Warning: Permanently added '10.128.1.32' (ECDSA) to the list of known hosts.
executing program
[   53.511719][ T3498] loop0: detected capacity change from 0 to 2048
[   53.519746][ T3498] =======================================================
[   53.519746][ T3498] WARNING: The mand mount option has been deprecated and
[   53.519746][ T3498]          and is ignored by this kernel. Remove the mand
[   53.519746][ T3498]          option from the mount to silence this warning.
[   53.519746][ T3498] =======================================================
[   53.558297][ T3498] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[   53.570135][ T3498] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   53.641156][ T3498] ==================================================================
[   53.649408][ T3498] BUG: KASAN: use-after-free in crc_itu_t+0x218/0x2a0
[   53.656310][ T3498] Read of size 1 at addr ffff888070652000 by task syz-executor427/3498
[   53.664574][ T3498] 
[   53.666916][ T3498] CPU: 1 PID: 3498 Comm: syz-executor427 Not tainted 5.15.117-syzkaller #0
[   53.675515][ T3498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   53.685565][ T3498] Call Trace:
[   53.688836][ T3498]  <TASK>
[   53.691759][ T3498]  dump_stack_lvl+0x1e3/0x2cb
[   53.696438][ T3498]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   53.702065][ T3498]  ? _printk+0xd1/0x111
[   53.706215][ T3498]  ? __wake_up_klogd+0xcc/0x100
[   53.711144][ T3498]  ? panic+0x84d/0x84d
[   53.715208][ T3498]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   53.720663][ T3498]  print_address_description+0x63/0x3b0
[   53.726207][ T3498]  ? crc_itu_t+0x218/0x2a0
[   53.730618][ T3498]  kasan_report+0x16b/0x1c0
[   53.735117][ T3498]  ? crc_itu_t+0x218/0x2a0
[   53.739526][ T3498]  ? pvclock_gtod_unregister_notifier+0x50/0x50
[   53.745764][ T3498]  crc_itu_t+0x218/0x2a0
[   53.750005][ T3498]  udf_sync_fs+0x1ce/0x380
[   53.754414][ T3498]  ? udf_put_super+0x160/0x160
[   53.759175][ T3498]  ? get_nr_dirty_inodes+0x25f/0x2e0
[   53.764458][ T3498]  sync_filesystem+0xe8/0x220
[   53.769134][ T3498]  generic_shutdown_super+0x6e/0x2c0
[   53.774417][ T3498]  kill_block_super+0x7a/0xe0
[   53.779091][ T3498]  deactivate_locked_super+0xa0/0x110
[   53.784472][ T3498]  cleanup_mnt+0x44e/0x500
[   53.788884][ T3498]  ? lockdep_hardirqs_on+0x94/0x130
[   53.794081][ T3498]  task_work_run+0x129/0x1a0
[   53.798669][ T3498]  do_exit+0x6a3/0x2480
[   53.802830][ T3498]  ? put_task_struct+0x80/0x80
[   53.807586][ T3498]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   53.813563][ T3498]  ? vtime_user_exit+0x2d1/0x400
[   53.818495][ T3498]  do_group_exit+0x144/0x310
[   53.823080][ T3498]  __x64_sys_exit_group+0x3b/0x40
[   53.828221][ T3498]  do_syscall_64+0x3d/0xb0
[   53.832650][ T3498]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.838547][ T3498] RIP: 0033:0x7f5fed5e2bf9
[   53.843050][ T3498] Code: Unable to access opcode bytes at RIP 0x7f5fed5e2bcf.
[   53.850582][ T3498] RSP: 002b:00007ffc699a9fc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   53.859073][ T3498] RAX: ffffffffffffffda RBX: 00007f5fed677330 RCX: 00007f5fed5e2bf9
[   53.867038][ T3498] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   53.874998][ T3498] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000000
[   53.882963][ T3498] R10: 0000000000000022 R11: 0000000000000246 R12: 00007f5fed677330
[   53.890931][ T3498] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   53.898995][ T3498]  </TASK>
[   53.902004][ T3498] 
[   53.904315][ T3498] The buggy address belongs to the page:
[   53.909935][ T3498] page:ffffea0001c19480 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x70652
[   53.920159][ T3498] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   53.927274][ T3498] raw: 00fff00000000000 ffffea0001c1a108 ffffea0001c1a148 0000000000000000
[   53.935933][ T3498] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   53.945022][ T3498] page dumped because: kasan: bad access detected
[   53.951419][ T3498] page_owner tracks the page as freed
[   53.956856][ T3498] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 3494, ts 47743150902, free_ts 47910218016
[   53.971423][ T3498]  get_page_from_freelist+0x322a/0x33c0
[   53.976965][ T3498]  __alloc_pages+0x272/0x700
[   53.981547][ T3498]  alloc_pages_vma+0x39a/0x800
[   53.986325][ T3498]  wp_page_copy+0x26c/0x2000
[   53.990906][ T3498]  handle_mm_fault+0x2a3d/0x5950
[   53.995831][ T3498]  exc_page_fault+0x271/0x740
