Warning: Permanently added '10.128.0.132' (ED25519) to the list of known hosts.
executing program
[ 43.310447][ T3500] loop0: detected capacity change from 0 to 4096
[ 43.358206][ T3500] ntfs: (device loop0): is_boot_sector_ntfs(): Invalid end of sector marker.
[ 43.368328][ T3500] ntfs: (device loop0): ntfs_is_extended_system_file(): Inode hard link count doesn't match number of name attributes. You should run chkdsk.
[ 43.383054][ T3500] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 43.392171][ T3500] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x0 as bad. Run chkdsk.
[ 43.405214][ T3500] ntfs: (device loop0): ntfs_read_inode_mount(): ntfs_read_inode() of $MFT failed. BUG or corrupt $MFT. Run chkdsk and if no errors are found, please report you saw this message to linux-ntfs-dev@lists.sourceforge.net
[ 43.426567][ T3500] ntfs: (device loop0): ntfs_fill_super(): Failed to load essential metadata.
executing program
[ 43.569209][ T3502] loop0: detected capacity change from 0 to 4096
[ 43.647204][ T3502] ntfs: (device loop0): is_boot_sector_ntfs(): Invalid end of sector marker.
[ 43.657409][ T3502] ==================================================================
[ 43.665490][ T3502] BUG: KASAN: use-after-free in ntfs_attr_find+0x7d6/0xd50
[ 43.672745][ T3502] Read of size 2 at addr ffff888070f98042 by task syz-executor771/3502
[ 43.680967][ T3502]
[ 43.683276][ T3502] CPU: 1 PID: 3502 Comm: syz-executor771 Not tainted 5.15.159-syzkaller #0
[ 43.691957][ T3502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 43.702040][ T3502] Call Trace:
[ 43.705320][ T3502]
[ 43.708235][ T3502] dump_stack_lvl+0x1e3/0x2d0
[ 43.712898][ T3502] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 43.718519][ T3502] ? _printk+0xd1/0x120
[ 43.722790][ T3502] ? __wake_up_klogd+0xcc/0x100
[ 43.727622][ T3502] ? panic+0x860/0x860
[ 43.731678][ T3502] ? _raw_spin_lock_irqsave+0xdd/0x120
[ 43.737135][ T3502] print_address_description+0x63/0x3b0
[ 43.742668][ T3502] ? ntfs_attr_find+0x7d6/0xd50
[ 43.747516][ T3502] kasan_report+0x16b/0x1c0
[ 43.751999][ T3502] ? ntfs_attr_find+0x7d6/0xd50
[ 43.756924][ T3502] ? mount_bdev+0x2c9/0x3f0
[ 43.761986][ T3502] ntfs_attr_find+0x7d6/0xd50
[ 43.766655][ T3502] ntfs_attr_lookup+0x4e0/0x2390
[ 43.771741][ T3502] ? slab_post_alloc_hook+0x73/0x380
[ 43.777010][ T3502] ? ntfs_attr_reinit_search_ctx+0x2e0/0x2e0
[ 43.782972][ T3502] ? ntfs_attr_get_search_ctx+0x4d/0x180
[ 43.788582][ T3502] ? kmem_cache_alloc+0x128/0x280
[ 43.793601][ T3502] ? memset+0x1f/0x40
[ 43.797561][ T3502] ? ntfs_attr_reinit_search_ctx+0x4b/0x2e0
[ 43.803543][ T3502] ntfs_read_locked_inode+0xa34/0x49c0
[ 43.808996][ T3502] ntfs_read_inode_mount+0xda2/0x2660
[ 43.814354][ T3502] ntfs_fill_super+0x1a16/0x2e20
[ 43.819279][ T3502] mount_bdev+0x2c9/0x3f0
[ 43.823607][ T3502] ? ntfs_mount+0x40/0x40
[ 43.827938][ T3502] legacy_get_tree+0xeb/0x180
[ 43.832609][ T3502] ? ntfs_rl_punch_nolock+0x15b0/0x15b0
[ 43.838140][ T3502] vfs_get_tree+0x88/0x270
[ 43.842533][ T3502] do_new_mount+0x2ba/0xb40
[ 43.847056][ T3502] ? do_move_mount_old+0x160/0x160
[ 43.852237][ T3502] ? user_path_at_empty+0x12b/0x180
[ 43.857412][ T3502] __se_sys_mount+0x2d5/0x3c0
[ 43.862066][ T3502] ? __x64_sys_mount+0xc0/0xc0
[ 43.867005][ T3502] ? syscall_enter_from_user_mode+0x2e/0x240
