Warning: Permanently added '10.128.0.164' (ED25519) to the list of known hosts.
executing program
[ 45.942001][ T3499] loop0: detected capacity change from 0 to 1024
[ 46.053572][ T3499] ==================================================================
[ 46.061791][ T3499] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0xc7/0x1c0
[ 46.069621][ T3499] Write of size 4026 at addr ffff88801e25a800 by task syz-executor126/3499
[ 46.078210][ T3499]
[ 46.080554][ T3499] CPU: 0 PID: 3499 Comm: syz-executor126 Not tainted 5.15.161-syzkaller #0
[ 46.089146][ T3499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 46.099200][ T3499] Call Trace:
[ 46.102484][ T3499]
[ 46.105401][ T3499] dump_stack_lvl+0x1e3/0x2d0
[ 46.110072][ T3499] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 46.115792][ T3499] ? _printk+0xd1/0x120
[ 46.119928][ T3499] ? __wake_up_klogd+0xcc/0x100
[ 46.124758][ T3499] ? panic+0x860/0x860
[ 46.128812][ T3499] ? _raw_spin_lock_irqsave+0xdd/0x120
[ 46.134284][ T3499] print_address_description+0x63/0x3b0
[ 46.139829][ T3499] ? hfsplus_bnode_read+0xc7/0x1c0
[ 46.144928][ T3499] kasan_report+0x16b/0x1c0
[ 46.149409][ T3499] ? hfsplus_bnode_read+0xc7/0x1c0
[ 46.154587][ T3499] kasan_check_range+0x27e/0x290
[ 46.159500][ T3499] ? hfsplus_bnode_read+0xc7/0x1c0
[ 46.164586][ T3499] memcpy+0x3c/0x60
[ 46.168372][ T3499] hfsplus_bnode_read+0xc7/0x1c0
[ 46.173370][ T3499] hfsplus_bnode_read_key+0x18c/0x2a0
[ 46.178721][ T3499] ? hfsplus_bnode_read_u8+0x110/0x110
[ 46.184329][ T3499] ? hfsplus_bnode_write+0x1ce/0x200
[ 46.189591][ T3499] hfsplus_brec_insert+0x6e6/0xdd0
[ 46.194688][ T3499] ? hfsplus_brec_keylen+0x310/0x310
[ 46.199961][ T3499] ? hfsplus_create_attr+0x45a/0x630
[ 46.205246][ T3499] hfsplus_create_attr+0x49a/0x630
[ 46.210346][ T3499] ? hfsplus_attr_exists+0x1c0/0x1c0
[ 46.215725][ T3499] ? mutex_lock_nested+0x17/0x20
[ 46.220647][ T3499] ? hfsplus_find_init+0x146/0x1c0
[ 46.225866][ T3499] __hfsplus_setxattr+0x6ed/0x22c0
[ 46.230983][ T3499] ? print_irqtrace_events+0x210/0x210
[ 46.236428][ T3499] ? do_raw_spin_unlock+0x137/0x8b0
[ 46.241608][ T3499] ? hfsplus_delete_all_attrs+0x3c0/0x3c0
[ 46.247391][ T3499] ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 46.253265][ T3499] ? _raw_spin_unlock+0x40/0x40
[ 46.258103][ T3499] ? stack_trace_save+0x113/0x1c0
[ 46.263216][ T3499] ? hfsplus_setxattr+0x64/0xe0
[ 46.268060][ T3499] hfsplus_setxattr+0xac/0xe0
[ 46.272726][ T3499] hfsplus_security_setxattr+0x3c/0x50
[ 46.278173][ T3499] ? hfsplus_security_getxattr+0x40/0x40
[ 46.283808][ T3499] __vfs_setxattr+0x3e7/0x420
[ 46.288483][ T3499] __vfs_setxattr_noperm+0x12a/0x5e0
[ 46.293749][ T3499] vfs_setxattr+0x21d/0x420
[ 46.298260][ T3499] ? xattr_permission+0x4f0/0x4f0
[ 46.303261][ T3499] ? __might_fault+0xb4/0x110
[ 46.307916][ T3499] ? _copy_from_user+0x10f/0x170
[ 46.312931][ T3499] setxattr+0x27e/0x2e0
