program:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000c80)='./file0\x00', 0x0, &(0x7f0000001a40)=ANY=[@ANYBLOB="009917593d44d685cf8176521846a9e90205b4b89c0ed49b3e1201fa4a79b0b9651316a89d7e4038e94e54fdffa25c529d1cb4e43bf7e12bd2a555681300b85d6621470c304d6ba5731161f3f1da1193a85525e8c9a5a95798070ca48fa7edcf62e37626480f673141bee1ea2522f8b61aac12f984c1216683ae80e6146169cfb7aa7c50dd4c52259faaee2fedc1077bda4c3e65d7005d0ab71db65617abeb3c51b056d955f1285ed9d26d7c910bf3291f6b349ce7eee33a31a484c31993effe39fcfa55e722a20bf90b2f43ffbfd19afaeb1d6e9683ce09f4c8eb9591f0772a12"], 0x1, 0xc3c, &(0x7f0000000d00)="$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")
getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000180)={'nat\x00', 0x0, [0x0, 0x7, 0x4, 0x400, 0x9]}, &(0x7f0000000000)=0x54)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x0, 0x4d, 0x12, &(0x7f0000000240)="efea80545a57a55a947d76443c35e01d4abaf051e9bea9e9eb5277a55d1f3ec0ad3a4a6ea8e62142e5b774eacd100abe05f21a1df3df6c88764e296a0db05a408a147958f25311db138e07f6ef", &(0x7f0000000080)=""/18, 0x8, 0x0, 0xb3, 0xea, &(0x7f0000000300)="eef3d350d3c136a1b0785dc5ff3f10c7e4c261b99358cf74d9a489c9156cf40a696d01070d6095b8e8183794e419462474d84db94a91d35a7b672245f33f62769d31801437c8d956555b769ccee010293723eef7d04584ea94c53b59f0ef58252e70dadb1be2017e838481713f480416a514bff1dcc8931ccaa69613071d4589f1e92677fd10bc3ad373937ecdd36e8bb983310e672df7db57f5c1452b9bffe6aeacecd12f3d0b06819314c79c5f070c786c9f", &(0x7f00000003c0)="38c93419e26e6da7ed7b4232308dbbbb0d408cede16e9ca0cae838a31f46f8731bb0194b908d971621f4cbc896f6ea8874cbcb0e8f281ba5536559a36aaa48db941e313720483c9a63d8f94eb9c610e17d47e7176577b9f2248eff78635237016d64bc3646975140a646069e36726cb64b3e6ba41736d3be0b9b0c3a26289e39fec8a66da5c265c2b4b34ef0ff726affa81a74f3db17aecd7f6af68b9454ee7e424ff376427bede8c6d8906ccb994cb5f1a5a263ddbbc260dfa4c922f8a002a55142ff5a26978bb85aaab713c8cdf656d401abe1e616fdc7ccc455dcf1cc88a045f32ec1e02aea01f914", 0x4, 0x0, 0x4}, 0x50)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
pwritev2(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="df", 0xf4240}], 0x1, 0x800001, 0x0, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x3, 0x5, 0x12, 0x11, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc1d8a6078ed98e203fd5f06439ffffffffac274de9d940bba5e51e92bbd4ce85450d", "1525c1076e4c7e985d865c2f0800000000229800be5a00", [0x3, 0x7]})
prctl$PR_SET_UNALIGN(0x6, 0x1)
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
[ 58.684637][ T5326] loop0: detected capacity change from 0 to 2048
[ 58.706641][ T5326] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[ 58.720510][ T5326] UDF-fs: Scanning with blocksize 512 failed
[ 58.740790][ T5326] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 58.818949][ T5326] loop0: detected capacity change from 2048 to 2047
[ 58.872318][ T5326] ==================================================================
[ 58.875535][ T5326] BUG: KASAN: use-after-free in crc_itu_t+0x1d5/0x2b0
[ 58.878272][ T5326] Read of size 1 at addr ffff88804d615000 by task syz.0.0/5326
[ 58.881090][ T5326]
[ 58.882125][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.14.0-rc7-syzkaller #0
