program: ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000001c0)={0xfffffffffffffff9, 0xffffffffffffffff, 0x1}) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_RENAME(r1, &(0x7f0000002880)={0x0, 0x0, &(0x7f0000002840)={&(0x7f00000027c0)=ANY=[@ANYBLOB="28000000050601010000000000000000000000040500010009cbebd8b2b56d23000000"], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x4000) ioctl$UI_SET_FFBIT(r0, 0x4004556b, 0x7e) syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000640)='./file1\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="00162d860600cb6f5c604bdc91f0c1b1d8a40000000004000007f70a886095b3e787a66dc771af311ba8d3cc11279551bf807b1ab9362663b5f5379da8a6d5bd1146bd"], 0x1, 0x5f5, &(0x7f0000000b80)="$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") r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x2000, 0x0) getdents64(r2, &(0x7f0000000100)=""/154, 0x9a) getdents64(r2, &(0x7f0000000000)=""/172, 0xac) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = socket$inet6(0xa, 0x6, 0x0) r6 = syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x80) ioctl$SNDRV_PCM_IOCTL_STATUS64(r6, 0x80984120, &(0x7f0000000200)) bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r5, 0x101) setsockopt(0xffffffffffffffff, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(0xffffffffffffffff, &(0x7f0000e5c000)={0x2, 0x4e20, @dev}, 0x3a) r7 = accept4(r5, 0x0, 0x0, 0x0) sendmsg$nl_xfrm(r7, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000340)=ANY=[@ANYBLOB="12000000170000000000000000000000000000000000000000000000000000000000000000000000ac1e0001000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000005aba00000000000000002f000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1e01010000000000000000000000000a0101010000000000000000000000004e200000000000000000300000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000300000000000000feffffffffffffff00000000000000000000000000000000000040080000000000000000000000000000000000000000000000000000000000000000000000002705000000000000f9ffffffffffffff00000000b46b6e00000000000000000000000000050000000000001000000000"], 0x128}}, 0x0) sendmsg$OSF_MSG_REMOVE(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="1000000001050000090000000000000003000005"], 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x24044844) r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, 0x0, 0x0) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r8, 0x0, 0x70bd2d, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20000001) r9 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r9, 0x4048aecb, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]) ioctl$KVM_RUN(r9, 0xae80, 0x0) r10 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000200)={&(0x7f0000003000)={[{&(0x7f0000000380)="b50d4a87fde85a7b9b3e7ce0e605d6328994609511a28aa7765b9647c12fa220057eeefb34978b633ac76259cf920e74def98f001ea4a2b1aa9f131a1cffc087ddd0de3d1edb523276850d23981fe6fd657086da38292b3124c72f12bdb1c3d7e88d2a91cc9dd8af64da6619cef84cb6e77a11b13b9d2d04b19750abdb010e9ee588783b3fdf241f3e1b5ac5a0b453d1e0c8c5a97961064547fe0451ed870363de8df63422b1c9757162572797cccb5d3ebf5ad73ea2e88f00d34d929b", 0xbd}, {&(0x7f0000000440)="681dff231dc5b895c825a2541bdf4603bd2ad95e1b8b38077c94fd7642e56933f66b517fc954ce24ec5a2782cb34682eda214d93c576095a3484946572132d679b1bd3892e502442311b2bb55d87202aaf93c87b43fc31", 0x57}]}, 0x2, 0x3}, 0x1) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b40)=ANY=[@ANYBLOB="200000001300010030bd6100ffdbdf2500000000", @ANYRES32=r11, @ANYBLOB="0088000030400000"], 