Warning: Permanently added '10.128.0.13' (ECDSA) to the list of known hosts.
executing program
[ 52.210317][ T3538] loop0: detected capacity change from 0 to 2048
[ 52.221693][ T3538] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 52.239252][ T3538] ==================================================================
[ 52.247367][ T3538] BUG: KASAN: slab-out-of-bounds in udf_write_aext+0x5e9/0x7a0
[ 52.254944][ T3538] Write of size 4 at addr ffff888023664bf0 by task syz-executor957/3538
[ 52.263273][ T3538]
[ 52.265635][ T3538] CPU: 1 PID: 3538 Comm: syz-executor957 Not tainted 6.1.28-syzkaller #0
[ 52.274052][ T3538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 52.284110][ T3538] Call Trace:
[ 52.287387][ T3538]
[ 52.290315][ T3538] dump_stack_lvl+0x1e3/0x2cb
[ 52.294991][ T3538] ? irq_work_queue+0xc6/0x150
[ 52.299750][ T3538] ? nf_tcp_handle_invalid+0x642/0x642
[ 52.305299][ T3538] ? panic+0x75d/0x75d
[ 52.309389][ T3538] ? _printk+0xd1/0x111
[ 52.313541][ T3538] ? _raw_spin_lock_irqsave+0xac/0x120
[ 52.319010][ T3538] print_report+0x15f/0x4f0
[ 52.323530][ T3538] ? __virt_addr_valid+0x22b/0x2e0
[ 52.328657][ T3538] ? __phys_addr+0xb6/0x170
[ 52.333160][ T3538] ? udf_write_aext+0x5e9/0x7a0
[ 52.338002][ T3538] kasan_report+0x136/0x160
[ 52.342502][ T3538] ? udf_write_aext+0x5e9/0x7a0
[ 52.347349][ T3538] udf_write_aext+0x5e9/0x7a0
[ 52.352028][ T3538] udf_add_entry+0x17b7/0x3350
[ 52.356815][ T3538] ? rcu_is_watching+0x11/0xb0
[ 52.361613][ T3538] ? udf_add_nondir+0x5d0/0x5d0
[ 52.366473][ T3538] ? udf_new_inode+0xaf9/0xf10
[ 52.371238][ T3538] ? lockdep_softirqs_off+0x420/0x420
[ 52.376599][ T3538] udf_mkdir+0x1a8/0xaa0
[ 52.380837][ T3538] ? udf_symlink+0x1690/0x1690
[ 52.385589][ T3538] ? from_kgid+0x1a3/0x730
[ 52.390027][ T3538] ? make_kgid+0x6f0/0x6f0
[ 52.394466][ T3538] ? inode_permission+0xf7/0x450
[ 52.399406][ T3538] ? bpf_lsm_inode_mkdir+0x5/0x10
[ 52.404425][ T3538] ? security_inode_mkdir+0xb4/0x100
[ 52.409701][ T3538] vfs_mkdir+0x3b6/0x590
[ 52.413944][ T3538] do_mkdirat+0x260/0x520
[ 52.418269][ T3538] ? vfs_mkdir+0x590/0x590
[ 52.422677][ T3538] ? getname_flags+0x1ec/0x4e0
[ 52.427433][ T3538] __x64_sys_mkdirat+0x85/0x90
[ 52.432204][ T3538] do_syscall_64+0x3d/0xb0
[ 52.436611][ T3538] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 52.442493][ T3538] RIP: 0033:0x7f000b2d3bd9
[ 52.446919][ T3538] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 52.466512][ T3538] RSP: 002b:00007fff23e75f18 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 52.474913][ T3538] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f000b2d3bd9
[ 52.482871][ T3538] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 00000000ffffff9c
[ 52.490835][ T3538] RBP: 00007f000b2931e0 R08: 0000000000000bfc R09: 0000000000000000
[ 52.498794][ T3538] R10: 00007fff23e75de0 R11: 0000000000000246 R12: 00007f000b293270
[ 52.506795][ T3538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 52.514774][ T3538]
[ 52.517805][ T3538]
[ 52.520135][ T3538] Allocated by task 1:
[ 52.524187][ T3538] kasan_set_track+0x4b/0x70
[ 52.528778][ T3538] __kasan_kmalloc+0x97/0xb0
[ 52.533377][ T3538] device_add+0xb5/0xfd0
