Warning: Permanently added '10.128.1.31' (ED25519) to the list of known hosts. executing program syzkaller login: [ 37.652252][ T4291] loop0: detected capacity change from 0 to 32768 [ 37.665090][ T4291] [ 37.665090][ T4291] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.665090][ T4291] [ 37.671610][ T4291] read_mapping_page failed! [ 37.672942][ T4291] ERROR: (device loop0): txAbort: [ 37.672942][ T4291] [ 37.681889][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 37.681889][ T39] [ 37.684219][ T39] ERROR: (device loop0): txAbort: [ 37.684219][ T39] [ 37.686085][ T39] jfs_write_inode: jfs_commit_inode failed! [ 37.687614][ T39] [ 37.687614][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.687614][ T39] [ 37.690054][ T39] [ 37.690054][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.690054][ T39] [ 37.693397][ T4289] [ 37.693397][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.693397][ T4289] [ 37.696963][ T93] [ 37.696963][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.696963][ T93] [ 37.699981][ T4289] [ 37.699981][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.699981][ T4289] executing program [ 37.906579][ T4293] loop0: detected capacity change from 0 to 32768 [ 37.919515][ T4293] [ 37.919515][ T4293] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.919515][ T4293] [ 37.929270][ T4293] read_mapping_page failed! [ 37.930458][ T4293] ERROR: (device loop0): txAbort: [ 37.930458][ T4293] [ 37.936969][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 37.936969][ T39] [ 37.939238][ T39] ERROR: (device loop0): txAbort: [ 37.939238][ T39] [ 37.941131][ T39] jfs_write_inode: jfs_commit_inode failed! [ 37.942735][ T39] [ 37.942735][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.942735][ T39] [ 37.946246][ T39] [ 37.946246][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.946246][ T39] [ 37.949378][ T4289] [ 37.949378][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.949378][ T4289] [ 37.952742][ T93] [ 37.952742][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.952742][ T93] [ 37.956379][ T4289] [ 37.956379][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 37.956379][ T4289] executing program [ 38.161063][ T4294] loop0: detected capacity change from 0 to 32768 [ 38.166314][ T4294] [ 38.166314][ T4294] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.166314][ T4294] [ 38.171405][ T4294] read_mapping_page failed! [ 38.172624][ T4294] ERROR: (device loop0): txAbort: [ 38.172624][ T4294] [ 38.181169][ T11] ERROR: (device loop0): diWrite: ixpxd invalid [ 38.181169][ T11] [ 38.183390][ T11] ERROR: (device loop0): txAbort: [ 38.183390][ T11] [ 38.185642][ T11] jfs_write_inode: jfs_commit_inode failed! [ 38.187208][ T11] [ 38.187208][ T11] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.187208][ T11] [ 38.189780][ T11] [ 38.189780][ T11] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.189780][ T11] [ 38.192978][ T4289] [ 38.192978][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.192978][ T4289] [ 38.195720][ T93] [ 38.195720][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.195720][ T93] [ 38.198407][ T4289] [ 38.198407][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.198407][ T4289] executing program [ 38.400706][ T4295] loop0: detected capacity change from 0 to 32768 [ 38.406254][ T4295] [ 38.406254][ T4295] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.406254][ T4295] [ 38.410756][ T4295] read_mapping_page failed! [ 38.411915][ T4295] ERROR: (device loop0): txAbort: [ 38.411915][ T4295] [ 38.421908][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 38.421908][ T39] [ 38.424310][ T39] ERROR: (device loop0): txAbort: [ 38.424310][ T39] [ 38.426041][ T39] jfs_write_inode: jfs_commit_inode failed! [ 38.427435][ T39] [ 38.427435][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.427435][ T39] [ 38.430004][ T39] [ 