DUID 00:04:4b:a6:d8:97:08:21:27:2e:fd:cf:3e:39:f6:c0:7f:1f
forked to background, child pid 3212
[   27.982707][ T3213] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.993031][ T3213] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   76.296877][   T14] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.158' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
[  549.580897][ T3584] loop5: detected capacity change from 0 to 32768
[  549.587783][ T3583] loop4: detected capacity change from 0 to 32768
[  549.618473][ T3580] loop2: detected capacity change from 0 to 32768
[  549.624916][ T3582] loop1: detected capacity change from 0 to 32768
[  549.634036][ T3581] loop0: detected capacity change from 0 to 32768
[  549.643783][ T3586] loop3: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
executing program
executing program
[  551.462802][ T3595] loop5: detected capacity change from 0 to 32768
[  551.469537][ T3594] loop4: detected capacity change from 0 to 32768
[  551.513651][ T3596] loop1: detected capacity change from 0 to 32768
[  551.533261][ T3597] loop0: detected capacity change from 0 to 32768
[  551.585380][ T3593] loop2: detected capacity change from 0 to 32768
[  551.671258][ T3598] loop3: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
executing program
executing program
[  553.342689][ T3601] loop4: detected capacity change from 0 to 32768
[  553.370075][ T3603] loop2: detected capacity change from 0 to 32768
[  553.379182][ T3600] loop0: detected capacity change from 0 to 32768
[  553.394260][ T3602] loop1: detected capacity change from 0 to 32768
[  553.411417][ T3605] loop3: detected capacity change from 0 to 32768
[  553.436376][ T3604] loop5: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
executing program
executing program
[  555.016573][ T3606] loop4: detected capacity change from 0 to 32768
[  555.082778][ T3607] loop3: detected capacity change from 0 to 32768
executing program
executing program
[  555.440656][ T3608] loop2: detected capacity change from 0 to 32768
executing program
[  555.748345][ T3609] loop1: detected capacity change from 0 to 32768
[  555.882234][ T3611] loop0: detected capacity change from 0 to 32768
executing program
executing program
[  556.248359][ T3610] loop5: detected capacity change from 0 to 32768
[  556.789405][ T3612] loop4: detected capacity change from 0 to 32768
[  556.831147][ T3616] loop2: detected capacity change from 0 to 32768
[  556.861364][ T3614] loop3: detected capacity change from 0 to 32768
executing program
executing program
[  557.399830][ T3617] loop1: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  558.029093][ T3618] loop0: detected capacity change from 0 to 32768
[  558.116599][ T3620] loop5: detected capacity change from 0 to 32768
executing program
[  558.536510][ T3619] loop4: detected capacity change from 0 to 32768
executing program
[  558.956266][ T3622] loop2: detected capacity change from 0 to 32768
[  558.968244][ T3621] loop3: detected capacity change from 0 to 32768
[  559.000186][ T3623] loop1: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
[  559.819461][ T3625] loop0: detected capacity change from 0 to 32768
[  559.996073][ T3624] loop5: detected capacity change from 0 to 32768
[  560.404963][ T3626] loop4: detected capacity change from 0 to 32768
[  560.430060][ T3628] loop1: detected capacity change from 0 to 32768
[  560.683358][ T3627] loop2: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  560.921599][ T3629] loop3: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  561.743337][ T3632] loop1: detected capacity change from 0 to 32768
[  561.863761][ T3631] loop5: detected capacity change from 0 to 32768
executing program
executing program
[  562.251315][ T3630] loop0: detected capacity change from 0 to 32768
[  562.520647][ T3633] loop2: detected capacity change from 0 to 32768
[  562.602963][ T3634] loop4: detected capacity change from 0 to 32768
executing program
[  562.930640][ T3635] loop3: detected capacity change from 0 to 32768
executing program
executing program
[  563.414259][ T3636] loop1: detected capacity change from 0 to 32768
