./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3731612286

<...>
Warning: Permanently added '10.128.0.221' (ED25519) to the list of known hosts.
execve("./syz-executor3731612286", ["./syz-executor3731612286"], 0x7ffdb819d410 /* 10 vars */) = 0
brk(NULL)                               = 0x5555564f1000
brk(0x5555564f1d00)                     = 0x5555564f1d00
arch_prctl(ARCH_SET_FS, 0x5555564f1380) = 0
set_tid_address(0x5555564f1650)         = 5016
set_robust_list(0x5555564f1660, 24)     = 0
rseq(0x5555564f1ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3731612286", 4096) = 28
getrandom("\x22\xfd\xe8\xf6\xd3\x78\x13\x01", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x5555564f1d00
brk(0x555556512d00)                     = 0x555556512d00
brk(0x555556513000)                     = 0x555556513000
mprotect(0x7fe119e15000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555564f1650) = 5017
./strace-static-x86_64: Process 5017 attached
[pid  5017] set_robust_list(0x5555564f1660, 24) = 0
[pid  5017] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5017] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5017] setsid()                    = 1
[pid  5017] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5017] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5017] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5017] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5017] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5017] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5017] unshare(CLONE_NEWNS)        = 0
[pid  5017] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5017] unshare(CLONE_NEWIPC)       = 0
[pid  5017] unshare(CLONE_NEWCGROUP)    = 0
[pid  5017] unshare(CLONE_NEWUTS)       = 0
[pid  5017] unshare(CLONE_SYSVSEM)      = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "16777216", 8)     = 8
[pid  5017] close(3)                    = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "536870912", 9)    = 9
[pid  5017] close(3)                    = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "1024", 4)         = 4
[pid  5017] close(3)                    = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "8192", 4)         = 4
[pid  5017] close(3)                    = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "1024", 4)         = 4
[pid  5017] close(3)                    = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "1024", 4)         = 4
[pid  5017] close(3)                    = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5017] close(3)                    = 0
[pid  5017] getpid()                    = 1
[pid  5017] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5017] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5017] unshare(CLONE_NEWNET)       = 0
[pid  5017] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5017] write(3, "0 65535", 7)      = 7
[pid  5017] close(3)                    = 0
[pid  5017] mkdir("/dev/binderfs", 0777) = 0
[pid  5017] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5017] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5017] memfd_create("syzkaller", 0) = 3
[pid  5017] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe111943000
[pid  5017] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  5017] munmap(0x7fe111943000, 1048576) = 0
[pid  5017] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5017] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5017] close(3)                    = 0
[pid  5017] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777) = 0
[   63.059116][ T5017] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5017 'syz-executor373'
[   63.084212][ T5017] loop0: detected capacity change from 0 to 2048
[   63.095010][ T5017] =======================================================
[   63.095010][ T5017] WARNING: The mand mount option has been deprecated and
[pid  5017] mount("/dev/loop0", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "udf", MS_NODEV|MS_MANDLOCK|MS_NOATIME|MS_REC|MS_POSIXACL, "rootdir=00000000000000000007,dmode=00000000000000000114640,iocharset=iso8859-5,gid=ignore,gid=000000"...) = 0
[pid  5017] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY) = 3
[pid  5017] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f") = 0
[pid  5017] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5017] close(4)                    = 0
[pid  5017] creat("./bus", 000)         = 4
[pid  5017] mount("/dev/loop0", "./bus", NULL, MS_BIND, NULL) = 0
[pid  5017] open("./bus", O_RDWR|O_SYNC|O_NOATIME|0x3c) = 5
[pid  5017] mmap(0x20000000, 6291456, PROT_WRITE|PROT_GROWSUP, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20000000
[pid  5017] memfd_create("syzkaller", 0) = 6
[pid  5017] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = -1 ENOMEM (Cannot allocate memory)
[pid  5017] close(6)                    = 0
[pid  5017] exit_group(1)               = ?
[   63.095010][ T5017]          and is ignored by this kernel. Remove the mand
[   63.095010][ T5017]          option from the mount to silence this warning.
