[   97.367004][    T8] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.100' (ED25519) to the list of known hosts.
executing program
[  101.561997][ T5044] syz-executor327[5044]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[  101.592104][ T5044] loop0: detected capacity change from 0 to 2048
[  101.605396][ T5044] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  101.630724][ T5044] syz-executor327[5044]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[  101.706330][ T5043] ==================================================================
[  101.714463][ T5043] BUG: KASAN: use-after-free in crc_itu_t+0xd7/0xe0
[  101.721101][ T5043] Read of size 1 at addr ffff8880765a7000 by task syz-executor327/5043
[  101.729359][ T5043] 
[  101.731703][ T5043] CPU: 1 PID: 5043 Comm: syz-executor327 Not tainted 6.5.0-next-20230831-syzkaller #0
[  101.741355][ T5043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[  101.751431][ T5043] Call Trace:
[  101.754734][ T5043]  <TASK>
[  101.757676][ T5043]  dump_stack_lvl+0xd9/0x1b0
[  101.762314][ T5043]  print_report+0xc4/0x620
[  101.766765][ T5043]  ? __virt_addr_valid+0x5e/0x2d0
[  101.771816][ T5043]  ? __phys_addr+0xc6/0x140
[  101.776372][ T5043]  kasan_report+0xda/0x110
[  101.780808][ T5043]  ? crc_itu_t+0xd7/0xe0
[  101.785089][ T5043]  ? crc_itu_t+0xd7/0xe0
[  101.789374][ T5043]  crc_itu_t+0xd7/0xe0
[  101.793480][ T5043]  udf_finalize_lvid+0xf2/0x1f0
[  101.798384][ T5043]  ? udf_mount+0x40/0x40
[  101.802665][ T5043]  udf_sync_fs+0xea/0x150
[  101.807031][ T5043]  ? udf_finalize_lvid+0x1f0/0x1f0
[  101.812195][ T5043]  sync_filesystem+0x109/0x280
[  101.816993][ T5043]  generic_shutdown_super+0x7e/0x3c0
[  101.822315][ T5043]  kill_block_super+0x3b/0x70
[  101.827033][ T5043]  deactivate_locked_super+0x9a/0x170
[  101.832442][ T5043]  deactivate_super+0xde/0x100
[  101.837251][ T5043]  cleanup_mnt+0x222/0x3d0
[  101.841700][ T5043]  task_work_run+0x14d/0x240
[  101.846328][ T5043]  ? task_work_cancel+0x30/0x30
[  101.851220][ T5043]  ? __x64_sys_umount+0x128/0x1a0
[  101.856284][ T5043]  exit_to_user_mode_prepare+0x210/0x240
[  101.861943][ T5043]  syscall_exit_to_user_mode+0x1d/0x60
[  101.867521][ T5043]  do_syscall_64+0x44/0xb0
[  101.871960][ T5043]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  101.877879][ T5043] RIP: 0033:0x7f27113ac607
[  101.882322][ T5043] Code: 09 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[  101.901976][ T5043] RSP: 002b:00007ffe166a35e8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[  101.910410][ T5043] RAX: 0000000000000000 RBX: 0000000000018c92 RCX: 00007f27113ac607
[  101.918416][ T5043] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffe166a36a0
[  101.926422][ T5043] RBP: 00007ffe166a36a0 R08: 0000000000000000 R09: 0000000000000000
[  101.934411][ T5043] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffe166a4710
[  101.942400][ T5043] R13: 00005555566ec6c0 R14: 431bde82d7b634db R15: 00007ffe166a4730
[  101.950415][ T5043]  </TASK>
[  101.953464][ T5043] 
[  101.955808][ T5043] The buggy address belongs to the physical page:
[  101.962272][ T5043] page:ffffea0001d969c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x765a7
[  101.972448][ T5043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  101.979570][ T5043] page_type: 0xffffffff()
[  101.983917][ T5043] raw: 00fff00000000000 ffffea00004abd48 ffffea0001dadb08 0000000000000000
[  101.992536][ T5043] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[  102.001173][ T5043] page dumped because: kasan: bad access detected
[  102.007601][ T5043] page_owner tracks the page as freed
[  102.012974][ T5043] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 5037, tgid 5037 (sh), ts 95671057152, free_ts 95869175611
[  102.031174][ T5043]  post_alloc_hook+0x2cf/0x340
[  102.035999][ T5043]  get_page_from_freelist+0xf17/0x2e50
[  102.041504][ T5043]  __alloc_pages+0x1d0/0x4a0
[  102.046124][ T5043]  __folio_alloc+0x16/0x40
[  102.050597][ T5043]  vma_alloc_folio+0x156/0x890
[  102.055395][ T5043]  __handle_mm_fault+0xe6c/0x3e20
[  102.060444][ T5043]  handle_mm_fault+0x47a/0xa00
[  102.065229][ T5043]  __get_user_pages+0x4b3/0x1410
[  102.070199][ T5043]  get_user_pages_remote+0x23a/0x9d0
[  102.075544][ T5043]  get_arg_page+0x13f/0x710
[  102.080085][ T5043]  copy_string_kernel+0x1a2/0x240