executing program
[  563.677692][ T3637] loop5: detected capacity change from 0 to 32768
executing program
executing program
[  564.279068][ T3640] loop4: detected capacity change from 0 to 32768
[  564.388574][ T3638] loop2: detected capacity change from 0 to 32768
executing program
[  564.834728][ T3641] loop3: detected capacity change from 0 to 32768
executing program
executing program
[  565.182116][ T3639] loop0: detected capacity change from 0 to 32768
[  565.509065][ T3643] loop5: detected capacity change from 0 to 32768
executing program
[  565.906821][ T3642] loop1: detected capacity change from 0 to 32768
[  565.979223][ T3644] loop2: detected capacity change from 0 to 32768
executing program
[  566.423065][ T3645] loop4: detected capacity change from 0 to 32768
executing program
executing program
[  566.772025][ T3647] loop0: detected capacity change from 0 to 32768
[  566.783130][ T3646] loop3: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  567.536735][ T3648] loop5: detected capacity change from 0 to 32768
[  567.757452][ T3649] loop1: detected capacity change from 0 to 32768
[  567.859130][ T3650] loop2: detected capacity change from 0 to 32768
executing program
[  568.121970][ T3651] loop0: detected capacity change from 0 to 32768
executing program
[  568.432591][ T3652] loop4: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  569.130892][ T3653] loop3: detected capacity change from 0 to 32768
[  569.288289][ T3655] loop5: detected capacity change from 0 to 32768
[  569.492696][ T3657] loop0: detected capacity change from 0 to 32768
executing program
[  569.582125][ T3654] loop1: detected capacity change from 0 to 32768
executing program
[  570.030171][ T3656] loop2: detected capacity change from 0 to 32768
executing program
executing program
[  570.383332][ T3658] loop4: detected capacity change from 0 to 32768
executing program
executing program
[  570.947142][ T3659] loop5: detected capacity change from 0 to 32768
[  571.023724][ T3660] loop3: detected capacity change from 0 to 32768
executing program
[  571.393183][ T3663] loop2: detected capacity change from 0 to 32768
[  571.672213][ T3661] loop0: detected capacity change from 0 to 32768
[  571.738946][ T3662] loop1: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  572.328025][ T3664] loop4: detected capacity change from 0 to 32768
executing program
[  572.680800][ T3666] loop5: detected capacity change from 0 to 32768
[  572.756310][ T3665] loop3: detected capacity change from 0 to 32768
executing program
executing program
[  573.303795][ T3667] loop1: detected capacity change from 0 to 32768
executing program
[  573.537726][ T3668] loop2: detected capacity change from 0 to 32768
[  573.568290][ T3669] loop0: detected capacity change from 0 to 32768
executing program
executing program
[  574.192002][ T3670] loop5: detected capacity change from 0 to 32768
executing program
[  574.458894][ T3672] loop3: detected capacity change from 0 to 32768
[  574.489709][ T3671] loop4: detected capacity change from 0 to 32768
executing program
[  575.098175][ T3673] loop0: detected capacity change from 0 to 32768
executing program
executing program
[  575.476653][ T3674] loop1: detected capacity change from 0 to 32768
[  575.595502][ T3675] loop2: detected capacity change from 0 to 32768
executing program
executing program
[  576.122224][ T3676] loop5: detected capacity change from 0 to 32768
[  576.167513][ T3677] loop3: detected capacity change from 0 to 32768
executing program
executing program
[  576.611722][ T3678] loop4: detected capacity change from 0 to 32768
executing program
[  576.923675][ T3679] loop0: detected capacity change from 0 to 32768
executing program
[  577.267353][ T3680] loop2: detected capacity change from 0 to 32768
[  577.288503][ T3681] loop1: detected capacity change from 0 to 32768
executing program
executing program
[  577.779925][ T3682] loop5: detected capacity change from 0 to 32768
executing program
[  578.190394][ T3683] loop3: detected capacity change from 0 to 32768
executing program
[  578.660548][ T3684] loop4: detected capacity change from 0 to 32768
