loop3: detected capacity change from 0 to 32768 ================================================================================ UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2238:2 index 2000 is out of range for type 's64[128]' (aka 'long long[128]') CPU: 1 PID: 20876 Comm: syz-executor.3 Not tainted 6.4.0-rc2-syzkaller-gf1fcbaa18b28 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 Call trace: dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:233 show_stack+0x2c/0x44 arch/arm64/kernel/stacktrace.c:240 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106 dump_stack+0x1c/0x28 lib/dump_stack.c:113 ubsan_epilogue lib/ubsan.c:217 [inline] __ubsan_handle_out_of_bounds+0xfc/0x148 lib/ubsan.c:348 dbAllocBits+0x8a4/0x8d0 fs/jfs/jfs_dmap.c:2238 dbAllocDmap fs/jfs/jfs_dmap.c:2015 [inline] dbAllocNear+0x224/0x334 fs/jfs/jfs_dmap.c:1244 dbAlloc+0x8b4/0xb68 fs/jfs/jfs_dmap.c:829 ea_get+0x6f8/0xef0 fs/jfs/xattr.c:514 __jfs_setxattr+0x41c/0x1338 fs/jfs/xattr.c:718 __jfs_set_acl+0x108/0x1a4 fs/jfs/acl.c:87 jfs_set_acl+0x20c/0x478 fs/jfs/acl.c:115 set_posix_acl fs/posix_acl.c:956 [inline] vfs_set_acl+0x728/0x94c fs/posix_acl.c:1135 do_set_acl+0xe4/0x1ac fs/posix_acl.c:1280 do_setxattr fs/xattr.c:627 [inline] setxattr+0x230/0x29c fs/xattr.c:653 path_setxattr+0x17c/0x258 fs/xattr.c:672 __do_sys_lsetxattr fs/xattr.c:695 [inline] __se_sys_lsetxattr fs/xattr.c:691 [inline] __arm64_sys_lsetxattr+0xbc/0xd8 fs/xattr.c:691 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x64/0x198 arch/arm64/kernel/syscall.c:193 el0_svc+0x4c/0x15c arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591 ================================================================================ JFS: metapage_get_blocks failed ERROR: (device loop3): release_metapage: metapage_write_one() failed ERROR: (device loop3): remounting filesystem as read-only