Warning: Permanently added '10.128.0.119' (ED25519) to the list of known hosts.
executing program
[ 54.821439][ T3500] loop0: detected capacity change from 0 to 2048
[ 54.898529][ T3500] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 55.008543][ T3500] ==================================================================
[ 55.018013][ T3500] BUG: KASAN: use-after-free in crc_itu_t+0x1d1/0x2a0
[ 55.024844][ T3500] Read of size 1 at addr ffff88806fd59000 by task syz-executor390/3500
[ 55.033062][ T3500]
[ 55.035387][ T3500] CPU: 0 PID: 3500 Comm: syz-executor390 Not tainted 5.15.158-syzkaller #0
[ 55.043958][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 55.053996][ T3500] Call Trace:
[ 55.057285][ T3500]
[ 55.060200][ T3500] dump_stack_lvl+0x1e3/0x2d0
[ 55.064861][ T3500] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 55.070472][ T3500] ? _printk+0xd1/0x120
[ 55.074611][ T3500] ? __wake_up_klogd+0xcc/0x100
[ 55.079442][ T3500] ? panic+0x860/0x860
[ 55.083489][ T3500] ? _raw_spin_lock_irqsave+0xdd/0x120
[ 55.088927][ T3500] print_address_description+0x63/0x3b0
[ 55.094448][ T3500] ? crc_itu_t+0x1d1/0x2a0
[ 55.098839][ T3500] kasan_report+0x16b/0x1c0
[ 55.103317][ T3500] ? crc_itu_t+0x1d1/0x2a0
[ 55.107709][ T3500] ? pvclock_gtod_unregister_notifier+0x50/0x50
[ 55.113929][ T3500] crc_itu_t+0x1d1/0x2a0
[ 55.118151][ T3500] udf_sync_fs+0x1ce/0x380
[ 55.122568][ T3500] ? udf_put_super+0x160/0x160
[ 55.127312][ T3500] ? get_nr_dirty_inodes+0x25f/0x2e0
[ 55.132576][ T3500] sync_filesystem+0xe8/0x220
[ 55.137248][ T3500] generic_shutdown_super+0x6e/0x2c0
[ 55.142522][ T3500] kill_block_super+0x7a/0xe0
[ 55.147176][ T3500] deactivate_locked_super+0xa0/0x110
[ 55.152534][ T3500] cleanup_mnt+0x44e/0x500
[ 55.156927][ T3500] ? lockdep_hardirqs_on+0x94/0x130
[ 55.162101][ T3500] task_work_run+0x129/0x1a0
[ 55.166679][ T3500] do_exit+0x6a3/0x2480
[ 55.170816][ T3500] ? put_task_struct+0x80/0x80
[ 55.175556][ T3500] ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 55.181527][ T3500] ? vtime_user_exit+0x2d1/0x400
[ 55.186447][ T3500] do_group_exit+0x144/0x310
[ 55.191018][ T3500] __x64_sys_exit_group+0x3b/0x40
[ 55.196021][ T3500] do_syscall_64+0x3b/0xb0
[ 55.200414][ T3500] ? clear_bhb_loop+0x15/0x70
[ 55.205065][ T3500] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 55.210965][ T3500] RIP: 0033:0x7fc70e2ab3f9
[ 55.215357][ T3500] Code: Unable to access opcode bytes at RIP 0x7fc70e2ab3cf.
[ 55.222694][ T3500] RSP: 002b:00007ffebff76a58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 55.231176][ T3500] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fc70e2ab3f9
[ 55.239140][ T3500] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[ 55.247091][ T3500] RBP: 00007fc70e340390 R08: ffffffffffffffb8 R09: 0000000000000003
[ 55.255038][ T3500] R10: 0000000000007a00 R11: 0000000000000246 R12: 00007fc70e340390
[ 55.262985][ T3500] R13: 0000000000000000 R14: 00007fc70e341100 R15: 00007fc70e271a70
[ 55.270944][ T3500]
[ 55.273941][ T3500]
[ 55.276241][ T3500] The buggy address belongs to the page:
[ 55.281842][ T3500] page:ffffea0001bf5640 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6fd59
[ 55.291965][ T3500] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 55.299055][ T3500] raw: 00fff00000000000 ffffea0001c0c908 ffffea0001ca9ac8 0000000000000000
[ 55.307620][ T3500] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 55.316177][ T3500] page dumped because: kasan: bad access detected
[ 55.322563][ T3500] page_owner tracks the page as freed
[ 55.327901][ T3500] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 3500, ts 54780400378, free_ts 55003470018
[ 55.342451][ T3500] get_page_from_freelist+0x322a/0x33c0
[ 55.347990][ T3500] __alloc_pages+0x272/0x700
[ 55.352556][ T3500] alloc_pages_vma+0x39a/0x800
[ 55.357299][ T3500] wp_page_copy+0x24e/0x2070
[ 55.361867][ T3500] handle_mm_fault+0x2a3d/0x5950
[ 55.366782][ T3500] exc_page_fault+0x271/0x740
[ 55.371434][ T3500] asm_exc_page_fault+0x22/0x30
[ 55.376255][ T3500] page last free stack trace:
[ 55.380899][ T3500] free_unref_page_prepare+0xc34/0xcf0
[ 55.386331][ T3500] free_unref_page_list+0x1f7/0x8e0