[  578.684173][ T3685] loop2: detected capacity change from 0 to 32768
executing program
[  579.042339][ T3686] loop0: detected capacity change from 0 to 32768
[  579.153616][ T3687] loop1: detected capacity change from 0 to 32768
executing program
executing program
[  579.612197][ T3688] loop5: detected capacity change from 0 to 32768
executing program
executing program
[  579.993258][ T3689] loop3: detected capacity change from 0 to 32768
executing program
[  580.273471][ T3691] loop4: detected capacity change from 0 to 32768
executing program
executing program
[  580.589622][ T3690] loop2: detected capacity change from 0 to 32768
[  581.114341][ T3692] loop0: detected capacity change from 0 to 32768
[  581.121867][ T3693] loop1: detected capacity change from 0 to 32768
executing program
[  581.423306][ T3694] loop3: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  581.611239][ T3696] loop4: detected capacity change from 0 to 32768
[  581.947695][ T3695] loop5: detected capacity change from 0 to 32768
executing program
executing program
[  582.668642][ T3698] loop1: detected capacity change from 0 to 32768
[  582.778895][ T3697] loop2: detected capacity change from 0 to 32768
[  583.009844][ T3700] loop3: detected capacity change from 0 to 32768
executing program
[  583.332412][ T3699] loop0: detected capacity change from 0 to 32768
executing program
executing program
[  583.595153][ T3701] loop4: detected capacity change from 0 to 32768
executing program
[  584.021887][ T3702] loop5: detected capacity change from 0 to 32768
executing program
executing program
[  584.493178][ T3703] loop2: detected capacity change from 0 to 32768
[  584.652148][ T3705] loop0: detected capacity change from 0 to 32768
[  584.795390][ T3706] loop3: detected capacity change from 0 to 32768
executing program
[  585.135249][ T3704] loop1: detected capacity change from 0 to 32768
executing program
[  585.336893][ T3707] loop4: detected capacity change from 0 to 32768
executing program
executing program
executing program
[  586.146601][ T3708] loop5: detected capacity change from 0 to 32768
[  586.443202][ T3712] loop3: detected capacity change from 0 to 32768
[  586.470381][ T3709] loop0: detected capacity change from 0 to 32768
[  586.616356][ T3710] loop2: detected capacity change from 0 to 32768
[  586.633654][ T3711] loop1: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
executing program
[  587.132143][ T3713] loop4: detected capacity change from 0 to 32768
executing program
[  588.179627][ T3718] loop5: detected capacity change from 0 to 32768
[  588.211772][ T3715] loop2: detected capacity change from 0 to 32768
[  588.375145][ T3714] loop0: detected capacity change from 0 to 32768
[  588.384651][ T3716] loop1: detected capacity change from 0 to 32768
executing program
[  588.514452][ T3719] loop4: detected capacity change from 0 to 32768
[  588.552790][ T3717] loop3: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
executing program
[  589.899116][ T3720] loop5: detected capacity change from 0 to 32768
[  589.973749][ T3721] loop1: detected capacity change from 0 to 32768
[  590.141251][ T3723] loop0: detected capacity change from 0 to 32768
[  590.175597][ T3722] loop2: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
[  590.860112][ T3725] loop4: detected capacity change from 0 to 32768
[  591.052746][ T3724] loop3: detected capacity change from 0 to 32768
[  591.398516][ T3727] loop0: detected capacity change from 0 to 32768
[  591.557795][ T3726] loop5: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
[  592.165240][ T3729] loop2: detected capacity change from 0 to 32768
[  592.250819][ T3728] loop1: detected capacity change from 0 to 32768
[  592.632528][ T3730] loop4: detected capacity change from 0 to 32768
[  592.729896][ T3731] loop5: detected capacity change from 0 to 32768
executing program
executing program
executing program
executing program
[  593.236683][ T3732] loop3: detected capacity change from 0 to 32768
[  593.545736][ T3734] loop1: detected capacity change from 0 to 32768
[  593.758316][ T3733] loop0: detected capacity change from 0 to 32768