[ 43.873032][ T3502] ? lockdep_hardirqs_on+0x94/0x130
[ 43.878229][ T3502] ? __x64_sys_mount+0x1c/0xc0
[ 43.882989][ T3502] do_syscall_64+0x3b/0xb0
[ 43.887395][ T3502] ? clear_bhb_loop+0x15/0x70
[ 43.892065][ T3502] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 43.897940][ T3502] RIP: 0033:0x7f565d2eedea
[ 43.902337][ T3502] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 43.922007][ T3502] RSP: 002b:00007ffeea4cf528 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 43.930412][ T3502] RAX: ffffffffffffffda RBX: 00007ffeea4cf540 RCX: 00007f565d2eedea
[ 43.938377][ T3502] RDX: 00000000200000c0 RSI: 00000000200001c0 RDI: 00007ffeea4cf540
[ 43.946330][ T3502] RBP: 0000000000000004 R08: 00007ffeea4cf580 R09: 000000000001f63d
[ 43.954366][ T3502] R10: 0000000000000004 R11: 0000000000000286 R12: 0000000000000004
[ 43.962324][ T3502] R13: 00007ffeea4cf580 R14: 0000000000000003 R15: 0000000000200000
[ 43.970320][ T3502]
[ 43.973334][ T3502]
[ 43.975828][ T3502] The buggy address belongs to the page:
[ 43.981447][ T3502] page:ffffea0001c3e600 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x70f98
[ 43.991647][ T3502] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 43.998748][ T3502] raw: 00fff00000000000 ffffea0001c3e648 ffff8880b9b409a0 0000000000000000
[ 44.007401][ T3502] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 44.015961][ T3502] page dumped because: kasan: bad access detected
[ 44.022541][ T3502] page_owner tracks the page as freed
[ 44.027890][ T3502] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), pid 3500, ts 43283834697, free_ts 43309625154
[ 44.043403][ T3502] get_page_from_freelist+0x322a/0x33c0
[ 44.048944][ T3502] __alloc_pages+0x272/0x700
[ 44.053529][ T3502] alloc_pages_vma+0x39a/0x800
[ 44.058300][ T3502] handle_mm_fault+0x2f49/0x5950
[ 44.063303][ T3502] exc_page_fault+0x271/0x740
[ 44.068133][ T3502] asm_exc_page_fault+0x22/0x30
[ 44.073076][ T3502] page last free stack trace:
[ 44.077730][ T3502] free_unref_page_prepare+0xc34/0xcf0
[ 44.083174][ T3502] free_unref_page_list+0x1f7/0x8e0
[ 44.088489][ T3502] release_pages+0x1bb9/0x1f40
[ 44.093244][ T3502] tlb_finish_mmu+0x177/0x320
[ 44.097906][ T3502] unmap_region+0x304/0x350
[ 44.102388][ T3502] __do_munmap+0x12db/0x1740
[ 44.106960][ T3502] __vm_munmap+0x134/0x230
[ 44.111349][ T3502] __x64_sys_munmap+0x67/0x70
[ 44.116002][ T3502] do_syscall_64+0x3b/0xb0
[ 44.120409][ T3502] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 44.126288][ T3502]
[ 44.128699][ T3502] Memory state around the buggy address:
[ 44.134390][ T3502] ffff888070f97f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 44.142425][ T3502] ffff888070f97f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 44.150476][ T3502] >ffff888070f98000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.158508][ T3502] ^
[ 44.164635][ T3502] ffff888070f98080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.173030][ T3502] ffff888070f98100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.181073][ T3502] ==================================================================
[ 44.189104][ T3502] Disabling lock debugging due to kernel taint
[ 44.195693][ T3502] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 44.202890][ T3502] CPU: 1 PID: 3502 Comm: syz-executor771 Tainted: G B 5.15.159-syzkaller #0
