Warning: Permanently added '10.128.0.37' (ED25519) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
[   86.032879][ T5828] loop2: detected capacity change from 0 to 32768
[   86.043295][ T5822] loop0: detected capacity change from 0 to 32768
[   86.094989][ T5828] 
[   86.094989][ T5828]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   86.094989][ T5828] 
[   86.097376][ T5822] 
[   86.097376][ T5822]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   86.097376][ T5822] 
[   86.121355][ T5827] loop3: detected capacity change from 0 to 32768
[   86.146733][ T5829] loop1: detected capacity change from 0 to 32768
[   86.163963][ T5827] 
[   86.163963][ T5827]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   86.163963][ T5827] 
[   86.180179][ T5828] read_mapping_page failed!
[   86.207448][ T5828] ERROR: (device loop2): txCommit: 
[   86.207448][ T5828] 
[   86.211872][ T5822] read_mapping_page failed!
[   86.215445][ T5829] 
[   86.215445][ T5829]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   86.215445][ T5829] 
[   86.229995][ T5822] ERROR: (device loop0): txCommit: 
[   86.229995][ T5822] 
[   86.230492][ T5827] read_mapping_page failed!
[   86.256756][ T5827] ERROR: (device loop3): txCommit: 
[   86.256756][ T5827] 
[   86.260408][ T5830] loop4: detected capacity change from 0 to 32768
[   86.273105][ T5834] read_mapping_page failed!
[   86.285312][ T5836] read_mapping_page failed!
[   86.289869][ T5836] ERROR: (device loop0): txCommit: 
[   86.289869][ T5836] 
[   86.295228][ T5834] ERROR: (device loop2): txCommit: 
[   86.295228][ T5834] 
[   86.308391][ T5829] read_mapping_page failed!
[   86.330504][ T5830] 
[   86.330504][ T5830]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   86.330504][ T5830] 
[   86.331435][ T5838] read_mapping_page failed!
[   86.341328][ T5829] ERROR: (device loop1): txCommit: 
[   86.341328][ T5829] 
[   86.367882][ T5822] read_mapping_page failed!
[   86.368791][ T5828] read_mapping_page failed!
[   86.379926][ T5838] ERROR: (device loop3): txCommit: 
[   86.379926][ T5838] 
[   86.390274][ T5822] ERROR: (device loop0): txCommit: 
[   86.390274][ T5822] 
[   86.398180][ T5839] read_mapping_page failed!
[   86.402921][ T5828] ERROR: (device loop2): txCommit: 
[   86.402921][ T5828] 
[   86.411393][ T5839] ERROR: (device loop1): txCommit: 
executing program
[   86.411393][ T5839] 
[   86.420945][ T5830] read_mapping_page failed!
[   86.440246][ T5829] read_mapping_page failed!
[   86.447221][ T5835] ==================================================================
[   86.455356][ T5835] BUG: KASAN: slab-out-of-bounds in dtInsertEntry+0xe9a/0x1430
[   86.462944][ T5835] Read of size 4 at addr ffff88807e1736e4 by task syz-executor230/5835
[   86.471207][ T5835] 
[   86.473578][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: syz-executor230 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[   86.473599][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   86.473612][ T5835] Call Trace:
[   86.473622][ T5835]  <TASK>
[   86.473628][ T5835]  dump_stack_lvl+0x189/0x250
[   86.473655][ T5835]  ? rcu_is_watching+0x15/0xb0
[   86.473678][ T5835]  ? __kasan_check_byte+0x12/0x40
[   86.473698][ T5835]  ? __pfx_dump_stack_lvl+0x10/0x10
[   86.473720][ T5835]  ? rcu_is_watching+0x15/0xb0
[   86.473742][ T5835]  ? lock_release+0x4b/0x3e0
[   86.473762][ T5835]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[   86.473787][ T5835]  ? __virt_addr_valid+0x1c8/0x5c0
[   86.473802][ T5835]  ? __virt_addr_valid+0x4a5/0x5c0
[   86.473816][ T5835]  print_report+0xd2/0x2b0
[   86.473835][ T5835]  ? dtInsertEntry+0xe9a/0x1430
[   86.473858][ T5835]  kasan_report+0x118/0x150
[   86.473876][ T5835]  ? lockdep_hardirqs_on+0x9c/0x150
[   86.473898][ T5835]  ? dtInsertEntry+0xe9a/0x1430
