Warning: Permanently added '10.128.0.121' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   67.316398][ T3627] loop0: detected capacity change from 0 to 2048
[   67.336224][ T3627] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[   67.350998][ T3627] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   67.372527][ T3627] ==================================================================
[   67.380643][ T3627] BUG: KASAN: slab-out-of-bounds in udf_write_aext+0x6a7/0x7a0
[   67.388246][ T3627] Write of size 4 at addr ffff888022d79bf8 by task syz-executor109/3627
[   67.396597][ T3627] 
[   67.398936][ T3627] CPU: 1 PID: 3627 Comm: syz-executor109 Not tainted 6.1.20-syzkaller #0
[   67.407356][ T3627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   67.417414][ T3627] Call Trace:
[   67.420700][ T3627]  <TASK>
[   67.423633][ T3627]  dump_stack_lvl+0x1e3/0x2cb
[   67.428330][ T3627]  ? irq_work_queue+0xc6/0x150
[   67.433123][ T3627]  ? nf_tcp_handle_invalid+0x642/0x642
[   67.438628][ T3627]  ? panic+0x75d/0x75d
[   67.442724][ T3627]  ? _printk+0xd1/0x111
[   67.446897][ T3627]  ? _raw_spin_lock_irqsave+0xac/0x120
[   67.452375][ T3627]  print_report+0x15f/0x4f0
[   67.456889][ T3627]  ? __virt_addr_valid+0x22b/0x2e0
[   67.462023][ T3627]  ? __phys_addr+0xb6/0x170
[   67.466543][ T3627]  ? udf_write_aext+0x6a7/0x7a0
[   67.471590][ T3627]  kasan_report+0x136/0x160
[   67.476105][ T3627]  ? udf_write_aext+0x6a7/0x7a0
[   67.480983][ T3627]  udf_write_aext+0x6a7/0x7a0
[   67.485685][ T3627]  udf_add_entry+0x17b7/0x3350
[   67.490462][ T3627]  ? udf_add_nondir+0x5d0/0x5d0
[   67.495312][ T3627]  ? udf_new_inode+0xaf9/0xf10
[   67.500087][ T3627]  ? aa_get_newest_label+0xf9/0x6c0
[   67.505317][ T3627]  ? lockdep_softirqs_off+0x420/0x420
[   67.510719][ T3627]  udf_mkdir+0x1a8/0xaa0
[   67.515056][ T3627]  ? make_kgid+0x6f0/0x6f0
[   67.519497][ T3627]  ? apparmor_capable+0x12e/0x190
[   67.524537][ T3627]  ? bpf_lsm_capable+0x5/0x10
[   67.529238][ T3627]  ? udf_symlink+0x1690/0x1690
[   67.534011][ T3627]  ? privileged_wrt_inode_uidgid+0x210/0x260
[   67.539999][ T3627]  ? inode_permission+0xf7/0x450
[   67.544945][ T3627]  ? bpf_lsm_inode_mkdir+0x5/0x10
[   67.549992][ T3627]  ? security_inode_mkdir+0xb4/0x100
[   67.555314][ T3627]  vfs_mkdir+0x3b6/0x590
[   67.559594][ T3627]  do_mkdirat+0x260/0x520
[   67.563964][ T3627]  ? vfs_mkdir+0x590/0x590
[   67.568409][ T3627]  ? getname_flags+0x1ec/0x4e0
[   67.573175][ T3627]  ? lockdep_hardirqs_on+0x94/0x130
[   67.578380][ T3627]  __x64_sys_mkdir+0x6a/0x80
[   67.582970][ T3627]  do_syscall_64+0x3d/0xb0
[   67.587388][ T3627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   67.593285][ T3627] RIP: 0033:0x7f87cfc78219
[   67.597717][ T3627] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   67.617322][ T3627] RSP: 002b:00007ffccf1d2b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   67.625735][ T3627] RAX: ffffffffffffffda RBX: 00007f87cfced720 RCX: 00007f87cfc78219
[   67.633704][ T3627] RDX: 00007f87cfc36483 RSI: 0000000000000000 RDI: 0000000020000200
[   67.641672][ T3627] RBP: 0000000000000001 R08: 0000000000000c07 R09: 001c00000000000c