[ 58.882142][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 58.882150][ T5326] Call Trace:
[ 58.882159][ T5326]
[ 58.882165][ T5326] dump_stack_lvl+0x241/0x360
[ 58.882186][ T5326] ? __pfx_dump_stack_lvl+0x10/0x10
[ 58.882200][ T5326] ? __pfx__printk+0x10/0x10
[ 58.882211][ T5326] ? _printk+0xd5/0x120
[ 58.882222][ T5326] ? __virt_addr_valid+0x183/0x530
[ 58.882234][ T5326] ? __virt_addr_valid+0x183/0x530
[ 58.882245][ T5326] print_report+0x16e/0x5b0
[ 58.882258][ T5326] ? __virt_addr_valid+0x183/0x530
[ 58.882267][ T5326] ? __virt_addr_valid+0x183/0x530
[ 58.882277][ T5326] ? __virt_addr_valid+0x45f/0x530
[ 58.882286][ T5326] ? __phys_addr+0xba/0x170
[ 58.882295][ T5326] ? crc_itu_t+0x1d5/0x2b0
[ 58.882317][ T5326] kasan_report+0x143/0x180
[ 58.882331][ T5326] ? crc_itu_t+0x1d5/0x2b0
[ 58.882348][ T5326] crc_itu_t+0x1d5/0x2b0
[ 58.882366][ T5326] udf_update_tag+0x70/0x6a0
[ 58.882380][ T5326] ? __mark_inode_dirty+0x3db/0xe90
[ 58.882397][ T5326] udf_write_aext+0x4d8/0x7b0
[ 58.882410][ T5326] extent_trunc+0x2f7/0x4a0
[ 58.882424][ T5326] ? __pfx_extent_trunc+0x10/0x10
[ 58.882437][ T5326] ? udf_current_aext+0x519/0xad0
[ 58.882449][ T5326] udf_truncate_extents+0x6ed/0x1310
[ 58.882465][ T5326] ? __pfx_udf_truncate_extents+0x10/0x10
[ 58.882487][ T5326] ? __pfx_lock_release+0x10/0x10
[ 58.882502][ T5326] ? do_raw_spin_lock+0x14f/0x370
[ 58.882517][ T5326] ? do_raw_spin_unlock+0x58/0x8b0
[ 58.882534][ T5326] udf_setsize+0xaeb/0x1490
[ 58.882554][ T5326] ? __pfx_udf_setsize+0x10/0x10
[ 58.882573][ T5326] ? evict+0x4b8/0x9a0
[ 58.882583][ T5326] ? inode_wait_for_writeback+0x111/0x2a0
[ 58.882598][ T5326] ? __pfx_lock_release+0x10/0x10
[ 58.882616][ T5326] udf_evict_inode+0x7d/0x3e0
[ 58.882630][ T5326] ? evict+0x4df/0x9a0
[ 58.882640][ T5326] ? __pfx_udf_evict_inode+0x10/0x10
[ 58.882656][ T5326] evict+0x4e8/0x9a0
[ 58.882668][ T5326] ? __pfx_evict+0x10/0x10
[ 58.882679][ T5326] ? iput+0x713/0xa50
[ 58.882695][ T5326] __dentry_kill+0x20d/0x630
[ 58.882711][ T5326] ? dput+0x37/0x2b0
[ 58.882724][ T5326] dput+0x19f/0x2b0
[ 58.882739][ T5326] __fput+0x60b/0x9f0
[ 58.882755][ T5326] task_work_run+0x24f/0x310
[ 58.882768][ T5326] ? _raw_spin_unlock+0x28/0x50
[ 58.882828][ T5326] ? __pfx_task_work_run+0x10/0x10
[ 58.882840][ T5326] ? syscall_exit_to_user_mode+0xa3/0x340
[ 58.882859][ T5326] syscall_exit_to_user_mode+0x13f/0x340
[ 58.882879][ T5326] do_syscall_64+0x100/0x230
[ 58.882899][ T5326] ? clear_bhb_loop+0x35/0x90
[ 58.882917][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 58.882931][ T5326] RIP: 0033:0x7f34e0f8d169
[ 58.882944][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 58.882953][ T5326] RSP: 002b:00007f34e1d90038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 58.882967][ T5326] RAX: 0000000000000000 RBX: 00007f34e11a5fa0 RCX: 00007f34e0f8d169
[ 58.882975][ T5326] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003
[ 58.882983][ T5326] RBP: 00007f34e100e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 58.882991][ T5326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 58.882998][ T5326] R13: 0000000000000000 R14: 00007f34e11a5fa0 R15: 00007fff2e45b418
[ 58.883009][ T5326]
[ 58.883015][ T5326]
[ 59.015973][ T5326] The buggy address belongs to the physical page:
