Warning: Permanently added '10.128.0.89' (ECDSA) to the list of known hosts. executing program [ 52.690726][ T3499] loop0: detected capacity change from 0 to 32768 [ 52.707700][ T3499] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 1 [ 52.707700][ T3499] [ 52.720193][ T3499] ERROR: (device loop0): remounting filesystem as read-only [ 52.727519][ T3499] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 3 [ 52.727519][ T3499] [ 52.740012][ T3499] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4 [ 52.740012][ T3499] [ 52.772863][ T277] BUG: Bad page state in process jfsCommit pfn:744e8 [ 52.779780][ T277] page:ffffea0001d13a00 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x744e8 [ 52.790143][ T277] flags: 0xfff00000002005(locked|uptodate|private|node=0|zone=1|lastcpupid=0x7ff) [ 52.800530][ T277] raw: 00fff00000002005 dead000000000100 dead000000000122 0000000000000000 [ 52.809304][ T277] raw: 000000000000001c ffff888023abf9b0 00000000ffffffff 0000000000000000 [ 52.817901][ T277] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set [ 52.825253][ T277] page_owner tracks the page as allocated [ 52.831077][ T277] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xc40(GFP_NOFS), pid 3499, ts 52705979334, free_ts 27796879468 [ 52.844629][ T277] get_page_from_freelist+0x322a/0x33c0 [ 52.850296][ T277] __alloc_pages+0x272/0x700 [ 52.854935][ T277] __page_cache_alloc+0xd4/0x4a0 [ 52.859954][ T277] do_read_cache_page+0x1e5/0x1040 [ 52.865083][ T277] __get_metapage+0x398/0x1070 [ 52.869919][ T277] diRead+0x5e9/0xad0 [ 52.873943][ T277] jfs_iget+0x88/0x3b0 [ 52.878053][ T277] jfs_fill_super+0x826/0xc70 [ 52.882822][ T277] mount_bdev+0x26d/0x3a0 [ 52.887190][ T277] legacy_get_tree+0xeb/0x180 [ 52.891930][ T277] vfs_get_tree+0x88/0x270 [ 52.896360][ T277] do_new_mount+0x28b/0xad0 [ 52.900992][ T277] __se_sys_mount+0x2d5/0x3c0 [ 52.905689][ T277] do_syscall_64+0x3d/0xb0 [ 52.910141][ T277] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 52.916059][ T277] page last free stack trace: [ 52.920809][ T277] free_unref_page_prepare+0xc34/0xcf0 [ 52.926289][ T277] free_unref_page+0x95/0x2d0 [ 52.931113][ T277] ___cache_free+0xe3/0x100 [ 52.935630][ T277] qlist_free_all+0x36/0x90 [ 52.940169][ T277] kasan_quarantine_reduce+0x162/0x180 [ 52.945642][ T277] __kasan_slab_alloc+0x2f/0xc0 [ 52.950529][ T277] slab_post_alloc_hook+0x53/0x380 [ 52.955652][ T277] __kmalloc+0x120/0x300 [ 52.959929][ T277] tomoyo_realpath_from_path+0xd8/0x5e0 [ 52.965575][ T277] tomoyo_path_perm+0x273/0x6b0 [ 52.970459][ T277] security_inode_getattr+0xcf/0x120 [ 52.975758][ T277] vfs_getattr+0x26/0x360 [ 52.980132][ T277] vfs_statx+0x18f/0x3b0 [ 52.984477][ T277] __x64_sys_newfstatat+0x12c/0x1b0 [ 52.989711][ T277] do_syscall_64+0x3d/0xb0 [ 52.994135][ T277] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.000066][ T277] Modules linked in: [ 53.003972][ T277] CPU: 1 PID: 277 Comm: jfsCommit Not tainted 5.15.113-syzkaller #0 [ 53.011941][ T277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/16/2023 [ 53.022423][ T277] Call Trace: [ 53.025782][ T277] [ 53.028702][ T277] dump_stack_lvl+0x1e3/0x2cb [ 53.033377][ T277] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 53.039005][ T277] ? is_module_text_address+0x140/0x140 [ 53.044564][ T277] bad_page+0x14b/0x170 [ 53.048712][ T277] free_unref_page_prepare+0x48d/0xcf0 [ 53.054175][ T277] free_unref_page+0x95/0x2d0 [ 53.058846][ T277] ? mark_free_pages+0x420/0x420 [ 53.063780][ T277] ? do_raw_spin_unlock+0x137/0x8b0 [ 53.069003][ T277] txUnlock+0x282/0xca0 [ 53.073169][ T277] ? lockdep_hardirqs_on+0x94/0x130 [ 53.078364][ T277] jfs_lazycommit+0x5cd/0xc30 [ 53.083382][ T277] ? _raw_spin_unlock_irqrestore+0x8b/0x130 [ 53.089299][ T277] ? lockdep_hardirqs_on+0x94/0x130 [ 53.094507][ T277] ? txFreelock+0x580/0x580 [ 53.099005][ T277] ? sched_dynamic_update+0x240/0x240 [ 53.104392][ T277] kthread+0x3f6/0x4f0 [ 53.108451][ T277] ? txFreelock+0x580/0x580 [ 53.112939][ T277] ? kthread_blkcg+0xd0/0xd0 [ 53.117520][ T277] ret_from_fork+0x1f/0x30 [ 53.121939][ T277] [ 53.125139][ T277] Disabling lock debugging due to kernel taint [ 53.131311][ T277] page:ffffea0001d13a00 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x744e8 [ 53.141563][ T277] flags: 0xfff00000002005(locked|uptodate|private|node=0|zone=1|lastcpupid=0x7ff) [ 53.150808][ T277] raw: 00fff00000002005 dead000000000100 dead000000000122 0000000000000000 [ 53.159495][ T277] raw: 000000000000001c ffff888023abf9b0 00000000ffffffff 0000000000000000 [ 53.168077][ T277] page dumped because: VM_BUG_ON_PAGE(((unsigned int) page_ref_count(page) + 127u <= 127u)) [ 53.178841][ T277] page_owner tracks the page as allocated [ 53.184573][ T277] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xc40(GFP_NOFS), pid 3499, ts 52705979334, free_ts 27796879468 [ 53.197955][ T277] get_page_from_freelist+0x322a/0x33c0 [ 53.203935][ T277] __alloc_pages+0x272/0x700 [ 53.208524][ T277] __page_cache_alloc+0xd4/0x4a0 [ 53.213496][ T277] do_read_cache_page+0x1e5/0x1040 [ 53.218611][ T277] __get_metapage+0x398/0x1070 [ 53.223415][ T277] diRead+0x5e9/0xad0 [ 53.227417][ T277] jfs_iget+0x88/0x3b0 [ 53.231562][ T277] jfs_fill_super+0x826/0xc70 [ 53.236262][ T277] mount_bdev+0x26d/0x3a0 [ 53.240665][ T277] legacy_get_tree+0xeb/0x180 [ 53.245354][ T277] vfs_get_tree+0x88/0x270 [ 53.249811][ T277] do_new_mount+0x28b/0xad0 [ 53.254327][ T277] __se_sys_mount+0x2d5/0x3c0 [ 53.259037][ T277] do_syscall_64+0x3d/0xb0 [ 53.263475][ T277] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.269422][ T277] page last free stack trace: [ 53.274106][ T277] free_unref_page_prepare+0xc34/0xcf0 [ 53.279620][ T277] free_unref_page+0x95/0x2d0 [ 53.284395][ T277] ___cache_free+0xe3/0x100 [ 53.288895][ T277] qlist_free_all+0x36/0x90 [ 53.293445][ T277] kasan_quarantine_reduce+0x162/0x180 [ 53.298897][ T277] __kasan_slab_alloc+0x2f/0xc0 [ 53.303817][ T277] slab_post_alloc_hook+0x53/0x380 [ 53.309041][ T277] __kmalloc+0x120/0x300 [ 53.313423][ T277] tomoyo_realpath_from_path+0xd8/0x5e0 [ 53.319031][ T277] tomoyo_path_perm+0x273/0x6b0 [ 53.323894][ T277] security_inode_getattr+0xcf/0x120 [ 53.329276][ T277] vfs_getattr+0x26/0x360 [ 53.333618][ T277] vfs_statx+0x18f/0x3b0 [ 53.337850][ T277] __x64_sys_newfstatat+0x12c/0x1b0 [ 53.343099][ T277] do_syscall_64+0x3d/0xb0 [ 53.347525][ T277] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.353763][ T277] ------------[ cut here ]------------ [ 53.359277][ T277] kernel BUG at include/linux/mm.h:1213! [ 53.364931][ T277] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 