UDF-fs: error (device loop0): udf_read_inode: (ino 1408) failed !bh
UDF-fs: error (device loop0): udf_fill_super: Error in udf_iget, block=96, partition=0
==================================================================
BUG: KASAN: slab-out-of-bounds in udf_close_lvid+0x47c/0x590 fs/udf/super.c:2068
Write of size 1 at addr ffff8880399b6f80 by task syz-executor316/15725

CPU: 1 PID: 15725 Comm: syz-executor316 Not tainted 5.14.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x57/0x7d lib/dump_stack.c:105
 print_address_description.constprop.0.cold+0x6c/0x309 mm/kasan/report.c:233
 __kasan_report mm/kasan/report.c:419 [inline]
 kasan_report.cold+0x83/0xdf mm/kasan/report.c:436
 udf_close_lvid+0x47c/0x590 fs/udf/super.c:2068
 udf_fill_super.cold+0x8f/0x15d fs/udf/super.c:2321
 mount_bdev+0x2cb/0x3b0 fs/super.c:1368
 legacy_get_tree+0xfa/0x1f0 fs/fs_context.c:610
 vfs_get_tree+0x7f/0x2c0 fs/super.c:1498
 do_new_mount fs/namespace.c:2905 [inline]
 path_mount+0x41e/0x1a30 fs/namespace.c:3235
 do_mount fs/namespace.c:3248 [inline]
 __do_sys_mount fs/namespace.c:3456 [inline]
 __se_sys_mount fs/namespace.c:3433 [inline]
 __x64_sys_mount+0x1f5/0x260 fs/namespace.c:3433
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0x80 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7fc19bc8507a
Code: 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fc19bc30168 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007fc19bc301c0 RCX: 00007fc19bc8507a
RDX: 0000000020000000 RSI: 0000000020000700 RDI: 00007fc19bc30180
RBP: 000000000000000e R08: 00007fc19bc301c0 R09: 00007fc19bc306b8
R10: 0000000000000810 R11: 0000000000000286 R12: 00007fc19bc30180
R13: 0000000020000350 R14: 0000000000000003 R15: 0000000000000004

Allocated by task 5782:
 kasan_save_stack+0x1b/0x40 mm/kasan/common.c:38
 kasan_set_track mm/kasan/common.c:46 [inline]
 set_alloc_info mm/kasan/common.c:434 [inline]
 __kasan_slab_alloc+0x84/0xa0 mm/kasan/common.c:467
 kasan_slab_alloc include/linux/kasan.h:254 [inline]
 slab_post_alloc_hook mm/slab.h:519 [inline]
 slab_alloc_node mm/slub.c:2956 [inline]
 slab_alloc mm/slub.c:2964 [inline]
 kmem_cache_alloc+0x285/0x4a0 mm/slub.c:2969
 kmem_cache_zalloc include/linux/slab.h:711 [inline]
 __kernfs_new_node+0xc7/0x7b0 fs/kernfs/dir.c:583
 kernfs_new_node fs/kernfs/dir.c:645 [inline]
 kernfs_create_dir_ns+0x80/0x220 fs/kernfs/dir.c:982
 sysfs_create_dir_ns+0x116/0x260 fs/sysfs/dir.c:59
 create_dir lib/kobject.c:89 [inline]
 kobject_add_internal+0x279/0x900 lib/kobject.c:255
 kobject_add_varg lib/kobject.c:390 [inline]
 kobject_init_and_add+0xdb/0x130 lib/kobject.c:473
 netdev_queue_add_kobject net/core/net-sysfs.c:1610 [inline]
 netdev_queue_update_kobjects+0x13c/0x380 net/core/net-sysfs.c:1655
 register_queue_kobjects net/core/net-sysfs.c:1716 [inline]
 netdev_register_kobject+0x301/0x3c0 net/core/net-sysfs.c:1959
 register_netdevice+0xa91/0x1240 net/core/dev.c:10349
 macvlan_common_newlink+0x117c/0x1700 drivers/net/macvlan.c:1496
 macvtap_newlink drivers/net/macvtap.c:109 [inline]
 macvtap_newlink+0x16e/0x250 drivers/net/macvtap.c:81
 __rtnl_newlink+0xcc8/0x1380 net/core/rtnetlink.c:3460
 rtnl_newlink+0x5a/0x90 net/core/rtnetlink.c:3508
 rtnetlink_rcv_msg+0x31d/0x8d0 net/core/rtnetlink.c:5574
 netlink_rcv_skb+0x118/0x340 net/netlink/af_netlink.c:2504
 netlink_unicast_kernel net/netlink/af_netlink.c:1314 [inline]
 netlink_unicast+0x42e/0x700 net/netlink/af_netlink.c:1340
 netlink_sendmsg+0x704/0xbf0 net/netlink/af_netlink.c:1929
 sock_sendmsg_nosec net/socket.c:703 [inline]
 sock_sendmsg+0xab/0xe0 net/socket.c:723
 __sys_sendto+0x1a4/0x270 net/socket.c:2019
 __do_sys_sendto net/socket.c:2031 [inline]
 __se_sys_sendto net/socket.c:2027 [inline]
 __x64_sys_sendto+0xd8/0x1b0 net/socket.c:2027
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0x80 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

