[ 81.466956][ T153] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.131' (ED25519) to the list of known hosts.
executing program
[ 86.054705][ T3548] loop0: detected capacity change from 0 to 2048
[ 86.067538][ T3548] =======================================================
[ 86.067538][ T3548] WARNING: The mand mount option has been deprecated and
[ 86.067538][ T3548] and is ignored by this kernel. Remove the mand
[ 86.067538][ T3548] option from the mount to silence this warning.
[ 86.067538][ T3548] =======================================================
[ 86.109330][ T3548] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 86.222828][ T3548] ==================================================================
[ 86.231081][ T3548] BUG: KASAN: use-after-free in crc_itu_t+0x218/0x2a0
[ 86.238633][ T3548] Read of size 1 at addr ffff888072300000 by task syz-executor219/3548
[ 86.247142][ T3548]
[ 86.249566][ T3548] CPU: 0 PID: 3548 Comm: syz-executor219 Not tainted 6.1.90-syzkaller #0
[ 86.258088][ T3548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 86.268607][ T3548] Call Trace:
[ 86.271929][ T3548]
[ 86.274966][ T3548] dump_stack_lvl+0x1e3/0x2cb
[ 86.279918][ T3548] ? nf_tcp_handle_invalid+0x642/0x642
[ 86.285681][ T3548] ? panic+0x764/0x764
[ 86.289948][ T3548] ? _printk+0xd1/0x111
[ 86.294114][ T3548] ? __virt_addr_valid+0x17f/0x520
[ 86.299284][ T3548] ? __virt_addr_valid+0x17f/0x520
[ 86.304410][ T3548] print_report+0x15f/0x4f0
[ 86.308919][ T3548] ? __virt_addr_valid+0x17f/0x520
[ 86.314126][ T3548] ? __virt_addr_valid+0x17f/0x520
[ 86.319339][ T3548] ? __virt_addr_valid+0x44a/0x520
[ 86.324500][ T3548] ? __phys_addr+0xb6/0x170
[ 86.329142][ T3548] ? crc_itu_t+0x218/0x2a0
[ 86.333635][ T3548] kasan_report+0x136/0x160
[ 86.338713][ T3548] ? crc_itu_t+0x218/0x2a0
[ 86.343172][ T3548] crc_itu_t+0x218/0x2a0
[ 86.347477][ T3548] udf_sync_fs+0x1ce/0x380
[ 86.352034][ T3548] ? udf_put_super+0x160/0x160
[ 86.356834][ T3548] ? get_nr_dirty_inodes+0x2ab/0x2e0
[ 86.362150][ T3548] sync_filesystem+0xe8/0x220
[ 86.366882][ T3548] generic_shutdown_super+0x6b/0x340
[ 86.372198][ T3548] kill_block_super+0x7a/0xe0
[ 86.377123][ T3548] deactivate_locked_super+0xa0/0x110
[ 86.382517][ T3548] cleanup_mnt+0x490/0x520
[ 86.386980][ T3548] ? lockdep_hardirqs_on+0x94/0x130
[ 86.392479][ T3548] task_work_run+0x246/0x300
[ 86.397157][ T3548] ? kasan_quarantine_put+0xd4/0x220
[ 86.402515][ T3548] ? task_work_cancel+0x2b0/0x2b0
[ 86.407605][ T3548] ? kmem_cache_free+0x292/0x510
[ 86.412686][ T3548] ? do_exit+0xa6e/0x26a0
[ 86.417193][ T3548] do_exit+0xa73/0x26a0
[ 86.421411][ T3548] ? put_task_struct+0x80/0x80
[ 86.426458][ T3548] ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 86.432851][ T3548] ? print_irqtrace_events+0x210/0x210
[ 86.438462][ T3548] ? _raw_spin_unlock_irq+0x1f/0x40
[ 86.443764][ T3548] ? lockdep_hardirqs_on+0x94/0x130
[ 86.449261][ T3548] do_group_exit+0x202/0x2b0
[ 86.454141][ T3548] __x64_sys_exit_group+0x3b/0x40
[ 86.460545][ T3548] do_syscall_64+0x3b/0xb0
[ 86.465162][ T3548] ? clear_bhb_loop+0x45/0xa0
[ 86.470327][ T3548] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 86.476353][ T3548] RIP: 0033:0x7f243a6b9a49
[ 86.480969][ T3548] Code: Unable to access opcode bytes at 0x7f243a6b9a1f.