[   86.473923][ T5835]  dtInsertEntry+0xe9a/0x1430
[   86.473956][ T5835]  dtSplitPage+0x2a83/0x3b20
[   86.474002][ T5835]  dtInsert+0x109b/0x5f40
[   86.474041][ T5835]  ? txLockAlloc+0x239/0x380
[   86.474059][ T5835]  ? __pfx_txLockAlloc+0x10/0x10
[   86.474080][ T5835]  ? do_raw_spin_unlock+0x122/0x240
[   86.474096][ T5835]  ? __pfx_dtInsert+0x10/0x10
[   86.474117][ T5835]  ? txLock+0xfe0/0x1cb0
[   86.474137][ T5835]  ? __pfx_txLock+0x10/0x10
[   86.474161][ T5835]  jfs_create+0x6c8/0xa80
[   86.474180][ T5835]  ? __pfx_jfs_create+0x10/0x10
[   86.474204][ T5835]  ? generic_permission+0x2e5/0x690
[   86.474229][ T5835]  ? bpf_lsm_inode_create+0x9/0x20
[   86.474247][ T5835]  ? __pfx_jfs_create+0x10/0x10
[   86.474260][ T5835]  path_openat+0x14f4/0x3830
[   86.474274][ T5835]  ? arch_stack_walk+0xfc/0x150
[   86.474309][ T5835]  ? __pfx_path_openat+0x10/0x10
[   86.474323][ T5835]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.474346][ T5835]  do_filp_open+0x1fa/0x410
[   86.474360][ T5835]  ? __lock_acquire+0xab9/0xd20
[   86.474379][ T5835]  ? __pfx_do_filp_open+0x10/0x10
[   86.474402][ T5835]  ? _raw_spin_unlock+0x28/0x50
[   86.474427][ T5835]  ? alloc_fd+0x64c/0x6c0
[   86.474450][ T5835]  do_sys_openat2+0x121/0x1c0
[   86.474472][ T5835]  ? _raw_spin_unlock_irq+0x2e/0x50
[   86.474491][ T5835]  ? __pfx_do_sys_openat2+0x10/0x10
[   86.474516][ T5835]  ? __might_fault+0xb0/0x130
[   86.474535][ T5835]  __x64_sys_openat+0x138/0x170
[   86.474559][ T5835]  do_syscall_64+0xfa/0x3b0
[   86.474583][ T5835]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.474609][ T5835]  ? __switch_to_asm+0x39/0x70
[   86.474621][ T5835]  ? clear_bhb_loop+0x60/0xb0
[   86.474637][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.474651][ T5835] RIP: 0033:0x7fe2e4005cf9
[   86.474668][ T5835] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   86.474684][ T5835] RSP: 002b:00007fe2e3f99168 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   86.474699][ T5835] RAX: ffffffffffffffda RBX: 00007fe2e40935f8 RCX: 00007fe2e4005cf9
[   86.474710][ T5835] RDX: 0000000000000042 RSI: 0000200000000040 RDI: 00000000ffffff9c
[   86.474719][ T5835] RBP: 00007fe2e40935f0 R08: 00007ffd55d5e237 R09: 0000000000000000
[   86.474729][ T5835] R10: 0000000000000010 R11: 0000000000000246 R12: 00007fe2e40935fc
[   86.474738][ T5835] R13: 000000000000006e R14: 00007ffd55d5e150 R15: 00007ffd55d5e238
[   86.474753][ T5835]  </TASK>
[   86.474758][ T5835] 
[   86.809519][ T5835] Allocated by task 5827:
[   86.813843][ T5835]  kasan_save_track+0x3e/0x80
[   86.818528][ T5835]  __kasan_slab_alloc+0x6c/0x80
[   86.823380][ T5835]  kmem_cache_alloc_lru_noprof+0x1c6/0x3d0
[   86.829204][ T5835]  jfs_alloc_inode+0x28/0x70
[   86.833799][ T5835]  alloc_inode+0x6a/0x1b0
[   86.838134][ T5835]  iget_locked+0xf0/0x570
[   86.842475][ T5835]  jfs_iget+0x24/0x3e0
[   86.846551][ T5835]  jfs_lookup+0x1c5/0x380
[   86.850876][ T5835]  __lookup_slow+0x294/0x3d0
[   86.855474][ T5835]  lookup_slow+0x53/0x70
[   86.859715][ T5835]  walk_component+0x2d2/0x400
[   86.864405][ T5835]  path_lookupat+0x163/0x430
[   86.869006][ T5835]  filename_lookup+0x212/0x570
[   86.873779][ T5835]  user_path_at+0x3a/0x60
[   86.878110][ T5835]  __se_sys_chdir+0x91/0x280
[   86.882704][ T5835]  do_syscall_64+0xfa/0x3b0
[   86.887221][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.893119][ T5835] 
[   86.895447][ T5835] The buggy address belongs to the object at ffff88807e172e18
[   86.895447][ T5835]  which belongs to the cache jfs_ip of size 2232
[   86.909156][ T5835] The buggy address is located 20 bytes to the right of
[   86.909156][ T5835]  allocated 2232-byte region [ffff88807e172e18, ffff88807e1736d0)
[   86.923820][ T5835] 
[   86.926148][ T5835] The buggy address belongs to the physical page:
