Warning: Permanently added '10.128.0.130' (ED25519) to the list of known hosts.
executing program
[   90.807831][ T5028] syz-executor313[5028]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   90.839631][ T5028] loop0: detected capacity change from 0 to 2048
[   90.848208][ T5028] =======================================================
[   90.848208][ T5028] WARNING: The mand mount option has been deprecated and
[   90.848208][ T5028]          and is ignored by this kernel. Remove the mand
[   90.848208][ T5028]          option from the mount to silence this warning.
[   90.848208][ T5028] =======================================================
[   90.887201][ T5028] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[   90.900106][ T5028] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   90.927862][   T28] audit: type=1800 audit(1696342384.491:2): pid=5028 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor313" name="bus" dev="loop0" ino=1367 res=0 errno=0
executing program
[   91.238172][ T5030] loop0: detected capacity change from 0 to 2048
[   91.249767][ T5030] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[   91.264329][ T5030] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   91.281605][   T28] audit: type=1800 audit(1696342384.851:3): pid=5030 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor313" name="bus" dev="loop0" ino=1367 res=0 errno=0
[   91.497175][ T5027] ==================================================================
[   91.505308][ T5027] BUG: KASAN: slab-out-of-bounds in crc_itu_t+0x21c/0x2a0
[   91.512482][ T5027] Read of size 1 at addr ffff88801f0880a8 by task syz-executor313/5027
[   91.520748][ T5027] 
[   91.523076][ T5027] CPU: 0 PID: 5027 Comm: syz-executor313 Not tainted 6.6.0-rc4-syzkaller-00012-gce36c8b14987 #0
[   91.533514][ T5027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[   91.543778][ T5027] Call Trace:
[   91.547140][ T5027]  <TASK>
[   91.550157][ T5027]  dump_stack_lvl+0x1e7/0x2d0
[   91.554859][ T5027]  ? nf_tcp_handle_invalid+0x650/0x650
[   91.560349][ T5027]  ? panic+0x770/0x770
[   91.564431][ T5027]  ? _printk+0xd5/0x120
[   91.568602][ T5027]  print_report+0x163/0x540
[   91.573160][ T5027]  ? ktime_get_real_ts64+0x460/0x460
[   91.578471][ T5027]  ? __mutex_lock+0x2ee/0xd60
[   91.583160][ T5027]  ? time64_to_tm+0x331/0x4d0
[   91.587890][ T5027]  ? __virt_addr_valid+0x22f/0x2e0
[   91.593030][ T5027]  ? __phys_addr+0xba/0x170
[   91.597550][ T5027]  ? crc_itu_t+0x21c/0x2a0
[   91.601981][ T5027]  kasan_report+0x175/0x1b0
[   91.606552][ T5027]  ? crc_itu_t+0x21c/0x2a0
[   91.610986][ T5027]  ? pvclock_gtod_unregister_notifier+0x50/0x50
[   91.617269][ T5027]  crc_itu_t+0x21c/0x2a0
[   91.621596][ T5027]  udf_sync_fs+0x1d2/0x380
[   91.626166][ T5027]  ? udf_put_super+0x160/0x160
[   91.631061][ T5027]  ? dentry_kill+0xbb/0x290
[   91.635605][ T5027]  ? get_nr_dirty_inodes+0x1c7/0x210
[   91.641017][ T5027]  sync_filesystem+0xec/0x220
[   91.645905][ T5027]  generic_shutdown_super+0x72/0x2c0
[   91.651254][ T5027]  kill_block_super+0x41/0x70
[   91.655991][ T5027]  deactivate_locked_super+0xa4/0x110