[ 86.489398][ T3548] RSP: 002b:00007ffc0e5a11f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 86.498183][ T3548] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f243a6b9a49
[ 86.507132][ T3548] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[ 86.515288][ T3548] RBP: 00007f243a7562d0 R08: ffffffffffffffb8 R09: 0000000000000004
[ 86.524427][ T3548] R10: 0000000000001400 R11: 0000000000000246 R12: 00007f243a7562d0
[ 86.532430][ T3548] R13: 0000000000000000 R14: 00007f243a757040 R15: 00007f243a687f70
[ 86.541486][ T3548]
[ 86.544553][ T3548]
[ 86.546990][ T3548] The buggy address belongs to the physical page:
[ 86.553954][ T3548] page:ffffea0001c8c000 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x72300
[ 86.565606][ T3548] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 86.572861][ T3548] raw: 00fff00000000000 ffffea0001c8c048 ffffea0001c583c8 0000000000000000
[ 86.582178][ T3548] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 86.591396][ T3548] page dumped because: kasan: bad access detected
[ 86.599031][ T3548] page_owner tracks the page as freed
[ 86.604695][ T3548] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 3537, tgid 3537 (sshd), ts 59625323482, free_ts 59670983337
[ 86.623137][ T3548] post_alloc_hook+0x18d/0x1b0
[ 86.628000][ T3548] get_page_from_freelist+0x31a1/0x3320
[ 86.633644][ T3548] __alloc_pages+0x28d/0x770
[ 86.638240][ T3548] __folio_alloc+0xf/0x30
[ 86.642857][ T3548] vma_alloc_folio+0x486/0x990
[ 86.648041][ T3548] handle_mm_fault+0x2e90/0x5340
[ 86.652998][ T3548] exc_page_fault+0x26f/0x660
[ 86.657897][ T3548] asm_exc_page_fault+0x22/0x30
[ 86.663243][ T3548] page last free stack trace:
[ 86.668108][ T3548] free_unref_page_prepare+0xf63/0x1120
[ 86.673723][ T3548] free_unref_page_list+0x663/0x900
[ 86.679104][ T3548] release_pages+0x2836/0x2b40
[ 86.683873][ T3548] tlb_flush_mmu+0xfc/0x210
[ 86.688392][ T3548] tlb_finish_mmu+0xce/0x1f0
[ 86.693131][ T3548] unmap_region+0x29f/0x2f0
[ 86.697727][ T3548] do_mas_align_munmap+0xec8/0x15f0
[ 86.702941][ T3548] do_mas_munmap+0x246/0x2b0
[ 86.707552][ T3548] __vm_munmap+0x268/0x370
[ 86.712063][ T3548] __x64_sys_munmap+0x5c/0x70
[ 86.716748][ T3548] do_syscall_64+0x3b/0xb0
[ 86.721269][ T3548] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 86.727216][ T3548]
[ 86.729545][ T3548] Memory state around the buggy address:
[ 86.735276][ T3548] ffff8880722fff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.743353][ T3548] ffff8880722fff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.751544][ T3548] >ffff888072300000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 86.760324][ T3548] ^
[ 86.764646][ T3548] ffff888072300080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 86.773394][ T3548] ffff888072300100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 86.781911][ T3548] ==================================================================
[ 86.791426][ T3548] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 86.799093][ T3548] CPU: 0 PID: 3548 Comm: syz-executor219 Not tainted 6.1.90-syzkaller #0