[   86.932569][ T5835] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7e170
[   86.941340][ T5835] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   86.949843][ T5835] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[   86.957403][ T5835] page_type: f5(slab)
[   86.961392][ T5835] raw: 00fff00000000040 ffff8881462e7140 dead000000000122 0000000000000000
[   86.969974][ T5835] raw: 0000000000000000 00000000000d000d 00000000f5000000 0000000000000000
[   86.978556][ T5835] head: 00fff00000000040 ffff8881462e7140 dead000000000122 0000000000000000
[   86.987221][ T5835] head: 0000000000000000 00000000000d000d 00000000f5000000 0000000000000000
[   86.995893][ T5835] head: 00fff00000000003 ffffea0001f85c01 00000000ffffffff 00000000ffffffff
[   87.004566][ T5835] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[   87.013243][ T5835] page dumped because: kasan: bad access detected
[   87.019657][ T5835] page_owner tracks the page as allocated
[   87.025380][ T5835] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_RECLAIMABLE|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5829, tgid 5824 (syz-executor230), ts 86196723920, free_ts 30175374426
[   87.048076][ T5835]  post_alloc_hook+0x240/0x2a0
[   87.052859][ T5835]  get_page_from_freelist+0x21d5/0x22b0
[   87.058419][ T5835]  __alloc_frozen_pages_noprof+0x181/0x370
[   87.064233][ T5835]  alloc_pages_mpol+0x232/0x4a0
[   87.069091][ T5835]  allocate_slab+0x8a/0x3b0
[   87.073619][ T5835]  ___slab_alloc+0xbfc/0x1480
[   87.078299][ T5835]  kmem_cache_alloc_lru_noprof+0x288/0x3d0
[   87.084110][ T5835]  jfs_alloc_inode+0x28/0x70
[   87.088709][ T5835]  alloc_inode+0x6a/0x1b0
[   87.093056][ T5835]  new_inode+0x22/0x170
[   87.097233][ T5835]  jfs_fill_super+0x569/0xd90
[   87.101922][ T5835]  get_tree_bdev_flags+0x40e/0x4d0
[   87.107045][ T5835]  vfs_get_tree+0x8f/0x2b0
[   87.111602][ T5835]  do_new_mount+0x24a/0xa40
[   87.116119][ T5835]  __se_sys_mount+0x317/0x410
[   87.120816][ T5835]  do_syscall_64+0xfa/0x3b0
[   87.125333][ T5835] page last free pid 1 tgid 1 stack trace:
[   87.131141][ T5835]  __free_frozen_pages+0xc65/0xe60
[   87.136261][ T5835]  free_contig_range+0x1bd/0x4a0
[   87.141217][ T5835]  destroy_args+0x7e/0x5d0
[   87.145659][ T5835]  debug_vm_pgtable+0x412/0x450
[   87.150543][ T5835]  do_one_initcall+0x233/0x820
[   87.155314][ T5835]  do_initcall_level+0x137/0x1f0
[   87.160270][ T5835]  do_initcalls+0x69/0xd0
[   87.164604][ T5835]  kernel_init_freeable+0x3d9/0x570
[   87.169811][ T5835]  kernel_init+0x1d/0x1d0
[   87.174144][ T5835]  ret_from_fork+0x3fc/0x770
[   87.178744][ T5835]  ret_from_fork_asm+0x1a/0x30
[   87.183507][ T5835] 
[   87.185834][ T5835] Memory state around the buggy address:
[   87.191467][ T5835]  ffff88807e173580: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   87.199528][ T5835]  ffff88807e173600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   87.207586][ T5835] >ffff88807e173680: 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc
[   87.215644][ T5835]                                                        ^
[   87.222836][ T5835]  ffff88807e173700: fc fc fc fc fc fc fc fc fc fc 00 00 00 00 00 00
[   87.230890][ T5835]  ffff88807e173780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   87.238957][ T5835] ==================================================================
[   87.252796][ T5830] ERROR: (device loop4): txCommit: 
[   87.252796][ T5830] 
[   87.262775][ T5829] ERROR: (device loop1): txCommit: 
[   87.262775][ T5829] 
[   87.576058][ T5843] read_mapping_page failed!
[   87.580703][ T5843] ERROR: (device loop4): txCommit: 
[   87.580703][ T5843] 
executing program
executing program
executing program
[   87.674746][ T5830] read_mapping_page failed!
