Warning: Permanently added '10.128.1.15' (ED25519) to the list of known hosts.
executing program
executing program
[ 65.176953][ T29] audit: type=1800 audit(1735094245.352:2): pid=5822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor329" name="discovery_nqn" dev="configfs" ino=4078 res=0 errno=0
[ 65.200303][ T5823] ==================================================================
[ 65.208372][ T5823] BUG: KASAN: slab-out-of-bounds in string+0x398/0x3d0
[ 65.215255][ T5823] Read of size 1 at addr ffff8880263c0b25 by task syz-executor329/5823
[ 65.223500][ T5823]
[ 65.225823][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor329 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[ 65.236915][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 65.246970][ T5823] Call Trace:
[ 65.250242][ T5823]
[ 65.253165][ T5823] dump_stack_lvl+0x116/0x1f0
[ 65.257855][ T5823] print_report+0xc3/0x620
[ 65.262281][ T5823] ? __virt_addr_valid+0x5e/0x590
[ 65.267307][ T5823] ? __phys_addr+0xc6/0x150
[ 65.271812][ T5823] kasan_report+0xd9/0x110
[ 65.276228][ T5823] ? string+0x398/0x3d0
[ 65.280381][ T5823] ? string+0x398/0x3d0
[ 65.284537][ T5823] string+0x398/0x3d0
[ 65.288516][ T5823] ? __pfx_string+0x10/0x10
[ 65.293014][ T5823] ? __pfx___lock_acquire+0x10/0x10
[ 65.298207][ T5823] ? __mutex_trylock_common+0xea/0x250
[ 65.303662][ T5823] vsnprintf+0xc67/0x1870
[ 65.307993][ T5823] ? __pfx_vsnprintf+0x10/0x10
[ 65.312757][ T5823] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 65.318388][ T5823] ? rwsem_read_trylock+0x12d/0x250
[ 65.323611][ T5823] snprintf+0xc8/0x100
[ 65.327714][ T5823] ? __pfx_snprintf+0x10/0x10
[ 65.332388][ T5823] ? down_read+0xc9/0x330
[ 65.336721][ T5823] ? __pfx_down_read+0x10/0x10
[ 65.341487][ T5823] ? __pfx_nvmet_root_discovery_nqn_show+0x10/0x10
[ 65.348000][ T5823] nvmet_root_discovery_nqn_show+0x69/0x90
[ 65.353809][ T5823] configfs_read_iter+0x40d/0x690
[ 65.358832][ T5823] ? ima_file_check+0xc6/0x110
[ 65.363594][ T5823] ? security_file_post_open+0x8e/0x210
[ 65.369139][ T5823] __kernel_read+0x3f1/0xb50
[ 65.373729][ T5823] ? __pfx___kernel_read+0x10/0x10
[ 65.378847][ T5823] integrity_kernel_read+0x7f/0xb0
[ 65.383961][ T5823] ? __pfx_integrity_kernel_read+0x10/0x10
[ 65.389761][ T5823] ? kasan_save_track+0x14/0x30
[ 65.394612][ T5823] ima_calc_file_hash_tfm+0x2c9/0x3e0
[ 65.399985][ T5823] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10
[ 65.405895][ T5823] ? hlock_class+0x4e/0x130
[ 65.410396][ T5823] ? __lock_acquire+0x15a9/0x3c40
[ 65.415416][ T5823] ? ima_alloc_tfm+0x21d/0x2d0
[ 65.420177][ T5823] ? generic_fillattr+0x6bf/0x940
[ 65.425205][ T5823] ima_calc_file_hash+0x1ba/0x490
[ 65.430231][ T5823] ima_collect_measurement+0x8a7/0xa10
[ 65.435689][ T5823] ? security_file_post_open+0x8e/0x210
[ 65.441235][ T5823] ? __pfx_ima_collect_measurement+0x10/0x10
[ 65.447225][ T5823] ? __mutex_lock+0x1cc/0xa60
[ 65.451903][ T5823] ? is_bad_inode+0xd/0x40
[ 65.456319][ T5823] ? vfs_getxattr_alloc+0xf1/0x340
[ 65.461430][ T5823] ? ima_get_hash_algo+0x27d/0x410
[ 65.466537][ T5823] ? __pfx_ima_get_hash_algo+0x10/0x10
[ 65.471992][ T5823] ? process_measurement+0x1271/0x2370
[ 65.477447][ T5823] process_measurement+0x1271/0x2370
[ 65.482731][ T5823] ? do_syscall_64+0xcd/0x250
[ 65.487409][ T5823] ? __pfx_process_measurement+0x10/0x10
[ 65.493040][ T5823] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 65.498668][ T5823] ? rwsem_read_trylock+0x12d/0x250