[  594.071543][ T3736] loop4: detected capacity change from 0 to 32768
executing program
executing program
[  594.419446][ T3738] loop2: detected capacity change from 0 to 32768
executing program
executing program
[  594.654920][ T3737] loop5: detected capacity change from 0 to 32768
executing program
executing program
[  595.272749][ T3740] loop3: detected capacity change from 0 to 32768
[  595.464997][ T3742] loop4: detected capacity change from 0 to 32768
[  595.513145][ T3739] loop1: detected capacity change from 0 to 32768
[  595.693540][ T3743] loop5: detected capacity change from 0 to 32768
[  595.805401][  T132] ==================================================================
[  595.813500][  T132] BUG: KASAN: use-after-free in jfs_lazycommit+0x7da/0xb60
[  595.820791][  T132] Read of size 4 at addr ffff888013a68294 by task jfsCommit/132
[  595.828421][  T132] 
[  595.830744][  T132] CPU: 0 PID: 132 Comm: jfsCommit Not tainted 6.1.32-syzkaller #0
[  595.838550][  T132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[  595.848608][  T132] Call Trace:
[  595.851887][  T132]  <TASK>
executing program
[  595.854820][  T132]  dump_stack_lvl+0x1e3/0x2cb
[  595.859535][  T132]  ? irq_work_queue+0xc6/0x150
[  595.864387][  T132]  ? nf_tcp_handle_invalid+0x642/0x642
[  595.869868][  T132]  ? panic+0x75d/0x75d
[  595.873969][  T132]  ? _printk+0xd1/0x111
[  595.878133][  T132]  print_report+0x15f/0x4f0
[  595.882707][  T132]  ? preempt_schedule_common+0xa6/0xd0
[  595.888218][  T132]  ? __virt_addr_valid+0x22b/0x2e0
[  595.893355][  T132]  ? __phys_addr+0xb6/0x170
[  595.897868][  T132]  ? jfs_lazycommit+0x7da/0xb60
[  595.902727][  T132]  kasan_report+0x136/0x160
[  595.907241][  T132]  ? jfs_lazycommit+0x7da/0xb60
[  595.912100][  T132]  jfs_lazycommit+0x7da/0xb60
[  595.916795][  T132]  ? txFreelock+0x580/0x580
[  595.921305][  T132]  ? do_task_dead+0xc0/0xc0
[  595.925840][  T132]  ? _raw_spin_unlock+0x40/0x40
[  595.930668][  T132]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  595.936628][  T132]  ? __kthread_parkme+0x15c/0x1c0
[  595.941646][  T132]  kthread+0x26e/0x300
[  595.945692][  T132]  ? txFreelock+0x580/0x580
[  595.950177][  T132]  ? kthread_blkcg+0xd0/0xd0
[  595.954748][  T132]  ret_from_fork+0x1f/0x30
[  595.959154][  T132]  </TASK>
[  595.962150][  T132] 
[  595.964451][  T132] Allocated by task 3742:
[  595.968752][  T132]  kasan_set_track+0x4b/0x70
[  595.973329][  T132]  __kasan_kmalloc+0x97/0xb0
[  595.977899][  T132]  jfs_fill_super+0xfb/0xc40
[  595.982465][  T132]  mount_bdev+0x2c9/0x3f0
[  595.986812][  T132]  legacy_get_tree+0xeb/0x180
[  595.991517][  T132]  vfs_get_tree+0x88/0x270
[  595.995910][  T132]  do_new_mount+0x28b/0xae0
[  596.000424][  T132]  __se_sys_mount+0x2d5/0x3c0
[  596.005077][  T132]  do_syscall_64+0x3d/0xb0
[  596.009471][  T132]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  596.015370][  T132] 
[  596.017673][  T132] Freed by task 3578:
[  596.021625][  T132]  kasan_set_track+0x4b/0x70
[  596.026196][  T132]  kasan_save_free_info+0x27/0x40
[  596.031198][  T132]  ____kasan_slab_free+0xd6/0x120
[  596.036202][  T132]  __kmem_cache_free+0x25c/0x3c0
[  596.041115][  T132]  generic_shutdown_super+0x130/0x340
[  596.046466][  T132]  kill_block_super+0x7a/0xe0
[  596.051121][  T132]  deactivate_locked_super+0xa0/0x110
[  596.056469][  T132]  cleanup_mnt+0x490/0x520
[  596.060866][  T132]  task_work_run+0x246/0x300
[  596.065462][  T132]  exit_to_user_mode_loop+0xd9/0x100
[  596.070739][  T132]  exit_to_user_mode_prepare+0xb1/0x140
[  596.076262][  T132]  syscall_exit_to_user_mode+0x60/0x270
[  596.081812][  T132]  do_syscall_64+0x49/0xb0
[  596.086210][  T132]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  596.092078][  T132] 
[  596.094381][  T132] The buggy address belongs to the object at ffff888013a68200
[  596.094381][  T132]  which belongs to the cache kmalloc-256 of size 256
[  596.108407][  T132] The buggy address is located 148 bytes inside of
[  596.108407][  T132]  256-byte region [ffff888013a68200, ffff888013a68300)
[  596.121655][  T132] 
[  596.123957][  T132] The buggy address belongs to the physical page:
