Warning: Permanently added '10.128.10.63' (ED25519) to the list of known hosts.
executing program
[ 40.962494][ T5032] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 40.970500][ T5032] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 40.978351][ T5032] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 40.986511][ T5032] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 40.994347][ T5032] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 41.001750][ T5032] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 41.035574][ T5030] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5030 'syz-executor137'
[ 41.052462][ T5030] loop0: detected capacity change from 0 to 2048
[ 41.061796][ T5030] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 41.107667][ T5030] ==================================================================
[ 41.115860][ T5030] BUG: KASAN: use-after-free in crc_itu_t+0xd7/0xe0
[ 41.122576][ T5030] Read of size 1 at addr ffff888075007000 by task syz-executor137/5030
[ 41.130825][ T5030]
[ 41.133140][ T5030] CPU: 0 PID: 5030 Comm: syz-executor137 Not tainted 6.5.0-rc4-next-20230731-syzkaller #0
[ 41.143805][ T5030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[ 41.155244][ T5030] Call Trace:
[ 41.158690][ T5030]
[ 41.161613][ T5030] dump_stack_lvl+0xd9/0x1b0
[ 41.166387][ T5030] print_report+0xc4/0x620
[ 41.170825][ T5030] ? __virt_addr_valid+0x5e/0x2d0
[ 41.176145][ T5030] ? __phys_addr+0xc6/0x140
[ 41.180650][ T5030] kasan_report+0xda/0x110
[ 41.185246][ T5030] ? crc_itu_t+0xd7/0xe0
[ 41.189495][ T5030] ? crc_itu_t+0xd7/0xe0
[ 41.193841][ T5030] crc_itu_t+0xd7/0xe0
[ 41.198351][ T5030] udf_finalize_lvid+0xf2/0x1f0
[ 41.203204][ T5030] ? udf_mount+0x40/0x40
[ 41.207472][ T5030] ? find_rule+0x370/0x370
[ 41.212246][ T5030] udf_close_lvid+0x462/0x5c0
[ 41.217042][ T5030] udf_put_super+0x19c/0x200
[ 41.221665][ T5030] ? udf_close_lvid+0x5c0/0x5c0
[ 41.226540][ T5030] generic_shutdown_super+0x158/0x480
[ 41.231946][ T5030] kill_block_super+0x3b/0xc0
[ 41.236727][ T5030] deactivate_locked_super+0x9a/0x170
[ 41.242122][ T5030] deactivate_super+0xde/0x100
[ 41.246900][ T5030] cleanup_mnt+0x222/0x3d0
[ 41.251344][ T5030] task_work_run+0x14d/0x240
[ 41.256129][ T5030] ? task_work_cancel+0x30/0x30
[ 41.260991][ T5030] ? __put_net+0x61/0x70
[ 41.265284][ T5030] do_exit+0xa99/0x2a20
[ 41.269966][ T5030] ? do_group_exit+0x1c5/0x2a0
[ 41.274735][ T5030] ? reacquire_held_locks+0x4b0/0x4b0
[ 41.280116][ T5030] ? do_raw_spin_lock+0x12e/0x2b0
[ 41.285150][ T5030] ? mm_update_next_owner+0x850/0x850
[ 41.290542][ T5030] ? spin_bug+0x1d0/0x1d0
[ 41.294880][ T5030] ? rcu_is_watching+0x12/0xb0
[ 41.299670][ T5030] do_group_exit+0xd4/0x2a0
[ 41.304224][ T5030] __x64_sys_exit_group+0x3e/0x50
[ 41.309415][ T5030] do_syscall_64+0x38/0xb0
[ 41.313891][ T5030] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 41.319820][ T5030] RIP: 0033:0x7f1197f53489
[ 41.324266][ T5030] Code: Unable to access opcode bytes at 0x7f1197f5345f.
[ 41.331430][ T5030] RSP: 002b:00007ffe825aa958 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 41.339948][ T5030] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f1197f53489
[ 41.348015][ T5030] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[ 41.356095][ T5030] RBP: 00007f1197ffc390 R08: ffffffffffffffb0 R09: 0000000000000000
[ 41.364167][ T5030] R10: 0000000000000022 R11: 0000000000000246 R12: 00007f1197ffc390
[ 41.372260][ T5030] R13: 0000000000000000 R14: 00007f1197ffd100 R15: 00007f1197f1dfd0
[ 41.380598][ T5030]
[ 41.383614][ T5030]
[ 41.385931][ T5030] The buggy address belongs to the physical page:
[ 41.392332][ T5030] page:ffffea0001d401c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x75007
[ 41.402677][ T5030] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 41.409961][ T5030] page_type: 0xffffffff()
[ 41.414299][ T5030] raw: 00fff00000000000 ffffea0001d61208 ffffea0001cd1308 0000000000000000
[ 41.422982][ T5030] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 41.431556][ T5030] page dumped because: kasan: bad access detected
[ 41.437958][ T5030] page_owner tracks the page as freed
[ 41.443319][ T5030] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 4889, tgid 4889 (sshd), ts 34261659102, free_ts 34291460707
[ 41.461393][ T5030] post_alloc_hook+0x2d2/0x350
[ 41.466175][ T5030] get_page_from_freelist+0x10d7/0x31b0
[ 41.471734][ T5030] __alloc_pages+0x1d0/0x4a0
[ 41.476424][ T5030] __folio_alloc+0x16/0x40