38.430004][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.430004][ T39] [ 38.433052][ T93] [ 38.433052][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.433052][ T93] [ 38.437353][ T4289] [ 38.437353][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.437353][ T4289] [ 38.440124][ T4289] [ 38.440124][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.440124][ T4289] executing program [ 38.644859][ T4296] loop0: detected capacity change from 0 to 32768 [ 38.659322][ T4296] [ 38.659322][ T4296] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.659322][ T4296] [ 38.663616][ T4296] read_mapping_page failed! [ 38.665365][ T4296] ERROR: (device loop0): txAbort: [ 38.665365][ T4296] [ 38.674574][ T11] ERROR: (device loop0): diWrite: ixpxd invalid [ 38.674574][ T11] [ 38.676708][ T11] ERROR: (device loop0): txAbort: [ 38.676708][ T11] [ 38.678451][ T11] jfs_write_inode: jfs_commit_inode failed! [ 38.679895][ T11] [ 38.679895][ T11] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.679895][ T11] [ 38.682384][ T11] [ 38.682384][ T11] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.682384][ T11] [ 38.686143][ T4289] [ 38.686143][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.686143][ T4289] [ 38.689056][ T93] [ 38.689056][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.689056][ T93] [ 38.691567][ T4289] [ 38.691567][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.691567][ T4289] executing program [ 38.893256][ T4297] loop0: detected capacity change from 0 to 32768 [ 38.905116][ T4297] [ 38.905116][ T4297] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.905116][ T4297] [ 38.912326][ T4297] read_mapping_page failed! [ 38.913466][ T4297] ERROR: (device loop0): txAbort: [ 38.913466][ T4297] [ 38.923247][ T11] ERROR: (device loop0): diWrite: ixpxd invalid [ 38.923247][ T11] [ 38.925872][ T11] ERROR: (device loop0): txAbort: [ 38.925872][ T11] [ 38.927715][ T11] jfs_write_inode: jfs_commit_inode failed! [ 38.929093][ T11] [ 38.929093][ T11] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.929093][ T11] [ 38.931514][ T11] [ 38.931514][ T11] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.931514][ T11] [ 38.934687][ T92] [ 38.934687][ T92] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.934687][ T92] [ 38.937140][ T4289] [ 38.937140][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.937140][ T4289] [ 38.939992][ T4289] [ 38.939992][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 38.939992][ T4289] executing program [ 39.144313][ T4298] loop0: detected capacity change from 0 to 32768 [ 39.156665][ T4298] [ 39.156665][ T4298] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.156665][ T4298] [ 39.164858][ T4298] read_mapping_page failed! [ 39.166041][ T4298] ERROR: (device loop0): txAbort: [ 39.166041][ T4298] [ 39.179673][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 39.179673][ T39] [ 39.181841][ T39] ERROR: (device loop0): txAbort: [ 39.181841][ T39] [ 39.183602][ T39] jfs_write_inode: jfs_commit_inode failed! [ 39.185257][ T39] [ 39.185257][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.185257][ T39] [ 39.187974][ T39] [ 39.187974][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.187974][ T39] [ 39.190637][ T4289] [ 39.190637][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.190637][ T4289] [ 39.193439][ T93] [ 39.193439][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.193439][ T93] [ 39.195992][ T4289] [ 39.195992][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.195992][ T4289] executing program [ 39.402921][ T4299] loop0: detected capacity change from 0 to 32768 [ 39.414753][ T4299] [ 39.414753][ T4299] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.414753][ T4299] [ 39.419402][ T4299] read_mapping_page failed! [ 39.420544][ T4299] ERROR: (device loop0): txAbort: [ 39.420544][ T4299] [ 39.434014][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 