[ 65.503867][ T5823] ? __pfx_rwsem_read_trylock+0x10/0x10
[ 65.509419][ T5823] ? __configfs_open_file+0x79a/0x9c0
[ 65.514788][ T5823] ? inode_to_bdi+0x9e/0x160
[ 65.519382][ T5823] ima_file_check+0xc6/0x110
[ 65.523972][ T5823] ? __pfx_ima_file_check+0x10/0x10
[ 65.529173][ T5823] security_file_post_open+0x8e/0x210
[ 65.534543][ T5823] path_openat+0x1419/0x2d60
[ 65.539137][ T5823] ? __pfx_path_openat+0x10/0x10
[ 65.544071][ T5823] ? __pfx___lock_acquire+0x10/0x10
[ 65.549264][ T5823] ? lock_acquire.part.0+0x11b/0x380
[ 65.554542][ T5823] ? find_held_lock+0x2d/0x110
[ 65.559308][ T5823] do_filp_open+0x20c/0x470
[ 65.563812][ T5823] ? __pfx_do_filp_open+0x10/0x10
[ 65.568864][ T5823] ? find_held_lock+0x2d/0x110
[ 65.573633][ T5823] ? alloc_fd+0x41f/0x760
[ 65.577962][ T5823] do_sys_openat2+0x17a/0x1e0
[ 65.582647][ T5823] ? __pfx_do_sys_openat2+0x10/0x10
[ 65.587848][ T5823] ? do_user_addr_fault+0xe50/0x13f0
[ 65.593135][ T5823] ? __pfx_lock_release+0x10/0x10
[ 65.598152][ T5823] __x64_sys_openat+0x175/0x210
[ 65.603184][ T5823] ? __pfx___x64_sys_openat+0x10/0x10
[ 65.608559][ T5823] ? do_user_addr_fault+0x83d/0x13f0
[ 65.613842][ T5823] do_syscall_64+0xcd/0x250
[ 65.618353][ T5823] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 65.624258][ T5823] RIP: 0033:0x7f733fa0ca79
[ 65.628677][ T5823] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 65.648285][ T5823] RSP: 002b:00007ffc342ba758 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 65.656694][ T5823] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f733fa0ca79
[ 65.664662][ T5823] RDX: 0000000000189002 RSI: 0000000020000100 RDI: ffffffffffffff9c
[ 65.672630][ T5823] RBP: 000000000000fe6f R08: 0000000000000006 R09: 0000000000000006
[ 65.680599][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc342ba76c
[ 65.688564][ T5823] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001
[ 65.696535][ T5823]
[ 65.699545][ T5823]
[ 65.701868][ T5823] The buggy address belongs to the object at ffff8880263c0b00
[ 65.701868][ T5823] which belongs to the cache kmalloc-64 of size 64
[ 65.715738][ T5823] The buggy address is located 0 bytes to the right of
[ 65.715738][ T5823] allocated 37-byte region [ffff8880263c0b00, ffff8880263c0b25)
[ 65.730130][ T5823]
[ 65.732443][ T5823] The buggy address belongs to the physical page:
[ 65.738850][ T5823] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880263c0300 pfn:0x263c0
[ 65.748911][ T5823] flags: 0xfff00000000200(workingset|node=0|zone=1|lastcpupid=0x7ff)
[ 65.756967][ T5823] page_type: f5(slab)
[ 65.760943][ T5823] raw: 00fff00000000200 ffff88801ac418c0 ffffea0000ba8cd0 ffffea0000a178d0
[ 65.769518][ T5823] raw: ffff8880263c0300 000000000020001f 00000001f5000000 0000000000000000
[ 65.778088][ T5823] page dumped because: kasan: bad access detected
[ 65.784493][ T5823] page_owner tracks the page as allocated
[ 65.790193][ T5823] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 35, tgid 35 (kworker/u8:2), ts 8598107284, free_ts 8552526219
[ 65.808947][ T5823] post_alloc_hook+0x2d1/0x350
[ 65.813712][ T5823] get_page_from_freelist+0xfce/0x2f80
[ 65.819170][ T5823] __alloc_pages_noprof+0x223/0x25b0
[ 65.824457][ T5823] alloc_pages_mpol_noprof+0x2c9/0x610
[ 65.829918][ T5823] new_slab+0x2c9/0x410
[ 65.834068][ T5823] ___slab_alloc+0xce2/0x1650
[ 65.838740][ T5823] __slab_alloc.constprop.0+0x56/0xb0
