Warning: Permanently added '10.128.1.160' (ED25519) to the list of known hosts.
executing program
[   74.455157][ T5058] loop0: detected capacity change from 0 to 2048
[   74.469915][ T5058] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   74.580749][ T5058] ==================================================================
[   74.588880][ T5058] BUG: KASAN: use-after-free in crc_itu_t+0x1d5/0x2a0
[   74.595705][ T5058] Read of size 1 at addr ffff8880771e5000 by task syz-executor264/5058
[   74.603967][ T5058] 
[   74.606913][ T5058] CPU: 0 PID: 5058 Comm: syz-executor264 Not tainted 6.7.0-rc1-syzkaller-00311-g05aa69b096a0 #0
[   74.617357][ T5058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   74.627531][ T5058] Call Trace:
[   74.630837][ T5058]  <TASK>
[   74.633791][ T5058]  dump_stack_lvl+0x1e7/0x2d0
[   74.638521][ T5058]  ? nf_tcp_handle_invalid+0x650/0x650
[   74.644072][ T5058]  ? panic+0x850/0x850
[   74.648146][ T5058]  ? _printk+0xd5/0x120
[   74.652306][ T5058]  print_report+0x163/0x540
[   74.656810][ T5058]  ? ktime_get_real_ts64+0x470/0x470
[   74.662098][ T5058]  ? __mutex_lock+0x2ee/0xd60
[   74.666774][ T5058]  ? time64_to_tm+0x331/0x4d0
[   74.671455][ T5058]  ? __virt_addr_valid+0x22f/0x2e0
[   74.676565][ T5058]  ? __phys_addr+0xba/0x170
[   74.681078][ T5058]  ? crc_itu_t+0x1d5/0x2a0
[   74.685507][ T5058]  kasan_report+0x142/0x170
[   74.690019][ T5058]  ? crc_itu_t+0x1d5/0x2a0
[   74.694453][ T5058]  crc_itu_t+0x1d5/0x2a0
[   74.698707][ T5058]  udf_sync_fs+0x1d2/0x380
[   74.703136][ T5058]  ? udf_put_super+0x160/0x160
[   74.707910][ T5058]  ? get_nr_dirty_inodes+0x1c7/0x210
[   74.713229][ T5058]  sync_filesystem+0xec/0x220
[   74.717911][ T5058]  generic_shutdown_super+0x72/0x2c0
[   74.723200][ T5058]  kill_block_super+0x44/0x90
[   74.727886][ T5058]  deactivate_locked_super+0xc1/0x130
[   74.733264][ T5058]  cleanup_mnt+0x426/0x4c0
[   74.737690][ T5058]  ? _raw_spin_unlock_irq+0x23/0x50
[   74.742905][ T5058]  task_work_run+0x24a/0x300
[   74.747507][ T5058]  ? kasan_quarantine_put+0xd8/0x230
[   74.752804][ T5058]  ? task_work_cancel+0x2b0/0x2b0
[   74.757844][ T5058]  ? kmem_cache_free+0x299/0x470
[   74.762792][ T5058]  ? do_exit+0xa2f/0x2750
[   74.767131][ T5058]  do_exit+0xa34/0x2750
[   74.771304][ T5058]  ? put_task_struct+0xb0/0xb0
[   74.776100][ T5058]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[   74.782088][ T5058]  ? print_irqtrace_events+0x220/0x220
[   74.787555][ T5058]  ? _raw_spin_unlock_irq+0x23/0x50
[   74.792767][ T5058]  ? lockdep_hardirqs_on+0x98/0x140
[   74.797976][ T5058]  do_group_exit+0x206/0x2c0
[   74.802583][ T5058]  __x64_sys_exit_group+0x3f/0x40
[   74.807616][ T5058]  do_syscall_64+0x45/0x110
[   74.812127][ T5058]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   74.818032][ T5058] RIP: 0033:0x7f4b94445c89
[   74.822453][ T5058] Code: Unable to access opcode bytes at 0x7f4b94445c5f.
