Warning: Permanently added '[localhost]:32690' (ED25519) to the list of known hosts.
executing program
[ 71.194973][ T5093] loop0: detected capacity change from 0 to 128
[ 71.221395][ T5093] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 71.281252][ T5093] loop0: detected capacity change from 128 to 0
[ 71.287813][ T5093] syz-executor211: attempt to access beyond end of device
[ 71.287813][ T5093] loop0: rw=0, sector=116, nr_sectors = 1 limit=0
[ 71.297462][ T5093] syz-executor211: attempt to access beyond end of device
[ 71.297462][ T5093] loop0: rw=0, sector=117, nr_sectors = 1 limit=0
[ 71.303427][ T5093] syz-executor211: attempt to access beyond end of device
[ 71.303427][ T5093] loop0: rw=0, sector=117, nr_sectors = 1 limit=0
[ 71.308194][ T5093] ==================================================================
[ 71.310833][ T5093] BUG: KASAN: slab-out-of-bounds in udf_get_filelongad+0x167/0x1b0
[ 71.313528][ T5093] Read of size 4 at addr ffff88803d54b330 by task syz-executor211/5093
[ 71.317510][ T5093]
[ 71.318439][ T5093] CPU: 0 UID: 0 PID: 5093 Comm: syz-executor211 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[ 71.322501][ T5093] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 71.326138][ T5093] Call Trace:
[ 71.327278][ T5093]
[ 71.328284][ T5093] dump_stack_lvl+0x241/0x360
[ 71.329959][ T5093] ? __pfx_dump_stack_lvl+0x10/0x10
[ 71.331731][ T5093] ? __pfx__printk+0x10/0x10
[ 71.333149][ T5093] ? _printk+0xd5/0x120
[ 71.334536][ T5093] ? __virt_addr_valid+0x183/0x530
[ 71.336255][ T5093] ? __virt_addr_valid+0x183/0x530
[ 71.338026][ T5093] print_report+0x169/0x550
[ 71.339740][ T5093] ? __virt_addr_valid+0x183/0x530
[ 71.341654][ T5093] ? __virt_addr_valid+0x183/0x530
[ 71.343560][ T5093] ? __virt_addr_valid+0x45f/0x530
[ 71.345491][ T5093] ? __phys_addr+0xba/0x170
[ 71.347201][ T5093] ? udf_get_filelongad+0x167/0x1b0
[ 71.349162][ T5093] kasan_report+0x143/0x180
[ 71.350809][ T5093] ? udf_get_filelongad+0x167/0x1b0
[ 71.352598][ T5093] udf_get_filelongad+0x167/0x1b0
[ 71.354315][ T5093] udf_current_aext+0x435/0x9e0
[ 71.355966][ T5093] udf_next_aext+0x8c/0x4a0
[ 71.357551][ T5093] udf_setsize+0xa8a/0x1280
[ 71.359085][ T5093] ? __pfx_udf_setsize+0x10/0x10
[ 71.360750][ T5093] ? __pfx_down_write+0x10/0x10
[ 71.362431][ T5093] ? current_time+0x203/0x2b0
[ 71.364051][ T5093] udf_setattr+0x3c7/0x5d0
[ 71.365688][ T5093] ? __pfx_udf_setattr+0x10/0x10
[ 71.367541][ T5093] notify_change+0xbca/0xe90
[ 71.369310][ T5093] do_ftruncate+0x46b/0x590
[ 71.371034][ T5093] ? __pfx_do_ftruncate+0x10/0x10
[ 71.372943][ T5093] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 71.375229][ T5093] __x64_sys_ftruncate+0x95/0xf0
[ 71.377083][ T5093] do_syscall_64+0xf3/0x230
[ 71.378788][ T5093] ? clear_bhb_loop+0x35/0x90
[ 71.380560][ T5093] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 71.383163][ T5093] RIP: 0033:0x7fa3e63e1f59
[ 71.385198][ T5093] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 71.392478][ T5093] RSP: 002b:00007ffd42e0ff08 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[ 71.395646][ T5093] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3e63e1f59
[ 71.398542][ T5093] RDX: ffffffffffffffb8 RSI: 0000008002007ffb RDI: 0000000000000005
[ 71.401140][ T5093] RBP: 00007fa3e64565f0 R08: 00005555836844c0 R09: 00005555836844c0
[ 71.403785][ T5093] R10: 00005555836844c0 R11: 0000000000000246 R12: 00007ffd42e0ff30
[ 71.406724][ T5093] R13: 00007ffd42e10158 R14: 431bde82d7b634db R15: 00007fa3e642b03b
[ 71.409752][ T5093]
[ 71.410911][ T5093]
[ 71.411891][ T5093] Allocated by task 4810:
[ 71.413596][ T5093] kasan_save_track+0x3f/0x80
[ 71.415334][ T5093] __kasan_kmalloc+0x98/0xb0
[ 71.417120][ T5093] __kmalloc_cache_noprof+0x19c/0x2c0
[ 71.419191][ T5093] device_add+0xc1/0xbf0
[ 71.420817][ T5093] netdev_register_kobject+0x17e/0x320
[ 71.422920][ T5093] register_netdevice+0x12c5/0x1b00
[ 71.424896][ T5093] bpq_device_event+0x49b/0x8b0
[ 71.426690][ T5093] notifier_call_chain+0x19f/0x3e0
[ 71.428262][ T5093] __dev_notify_flags+0x207/0x400