39.434014][ T39] [ 39.436087][ T39] ERROR: (device loop0): txAbort: [ 39.436087][ T39] [ 39.437860][ T39] jfs_write_inode: jfs_commit_inode failed! [ 39.439175][ T39] [ 39.439175][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.439175][ T39] [ 39.441779][ T39] [ 39.441779][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.441779][ T39] [ 39.445037][ T93] [ 39.445037][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.445037][ T93] [ 39.447718][ T4289] [ 39.447718][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.447718][ T4289] [ 39.450613][ T4289] [ 39.450613][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.450613][ T4289] executing program [ 39.652921][ T4300] loop0: detected capacity change from 0 to 32768 [ 39.660835][ T4300] [ 39.660835][ T4300] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.660835][ T4300] [ 39.666999][ T4300] read_mapping_page failed! [ 39.668255][ T4300] ERROR: (device loop0): txAbort: [ 39.668255][ T4300] [ 39.681686][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 39.681686][ T39] [ 39.683812][ T39] ERROR: (device loop0): txAbort: [ 39.683812][ T39] [ 39.685935][ T39] jfs_write_inode: jfs_commit_inode failed! [ 39.687468][ T39] [ 39.687468][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.687468][ T39] [ 39.690089][ T39] [ 39.690089][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.690089][ T39] [ 39.692780][ T4289] [ 39.692780][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.692780][ T4289] [ 39.696134][ T92] [ 39.696134][ T92] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.696134][ T92] [ 39.698648][ T4289] [ 39.698648][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.698648][ T4289] executing program [ 39.900375][ T4301] loop0: detected capacity change from 0 to 32768 [ 39.913092][ T4301] [ 39.913092][ T4301] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.913092][ T4301] [ 39.917608][ T4301] read_mapping_page failed! [ 39.918820][ T4301] ERROR: (device loop0): txAbort: [ 39.918820][ T4301] [ 39.932101][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 39.932101][ T39] [ 39.934644][ T39] ERROR: (device loop0): txAbort: [ 39.934644][ T39] [ 39.936352][ T39] jfs_write_inode: jfs_commit_inode failed! [ 39.937849][ T39] [ 39.937849][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.937849][ T39] [ 39.940433][ T39] [ 39.940433][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.940433][ T39] [ 39.943726][ T92] [ 39.943726][ T92] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.943726][ T92] [ 39.947054][ T4289] [ 39.947054][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.947054][ T4289] [ 39.949862][ T4289] [ 39.949862][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 39.949862][ T4289] executing program [ 40.156799][ T4302] loop0: detected capacity change from 0 to 32768 [ 40.166072][ T4302] [ 40.166072][ T4302] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.166072][ T4302] [ 40.172373][ T4302] read_mapping_page failed! [ 40.173504][ T4302] ERROR: (device loop0): txAbort: [ 40.173504][ T4302] [ 40.182671][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 40.182671][ T39] [ 40.184861][ T39] ERROR: (device loop0): txAbort: [ 40.184861][ T39] [ 40.186667][ T39] jfs_write_inode: jfs_commit_inode failed! [ 40.188058][ T39] [ 40.188058][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.188058][ T39] [ 40.190513][ T39] [ 40.190513][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.190513][ T39] [ 40.193117][ T4289] [ 40.193117][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.193117][ T4289] [ 40.196586][ T93] [ 40.196586][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.196586][ T93] [ 40.199113][ T4289] [ 40.199113][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.199113][ T4289] executing program [ 40.403237][ T4303] loop0: detected capacity change