Warning: Permanently added '10.128.1.104' (ED25519) to the list of known hosts.
executing program
[   37.197958][ T4290] loop0: detected capacity change from 0 to 1024
[   37.213699][ T4290] ==================================================================
[   37.215487][ T4290] BUG: KASAN: slab-out-of-bounds in hfsplus_uni2asc+0x624/0x1018
[   37.217076][ T4290] Read of size 2 at addr ffff0000d399d40c by task syz-executor289/4290
[   37.218789][ T4290] 
[   37.219299][ T4290] CPU: 0 PID: 4290 Comm: syz-executor289 Not tainted 6.1.119-syzkaller #0
[   37.221062][ T4290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   37.223106][ T4290] Call trace:
[   37.223849][ T4290]  dump_backtrace+0x1c8/0x1f4
[   37.224851][ T4290]  show_stack+0x2c/0x3c
[   37.225694][ T4290]  dump_stack_lvl+0x108/0x170
[   37.226853][ T4290]  print_report+0x174/0x4c0
[   37.227879][ T4290]  kasan_report+0xd4/0x130
[   37.228862][ T4290]  __asan_report_load2_noabort+0x2c/0x38
[   37.230047][ T4290]  hfsplus_uni2asc+0x624/0x1018
[   37.231084][ T4290]  hfsplus_readdir+0x7a0/0xf28
[   37.232017][ T4290]  iterate_dir+0x1f4/0x4ec
[   37.232977][ T4290]  __arm64_sys_getdents64+0x1c4/0x4a0
[   37.234128][ T4290]  invoke_syscall+0x98/0x2bc
[   37.235140][ T4290]  el0_svc_common+0x138/0x258
[   37.236124][ T4290]  do_el0_svc+0x58/0x13c
[   37.237000][ T4290]  el0_svc+0x58/0x168
[   37.237884][ T4290]  el0t_64_sync_handler+0x84/0xf0
[   37.239023][ T4290]  el0t_64_sync+0x18c/0x190
[   37.239979][ T4290] 
[   37.240442][ T4290] Allocated by task 4290:
[   37.241397][ T4290]  kasan_set_track+0x4c/0x80
[   37.242326][ T4290]  kasan_save_alloc_info+0x24/0x30
[   37.243374][ T4290]  __kasan_kmalloc+0xac/0xc4
[   37.244355][ T4290]  __kmalloc+0xd8/0x1c4
[   37.245251][ T4290]  hfsplus_find_init+0x84/0x1bc
[   37.246338][ T4290]  hfsplus_readdir+0x1c8/0xf28
[   37.247314][ T4290]  iterate_dir+0x1f4/0x4ec
[   37.248265][ T4290]  __arm64_sys_getdents64+0x1c4/0x4a0
[   37.249422][ T4290]  invoke_syscall+0x98/0x2bc
[   37.250345][ T4290]  el0_svc_common+0x138/0x258
[   37.251333][ T4290]  do_el0_svc+0x58/0x13c
[   37.252284][ T4290]  el0_svc+0x58/0x168
[   37.253155][ T4290]  el0t_64_sync_handler+0x84/0xf0
[   37.254240][ T4290]  el0t_64_sync+0x18c/0x190
[   37.255179][ T4290] 
[   37.255687][ T4290] Last potentially related work creation:
[   37.256864][ T4290]  kasan_save_stack+0x40/0x70
[   37.257893][ T4290]  __kasan_record_aux_stack+0xcc/0xe8
[   37.258955][ T4290]  kasan_record_aux_stack_noalloc+0x14/0x20
[   37.260166][ T4290]  call_rcu+0xfc/0xa40
[   37.260985][ T4290]  netlink_release+0x1274/0x179c
[   37.262083][ T4290]  sock_close+0xb8/0x1fc
[   37.263051][ T4290]  __fput+0x1c8/0x7c8
[   37.263961][ T4290]  ____fput+0x20/0x30
[   37.264806][ T4290]  task_work_run+0x240/0x2f0
[   37.265868][ T4290]  do_notify_resume+0x2080/0x2cb8
[   37.267002][ T4290]  el0_svc+0x9c/0x168
[   37.267908][ T4290]  el0t_64_sync_handler+0x84/0xf0
[   37.268988][ T4290]  el0t_64_sync+0x18c/0x190
[   37.269991][ T4290] 
[   37.270495][ T4290] The buggy address belongs to the object at ffff0000d399d000
[   37.270495][ T4290]  which belongs to the cache kmalloc-2k of size 2048
[   37.273495][ T4290] The buggy address is located 1036 bytes inside of
[   37.273495][ T4290]  2048-byte region [ffff0000d399d000, ffff0000d399d800)
[   37.276445][ T4290] 
[   37.276947][ T4290] The buggy address belongs to the physical page:
[   37.278314][ T4290] page:0000000066ebe15a refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x113998
[   37.280425][ T4290] head:0000000066ebe15a order:3 compound_mapcount:0 compound_pincount:0
[   37.282225][ T4290] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff)
[   37.284039][ T4290] raw: 05ffc00000010200 0000000000000000 dead000000000001 ffff0000c0002900
[   37.285880][ T4290] raw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000
[   37.287755][ T4290] page dumped because: kasan: bad access detected
[   37.289150][ T4290] 
[   37.289710][ T4290] Memory state around the buggy address:
[   37.290842][ T4290]  ffff0000d399d300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   37.292627][ T4290]  ffff0000d399d380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   37.294402][ T4290] >ffff0000d399d400: 00 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   37.296064][ T4290]                       ^
[   37.296961][ T4290]  ffff0000d399d480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   37.298700][ T4290]  ffff0000d399d500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   37.300342][ T4290] ==================================================================
[   37.302664][ T4290] Disabling lock debugging due to kernel taint