[ 65.844106][ T5823] __kmalloc_cache_noprof+0xf6/0x420
[ 65.849402][ T5823] percpu_ref_init+0xd9/0x400
[ 65.854092][ T5823] blk_alloc_queue+0x578/0x710
[ 65.858872][ T5823] blk_mq_alloc_queue+0x1a6/0x2e0
[ 65.863895][ T5823] scsi_alloc_sdev+0x890/0xd80
[ 65.868660][ T5823] scsi_probe_and_add_lun+0x789/0xda0
[ 65.874024][ T5823] __scsi_scan_target+0x1ea/0x580
[ 65.879044][ T5823] scsi_scan_channel+0x149/0x1e0
[ 65.883985][ T5823] scsi_scan_host_selected+0x302/0x400
[ 65.889439][ T5823] page last free pid 57 tgid 57 stack trace:
[ 65.895404][ T5823] free_unref_page+0x661/0x1080
[ 65.900264][ T5823] vfree+0x174/0x950
[ 65.904163][ T5823] delayed_vfree_work+0x56/0x70
[ 65.909018][ T5823] process_one_work+0x958/0x1b30
[ 65.913956][ T5823] worker_thread+0x6c8/0xf00
[ 65.918552][ T5823] kthread+0x2c1/0x3a0
[ 65.922646][ T5823] ret_from_fork+0x45/0x80
[ 65.927058][ T5823] ret_from_fork_asm+0x1a/0x30
[ 65.931831][ T5823]
[ 65.934148][ T5823] Memory state around the buggy address:
[ 65.939776][ T5823] ffff8880263c0a00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 65.947922][ T5823] ffff8880263c0a80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 65.956848][ T5823] >ffff8880263c0b00: 00 00 00 00 05 fc fc fc fc fc fc fc fc fc fc fc
[ 65.964898][ T5823] ^
[ 65.969996][ T5823] ffff8880263c0b80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 65.978062][ T5823] ffff8880263c0c00: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc
[ 65.986128][ T5823] ==================================================================
[ 65.994982][ T5823] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 66.002202][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor329 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[ 66.013319][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 66.023358][ T5823] Call Trace:
[ 66.026622][ T5823]
[ 66.029540][ T5823] dump_stack_lvl+0x3d/0x1f0
[ 66.034124][ T5823] panic+0x71d/0x800
[ 66.038010][ T5823] ? __pfx_panic+0x10/0x10
[ 66.042416][ T5823] ? irqentry_exit+0x3b/0x90
[ 66.046993][ T5823] ? lockdep_hardirqs_on+0x7c/0x110
[ 66.052181][ T5823] ? preempt_schedule_thunk+0x1a/0x30
[ 66.057537][ T5823] ? preempt_schedule_common+0x44/0xc0
[ 66.062986][ T5823] ? check_panic_on_warn+0x1f/0xb0
[ 66.068090][ T5823] check_panic_on_warn+0xab/0xb0
[ 66.073021][ T5823] end_report+0x117/0x180
[ 66.077342][ T5823] kasan_report+0xe9/0x110
[ 66.081748][ T5823] ? string+0x398/0x3d0
[ 66.085898][ T5823] ? string+0x398/0x3d0
[ 66.090040][ T5823] string+0x398/0x3d0
[ 66.094005][ T5823] ? __pfx_string+0x10/0x10
[ 66.098498][ T5823] ? __pfx___lock_acquire+0x10/0x10
[ 66.103678][ T5823] ? __mutex_trylock_common+0xea/0x250
[ 66.109121][ T5823] vsnprintf+0xc67/0x1870
[ 66.113456][ T5823] ? __pfx_vsnprintf+0x10/0x10
[ 66.118204][ T5823] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 66.123820][ T5823] ? rwsem_read_trylock+0x12d/0x250
[ 66.129012][ T5823] snprintf+0xc8/0x100
[ 66.133065][ T5823] ? __pfx_snprintf+0x10/0x10
[ 66.137727][ T5823] ? down_read+0xc9/0x330
[ 66.142048][ T5823] ? __pfx_down_read+0x10/0x10
[ 66.146808][ T5823] ? __pfx_nvmet_root_discovery_nqn_show+0x10/0x10
[ 66.153299][ T5823] nvmet_root_discovery_nqn_show+0x69/0x90
[ 66.159104][ T5823] configfs_read_iter+0x40d/0x690
[ 66.164116][ T5823] ? ima_file_check+0xc6/0x110
[ 66.168869][ T5823] ? security_file_post_open+0x8e/0x210