from 0 to 32768 [ 40.416781][ T4303] [ 40.416781][ T4303] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.416781][ T4303] [ 40.421154][ T4303] read_mapping_page failed! [ 40.422306][ T4303] ERROR: (device loop0): txAbort: [ 40.422306][ T4303] [ 40.435799][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 40.435799][ T39] [ 40.437895][ T39] ERROR: (device loop0): txAbort: [ 40.437895][ T39] [ 40.439723][ T39] jfs_write_inode: jfs_commit_inode failed! [ 40.441220][ T39] [ 40.441220][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.441220][ T39] [ 40.443750][ T39] [ 40.443750][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.443750][ T39] [ 40.446924][ T93] [ 40.446924][ T93] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.446924][ T93] [ 40.449482][ T4289] [ 40.449482][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.449482][ T4289] [ 40.452125][ T4289] [ 40.452125][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.452125][ T4289] executing program [ 40.660162][ T4304] loop0: detected capacity change from 0 to 32768 [ 40.667812][ T4304] [ 40.667812][ T4304] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.667812][ T4304] [ 40.673234][ T4304] read_mapping_page failed! [ 40.674933][ T4304] ERROR: (device loop0): txAbort: [ 40.674933][ T4304] [ 40.688266][ T9] ERROR: (device loop0): diWrite: ixpxd invalid [ 40.688266][ T9] [ 40.690296][ T9] ERROR: (device loop0): txAbort: [ 40.690296][ T9] [ 40.691931][ T9] jfs_write_inode: jfs_commit_inode failed! [ 40.693351][ T9] [ 40.693351][ T9] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.693351][ T9] [ 40.695950][ T9] [ 40.695950][ T9] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.695950][ T9] [ 40.698897][ T92] [ 40.698897][ T92] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.698897][ T92] [ 40.701564][ T4289] [ 40.701564][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.701564][ T4289] [ 40.704714][ T4289] [ 40.704714][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.704714][ T4289] executing program [ 40.916609][ T4305] loop0: detected capacity change from 0 to 32768 [ 40.931942][ T4305] [ 40.931942][ T4305] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.931942][ T4305] [ 40.944855][ T4305] read_mapping_page failed! [ 40.946060][ T4305] ERROR: (device loop0): txAbort: [ 40.946060][ T4305] [ 40.955275][ T39] ERROR: (device loop0): diWrite: ixpxd invalid [ 40.955275][ T39] [ 40.957423][ T39] ERROR: (device loop0): txAbort: [ 40.957423][ T39] [ 40.959230][ T39] jfs_write_inode: jfs_commit_inode failed! [ 40.960713][ T39] [ 40.960713][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.960713][ T39] [ 40.963188][ T39] [ 40.963188][ T39] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.963188][ T39] [ 40.967277][ T4289] [ 40.967277][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.967277][ T4289] [ 40.970004][ T92] [ 40.970004][ T92] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.970004][ T92] [ 40.972540][ T4289] [ 40.972540][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.972540][ T4289] executing program [ 41.184137][ T4306] loop0: detected capacity change from 0 to 32768 [ 41.197209][ T4306] [ 41.197209][ T4306] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 41.197209][ T4306] [ 41.201197][ T4306] read_mapping_page failed! [ 41.202357][ T4306] ERROR: (device loop0): txAbort: [ 41.202357][ T4306] [ 41.221193][ T9] ERROR: (device loop0): diWrite: ixpxd invalid [ 41.221193][ T9] [ 41.223303][ T9] ERROR: (device loop0): txAbort: [ 41.223303][ T9] [ 41.225251][ T9] jfs_write_inode: jfs_commit_inode failed! [ 41.226954][ T9] [ 41.226954][ T9] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 41.226954][ T9] [ 41.229534][ T9] [ 41.229534][ T9] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 41.229534][ T9] [ 41.232253][ T4289] [ 41.232253][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 