[ 71.430031][ T5093] dev_change_flags+0xf0/0x1a0
[ 71.431756][ T5093] devinet_ioctl+0xab8/0x1bc0
[ 71.433581][ T5093] inet_ioctl+0x3d7/0x4f0
[ 71.435202][ T5093] sock_do_ioctl+0x158/0x460
[ 71.436978][ T5093] sock_ioctl+0x629/0x8e0
[ 71.438638][ T5093] __se_sys_ioctl+0xfc/0x170
[ 71.440388][ T5093] do_syscall_64+0xf3/0x230
[ 71.442070][ T5093] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 71.444315][ T5093]
[ 71.445229][ T5093] The buggy address belongs to the object at ffff88803d54b000
[ 71.445229][ T5093] which belongs to the cache kmalloc-512 of size 512
[ 71.450406][ T5093] The buggy address is located 544 bytes to the right of
[ 71.450406][ T5093] allocated 272-byte region [ffff88803d54b000, ffff88803d54b110)
[ 71.455765][ T5093]
[ 71.456716][ T5093] The buggy address belongs to the physical page:
[ 71.459115][ T5093] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3d54a
[ 71.462423][ T5093] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 71.465572][ T5093] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[ 71.468325][ T5093] page_type: 0xfdffffff(slab)
[ 71.470070][ T5093] raw: 04fff00000000040 ffff88801ac41c80 dead000000000100 dead000000000122
[ 71.473004][ T5093] raw: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000
[ 71.475951][ T5093] head: 04fff00000000040 ffff88801ac41c80 dead000000000100 dead000000000122
[ 71.478863][ T5093] head: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000
[ 71.481804][ T5093] head: 04fff00000000001 ffffea0000f55281 ffffffffffffffff 0000000000000000
[ 71.484948][ T5093] head: ffff888000000002 0000000000000000 00000000ffffffff 0000000000000000
[ 71.488267][ T5093] page dumped because: kasan: bad access detected
[ 71.490651][ T5093] page_owner tracks the page as allocated
[ 71.492589][ T5093] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4889, tgid 4889 (sshd), ts 50384966056, free_ts 50170551881
[ 71.499967][ T5093] post_alloc_hook+0x1f3/0x230
[ 71.501748][ T5093] get_page_from_freelist+0x2e4c/0x2f10
[ 71.503868][ T5093] __alloc_pages_noprof+0x256/0x6c0
[ 71.505804][ T5093] alloc_slab_page+0x5f/0x120
[ 71.507673][ T5093] allocate_slab+0x5a/0x2f0
[ 71.509477][ T5093] ___slab_alloc+0xcd1/0x14b0
[ 71.511373][ T5093] __slab_alloc+0x58/0xa0
[ 71.513082][ T5093] __kmalloc_noprof+0x25a/0x400
[ 71.514904][ T5093] tomoyo_init_log+0x1b3e/0x2050
[ 71.516835][ T5093] tomoyo_supervisor+0x38a/0x11f0
[ 71.518826][ T5093] tomoyo_path_permission+0x243/0x360
[ 71.520999][ T5093] tomoyo_path_perm+0x480/0x740
[ 71.523094][ T5093] security_inode_getattr+0xd8/0x130
[ 71.525290][ T5093] vfs_getattr+0x45/0x430
[ 71.527207][ T5093] vfs_fstatat+0xe4/0x190
[ 71.529151][ T5093] __x64_sys_newfstatat+0x11d/0x1a0
[ 71.531584][ T5093] page last free pid 4601 tgid 4601 stack trace:
[ 71.534451][ T5093] free_unref_page+0xd22/0xea0
[ 71.536303][ T5093] __slab_free+0x31b/0x3d0
[ 71.537929][ T5093] qlist_free_all+0x9e/0x140
[ 71.539673][ T5093] kasan_quarantine_reduce+0x14f/0x170
[ 71.541590][ T5093] __kasan_slab_alloc+0x23/0x80
[ 71.543177][ T5093] kmem_cache_alloc_noprof+0x135/0x2a0
[ 71.545065][ T5093] getname_flags+0xb7/0x540
[ 71.546637][ T5093] do_sys_openat2+0xd2/0x1d0
[ 71.548176][ T5093] __x64_sys_openat+0x247/0x2a0
[ 71.549863][ T5093] do_syscall_64+0xf3/0x230
[ 71.551428][ T5093] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 71.553465][ T5093]
[ 71.554270][ T5093] Memory state around the buggy address:
[ 71.556144][ T5093] ffff88803d54b200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.558853][ T5093] ffff88803d54b280: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.561811][ T5093] >ffff88803d54b300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.564817][ T5093] ^
[ 71.566882][ T5093] ffff88803d54b380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.569971][ T5093] ffff88803d54b400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 71.573061][ T5093] ==================================================================