53.371002][ T277] CPU: 1 PID: 277 Comm: jfsCommit Tainted: G B 5.15.113-syzkaller #0 [ 53.380357][ T277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/16/2023 [ 53.390396][ T277] RIP: 0010:put_metapage+0x283/0x290 [ 53.395675][ T277] Code: 03 38 c1 0f 8c f8 fe ff ff 4c 89 ff e8 b6 04 e7 fe e9 eb fe ff ff e8 3c a9 9d fe 4c 89 e7 48 c7 c6 60 ce c0 8a e8 ad 7b d3 fe <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 90 55 41 57 41 56 41 55 41 54 [ 53.415267][ T277] RSP: 0018:ffffc90002abfcc0 EFLAGS: 00010246 [ 53.421322][ T277] RAX: cb8c42def2e72500 RBX: 000000000000007f RCX: ffff888018f23b80 [ 53.429285][ T277] RDX: 0000000000000000 RSI: 000000000000ffff RDI: 000000000000ffff [ 53.437252][ T277] RBP: ffff888023abf9b0 R08: ffffffff81d00714 R09: fffff52000557e55 [ 53.445210][ T277] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffea0001d13a00 [ 53.453171][ T277] R13: ffff888023abf9d8 R14: 1ffff11004757f3b R15: ffffea0001d13a34 [ 53.461133][ T277] FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 53.470047][ T277] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.476634][ T277] CR2: 00007f53c8be1828 CR3: 000000000c68e000 CR4: 00000000003506e0 [ 53.484593][ T277] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.492552][ T277] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.500510][ T277] Call Trace: [ 53.503780][ T277] [ 53.506700][ T277] txUnlock+0x42f/0xca0 [ 53.510854][ T277] jfs_lazycommit+0x5cd/0xc30 [ 53.515519][ T277] ? _raw_spin_unlock_irqrestore+0x8b/0x130 [ 53.521399][ T277] ? lockdep_hardirqs_on+0x94/0x130 [ 53.526591][ T277] ? txFreelock+0x580/0x580 [ 53.531081][ T277] ? sched_dynamic_update+0x240/0x240 [ 53.537758][ T277] kthread+0x3f6/0x4f0 [ 53.541814][ T277] ? txFreelock+0x580/0x580 [ 53.546307][ T277] ? kthread_blkcg+0xd0/0xd0 [ 53.550884][ T277] ret_from_fork+0x1f/0x30 [ 53.555297][ T277] [ 53.558301][ T277] Modules linked in: [ 53.562420][ T277] ---[ end trace affe6937f7f2091a ]--- [ 53.567878][ T277] RIP: 0010:put_metapage+0x283/0x290 [ 53.573215][ T277] Code: 03 38 c1 0f 8c f8 fe ff ff 4c 89 ff e8 b6 04 e7 fe e9 eb fe ff ff e8 3c a9 9d fe 4c 89 e7 48 c7 c6 60 ce c0 8a e8 ad 7b d3 fe <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 90 55 41 57 41 56 41 55 41 54 [ 53.592853][ T277] RSP: 0018:ffffc90002abfcc0 EFLAGS: 00010246 [ 53.598963][ T277] RAX: cb8c42def2e72500 RBX: 000000000000007f RCX: ffff888018f23b80 [ 53.606936][ T277] RDX: 0000000000000000 RSI: 000000000000ffff RDI: 000000000000ffff [ 53.615020][ T277] RBP: ffff888023abf9b0 R08: ffffffff81d00714 R09: fffff52000557e55 [ 53.623024][ T277] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffea0001d13a00 [ 53.631107][ T277] R13: ffff888023abf9d8 R14: 1ffff11004757f3b R15: ffffea0001d13a34 [ 53.639188][ T277] FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 53.648113][ T277] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.654719][ T277] CR2: 00007f53c8be1828 CR3: 000000000c68e000 CR4: 00000000003506e0 [ 53.662712][ T277] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.670700][ T277] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.678854][ T277] Kernel panic - not syncing: Fatal exception [ 53.685064][ T277] Kernel Offset: disabled [ 53.689383][ T277] Rebooting in 86400 seconds..