[   91.661380][ T5027]  cleanup_mnt+0x426/0x4c0
[   91.665816][ T5027]  ? _raw_spin_unlock_irq+0x23/0x50
[   91.671030][ T5027]  task_work_run+0x24a/0x300
[   91.675653][ T5027]  ? task_work_cancel+0x2b0/0x2b0
[   91.680713][ T5027]  ? exit_to_user_mode_loop+0x39/0x100
[   91.686208][ T5027]  exit_to_user_mode_loop+0xde/0x100
[   91.691551][ T5027]  exit_to_user_mode_prepare+0xb1/0x140
[   91.697191][ T5027]  syscall_exit_to_user_mode+0x64/0x280
[   91.702782][ T5027]  do_syscall_64+0x4d/0xc0
[   91.707232][ T5027]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   91.713149][ T5027] RIP: 0033:0x7f3fbb4e2847
[   91.717590][ T5027] Code: 09 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[   91.737215][ T5027] RSP: 002b:00007ffe38344718 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[   91.746360][ T5027] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f3fbb4e2847
[   91.754610][ T5027] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffe383447d0
[   91.762588][ T5027] RBP: 00007ffe383447d0 R08: 0000000000000000 R09: 0000000000000000
[   91.770696][ T5027] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffe38345840
[   91.778697][ T5027] R13: 00005555557dc6c0 R14: 431bde82d7b634db R15: 00007ffe38345860
[   91.786725][ T5027]  </TASK>
[   91.789788][ T5027] 
[   91.792136][ T5027] Allocated by task 1:
[   91.796207][ T5027]  kasan_set_track+0x4f/0x70
[   91.800901][ T5027]  __kasan_slab_alloc+0x66/0x70
[   91.808881][ T5027]  slab_post_alloc_hook+0x67/0x3d0
[   91.813995][ T5027]  kmem_cache_alloc+0x123/0x300
[   91.818869][ T5027]  __kernfs_new_node+0xd8/0x870
[   91.823889][ T5027]  kernfs_new_node+0x99/0x170
[   91.828570][ T5027]  kernfs_create_link+0xa5/0x1f0
[   91.834919][ T5027]  sysfs_do_create_link_sd+0x85/0x100
[   91.842936][ T5027]  device_add_class_symlinks+0x143/0x250
[   91.848696][ T5027]  device_add+0x5c6/0xd30
[   91.853189][ T5027]  netdev_register_kobject+0x17a/0x310
[   91.858772][ T5027]  register_netdevice+0xcd6/0x1510
[   91.864425][ T5027]  ieee802154_if_add+0xbc9/0x1150
[   91.869563][ T5027]  ieee802154_register_hw+0x636/0x8d0
[   91.876700][ T5027]  hwsim_add_one+0x489/0x11c0
[   91.881397][ T5027]  hwsim_probe+0x4a/0x110
[   91.885833][ T5027]  platform_probe+0x135/0x1b0
[   91.890997][ T5027]  really_probe+0x294/0xc30
[   91.896667][ T5027]  __driver_probe_device+0x1a2/0x3d0
[   91.901993][ T5027]  driver_probe_device+0x50/0x420
[   91.908287][ T5027]  __driver_attach+0x45c/0x710
[   91.915403][ T5027]  bus_for_each_dev+0x236/0x2b0
[   91.926022][ T5027]  bus_add_driver+0x343/0x620
[   91.934698][ T5027]  driver_register+0x23a/0x320
[   91.939488][ T5027]  hwsim_init_module+0x12e/0x1d0
[   91.945318][ T5027]  do_one_initcall+0x23d/0x7d0
[   91.950720][ T5027]  do_initcall_level+0x157/0x210
[   91.955781][ T5027]  do_initcalls+0x3f/0x80
[   91.960294][ T5027]  kernel_init_freeable+0x429/0x5c0
[   91.965572][ T5027]  kernel_init+0x1d/0x2a0
[   91.970571][ T5027]  ret_from_fork+0x48/0x80
[   91.975120][ T5027]  ret_from_fork_asm+0x11/0x20
[   91.980009][ T5027] 
[   91.982345][ T5027] The buggy address belongs to the object at ffff88801f088000
