Warning: Permanently added '10.128.15.198' (ED25519) to the list of known hosts.
executing program
[   74.717941][ T5032] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5032 'syz-executor314'
[   74.753525][ T5032] loop0: detected capacity change from 0 to 4096
[   74.777227][ T5032] ntfs: volume version 3.1.
[   74.784491][ T5032] ==================================================================
[   74.792588][ T5032] BUG: KASAN: use-after-free in ntfs_lookup_inode_by_name+0x2ecc/0x2f50
[   74.800953][ T5032] Read of size 8 at addr ffff888073d2955a by task syz-executor314/5032
[   74.809210][ T5032] 
[   74.811544][ T5032] CPU: 0 PID: 5032 Comm: syz-executor314 Not tainted 6.5.0-rc4-next-20230731-syzkaller #0
[   74.821449][ T5032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[   74.831512][ T5032] Call Trace:
[   74.834800][ T5032]  <TASK>
[   74.837751][ T5032]  dump_stack_lvl+0xd9/0x1b0
[   74.842373][ T5032]  print_report+0xc4/0x620
[   74.846822][ T5032]  ? __virt_addr_valid+0x5e/0x2d0
[   74.851870][ T5032]  ? __phys_addr+0xc6/0x140
[   74.856404][ T5032]  kasan_report+0xda/0x110
[   74.860869][ T5032]  ? ntfs_lookup_inode_by_name+0x2ecc/0x2f50
[   74.866876][ T5032]  ? ntfs_lookup_inode_by_name+0x2ecc/0x2f50
[   74.872885][ T5032]  ntfs_lookup_inode_by_name+0x2ecc/0x2f50
[   74.878720][ T5032]  ? do_raw_spin_unlock+0x173/0x230
[   74.883954][ T5032]  ? down_write+0x14f/0x200
[   74.888504][ T5032]  ? rcu_is_watching+0x12/0xb0
[   74.893287][ T5032]  ntfs_fill_super+0x4621/0x9100
[   74.898263][ T5032]  ? parse_options+0x1db0/0x1db0
[   74.903228][ T5032]  ? preempt_count_sub+0x150/0x150
[   74.908373][ T5032]  ? do_raw_spin_lock+0x12e/0x2b0
[   74.913431][ T5032]  ? down_write_killable_nested+0x250/0x250
[   74.919367][ T5032]  ? sb_set_blocksize+0xf6/0x120
[   74.924329][ T5032]  ? setup_bdev_super+0x385/0x770
[   74.929379][ T5032]  ? parse_options+0x1db0/0x1db0
[   74.934341][ T5032]  mount_bdev+0x1f3/0x350
[   74.938694][ T5032]  ? sget+0x610/0x610
[   74.942785][ T5032]  ? vfs_parse_fs_string+0xfb/0x150
[   74.948013][ T5032]  ? apparmor_capable+0x1da/0x4e0
[   74.953078][ T5032]  ? ntfs_rl_punch_nolock+0x15d0/0x15d0
[   74.958649][ T5032]  legacy_get_tree+0x109/0x220
[   74.963631][ T5032]  vfs_get_tree+0x88/0x350
[   74.969377][ T5032]  path_mount+0x1492/0x1ed0
[   74.973901][ T5032]  ? kmem_cache_free+0xf0/0x490
[   74.978776][ T5032]  ? finish_automount+0xa50/0xa50
[   74.983834][ T5032]  ? putname+0x101/0x140
[   74.988105][ T5032]  __x64_sys_mount+0x293/0x310
[   74.992897][ T5032]  ? copy_mnt_ns+0xb60/0xb60
[   74.997530][ T5032]  ? rcu_is_watching+0x12/0xb0
[   75.002311][ T5032]  ? trace_irq_enable.constprop.0+0xd0/0x100
[   75.008310][ T5032]  do_syscall_64+0x38/0xb0
[   75.012751][ T5032]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   75.018670][ T5032] RIP: 0033:0x7f176afcc1ea
[   75.023093][ T5032] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   75.042719][ T5032] RSP: 002b:00007fffd83d4988 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   75.051148][ T5032] RAX: ffffffffffffffda RBX: 00007fffd83d49a0 RCX: 00007f176afcc1ea