[ 52.537608][ T3538] device_create+0x253/0x2e0
[ 52.542187][ T3538] mon_bin_add+0xad/0x120
[ 52.546506][ T3538] mon_bus_init+0x169/0x290
[ 52.551010][ T3538] mon_notify+0x10e/0x3f0
[ 52.555327][ T3538] blocking_notifier_call_chain+0x104/0x1b0
[ 52.561303][ T3538] usb_add_hcd+0x48f/0x1250
[ 52.565803][ T3538] vhci_hcd_probe+0x1f0/0x3b0
[ 52.570464][ T3538] platform_probe+0x131/0x1b0
[ 52.575133][ T3538] really_probe+0x2ab/0xcb0
[ 52.579625][ T3538] __driver_probe_device+0x1a2/0x3d0
[ 52.584897][ T3538] driver_probe_device+0x50/0x420
[ 52.589931][ T3538] __device_attach_driver+0x2cf/0x510
[ 52.595308][ T3538] bus_for_each_drv+0x183/0x200
[ 52.600168][ T3538] __device_attach+0x359/0x570
[ 52.604936][ T3538] bus_probe_device+0xba/0x1e0
[ 52.609688][ T3538] device_add+0xb48/0xfd0
[ 52.614013][ T3538] platform_device_add+0x46e/0x7d0
[ 52.619121][ T3538] vhci_hcd_init+0x3e4/0x508
[ 52.623704][ T3538] do_one_initcall+0x265/0x8f0
[ 52.628458][ T3538] do_initcall_level+0x157/0x207
[ 52.633387][ T3538] do_initcalls+0x49/0x86
[ 52.637741][ T3538] kernel_init_freeable+0x473/0x61f
[ 52.642965][ T3538] kernel_init+0x19/0x290
[ 52.647293][ T3538] ret_from_fork+0x1f/0x30
[ 52.651709][ T3538]
[ 52.654044][ T3538] The buggy address belongs to the object at ffff888023664800
[ 52.654044][ T3538] which belongs to the cache kmalloc-512 of size 512
[ 52.668085][ T3538] The buggy address is located 496 bytes to the right of
[ 52.668085][ T3538] 512-byte region [ffff888023664800, ffff888023664a00)
[ 52.681870][ T3538]
[ 52.684179][ T3538] The buggy address belongs to the physical page:
[ 52.690571][ T3538] page:ffffea00008d9900 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x23664
[ 52.700723][ T3538] head:ffffea00008d9900 order:2 compound_mapcount:0 compound_pincount:0
[ 52.709028][ T3538] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 52.716997][ T3538] raw: 00fff00000010200 ffffea00008e8700 dead000000000002 ffff888012441c80
[ 52.725567][ T3538] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 52.734130][ T3538] page dumped because: kasan: bad access detected
[ 52.740561][ T3538] page_owner tracks the page as allocated
[ 52.746275][ T3538] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1624, tgid 1624 (kworker/u4:4), ts 8104623803, free_ts 0
[ 52.766681][ T3538] post_alloc_hook+0x18d/0x1b0
[ 52.771457][ T3538] get_page_from_freelist+0x32ed/0x3480
[ 52.776988][ T3538] __alloc_pages+0x28d/0x770
[ 52.781563][ T3538] alloc_slab_page+0x6a/0x150
[ 52.786228][ T3538] new_slab+0x84/0x2d0
[ 52.790305][ T3538] ___slab_alloc+0xa71/0x1080
[ 52.794967][ T3538] __kmem_cache_alloc_node+0x19f/0x260
[ 52.800412][ T3538] kmalloc_trace+0x26/0xe0
[ 52.804813][ T3538] alloc_bprm+0x57/0x700
[ 52.809040][ T3538] kernel_execve+0x92/0xa10
[ 52.813528][ T3538] call_usermodehelper_exec_async+0x22f/0x370
[ 52.819597][ T3538] ret_from_fork+0x1f/0x30
[ 52.824001][ T3538] page_owner free stack trace missing
[ 52.829350][ T3538]
[ 52.831661][ T3538] Memory state around the buggy address:
[ 52.837282][ T3538] ffff888023664a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 52.845333][ T3538] ffff888023664b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 52.853498][ T3538] >ffff888023664b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 52.861557][ T3538] ^