41.232253][ T4289] [ 41.236139][ T4289] [ 41.236139][ T4289] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 41.236139][ T4289] [ 41.243942][ T92] ================================================================== [ 41.245995][ T92] BUG: KASAN: use-after-free in __mutex_lock_common+0xae8/0x1f38 [ 41.247800][ T92] Read of size 8 at addr ffff0000d8b5a908 by task jfsCommit/92 [ 41.249514][ T92] [ 41.250054][ T92] CPU: 0 PID: 92 Comm: jfsCommit Not tainted 6.1.135-syzkaller #0 [ 41.251978][ T92] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 41.254413][ T92] Call trace: [ 41.255222][ T92] dump_backtrace+0x1c8/0x1f4 [ 41.256424][ T92] show_stack+0x2c/0x3c [ 41.257467][ T92] __dump_stack+0x30/0x40 [ 41.258604][ T92] dump_stack_lvl+0xf8/0x160 [ 41.259829][ T92] print_address_description+0x88/0x220 [ 41.261296][ T92] print_report+0x50/0x68 [ 41.262382][ T92] kasan_report+0xa8/0x100 [ 41.263539][ T92] __asan_report_load8_noabort+0x2c/0x38 [ 41.264838][ T92] __mutex_lock_common+0xae8/0x1f38 [ 41.266231][ T92] mutex_lock_nested+0x38/0x44 [ 41.267339][ T92] jfs_syncpt+0x2c/0x94 [ 41.268356][ T92] txEnd+0x290/0x4f0 [ 41.269358][ T92] jfs_lazycommit+0x498/0x918 [ 41.270461][ T92] kthread+0x250/0x2d8 [ 41.271466][ T92] ret_from_fork+0x10/0x20 [ 41.272531][ T92] [ 41.273028][ T92] Allocated by task 4306: [ 41.274145][ T92] kasan_set_track+0x4c/0x80 [ 41.275401][ T92] kasan_save_alloc_info+0x28/0x34 [ 41.276713][ T92] __kasan_kmalloc+0xa0/0xb8 [ 41.277794][ T92] kmalloc_trace+0x7c/0x94 [ 41.278859][ T92] lmLogOpen+0x288/0xd58 [ 41.279965][ T92] jfs_mount_rw+0xe4/0x50c [ 41.281110][ T92] jfs_fill_super+0x484/0x948 [ 41.282302][ T92] mount_bdev+0x264/0x358 [ 41.283442][ T92] jfs_do_mount+0x44/0x58 [ 41.284588][ T92] legacy_get_tree+0xd4/0x16c [ 41.286193][ T92] vfs_get_tree+0x90/0x274 [ 41.287325][ T92] do_new_mount+0x228/0x810 [ 41.289018][ T92] path_mount+0x5b4/0xe78 [ 41.289782][ T92] __arm64_sys_mount+0x49c/0x584 [ 41.290622][ T92] invoke_syscall+0x98/0x2bc [ 41.291439][ T92] el0_svc_common+0x138/0x258 [ 41.292229][ T92] do_el0_svc+0x58/0x13c [ 41.292948][ T92] el0_svc+0x58/0x138 [ 41.293658][ T92] el0t_64_sync_handler+0x84/0xf0 [ 41.294548][ T92] el0t_64_sync+0x18c/0x190 [ 41.295363][ T92] [ 41.295792][ T92] Freed by task 4289: [ 41.296493][ T92] kasan_set_track+0x4c/0x80 [ 41.297746][ T92] kasan_save_free_info+0x3c/0x60 [ 41.298998][ T92] ____kasan_slab_free+0x148/0x1b0 [ 41.300306][ T92] __kasan_slab_free+0x18/0x28 [ 41.301519][ T92] slab_free_freelist_hook+0x16c/0x1ec [ 41.303001][ T92] __kmem_cache_free+0xc0/0x224 [ 41.304231][ T92] kfree+0xd0/0x1ac [ 41.305204][ T92] lmLogClose+0x250/0x4c8 [ 41.306299][ T92] jfs_umount+0x244/0x328 [ 41.307409][ T92] jfs_put_super+0x90/0x188 [ 41.308590][ T92] generic_shutdown_super+0x130/0x324 [ 41.309966][ T92] kill_block_super+0x70/0xdc [ 41.311169][ T92] deactivate_locked_super+0xac/0x124 [ 41.312573][ T92] deactivate_super+0xe8/0x108 [ 41.313760][ T92] cleanup_mnt+0x37c/0x404 [ 41.314855][ T92] __cleanup_mnt+0x20/0x30 [ 41.315989][ T92] task_work_run+0x1ec/0x270 [ 41.317160][ T92] do_notify_resume+0x1f70/0x2b0c [ 41.318439][ T92] el0_svc+0x98/0x138 [ 41.319389][ T92] el0t_64_sync_handler+0x84/0xf0 [ 41.320669][ T92] el0t_64_sync+0x18c/0x190 [ 41.321912][ T92] [ 41.322540][ T92] The buggy address belongs to the object at ffff0000d8b5a800 [ 41.322540][ T92] which belongs to the cache kmalloc-1k of size 1024 [ 41.326081][ T92] The buggy address is located 264 bytes inside of [ 41.326081][ T92] 1024-byte region [ffff0000d8b5a800, ffff0000d8b5ac00) [ 41.329600][ T92] [ 41.330179][ T92] The buggy address belongs to the physical page: [ 41.331738][ T92] page:00000000c83e6706 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x118b58 [ 41.334504][ T92] head:00000000c83e6706 order:3 compound_mapcount:0 compound_pincount:0 [ 41.336675][ T92] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 