[   67.649642][ T3627] R10: 00007ffccf1d2a40 R11: 0000000000000246 R12: 0000000000000004
[   67.657640][ T3627] R13: 0000000000000003 R14: 00007ffccf1d2b97 R15: 00007ffccf1d2b9a
[   67.665660][ T3627]  </TASK>
[   67.668711][ T3627] 
[   67.671067][ T3627] Allocated by task 3341:
[   67.675422][ T3627]  kasan_set_track+0x4b/0x70
[   67.680058][ T3627]  __kasan_kmalloc+0x97/0xb0
[   67.684684][ T3627]  alloc_bprm+0x57/0x700
[   67.688973][ T3627]  do_execveat_common+0x1b3/0x720
[   67.694034][ T3627]  __x64_sys_execve+0x8e/0xa0
[   67.698830][ T3627]  do_syscall_64+0x3d/0xb0
[   67.703278][ T3627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   67.709210][ T3627] 
[   67.711550][ T3627] The buggy address belongs to the object at ffff888022d79800
[   67.711550][ T3627]  which belongs to the cache kmalloc-512 of size 512
[   67.725618][ T3627] The buggy address is located 504 bytes to the right of
[   67.725618][ T3627]  512-byte region [ffff888022d79800, ffff888022d79a00)
[   67.739600][ T3627] 
[   67.741922][ T3627] The buggy address belongs to the physical page:
[   67.748326][ T3627] page:ffffea00008b5e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888022d79800 pfn:0x22d78
[   67.759788][ T3627] head:ffffea00008b5e00 order:2 compound_mapcount:0 compound_pincount:0
[   67.768208][ T3627] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   67.776750][ T3627] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888012441c80
[   67.785361][ T3627] raw: ffff888022d79800 000000008010000f 00000001ffffffff 0000000000000000
[   67.793953][ T3627] page dumped because: kasan: bad access detected
[   67.800379][ T3627] page_owner tracks the page as allocated
[   67.806111][ T3627] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1550, tgid 1550 (kworker/u4:5), ts 10312954671, free_ts 0
[   67.826780][ T3627]  get_page_from_freelist+0x3573/0x3700
[   67.832336][ T3627]  __alloc_pages+0x28d/0x7e0
[   67.836948][ T3627]  alloc_slab_page+0x6a/0x150
[   67.841648][ T3627]  new_slab+0x84/0x2d0
[   67.845730][ T3627]  ___slab_alloc+0xa71/0x1080
[   67.850686][ T3627]  __kmem_cache_alloc_node+0x19f/0x260
[   67.856156][ T3627]  kmalloc_trace+0x26/0x60
[   67.860591][ T3627]  alloc_bprm+0x57/0x700
[   67.864928][ T3627]  kernel_execve+0x92/0xa10
[   67.870795][ T3627]  call_usermodehelper_exec_async+0x22f/0x370
[   67.876906][ T3627]  ret_from_fork+0x1f/0x30
[   67.881331][ T3627] page_owner free stack trace missing
[   67.886698][ T3627] 
[   67.889094][ T3627] Memory state around the buggy address:
[   67.894730][ T3627]  ffff888022d79a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   67.903324][ T3627]  ffff888022d79b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   67.911481][ T3627] >ffff888022d79b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   67.919550][ T3627]                                                                 ^
[   67.927519][ T3627]  ffff888022d79c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.936007][ T3627]  ffff888022d79c80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.944088][ T3627] ==================================================================
