Warning: Permanently added '10.128.0.114' (ED25519) to the list of known hosts. executing program [ 40.106431][ T4022] loop0: detected capacity change from 0 to 32768 [ 40.203403][ T4022] [ 40.203403][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.203403][ T4022] [ 40.212326][ T4022] [ 40.212326][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.212326][ T4022] [ 40.215514][ T4022] [ 40.215514][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.215514][ T4022] [ 40.219263][ T4022] [ 40.219263][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.219263][ T4022] [ 40.222349][ T4022] [ 40.222349][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.222349][ T4022] [ 40.227431][ T241] [ 40.227431][ T241] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.227431][ T241] [ 40.231951][ T4022] ================================================================== [ 40.234379][ T4022] BUG: KASAN: slab-out-of-bounds in diWrite+0x91c/0x1218 [ 40.236359][ T4022] Read of size 32 at addr ffff0000df3c4130 by task syz-executor408/4022 [ 40.238693][ T4022] [ 40.239337][ T4022] CPU: 0 PID: 4022 Comm: syz-executor408 Not tainted 5.15.184-syzkaller #0 [ 40.241790][ T4022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 40.244807][ T4022] Call trace: [ 40.245749][ T4022] dump_backtrace+0x0/0x43c [ 40.247089][ T4022] show_stack+0x2c/0x3c [ 40.248347][ T4022] __dump_stack+0x30/0x40 [ 40.249621][ T4022] dump_stack_lvl+0xf8/0x160 [ 40.250956][ T4022] print_address_description+0x78/0x30c [ 40.252518][ T4022] kasan_report+0xec/0x15c [ 40.253747][ T4022] kasan_check_range+0x270/0x2b0 [ 40.255208][ T4022] memcpy+0x90/0xe8 [ 40.256330][ T4022] diWrite+0x91c/0x1218 [ 40.257595][ T4022] txCommit+0x5d4/0x3c1c [ 40.258815][ T4022] add_missing_indices+0x6e4/0xa0c [ 40.260328][ T4022] jfs_readdir+0x1880/0x3024 [ 40.261673][ T4022] iterate_dir+0x1f0/0x4cc [ 40.262978][ T4022] __arm64_sys_getdents64+0x11c/0x340 [ 40.264525][ T4022] invoke_syscall+0x98/0x2b8 [ 40.265823][ T4022] el0_svc_common+0x138/0x258 [ 40.267125][ T4022] do_el0_svc+0x58/0x14c [ 40.268360][ T4022] el0_svc+0x78/0x1e0 [ 40.269480][ T4022] el0t_64_sync_handler+0xcc/0xe4 [ 40.270988][ T4022] el0t_64_sync+0x1a0/0x1a4 [ 40.272290][ T4022] [ 40.272933][ T4022] Allocated by task 0: [ 40.274112][ T4022] (stack is not available) [ 40.275336][ T4022] [ 40.275962][ T4022] The buggy address belongs to the object at ffff0000df3c40c0 [ 40.275962][ T4022] which belongs to the cache jfs_ip of size 2240 [ 40.279913][ T4022] The buggy address is located 112 bytes inside of [ 40.279913][ T4022] 2240-byte region [ffff0000df3c40c0, ffff0000df3c4980) [ 40.283837][ T4022] The buggy address belongs to the page: [ 40.285500][ T4022] page:00000000f15237b6 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11f3c0 [ 40.288486][ T4022] head:00000000f15237b6 order:3 compound_mapcount:0 compound_pincount:0 [ 40.290902][ T4022] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 40.293218][ T4022] raw: 05ffc00000010200 0000000000000000 dead000000000122 ffff0000c6d84000 [ 40.295707][ T4022] raw: 0000000000000000 00000000800d000d 00000001ffffffff 0000000000000000 [ 40.298295][ T4022] page dumped because: kasan: bad access detected [ 40.300179][ T4022] [ 40.300817][ T4022] Memory state around the buggy address: [ 40.302517][ T4022] ffff0000df3c4000: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 40.304934][ T4022] ffff0000df3c4080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 40.307316][ T4022] >ffff0000df3c4100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 40.309662][ T4022] ^ [ 40.311227][ T4022] ffff0000df3c4180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 40.313499][ T4022] ffff0000df3c4200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 40.315817][ T4022] ================================================================== [ 40.318165][ T4022] Disabling lock debugging due to kernel taint [ 40.320537][ T4022] [ 40.320537][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.320537][ T4022] [ 40.323490][ T4022] [ 40.323490][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.323490][ T4022] [ 40.326525][ T4022] [ 40.326525][ T4022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.326525][ T4022] [ 40.329743][ T4022] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 0 [ 40.329743][ T4022] [ 40.330106][ T241] [ 40.330106][ T241] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 40.330106][ T241] [ 40.333483][ T4022] JFS: Invalid stbl[1] = -128 for inode 2, block = 0