./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor601327961

<...>
Warning: Permanently added '10.128.1.75' (ECDSA) to the list of known hosts.
execve("./syz-executor601327961", ["./syz-executor601327961"], 0x7ffc4944b9f0 /* 10 vars */) = 0
brk(NULL)                               = 0x55555704a000
brk(0x55555704ac40)                     = 0x55555704ac40
arch_prctl(ARCH_SET_FS, 0x55555704a300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor601327961", 4096) = 27
brk(0x55555706bc40)                     = 0x55555706bc40
brk(0x55555706c000)                     = 0x55555706c000
mprotect(0x7fe53e5f5000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
getpid()                                = 5068
openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3
write(3, "10000000000", 11)             = 11
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3
write(3, "20", 2)                       = 2
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
write(3, "100", 3)                      = 3
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3
write(3, "7 4 1 3", 7)                  = 7
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3
write(3, "5068", 4)                     = 4
close(3)                                = 0
memfd_create("syzkaller", 0)            = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe53611b000
write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x10\x20\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x03\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf4\x00\x00\x00\xf4\x00\x00\x00\x92\x9d\x3e\x59\x8b\x7e\x69\x31\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 4194304) = 4194304
munmap(0x7fe53611b000, 4194304)         = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 4
ioctl(4, LOOP_SET_FD, 3)                = 0
close(3)                                = 0
mkdir("./file1", 0777)                  = 0
syzkaller login: [   54.886227][ T5068] loop0: detected capacity change from 0 to 8192
[   54.897060][ T5068] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[   54.911219][ T5068] ==================================================================
[   54.919272][ T5068] BUG: KASAN: use-after-free in mi_enum_attr+0x605/0x640
[   54.926465][ T5068] Read of size 4 at addr ffff888178628047 by task syz-executor601/5068
[   54.934678][ T5068] 
[   54.936980][ T5068] CPU: 0 PID: 5068 Comm: syz-executor601 Not tainted 6.1.0-syzkaller-10971-g041fae9c105a #0
[   54.947020][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   54.957053][ T5068] Call Trace:
[   54.960310][ T5068]  <TASK>
[   54.963219][ T5068]  dump_stack_lvl+0xd1/0x138
[   54.967797][ T5068]  print_report+0x15e/0x45d
[   54.972283][ T5068]  ? __phys_addr+0xc8/0x140
[   54.976773][ T5068]  ? mi_enum_attr+0x605/0x640
[   54.981431][ T5068]  kasan_report+0xbf/0x1f0
[   54.985829][ T5068]  ? mi_enum_attr+0x605/0x640
[   54.990486][ T5068]  mi_enum_attr+0x605/0x640
[   54.994967][ T5068]  ni_enum_attr_ex+0x31d/0x400
[   54.999718][ T5068]  ? ntfs_read_bh+0x52/0xb0
[   55.004204][ T5068]  ? ni_fname_type.part.0+0x1e0/0x1e0
[   55.009560][ T5068]  ? mi_read+0x283/0x5b0
[   55.013785][ T5068]  ntfs_iget5+0xac0/0x3280
[   55.018187][ T5068]  ? ntfs_write_end+0x800/0x800
[   55.023025][ T5068]  ? destroy_inode+0xc4/0x1b0
[   55.027694][ T5068]  ? iput.part.0+0x59b/0x880
[   55.032280][ T5068]  ntfs_fill_super+0x1ff5/0x3860
[   55.037212][ T5068]  ? put_ntfs+0x330/0x330
[   55.041533][ T5068]  ? set_blocksize+0x2c9/0x370
[   55.046294][ T5068]  get_tree_bdev+0x444/0x760
[   55.050875][ T5068]  ? put_ntfs+0x330/0x330
[   55.055192][ T5068]  vfs_get_tree+0x8d/0x2f0
[   55.059598][ T5068]  path_mount+0x132a/0x1e20
[   55.064090][ T5068]  ? kmem_cache_free+0xee/0x5c0
[   55.068924][ T5068]  ? finish_automount+0x960/0x960
[   55.073937][ T5068]  ? putname+0x102/0x140
[   55.078169][ T5068]  __x64_sys_mount+0x283/0x300
[   55.082927][ T5068]  ? copy_mnt_ns+0xb30/0xb30
[   55.087504][ T5068]  ? lockdep_hardirqs_on+0x7d/0x100
[   55.092692][ T5068]  ? _raw_spin_unlock_irq+0x2e/0x50
[   55.097886][ T5068]  ? ptrace_notify+0xfe/0x140
[   55.102547][ T5068]  do_syscall_64+0x39/0xb0
[   55.106947][ T5068]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   55.112831][ T5068] RIP: 0033:0x7fe53e57093a
[   55.117228][ T5068] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   55.137011][ T5068] RSP: 002b:00007ffc3f7e30f8 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   55.145408][ T5068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fe53e57093a
[   55.153362][ T5068] RDX: 0000000020020bc0 RSI: 0000000020020c00 RDI: 00007ffc3f7e3110
[   55.161320][ T5068] RBP: 00007ffc3f7e3110 R08: 00007ffc3f7e3150 R09: 0000000000020b9f
[   55.169274][ T5068] R10: 0000000000018882 R11: 0000000000000286 R12: 0000000000000004
[   55.177228][ T5068] R13: 000055555704a2c0 R14: 0000000000018882 R15: 00007ffc3f7e3150
[   55.185186][ T5068]  </TASK>
[   55.188193][ T5068] 
[   55.190496][ T5068] The buggy address belongs to the physical page:
[   55.196887][ T5068] page:ffffea0005e18a00 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x178628
[   55.207109][ T5068] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[   55.214290][ T5068] raw: 057ff00000000000 ffffea0005e18a08 ffffea0005e18a08 0000000000000000
[   55.222857][ T5068] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   55.231418][ T5068] page dumped because: kasan: bad access detected
[   55.237820][ T5068] page_owner info is not present (never set?)