0x20}, 0x1, 0x0, 0x0, 0x5}, 0x4080000) [ 86.229177][ T5099] Bluetooth: hci0: command tx timeout [ 87.225093][ T5115] netlink: 12 bytes leftover after parsing attributes in process `syz.0.0'. [ 87.249930][ T5115] loop0: detected capacity change from 0 to 1024 [ 87.330537][ T5115] ================================================================== [ 87.333655][ T5115] BUG: KASAN: slab-out-of-bounds in hfsplus_uni2asc+0x57f/0x1200 [ 87.336584][ T5115] Read of size 2 at addr ffff88803562940c by task syz.0.0/5115 [ 87.339405][ T5115] [ 87.340247][ T5115] CPU: 0 UID: 0 PID: 5115 Comm: syz.0.0 Not tainted 6.11.0-rc6-syzkaller-00308-gb31c44928842 #0 [ 87.344089][ T5115] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.347892][ T5115] Call Trace: [ 87.349116][ T5115] [ 87.350136][ T5115] dump_stack_lvl+0x241/0x360 [ 87.351855][ T5115] ? __pfx_dump_stack_lvl+0x10/0x10 [ 87.353713][ T5115] ? __pfx__printk+0x10/0x10 [ 87.355354][ T5115] ? _printk+0xd5/0x120 [ 87.356933][ T5115] ? __virt_addr_valid+0x183/0x530 [ 87.358813][ T5115] ? __virt_addr_valid+0x183/0x530 [ 87.360697][ T5115] print_report+0x169/0x550 [ 87.362412][ T5115] ? __virt_addr_valid+0x183/0x530 [ 87.364262][ T5115] ? __virt_addr_valid+0x183/0x530 [ 87.366166][ T5115] ? __virt_addr_valid+0x45f/0x530 [ 87.368083][ T5115] ? __phys_addr+0xba/0x170 [ 87.369801][ T5115] ? hfsplus_uni2asc+0x57f/0x1200 [ 87.371647][ T5115] kasan_report+0x143/0x180 [ 87.373312][ T5115] ? hfsplus_uni2asc+0x57f/0x1200 [ 87.375176][ T5115] hfsplus_uni2asc+0x57f/0x1200 [ 87.376944][ T5115] ? __asan_memcpy+0x40/0x70 [ 87.378660][ T5115] hfsplus_readdir+0x93b/0x1320 [ 87.380477][ T5115] ? __pfx_hfsplus_readdir+0x10/0x10 [ 87.382542][ T5115] ? __mutex_lock+0x2ef/0xd70 [ 87.384332][ T5115] ? iterate_dir+0x215/0x810 [ 87.386097][ T5115] ? __pfx_lock_release+0x10/0x10 [ 87.388003][ T5115] ? __pfx_down_read_killable+0x10/0x10 [ 87.389999][ T5115] ? __fdget_pos+0x24e/0x310 [ 87.391675][ T5115] ? common_file_perm+0x1a6/0x210 [ 87.393539][ T5115] ? bpf_lsm_file_permission+0x9/0x10 [ 87.395435][ T5115] iterate_dir+0x57a/0x810 [ 87.397206][ T5115] __se_sys_getdents64+0x20d/0x4f0 [ 87.399002][ T5115] ? __pfx___se_sys_getdents64+0x10/0x10 [ 87.401052][ T5115] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 87.403233][ T5115] ? __pfx_filldir64+0x10/0x10 [ 87.404977][ T5115] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 87.407269][ T5115] ? do_syscall_64+0x100/0x230 [ 87.409063][ T5115] ? do_syscall_64+0xb6/0x230 [ 87.410858][ T5115] do_syscall_64+0xf3/0x230 [ 87.412610][ T5115] ? clear_bhb_loop+0x35/0x90 [ 87.414368][ T5115] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.416502][ T5115] RIP: 0033:0x7fa3d557cef9 [ 87.418109][ T5115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.425232][ T5115] RSP: 002b:00007fa3d6293038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 87.427857][ T5115] RAX: ffffffffffffffda RBX: 00007fa3d5735f80 RCX: 00007fa3d557cef9 [ 87.430273][ T5115] RDX: 00000000000000ac RSI: 0000000020000000 RDI: 0000000000000005 [ 87.432617][ T5115] RBP: 00007fa3d55ef046 R08: 0000000000000000 R09: 0000000000000000 [ 87.435233][ T5115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 87.437882][ T5115] R13: 0000000000000000 R14: 00007fa3d5735f80 R15: 00007ffcf54a5eb8 [ 87.440285][ T5115] [ 87.441429][ T5115] [ 87.442334][ T5115] Allocated by task 5115: [ 87.443975][ T5115] kasan_save_track+0x3f/0x80 [ 87.445752][ T5115] __kasan_kmalloc+0x98/0xb0 [ 87.447591][ T5115] __kmalloc_noprof+0x1fc/0x400 [ 87.449435][ T5115] hfsplus_find_init+0x85/0x1c0 [ 87.451309][ T5115] hfsplus_readdir+0x20e/0x1320 [ 87.453250][ T5115] iterate_dir+0x57a/0x810 [ 87.454911][ T5115] __se_sys_getdents64+0x20d/0x4f0 [ 87.456886][ T5115] do_syscall_64+0xf3/0x230 [ 87.458645][ T5115] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.460911][ T5115] [ 87.461816][ T5115] The buggy address belongs to the object at ffff888035629000 [ 87.461816][ T5115] which belongs to the cache kmalloc-2k of size 2048 [ 87.467156][ T5115] The buggy address is located 0 bytes to the right of [ 87.467156][ T5115] allocated 1036-byte region [ffff888035629000, ffff88803562940c) [ 87.472350][ T5115] [ 87.473270][ T5115] The buggy address belongs to the physical page: [ 87.475571][ T5115] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x35628 [ 87.478653][ T5115] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 87.481691][ T5115] anon flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff) [ 87.484572][ T5115] page_type: 0xfdffffff(slab) [ 87.486321][ T5115] raw: 04fff00000000040 ffff88801ac42000 0000000000000000 0000000000000001 [ 87.489396][ T5115] raw: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000 [ 87.492338][ T5115] head: 04fff00000000040 ffff88801ac42000 0000000000000000 0000000000000001 [ 87.495392][ T5115] head: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000 [ 87.498495][ T5115] head: 04fff00000000003 ffffea0000d58a01 ffffffffffffffff 0000000000000000 [ 87.501715][ T5115] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 87.505264][ T5115] page dumped because: kasan: bad access detected [ 87.508178][ T5115] page_owner tracks the page as allocated [ 87.510384][ T5115] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 8, tgid 8 (kworker/0:0), ts 82099025600, free_ts 82098241655 [ 87.518335][ T5115] post_alloc_hook+0x1f3/0x230 [ 87.520206][ T5115] get_page_from_freelist+0x2e4c/0x2f10 [ 87.522353][ T5115] __alloc_pages_noprof+0x256/0x6c0 [ 87.524266][ T5115] alloc_slab_page+0x5f/0x120 [ 87.526067][ T5115] allocate_slab+0x5a/0x2f0 [ 87.527773][ T5115] ___slab_alloc+0xcd1/0x14b0 [ 87.529585][ T5115] __slab_alloc+0x58/0xa0 [ 87.531325][ T5115] __kmalloc_node_track_caller_noprof+0x281/0x440 [ 87.533676][ T5115] kmalloc_reserve+0x111/0x2a0 [ 87.535506][ T5115] __alloc_skb+0x1f3/0x440 [ 87.537199][ T5115] alloc_skb_with_frags+0xc3/0x770 [ 87.539092][ T5115] sock_alloc_send_pskb+0x91a/0xa60 [ 87.540972][ T5115] mld_newpack+0x1c3/0xa90 [ 87.542710][ T5115] add_grec+0x1492/0x19a0 [ 87.544401][ T5115] mld_ifc_work+0x691/0xd90 [ 87.546154][ T5115] process_scheduled_works+0xa2c/0x1830 [ 87.548250][ T5115] page last free pid 5098 tgid 5098 stack trace: [ 87.550624][ T5115] free_unref_page+0xd22/0xea0 [ 87.552232][ T5115] __put_partials+0xeb/0x130 [ 87.553978][ T5115] put_cpu_partial+0x17c/0x250 [ 87.555710][ T5115] __slab_free+0x2ea/0x3d0 [ 87.557418][ T5115] qlist_free_all+0x9e/0x140 [ 87.559328][ T5115] kasan_quarantine_reduce+0x14f/0x170 [ 87.561146][ T5115] __kasan_slab_alloc+0x23/0x80 [ 87.562766][ T5115] __kmalloc_cache_noprof+0x132/0x2c0 [ 87.564710][ T5115] kset_create_and_add+0x5b/0x170 [ 87.566343][ T5115] netdev_register_kobject+0x1a8/0x320 [ 87.568098][ T5115] register_netdevice+0x12c5/0x1b00 [ 87.570237][ T5115] team_newlink+0x10a/0x170 [ 87.571920][ T5115] rtnl_newlink+0x1591/0x20a0 [ 87.573728][ T5115] rtnetlink_rcv_msg+0x73f/0xcf0 [ 87.575571][ T5115] netlink_rcv_skb+0x1e3/0x430 [ 87.577346][ T5115] netlink_unicast+0x7f6/0x990 [ 87.579242][ T5115] [ 87.580165][ T5115] Memory state around the buggy address: [ 87.582278][ T5115] ffff888035629300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 87.585236][ T5115] ffff888035629380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 87.588238][ T5115] >ffff888035629400: 00 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 87.591304][ T5115] ^ [ 87.592743][ T5115] ffff888035629480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 87.595641][ T5115] ffff888035629500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 87.598460][ T5115] ================================================================== [ 87.951194][ T5115] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 87.953929][ T5115] CPU: 0 UID: 0 PID: 5115 Comm: syz.0.0 Not tainted 6.11.0-rc6-syzkaller-00308-gb31c44928842 #0 [ 87.957990][ T5115] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.962568][ T5115] Call Trace: [ 87.963850][ T5115] [ 87.964963][ T5115] dump_stack_lvl+0x241/0x360 [ 87.966741][ T5115] ? __pfx_dump_stack_lvl+0x10/0x10 [ 87.968695][ T5115] ? __pfx__printk+0x10/0x10 [ 87.970592][ T5115] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 87.972913][ T5115] ? vscnprintf+0x5d/0x90 [ 87.974432][ T5115] panic+0x349/0x860 [ 87.976008][ T5115] ? check_panic_on_warn+0x21/0xb0 [ 87.978108][ T5115] ? __pfx_panic+0x10/0x10 [ 87.979911][ T5115] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 87.982295][ T5115] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 87.984604][ T5115] check_panic_on_warn+0x86/0xb0 [ 87.986579][ T5115] ? hfsplus_uni2asc+0x57f/0x1200 [ 87.988525][ T5115] end_report+0x77/0x160 [ 87.990229][ T5115] kasan_report+0x154/0x180 [ 87.992053][ T5115] ? hfsplus_uni2asc+0x57f/0x1200 [ 87.993995][ T5115] hfsplus_uni2asc+0x57f/0x1200 [ 87.995874][ T5115] ? __asan_memcpy+0x40/0x70 [ 87.997660][ T5115] hfsplus_readdir+0x93b/0x1320 [ 87.999619][ T5115] ? __pfx_hfsplus_readdir+0x10/0x10 [ 88.001770][ T5115] ? __mutex_lock+0x2ef/0xd70 [ 88.003502][ T5115] ? iterate_dir+0x215/0x810 [ 88.005217][ T5115] ? __pfx_lock_release+0x10/0x10 [ 88.007081][ T5115] ? __pfx_down_read_killable+0x10/0x10 [ 88.009197][ T5115] ? __fdget_pos+0x24e/0x310 [ 88.011060][ T5115] ? common_file_perm+0x1a6/0x210 [ 88.013048][ T5115] ? bpf_lsm_file_permission+0x9/0x10 [ 88.014999][ T5115] iterate_dir+0x57a/0x810 [ 88.016800][ T5115] __se_sys_getdents64+0x20d/0x4f0 [ 88.018723][ T5115] ? __pfx___se_sys_getdents64+0x10/0x10 [ 88.020723][ T5115] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 88.022811][ T5115] ? __pfx_filldir64+0x10/0x10 [ 88.024617][ T5115] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 88.026943][ T5115] ? do_syscall_64+0x100/0x230 [ 88.028746][ T5115] ? do_syscall_64+0xb6/0x230 [ 88.030525][ T5115] do_syscall_64+0xf3/0x230 [ 88.032225][ T5115] ? clear_bhb_loop+0x35/0x90 [ 88.034089][ T5115] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.036388][ T5115] RIP: 0033:0x7fa3d557cef9 [ 88.038209][ T5115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.045198][ T5115] RSP: 002b:00007fa3d6293038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 88.048418][ T5115] RAX: ffffffffffffffda RBX: 00007fa3d5735f80 RCX: 00007fa3d557cef9 [ 88.051462][ T5115] RDX: 00000000000000ac RSI: 0000000020000000 RDI: 0000000000000005 [ 88.054461][ T5115] RBP: 00007fa3d55ef046 R08: 0000000000000000 R09: 0000000000000000 [ 88.057504][ T5115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 88.060682][ T5115] R13: 0000000000000000 R14: 00007fa3d5735f80 R15: 00007ffcf54a5eb8 [ 88.063763][ T5115] [ 88.065244][ T5115] Kernel Offset: disabled [ 88.066988][ T5115] Rebooting in 86400 seconds..