Warning: Permanently added '10.128.1.174' (ECDSA) to the list of known hosts.
executing program
[   54.191788][ T3498] loop0: detected capacity change from 0 to 2048
[   54.207495][ T3498] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   54.304551][ T3497] ==================================================================
[   54.312739][ T3497] BUG: KASAN: use-after-free in udf_close_lvid+0x6a4/0x9a0
[   54.319956][ T3497] Write of size 1 at addr ffff88805ec0cb78 by task syz-executor302/3497
[   54.328272][ T3497] 
[   54.330595][ T3497] CPU: 0 PID: 3497 Comm: syz-executor302 Not tainted 5.15.115-syzkaller #0
[   54.339183][ T3497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   54.349237][ T3497] Call Trace:
[   54.352525][ T3497]  <TASK>
[   54.355452][ T3497]  dump_stack_lvl+0x1e3/0x2cb
[   54.360131][ T3497]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   54.365756][ T3497]  ? _printk+0xd1/0x111
[   54.369905][ T3497]  ? __wake_up_klogd+0xcc/0x100
[   54.374749][ T3497]  ? panic+0x84d/0x84d
[   54.378808][ T3497]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   54.384265][ T3497]  print_address_description+0x63/0x3b0
[   54.389898][ T3497]  ? udf_close_lvid+0x6a4/0x9a0
[   54.394751][ T3497]  kasan_report+0x16b/0x1c0
[   54.399276][ T3497]  ? udf_close_lvid+0x6a4/0x9a0
[   54.404125][ T3497]  udf_close_lvid+0x6a4/0x9a0
[   54.408805][ T3497]  ? hook_inode_free_security+0xa0/0xa0
[   54.414348][ T3497]  ? udf_open_lvid+0x5a0/0x5a0
[   54.419106][ T3497]  ? iput+0x367/0x8b0
[   54.423081][ T3497]  ? clear_inode+0x150/0x150
[   54.427672][ T3497]  udf_put_super+0xc9/0x160
[   54.432168][ T3497]  ? udf_free_in_core_inode+0x20/0x20
[   54.437538][ T3497]  generic_shutdown_super+0x136/0x2c0
[   54.442913][ T3497]  kill_block_super+0x7a/0xe0
[   54.447587][ T3497]  deactivate_locked_super+0xa0/0x110
[   54.452953][ T3497]  cleanup_mnt+0x44e/0x500
[   54.457363][ T3497]  ? lockdep_hardirqs_on+0x94/0x130
[   54.462558][ T3497]  task_work_run+0x129/0x1a0
[   54.467148][ T3497]  exit_to_user_mode_loop+0x106/0x130
[   54.472514][ T3497]  exit_to_user_mode_prepare+0xb1/0x140
[   54.478051][ T3497]  syscall_exit_to_user_mode+0x5d/0x250
[   54.483594][ T3497]  do_syscall_64+0x49/0xb0
[   54.488008][ T3497]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   54.493908][ T3497] RIP: 0033:0x7fb706248057
[   54.498320][ T3497] Code: 09 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   54.518070][ T3497] RSP: 002b:00007ffd83b01ad8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[   54.526489][ T3497] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fb706248057
[   54.534459][ T3497] RDX: 00007ffd83b01b99 RSI: 000000000000000a RDI: 00007ffd83b01b90
[   54.542512][ T3497] RBP: 00007ffd83b01b90 R08: 00000000ffffffff R09: 00007ffd83b01970
[   54.550491][ T3497] R10: 00005555574d466b R11: 0000000000000206 R12: 00007ffd83b02c00
[   54.558456][ T3497] R13: 00005555574d45f0 R14: 00007ffd83b01b00 R15: 0000000000000001
[   54.566437][ T3497]  </TASK>
[   54.569469][ T3497] 
[   54.571787][ T3497] The buggy address belongs to the page:
[   54.577411][ T3497] page:ffffea00017b0300 refcount:0 mapcount:0 mapping:0000000000000000 index:0x100 pfn:0x5ec0c
[   54.587726][ T3497] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   54.594834][ T3497] raw: 00fff00000000000 dead000000000100 dead000000000122 0000000000000000
[   54.603407][ T3497] raw: 0000000000000100 0000000000000000 00000000ffffffff 0000000000000000
[   54.611974][ T3497] page dumped because: kasan: bad access detected
[   54.618386][ T3497] page_owner tracks the page as freed
[   54.623740][ T3497] page last allocated via order 0, migratetype Movable, gfp_mask 0x8(__GFP_MOVABLE), pid 1, ts 14758142628, free_ts 15717328576
[   54.636922][ T3497]  split_map_pages+0x246/0x510
[   54.641685][ T3497]  isolate_freepages_range+0x47c/0x4e0
[   54.647133][ T3497]  alloc_contig_range+0xc2b/0xf90
[   54.652147][ T3497]  alloc_contig_pages+0x3ea/0x4e0
[   54.657161][ T3497]  debug_vm_pgtable_alloc_huge_page+0xb9/0x108
[   54.663305][ T3497]  init_args+0xa3e/0xdb5
[   54.667624][ T3497]  debug_vm_pgtable+0xaa/0x462
[   54.672380][ T3497]  do_one_initcall+0x22b/0x7a0
[   54.677138][ T3497]  do_initcall_level+0x157/0x207
[   54.682063][ T3497]  do_initcalls+0x49/0x86
[   54.686384][ T3497]  kernel_init_freeable+0x43c/0x5c5
[   54.691573][ T3497]  kernel_init+0x19/0x290