41.338835][ T92] raw: 05ffc00000010200 0000000000000000 dead000000000122 ffff0000c0002780 [ 41.340950][ T92] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 41.343115][ T92] page dumped because: kasan: bad access detected [ 41.344791][ T92] [ 41.345434][ T92] Memory state around the buggy address: [ 41.346858][ T92] ffff0000d8b5a800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.348922][ T92] ffff0000d8b5a880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.351017][ T92] >ffff0000d8b5a900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.353197][ T92] ^ [ 41.354365][ T92] ffff0000d8b5a980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.356424][ T92] ffff0000d8b5aa00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.358549][ T92] ================================================================== executing program [ 41.360759][ T92] Disabling lock debugging due to kernel taint [ 41.362816][ T92] Unable to handle kernel paging request at virtual address dfff800000000006 [ 41.365381][ T92] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037] [ 41.367649][ T92] Mem abort info: [ 41.368473][ T92] ESR = 0x0000000096000006 [ 41.369549][ T92] EC = 0x25: DABT (current EL), IL = 32 bits [ 41.371046][ T92] SET = 0, FnV = 0 [ 41.371966][ T92] EA = 0, S1PTW = 0 [ 41.372902][ T92] FSC = 0x06: level 2 translation fault [ 41.374454][ T92] Data abort info: [ 41.375325][ T92] ISV = 0, ISS = 0x00000006 [ 41.376476][ T92] CM = 0, WnR = 0 [ 41.377385][ T92] [dfff800000000006] address between user and kernel address ranges [ 41.379256][ T92] Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP [ 41.380962][ T92] Modules linked in: [ 41.381897][ T92] CPU: 0 PID: 92 Comm: jfsCommit Tainted: G B 6.1.135-syzkaller #0 [ 41.384205][ T92] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 41.386681][ T92] pstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.388739][ T92] pc : lmLogSync+0xf8/0x894 [ 41.389856][ T92] lr : lmLogSync+0xec/0x894 [ 41.390995][ T92] sp : ffff80001df97b60 [ 41.392011][ T92] x29: ffff80001df97c30 x28: 1ffff00003fa0822 x27: dfff800000000000 [ 41.394087][ T92] x26: 1ffff00002ac4d40 x25: dfff800000000000 x24: ffff80001df97b80 [ 41.396170][ T92] x23: 0000000000000002 x22: ffff700003bf2f70 x21: 0000000000000030 [ 41.398135][ T92] x20: ffff0000d16435d0 x19: ffff0000d8b5a800 x18: ffff800011a7bd00 [ 41.399978][ T92] x17: 1fffe000367c2f76 x16: ffff800008042940 x15: ffff80001506d000 [ 41.402143][ T92] x14: 0000000000000100 x13: 0000000000000120 x12: 0000000000ff0100 [ 41.404194][ T92] x11: ff00800009890320 x10: 0000000000000000 x9 : ffff80001c2cc9d0 [ 41.406190][ T92] x8 : 0000000000000006 x7 : 0000000000000000 x6 : ffff8000082516e4 [ 41.408180][ T92] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff80000989036c [ 41.410202][ T92] x2 : 0000000000000000 x1 : 0000000000000008 x0 : 0000000000000000 [ 41.412217][ T92] Call trace: [ 41.413052][ T92] lmLogSync+0xf8/0x894 [ 41.414137][ T92] jfs_syncpt+0x70/0x94 [ 41.415204][ T92] txEnd+0x290/0x4f0 [ 41.416130][ T92] jfs_lazycommit+0x498/0x918 [ 41.417423][ T92] kthread+0x250/0x2d8 [ 41.418450][ T92] ret_from_fork+0x10/0x20 [ 41.419562][ T92] Code: 97c115b8 f94002a8 9100c115 d343fea8 (387b6908) [ 41.421341][ T92] ---[ end trace 0000000000000000 ]--- [ 41.428644][ T4307] loop0: detected capacity change from 0 to 32768 [ 41.446977][ T4307] [ 41.446977][ T4307] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 41.446977][ T4307] [ 41.454597][ T4307] read_mapping_page failed! [ 41.455780][ T4307] ERROR: (device loop0): txAbort: [ 41.455780][ T4307] [ 41.819135][ T92] Kernel panic - not syncing: Oops: Fatal exception [ 41.820873][ T92] SMP: stopping secondary CPUs [ 41.822030][ T92] Kernel Offset: disabled [ 41.823091][ T92] CPU features: 0x080000,02070084,26017203 [ 41.824487][ T92] Memory Limit: none [ 42.197361][ T92] Rebooting in 86400 seconds..