[ 55.391502][ T3500] release_pages+0x1bb9/0x1f40
[ 55.396250][ T3500] tlb_finish_mmu+0x177/0x320
[ 55.400899][ T3500] exit_mmap+0x3cd/0x670
[ 55.405115][ T3500] __mmput+0x112/0x3b0
[ 55.409161][ T3500] exit_mm+0x688/0x7f0
[ 55.413218][ T3500] do_exit+0x626/0x2480
[ 55.417351][ T3500] do_group_exit+0x144/0x310
[ 55.421914][ T3500] __x64_sys_exit_group+0x3b/0x40
[ 55.426912][ T3500] do_syscall_64+0x3b/0xb0
[ 55.431300][ T3500] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 55.437166][ T3500]
[ 55.439478][ T3500] Memory state around the buggy address:
[ 55.445117][ T3500] ffff88806fd58f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 55.453169][ T3500] ffff88806fd58f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 55.461232][ T3500] >ffff88806fd59000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 55.469279][ T3500] ^
[ 55.473324][ T3500] ffff88806fd59080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 55.481453][ T3500] ffff88806fd59100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 55.489501][ T3500] ==================================================================
[ 55.497533][ T3500] Disabling lock debugging due to kernel taint
[ 55.503805][ T3500] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 55.511087][ T3500] CPU: 0 PID: 3500 Comm: syz-executor390 Tainted: G B 5.15.158-syzkaller #0
[ 55.521066][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 55.531095][ T3500] Call Trace:
[ 55.534371][ T3500]
[ 55.537279][ T3500] dump_stack_lvl+0x1e3/0x2d0
[ 55.541932][ T3500] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 55.547566][ T3500] ? panic+0x860/0x860
[ 55.551628][ T3500] ? preempt_schedule_common+0xa6/0xd0
[ 55.557063][ T3500] ? preempt_schedule+0xd9/0xe0
[ 55.561985][ T3500] panic+0x318/0x860
[ 55.565857][ T3500] ? check_panic_on_warn+0x1d/0xa0
[ 55.570944][ T3500] ? fb_is_primary_device+0xd0/0xd0
[ 55.576115][ T3500] ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 55.582073][ T3500] ? _raw_spin_unlock+0x40/0x40
[ 55.586914][ T3500] ? print_memory_metadata+0xe2/0x140
[ 55.592274][ T3500] check_panic_on_warn+0x7e/0xa0
[ 55.597292][ T3500] ? crc_itu_t+0x1d1/0x2a0
[ 55.601707][ T3500] end_report+0x6d/0xf0
[ 55.605837][ T3500] kasan_report+0x18e/0x1c0
[ 55.610335][ T3500] ? crc_itu_t+0x1d1/0x2a0
[ 55.614811][ T3500] ? pvclock_gtod_unregister_notifier+0x50/0x50
[ 55.621027][ T3500] crc_itu_t+0x1d1/0x2a0
[ 55.625245][ T3500] udf_sync_fs+0x1ce/0x380
[ 55.629638][ T3500] ? udf_put_super+0x160/0x160
[ 55.634376][ T3500] ? get_nr_dirty_inodes+0x25f/0x2e0
[ 55.639651][ T3500] sync_filesystem+0xe8/0x220
[ 55.644392][ T3500] generic_shutdown_super+0x6e/0x2c0
[ 55.649651][ T3500] kill_block_super+0x7a/0xe0
[ 55.654318][ T3500] deactivate_locked_super+0xa0/0x110
[ 55.659690][ T3500] cleanup_mnt+0x44e/0x500
[ 55.664128][ T3500] ? lockdep_hardirqs_on+0x94/0x130
[ 55.669319][ T3500] task_work_run+0x129/0x1a0
[ 55.673883][ T3500] do_exit+0x6a3/0x2480
[ 55.678022][ T3500] ? put_task_struct+0x80/0x80
[ 55.682770][ T3500] ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 55.688759][ T3500] ? vtime_user_exit+0x2d1/0x400
[ 55.693698][ T3500] do_group_exit+0x144/0x310
[ 55.698264][ T3500] __x64_sys_exit_group+0x3b/0x40
[ 55.703263][ T3500] do_syscall_64+0x3b/0xb0
[ 55.707669][ T3500] ? clear_bhb_loop+0x15/0x70
[ 55.712336][ T3500] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 55.718203][ T3500] RIP: 0033:0x7fc70e2ab3f9
[ 55.722596][ T3500] Code: Unable to access opcode bytes at RIP 0x7fc70e2ab3cf.
[ 55.729931][ T3500] RSP: 002b:00007ffebff76a58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 55.738375][ T3500] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fc70e2ab3f9
[ 55.746337][ T3500] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[ 55.754291][ T3500] RBP: 00007fc70e340390 R08: ffffffffffffffb8 R09: 0000000000000003
[ 55.762243][ T3500] R10: 0000000000007a00 R11: 0000000000000246 R12: 00007fc70e340390
[ 55.770278][ T3500] R13: 0000000000000000 R14: 00007fc70e341100 R15: 00007fc70e271a70
[ 55.778230][ T3500]
[ 55.781521][ T3500] Kernel Offset: disabled
[ 55.785826][ T3500] Rebooting in 86400 seconds..