Warning: Permanently added '10.128.0.117' (ED25519) to the list of known hosts. executing program [ 67.399102][ T3546] loop0: detected capacity change from 0 to 32768 [ 67.538388][ T3546] ================================================================================ [ 67.538777][ T3549] syz-executor130[3549]: segfault at 0 ip 00007f3434eed4de sp 00007f3434e6e038 error 4 in syz-executor1303777376[7f3434eba000+8c000] likely on CPU 0 (core 0, socket 0) [ 67.548853][ T3546] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_txnmgr.c:1743:5 [ 67.565286][ T3549] Code: fd d7 c9 0f bc d1 c5 fe 7f 27 c5 fe 7f 6f 20 c5 fe 7f 77 40 c5 fe 7f 7f 60 49 83 c0 1f 49 29 d0 48 8d 7c 17 61 e9 d2 04 00 00 fe 6f 1e c5 fe 6f 56 20 c5 fd 74 cb c5 fd d7 d1 49 83 f8 21 0f [ 67.574598][ T3546] index 18 is out of range for type 'xad_t[18]' (aka 'struct xad[18]') [ 67.602268][ T3546] CPU: 1 PID: 3546 Comm: syz-executor130 Not tainted 6.1.87-syzkaller #0 [ 67.610776][ T3546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 67.620840][ T3546] Call Trace: [ 67.624139][ T3546] [ 67.627088][ T3546] dump_stack_lvl+0x1e3/0x2cb [ 67.631819][ T3546] ? nf_tcp_handle_invalid+0x642/0x642 [ 67.637296][ T3546] ? panic+0x764/0x764 [ 67.641381][ T3546] __ubsan_handle_out_of_bounds+0x118/0x140 [ 67.647299][ T3546] txCommit+0x3f07/0x6ba0 [ 67.652387][ T3546] ? trace_contention_end+0x61/0x170 [ 67.658148][ T3546] ? __lock_acquire+0x1f80/0x1f80 [ 67.663296][ T3546] ? txLinelock+0x160/0x160 [ 67.668468][ T3546] ? __mutex_unlock_slowpath+0x218/0x750 [ 67.674313][ T3546] jfs_commit_inode+0x362/0x580 [ 67.679476][ T3546] ? jfs_iget+0x3b0/0x3b0 [ 67.684220][ T3546] ? rcu_is_watching+0x11/0xb0 [ 67.689281][ T3546] ? __mark_inode_dirty+0x430/0xf80 [ 67.696151][ T3546] extAlloc+0xca8/0x1000 [ 67.703607][ T3546] ? jfs_ioc_trim+0x660/0x660 [ 67.709518][ T3546] jfs_get_block+0x417/0xe50 [ 67.714490][ T3546] ? create_page_buffers+0x1d2/0x4b0 [ 67.720025][ T3546] ? jfs_dirty_inode+0x230/0x230 [ 67.725009][ T3546] ? create_page_buffers+0x24e/0x4b0 [ 67.731140][ T3546] __block_write_begin_int+0x544/0x1a30 [ 67.736900][ T3546] ? rcu_is_watching+0x11/0xb0 [ 67.741682][ T3546] ? jfs_dirty_inode+0x230/0x230 [ 67.747089][ T3546] ? page_zero_new_buffers+0x650/0x650 [ 67.753760][ T3546] ? jfs_dirty_inode+0x230/0x230 [ 67.759618][ T3546] block_write_begin+0x98/0x1f0 [ 67.765472][ T3546] ? jfs_write_begin+0x16/0x60 [ 67.770459][ T3546] jfs_write_begin+0x2d/0x60 [ 67.776143][ T3546] generic_perform_write+0x2fc/0x5e0 [ 67.783927][ T3546] ? generic_file_direct_write+0x460/0x460 [ 67.790667][ T3546] ? __file_remove_privs+0x640/0x640 [ 67.797179][ T3546] ? generic_write_checks+0x15c/0x1c0 [ 67.803864][ T3546] ? clear_nonspinnable+0x60/0x60 [ 67.810167][ T3546] __generic_file_write_iter+0x176/0x400 [ 67.816817][ T3546] generic_file_write_iter+0xab/0x310 [ 67.822234][ T3546] do_iter_write+0x6e6/0xc50 [ 67.826866][ T3546] ? vfs_iter_write+0xa0/0xa0 [ 67.831769][ T3546] ? vfs_iter_write+0x69/0xa0 [ 67.836684][ T3546] iter_file_splice_write+0x830/0xfc0 [ 67.842100][ T3546] ? splice_from_pipe+0x240/0x240 [ 67.847228][ T3546] ? splice_shrink_spd+0xb0/0xb0 [ 67.852186][ T3546] ? common_file_perm+0x17d/0x1d0 [ 67.857249][ T3546] ? splice_from_pipe+0x240/0x240 [ 67.862319][ T3546] direct_splice_actor+0xe3/0x1c0 [ 67.867398][ T3546] splice_direct_to_actor+0x4c7/0xc30 [ 