[   74.829478][ T5058] RSP: 002b:00007fff2b4efdb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   74.837895][ T5058] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f4b94445c89
[   74.845866][ T5058] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   74.853836][ T5058] RBP: 00007f4b944e2390 R08: ffffffffffffffb8 R09: 000000000001f201
[   74.861810][ T5058] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4b944e2390
[   74.869797][ T5058] R13: 0000000000000000 R14: 00007f4b944e3100 R15: 00007f4b94413f40
[   74.877789][ T5058]  </TASK>
[   74.880825][ T5058] 
[   74.883155][ T5058] The buggy address belongs to the physical page:
[   74.889568][ T5058] page:ffffea0001dc7940 refcount:0 mapcount:-128 mapping:0000000000000000 index:0x1 pfn:0x771e5
[   74.899982][ T5058] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   74.907090][ T5058] page_type: 0xffffff7f(buddy)
[   74.911859][ T5058] raw: 00fff00000000000 ffff88813fffa8d0 ffffea0001df2f48 0000000000000000
[   74.920441][ T5058] raw: 0000000000000001 0000000000000000 00000000ffffff7f 0000000000000000
[   74.929034][ T5058] page dumped because: kasan: bad access detected
[   74.935461][ T5058] page_owner tracks the page as freed
[   74.940830][ T5058] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 5058, tgid 5058 (syz-executor264), ts 74550911930, free_ts 74553561485
[   74.958828][ T5058]  post_alloc_hook+0x1e6/0x210
[   74.963601][ T5058]  get_page_from_freelist+0x33ea/0x3570
[   74.969151][ T5058]  __alloc_pages+0x255/0x680
[   74.973746][ T5058]  alloc_pages_mpol+0x3de/0x640
[   74.978598][ T5058]  vma_alloc_folio+0xf3/0x3f0
[   74.983309][ T5058]  do_wp_page+0x125e/0x4d40
[   74.987816][ T5058]  handle_mm_fault+0x1b1c/0x6680
[   74.992758][ T5058]  exc_page_fault+0x456/0x870
[   74.997442][ T5058]  asm_exc_page_fault+0x26/0x30
[   75.002301][ T5058] page last free stack trace:
[   75.006967][ T5058]  free_unref_page_prepare+0x931/0xa60
[   75.012428][ T5058]  free_unref_page_list+0x5a0/0x840
[   75.017628][ T5058]  release_pages+0x2117/0x2400
[   75.022398][ T5058]  tlb_flush_mmu+0x34c/0x4e0
[   75.026990][ T5058]  tlb_finish_mmu+0xd4/0x1f0
[   75.031582][ T5058]  exit_mmap+0x4d3/0xc60
[   75.035836][ T5058]  __mmput+0x115/0x3c0
[   75.039906][ T5058]  exit_mm+0x21f/0x300
[   75.043986][ T5058]  do_exit+0x9b7/0x2750
[   75.048150][ T5058]  do_group_exit+0x206/0x2c0
[   75.052749][ T5058]  __x64_sys_exit_group+0x3f/0x40
[   75.057886][ T5058]  do_syscall_64+0x45/0x110
[   75.062419][ T5058]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   75.068344][ T5058] 
[   75.070693][ T5058] Memory state around the buggy address:
[   75.076321][ T5058]  ffff8880771e4f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   75.084384][ T5058]  ffff8880771e4f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   75.092445][ T5058] >ffff8880771e5000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.100503][ T5058]                    ^
[   75.104568][ T5058]  ffff8880771e5080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.112626][ T5058]  ffff8880771e5100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   75.120698][ T5058] ==================================================================