[   54.000606][ T3498]  asm_exc_page_fault+0x22/0x30
[   54.005448][ T3498] page last free stack trace:
[   54.010121][ T3498]  free_unref_page_prepare+0xc34/0xcf0
[   54.015573][ T3498]  free_unref_page_list+0x1f7/0x8e0
[   54.020768][ T3498]  release_pages+0x1bb9/0x1f40
[   54.025538][ T3498]  tlb_finish_mmu+0x177/0x320
[   54.030200][ T3498]  exit_mmap+0x3cd/0x670
[   54.034431][ T3498]  __mmput+0x112/0x3b0
[   54.038486][ T3498]  exit_mm+0x688/0x7f0
[   54.042543][ T3498]  do_exit+0x626/0x2480
[   54.046716][ T3498]  do_group_exit+0x144/0x310
[   54.051295][ T3498]  __x64_sys_exit_group+0x3b/0x40
[   54.056447][ T3498]  do_syscall_64+0x3d/0xb0
[   54.060874][ T3498]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   54.066786][ T3498] 
[   54.069104][ T3498] Memory state around the buggy address:
[   54.074818][ T3498]  ffff888070651f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   54.082959][ T3498]  ffff888070651f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   54.091009][ T3498] >ffff888070652000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.099053][ T3498]                    ^
[   54.103107][ T3498]  ffff888070652080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.111155][ T3498]  ffff888070652100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.119199][ T3498] ==================================================================
[   54.127242][ T3498] Disabling lock debugging due to kernel taint
[   54.134118][ T3498] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   54.141334][ T3498] CPU: 1 PID: 3498 Comm: syz-executor427 Tainted: G    B             5.15.117-syzkaller #0
[   54.151302][ T3498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   54.161345][ T3498] Call Trace:
[   54.164615][ T3498]  <TASK>
[   54.167534][ T3498]  dump_stack_lvl+0x1e3/0x2cb
[   54.172207][ T3498]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   54.177828][ T3498]  ? panic+0x84d/0x84d
[   54.181886][ T3498]  ? preempt_schedule_common+0xa6/0xd0
[   54.187335][ T3498]  ? preempt_schedule+0xd9/0xe0
[   54.192175][ T3498]  panic+0x318/0x84d
[   54.196057][ T3498]  ? check_panic_on_warn+0x1d/0xa0
[   54.201155][ T3498]  ? fb_is_primary_device+0xcc/0xcc
[   54.206341][ T3498]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   54.212305][ T3498]  ? _raw_spin_unlock+0x40/0x40
[   54.217252][ T3498]  ? print_memory_metadata+0xe2/0x140
[   54.222637][ T3498]  check_panic_on_warn+0x7e/0xa0
[   54.227583][ T3498]  ? crc_itu_t+0x218/0x2a0
[   54.231990][ T3498]  end_report+0x6d/0xf0
[   54.236138][ T3498]  kasan_report+0x18e/0x1c0
[   54.240628][ T3498]  ? crc_itu_t+0x218/0x2a0
[   54.245040][ T3498]  ? pvclock_gtod_unregister_notifier+0x50/0x50
[   54.251273][ T3498]  crc_itu_t+0x218/0x2a0
[   54.255505][ T3498]  udf_sync_fs+0x1ce/0x380
[   54.260039][ T3498]  ? udf_put_super+0x160/0x160
[   54.264814][ T3498]  ? get_nr_dirty_inodes+0x25f/0x2e0
[   54.270106][ T3498]  sync_filesystem+0xe8/0x220
[   54.274780][ T3498]  generic_shutdown_super+0x6e/0x2c0
[   54.280056][ T3498]  kill_block_super+0x7a/0xe0
[   54.284720][ T3498]  deactivate_locked_super+0xa0/0x110
[   54.290085][ T3498]  cleanup_mnt+0x44e/0x500
[   54.294495][ T3498]  ? lockdep_hardirqs_on+0x94/0x130
[   54.299710][ T3498]  task_work_run+0x129/0x1a0
[   54.304312][ T3498]  do_exit+0x6a3/0x2480
[   54.308467][ T3498]  ? put_task_struct+0x80/0x80
[   54.313231][ T3498]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   54.319207][ T3498]  ? vtime_user_exit+0x2d1/0x400
[   54.324137][ T3498]  do_group_exit+0x144/0x310
[   54.328719][ T3498]  __x64_sys_exit_group+0x3b/0x40
[   54.333732][ T3498]  do_syscall_64+0x3d/0xb0
[   54.338150][ T3498]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   54.344035][ T3498] RIP: 0033:0x7f5fed5e2bf9
[   54.348441][ T3498] Code: Unable to access opcode bytes at RIP 0x7f5fed5e2bcf.
[   54.355793][ T3498] RSP: 002b:00007ffc699a9fc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   54.364194][ T3498] RAX: ffffffffffffffda RBX: 00007f5fed677330 RCX: 00007f5fed5e2bf9
[   54.372168][ T3498] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   54.380124][ T3498] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000000
[   54.388079][ T3498] R10: 0000000000000022 R11: 0000000000000246 R12: 00007f5fed677330
[   54.396152][ T3498] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   54.404116][ T3498]  </TASK>
[   54.407283][ T3498] Kernel Offset: disabled
[   54.411599][ T3498] Rebooting in 86400 seconds..