[ 44.212844][ T3502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 44.222876][ T3502] Call Trace:
[ 44.226149][ T3502]
[ 44.229060][ T3502] dump_stack_lvl+0x1e3/0x2d0
[ 44.233740][ T3502] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 44.239357][ T3502] ? panic+0x860/0x860
[ 44.243492][ T3502] ? rcu_is_watching+0x11/0xa0
[ 44.248246][ T3502] ? preempt_schedule_common+0xa6/0xd0
[ 44.253897][ T3502] panic+0x318/0x860
[ 44.257800][ T3502] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 44.263980][ T3502] ? check_panic_on_warn+0x1d/0xa0
[ 44.269083][ T3502] ? fb_is_primary_device+0xd0/0xd0
[ 44.274336][ T3502] ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 44.280381][ T3502] ? _raw_spin_unlock+0x40/0x40
[ 44.285236][ T3502] check_panic_on_warn+0x7e/0xa0
[ 44.290168][ T3502] ? ntfs_attr_find+0x7d6/0xd50
[ 44.295099][ T3502] end_report+0x6d/0xf0
[ 44.299260][ T3502] kasan_report+0x18e/0x1c0
[ 44.303753][ T3502] ? ntfs_attr_find+0x7d6/0xd50
[ 44.308595][ T3502] ? mount_bdev+0x2c9/0x3f0
[ 44.313074][ T3502] ntfs_attr_find+0x7d6/0xd50
[ 44.317730][ T3502] ntfs_attr_lookup+0x4e0/0x2390
[ 44.322688][ T3502] ? slab_post_alloc_hook+0x73/0x380
[ 44.327955][ T3502] ? ntfs_attr_reinit_search_ctx+0x2e0/0x2e0
[ 44.333928][ T3502] ? ntfs_attr_get_search_ctx+0x4d/0x180
[ 44.339540][ T3502] ? kmem_cache_alloc+0x128/0x280
[ 44.344541][ T3502] ? memset+0x1f/0x40
[ 44.348505][ T3502] ? ntfs_attr_reinit_search_ctx+0x4b/0x2e0
[ 44.354397][ T3502] ntfs_read_locked_inode+0xa34/0x49c0
[ 44.359835][ T3502] ntfs_read_inode_mount+0xda2/0x2660
[ 44.365807][ T3502] ntfs_fill_super+0x1a16/0x2e20
[ 44.370735][ T3502] mount_bdev+0x2c9/0x3f0
[ 44.375044][ T3502] ? ntfs_mount+0x40/0x40
[ 44.379346][ T3502] legacy_get_tree+0xeb/0x180
[ 44.384001][ T3502] ? ntfs_rl_punch_nolock+0x15b0/0x15b0
[ 44.389525][ T3502] vfs_get_tree+0x88/0x270
[ 44.393938][ T3502] do_new_mount+0x2ba/0xb40
[ 44.398418][ T3502] ? do_move_mount_old+0x160/0x160
[ 44.403506][ T3502] ? user_path_at_empty+0x12b/0x180
[ 44.408681][ T3502] __se_sys_mount+0x2d5/0x3c0
[ 44.413335][ T3502] ? __x64_sys_mount+0xc0/0xc0
[ 44.418073][ T3502] ? syscall_enter_from_user_mode+0x2e/0x240
[ 44.424033][ T3502] ? lockdep_hardirqs_on+0x94/0x130
[ 44.429301][ T3502] ? __x64_sys_mount+0x1c/0xc0
[ 44.434040][ T3502] do_syscall_64+0x3b/0xb0
[ 44.438433][ T3502] ? clear_bhb_loop+0x15/0x70
[ 44.443111][ T3502] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 44.448997][ T3502] RIP: 0033:0x7f565d2eedea
[ 44.453400][ T3502] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 44.473079][ T3502] RSP: 002b:00007ffeea4cf528 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 44.481679][ T3502] RAX: ffffffffffffffda RBX: 00007ffeea4cf540 RCX: 00007f565d2eedea
[ 44.489631][ T3502] RDX: 00000000200000c0 RSI: 00000000200001c0 RDI: 00007ffeea4cf540
[ 44.497592][ T3502] RBP: 0000000000000004 R08: 00007ffeea4cf580 R09: 000000000001f63d
[ 44.505543][ T3502] R10: 0000000000000004 R11: 0000000000000286 R12: 0000000000000004
[ 44.513661][ T3502] R13: 00007ffeea4cf580 R14: 0000000000000003 R15: 0000000000200000
[ 44.521714][ T3502]
[ 44.525101][ T3502] Kernel Offset: disabled
[ 44.529418][ T3502] Rebooting in 86400 seconds..