[ 71.582109][ T5093] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 71.584902][ T5093] CPU: 0 UID: 0 PID: 5093 Comm: syz-executor211 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[ 71.588941][ T5093] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 71.592797][ T5093] Call Trace:
[ 71.594061][ T5093]
[ 71.595073][ T5093] dump_stack_lvl+0x241/0x360
[ 71.596872][ T5093] ? __pfx_dump_stack_lvl+0x10/0x10
[ 71.598780][ T5093] ? __pfx__printk+0x10/0x10
[ 71.600586][ T5093] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 71.603057][ T5093] ? vscnprintf+0x5d/0x90
[ 71.604787][ T5093] panic+0x349/0x860
[ 71.606328][ T5093] ? check_panic_on_warn+0x21/0xb0
[ 71.608274][ T5093] ? __pfx_panic+0x10/0x10
[ 71.609992][ T5093] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 71.612241][ T5093] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 71.614623][ T5093] check_panic_on_warn+0x86/0xb0
[ 71.616410][ T5093] ? udf_get_filelongad+0x167/0x1b0
[ 71.618728][ T5093] end_report+0x77/0x160
[ 71.620462][ T5093] kasan_report+0x154/0x180
[ 71.622170][ T5093] ? udf_get_filelongad+0x167/0x1b0
[ 71.624235][ T5093] udf_get_filelongad+0x167/0x1b0
[ 71.626112][ T5093] udf_current_aext+0x435/0x9e0
[ 71.628110][ T5093] udf_next_aext+0x8c/0x4a0
[ 71.629898][ T5093] udf_setsize+0xa8a/0x1280
[ 71.631639][ T5093] ? __pfx_udf_setsize+0x10/0x10
[ 71.633513][ T5093] ? __pfx_down_write+0x10/0x10
[ 71.635548][ T5093] ? current_time+0x203/0x2b0
[ 71.637379][ T5093] udf_setattr+0x3c7/0x5d0
[ 71.639068][ T5093] ? __pfx_udf_setattr+0x10/0x10
[ 71.640845][ T5093] notify_change+0xbca/0xe90
[ 71.642683][ T5093] do_ftruncate+0x46b/0x590
[ 71.644375][ T5093] ? __pfx_do_ftruncate+0x10/0x10
[ 71.646261][ T5093] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 71.648579][ T5093] __x64_sys_ftruncate+0x95/0xf0
[ 71.650563][ T5093] do_syscall_64+0xf3/0x230
[ 71.652213][ T5093] ? clear_bhb_loop+0x35/0x90
[ 71.653962][ T5093] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 71.656237][ T5093] RIP: 0033:0x7fa3e63e1f59
[ 71.658109][ T5093] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 71.664895][ T5093] RSP: 002b:00007ffd42e0ff08 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[ 71.667891][ T5093] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3e63e1f59
[ 71.670761][ T5093] RDX: ffffffffffffffb8 RSI: 0000008002007ffb RDI: 0000000000000005
[ 71.673664][ T5093] RBP: 00007fa3e64565f0 R08: 00005555836844c0 R09: 00005555836844c0
[ 71.676547][ T5093] R10: 00005555836844c0 R11: 0000000000000246 R12: 00007ffd42e0ff30
[ 71.679412][ T5093] R13: 00007ffd42e10158 R14: 431bde82d7b634db R15: 00007fa3e642b03b
[ 71.682270][ T5093]
[ 71.683607][ T5093] Kernel Offset: disabled
[ 71.685142][ T5093] Rebooting in 86400 seconds..
VM DIAGNOSIS:
00:39:17 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000074 RBX=ffffffff9a668f20 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc90002baf170
R8 =ffffffff85409ccb R9 =1ffff11003dba046 R10=dffffc0000000000 R11=ffffffff85409c80
R12=dffffc0000000000 R13=0000000000000074 R14=0000000000000074 R15=00000000000003f8
RIP=ffffffff85409cfe RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555583683380 ffffffff 00c00000
GS =0000 ffff88801fe00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020005680 CR3=0000000032484000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000010000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe415ba4d0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 72203a30706f6f6c 205d333930355420 5b5d333138373832 2e31372020205b00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7220303070656566 2057333330355420 5157333132373232 2431372020205100
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3154202020205b20 3132333135312e20 322020205b3e362d 002e676f6520204d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3120202020205120 2032203135312020 322020202034362d 0024646565202047
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 646f676f787f796b 6f672a4b47432a6f 7e6b6963667a7f4e 2a246e6f66686b79
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3b5e2a2a2a2a5157 3b38393b3f3b2439 382a2a2a51343c36 00246d65662a4b47
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000