67.872906][ T3546] ? direct_file_splice_eof+0xa0/0xa0 [ 67.878300][ T3546] ? pipe_to_sendpage+0x350/0x350 [ 67.883340][ T3546] ? fsnotify_perm+0x67/0x590 [ 67.888026][ T3546] ? bpf_lsm_file_permission+0x5/0x10 [ 67.893505][ T3546] do_splice_direct+0x2a5/0x3e0 [ 67.898370][ T3546] ? splice_direct_to_actor+0xc30/0xc30 [ 67.903942][ T3546] ? rcu_read_lock_any_held+0xb3/0x160 [ 67.909502][ T3546] ? do_splice_direct+0x3e0/0x3e0 [ 67.914810][ T3546] do_sendfile+0x61c/0xff0 [ 67.919259][ T3546] ? rcu_is_watching+0x11/0xb0 [ 67.924038][ T3546] ? do_pwritev+0x360/0x360 [ 67.928753][ T3546] ? restore_fpregs_from_fpstate+0xfc/0x230 [ 67.934739][ T3546] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 67.940828][ T3546] __se_sys_sendfile64+0x178/0x1e0 [ 67.946966][ T3546] ? __x64_sys_sendfile64+0xa0/0xa0 [ 67.952369][ T3546] ? syscall_enter_from_user_mode+0x2e/0x230 [ 67.958374][ T3546] ? lockdep_hardirqs_on+0x94/0x130 [ 67.963936][ T3546] ? syscall_enter_from_user_mode+0x2e/0x230 [ 67.969934][ T3546] do_syscall_64+0x3b/0xb0 [ 67.974375][ T3546] ? clear_bhb_loop+0x45/0xa0 [ 67.979071][ T3546] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 67.985099][ T3546] RIP: 0033:0x7f3434ef2269 [ 67.989530][ T3546] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 68.016671][ T3546] RSP: 002b:00007f3434eb0218 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 68.027348][ T3546] RAX: ffffffffffffffda RBX: 00007f3434f7f648 RCX: 00007f3434ef2269 [ 68.036621][ T3546] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005 [ 68.044633][ T3546] RBP: 00007f3434f7f640 R08: 0000000000000000 R09: 0000000000000000 [ 68.052680][ T3546] R10: 0001000000201005 R11: 0000000000000246 R12: 00007f3434f7f64c [ 68.060713][ T3546] R13: 00007f3434f4bef8 R14: 00007f3434f46060 R15: 0031656c69662f2e [ 68.068721][ T3546] [ 68.072397][ T3546] ================================================================================ [ 68.081724][ T3546] Kernel panic - not syncing: UBSAN: panic_on_warn set ... [ 68.088946][ T3546] CPU: 1 PID: 3546 Comm: syz-executor130 Not tainted 6.1.87-syzkaller #0 [ 68.097377][ T3546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 68.107546][ T3546] Call Trace: [ 68.111567][ T3546] [ 68.114721][ T3546] dump_stack_lvl+0x1e3/0x2cb [ 68.122596][ T3546] ? nf_tcp_handle_invalid+0x642/0x642 [ 68.132882][ T3546] ? panic+0x764/0x764 [ 68.138319][ T3546] ? vscnprintf+0x59/0x80 [ 68.142899][ T3546] panic+0x318/0x764 [ 68.146931][ T3546] ? check_panic_on_warn+0x1d/0xa0 [ 68.152164][ T3546] ? memcpy_page_flushcache+0xfc/0xfc [ 68.157674][ T3546] ? dump_stack_lvl+0x24f/0x2cb [ 68.162577][ T3546] check_panic_on_warn+0x7e/0xa0 [ 68.167551][ T3546] __ubsan_handle_out_of_bounds+0x138/0x140 [ 68.173474][ T3546] txCommit+0x3f07/0x6ba0 [ 68.177833][ T3546] ? trace_contention_end+0x61/0x170 [ 68.183939][ T3546] ? __lock_acquire+0x1f80/0x1f80 [ 68.189089][ T3546] ? txLinelock+0x160/0x160 [ 68.193634][ T3546] ? __mutex_unlock_slowpath+0x218/0x750 [ 68.199628][ T3546] jfs_commit_inode+0x362/0x580 [ 68.204581][ T3546] ? jfs_iget+0x3b0/0x3b0 [ 68.208925][ T3546] ? rcu_is_watching+0x11/0xb0 [ 68.213796][ T3546] ? __mark_inode_dirty+0x430/0xf80 [ 68.219100][ T3546] extAlloc+0xca8/0x1000 [ 68.223374][ T3546] ? jfs_ioc_trim+0x660/0x660 [ 68.228165][ T3546] jfs_get_block+0x417/0xe50 [ 68.232802][ T3546] ? create_page_buffers+0x1d2/0x4b0 [ 68.238116][ T3546] ? jfs_dirty_inode+0x230/0x230 [ 68.243174][ T3546] ? create_page_buffers+0x24e/0x4b0 [ 68.248940][ T3546] __block_write_begin_int+0x544/0x1a30 [ 68.254562][ T3546] ? rcu_is_watching+0x11/0xb0 [ 68.259430][ T3546] ? jfs_dirty_inode+0x230/0x230 [ 68.264382][ T3546] ? page_zero_new_buffers+0x650/0x650 [ 68.269856][ T3546] ? jfs_dirty_inode+0x230/0x230 [ 68.274803][ T3546] block_write_begin+0x98/0x1f0 [ 68.279659][ T3546] ? jfs_write_begin+0x16/0x60 [ 68.284436][ T3546] jfs_write_begin+0x2d/0x60 [ 68.289242][ T3546] generic_perform_write+0x2fc/0x5e0 [ 68.294547][ T3546] ? generic_file_direct_write+0x460/0x460 [ 68.300383][ T3546] ? __file_remove_privs+0x640/0x640 [ 68.305707][ T3546] ? generic_write_checks+0x15c/0x1c0 [ 68.313096][ T3546] ? clear_nonspinnable+0x60/0x60 [ 68.318312][ T3546] __generic_file_write_iter+0x176/0x400 [ 68.325112][ T3546] generic_file_write_iter+0xab/0x310 [ 68.330510][ T3546] do_iter_write+0x6e6/0xc50 [ 68.335121][ T3546] ? vfs_iter_write+0xa0/0xa0 [ 68.339813][ T3546] ? vfs_iter_write+0x69/0xa0 [ 68.344500][ T3546] iter_file_splice_write+0x830/0xfc0 [ 68.350768][ T3546] ? splice_from_pipe+0x240/0x240 [ 68.355868][ T3546] ? splice_shrink_spd+0xb0/0xb0 [ 68.362572][ T3546] ? common_file_perm+0x17d/0x1d0 [ 68.368746][ T3546] ? splice_from_pipe+0x240/0x240 [ 68.374968][ T3546] direct_splice_actor+0xe3/0x1c0 [ 68.382088][ T3546] splice_direct_to_actor+0x4c7/0xc30 [ 68.390522][ T3546] ? direct_file_splice_eof+0xa0/0xa0 [ 68.398493][ T3546] ? pipe_to_sendpage+0x350/0x350 [ 68.409314][ T3546] ? fsnotify_perm+0x67/0x590 [ 68.414048][ T3546] ? bpf_lsm_file_permission+0x5/0x10 [ 68.419448][ T3546] do_splice_direct+0x2a5/0x3e0 [ 68.424323][ T3546] ? splice_direct_to_actor+0xc30/0xc30 [ 68.429885][ T3546] ? rcu_read_lock_any_held+0xb3/0x160 [ 68.435367][ T3546] ? do_splice_direct+0x3e0/0x3e0 [ 68.440509][ T3546] do_sendfile+0x61c/0xff0 [ 68.445415][ T3546] ? rcu_is_watching+0x11/0xb0 [ 68.450944][ T3546] ? do_pwritev+0x360/0x360 [ 68.457862][ T3546] ? restore_fpregs_from_fpstate+0xfc/0x230 [ 68.466012][ T3546] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 68.472860][ T3546] __se_sys_sendfile64+0x178/0x1e0 [ 68.479781][ T3546] ? __x64_sys_sendfile64+0xa0/0xa0 [ 68.485922][ T3546] ? syscall_enter_from_user_mode+0x2e/0x230 [ 68.493712][ T3546] ? lockdep_hardirqs_on+0x94/0x130 [ 68.499276][ T3546] ? syscall_enter_from_user_mode+0x2e/0x230 [ 68.507344][ T3546] do_syscall_64+0x3b/0xb0 [ 68.512612][ T3546] ? clear_bhb_loop+0x45/0xa0 [ 68.519022][ T3546] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 68.526444][ T3546] RIP: 0033:0x7f3434ef2269 [ 68.530878][ T3546] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 68.550779][ T3546] RSP: 002b:00007f3434eb0218 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 68.559239][ T3546] RAX: ffffffffffffffda RBX: 00007f3434f7f648 RCX: 00007f3434ef2269 [ 68.567518][ T3546] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005 [ 68.575987][ T3546] RBP: 00007f3434f7f640 R08: 0000000000000000 R09: 0000000000000000 [ 68.584125][ T3546] R10: 0001000000201005 R11: 0000000000000246 R12: 00007f3434f7f64c [ 68.593969][ T3546] R13: 00007f3434f4bef8 R14: 00007f3434f46060 R15: 0031656c69662f2e [ 68.605123][ T3546] [ 68.610529][ T3546] Kernel Offset: disabled [ 68.615396][ T3546] Rebooting in 86400 seconds..