[   87.679446][ T5830] ERROR: (device loop4): txCommit: 
[   87.679446][ T5830] 
[   87.882842][ T5835] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   87.890117][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: syz-executor230 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[   87.902558][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   87.912634][ T5835] Call Trace:
[   87.915925][ T5835]  <TASK>
[   87.918878][ T5835]  dump_stack_lvl+0x99/0x250
[   87.923482][ T5835]  ? __asan_memcpy+0x40/0x70
[   87.928088][ T5835]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.933307][ T5835]  ? __pfx__printk+0x10/0x10
[   87.937909][ T5835]  panic+0x2db/0x790
[   87.941812][ T5835]  ? __pfx_preempt_schedule+0x10/0x10
[   87.947196][ T5835]  ? __pfx_panic+0x10/0x10
[   87.951625][ T5835]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   87.957523][ T5835]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   87.963873][ T5835]  ? dtInsertEntry+0xe9a/0x1430
[   87.968736][ T5835]  check_panic_on_warn+0x89/0xb0
[   87.973677][ T5835]  ? dtInsertEntry+0xe9a/0x1430
[   87.978533][ T5835]  end_report+0x78/0x160
[   87.982807][ T5835]  kasan_report+0x129/0x150
[   87.987424][ T5835]  ? lockdep_hardirqs_on+0x9c/0x150
[   87.992672][ T5835]  ? dtInsertEntry+0xe9a/0x1430
[   87.997557][ T5835]  dtInsertEntry+0xe9a/0x1430
[   88.002274][ T5835]  dtSplitPage+0x2a83/0x3b20
[   88.006908][ T5835]  dtInsert+0x109b/0x5f40
[   88.011260][ T5835]  ? txLockAlloc+0x239/0x380
[   88.015870][ T5835]  ? __pfx_txLockAlloc+0x10/0x10
[   88.020822][ T5835]  ? do_raw_spin_unlock+0x122/0x240
[   88.026033][ T5835]  ? __pfx_dtInsert+0x10/0x10
[   88.030724][ T5835]  ? txLock+0xfe0/0x1cb0
[   88.034975][ T5835]  ? __pfx_txLock+0x10/0x10
[   88.039497][ T5835]  jfs_create+0x6c8/0xa80
[   88.043844][ T5835]  ? __pfx_jfs_create+0x10/0x10
[   88.048715][ T5835]  ? generic_permission+0x2e5/0x690
[   88.053933][ T5835]  ? bpf_lsm_inode_create+0x9/0x20
[   88.059058][ T5835]  ? __pfx_jfs_create+0x10/0x10
[   88.063917][ T5835]  path_openat+0x14f4/0x3830
[   88.068514][ T5835]  ? arch_stack_walk+0xfc/0x150
[   88.073397][ T5835]  ? __pfx_path_openat+0x10/0x10
[   88.078336][ T5835]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.084415][ T5835]  do_filp_open+0x1fa/0x410
[   88.088928][ T5835]  ? __lock_acquire+0xab9/0xd20
[   88.093792][ T5835]  ? __pfx_do_filp_open+0x10/0x10
[   88.098841][ T5835]  ? _raw_spin_unlock+0x28/0x50
[   88.103698][ T5835]  ? alloc_fd+0x64c/0x6c0
[   88.108037][ T5835]  do_sys_openat2+0x121/0x1c0
[   88.112726][ T5835]  ? _raw_spin_unlock_irq+0x2e/0x50
[   88.117961][ T5835]  ? __pfx_do_sys_openat2+0x10/0x10
[   88.123187][ T5835]  ? __might_fault+0xb0/0x130
[   88.127881][ T5835]  __x64_sys_openat+0x138/0x170
[   88.132751][ T5835]  do_syscall_64+0xfa/0x3b0
[   88.137274][ T5835]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.143341][ T5835]  ? __switch_to_asm+0x39/0x70
[   88.148106][ T5835]  ? clear_bhb_loop+0x60/0xb0
[   88.152799][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.158695][ T5835] RIP: 0033:0x7fe2e4005cf9
[   88.163110][ T5835] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   88.182716][ T5835] RSP: 002b:00007fe2e3f99168 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   88.191146][ T5835] RAX: ffffffffffffffda RBX: 00007fe2e40935f8 RCX: 00007fe2e4005cf9
[   88.199121][ T5835] RDX: 0000000000000042 RSI: 0000200000000040 RDI: 00000000ffffff9c
[   88.207096][ T5835] RBP: 00007fe2e40935f0 R08: 00007ffd55d5e237 R09: 0000000000000000
[   88.215077][ T5835] R10: 0000000000000010 R11: 0000000000000246 R12: 00007fe2e40935fc
[   88.223072][ T5835] R13: 000000000000006e R14: 00007ffd55d5e150 R15: 00007ffd55d5e238
[   88.231058][ T5835]  </TASK>
[   88.234408][ T5835] Kernel Offset: disabled
[   88.238739][ T5835] Rebooting in 86400 seconds..