[ 41.481206][ T5030] vma_alloc_folio+0x156/0x890
[ 41.485988][ T5030] __handle_mm_fault+0x2385/0x4030
[ 41.491108][ T5030] handle_mm_fault+0x47a/0xa00
[ 41.495874][ T5030] do_user_addr_fault+0x2e7/0xfe0
[ 41.500905][ T5030] exc_page_fault+0x5c/0xd0
[ 41.505407][ T5030] asm_exc_page_fault+0x26/0x30
[ 41.510255][ T5030] page last free stack trace:
[ 41.514918][ T5030] free_unref_page_prepare+0x508/0xb90
[ 41.520384][ T5030] free_unref_page_list+0xe6/0xb30
[ 41.525505][ T5030] release_pages+0x32a/0x14e0
[ 41.530373][ T5030] tlb_batch_pages_flush+0x9a/0x190
[ 41.535587][ T5030] tlb_finish_mmu+0x14b/0x6f0
[ 41.540273][ T5030] unmap_region.constprop.0+0x2e6/0x3b0
[ 41.545817][ T5030] do_vmi_align_munmap+0xde3/0x15f0
[ 41.551015][ T5030] do_vmi_munmap+0x20e/0x450
[ 41.555689][ T5030] __vm_munmap+0x144/0x390
[ 41.560110][ T5030] __x64_sys_munmap+0x62/0x80
[ 41.564872][ T5030] do_syscall_64+0x38/0xb0
[ 41.569398][ T5030] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 41.575338][ T5030]
[ 41.577659][ T5030] Memory state around the buggy address:
[ 41.583282][ T5030] ffff888075006f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 41.591426][ T5030] ffff888075006f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 41.599569][ T5030] >ffff888075007000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 41.607721][ T5030] ^
[ 41.611802][ T5030] ffff888075007080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 41.620059][ T5030] ffff888075007100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 41.628120][ T5030] ==================================================================
[ 41.637112][ T5030] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 41.644397][ T5030] CPU: 1 PID: 5030 Comm: syz-executor137 Not tainted 6.5.0-rc4-next-20230731-syzkaller #0
[ 41.654360][ T5030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[ 41.664406][ T5030] Call Trace:
[ 41.667671][ T5030]
[ 41.670622][ T5030] dump_stack_lvl+0xd9/0x1b0
[ 41.675312][ T5030] panic+0x6a4/0x750
[ 41.680271][ T5030] ? panic_smp_self_stop+0xa0/0xa0
[ 41.685397][ T5030] ? preempt_schedule_thunk+0x1a/0x30
[ 41.690814][ T5030] ? preempt_schedule_common+0x45/0xc0
[ 41.696458][ T5030] check_panic_on_warn+0xab/0xb0
[ 41.701476][ T5030] end_report+0x108/0x150
[ 41.705802][ T5030] kasan_report+0xea/0x110
[ 41.710791][ T5030] ? crc_itu_t+0xd7/0xe0
[ 41.715022][ T5030] ? crc_itu_t+0xd7/0xe0
[ 41.719261][ T5030] crc_itu_t+0xd7/0xe0
[ 41.723324][ T5030] udf_finalize_lvid+0xf2/0x1f0
[ 41.728162][ T5030] ? udf_mount+0x40/0x40
[ 41.732392][ T5030] ? find_rule+0x370/0x370
[ 41.736805][ T5030] udf_close_lvid+0x462/0x5c0
[ 41.741494][ T5030] udf_put_super+0x19c/0x200
[ 41.746101][ T5030] ? udf_close_lvid+0x5c0/0x5c0
[ 41.750944][ T5030] generic_shutdown_super+0x158/0x480
[ 41.756304][ T5030] kill_block_super+0x3b/0xc0
[ 41.761062][ T5030] deactivate_locked_super+0x9a/0x170
[ 41.766422][ T5030] deactivate_super+0xde/0x100
[ 41.771184][ T5030] cleanup_mnt+0x222/0x3d0
[ 41.775592][ T5030] task_work_run+0x14d/0x240
[ 41.780174][ T5030] ? task_work_cancel+0x30/0x30
[ 41.785014][ T5030] ? __put_net+0x61/0x70
[ 41.789249][ T5030] do_exit+0xa99/0x2a20
[ 41.793419][ T5030] ? do_group_exit+0x1c5/0x2a0
[ 41.798180][ T5030] ? reacquire_held_locks+0x4b0/0x4b0
[ 41.804244][ T5030] ? do_raw_spin_lock+0x12e/0x2b0
[ 41.809706][ T5030] ? mm_update_next_owner+0x850/0x850
[ 41.815077][ T5030] ? spin_bug+0x1d0/0x1d0
[ 41.819493][ T5030] ? rcu_is_watching+0x12/0xb0
[ 41.824244][ T5030] do_group_exit+0xd4/0x2a0
[ 41.828802][ T5030] __x64_sys_exit_group+0x3e/0x50
[ 41.833847][ T5030] do_syscall_64+0x38/0xb0
[ 41.838266][ T5030] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 41.844172][ T5030] RIP: 0033:0x7f1197f53489
[ 41.848585][ T5030] Code: Unable to access opcode bytes at 0x7f1197f5345f.
[ 41.855673][ T5030] RSP: 002b:00007ffe825aa958 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 41.864074][ T5030] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f1197f53489
[ 41.872041][ T5030] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[ 41.880359][ T5030] RBP: 00007f1197ffc390 R08: ffffffffffffffb0 R09: 0000000000000000
[ 41.893455][ T5030] R10: 0000000000000022 R11: 0000000000000246 R12: 00007f1197ffc390
[ 41.901415][ T5030] R13: 0000000000000000 R14: 00007f1197ffd100 R15: 00007f1197f1dfd0
[ 41.909570][ T5030]
[ 41.913125][ T5030] Kernel Offset: disabled
[ 41.918495][ T5030] Rebooting in 86400 seconds..