[   75.129318][ T5058] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   75.136535][ T5058] CPU: 0 PID: 5058 Comm: syz-executor264 Not tainted 6.7.0-rc1-syzkaller-00311-g05aa69b096a0 #0
[   75.146966][ T5058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   75.157041][ T5058] Call Trace:
[   75.160329][ T5058]  <TASK>
[   75.163261][ T5058]  dump_stack_lvl+0x1e7/0x2d0
[   75.167959][ T5058]  ? nf_tcp_handle_invalid+0x650/0x650
[   75.173427][ T5058]  ? panic+0x850/0x850
[   75.177505][ T5058]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[   75.183517][ T5058]  ? vscnprintf+0x5d/0x80
[   75.187863][ T5058]  panic+0x349/0x850
[   75.191781][ T5058]  ? check_panic_on_warn+0x21/0xa0
[   75.196910][ T5058]  ? __memcpy_flushcache+0x2b0/0x2b0
[   75.202226][ T5058]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   75.208225][ T5058]  ? _raw_spin_unlock+0x40/0x40
[   75.213089][ T5058]  check_panic_on_warn+0x82/0xa0
[   75.218215][ T5058]  ? crc_itu_t+0x1d5/0x2a0
[   75.222639][ T5058]  end_report+0x6e/0x140
[   75.226973][ T5058]  kasan_report+0x153/0x170
[   75.231484][ T5058]  ? crc_itu_t+0x1d5/0x2a0
[   75.235915][ T5058]  crc_itu_t+0x1d5/0x2a0
[   75.240171][ T5058]  udf_sync_fs+0x1d2/0x380
[   75.244599][ T5058]  ? udf_put_super+0x160/0x160
[   75.249377][ T5058]  ? get_nr_dirty_inodes+0x1c7/0x210
[   75.254685][ T5058]  sync_filesystem+0xec/0x220
[   75.259384][ T5058]  generic_shutdown_super+0x72/0x2c0
[   75.264675][ T5058]  kill_block_super+0x44/0x90
[   75.269373][ T5058]  deactivate_locked_super+0xc1/0x130
[   75.274762][ T5058]  cleanup_mnt+0x426/0x4c0
[   75.279187][ T5058]  ? _raw_spin_unlock_irq+0x23/0x50
[   75.284398][ T5058]  task_work_run+0x24a/0x300
[   75.288999][ T5058]  ? kasan_quarantine_put+0xd8/0x230
[   75.294296][ T5058]  ? task_work_cancel+0x2b0/0x2b0
[   75.299336][ T5058]  ? kmem_cache_free+0x299/0x470
[   75.304283][ T5058]  ? do_exit+0xa2f/0x2750
[   75.308633][ T5058]  do_exit+0xa34/0x2750
[   75.312804][ T5058]  ? put_task_struct+0xb0/0xb0
[   75.317582][ T5058]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[   75.323574][ T5058]  ? print_irqtrace_events+0x220/0x220
[   75.329046][ T5058]  ? _raw_spin_unlock_irq+0x23/0x50
[   75.334256][ T5058]  ? lockdep_hardirqs_on+0x98/0x140
[   75.339477][ T5058]  do_group_exit+0x206/0x2c0
[   75.344078][ T5058]  __x64_sys_exit_group+0x3f/0x40
[   75.349131][ T5058]  do_syscall_64+0x45/0x110
[   75.353641][ T5058]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   75.359546][ T5058] RIP: 0033:0x7f4b94445c89
[   75.363961][ T5058] Code: Unable to access opcode bytes at 0x7f4b94445c5f.
[   75.370977][ T5058] RSP: 002b:00007fff2b4efdb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   75.379397][ T5058] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f4b94445c89
[   75.387371][ T5058] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   75.395343][ T5058] RBP: 00007f4b944e2390 R08: ffffffffffffffb8 R09: 000000000001f201
[   75.403318][ T5058] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4b944e2390
[   75.411312][ T5058] R13: 0000000000000000 R14: 00007f4b944e3100 R15: 00007f4b94413f40
[   75.419293][ T5058]  </TASK>
[   75.422601][ T5058] Kernel Offset: disabled
[   75.426919][ T5058] Rebooting in 86400 seconds..