[ 59.018452][ T5326] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x8000 pfn:0x4d615
[ 59.021869][ T5326] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 59.024585][ T5326] raw: 04fff00000000000 ffffea000135fb88 ffff88801fc44bb0 0000000000000000
[ 59.027931][ T5326] raw: 0000000000008000 0000000000000000 00000000ffffffff 0000000000000000
[ 59.031219][ T5326] page dumped because: kasan: bad access detected
[ 59.033580][ T5326] page_owner tracks the page as freed
[ 59.035609][ T5326] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 5326, tgid 5325 (syz.0.0), ts 58751673343, free_ts 58872136062
[ 59.042145][ T5326] post_alloc_hook+0x1f4/0x240
[ 59.043839][ T5326] get_page_from_freelist+0x365c/0x37a0
[ 59.045723][ T5326] __alloc_frozen_pages_noprof+0x292/0x710
[ 59.047468][ T5326] alloc_pages_mpol+0x311/0x660
[ 59.049091][ T5326] alloc_pages_noprof+0x121/0x190
[ 59.050729][ T5326] folio_alloc_noprof+0x1e/0x30
[ 59.052635][ T5326] filemap_alloc_folio_noprof+0xe1/0x540
[ 59.054826][ T5326] __filemap_get_folio+0x438/0xae0
[ 59.056995][ T5326] block_write_begin+0x66/0x120
[ 59.058921][ T5326] udf_write_begin+0xfc/0x250
[ 59.060800][ T5326] generic_perform_write+0x346/0x990
[ 59.062781][ T5326] udf_file_write_iter+0x2e7/0x6c0
[ 59.064780][ T5326] vfs_write+0xacf/0xd10
[ 59.066479][ T5326] __x64_sys_pwrite64+0x1ac/0x240
[ 59.068411][ T5326] do_syscall_64+0xf3/0x230
[ 59.070154][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.072364][ T5326] page last free pid 5326 tgid 5325 stack trace:
[ 59.074768][ T5326] free_unref_folios+0xe40/0x18b0
[ 59.076646][ T5326] folios_put_refs+0x76c/0x860
[ 59.078499][ T5326] truncate_inode_pages_range+0x460/0x10e0
[ 59.080748][ T5326] truncate_setsize+0xcf/0xf0
[ 59.082600][ T5326] udf_setsize+0x6ba/0x1490
[ 59.084380][ T5326] udf_evict_inode+0x7d/0x3e0
[ 59.086107][ T5326] evict+0x4e8/0x9a0
[ 59.087573][ T5326] __dentry_kill+0x20d/0x630
[ 59.089315][ T5326] dput+0x19f/0x2b0
[ 59.090779][ T5326] __fput+0x60b/0x9f0
[ 59.092318][ T5326] task_work_run+0x24f/0x310
[ 59.094224][ T5326] syscall_exit_to_user_mode+0x13f/0x340
[ 59.096294][ T5326] do_syscall_64+0x100/0x230
[ 59.098102][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.100364][ T5326]
[ 59.101249][ T5326] Memory state around the buggy address:
[ 59.103365][ T5326] ffff88804d614f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 59.106307][ T5326] ffff88804d614f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 59.109253][ T5326] >ffff88804d615000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 59.112387][ T5326] ^
[ 59.114045][ T5326] ffff88804d615080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 59.117062][ T5326] ffff88804d615100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 59.120107][ T5326] ==================================================================
[ 59.128911][ T4667] Bluetooth: hci0: command tx timeout
[ 59.140415][ T5326] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 59.143148][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.14.0-rc7-syzkaller #0
[ 59.146423][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 59.150414][ T5326] Call Trace:
[ 59.151733][ T5326]
[ 59.152916][ T5326] dump_stack_lvl+0x241/0x360