[  596.130342][  T132] page:ffffea00004e9a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888013a69400 pfn:0x13a68
[  596.141772][  T132] head:ffffea00004e9a00 order:1 compound_mapcount:0 compound_pincount:0
[  596.150066][  T132] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  596.158022][  T132] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888012441b40
[  596.166578][  T132] raw: ffff888013a69400 000000008010000e 00000001ffffffff 0000000000000000
[  596.175130][  T132] page dumped because: kasan: bad access detected
[  596.181513][  T132] page_owner tracks the page as allocated
[  596.187200][  T132] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 2339497190, free_ts 0
[  596.206788][  T132]  post_alloc_hook+0x18d/0x1b0
[  596.211572][  T132]  get_page_from_freelist+0x32ed/0x3480
[  596.217095][  T132]  __alloc_pages+0x28d/0x770
[  596.221657][  T132]  alloc_page_interleave+0x22/0x1c0
[  596.226854][  T132]  alloc_slab_page+0x6a/0x150
[  596.231507][  T132]  new_slab+0x84/0x2d0
[  596.235553][  T132]  ___slab_alloc+0xa71/0x1080
[  596.240206][  T132]  __kmem_cache_alloc_node+0x19f/0x260
[  596.245639][  T132]  __kmalloc_node_track_caller+0xa0/0x220
[  596.251349][  T132]  krealloc+0x61/0xf0
[  596.255304][  T132]  add_sysfs_param+0xca/0x7f0
[  596.259961][  T132]  kernel_add_sysfs_param+0xb0/0x126
[  596.265249][  T132]  param_sysfs_builtin+0x16a/0x1e2
[  596.270340][  T132]  param_sysfs_init+0x66/0x6a
[  596.274997][  T132]  do_one_initcall+0x265/0x8f0
[  596.279735][  T132]  do_initcall_level+0x157/0x207
[  596.284648][  T132] page_owner free stack trace missing
[  596.289989][  T132] 
[  596.292288][  T132] Memory state around the buggy address:
[  596.297890][  T132]  ffff888013a68180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  596.305924][  T132]  ffff888013a68200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  596.313960][  T132] >ffff888013a68280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  596.321993][  T132]                          ^
[  596.326554][  T132]  ffff888013a68300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  596.334585][  T132]  ffff888013a68380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  596.342627][  T132] ==================================================================
[  596.350664][  T132] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  596.357835][  T132] CPU: 0 PID: 132 Comm: jfsCommit Not tainted 6.1.32-syzkaller #0
[  596.365614][  T132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[  596.375649][  T132] Call Trace:
[  596.378916][  T132]  <TASK>
[  596.381831][  T132]  dump_stack_lvl+0x1e3/0x2cb
[  596.386492][  T132]  ? nf_tcp_handle_invalid+0x642/0x642
[  596.391926][  T132]  ? panic+0x75d/0x75d
[  596.395974][  T132]  ? lock_release+0xd6/0xa20
[  596.400547][  T132]  ? vscnprintf+0x59/0x80
[  596.404858][  T132]  panic+0x318/0x75d
[  596.408734][  T132]  ? check_panic_on_warn+0x1d/0xa0
[  596.413867][  T132]  ? memcpy_page_flushcache+0xfc/0xfc
[  596.419221][  T132]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  596.425092][  T132]  ? _raw_spin_unlock+0x40/0x40
[  596.429917][  T132]  ? print_report+0x4a3/0x4f0
[  596.434577][  T132]  check_panic_on_warn+0x7e/0xa0
[  596.439491][  T132]  ? jfs_lazycommit+0x7da/0xb60
[  596.444320][  T132]  end_report+0x66/0x110
[  596.448543][  T132]  kasan_report+0x143/0x160
[  596.453026][  T132]  ? jfs_lazycommit+0x7da/0xb60
[  596.457855][  T132]  jfs_lazycommit+0x7da/0xb60
[  596.462514][  T132]  ? txFreelock+0x580/0x580
[  596.467010][  T132]  ? do_task_dead+0xc0/0xc0
[  596.471503][  T132]  ? _raw_spin_unlock+0x40/0x40
[  596.476342][  T132]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  596.482306][  T132]  ? __kthread_parkme+0x15c/0x1c0
[  596.487316][  T132]  kthread+0x26e/0x300
[  596.491367][  T132]  ? txFreelock+0x580/0x580
[  596.495852][  T132]  ? kthread_blkcg+0xd0/0xd0
[  596.500422][  T132]  ret_from_fork+0x1f/0x30
[  596.504824][  T132]  </TASK>
[  597.595306][  T132] Shutting down cpus with NMI
[  597.600217][  T132] Kernel Offset: disabled
[  597.604597][  T132] Rebooting in 86400 seconds..