The buggy address belongs to the object at ffff8880399b6e80
 which belongs to the cache kernfs_node_cache of size 168
The buggy address is located 88 bytes to the right of
 168-byte region [ffff8880399b6e80, ffff8880399b6f28)
The buggy address belongs to the page:
page:ffffea0000e66d80 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x399b6
flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
raw: 00fff00000000200 0000000000000000 dead000000000122 ffff88800f9c4b40
raw: 0000000000000000 0000000000110011 00000001ffffffff 0000000000000000
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 5782, ts 63309065875, free_ts 0
 prep_new_page mm/page_alloc.c:2436 [inline]
 get_page_from_freelist+0xa6f/0x2f50 mm/page_alloc.c:4169
 __alloc_pages+0x1b2/0x500 mm/page_alloc.c:5391
 alloc_slab_page mm/slub.c:1688 [inline]
 allocate_slab+0x32e/0x4b0 mm/slub.c:1828
 new_slab mm/slub.c:1891 [inline]
 new_slab_objects mm/slub.c:2637 [inline]
 ___slab_alloc+0x4ba/0x820 mm/slub.c:2800
 __slab_alloc.constprop.0+0xa7/0xf0 mm/slub.c:2840
 slab_alloc_node mm/slub.c:2922 [inline]
 slab_alloc mm/slub.c:2964 [inline]
 kmem_cache_alloc+0x3e1/0x4a0 mm/slub.c:2969
 kmem_cache_zalloc include/linux/slab.h:711 [inline]
 __kernfs_new_node+0xc7/0x7b0 fs/kernfs/dir.c:583
 kernfs_new_node+0x73/0x110 fs/kernfs/dir.c:645
 __kernfs_create_file+0x27/0x2e0 fs/kernfs/file.c:985
 sysfs_add_file_mode_ns+0x1ae/0x4f0 fs/sysfs/file.c:317
 create_files fs/sysfs/group.c:64 [inline]
 internal_create_group+0x262/0x9a0 fs/sysfs/group.c:149
 internal_create_groups.part.0+0x77/0x100 fs/sysfs/group.c:189
 device_add_groups drivers/base/core.c:2435 [inline]
 device_add_attrs drivers/base/core.c:2594 [inline]
 device_add+0x119f/0x1e00 drivers/base/core.c:3305
 netdev_register_kobject+0x166/0x3c0 net/core/net-sysfs.c:1955
 register_netdevice+0xa91/0x1240 net/core/dev.c:10349
 macvlan_common_newlink+0x117c/0x1700 drivers/net/macvlan.c:1496
page_owner free stack trace missing

Memory state around the buggy address:
 ffff8880399b6e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 ffff8880399b6f00: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc
>ffff8880399b6f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
                   ^
 ffff8880399b7000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 ffff8880399b7080: 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00
==================================================================