[   75.059135][ T5032] RDX: 000000002001ec80 RSI: 000000002001ecc0 RDI: 00007fffd83d49a0
[   75.067118][ T5032] RBP: 0000000000000004 R08: 00007fffd83d49e0 R09: 000000000001ec63
[   75.075102][ T5032] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[   75.083090][ T5032] R13: 00007fffd83d49e0 R14: 0000000000000003 R15: 0000000000200000
[   75.091087][ T5032]  </TASK>
[   75.094114][ T5032] 
[   75.096458][ T5032] The buggy address belongs to the physical page:
[   75.102872][ T5032] page:ffffea0001cf4a40 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x73d29
[   75.113031][ T5032] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   75.120151][ T5032] page_type: 0xffffffff()
[   75.124488][ T5032] raw: 00fff00000000000 ffffea0001cf53c8 ffffea0001cf4b08 0000000000000000
[   75.133171][ T5032] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   75.141753][ T5032] page dumped because: kasan: bad access detected
[   75.148166][ T5032] page_owner tracks the page as freed
[   75.153531][ T5032] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 5028, tgid 5028 (sftp-server), ts 69035432549, free_ts 69050268116
[   75.172126][ T5032]  post_alloc_hook+0x2d2/0x350
[   75.176921][ T5032]  get_page_from_freelist+0x10d7/0x31b0
[   75.182583][ T5032]  __alloc_pages+0x1d0/0x4a0
[   75.187209][ T5032]  __folio_alloc+0x16/0x40
[   75.191657][ T5032]  vma_alloc_folio+0x156/0x890
[   75.196445][ T5032]  __handle_mm_fault+0x2385/0x4030
[   75.201573][ T5032]  handle_mm_fault+0x47a/0xa00
[   75.206452][ T5032]  do_user_addr_fault+0x2e7/0xfe0
[   75.211502][ T5032]  exc_page_fault+0x5c/0xd0
[   75.216040][ T5032]  asm_exc_page_fault+0x26/0x30
[   75.220917][ T5032] page last free stack trace:
[   75.225597][ T5032]  free_unref_page_prepare+0x508/0xb90
[   75.231088][ T5032]  free_unref_page_list+0xe6/0xb30
[   75.236254][ T5032]  release_pages+0x32a/0x14e0
[   75.240963][ T5032]  tlb_batch_pages_flush+0x9a/0x190
[   75.246183][ T5032]  tlb_finish_mmu+0x14b/0x6f0
[   75.250901][ T5032]  exit_mmap+0x38b/0xa60
[   75.255165][ T5032]  __mmput+0x12a/0x4d0
[   75.259252][ T5032]  mmput+0x62/0x70
[   75.262982][ T5032]  do_exit+0x9b4/0x2a20
[   75.267190][ T5032]  do_group_exit+0xd4/0x2a0
[   75.271739][ T5032]  __x64_sys_exit_group+0x3e/0x50
[   75.276806][ T5032]  do_syscall_64+0x38/0xb0
[   75.281262][ T5032]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   75.287191][ T5032] 
[   75.289527][ T5032] Memory state around the buggy address:
[   75.295163][ T5032]  ffff888073d29400: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.303236][ T5032]  ffff888073d29480: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.311308][ T5032] >ffff888073d29500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.319373][ T5032]                                                     ^
[   75.326312][ T5032]  ffff888073d29580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.334383][ T5032]  ffff888073d29600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.342481][ T5032] ==================================================================