[   63.095010][ T5017] =======================================================
[   63.133463][ T5017] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[   63.146253][ T5017] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   63.239808][ T5017] ==================================================================
[   63.247907][ T5017] BUG: KASAN: use-after-free in udf_close_lvid+0x6a8/0x9a0
[   63.255123][ T5017] Write of size 1 at addr ffff888091a29068 by task syz-executor373/5017
[   63.263455][ T5017] 
[   63.265773][ T5017] CPU: 0 PID: 5017 Comm: syz-executor373 Not tainted 6.5.0-rc6-syzkaller-00117-g0e8860d2125f #0
[   63.276174][ T5017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   63.286235][ T5017] Call Trace:
[   63.289512][ T5017]  <TASK>
[   63.292438][ T5017]  dump_stack_lvl+0x1e7/0x2d0
[   63.297117][ T5017]  ? irq_work_queue+0xca/0x150
[   63.301887][ T5017]  ? nf_tcp_handle_invalid+0x650/0x650
[   63.307346][ T5017]  ? panic+0x770/0x770
[   63.311416][ T5017]  ? _printk+0xd5/0x120
[   63.315575][ T5017]  print_report+0x163/0x540
[   63.320077][ T5017]  ? hook_sb_delete+0x72c/0xb30
[   63.324920][ T5017]  ? __virt_addr_valid+0x22f/0x2e0
[   63.330029][ T5017]  ? __phys_addr+0xba/0x170
[   63.334536][ T5017]  ? udf_close_lvid+0x6a8/0x9a0
[   63.339396][ T5017]  kasan_report+0x175/0x1b0
[   63.343905][ T5017]  ? udf_close_lvid+0x6a8/0x9a0
[   63.348766][ T5017]  udf_close_lvid+0x6a8/0x9a0
[   63.353467][ T5017]  ? udf_open_lvid+0x5b0/0x5b0
[   63.358238][ T5017]  ? iput+0x37e/0x8f0
[   63.362240][ T5017]  ? clear_inode+0x150/0x150
[   63.366836][ T5017]  ? module_put+0x136/0x2a0
[   63.371342][ T5017]  udf_put_super+0xcd/0x160
[   63.375937][ T5017]  ? udf_free_in_core_inode+0x30/0x30
[   63.381313][ T5017]  generic_shutdown_super+0x134/0x340
[   63.386690][ T5017]  kill_block_super+0x68/0xa0
[   63.391372][ T5017]  deactivate_locked_super+0xa4/0x110
[   63.396745][ T5017]  cleanup_mnt+0x426/0x4c0
[   63.401172][ T5017]  ? _raw_spin_unlock_irq+0x23/0x50
[   63.406382][ T5017]  task_work_run+0x24a/0x300
[   63.410982][ T5017]  ? kasan_quarantine_put+0xd8/0x230
[   63.416301][ T5017]  ? task_work_cancel+0x2b0/0x2b0
[   63.421335][ T5017]  ? kmem_cache_free+0x292/0x500
[   63.426276][ T5017]  ? do_exit+0x68a/0x2290
[   63.430615][ T5017]  do_exit+0x68f/0x2290
[   63.434793][ T5017]  ? put_task_struct+0x80/0x80
[   63.439578][ T5017]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   63.445565][ T5017]  ? print_irqtrace_events+0x220/0x220
[   63.451041][ T5017]  ? _raw_spin_unlock_irq+0x23/0x50
[   63.456258][ T5017]  ? lockdep_hardirqs_on+0x98/0x140
[   63.461461][ T5017]  do_group_exit+0x206/0x2c0
[   63.466064][ T5017]  __x64_sys_exit_group+0x3f/0x40
[   63.471098][ T5017]  do_syscall_64+0x41/0xc0
[   63.475618][ T5017]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   63.481534][ T5017] RIP: 0033:0x7fe119d7fd49
[   63.486049][ T5017] Code: Unable to access opcode bytes at 0x7fe119d7fd1f.
[   63.493070][ T5017] RSP: 002b:00007ffe3145c668 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   63.501491][ T5017] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fe119d7fd49
[   63.509463][ T5017] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   63.517429][ T5017] RBP: 00007fe119e1b390 R08: ffffffffffffffb8 R09: 0000000000000000
[   63.525403][ T5017] R10: 0000000000000022 R11: 0000000000000246 R12: 00007fe119e1b390
[   63.533377][ T5017] R13: 0000000000000000 R14: 00007fe119e1c100 R15: 00007fe119d4e030
[   63.541364][ T5017]  </TASK>
[   63.544401][ T5017] 
[   63.546744][ T5017] The buggy address belongs to the physical page:
[   63.553161][ T5017] page:ffffea0002468a40 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x91a29
[   63.563326][ T5017] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   63.570440][ T5017] page_type: 0xffffffff()
[   63.574773][ T5017] raw: 00fff00000000000 ffffea0002468a48 ffffea0002468a48 0000000000000000
[   63.583355][ T5017] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   63.591933][ T5017] page dumped because: kasan: bad access detected
[   63.598351][ T5017] page_owner info is not present (never set?)