[   54.695896][ T3497]  ret_from_fork+0x1f/0x30
[   54.700303][ T3497] page last free stack trace:
[   54.704959][ T3497]  free_unref_page_prepare+0xc34/0xcf0
[   54.710605][ T3497]  free_unref_page+0x95/0x2d0
[   54.715304][ T3497]  free_contig_range+0x95/0xf0
[   54.720072][ T3497]  destroy_args+0xfe/0x97f
[   54.724491][ T3497]  debug_vm_pgtable+0x40d/0x462
[   54.729335][ T3497]  do_one_initcall+0x22b/0x7a0
[   54.734097][ T3497]  do_initcall_level+0x157/0x207
[   54.739034][ T3497]  do_initcalls+0x49/0x86
[   54.743353][ T3497]  kernel_init_freeable+0x43c/0x5c5
[   54.748542][ T3497]  kernel_init+0x19/0x290
[   54.752869][ T3497]  ret_from_fork+0x1f/0x30
[   54.757276][ T3497] 
[   54.759588][ T3497] Memory state around the buggy address:
[   54.765233][ T3497]  ffff88805ec0ca00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.773384][ T3497]  ffff88805ec0ca80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.781434][ T3497] >ffff88805ec0cb00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.789569][ T3497]                                                                 ^
[   54.797705][ T3497]  ffff88805ec0cb80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.805769][ T3497]  ffff88805ec0cc00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   54.813816][ T3497] ==================================================================
[   54.821864][ T3497] Disabling lock debugging due to kernel taint
[   54.828547][ T3497] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   54.835842][ T3497] CPU: 0 PID: 3497 Comm: syz-executor302 Tainted: G    B             5.15.115-syzkaller #0
[   54.845808][ T3497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   54.855855][ T3497] Call Trace:
[   54.859128][ T3497]  <TASK>
[   54.862048][ T3497]  dump_stack_lvl+0x1e3/0x2cb
[   54.866724][ T3497]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   54.872355][ T3497]  ? panic+0x84d/0x84d
[   54.876416][ T3497]  ? rcu_is_watching+0x11/0xa0
[   54.881176][ T3497]  ? preempt_schedule_common+0xa6/0xd0
[   54.886632][ T3497]  panic+0x318/0x84d
[   54.890519][ T3497]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[   54.896676][ T3497]  ? check_panic_on_warn+0x1d/0xa0
[   54.901784][ T3497]  ? fb_is_primary_device+0xcc/0xcc
[   54.906975][ T3497]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   54.912956][ T3497]  ? _raw_spin_unlock+0x40/0x40
[   54.917797][ T3497]  check_panic_on_warn+0x7e/0xa0
[   54.922730][ T3497]  ? udf_close_lvid+0x6a4/0x9a0
[   54.927588][ T3497]  end_report+0x6d/0xf0
[   54.931732][ T3497]  kasan_report+0x18e/0x1c0
[   54.936234][ T3497]  ? udf_close_lvid+0x6a4/0x9a0
[   54.941075][ T3497]  udf_close_lvid+0x6a4/0x9a0
[   54.945745][ T3497]  ? hook_inode_free_security+0xa0/0xa0
[   54.951282][ T3497]  ? udf_open_lvid+0x5a0/0x5a0
[   54.956039][ T3497]  ? iput+0x367/0x8b0
[   54.960010][ T3497]  ? clear_inode+0x150/0x150
[   54.964593][ T3497]  udf_put_super+0xc9/0x160
[   54.969098][ T3497]  ? udf_free_in_core_inode+0x20/0x20
[   54.974465][ T3497]  generic_shutdown_super+0x136/0x2c0
[   54.979833][ T3497]  kill_block_super+0x7a/0xe0
[   54.984506][ T3497]  deactivate_locked_super+0xa0/0x110
[   54.989871][ T3497]  cleanup_mnt+0x44e/0x500
[   54.994278][ T3497]  ? lockdep_hardirqs_on+0x94/0x130
[   54.999473][ T3497]  task_work_run+0x129/0x1a0
[   55.004059][ T3497]  exit_to_user_mode_loop+0x106/0x130
[   55.009423][ T3497]  exit_to_user_mode_prepare+0xb1/0x140
[   55.015046][ T3497]  syscall_exit_to_user_mode+0x5d/0x250
[   55.020594][ T3497]  do_syscall_64+0x49/0xb0
[   55.025021][ T3497]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   55.030914][ T3497] RIP: 0033:0x7fb706248057
[   55.035321][ T3497] Code: 09 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   55.054917][ T3497] RSP: 002b:00007ffd83b01ad8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[   55.063511][ T3497] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fb706248057
[   55.071475][ T3497] RDX: 00007ffd83b01b99 RSI: 000000000000000a RDI: 00007ffd83b01b90
[   55.079440][ T3497] RBP: 00007ffd83b01b90 R08: 00000000ffffffff R09: 00007ffd83b01970
[   55.087411][ T3497] R10: 00005555574d466b R11: 0000000000000206 R12: 00007ffd83b02c00
[   55.095376][ T3497] R13: 00005555574d45f0 R14: 00007ffd83b01b00 R15: 0000000000000001
[   55.103347][ T3497]  </TASK>
[   55.106662][ T3497] Kernel Offset: disabled
[   55.110996][ T3497] Rebooting in 86400 seconds..