[ 66.174488][ T5823] __kernel_read+0x3f1/0xb50
[ 66.179065][ T5823] ? __pfx___kernel_read+0x10/0x10
[ 66.184167][ T5823] integrity_kernel_read+0x7f/0xb0
[ 66.189266][ T5823] ? __pfx_integrity_kernel_read+0x10/0x10
[ 66.195055][ T5823] ? kasan_save_track+0x14/0x30
[ 66.199895][ T5823] ima_calc_file_hash_tfm+0x2c9/0x3e0
[ 66.205259][ T5823] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10
[ 66.211147][ T5823] ? hlock_class+0x4e/0x130
[ 66.215638][ T5823] ? __lock_acquire+0x15a9/0x3c40
[ 66.220650][ T5823] ? ima_alloc_tfm+0x21d/0x2d0
[ 66.225403][ T5823] ? generic_fillattr+0x6bf/0x940
[ 66.230418][ T5823] ima_calc_file_hash+0x1ba/0x490
[ 66.235431][ T5823] ima_collect_measurement+0x8a7/0xa10
[ 66.240875][ T5823] ? security_file_post_open+0x8e/0x210
[ 66.246408][ T5823] ? __pfx_ima_collect_measurement+0x10/0x10
[ 66.252384][ T5823] ? __mutex_lock+0x1cc/0xa60
[ 66.257050][ T5823] ? is_bad_inode+0xd/0x40
[ 66.261453][ T5823] ? vfs_getxattr_alloc+0xf1/0x340
[ 66.266554][ T5823] ? ima_get_hash_algo+0x27d/0x410
[ 66.271653][ T5823] ? __pfx_ima_get_hash_algo+0x10/0x10
[ 66.277097][ T5823] ? process_measurement+0x1271/0x2370
[ 66.282548][ T5823] process_measurement+0x1271/0x2370
[ 66.287824][ T5823] ? do_syscall_64+0xcd/0x250
[ 66.292489][ T5823] ? __pfx_process_measurement+0x10/0x10
[ 66.298123][ T5823] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 66.303765][ T5823] ? rwsem_read_trylock+0x12d/0x250
[ 66.308949][ T5823] ? __pfx_rwsem_read_trylock+0x10/0x10
[ 66.314487][ T5823] ? __configfs_open_file+0x79a/0x9c0
[ 66.319848][ T5823] ? inode_to_bdi+0x9e/0x160
[ 66.324427][ T5823] ima_file_check+0xc6/0x110
[ 66.329005][ T5823] ? __pfx_ima_file_check+0x10/0x10
[ 66.334192][ T5823] security_file_post_open+0x8e/0x210
[ 66.339590][ T5823] path_openat+0x1419/0x2d60
[ 66.344169][ T5823] ? __pfx_path_openat+0x10/0x10
[ 66.349098][ T5823] ? __pfx___lock_acquire+0x10/0x10
[ 66.354278][ T5823] ? lock_acquire.part.0+0x11b/0x380
[ 66.359553][ T5823] ? find_held_lock+0x2d/0x110
[ 66.364311][ T5823] do_filp_open+0x20c/0x470
[ 66.368804][ T5823] ? __pfx_do_filp_open+0x10/0x10
[ 66.373820][ T5823] ? find_held_lock+0x2d/0x110
[ 66.378575][ T5823] ? alloc_fd+0x41f/0x760
[ 66.382896][ T5823] do_sys_openat2+0x17a/0x1e0
[ 66.387565][ T5823] ? __pfx_do_sys_openat2+0x10/0x10
[ 66.392753][ T5823] ? do_user_addr_fault+0xe50/0x13f0
[ 66.398030][ T5823] ? __pfx_lock_release+0x10/0x10
[ 66.403039][ T5823] __x64_sys_openat+0x175/0x210
[ 66.407879][ T5823] ? __pfx___x64_sys_openat+0x10/0x10
[ 66.413244][ T5823] ? do_user_addr_fault+0x83d/0x13f0
[ 66.418516][ T5823] do_syscall_64+0xcd/0x250
[ 66.423020][ T5823] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 66.428907][ T5823] RIP: 0033:0x7f733fa0ca79
[ 66.433306][ T5823] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 66.452901][ T5823] RSP: 002b:00007ffc342ba758 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 66.461297][ T5823] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f733fa0ca79
[ 66.469252][ T5823] RDX: 0000000000189002 RSI: 0000000020000100 RDI: ffffffffffffff9c
[ 66.477206][ T5823] RBP: 000000000000fe6f R08: 0000000000000006 R09: 0000000000000006
[ 66.485158][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc342ba76c
[ 66.493116][ T5823] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001
[ 66.501076][ T5823]
[ 66.504324][ T5823] Kernel Offset: disabled
[ 66.508644][ T5823] Rebooting in 86400 seconds..