[   91.982345][ T5027]  which belongs to the cache kernfs_node_cache of size 168
[   91.996938][ T5027] The buggy address is located 0 bytes to the right of
[   91.996938][ T5027]  allocated 168-byte region [ffff88801f088000, ffff88801f0880a8)
[   92.011464][ T5027] 
[   92.013810][ T5027] The buggy address belongs to the physical page:
[   92.020214][ T5027] page:ffffea00007c2200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1f088
[   92.031258][ T5027] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[   92.038983][ T5027] page_type: 0xffffffff()
[   92.049581][ T5027] raw: 00fff00000000800 ffff888015a6d000 dead000000000122 0000000000000000
[   92.058412][ T5027] raw: 0000000000000000 0000000000110011 00000001ffffffff 0000000000000000
[   92.067026][ T5027] page dumped because: kasan: bad access detected
[   92.073540][ T5027] page_owner tracks the page as allocated
[   92.079357][ T5027] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, tgid 1 (swapper/0), ts 10542029718, free_ts 10539250034
[   92.094828][   T27] cfg80211: failed to load regulatory.db
[   92.096927][ T5027]  post_alloc_hook+0x1e6/0x210
[   92.107379][ T5027]  get_page_from_freelist+0x31db/0x3360
[   92.112976][ T5027]  __alloc_pages+0x255/0x670
[   92.117615][ T5027]  alloc_page_interleave+0x22/0x1d0
[   92.123817][ T5027]  alloc_slab_page+0x6a/0x160
[   92.128711][ T5027]  new_slab+0x84/0x2f0
[   92.133074][ T5027]  ___slab_alloc+0xc85/0x1310
[   92.137780][ T5027]  kmem_cache_alloc+0x1bf/0x300
[   92.142653][ T5027]  __kernfs_new_node+0xd8/0x870
[   92.148402][ T5027]  kernfs_new_node+0x99/0x170
[   92.153290][ T5027]  kernfs_create_link+0xa5/0x1f0
[   92.158740][ T5027]  sysfs_do_create_link_sd+0x85/0x100
[   92.164251][ T5027]  device_add_class_symlinks+0x143/0x250
[   92.170013][ T5027]  device_add+0x5c6/0xd30
[   92.174378][ T5027]  netdev_register_kobject+0x17a/0x310
[   92.179887][ T5027]  register_netdevice+0xcd6/0x1510
[   92.185024][ T5027] page last free stack trace:
[   92.189872][ T5027]  free_unref_page_prepare+0x8c3/0x9f0
[   92.195393][ T5027]  free_unref_page_list+0x596/0x830
[   92.200646][ T5027]  release_pages+0x2113/0x23f0
[   92.205618][ T5027]  tlb_flush_mmu+0x34c/0x4e0
[   92.210560][ T5027]  tlb_finish_mmu+0xd4/0x1f0
[   92.215323][ T5027]  exit_mmap+0x4d3/0xc50
[   92.219581][ T5027]  __mmput+0x115/0x3c0
[   92.223691][ T5027]  free_bprm+0x144/0x330
[   92.229570][ T5027]  kernel_execve+0x8f5/0xa10
[   92.234491][ T5027]  call_usermodehelper_exec_async+0x233/0x370
[   92.240847][ T5027]  ret_from_fork+0x48/0x80
[   92.245478][ T5027]  ret_from_fork_asm+0x11/0x20
[   92.250361][ T5027] 
[   92.252698][ T5027] Memory state around the buggy address:
[   92.258502][ T5027]  ffff88801f087f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   92.266928][ T5027]  ffff88801f088000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   92.275186][ T5027] >ffff88801f088080: 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00
[   92.283550][ T5027]                                   ^
[   92.289326][ T5027]  ffff88801f088100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   92.297441][ T5027]  ffff88801f088180: 00 00 fc fc fc fc fc fc fc fc 00 00 00 00 00 00