[   75.355104][ T5032] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   75.362333][ T5032] CPU: 0 PID: 5032 Comm: syz-executor314 Not tainted 6.5.0-rc4-next-20230731-syzkaller #0
[   75.372232][ T5032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[   75.382286][ T5032] Call Trace:
[   75.385564][ T5032]  <TASK>
[   75.388497][ T5032]  dump_stack_lvl+0xd9/0x1b0
[   75.393106][ T5032]  panic+0x6a4/0x750
[   75.397012][ T5032]  ? panic_smp_self_stop+0xa0/0xa0
[   75.402141][ T5032]  ? preempt_schedule_thunk+0x1a/0x30
[   75.407553][ T5032]  ? preempt_schedule_common+0x45/0xc0
[   75.413045][ T5032]  check_panic_on_warn+0xab/0xb0
[   75.418014][ T5032]  end_report+0x108/0x150
[   75.422399][ T5032]  kasan_report+0xea/0x110
[   75.426839][ T5032]  ? ntfs_lookup_inode_by_name+0x2ecc/0x2f50
[   75.432854][ T5032]  ? ntfs_lookup_inode_by_name+0x2ecc/0x2f50
[   75.438861][ T5032]  ntfs_lookup_inode_by_name+0x2ecc/0x2f50
[   75.444703][ T5032]  ? do_raw_spin_unlock+0x173/0x230
[   75.450016][ T5032]  ? down_write+0x14f/0x200
[   75.454551][ T5032]  ? rcu_is_watching+0x12/0xb0
[   75.459343][ T5032]  ntfs_fill_super+0x4621/0x9100
[   75.464327][ T5032]  ? parse_options+0x1db0/0x1db0
[   75.469293][ T5032]  ? preempt_count_sub+0x150/0x150
[   75.474436][ T5032]  ? do_raw_spin_lock+0x12e/0x2b0
[   75.479498][ T5032]  ? down_write_killable_nested+0x250/0x250
[   75.485428][ T5032]  ? sb_set_blocksize+0xf6/0x120
[   75.490387][ T5032]  ? setup_bdev_super+0x385/0x770
[   75.495434][ T5032]  ? parse_options+0x1db0/0x1db0
[   75.500391][ T5032]  mount_bdev+0x1f3/0x350
[   75.504756][ T5032]  ? sget+0x610/0x610
[   75.508748][ T5032]  ? vfs_parse_fs_string+0xfb/0x150
[   75.513961][ T5032]  ? apparmor_capable+0x1da/0x4e0
[   75.519000][ T5032]  ? ntfs_rl_punch_nolock+0x15d0/0x15d0
[   75.524579][ T5032]  legacy_get_tree+0x109/0x220
[   75.529372][ T5032]  vfs_get_tree+0x88/0x350
[   75.533802][ T5032]  path_mount+0x1492/0x1ed0
[   75.538319][ T5032]  ? kmem_cache_free+0xf0/0x490
[   75.543188][ T5032]  ? finish_automount+0xa50/0xa50
[   75.548231][ T5032]  ? putname+0x101/0x140
[   75.552510][ T5032]  __x64_sys_mount+0x293/0x310
[   75.557296][ T5032]  ? copy_mnt_ns+0xb60/0xb60
[   75.561909][ T5032]  ? rcu_is_watching+0x12/0xb0
[   75.566682][ T5032]  ? trace_irq_enable.constprop.0+0xd0/0x100
[   75.572698][ T5032]  do_syscall_64+0x38/0xb0
[   75.577138][ T5032]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   75.583056][ T5032] RIP: 0033:0x7f176afcc1ea
[   75.587487][ T5032] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   75.607199][ T5032] RSP: 002b:00007fffd83d4988 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   75.615626][ T5032] RAX: ffffffffffffffda RBX: 00007fffd83d49a0 RCX: 00007f176afcc1ea
[   75.623607][ T5032] RDX: 000000002001ec80 RSI: 000000002001ecc0 RDI: 00007fffd83d49a0
[   75.631593][ T5032] RBP: 0000000000000004 R08: 00007fffd83d49e0 R09: 000000000001ec63
[   75.639664][ T5032] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[   75.647646][ T5032] R13: 00007fffd83d49e0 R14: 0000000000000003 R15: 0000000000200000
[   75.655639][ T5032]  </TASK>
[   75.658771][ T5032] Kernel Offset: disabled
[   75.663094][ T5032] Rebooting in 86400 seconds..