[   55.243858][ T5068] 
[   55.246162][ T5068] Memory state around the buggy address:
[   55.251771][ T5068]  ffff888178627f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   55.259814][ T5068]  ffff888178627f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   55.267858][ T5068] >ffff888178628000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   55.275898][ T5068]                                            ^
[   55.282114][ T5068]  ffff888178628080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   55.290153][ T5068]  ffff888178628100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   55.298191][ T5068] ==================================================================
[   55.306672][ T5068] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   55.313873][ T5068] CPU: 0 PID: 5068 Comm: syz-executor601 Not tainted 6.1.0-syzkaller-10971-g041fae9c105a #0
[   55.324005][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   55.334044][ T5068] Call Trace:
[   55.337305][ T5068]  <TASK>
[   55.340217][ T5068]  dump_stack_lvl+0xd1/0x138
[   55.344804][ T5068]  panic+0x2cc/0x626
[   55.348687][ T5068]  ? panic_print_sys_info.part.0+0x110/0x110
[   55.354750][ T5068]  ? preempt_schedule_thunk+0x1a/0x20
[   55.360112][ T5068]  ? preempt_schedule_common+0x59/0xc0
[   55.365560][ T5068]  check_panic_on_warn.cold+0x19/0x35
[   55.370919][ T5068]  end_report.part.0+0x36/0x73
[   55.375677][ T5068]  ? mi_enum_attr+0x605/0x640
[   55.380344][ T5068]  kasan_report.cold+0xa/0xf
[   55.384925][ T5068]  ? mi_enum_attr+0x605/0x640
[   55.389592][ T5068]  mi_enum_attr+0x605/0x640
[   55.394083][ T5068]  ni_enum_attr_ex+0x31d/0x400
[   55.398838][ T5068]  ? ntfs_read_bh+0x52/0xb0
[   55.403329][ T5068]  ? ni_fname_type.part.0+0x1e0/0x1e0
[   55.408692][ T5068]  ? mi_read+0x283/0x5b0
[   55.412927][ T5068]  ntfs_iget5+0xac0/0x3280
[   55.417331][ T5068]  ? ntfs_write_end+0x800/0x800
[   55.422169][ T5068]  ? destroy_inode+0xc4/0x1b0
[   55.426836][ T5068]  ? iput.part.0+0x59b/0x880
[   55.431417][ T5068]  ntfs_fill_super+0x1ff5/0x3860
[   55.436352][ T5068]  ? put_ntfs+0x330/0x330
[   55.440669][ T5068]  ? set_blocksize+0x2c9/0x370
[   55.445427][ T5068]  get_tree_bdev+0x444/0x760
[   55.450005][ T5068]  ? put_ntfs+0x330/0x330
[   55.454323][ T5068]  vfs_get_tree+0x8d/0x2f0
[   55.458727][ T5068]  path_mount+0x132a/0x1e20
[   55.463223][ T5068]  ? kmem_cache_free+0xee/0x5c0
[   55.468058][ T5068]  ? finish_automount+0x960/0x960
[   55.473071][ T5068]  ? putname+0x102/0x140
[   55.477304][ T5068]  __x64_sys_mount+0x283/0x300
[   55.482055][ T5068]  ? copy_mnt_ns+0xb30/0xb30
[   55.486634][ T5068]  ? lockdep_hardirqs_on+0x7d/0x100
[   55.491823][ T5068]  ? _raw_spin_unlock_irq+0x2e/0x50
[   55.497013][ T5068]  ? ptrace_notify+0xfe/0x140
[   55.501675][ T5068]  do_syscall_64+0x39/0xb0
[   55.506167][ T5068]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   55.512050][ T5068] RIP: 0033:0x7fe53e57093a
[   55.516447][ T5068] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   55.536039][ T5068] RSP: 002b:00007ffc3f7e30f8 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   55.544434][ T5068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fe53e57093a
[   55.552389][ T5068] RDX: 0000000020020bc0 RSI: 0000000020020c00 RDI: 00007ffc3f7e3110
[   55.560350][ T5068] RBP: 00007ffc3f7e3110 R08: 00007ffc3f7e3150 R09: 0000000000020b9f
[   55.568312][ T5068] R10: 0000000000018882 R11: 0000000000000286 R12: 0000000000000004
[   55.576271][ T5068] R13: 000055555704a2c0 R14: 0000000000018882 R15: 00007ffc3f7e3150
[   55.584233][ T5068]  </TASK>
[   55.588031][ T5068] Kernel Offset: disabled
[   55.592338][ T5068] Rebooting in 86400 seconds..