Warning: Permanently added '10.128.1.171' (ED25519) to the list of known hosts. 2025/02/06 05:46:56 ignoring optional flag "sandboxArg"="0" 2025/02/06 05:46:57 parsed 1 programs [ 71.630555][ T2128] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2025/02/06 05:47:05 executed programs: 0 2025/02/06 05:47:11 executed programs: 2 [ 85.121862][ T3040] loop3: detected capacity change from 0 to 4096 [ 85.130596][ T3040] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 85.191539][ T3040] loop3: detected capacity change from 4096 to 0 [ 85.199749][ T3040] ================================================================== [ 85.209324][ T3040] BUG: KASAN: slab-out-of-bounds in ntfs_sb_write+0x211/0x360 [ 85.217097][ T3040] Read of size 3504 at addr ffff888018cbae00 by task syz.3.15/3040 [ 85.225151][ T3040] [ 85.227494][ T3040] CPU: 0 PID: 3040 Comm: syz.3.15 Not tainted 6.1.128-syzkaller #0 [ 85.235518][ T3040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 85.245751][ T3040] Call Trace: [ 85.249043][ T3040] [ 85.252019][ T3040] dump_stack_lvl+0xf4/0x251 [ 85.257004][ T3040] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 85.263338][ T3040] ? panic+0x3fe/0x3fe [ 85.267499][ T3040] ? lock_acquire+0xbe/0x390 [ 85.272121][ T3040] ? read_lock_is_recursive+0x10/0x10 [ 85.277736][ T3040] ? __virt_addr_valid+0x139/0x270 [ 85.283026][ T3040] ? __virt_addr_valid+0x221/0x270 [ 85.288160][ T3040] print_report+0x15f/0x4f0 [ 85.292937][ T3040] ? __virt_addr_valid+0x139/0x270 [ 85.298155][ T3040] ? __virt_addr_valid+0x221/0x270 [ 85.303374][ T3040] ? ntfs_sb_write+0x211/0x360 [ 85.308339][ T3040] kasan_report+0x136/0x160 [ 85.312845][ T3040] ? ntfs_sb_write+0x211/0x360 [ 85.317704][ T3040] kasan_check_range+0x27f/0x290 [ 85.322741][ T3040] ? ntfs_sb_write+0x211/0x360 [ 85.327513][ T3040] memcpy+0x25/0x60 [ 85.331419][ T3040] ntfs_sb_write+0x211/0x360 [ 85.336010][ T3040] ntfs_sb_write_run+0x24c/0x620 [ 85.341097][ T3040] ? ntfs_sb_write+0x360/0x360 [ 85.345864][ T3040] ? ntfs_set_ea+0x545/0x13a0 [ 85.350744][ T3040] ? rcu_is_watching+0x1b/0x90 [ 85.355707][ T3040] ? ntfs_set_ea+0x545/0x13a0 [ 85.360714][ T3040] ntfs_set_ea+0xc9c/0x13a0 [ 85.365476][ T3040] ? ntfs_save_wsl_perm+0x480/0x480 [ 85.371219][ T3040] ? make_kuid+0x6d0/0x6d0 [ 85.375722][ T3040] ? tomoyo_path_number_perm+0x54d/0x6a0 [ 85.381500][ T3040] ntfs_save_wsl_perm+0x128/0x480 [ 85.386644][ T3040] ? current_time+0x82/0x240 [ 85.391250][ T3040] ? ntfs_listxattr+0x5d0/0x5d0 [ 85.396098][ T3040] ? in_group_or_capable+0x10/0x30 [ 85.401580][ T3040] ? setattr_copy+0x313/0x510 [ 85.406527][ T3040] ntfs3_setattr+0x295/0x910 [ 85.411125][ T3040] ? current_time+0x82/0x240 [ 85.415717][ T3040] ? PageUptodate+0x180/0x180 [ 85.420586][ T3040] ? common_perm_cond+0x2cf/0x390 [ 85.425600][ T3040] ? common_perm+0x1a0/0x1a0 [ 85.430200][ T3040] notify_change+0x937/0xc40 [ 85.434878][ T3040] chmod_common+0x2b2/0x4d0 [ 85.440101][ T3040] ? __ia32_sys_chroot+0x30/0x30 [ 85.445288][ T3040] ? kmem_cache_free+0x2e8/0x510 [ 85.450211][ T3040] __x64_sys_fchmodat+0x109/0x180 [ 85.455221][ T3040] ? __ia32_sys_fchmod+0x100/0x100 [ 85.460312][ T3040] ? switch_fpu_return+0xc9/0x130 [ 85.465423][ T3040] do_syscall_64+0x3b/0x80 [ 85.469842][ T3040] ? clear_bhb_loop+0x45/0xa0 [ 85.474507][ T3040] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.480426][ T3040] RIP: 0033:0x7f437897e719 [ 85.484823][ T3040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.504694][ T3040] RSP: 002b:00007f43797a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000010c [ 85.513093][ T3040] RAX: ffffffffffffffda RBX: 00007f4378b35f80 RCX: 00007f437897e719 [ 85.521145][ T3040] RDX: 0000000000000141 RSI: 0000000020000200 RDI: ffffffffffffff9c [ 85.529169][ T3040] RBP: 00007f43789f175e R08: 0000000000000000 R09: 0000000000000000 [ 85.537236][ T3040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.545561][ T3040] R13: 0000000000000000 R14: 00007f4378b35f80 R15: 00007ffe3350afb8 [ 85.553751][ T3040] [ 