[   63.604409][ T5017] 
[   63.606731][ T5017] Memory state around the buggy address:
[   63.612362][ T5017]  ffff888091a28f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.620422][ T5017]  ffff888091a28f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.628481][ T5017] >ffff888091a29000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.636538][ T5017]                                                           ^
[   63.643988][ T5017]  ffff888091a29080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.652043][ T5017]  ffff888091a29100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.660100][ T5017] ==================================================================
[   63.675199][ T5017] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   63.682419][ T5017] CPU: 1 PID: 5017 Comm: syz-executor373 Not tainted 6.5.0-rc6-syzkaller-00117-g0e8860d2125f #0
[   63.692821][ T5017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   63.702867][ T5017] Call Trace:
[   63.706148][ T5017]  <TASK>
[   63.709066][ T5017]  dump_stack_lvl+0x1e7/0x2d0
[   63.713734][ T5017]  ? nf_tcp_handle_invalid+0x650/0x650
[   63.719191][ T5017]  ? panic+0x770/0x770
[   63.723258][ T5017]  ? preempt_schedule_common+0x83/0xc0
[   63.728720][ T5017]  ? vscnprintf+0x5d/0x80
[   63.733050][ T5017]  panic+0x30f/0x770
[   63.736954][ T5017]  ? check_panic_on_warn+0x21/0xa0
[   63.742079][ T5017]  ? __memcpy_flushcache+0x2b0/0x2b0
[   63.747374][ T5017]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   63.753377][ T5017]  ? _raw_spin_unlock+0x40/0x40
[   63.758231][ T5017]  ? print_report+0x4fb/0x540
[   63.762912][ T5017]  check_panic_on_warn+0x82/0xa0
[   63.767852][ T5017]  ? udf_close_lvid+0x6a8/0x9a0
[   63.772700][ T5017]  end_report+0x6e/0x130
[   63.776940][ T5017]  kasan_report+0x186/0x1b0
[   63.781452][ T5017]  ? udf_close_lvid+0x6a8/0x9a0
[   63.786333][ T5017]  udf_close_lvid+0x6a8/0x9a0
[   63.791024][ T5017]  ? udf_open_lvid+0x5b0/0x5b0
[   63.795782][ T5017]  ? iput+0x37e/0x8f0
[   63.799756][ T5017]  ? clear_inode+0x150/0x150
[   63.804345][ T5017]  ? module_put+0x136/0x2a0
[   63.808836][ T5017]  udf_put_super+0xcd/0x160
[   63.813335][ T5017]  ? udf_free_in_core_inode+0x30/0x30
[   63.818704][ T5017]  generic_shutdown_super+0x134/0x340
[   63.824075][ T5017]  kill_block_super+0x68/0xa0
[   63.828738][ T5017]  deactivate_locked_super+0xa4/0x110
[   63.834100][ T5017]  cleanup_mnt+0x426/0x4c0
[   63.838526][ T5017]  ? _raw_spin_unlock_irq+0x23/0x50
[   63.843736][ T5017]  task_work_run+0x24a/0x300
[   63.848323][ T5017]  ? kasan_quarantine_put+0xd8/0x230
[   63.853607][ T5017]  ? task_work_cancel+0x2b0/0x2b0
[   63.858631][ T5017]  ? kmem_cache_free+0x292/0x500
[   63.863593][ T5017]  ? do_exit+0x68a/0x2290
[   63.867928][ T5017]  do_exit+0x68f/0x2290
[   63.872104][ T5017]  ? put_task_struct+0x80/0x80
[   63.876877][ T5017]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   63.882861][ T5017]  ? print_irqtrace_events+0x220/0x220
[   63.888324][ T5017]  ? _raw_spin_unlock_irq+0x23/0x50
[   63.893531][ T5017]  ? lockdep_hardirqs_on+0x98/0x140
[   63.898737][ T5017]  do_group_exit+0x206/0x2c0
[   63.903328][ T5017]  __x64_sys_exit_group+0x3f/0x40
[   63.908349][ T5017]  do_syscall_64+0x41/0xc0
[   63.912764][ T5017]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   63.918669][ T5017] RIP: 0033:0x7fe119d7fd49
[   63.923079][ T5017] Code: Unable to access opcode bytes at 0x7fe119d7fd1f.
[   63.930096][ T5017] RSP: 002b:00007ffe3145c668 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   63.938506][ T5017] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fe119d7fd49
[   63.946481][ T5017] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   63.954448][ T5017] RBP: 00007fe119e1b390 R08: ffffffffffffffb8 R09: 0000000000000000
[   63.962417][ T5017] R10: 0000000000000022 R11: 0000000000000246 R12: 00007fe119e1b390
[   63.970385][ T5017] R13: 0000000000000000 R14: 00007fe119e1c100 R15: 00007fe119d4e030
[   63.978361][ T5017]  </TASK>
[   63.981664][ T5017] Kernel Offset: disabled
[   63.985986][ T5017] Rebooting in 86400 seconds..