[ 59.154781][ T5326] ? __pfx_dump_stack_lvl+0x10/0x10
[ 59.156879][ T5326] ? __pfx__printk+0x10/0x10
[ 59.158706][ T5326] ? preempt_schedule+0xe1/0xf0
[ 59.160630][ T5326] ? vscnprintf+0x5d/0x90
[ 59.162338][ T5326] panic+0x349/0x880
[ 59.163929][ T5326] ? check_panic_on_warn+0x21/0xb0
[ 59.165934][ T5326] ? __pfx_panic+0x10/0x10
[ 59.167733][ T5326] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 59.169998][ T5326] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 59.171961][ T5326] ? print_report+0x519/0x5b0
[ 59.177114][ T5326] check_panic_on_warn+0x86/0xb0
[ 59.179277][ T5326] ? crc_itu_t+0x1d5/0x2b0
[ 59.181105][ T5326] end_report+0x77/0x160
[ 59.182876][ T5326] kasan_report+0x154/0x180
[ 59.184787][ T5326] ? crc_itu_t+0x1d5/0x2b0
[ 59.186650][ T5326] crc_itu_t+0x1d5/0x2b0
[ 59.188435][ T5326] udf_update_tag+0x70/0x6a0
[ 59.190357][ T5326] ? __mark_inode_dirty+0x3db/0xe90
[ 59.192448][ T5326] udf_write_aext+0x4d8/0x7b0
[ 59.194295][ T5326] extent_trunc+0x2f7/0x4a0
[ 59.196098][ T5326] ? __pfx_extent_trunc+0x10/0x10
[ 59.198122][ T5326] ? udf_current_aext+0x519/0xad0
[ 59.200046][ T5326] udf_truncate_extents+0x6ed/0x1310
[ 59.202207][ T5326] ? __pfx_udf_truncate_extents+0x10/0x10
[ 59.204519][ T5326] ? __pfx_lock_release+0x10/0x10
[ 59.206580][ T5326] ? do_raw_spin_lock+0x14f/0x370
[ 59.208594][ T5326] ? do_raw_spin_unlock+0x58/0x8b0
[ 59.210685][ T5326] udf_setsize+0xaeb/0x1490
[ 59.212539][ T5326] ? __pfx_udf_setsize+0x10/0x10
[ 59.214523][ T5326] ? evict+0x4b8/0x9a0
[ 59.216219][ T5326] ? inode_wait_for_writeback+0x111/0x2a0
[ 59.218555][ T5326] ? __pfx_lock_release+0x10/0x10
[ 59.220546][ T5326] udf_evict_inode+0x7d/0x3e0
[ 59.222483][ T5326] ? evict+0x4df/0x9a0
[ 59.224075][ T5326] ? __pfx_udf_evict_inode+0x10/0x10
[ 59.226078][ T5326] evict+0x4e8/0x9a0
[ 59.227658][ T5326] ? __pfx_evict+0x10/0x10
[ 59.229475][ T5326] ? iput+0x713/0xa50
[ 59.231072][ T5326] __dentry_kill+0x20d/0x630
[ 59.232921][ T5326] ? dput+0x37/0x2b0
[ 59.234506][ T5326] dput+0x19f/0x2b0
[ 59.235988][ T5326] __fput+0x60b/0x9f0
[ 59.237585][ T5326] task_work_run+0x24f/0x310
[ 59.239435][ T5326] ? _raw_spin_unlock+0x28/0x50
[ 59.241371][ T5326] ? __pfx_task_work_run+0x10/0x10
[ 59.243380][ T5326] ? syscall_exit_to_user_mode+0xa3/0x340
[ 59.245630][ T5326] syscall_exit_to_user_mode+0x13f/0x340
[ 59.247877][ T5326] do_syscall_64+0x100/0x230
[ 59.249735][ T5326] ? clear_bhb_loop+0x35/0x90
[ 59.251609][ T5326] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.253953][ T5326] RIP: 0033:0x7f34e0f8d169
[ 59.255718][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 59.263241][ T5326] RSP: 002b:00007f34e1d90038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 59.266592][ T5326] RAX: 0000000000000000 RBX: 00007f34e11a5fa0 RCX: 00007f34e0f8d169
[ 59.269726][ T5326] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003
[ 59.272895][ T5326] RBP: 00007f34e100e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 59.275975][ T5326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 59.279082][ T5326] R13: 0000000000000000 R14: 00007f34e11a5fa0 R15: 00007fff2e45b418
[ 59.282014][ T5326]
[ 59.284133][ T5326] Kernel Offset: disabled
[ 59.285769][ T5326] Rebooting in 86400 seconds..