[ 86.808237][ T3548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 86.818499][ T3548] Call Trace:
[ 86.821877][ T3548]
[ 86.824825][ T3548] dump_stack_lvl+0x1e3/0x2cb
[ 86.829534][ T3548] ? nf_tcp_handle_invalid+0x642/0x642
[ 86.835019][ T3548] ? panic+0x764/0x764
[ 86.839439][ T3548] ? preempt_schedule_common+0xa6/0xd0
[ 86.845007][ T3548] ? vscnprintf+0x59/0x80
[ 86.849374][ T3548] panic+0x318/0x764
[ 86.853353][ T3548] ? check_panic_on_warn+0x1d/0xa0
[ 86.858493][ T3548] ? memcpy_page_flushcache+0xfc/0xfc
[ 86.863982][ T3548] ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 86.869997][ T3548] ? _raw_spin_unlock+0x40/0x40
[ 86.874967][ T3548] ? print_report+0x4a3/0x4f0
[ 86.879699][ T3548] check_panic_on_warn+0x7e/0xa0
[ 86.884775][ T3548] ? crc_itu_t+0x218/0x2a0
[ 86.889593][ T3548] end_report+0x66/0x110
[ 86.893873][ T3548] kasan_report+0x143/0x160
[ 86.898665][ T3548] ? crc_itu_t+0x218/0x2a0
[ 86.903118][ T3548] crc_itu_t+0x218/0x2a0
[ 86.907674][ T3548] udf_sync_fs+0x1ce/0x380
[ 86.912318][ T3548] ? udf_put_super+0x160/0x160
[ 86.917727][ T3548] ? get_nr_dirty_inodes+0x2ab/0x2e0
[ 86.923605][ T3548] sync_filesystem+0xe8/0x220
[ 86.929011][ T3548] generic_shutdown_super+0x6b/0x340
[ 86.934498][ T3548] kill_block_super+0x7a/0xe0
[ 86.939284][ T3548] deactivate_locked_super+0xa0/0x110
[ 86.944938][ T3548] cleanup_mnt+0x490/0x520
[ 86.950267][ T3548] ? lockdep_hardirqs_on+0x94/0x130
[ 86.955673][ T3548] task_work_run+0x246/0x300
[ 86.961042][ T3548] ? kasan_quarantine_put+0xd4/0x220
[ 86.966702][ T3548] ? task_work_cancel+0x2b0/0x2b0
[ 86.971957][ T3548] ? kmem_cache_free+0x292/0x510
[ 86.976980][ T3548] ? do_exit+0xa6e/0x26a0
[ 86.981566][ T3548] do_exit+0xa73/0x26a0
[ 86.986192][ T3548] ? put_task_struct+0x80/0x80
[ 86.990978][ T3548] ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 86.997139][ T3548] ? print_irqtrace_events+0x210/0x210
[ 87.002993][ T3548] ? _raw_spin_unlock_irq+0x1f/0x40
[ 87.008223][ T3548] ? lockdep_hardirqs_on+0x94/0x130
[ 87.013457][ T3548] do_group_exit+0x202/0x2b0
[ 87.018099][ T3548] __x64_sys_exit_group+0x3b/0x40
[ 87.023263][ T3548] do_syscall_64+0x3b/0xb0
[ 87.028511][ T3548] ? clear_bhb_loop+0x45/0xa0
[ 87.033952][ T3548] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 87.040348][ T3548] RIP: 0033:0x7f243a6b9a49
[ 87.044982][ T3548] Code: Unable to access opcode bytes at 0x7f243a6b9a1f.
[ 87.052368][ T3548] RSP: 002b:00007ffc0e5a11f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 87.060983][ T3548] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f243a6b9a49
[ 87.069112][ T3548] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[ 87.077217][ T3548] RBP: 00007f243a7562d0 R08: ffffffffffffffb8 R09: 0000000000000004
[ 87.085562][ T3548] R10: 0000000000001400 R11: 0000000000000246 R12: 00007f243a7562d0
[ 87.093750][ T3548] R13: 0000000000000000 R14: 00007f243a757040 R15: 00007f243a687f70
[ 87.101933][ T3548]
[ 87.105360][ T3548] Kernel Offset: disabled
[ 87.109763][ T3548] Rebooting in 86400 seconds..