85.556992][ T3040] [ 85.559413][ T3040] Allocated by task 3040: [ 85.564043][ T3040] kasan_set_track+0x4b/0x70 [ 85.568824][ T3040] __kasan_kmalloc+0x97/0xb0 [ 85.573415][ T3040] __kmalloc+0xa6/0x1c0 [ 85.577734][ T3040] ntfs_set_ea+0x545/0x13a0 [ 85.582406][ T3040] ntfs_save_wsl_perm+0x128/0x480 [ 85.588090][ T3040] ntfs3_setattr+0x295/0x910 [ 85.593475][ T3040] notify_change+0x937/0xc40 [ 85.598175][ T3040] chmod_common+0x2b2/0x4d0 [ 85.602955][ T3040] __x64_sys_fchmodat+0x109/0x180 [ 85.608099][ T3040] do_syscall_64+0x3b/0x80 [ 85.612865][ T3040] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.619048][ T3040] [ 85.621610][ T3040] The buggy address belongs to the object at ffff888018cbae00 [ 85.621610][ T3040] which belongs to the cache kmalloc-32 of size 32 [ 85.635570][ T3040] The buggy address is located 0 bytes inside of [ 85.635570][ T3040] 32-byte region [ffff888018cbae00, ffff888018cbae20) [ 85.648671][ T3040] [ 85.651121][ T3040] The buggy address belongs to the physical page: [ 85.657534][ T3040] page:ffffea0000632e80 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888018cbaa40 pfn:0x18cba [ 85.669484][ T3040] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff) [ 85.677046][ T3040] raw: 00fff00000000200 0000000000000000 dead000000000001 ffff88800c841500 [ 85.685628][ T3040] raw: ffff888018cbaa40 000000008040003c 00000001ffffffff 0000000000000000 [ 85.694599][ T3040] page dumped because: kasan: bad access detected [ 85.701073][ T3040] page_owner tracks the page as allocated [ 85.707068][ T3040] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY), pid 1082, tgid 1082 (modprobe), ts 11326931388, free_ts 11318576147 [ 85.724946][ T3040] post_alloc_hook+0x286/0x2b0 [ 85.729706][ T3040] get_page_from_freelist+0x340b/0x35b0 [ 85.735250][ T3040] __alloc_pages+0x251/0x640 [ 85.739820][ T3040] alloc_slab_page+0x6a/0x150 [ 85.744477][ T3040] new_slab+0x70/0x250 [ 85.748975][ T3040] ___slab_alloc+0x9df/0xe70 [ 85.753574][ T3040] __kmem_cache_alloc_node+0x195/0x250 [ 85.759029][ T3040] __kmalloc+0x95/0x1c0 [ 85.763351][ T3040] tomoyo_encode+0xa6/0x480 [ 85.767947][ T3040] tomoyo_realpath_from_path+0x4a2/0x4e0 [ 85.773600][ T3040] tomoyo_path_perm+0x27b/0x890 [ 85.778566][ T3040] security_inode_getattr+0x7b/0xe0 [ 85.783841][ T3040] vfs_statx+0x138/0x5e0 [ 85.788334][ T3040] __se_sys_newfstatat+0xfe/0x790 [ 85.793347][ T3040] do_syscall_64+0x3b/0x80 [ 85.798034][ T3040] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.803972][ T3040] page last free stack trace: [ 85.808714][ T3040] free_unref_page_prepare+0x10b7/0x13b0 [ 85.814352][ T3040] free_unref_page_list+0x54b/0x7e0 [ 85.819707][ T3040] release_pages+0x1c13/0x1dc0 [ 85.824487][ T3040] tlb_flush_mmu+0xe5/0x1d0 [ 85.829008][ T3040] tlb_finish_mmu+0xb0/0x1b0 [ 85.833612][ T3040] exit_mmap+0x330/0x6f0 [ 85.837976][ T3040] __mmput+0x9b/0x2e0 [ 85.842002][ T3040] exit_mm+0x122/0x1b0 [ 85.846072][ T3040] do_exit+0x819/0x23a0 [ 85.850253][ T3040] do_group_exit+0x1b5/0x280 [ 85.855029][ T3040] __x64_sys_exit_group+0x3b/0x40 [ 85.860225][ T3040] do_syscall_64+0x3b/0x80 [ 85.864746][ T3040] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.870741][ T3040] [ 85.873061][ T3040] Memory state around the buggy address: [ 85.878775][ T3040] ffff888018cbad00: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc [ 85.886968][ T3040] ffff888018cbad80: fa fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc [ 85.895121][ T3040] >ffff888018cbae00: 00 00 04 fc fc fc fc fc fb fb fb fb fc fc fc fc [ 85.903277][ T3040] ^ [ 85.907861][ T3040] ffff888018cbae80: fb fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc [ 85.915935][ T3040] ffff888018cbaf00: fa fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc [ 85.924252][ T3040] ================================================================== [ 85.933553][ T3040] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 85.941100][ T3040] Kernel Offset: disabled [ 85.945499][ T3040] Rebooting in 86400 seconds..