_cache_folio+0x2a7/0x810
[   82.134204][  T108]  do_read_cache_page+0x32/0x220
[   82.139530][  T108]  __get_metapage+0x32c/0x1040
[   82.144463][  T108]  diRead+0x707/0xbb0
[   82.148657][  T108]  jfs_iget+0x88/0x3b0
[   82.152787][  T108]  jfs_fill_super+0x804/0xc40
[   82.157601][  T108]  mount_bdev+0x2c9/0x3f0
[   82.162058][  T108]  legacy_get_tree+0xeb/0x180
[   82.166846][  T108]  vfs_get_tree+0x88/0x270
[   82.171705][  T108]  do_new_mount+0x2ba/0xb40
[   82.176312][  T108]  __se_sys_mount+0x2d5/0x3c0
[   82.181044][  T108] page last free stack trace:
[   82.185901][  T108]  free_unref_page_prepare+0x12a6/0x15b0
[   82.191601][  T108]  free_unref_page+0x33/0x3e0
[   82.196607][  T108]  pipe_read+0x6e1/0x12a0
[   82.201046][  T108]  vfs_read+0x88d/0xbf0
[   82.205980][  T108]  ksys_read+0x19c/0x2c0
[   82.210505][  T108]  do_syscall_64+0x3b/0xb0
[   82.215126][  T108]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   82.222264][  T108] ------------[ cut here ]------------
[   82.227809][  T108] kernel BUG at include/linux/mm.h:1135!
[   82.233521][  T108] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   82.239755][  T108] CPU: 0 PID: 108 Comm: jfsCommit Tainted: G    B              6.1.134-syzkaller #0
[   82.249548][  T108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   82.259815][  T108] RIP: 0010:put_metapage+0x25c/0x300
[   82.265246][  T108] Code: 2c 24 49 81 e5 ff 0f 00 00 74 21 e8 6e 63 77 fe e9 a0 00 00 00 e8 64 63 77 fe 48 8b 3c 24 48 c7 c6 00 83 46 8b e8 34 f1 b6 fe <0f> 0b 48 8b 1c 24 48 89 df be 08 00 00 00 e8 b1 c6 ce fe 48 c1 eb
[   82.285854][  T108] RSP: 0018:ffffc90002d27cb8 EFLAGS: 00010246
[   82.294034][  T108] RAX: 29d17500b77cae00 RBX: 000000000000007f RCX: ffffffff816adbb7
[   82.302124][  T108] RDX: 0000000000000000 RSI: ffffffff8b5f7340 RDI: ffffffff8b5f7300
[   82.310453][  T108] RBP: ffff8880290949b0 R08: dffffc0000000000 R09: fffffbfff1d417ce
[   82.318534][  T108] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   82.326616][  T108] R13: ffffea0001e675f4 R14: 1ffff1100521293b R15: ffff8880290949d8
[   82.335134][  T108] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[   82.344177][  T108] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   82.351707][  T108] CR2: 000055ce8a7f3f58 CR3: 0000000018a47000 CR4: 00000000003506f0
[   82.360085][  T108] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   82.368195][  T108] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   82.376280][  T108] Call Trace:
[   82.379580][  T108]  <TASK>
[   82.382647][  T108]  txUnlock+0x42f/0xca0
[   82.386884][  T108]  jfs_lazycommit+0x5d0/0xb60
[   82.391685][  T108]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[   82.397617][  T108]  ? lockdep_hardirqs_on+0x94/0x130
[   82.403211][  T108]  ? txFreelock+0x580/0x580
[   82.407771][  T108]  ? do_task_dead+0xd0/0xd0
[   82.412393][  T108]  ? _raw_spin_unlock+0x40/0x40
[   82.417457][  T108]  ? __kthread_parkme+0x168/0x1c0
[   82.422709][  T108]  kthread+0x28d/0x320
[   82.426879][  T108]  ? txFreelock+0x580/0x580
[   82.431394][  T108]  ? kthread_blkcg+0xd0/0xd0
[   82.436168][  T108]  ret_from_fork+0x1f/0x30
[   82.440690][  T108]  </TASK>
[   82.443728][  T108] Modules linked in:
[   82.447933][  T108] ---[ end trace 0000000000000000 ]---
[   82.454007][  T108] RIP: 0010:put_metapage+0x25c/0x300
[   82.460016][  T108] Code: 2c 24 49 81 e5 ff 0f 00 00 74 21 e8 6e 63 77 fe e9 a0 00 00 00 e8 64 63 77 fe 48 8b 3c 24 48 c7 c6 00 83 46 8b e8 34 f1 b6 fe <0f> 0b 48 8b 1c 24 48 89 df be 08 00 00 00 e8 b1 c6 ce fe 48 c1 eb
[   82.479852][  T108] RSP: 0018:ffffc90002d27cb8 EFLAGS: 00010246
[   82.486001][  T108] RAX: 29d17500b77cae00 RBX: 000000000000007f RCX: ffffffff816adbb7
[   82.494383][  T108] RDX: 0000000000000000 RSI: ffffffff8b5f7340 RDI: ffffffff8b5f7300
[   82.502455][  T108] RBP: ffff8880290949b0 R08: dffffc0000000000 R09: fffffbfff1d417ce
[   82.511060][  T108] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   82.519460][  T108] R13: ffffea0001e675f4 R14: 1ffff1100521293b R15: ffff8880290949d8
[   82.527590][  T108] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[   82.536739][  T108] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   82.543327][  T108] CR2: 000055ce8a7f3f58 CR3: 0000000018a47000 CR4: 00000000003506f0
[   82.551745][  T108] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   82.559913][  T108] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   82.567994][  T108] Kernel panic - not syncing: Fatal exception
[   82.574363][  T108] Kernel Offset: disabled
[   82.578817][  T108] Rebooting in 86400 seconds..