[ 46.317068][ T3499] ? path_setxattr+0x2a0/0x2a0
[ 46.321831][ T3499] ? preempt_count_add+0x8f/0x180
[ 46.326836][ T3499] ? __mnt_want_write+0x1e6/0x260
[ 46.331842][ T3499] path_setxattr+0x1bc/0x2a0
[ 46.336413][ T3499] ? simple_xattr_list_add+0xf0/0xf0
[ 46.341764][ T3499] ? syscall_enter_from_user_mode+0x2e/0x240
[ 46.347855][ T3499] __x64_sys_setxattr+0xb7/0xd0
[ 46.352692][ T3499] do_syscall_64+0x3b/0xb0
[ 46.357088][ T3499] ? clear_bhb_loop+0x15/0x70
[ 46.361739][ T3499] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 46.367705][ T3499] RIP: 0033:0x7efc807ce639
[ 46.372097][ T3499] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 46.391680][ T3499] RSP: 002b:00007ffcbcb12ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 46.400204][ T3499] RAX: ffffffffffffffda RBX: 00007ffcbcb130d8 RCX: 00007efc807ce639
[ 46.408258][ T3499] RDX: 0000000020000080 RSI: 0000000020000100 RDI: 00000000200000c0
[ 46.416230][ T3499] RBP: 00007efc80841610 R08: 0000000000000000 R09: 0000000000000000
[ 46.424218][ T3499] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[ 46.432169][ T3499] R13: 00007ffcbcb130c8 R14: 0000000000000001 R15: 0000000000000001
[ 46.440132][ T3499]
[ 46.443129][ T3499]
[ 46.445431][ T3499] Allocated by task 3499:
[ 46.449834][ T3499] ____kasan_kmalloc+0xba/0xf0
[ 46.454591][ T3499] __kmalloc+0x168/0x300
[ 46.458806][ T3499] hfsplus_find_init+0x81/0x1c0
[ 46.463628][ T3499] hfsplus_create_attr+0x15d/0x630
[ 46.468712][ T3499] __hfsplus_setxattr+0x6ed/0x22c0
[ 46.473793][ T3499] hfsplus_setxattr+0xac/0xe0
[ 46.478443][ T3499] hfsplus_security_setxattr+0x3c/0x50
[ 46.483893][ T3499] __vfs_setxattr+0x3e7/0x420
[ 46.488631][ T3499] __vfs_setxattr_noperm+0x12a/0x5e0
[ 46.493888][ T3499] vfs_setxattr+0x21d/0x420
[ 46.498380][ T3499] setxattr+0x27e/0x2e0
[ 46.502507][ T3499] path_setxattr+0x1bc/0x2a0
[ 46.507077][ T3499] __x64_sys_setxattr+0xb7/0xd0
[ 46.511901][ T3499] do_syscall_64+0x3b/0xb0
[ 46.516316][ T3499] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 46.522183][ T3499]
[ 46.524482][ T3499] The buggy address belongs to the object at ffff88801e25a800
[ 46.524482][ T3499] which belongs to the cache kmalloc-1k of size 1024
[ 46.538514][ T3499] The buggy address is located 0 bytes inside of
[ 46.538514][ T3499] 1024-byte region [ffff88801e25a800, ffff88801e25ac00)
[ 46.551937][ T3499] The buggy address belongs to the page:
[ 46.557559][ T3499] page:ffffea0000789600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e258
[ 46.567684][ T3499] head:ffffea0000789600 order:3 compound_mapcount:0 compound_pincount:0
[ 46.575990][ T3499] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 46.583961][ T3499] raw: 00fff00000010200 ffffea00004ce200 0000000300000003 ffff888011c41dc0
[ 46.592519][ T3499] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 46.601081][ T3499] page dumped because: kasan: bad access detected