[  102.085138][ T5043]  do_execveat_common.isra.0+0x426/0x740
[  102.091058][ T5043]  __x64_sys_execve+0x8c/0xb0
[  102.095757][ T5043]  do_syscall_64+0x38/0xb0
[  102.100192][ T5043]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  102.106109][ T5043] page last free stack trace:
[  102.110789][ T5043]  free_unref_page_prepare+0x476/0xa40
[  102.116283][ T5043]  free_unref_page_list+0xe6/0xb30
[  102.121415][ T5043]  release_pages+0x32a/0x14e0
[  102.126117][ T5043]  tlb_batch_pages_flush+0x9a/0x190
[  102.131348][ T5043]  tlb_finish_mmu+0x14b/0x6f0
[  102.136064][ T5043]  exit_mmap+0x38b/0xa60
[  102.140352][ T5043]  __mmput+0x12a/0x4d0
[  102.144454][ T5043]  mmput+0x62/0x70
[  102.148207][ T5043]  do_exit+0x9b4/0x2a20
[  102.152405][ T5043]  do_group_exit+0xd4/0x2a0
[  102.156949][ T5043]  __x64_sys_exit_group+0x3e/0x50
[  102.162012][ T5043]  do_syscall_64+0x38/0xb0
[  102.166446][ T5043]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  102.172392][ T5043] 
[  102.174721][ T5043] Memory state around the buggy address:
[  102.180385][ T5043]  ffff8880765a6f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  102.188482][ T5043]  ffff8880765a6f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  102.196557][ T5043] >ffff8880765a7000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  102.204640][ T5043]                    ^
[  102.208718][ T5043]  ffff8880765a7080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  102.216801][ T5043]  ffff8880765a7100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  102.224878][ T5043] ==================================================================
[  102.248271][ T5043] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  102.255534][ T5043] CPU: 1 PID: 5043 Comm: syz-executor327 Not tainted 6.5.0-next-20230831-syzkaller #0
[  102.265126][ T5043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[  102.275246][ T5043] Call Trace:
[  102.278534][ T5043]  <TASK>
[  102.281477][ T5043]  dump_stack_lvl+0xd9/0x1b0
[  102.286133][ T5043]  panic+0x6a6/0x750
[  102.290044][ T5043]  ? panic_smp_self_stop+0xa0/0xa0
[  102.295171][ T5043]  ? trace_irq_enable.constprop.0+0xd0/0x100
[  102.301197][ T5043]  ? preempt_schedule_thunk+0x1a/0x30
[  102.306606][ T5043]  ? preempt_schedule_common+0x45/0xc0
[  102.312202][ T5043]  check_panic_on_warn+0xab/0xb0
[  102.317164][ T5043]  end_report+0x108/0x150
[  102.321523][ T5043]  kasan_report+0xea/0x110
[  102.325948][ T5043]  ? crc_itu_t+0xd7/0xe0
[  102.330235][ T5043]  ? crc_itu_t+0xd7/0xe0
[  102.334507][ T5043]  crc_itu_t+0xd7/0xe0
[  102.338603][ T5043]  udf_finalize_lvid+0xf2/0x1f0
[  102.343477][ T5043]  ? udf_mount+0x40/0x40
[  102.347745][ T5043]  udf_sync_fs+0xea/0x150
[  102.352124][ T5043]  ? udf_finalize_lvid+0x1f0/0x1f0
[  102.357275][ T5043]  sync_filesystem+0x109/0x280
[  102.362058][ T5043]  generic_shutdown_super+0x7e/0x3c0
[  102.367369][ T5043]  kill_block_super+0x3b/0x70
[  102.372067][ T5043]  deactivate_locked_super+0x9a/0x170
[  102.377464][ T5043]  deactivate_super+0xde/0x100
[  102.382251][ T5043]  cleanup_mnt+0x222/0x3d0
[  102.386688][ T5043]  task_work_run+0x14d/0x240
[  102.391304][ T5043]  ? task_work_cancel+0x30/0x30
[  102.396178][ T5043]  ? __x64_sys_umount+0x128/0x1a0
[  102.401227][ T5043]  exit_to_user_mode_prepare+0x210/0x240
[  102.406878][ T5043]  syscall_exit_to_user_mode+0x1d/0x60
[  102.412380][ T5043]  do_syscall_64+0x44/0xb0
[  102.416809][ T5043]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  102.422714][ T5043] RIP: 0033:0x7f27113ac607
[  102.427399][ T5043] Code: 09 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[  102.447022][ T5043] RSP: 002b:00007ffe166a35e8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[  102.455445][ T5043] RAX: 0000000000000000 RBX: 0000000000018c92 RCX: 00007f27113ac607
[  102.463428][ T5043] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffe166a36a0
[  102.471405][ T5043] RBP: 00007ffe166a36a0 R08: 0000000000000000 R09: 0000000000000000
[  102.479391][ T5043] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffe166a4710
[  102.487374][ T5043] R13: 00005555566ec6c0 R14: 431bde82d7b634db R15: 00007ffe166a4730
[  102.495360][ T5043]  </TASK>
[  102.498658][ T5043] Kernel Offset: disabled
[  102.502993][ T5043] Rebooting in 86400 seconds..