[ 52.869275][ T3538] ffff888023664c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 52.877423][ T3538] ffff888023664c80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 52.885472][ T3538] ==================================================================
[ 52.895578][ T3538] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 52.902783][ T3538] CPU: 1 PID: 3538 Comm: syz-executor957 Not tainted 6.1.28-syzkaller #0
[ 52.911186][ T3538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 52.921498][ T3538] Call Trace:
[ 52.924764][ T3538]
[ 52.927685][ T3538] dump_stack_lvl+0x1e3/0x2cb
[ 52.932363][ T3538] ? nf_tcp_handle_invalid+0x642/0x642
[ 52.937900][ T3538] ? panic+0x75d/0x75d
[ 52.941971][ T3538] ? preempt_schedule_common+0xa6/0xd0
[ 52.947448][ T3538] ? vscnprintf+0x59/0x80
[ 52.951770][ T3538] panic+0x318/0x75d
[ 52.955654][ T3538] ? check_panic_on_warn+0x1d/0xa0
[ 52.960751][ T3538] ? memcpy_page_flushcache+0xfc/0xfc
[ 52.966119][ T3538] ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 52.972117][ T3538] ? _raw_spin_unlock+0x40/0x40
[ 52.977003][ T3538] ? print_report+0x4a3/0x4f0
[ 52.981694][ T3538] check_panic_on_warn+0x7e/0xa0
[ 52.986641][ T3538] ? udf_write_aext+0x5e9/0x7a0
[ 52.991498][ T3538] end_report+0x66/0x110
[ 52.995755][ T3538] kasan_report+0x143/0x160
[ 53.000296][ T3538] ? udf_write_aext+0x5e9/0x7a0
[ 53.005158][ T3538] udf_write_aext+0x5e9/0x7a0
[ 53.009858][ T3538] udf_add_entry+0x17b7/0x3350
[ 53.014622][ T3538] ? rcu_is_watching+0x11/0xb0
[ 53.019409][ T3538] ? udf_add_nondir+0x5d0/0x5d0
[ 53.024360][ T3538] ? udf_new_inode+0xaf9/0xf10
[ 53.029163][ T3538] ? lockdep_softirqs_off+0x420/0x420
[ 53.034542][ T3538] udf_mkdir+0x1a8/0xaa0
[ 53.038794][ T3538] ? udf_symlink+0x1690/0x1690
[ 53.043550][ T3538] ? from_kgid+0x1a3/0x730
[ 53.047955][ T3538] ? make_kgid+0x6f0/0x6f0
[ 53.052493][ T3538] ? inode_permission+0xf7/0x450
[ 53.057599][ T3538] ? bpf_lsm_inode_mkdir+0x5/0x10
[ 53.062702][ T3538] ? security_inode_mkdir+0xb4/0x100
[ 53.067980][ T3538] vfs_mkdir+0x3b6/0x590
[ 53.072221][ T3538] do_mkdirat+0x260/0x520
[ 53.076723][ T3538] ? vfs_mkdir+0x590/0x590
[ 53.081391][ T3538] ? getname_flags+0x1ec/0x4e0
[ 53.086147][ T3538] __x64_sys_mkdirat+0x85/0x90
[ 53.090919][ T3538] do_syscall_64+0x3d/0xb0
[ 53.095326][ T3538] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 53.101217][ T3538] RIP: 0033:0x7f000b2d3bd9
[ 53.105620][ T3538] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 53.125301][ T3538] RSP: 002b:00007fff23e75f18 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 53.133705][ T3538] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f000b2d3bd9
[ 53.141664][ T3538] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 00000000ffffff9c
[ 53.149632][ T3538] RBP: 00007f000b2931e0 R08: 0000000000000bfc R09: 0000000000000000
[ 53.157592][ T3538] R10: 00007fff23e75de0 R11: 0000000000000246 R12: 00007f000b293270
[ 53.165652][ T3538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 53.173639][ T3538]
[ 53.176741][ T3538] Kernel Offset: disabled
[ 53.181090][ T3538] Rebooting in 86400 seconds..