[ 46.607497][ T3499] page_owner tracks the page as allocated
[ 46.613194][ T3499] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, ts 7129655612, free_ts 0
[ 46.630553][ T3499] get_page_from_freelist+0x322a/0x33c0
[ 46.636096][ T3499] __alloc_pages+0x272/0x700
[ 46.640762][ T3499] alloc_page_interleave+0x22/0x1c0
[ 46.645976][ T3499] new_slab+0xbb/0x4b0
[ 46.650241][ T3499] ___slab_alloc+0x6f6/0xe10
[ 46.654815][ T3499] __kmalloc_node_track_caller+0x1f6/0x390
[ 46.660598][ T3499] __alloc_skb+0x12c/0x590
[ 46.665015][ T3499] aoecmd_cfg+0x299/0x9b0
[ 46.669517][ T3499] aoe_init+0x139/0x140
[ 46.673734][ T3499] do_one_initcall+0x22b/0x7a0
[ 46.678509][ T3499] do_initcall_level+0x157/0x210
[ 46.683430][ T3499] do_initcalls+0x49/0x90
[ 46.687761][ T3499] kernel_init_freeable+0x425/0x5c0
[ 46.692970][ T3499] kernel_init+0x19/0x290
[ 46.697489][ T3499] ret_from_fork+0x1f/0x30
[ 46.701989][ T3499] page_owner free stack trace missing
[ 46.707876][ T3499]
[ 46.710383][ T3499] Memory state around the buggy address:
[ 46.716094][ T3499] ffff88801e25a900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 46.724149][ T3499] ffff88801e25a980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 46.732279][ T3499] >ffff88801e25aa00: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 46.740415][ T3499] ^
[ 46.745238][ T3499] ffff88801e25aa80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 46.753458][ T3499] ffff88801e25ab00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 46.761504][ T3499] ==================================================================
[ 46.769732][ T3499] Disabling lock debugging due to kernel taint
[ 46.776060][ T3499] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 46.783244][ T3499] CPU: 0 PID: 3499 Comm: syz-executor126 Tainted: G B 5.15.161-syzkaller #0
[ 46.793211][ T3499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 46.803776][ T3499] Call Trace:
[ 46.807078][ T3499]
[ 46.810093][ T3499] dump_stack_lvl+0x1e3/0x2d0
[ 46.814900][ T3499] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 46.820625][ T3499] ? panic+0x860/0x860
[ 46.824683][ T3499] ? preempt_schedule_common+0xa6/0xd0
[ 46.830131][ T3499] ? preempt_schedule+0xd9/0xe0
[ 46.834958][ T3499] panic+0x318/0x860
[ 46.838843][ T3499] ? check_panic_on_warn+0x1d/0xa0
[ 46.843938][ T3499] ? fb_is_primary_device+0xd0/0xd0
[ 46.849143][ T3499] ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 46.855096][ T3499] ? _raw_spin_unlock+0x40/0x40
[ 46.859923][ T3499] ? print_memory_metadata+0xe2/0x140
[ 46.865268][ T3499] check_panic_on_warn+0x7e/0xa0
[ 46.870177][ T3499] ? hfsplus_bnode_read+0xc7/0x1c0
[ 46.875269][ T3499] end_report+0x6d/0xf0
[ 46.879412][ T3499] kasan_report+0x18e/0x1c0
[ 46.883902][ T3499] ? hfsplus_bnode_read+0xc7/0x1c0
[ 46.888993][ T3499] kasan_check_range+0x27e/0x290
[ 46.893905][ T3499] ? hfsplus_bnode_read+0xc7/0x1c0