[   67.955261][ T3627] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   67.962491][ T3627] CPU: 1 PID: 3627 Comm: syz-executor109 Not tainted 6.1.20-syzkaller #0
[   67.970912][ T3627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   67.980971][ T3627] Call Trace:
[   67.984253][ T3627]  <TASK>
[   67.987201][ T3627]  dump_stack_lvl+0x1e3/0x2cb
[   67.991891][ T3627]  ? nf_tcp_handle_invalid+0x642/0x642
[   67.997362][ T3627]  ? panic+0x75d/0x75d
[   68.001439][ T3627]  ? preempt_schedule_common+0xa6/0xd0
[   68.007078][ T3627]  ? vscnprintf+0x59/0x80
[   68.011428][ T3627]  panic+0x318/0x75d
[   68.015346][ T3627]  ? check_panic_on_warn+0x1d/0xa0
[   68.020466][ T3627]  ? memcpy_page_flushcache+0xfc/0xfc
[   68.025864][ T3627]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   68.031857][ T3627]  ? _raw_spin_unlock+0x40/0x40
[   68.036716][ T3627]  ? print_report+0x4a3/0x4f0
[   68.041404][ T3627]  check_panic_on_warn+0x7e/0xa0
[   68.046352][ T3627]  ? udf_write_aext+0x6a7/0x7a0
[   68.051219][ T3627]  end_report+0xbb/0x170
[   68.055470][ T3627]  kasan_report+0x143/0x160
[   68.059985][ T3627]  ? udf_write_aext+0x6a7/0x7a0
[   68.064845][ T3627]  udf_write_aext+0x6a7/0x7a0
[   68.069542][ T3627]  udf_add_entry+0x17b7/0x3350
[   68.074338][ T3627]  ? udf_add_nondir+0x5d0/0x5d0
[   68.079203][ T3627]  ? udf_new_inode+0xaf9/0xf10
[   68.083974][ T3627]  ? aa_get_newest_label+0xf9/0x6c0
[   68.089181][ T3627]  ? lockdep_softirqs_off+0x420/0x420
[   68.094563][ T3627]  udf_mkdir+0x1a8/0xaa0
[   68.098815][ T3627]  ? make_kgid+0x6f0/0x6f0
[   68.103246][ T3627]  ? apparmor_capable+0x12e/0x190
[   68.108278][ T3627]  ? bpf_lsm_capable+0x5/0x10
[   68.112963][ T3627]  ? udf_symlink+0x1690/0x1690
[   68.117734][ T3627]  ? privileged_wrt_inode_uidgid+0x210/0x260
[   68.123742][ T3627]  ? inode_permission+0xf7/0x450
[   68.128686][ T3627]  ? bpf_lsm_inode_mkdir+0x5/0x10
[   68.133729][ T3627]  ? security_inode_mkdir+0xb4/0x100
[   68.139018][ T3627]  vfs_mkdir+0x3b6/0x590
[   68.143272][ T3627]  do_mkdirat+0x260/0x520
[   68.147610][ T3627]  ? vfs_mkdir+0x590/0x590
[   68.152030][ T3627]  ? getname_flags+0x1ec/0x4e0
[   68.156797][ T3627]  ? lockdep_hardirqs_on+0x94/0x130
[   68.162006][ T3627]  __x64_sys_mkdir+0x6a/0x80
[   68.166604][ T3627]  do_syscall_64+0x3d/0xb0
[   68.171025][ T3627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.176942][ T3627] RIP: 0033:0x7f87cfc78219
[   68.181359][ T3627] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   68.200971][ T3627] RSP: 002b:00007ffccf1d2b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   68.209476][ T3627] RAX: ffffffffffffffda RBX: 00007f87cfced720 RCX: 00007f87cfc78219
[   68.217452][ T3627] RDX: 00007f87cfc36483 RSI: 0000000000000000 RDI: 0000000020000200
[   68.225425][ T3627] RBP: 0000000000000001 R08: 0000000000000c07 R09: 001c00000000000c
[   68.233405][ T3627] R10: 00007ffccf1d2a40 R11: 0000000000000246 R12: 0000000000000004
[   68.243027][ T3627] R13: 0000000000000003 R14: 00007ffccf1d2b97 R15: 00007ffccf1d2b9a
[   68.251010][ T3627]  </TASK>
[   68.254206][ T3627] Kernel Offset: disabled
[   68.258539][ T3627] Rebooting in 86400 seconds..