[   92.305708][ T5027] ==================================================================
[   92.315233][ T5027] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   92.322573][ T5027] CPU: 0 PID: 5027 Comm: syz-executor313 Not tainted 6.6.0-rc4-syzkaller-00012-gce36c8b14987 #0
[   92.332992][ T5027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[   92.343409][ T5027] Call Trace:
[   92.346697][ T5027]  <TASK>
[   92.349643][ T5027]  dump_stack_lvl+0x1e7/0x2d0
[   92.355388][ T5027]  ? nf_tcp_handle_invalid+0x650/0x650
[   92.360885][ T5027]  ? panic+0x770/0x770
[   92.364968][ T5027]  ? vscnprintf+0x5d/0x80
[   92.369324][ T5027]  panic+0x30f/0x770
[   92.373319][ T5027]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   92.379517][ T5027]  ? check_panic_on_warn+0x21/0xa0
[   92.384901][ T5027]  ? __memcpy_flushcache+0x2b0/0x2b0
[   92.390239][ T5027]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   92.396440][ T5027]  ? _raw_spin_unlock+0x40/0x40
[   92.401426][ T5027]  check_panic_on_warn+0x82/0xa0
[   92.406582][ T5027]  ? crc_itu_t+0x21c/0x2a0
[   92.411013][ T5027]  end_report+0x6e/0x130
[   92.415289][ T5027]  kasan_report+0x186/0x1b0
[   92.419817][ T5027]  ? crc_itu_t+0x21c/0x2a0
[   92.424295][ T5027]  ? pvclock_gtod_unregister_notifier+0x50/0x50
[   92.430706][ T5027]  crc_itu_t+0x21c/0x2a0
[   92.434969][ T5027]  udf_sync_fs+0x1d2/0x380
[   92.439482][ T5027]  ? udf_put_super+0x160/0x160
[   92.444257][ T5027]  ? dentry_kill+0xbb/0x290
[   92.448760][ T5027]  ? get_nr_dirty_inodes+0x1c7/0x210
[   92.454147][ T5027]  sync_filesystem+0xec/0x220
[   92.458833][ T5027]  generic_shutdown_super+0x72/0x2c0
[   92.464171][ T5027]  kill_block_super+0x41/0x70
[   92.468985][ T5027]  deactivate_locked_super+0xa4/0x110
[   92.474677][ T5027]  cleanup_mnt+0x426/0x4c0
[   92.479124][ T5027]  ? _raw_spin_unlock_irq+0x23/0x50
[   92.484333][ T5027]  task_work_run+0x24a/0x300
[   92.489380][ T5027]  ? task_work_cancel+0x2b0/0x2b0
[   92.494429][ T5027]  ? exit_to_user_mode_loop+0x39/0x100
[   92.499908][ T5027]  exit_to_user_mode_loop+0xde/0x100
[   92.505388][ T5027]  exit_to_user_mode_prepare+0xb1/0x140
[   92.510955][ T5027]  syscall_exit_to_user_mode+0x64/0x280
[   92.516682][ T5027]  do_syscall_64+0x4d/0xc0
[   92.521117][ T5027]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   92.527557][ T5027] RIP: 0033:0x7f3fbb4e2847
[   92.532342][ T5027] Code: 09 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[   92.552048][ T5027] RSP: 002b:00007ffe38344718 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[   92.560486][ T5027] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f3fbb4e2847
[   92.568478][ T5027] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffe383447d0
[   92.576479][ T5027] RBP: 00007ffe383447d0 R08: 0000000000000000 R09: 0000000000000000
[   92.584593][ T5027] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffe38345840
[   92.593268][ T5027] R13: 00005555557dc6c0 R14: 431bde82d7b634db R15: 00007ffe38345860
[   92.601355][ T5027]  </TASK>
[   92.605833][ T5027] Kernel Offset: disabled
[   92.610582][ T5027] Rebooting in 86400 seconds..