[ 46.899004][ T3499] memcpy+0x3c/0x60
[ 46.902803][ T3499] hfsplus_bnode_read+0xc7/0x1c0
[ 46.907726][ T3499] hfsplus_bnode_read_key+0x18c/0x2a0
[ 46.913085][ T3499] ? hfsplus_bnode_read_u8+0x110/0x110
[ 46.918533][ T3499] ? hfsplus_bnode_write+0x1ce/0x200
[ 46.923791][ T3499] hfsplus_brec_insert+0x6e6/0xdd0
[ 46.928919][ T3499] ? hfsplus_brec_keylen+0x310/0x310
[ 46.934211][ T3499] ? hfsplus_create_attr+0x45a/0x630
[ 46.939642][ T3499] hfsplus_create_attr+0x49a/0x630
[ 46.944729][ T3499] ? hfsplus_attr_exists+0x1c0/0x1c0
[ 46.950081][ T3499] ? mutex_lock_nested+0x17/0x20
[ 46.954991][ T3499] ? hfsplus_find_init+0x146/0x1c0
[ 46.960076][ T3499] __hfsplus_setxattr+0x6ed/0x22c0
[ 46.965185][ T3499] ? print_irqtrace_events+0x210/0x210
[ 46.970624][ T3499] ? do_raw_spin_unlock+0x137/0x8b0
[ 46.975812][ T3499] ? hfsplus_delete_all_attrs+0x3c0/0x3c0
[ 46.981504][ T3499] ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 46.987389][ T3499] ? _raw_spin_unlock+0x40/0x40
[ 46.992327][ T3499] ? stack_trace_save+0x113/0x1c0
[ 46.997370][ T3499] ? hfsplus_setxattr+0x64/0xe0
[ 47.002215][ T3499] hfsplus_setxattr+0xac/0xe0
[ 47.006877][ T3499] hfsplus_security_setxattr+0x3c/0x50
[ 47.012309][ T3499] ? hfsplus_security_getxattr+0x40/0x40
[ 47.017917][ T3499] __vfs_setxattr+0x3e7/0x420
[ 47.022568][ T3499] __vfs_setxattr_noperm+0x12a/0x5e0
[ 47.027826][ T3499] vfs_setxattr+0x21d/0x420
[ 47.032650][ T3499] ? xattr_permission+0x4f0/0x4f0
[ 47.037645][ T3499] ? __might_fault+0xb4/0x110
[ 47.042312][ T3499] ? _copy_from_user+0x10f/0x170
[ 47.047226][ T3499] setxattr+0x27e/0x2e0
[ 47.051376][ T3499] ? path_setxattr+0x2a0/0x2a0
[ 47.056262][ T3499] ? preempt_count_add+0x8f/0x180
[ 47.061285][ T3499] ? __mnt_want_write+0x1e6/0x260
[ 47.066294][ T3499] path_setxattr+0x1bc/0x2a0
[ 47.070865][ T3499] ? simple_xattr_list_add+0xf0/0xf0
[ 47.076126][ T3499] ? syscall_enter_from_user_mode+0x2e/0x240
[ 47.082078][ T3499] __x64_sys_setxattr+0xb7/0xd0
[ 47.086905][ T3499] do_syscall_64+0x3b/0xb0
[ 47.091294][ T3499] ? clear_bhb_loop+0x15/0x70
[ 47.095943][ T3499] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 47.101825][ T3499] RIP: 0033:0x7efc807ce639
[ 47.106237][ T3499] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 47.125906][ T3499] RSP: 002b:00007ffcbcb12ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 47.134297][ T3499] RAX: ffffffffffffffda RBX: 00007ffcbcb130d8 RCX: 00007efc807ce639
[ 47.142274][ T3499] RDX: 0000000020000080 RSI: 0000000020000100 RDI: 00000000200000c0
[ 47.150247][ T3499] RBP: 00007efc80841610 R08: 0000000000000000 R09: 0000000000000000
[ 47.158198][ T3499] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[ 47.166250][ T3499] R13: 00007ffcbcb130c8 R14: 0000000000000001 R15: 0000000000000001
[ 47.174211][ T3499]
[ 47.177424][ T3499] Kernel Offset: disabled
[ 47.181740][ T3499] Rebooting in 86400 seconds..